Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update handling of timer functions #481

Merged
merged 3 commits into from
Mar 27, 2024
Merged

Update handling of timer functions #481

merged 3 commits into from
Mar 27, 2024

Conversation

lukewarlow
Copy link
Member

@lukewarlow lukewarlow commented Mar 14, 2024
edited by pr-preview bot
Loading

Fixes #480

This effectively follows the Chromium implementation, we use the StringContext attribute to do the enforcement for setTimeout and setInterval and then update the HostEnsureCanCompileStrings call (which now actually calls the CSP function directly) accordingly.

We then update EnsureCSPDoesNotBlockStringCompilation to only do TT validation for eval and Function, not timers.

Preview | Diff

@lukewarlow lukewarlow requested a review from koto March 14, 2024 16:49
lukewarlow
lukewarlow commented Mar 14, 2024
View reviewed changes
spec/index.bs
* |sink| set to `Window setInterval` if <var ignore>repeat</var> is true, `Window setTimeout` otherwise.
* |sinkGroup| set to `'script'`.

Note: This matches the logic that the extended attribute would apply.
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We use the string context here, so no need to do any of this block.

lukewarlow
lukewarlow commented Mar 14, 2024
View reviewed changes
spec/index.bs Outdated Show resolved Hide resolved
@lukewarlow
Copy link
Member Author

@otherdaniel you implemented this functionality in Chromium iirc would you be able to take a quick look over this PR to sanity check it?

mbrodesser-Igalia
mbrodesser-Igalia reviewed Mar 26, 2024
View reviewed changes
spec/index.bs Outdated Show resolved Hide resolved
otherdaniel
otherdaniel reviewed Mar 26, 2024
View reviewed changes
Copy link
Member

@otherdaniel otherdaniel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you. Generally, this looks exactly right to me!

There's one editorial nitpick with the note.
The other issue is about the definition of |compilationType|, where I might well be overlooking something. Would be good to get that resolved.

spec/index.bs Show resolved Hide resolved
spec/index.bs Show resolved Hide resolved
mbrodesser-Igalia
mbrodesser-Igalia reviewed Mar 27, 2024
View reviewed changes
spec/index.bs Outdated Show resolved Hide resolved
mbrodesser-Igalia
mbrodesser-Igalia reviewed Mar 27, 2024
View reviewed changes
spec/index.bs Outdated Show resolved Hide resolved
@lukewarlow
Copy link
Member Author

Based on @otherdaniel review I'm going to go ahead and merge this

@lukewarlow lukewarlow merged commit 39cc82e into w3c:main Mar 27, 2024
2 checks passed
github-actions bot added a commit that referenced this pull request Mar 27, 2024
@lukewarlow @github-actions
Update handling of timer functions (#481)
9c0db44 
SHA: 39cc82e
Reason: push, by lukewarlow

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@otherdaniel otherdaniel otherdaniel left review comments

@mbrodesser-Igalia mbrodesser-Igalia mbrodesser-Igalia left review comments

@koto koto Awaiting requested review from koto

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

HTML timers as specced won't work
3 participants
@lukewarlow @otherdaniel @mbrodesser-Igalia