RESOLVED FIXED 274519
Script elements in XHTML documents dont work with trusted types are enforced 
https://bugs.webkit.org/show_bug.cgi?id=274519
Summary Script elements in XHTML documents dont work with trusted types are enforced
Luke Warlow
Reported 2024-05-22 05:47:04 PDT
Currently the XMLDocumentParser::updateLeafTextNode() method calls appendData() which means the script elements all think they've been manipulated by JS and so aren't trusted. This method should ideally use parserAppendData() which will fix script elements. However, this means that mutation events aren't fired which breaks SVGTRefElement's because they rely on mutation events to work. SVGTRef is deprecated and unsupported by any other engine so is it possible we can remove support for them? (MDN already says they're not supported but that's erroneous based on the failing tests)
Attachments
Add attachment proposed patch, testcase, etc.
Nikolas Zimmermann
Comment 1 2024-05-22 06:01:55 PDT
We had https://bugs.webkit.org/show_bug.cgi?id=246191 open to remove <tref> support.
Radar WebKit Bug Importer
Comment 2 2024-05-29 05:48:13 PDT
<rdar://problem/128935225>
Luke Warlow
Comment 3 2024-07-02 07:30:58 PDT
Pull request: https://github.com/WebKit/WebKit/pull/30389
EWS
Comment 4 2024-07-29 05:14:58 PDT
Committed 281494@main (0446b6ec9aaa): <https://commits.webkit.org/281494@main> Reviewed commits have been landed. Closing PR #30389 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.