237818 – Canvas export fails due to security reasons because of CanvasPattern

NEW 237818

Canvas export fails due to security reasons because of CanvasPattern

https://bugs.webkit.org/show_bug.cgi?id=237818

Summary Canvas export fails due to security reasons because of CanvasPattern

Eduard Kuzmenko

Reported 2022-03-13 04:21:03 PDT

Export fails with error: 'Operation is insecure' when canvas is being filled with pattern, which was created using an image from the same origin. Chrome does not have this issue. Steps to Reproduce: - Get an image from the same origin (header 'Access-Control-Allow-Origin: *' must not be present) - Wait for its load - Create CanvasPattern using the image - Fill the canvas with created pattern - Try to use canvas.toBlob() and it'll fail with 'operation is insecure' Example: https://jsfiddle.net/morethanwords/4u0L5gdn/54/ Temporary solution: draw the image to additional canvas and create the pattern using the canvas, instead of image.

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2022-03-14 08:55:41 PDT

<rdar://problem/90248577>

Note You need to log in before you can comment on or make changes to this bug.

Status NEW

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version Safari 15

Hardware Unspecified

OS macOS 12

Product WebKit

Component Canvas

Assignee

Nobody

Reported

2022-03-13 04:21 PDT

Modified

2022-03-14 13:43 PDT History

CC List

4 users Show

URL

Keywords InRadar

Depends on

Blocks