commit | 52e2a37cc5f36890d6015db7852ead73eac5c36c | [log] [tgz] |
---|---|---|
author | tsepez@chromium.org <tsepez@chromium.org> | Thu Jun 11 20:25:33 2015 |
committer | tsepez@chromium.org <tsepez@chromium.org> | Thu Jun 11 20:25:33 2015 |
tree | 0ae7125f61394fb58fcdb54e92545efd888ecb83 | |
parent | 092a3081e86ccd73db3325b679bcf4f40b39c5a7 [diff] |
Prevent linear-time forcing of tokens by inducing XSSAuditor page blocks. The page itself must control where the fragment to match ends, otherwise leading-substring matches may be induced. The pre-conditions required for this are expected to be uncommon. BUG=498982 Review URL: https://codereview.chromium.org/1179633002 git-svn-id: svn://svn.chromium.org/blink/trunk@196971 bbb929c8-8fbe-4397-9dbb-9b2b20218538