Intent to Implement and Ship: Make URL parser to not decode percent-encoded ASCII character in URL's path
171 views
Skip to first unread message
Hayato Ito
Aug 4, 2023, 3:53:59 AM8/4/23
to blink-dev
Contact emails
hay...@chromium.orgSpecification
https://url.spec.whatwg.org/Summary
Make URL parser to not decode percent-encoded ASCII characters in URL's path, such as "%41" ('A'). Before this change: > const url = new URL("http://example.com/%41"); > url.href "http://example.com/A" After this change: > const url = new URL("http://example.com/%41"); > url.href "http://example.com/%41"
Blink component
Blink>NetworkTAG review
NoneTAG review status
Not applicableRisks
Interoperability and Compatibility
Gecko: Shipped/Shipping
WebKit: Shipped/Shipping
I'd like to collect feedback about possible risks widely through this thread.
The usage (Canary): 0.000106% (URL.Path.UnescapeEscapedChar).
The usage (Canary): 0.000106% (URL.Path.UnescapeEscapedChar).
This usage is not specific to any particular use case and can be considered a theoretical upper bound. The actual breakage is likely much lower than this number.
--
Will this feature be supported on all six Blink platforms (Windows, Mac, Linux, Chrome OS, Android, and Android WebView)?
YesIs this feature fully tested by web-platform-tests?
YesTracking bug
https://crbug.com/1252531Link to entry on the Chrome Platform Status
https://chromestatus.com/feature/6389236793606144Hayato
TAMURA, Kent
Aug 10, 2023, 1:08:32 PM8/10/23
to Hayato Ito, blink-dev
LGTM1. It seems to have very low risk.
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAFpjS_2-4PAY47VbDdd%2BHS%2BchmNUc9dW3BsRtW33LDr1QOeLGw%40mail.gmail.com.
TAMURA, Kent
Software Engineer, Google
Software Engineer, Google
Mike Taylor
Aug 11, 2023, 11:15:58 AM8/11/23
to TAMURA, Kent, Hayato Ito, blink-dev
I'm having a hard time assessing the risk, despite the very low
usage (it has doubled since the original email was sent - but
still very low) and other browsers shipping it.
That said, LGTM2 % having a base::Feature we can use as a
killswitch, in case we discover something we didn't anticipate.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAGH7WqHcCModrUAQ%3DGJx-oiLcEmBwi%2BjU0ONCpnNWh%3Dp_THRdg%40mail.gmail.com.
Daniel Bratell
Aug 16, 2023, 8:47:29 AM8/16/23
to Mike Taylor, TAMURA, Kent, Hayato Ito, blink-dev
Compatibility is nice.
LGTM3, but note Mike's request
/Daniel
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/b674e07c-7804-41d5-b8f5-7ada6295651b%40chromium.org.
Hayato Ito
Aug 16, 2023, 9:11:48 PM8/16/23
to Daniel Bratell, Mike Taylor, TAMURA, Kent, blink-dev
Thanks for the LGTMs. I appreciate it.
Let me implement and ship with a feature flag so that we can have a kill switch.
Let me implement and ship with a feature flag so that we can have a kill switch.
Hayato
Reply all
Reply to author
Forward
0 new messages