| commit | 46b2f19290555de613e09226348ae711db179f58 | [log] [tgz] |
|---|---|---|
| author | mkwst <mkwst@chromium.org> | Thu Nov 24 21:48:42 2016 |
| committer | Commit bot <commit-bot@chromium.org> | Thu Nov 24 21:51:15 2016 |
| tree | 106fad2faaaca5386dbb9bd6a0abd80aa21b73ea | |
| parent | 7fa3a9ec199292a46257054e8c30b19e77fa75c7 [diff] |
XSS Auditor: Block by default. This patch changes the default behavior of the XSS auditor from "filter" to "block". It also fixes a bug exposed by this change: blocking a page in the middle of parsing/processing `document.write()` crashes the renderer due to a null deref. The vast majority of this change is changing layout tests to specify filtering behavior rather than default behavior. Intent to Ship: https://groups.google.com/a/chromium.org/d/msg/blink-dev/aZsNygF84JM/86EbD_q0CAAJ BUG=654794 Review-Url: https://codereview.chromium.org/2524013002 Cr-Commit-Position: refs/heads/master@{#434392}