/[blink]
Chromium logo

Revision 196971


Jump to revision: Previous Next
Author: tsepez@chromium.org
Date: Thu Jun 11 20:25:33 2015 UTC (7 years, 11 months ago)
Changed paths: 4
Log Message:
Prevent linear-time forcing of tokens by inducing XSSAuditor page blocks.

The page itself must control where the fragment to match ends,
otherwise leading-substring matches may be induced.  The pre-conditions
required for this are expected to be uncommon.

BUG=498982

Review URL: https://codereview.chromium.org/1179633002

Changed paths

Path Details
Directorytrunk/LayoutTests/http/tests/security/xssAuditor/form-action-token-fragment-expected.txt added
Directorytrunk/LayoutTests/http/tests/security/xssAuditor/form-action-token-fragment.html added
Directorytrunk/LayoutTests/http/tests/security/xssAuditor/resources/echo-form-action.pl modified , text changed
Directorytrunk/Source/core/html/parser/XSSAuditor.cpp modified , text changed

Properties

Name Value
commit-bot commit-bot@chromium.org

Powered by ViewVC 1.1.26 ViewVC Help