| Index: third_party/WebKit/LayoutTests/http/tests/security/xss-DENIED-window-open-javascript-url-leading-format-char.html
|
| ===================================================================
|
| --- third_party/WebKit/LayoutTests/http/tests/security/xss-DENIED-window-open-javascript-url-leading-format-char.html (revision 0)
|
| +++ third_party/WebKit/LayoutTests/http/tests/security/xss-DENIED-window-open-javascript-url-leading-format-char.html (revision 41087)
|
| @@ -0,0 +1,28 @@
|
| +<!DOCTYPE html>
|
| +<html>
|
| +<head>
|
| +<script>
|
| +if (window.layoutTestController) {
|
| + layoutTestController.dumpAsText();
|
| + layoutTestController.waitUntilDone();
|
| +}
|
| +function runTest() {
|
| + // Schedule a return to the main event loop so that the javascript: URL
|
| + // has a chance to run.
|
| + setTimeout(done, 0);
|
| + window.open("\u0000javascript:alert('FAIL')", "tg");
|
| +}
|
| +function done() {
|
| + if (window.layoutTestController)
|
| + layoutTestController.notifyDone();
|
| +}
|
| +</script>
|
| +</head>
|
| +<body>
|
| +This test passes if there is no alert dialog and the iframe contains a broken
|
| +link.<br />
|
| +<iframe onload="runTest()" name="tg"
|
| + src="http://localhost:8080/security/resources/innocent-victim.html"
|
| + ></iframe>
|
| +</body>
|
| +</html>
|
|
|
Chromium Code Reviews
