225146 – onerror event not triggered when origin uses TLS 1.0/1.1

NEW 225146

onerror event not triggered when origin uses TLS 1.0/1.1

https://bugs.webkit.org/show_bug.cgi?id=225146

Summary onerror event not triggered when origin uses TLS 1.0/1.1

Tomáš Dvořák

Reported 2021-04-28 02:34:51 PDT

Created attachment 427248 [details] Simple script that demonstrates the issue When you try to load an image from the origin which uses an obsolete version of the TLS (1.0 and 1.1) image will not be loaded and thus `onerror` event should be fired. It does not happen. I am attaching a simple script that demonstrates this issue. The problem also persists in Safari 13.

Attachments
Simple script that demonstrates the issue (1.10 KB, text/html) 2021-04-28 02:34 PDT, Tomáš Dvořák	no flags	Details
View All Add attachment proposed patch, testcase, etc.

Alexey Proskuryakov

Comment 1 2021-04-29 13:37:35 PDT

Weird. I can reproduce.

Alex Christensen

Comment 2 2021-04-29 20:22:26 PDT

Very strange. This is probably related to r265835 which Safari hits in this case. It's especially strange because we are getting a NSURLErrorCancelled after cancelling the authentication challenge. Needs more investigation. We should probably fix it, but there is a straightforward workaround: use TLS 1.2 or 1.3

Radar WebKit Bug Importer

Comment 3 2021-05-05 02:35:13 PDT

<rdar://problem/77548636>

Note You need to log in before you can comment on or make changes to this bug.

Status NEW

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version Safari 14

Hardware All

OS All

Product WebKit

Component Images

Assignee

Nobody

Reported

2021-04-28 02:34 PDT

Modified

2021-05-05 02:35 PDT History

CC List

6 users Show

URL

Keywords InRadar

Depends on

Blocks