W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > October 2011

[Bug 14502] Why do we want to taint on style set and not on style use?

From: <bugzilla@jessica.w3.org>
Date: Tue, 25 Oct 2011 03:28:17 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1RIXgX-0002yN-Ry@jessica.w3.org>
http://www.w3.org/Bugs/Public/show_bug.cgi?id=14502

--- Comment #4 from Boris Zbarsky <bzbarsky@mit.edu> 2011-10-25 03:28:17 UTC ---
> One benefit is that you don't have to track origin once you lose the
> HTMLImageElement object.

At least in Gecko; this is not a huge hardship: it's a single pointer in the
pattern data structure....  It's stored when the pattern is created, along with
the actual image data.

> I believe WebKit computes the taint bit for the pattern when createPattern is
> called.

That sounds pretty equivalent to what we do.

> Is there a test for this?

Yes:

http://test.w3.org//html/tests/submission/PhilipTaylor/canvas/security.pattern.canvas.fillStyle.html
http://test.w3.org//html/tests/submission/PhilipTaylor/canvas/security.pattern.canvas.strokeStyle.html
http://test.w3.org//html/tests/submission/PhilipTaylor/canvas/security.pattern.image.fillStyle.html
http://test.w3.org//html/tests/submission/PhilipTaylor/canvas/security.pattern.image.strokeStyle.html

See also https://bugzilla.mozilla.org/show_bug.cgi?id=693051 which was filed on
Gecko not passing those tests.  We can switch to doing that, obviously, but
we're not sure that's the best behavior going forward...

-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
Received on Tuesday, 25 October 2011 03:28:23 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 20:02:06 UTC