Changeset 87708 in webkit
- Timestamp:
- May 30, 2011 9:03:56 PM (13 years ago)
- Location:
- trunk
- Files:
-
- 10 edited
- 3 moved
Legend:
- Unmodified
- Added
- Removed
-
trunk/PerformanceTests/ChangeLog
r81960 r87708 1 2011-05-30 Daniel Bates <dbates@webkit.org> 2 3 Reviewed by Adam Barth. 4 5 Rename XSSFilter to XSSAuditor 6 https://bugs.webkit.org/show_bug.cgi?id=61718 7 8 Currently we use the names XSSFilter and XSSAuditor throughout the project. 9 Instead, we should choose one name for consistency. 10 11 No functionality was changed. So, no new tests. 12 13 * XSSAuditor: Copied from PerformanceTests/XSSFilter. 14 * XSSFilter: Removed. 15 * XSSFilter/large-post-many-events.html: Removed. 16 * XSSFilter/large-post-many-inline-scripts-and-events.html: Removed. 17 * XSSFilter/resources: Removed. 18 * XSSFilter/resources/target-for-large-post-many-inline-scripts-and-events.html: Removed. 19 1 20 2011-03-25 Leo Yang <leo.yang@torchmobile.com.cn> 2 21 -
trunk/Source/WebCore/CMakeLists.txt
r87370 r87708 882 882 html/parser/TextDocumentParser.cpp 883 883 html/parser/TextViewSourceParser.cpp 884 html/parser/XSS Filter.cpp884 html/parser/XSSAuditor.cpp 885 885 886 886 html/shadow/ElementWithPseudoId.cpp -
trunk/Source/WebCore/ChangeLog
r87707 r87708 1 2011-05-30 Daniel Bates <dbates@webkit.org> 2 3 Reviewed by Adam Barth. 4 5 Rename XSSFilter to XSSAuditor 6 https://bugs.webkit.org/show_bug.cgi?id=61718 7 8 Currently we use the names XSSFilter and XSSAuditor throughout the project. 9 Instead, we should choose one name for consistency. 10 11 No functionality was changed. So, no new tests. 12 13 * CMakeLists.txt: 14 * GNUmakefile.list.am: 15 * WebCore.gypi: 16 * WebCore.pro: 17 * WebCore.vcproj/WebCore.vcproj: 18 * WebCore.xcodeproj/project.pbxproj: 19 * html/parser/HTMLDocumentParser.cpp: 20 (WebCore::HTMLDocumentParser::HTMLDocumentParser): 21 (WebCore::HTMLDocumentParser::pumpTokenizer): 22 * html/parser/HTMLDocumentParser.h: 23 * html/parser/XSSAuditor.cpp: Copied from Source/WebCore/html/parser/XSSFilter.cpp. 24 (WebCore::XSSAuditor::XSSAuditor): 25 (WebCore::XSSAuditor::init): 26 (WebCore::XSSAuditor::filterToken): 27 (WebCore::XSSAuditor::filterTokenInitial): 28 (WebCore::XSSAuditor::filterTokenAfterScriptStartTag): 29 (WebCore::XSSAuditor::filterScriptToken): 30 (WebCore::XSSAuditor::filterObjectToken): 31 (WebCore::XSSAuditor::filterParamToken): 32 (WebCore::XSSAuditor::filterEmbedToken): 33 (WebCore::XSSAuditor::filterAppletToken): 34 (WebCore::XSSAuditor::filterIframeToken): 35 (WebCore::XSSAuditor::filterMetaToken): 36 (WebCore::XSSAuditor::filterBaseToken): 37 (WebCore::XSSAuditor::filterFormToken): 38 (WebCore::XSSAuditor::eraseDangerousAttributesIfInjected): 39 (WebCore::XSSAuditor::eraseAttributeIfInjected): 40 (WebCore::XSSAuditor::snippetForRange): 41 (WebCore::XSSAuditor::snippetForAttribute): 42 (WebCore::XSSAuditor::isContainedInRequest): 43 (WebCore::XSSAuditor::isSameOriginResource): 44 * html/parser/XSSAuditor.h: Copied from Source/WebCore/html/parser/XSSFilter.h. 45 * html/parser/XSSFilter.cpp: Removed. 46 * html/parser/XSSFilter.h: Removed. 47 1 48 2011-05-30 No'am Rosenthal <noam.rosenthal@nokia.com> 2 49 -
trunk/Source/WebCore/GNUmakefile.list.am
r87370 r87708 1839 1839 Source/WebCore/html/parser/TextViewSourceParser.cpp \ 1840 1840 Source/WebCore/html/parser/TextViewSourceParser.h \ 1841 Source/WebCore/html/parser/XSS Filter.cpp \1842 Source/WebCore/html/parser/XSS Filter.h \1841 Source/WebCore/html/parser/XSSAuditor.cpp \ 1842 Source/WebCore/html/parser/XSSAuditor.h \ 1843 1843 Source/WebCore/html/shadow/ElementWithPseudoId.cpp \ 1844 1844 Source/WebCore/html/shadow/ElementWithPseudoId.h \ -
trunk/Source/WebCore/WebCore.gypi
r87399 r87708 3186 3186 'html/parser/TextViewSourceParser.cpp', 3187 3187 'html/parser/TextViewSourceParser.h', 3188 'html/parser/XSS Filter.cpp',3189 'html/parser/XSS Filter.h',3188 'html/parser/XSSAuditor.cpp', 3189 'html/parser/XSSAuditor.h', 3190 3190 'html/shadow/ElementWithPseudoId.cpp', 3191 3191 'html/shadow/ElementWithPseudoId.h', -
trunk/Source/WebCore/WebCore.pro
r87370 r87708 799 799 html/parser/TextDocumentParser.cpp \ 800 800 html/parser/TextViewSourceParser.cpp \ 801 html/parser/XSS Filter.cpp \801 html/parser/XSSAuditor.cpp \ 802 802 html/shadow/ElementWithPseudoId.cpp \ 803 803 html/shadow/DetailsMarkerControl.cpp \ … … 1748 1748 html/parser/HTMLTreeBuilder.h \ 1749 1749 html/parser/HTMLViewSourceParser.h \ 1750 html/parser/XSS Filter.h \1750 html/parser/XSSAuditor.h \ 1751 1751 html/shadow/MediaControlElements.h \ 1752 1752 html/shadow/DetailsMarkerControl.h \ -
trunk/Source/WebCore/WebCore.vcproj/WebCore.vcproj
r87399 r87708 57198 57198 </File> 57199 57199 <File 57200 RelativePath="..\html\parser\XSS Filter.cpp"57201 > 57202 </File> 57203 <File 57204 RelativePath="..\html\parser\XSS Filter.h"57200 RelativePath="..\html\parser\XSSAuditor.cpp" 57201 > 57202 </File> 57203 <File 57204 RelativePath="..\html\parser\XSSAuditor.h" 57205 57205 > 57206 57206 </File> -
trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj
r87370 r87708 3120 3120 977E2DCD12F0E28300C13379 /* HTMLSourceTracker.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 977E2DCB12F0E28300C13379 /* HTMLSourceTracker.cpp */; }; 3121 3121 977E2DCE12F0E28300C13379 /* HTMLSourceTracker.h in Headers */ = {isa = PBXBuildFile; fileRef = 977E2DCC12F0E28300C13379 /* HTMLSourceTracker.h */; }; 3122 977E2E0E12F0FC9C00C13379 /* XSS Filter.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 977E2E0B12F0FC9C00C13379 /* XSSFilter.cpp */; };3123 977E2E0F12F0FC9C00C13379 /* XSS Filter.h in Headers */ = {isa = PBXBuildFile; fileRef = 977E2E0C12F0FC9C00C13379 /* XSSFilter.h */; };3122 977E2E0E12F0FC9C00C13379 /* XSSAuditor.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 977E2E0B12F0FC9C00C13379 /* XSSAuditor.cpp */; }; 3123 977E2E0F12F0FC9C00C13379 /* XSSAuditor.h in Headers */ = {isa = PBXBuildFile; fileRef = 977E2E0C12F0FC9C00C13379 /* XSSAuditor.h */; }; 3124 3124 979F43D31075E44A0000F83B /* NavigationScheduler.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 979F43D11075E44A0000F83B /* NavigationScheduler.cpp */; }; 3125 3125 979F43D41075E44A0000F83B /* NavigationScheduler.h in Headers */ = {isa = PBXBuildFile; fileRef = 979F43D21075E44A0000F83B /* NavigationScheduler.h */; settings = {ATTRIBUTES = (Private, ); }; }; … … 9683 9683 977E2DCB12F0E28300C13379 /* HTMLSourceTracker.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = HTMLSourceTracker.cpp; path = parser/HTMLSourceTracker.cpp; sourceTree = "<group>"; }; 9684 9684 977E2DCC12F0E28300C13379 /* HTMLSourceTracker.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; name = HTMLSourceTracker.h; path = parser/HTMLSourceTracker.h; sourceTree = "<group>"; }; 9685 977E2E0B12F0FC9C00C13379 /* XSS Filter.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = XSSFilter.cpp; path = parser/XSSFilter.cpp; sourceTree = "<group>"; };9686 977E2E0C12F0FC9C00C13379 /* XSS Filter.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; name = XSSFilter.h; path = parser/XSSFilter.h; sourceTree = "<group>"; };9685 977E2E0B12F0FC9C00C13379 /* XSSAuditor.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = XSSAuditor.cpp; path = parser/XSSAuditor.cpp; sourceTree = "<group>"; }; 9686 977E2E0C12F0FC9C00C13379 /* XSSAuditor.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; name = XSSAuditor.h; path = parser/XSSAuditor.h; sourceTree = "<group>"; }; 9687 9687 979F43D11075E44A0000F83B /* NavigationScheduler.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = NavigationScheduler.cpp; sourceTree = "<group>"; }; 9688 9688 979F43D21075E44A0000F83B /* NavigationScheduler.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = NavigationScheduler.h; sourceTree = "<group>"; }; … … 16286 16286 97BC84A212370DC7000C6161 /* TextViewSourceParser.cpp */, 16287 16287 97BC84A312370DC8000C6161 /* TextViewSourceParser.h */, 16288 977E2E0B12F0FC9C00C13379 /* XSS Filter.cpp */,16289 977E2E0C12F0FC9C00C13379 /* XSS Filter.h */,16288 977E2E0B12F0FC9C00C13379 /* XSSAuditor.cpp */, 16289 977E2E0C12F0FC9C00C13379 /* XSSAuditor.h */, 16290 16290 ); 16291 16291 name = parser; … … 22999 22999 93F199ED08245E59001E9ABC /* XSLTProcessor.h in Headers */, 23000 23000 E1BE512E0CF6C512002EA959 /* XSLTUnicodeSort.h in Headers */, 23001 977E2E0F12F0FC9C00C13379 /* XSS Filter.h in Headers */,23001 977E2E0F12F0FC9C00C13379 /* XSSAuditor.h in Headers */, 23002 23002 FD537353137B651800008DCE /* ZeroPole.h in Headers */, 23003 23003 B12D233F13560282002A28D4 /* ExclusiveTrackList.h in Headers */, … … 25695 25695 93F19B0508245E59001E9ABC /* XSLTProcessorLibxslt.cpp in Sources */, 25696 25696 E1BE512D0CF6C512002EA959 /* XSLTUnicodeSort.cpp in Sources */, 25697 977E2E0E12F0FC9C00C13379 /* XSS Filter.cpp in Sources */,25697 977E2E0E12F0FC9C00C13379 /* XSSAuditor.cpp in Sources */, 25698 25698 FD537352137B651800008DCE /* ZeroPole.cpp in Sources */, 25699 25699 B12D233E13560282002A28D4 /* ExclusiveTrackList.cpp in Sources */, -
trunk/Source/WebCore/html/parser/HTMLDocumentParser.cpp
r84811 r87708 81 81 , m_treeBuilder(HTMLTreeBuilder::create(this, document, reportErrors, usePreHTML5ParserQuirks(document))) 82 82 , m_parserScheduler(HTMLParserScheduler::create(this)) 83 , m_xss Filter(this)83 , m_xssAuditor(this) 84 84 , m_endWasDelayed(false) 85 85 , m_pumpSessionNestingLevel(0) … … 93 93 , m_tokenizer(HTMLTokenizer::create(usePreHTML5ParserQuirks(fragment->document()))) 94 94 , m_treeBuilder(HTMLTreeBuilder::create(this, fragment, contextElement, scriptingPermission, usePreHTML5ParserQuirks(fragment->document()))) 95 , m_xss Filter(this)95 , m_xssAuditor(this) 96 96 , m_endWasDelayed(false) 97 97 , m_pumpSessionNestingLevel(0) … … 271 271 // We do not XSS filter innerHTML, which means we (intentionally) fail 272 272 // http/tests/security/xssAuditor/dom-write-innerHTML.html 273 m_xss Filter.filterToken(m_token);273 m_xssAuditor.filterToken(m_token); 274 274 } 275 275 -
trunk/Source/WebCore/html/parser/HTMLDocumentParser.h
r82631 r87708 36 36 #include "SegmentedString.h" 37 37 #include "Timer.h" 38 #include "XSS Filter.h"38 #include "XSSAuditor.h" 39 39 #include <wtf/OwnPtr.h> 40 40 … … 152 152 OwnPtr<HTMLParserScheduler> m_parserScheduler; 153 153 HTMLSourceTracker m_sourceTracker; 154 XSS Filter m_xssFilter;154 XSSAuditor m_xssAuditor; 155 155 156 156 bool m_endWasDelayed; -
trunk/Source/WebCore/html/parser/XSSAuditor.cpp
r87707 r87708 25 25 26 26 #include "config.h" 27 #include "XSS Filter.h"27 #include "XSSAuditor.h" 28 28 29 29 #include "Console.h" … … 128 128 } 129 129 130 XSS Filter::XSSFilter(HTMLDocumentParser* parser)130 XSSAuditor::XSSAuditor(HTMLDocumentParser* parser) 131 131 : m_parser(parser) 132 132 , m_isEnabled(false) … … 143 143 } 144 144 145 void XSS Filter::init()145 void XSSAuditor::init() 146 146 { 147 147 const size_t miniumLengthForSuffixTree = 512; // FIXME: Tune this parameter. … … 155 155 156 156 // In theory, the Document could have detached from the Frame after the 157 // XSS Filter was constructed.157 // XSSAuditor was constructed. 158 158 if (!m_parser->document()->frame()) { 159 159 m_isEnabled = false; … … 192 192 } 193 193 194 void XSS Filter::filterToken(HTMLToken& token)194 void XSSAuditor::filterToken(HTMLToken& token) 195 195 { 196 196 if (m_state == Uninitialized) { … … 231 231 } 232 232 233 bool XSS Filter::filterTokenInitial(HTMLToken& token)233 bool XSSAuditor::filterTokenInitial(HTMLToken& token) 234 234 { 235 235 ASSERT(m_state == Initial); … … 262 262 } 263 263 264 bool XSS Filter::filterTokenAfterScriptStartTag(HTMLToken& token)264 bool XSSAuditor::filterTokenAfterScriptStartTag(HTMLToken& token) 265 265 { 266 266 ASSERT(m_state == AfterScriptStartTag); … … 284 284 } 285 285 286 bool XSS Filter::filterScriptToken(HTMLToken& token)286 bool XSSAuditor::filterScriptToken(HTMLToken& token) 287 287 { 288 288 ASSERT(m_state == Initial); … … 298 298 } 299 299 300 bool XSS Filter::filterObjectToken(HTMLToken& token)300 bool XSSAuditor::filterObjectToken(HTMLToken& token) 301 301 { 302 302 ASSERT(m_state == Initial); … … 313 313 } 314 314 315 bool XSS Filter::filterParamToken(HTMLToken& token)315 bool XSSAuditor::filterParamToken(HTMLToken& token) 316 316 { 317 317 ASSERT(m_state == Initial); … … 332 332 } 333 333 334 bool XSS Filter::filterEmbedToken(HTMLToken& token)334 bool XSSAuditor::filterEmbedToken(HTMLToken& token) 335 335 { 336 336 ASSERT(m_state == Initial); … … 346 346 } 347 347 348 bool XSS Filter::filterAppletToken(HTMLToken& token)348 bool XSSAuditor::filterAppletToken(HTMLToken& token) 349 349 { 350 350 ASSERT(m_state == Initial); … … 360 360 } 361 361 362 bool XSS Filter::filterIframeToken(HTMLToken& token)362 bool XSSAuditor::filterIframeToken(HTMLToken& token) 363 363 { 364 364 ASSERT(m_state == Initial); … … 369 369 } 370 370 371 bool XSS Filter::filterMetaToken(HTMLToken& token)371 bool XSSAuditor::filterMetaToken(HTMLToken& token) 372 372 { 373 373 ASSERT(m_state == Initial); … … 378 378 } 379 379 380 bool XSS Filter::filterBaseToken(HTMLToken& token)380 bool XSSAuditor::filterBaseToken(HTMLToken& token) 381 381 { 382 382 ASSERT(m_state == Initial); … … 387 387 } 388 388 389 bool XSS Filter::filterFormToken(HTMLToken& token)389 bool XSSAuditor::filterFormToken(HTMLToken& token) 390 390 { 391 391 ASSERT(m_state == Initial); … … 396 396 } 397 397 398 bool XSS Filter::eraseDangerousAttributesIfInjected(HTMLToken& token)398 bool XSSAuditor::eraseDangerousAttributesIfInjected(HTMLToken& token) 399 399 { 400 400 DEFINE_STATIC_LOCAL(String, safeJavaScriptURL, ("javascript:void(0)")); … … 417 417 } 418 418 419 bool XSS Filter::eraseAttributeIfInjected(HTMLToken& token, const QualifiedName& attributeName, const String& replacementValue)419 bool XSSAuditor::eraseAttributeIfInjected(HTMLToken& token, const QualifiedName& attributeName, const String& replacementValue) 420 420 { 421 421 size_t indexOfAttribute; … … 436 436 } 437 437 438 String XSS Filter::snippetForRange(const HTMLToken& token, int start, int end)438 String XSSAuditor::snippetForRange(const HTMLToken& token, int start, int end) 439 439 { 440 440 // FIXME: There's an extra allocation here that we could save by … … 443 443 } 444 444 445 String XSS Filter::snippetForAttribute(const HTMLToken& token, const HTMLToken::Attribute& attribute)445 String XSSAuditor::snippetForAttribute(const HTMLToken& token, const HTMLToken::Attribute& attribute) 446 446 { 447 447 // FIXME: We should grab one character before the name also. … … 452 452 } 453 453 454 bool XSS Filter::isContainedInRequest(const String& snippet)454 bool XSSAuditor::isContainedInRequest(const String& snippet) 455 455 { 456 456 ASSERT(!snippet.isEmpty()); … … 464 464 } 465 465 466 bool XSS Filter::isSameOriginResource(const String& url)466 bool XSSAuditor::isSameOriginResource(const String& url) 467 467 { 468 468 // If the resource is loaded from the same URL as the enclosing page, it's -
trunk/Source/WebCore/html/parser/XSSAuditor.h
r87707 r87708 24 24 */ 25 25 26 #ifndef XSS Filter_h27 #define XSS Filter_h26 #ifndef XSSAuditor_h 27 #define XSSAuditor_h 28 28 29 29 #include "HTMLToken.h" … … 35 35 class HTMLDocumentParser; 36 36 37 class XSS Filter {38 WTF_MAKE_NONCOPYABLE(XSS Filter);37 class XSSAuditor { 38 WTF_MAKE_NONCOPYABLE(XSSAuditor); 39 39 public: 40 explicit XSS Filter(HTMLDocumentParser*);40 explicit XSSAuditor(HTMLDocumentParser*); 41 41 42 42 void filterToken(HTMLToken&);
Note: See TracChangeset
for help on using the changeset viewer.