Changeset 73922 in webkit
- Timestamp:
- Dec 13, 2010 9:05:10 AM (13 years ago)
- Location:
- trunk/LayoutTests
- Files:
-
- 1 deleted
- 10 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/LayoutTests/ChangeLog
r73919 r73922 1 2010-12-13 Pavel Feldman <pfeldman@chromium.org> 2 3 Not reviewed: rebaseline xss tests for window.onerror. 4 5 * platform/chromium-linux/http/tests/security/xss-DENIED-frame-name-expected.txt: Removed. 6 * platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-document-write-expected.txt: 7 * platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url-expected.txt: 8 * platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-set-opener-expected.txt: 9 * platform/chromium-mac/http/tests/security/xss-DENIED-frame-name-expected.txt: 10 * platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-document-write-expected.txt: 11 * platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url-expected.txt: 12 * platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-set-opener-expected.txt: 13 * platform/chromium-win/http/tests/security/xss-DENIED-frame-name-expected.txt: 14 * platform/chromium/test_expectations.txt: 15 1 16 2010-12-13 John Knottenbelt <jknotten@chromium.org> 2 17 -
trunk/LayoutTests/platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-document-write-expected.txt
r56251 r73922 1 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim-with-notify.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-navigate-opener-document-write.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined4 4 This page opens a window to "", injects malicious code, and then navigates its opener to the victim. The opened window then tries to scripts its opener after document.writeing a new document. 5 5 Code injected into window: -
trunk/LayoutTests/platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url-expected.txt
r56251 r73922 1 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim-with-notify.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined4 4 This page opens a window to "", injects malicious code, and then navigates its opener to the victim. The opened window then tries to scripts its opener after reloading itself as a javascript URL. 5 5 Code injected into window: -
trunk/LayoutTests/platform/chromium-mac/http/tests/security/aboutBlank/xss-DENIED-set-opener-expected.txt
r56251 r73922 1 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match.2 3 1 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match. 4 2 5 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 4 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match. 5 6 6 This page opens a window to "", injects malicious code, and then uses window.open.call to set its opener to the victim. The opened window then tries to scripts its opener. 7 7 Code injected into window: -
trunk/LayoutTests/platform/chromium-mac/http/tests/security/xss-DENIED-frame-name-expected.txt
r67536 r73922 1 CONSOLE MESSAGE: line 2: Uncaught TypeError: Cannot read property 'prop' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://127.0.0.1:8000/security/xss-DENIED-frame-name.html from frame with URL http://localhost:8000/security/resources/frame-for-parent-name.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 2: Uncaught TypeError: Cannot read property 'prop' of undefined4 4 This test passes if it doesn't alert fail. -
trunk/LayoutTests/platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-document-write-expected.txt
r56271 r73922 1 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim-with-notify.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-navigate-opener-document-write.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined4 4 This page opens a window to "", injects malicious code, and then navigates its opener to the victim. The opened window then tries to scripts its opener after document.writeing a new document. 5 5 Code injected into window: -
trunk/LayoutTests/platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url-expected.txt
r56271 r73922 1 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim-with-notify.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-navigate-opener-javascript-url.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined4 4 This page opens a window to "", injects malicious code, and then navigates its opener to the victim. The opened window then tries to scripts its opener after reloading itself as a javascript URL. 5 5 Code injected into window: -
trunk/LayoutTests/platform/chromium-win/http/tests/security/aboutBlank/xss-DENIED-set-opener-expected.txt
r56271 r73922 1 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match.2 3 1 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match. 4 2 5 3 CONSOLE MESSAGE: line 1: Uncaught TypeError: Cannot read property 'body' of undefined 4 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://localhost:8000/security/resources/innocent-victim.html from frame with URL http://127.0.0.1:8000/security/aboutBlank/xss-DENIED-set-opener.html. Domains, protocols and ports must match. 5 6 6 This page opens a window to "", injects malicious code, and then uses window.open.call to set its opener to the victim. The opened window then tries to scripts its opener. 7 7 Code injected into window: -
trunk/LayoutTests/platform/chromium-win/http/tests/security/xss-DENIED-frame-name-expected.txt
r67536 r73922 1 CONSOLE MESSAGE: line 2: Uncaught TypeError: Cannot read property 'prop' of undefined 1 2 CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://127.0.0.1:8000/security/xss-DENIED-frame-name.html from frame with URL http://localhost:8000/security/resources/frame-for-parent-name.html. Domains, protocols and ports must match. 2 3 3 CONSOLE MESSAGE: line 2: Uncaught TypeError: Cannot read property 'prop' of undefined4 4 This test passes if it doesn't alert fail. -
trunk/LayoutTests/platform/chromium/test_expectations.txt
r73899 r73922 3264 3264 BUG66682 WIN LINUX MAC : editing/spelling/spellcheck-paste.html = TEXT TIMEOUT 3265 3265 BUG66686 : fast/loader/user-stylesheet-fast-path.html = TEXT 3266
Note: See TracChangeset
for help on using the changeset viewer.