Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(34)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-load-css-after-failed-integrity.html

Issue 2290983003: CSSStyleSheetResource should cache decoded text instead of raw bytes (Closed)
Patch Set: rebased Created 4 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/resources/mark-result2-blue.css ('k') | third_party/WebKit/Source/core/fetch/CSSStyleSheetResource.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-load-css-after-failed-integrity.html
diff --git a/third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-load-css-after-failed-integrity.html b/third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-load-css-after-failed-integrity.html
new file mode 100644
index 0000000000000000000000000000000000000000..d31fc98553517cb86dd67a704b1abfed1ea00312
--- /dev/null
+++ b/third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-load-css-after-failed-integrity.html
@@ -0,0 +1,50 @@
+<!DOCTYPE html>
+<link rel="stylesheet" type="text/css" href="resources/mark-result-red.css" integrity="sha256-deadbeef">
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<body>
+<script>
+function waitForLinkElementToLoad(linkElement) {
+ return new Promise(resolve => {
+ (function waitAgain() {
+ if (linkElement.sheet !== null) {
+ resolve();
+ } else {
+ setTimeout(waitAgain, 100);
+ }
+ })();
+ });
+}
+
+promise_test(() => {
+ let link = document.querySelector("link");
+
+ let divResult = document.createElement("div");
+ divResult.id = "result";
+ document.body.appendChild(divResult);
+
+ let divResult2 = document.createElement("div");
+ divResult2.id = "result2";
+ document.body.appendChild(divResult2);
+
+ return new Promise(resolve => {
+ window.addEventListener("load", resolve, {once: true});
+ })
+ .then(() => {
+ assert_equals(getComputedStyle(divResult).color.toString(), "rgb(0, 0, 0)", "bad integrity CSS should not be applied");
+
+ let linkElement = document.querySelector("link");
+ linkElement.removeAttribute("integrity");
+ linkElement.href = "resources/mark-result2-blue.css";
+ return waitForLinkElementToLoad(linkElement);
+ })
+ .then(() => {
+ assert_equals(getComputedStyle(divResult).color.toString(), "rgb(0, 0, 0)", "bad integrity CSS should not be applied");
+ assert_equals(getComputedStyle(divResult2).color.toString(), "rgb(0, 0, 255)", "CSS w/o integrity check disabled should load on the link element");
+ })
+ .then(() => {
+ document.body.removeChild(divResult);
+ document.body.removeChild(divResult2);
+ });
+}, 'Link element should still load another CSS after SRI check failed.');
+</script>
« no previous file with comments | « third_party/WebKit/LayoutTests/http/tests/security/subresourceIntegrity/resources/mark-result2-blue.css ('k') | third_party/WebKit/Source/core/fetch/CSSStyleSheetResource.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698