[SCM] WebKit Debian packaging branch, webkit-1.1, updated. upstream/1.1.15.1-1414-gc69ee75
abarth at webkit.org
abarth at webkit.org
Thu Oct 29 20:31:42 UTC 2009
The following commit has been merged in the webkit-1.1 branch:
commit e523d42b5f4c24a9b730096330352c337f2b2696
Author: abarth at webkit.org <abarth at webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Date: Tue Sep 22 04:57:10 2009 +0000
2009-09-21 Adam Barth <abarth at webkit.org>
Reviewed by Alexey Proskuryakov.
add a layout test for mishandling of an invalid sequence in multibyte
encodings
https://bugs.webkit.org/show_bug.cgi?id=27395
* fast/encoding/invalid-multi-byte-over-consumption-expected.txt: Added.
* fast/encoding/invalid-multi-byte-over-consumption.html: Added.
git-svn-id: http://svn.webkit.org/repository/webkit/trunk@48618 268f45cc-cd09-0410-ab3c-d52691b4dbfc
diff --git a/LayoutTests/ChangeLog b/LayoutTests/ChangeLog
index c8b5879..2be4070 100644
--- a/LayoutTests/ChangeLog
+++ b/LayoutTests/ChangeLog
@@ -1,3 +1,14 @@
+2009-09-21 Adam Barth <abarth at webkit.org>
+
+ Reviewed by Alexey Proskuryakov.
+
+ add a layout test for mishandling of an invalid sequence in multibyte
+ encodings
+ https://bugs.webkit.org/show_bug.cgi?id=27395
+
+ * fast/encoding/invalid-multi-byte-over-consumption-expected.txt: Added.
+ * fast/encoding/invalid-multi-byte-over-consumption.html: Added.
+
2009-09-21 Brian Weinstein <bweinstein at apple.com>
Reviewed by Sam Weinig.
diff --git a/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption-expected.txt b/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption-expected.txt
new file mode 100644
index 0000000..4d542ab
--- /dev/null
+++ b/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption-expected.txt
@@ -0,0 +1,4 @@
+Test if an invalid multi-byte sequence is onverconsumed leading to an XSS vector
+
+ABCD" onchange="test='Failed'" using malformed byte sequence 0x83 0x22
+Passed
diff --git a/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption.html b/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption.html
new file mode 100644
index 0000000..60d7f0c
--- /dev/null
+++ b/LayoutTests/fast/encoding/invalid-multi-byte-over-consumption.html
@@ -0,0 +1,34 @@
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=Shift_JIS">
+<script>
+if (window.layoutTestController)
+ layoutTestController.dumpAsText();
+
+var test = "Passed";
+
+function runTest() {
+ var t = document.getElementById("input1");
+ if (document.all) {
+ t.fireEvent("onchange");
+ } else {
+ var evt = document.createEvent("HTMLEvents");
+ evt.initEvent("change",true,true);
+ t.dispatchEvent(evt);
+ }
+
+ var r = document.getElementById("result");
+
+ if (test=="Passed")
+ r.innerHTML = "Passed";
+ else
+ r.innerHTML = "Failed";
+}
+</script>
+</head>
+<body onload="runTest();">
+<p>Test if an invalid multi-byte sequence is onverconsumed leading to an
+XSS vector</p>
+<input id="input1" src="" type="xss�">ABCD" onchange="test='Failed'" using malformed byte sequence 0x83 0x22<br>
+<div id="result"></div>
+</body>
--
WebKit Debian packaging
More information about the Pkg-webkit-commits
mailing list