The context: This is a part of the URL interop 2023. Please see the CL's description [1] for more details. A reviewer recommended sending I2S [2] for this change. There was also a discussion regarding a potential risk [3].
--
Chrome currently considers a URL invalid if the URL's path part
contains "%00" (or null), which is not compliant with the URL Standard
[4]. For example, the following test fails in Chrome because `new
URL(..)` throws an Invalid URL exception.
assertEquals(new URL("http://example.com/%00").pathname, "/%00");
According to the URL Standard, any character or byte sequence in URL
path should not make the URL invalid.
Note: In other parts of URL, "%00" may still be considered invalid. For example,
new URL("http://example%00.com/");
throws an exception because "%00" is not a valid host codepoint.
- [1] https://crrev.com/c/4596360
- [2] https://crrev.com/c/4596360/comments/07cdcc45_545df600
- [3] https://crrev.com/c/4596360/comments/07c373bd_74564864?tab=comments
- [4] https://url.spec.whatwg.org/
Shipping on desktop | 117 |
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAFpjS_2QN_6E_ianHrUVi%3DcR1J1x-nnmEg4N-A1t_jx8xwL9FA%40mail.gmail.com.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/badb0c43-3bc8-95ea-72fe-278f905831bb%40gmail.com.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/badb0c43-3bc8-95ea-72fe-278f905831bb%40gmail.com.
To view this discussion on the web visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAFUtAY9ZD46H%3DSkOgTgJ1D-cYqo-qiiwPwxASvHLQ9%2BbeNs73w%40mail.gmail.com.