Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(289)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 1906603003: XSSAuditor doesn't handle full set of html5 entities for punctuation. (Closed)

Created:
4 years, 8 months ago by Tom Sepez
Modified:
4 years, 8 months ago
Reviewers:
Mike West
CC:
blink-reviews, blink-reviews-html_chromium.org, chromium-reviews, dglazkov+blink, kinuko+watch, tfarina
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

XSSAuditor doesn't handle full set of html5 entities for punctuation. Committed: https://crrev.com/04e44060dccee711842d08652bf1c622a0f43179 Cr-Commit-Position: refs/heads/master@{#389836}

Patch Set 1 #

Total comments: 3

Patch Set 2 : Stray blank line. #

Messages

Total messages: 18 (8 generated)
Tom Sepez
Mike, for review. There's been some public discussion about this. I'm not sure what this ...
4 years, 8 months ago (2016-04-20 22:55:12 UTC) #2
commit-bot: I haz the power
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1906603003/1 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1906603003/1
4 years, 8 months ago (2016-04-21 00:11:55 UTC) #4
commit-bot: I haz the power
Dry run: Try jobs failed on following builders: win_chromium_rel_ng on tryserver.chromium.win (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.win/builders/win_chromium_rel_ng/builds/208661)
4 years, 8 months ago (2016-04-21 01:59:14 UTC) #6
Mike West
LGTM. https://codereview.chromium.org/1906603003/diff/1/third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp File third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp (right): https://codereview.chromium.org/1906603003/diff/1/third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp#newcode209 third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp:209: if (currentChar == '&' Hrm. This might end ...
4 years, 8 months ago (2016-04-26 08:10:39 UTC) #7
Tom Sepez
https://codereview.chromium.org/1906603003/diff/1/third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp File third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp (right): https://codereview.chromium.org/1906603003/diff/1/third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp#newcode797 third_party/WebKit/Source/core/html/parser/XSSAuditor.cpp:797: On 2016/04/26 08:10:38, Mike West (slow until 25th) wrote: ...
4 years, 8 months ago (2016-04-26 16:00:10 UTC) #8
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1906603003/20001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1906603003/20001
4 years, 8 months ago (2016-04-26 16:00:34 UTC) #11
commit-bot: I haz the power
Try jobs failed on following builders: linux_android_rel_ng on tryserver.chromium.android (JOB_FAILED, https://build.chromium.org/p/tryserver.chromium.android/builders/linux_android_rel_ng/builds/60397)
4 years, 8 months ago (2016-04-26 17:29:20 UTC) #13
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1906603003/20001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1906603003/20001
4 years, 8 months ago (2016-04-26 18:22:59 UTC) #15
commit-bot: I haz the power
Committed patchset #2 (id:20001)
4 years, 8 months ago (2016-04-26 19:08:56 UTC) #16
commit-bot: I haz the power
4 years, 8 months ago (2016-04-26 19:11:06 UTC) #18
Message was sent while issue was closed. 
Patchset 2 (id:??) landed as
https://crrev.com/04e44060dccee711842d08652bf1c622a0f43179
Cr-Commit-Position: refs/heads/master@{#389836}

Powered by Google App Engine
This is Rietveld 408576698