A blocked script which sits in the in-memory cache can be executed #73
Comments
|
No Trying to figure something else. Maybe I don't have the choice but use |
|
Since the bug may show up only if the script was allowed to run at least once, I lowered the priority. |
|
When this: https://code.google.com/p/chromium/issues/detail?id=94090 is fixed, bug here should be fixed. |
|
Above is wrong. Problem is that for an embedded web page in an iframe, |
Test case:
http://www.raymondhill.net/httpsb/httpsb-test-js-1.html
www.raymondhill.netandwww.xenu-directory.netJavascript works, as expected.
www.xenu-directory.netJavascript is blocked for the static reference to external file on blacklisted host, but (curiously) runs for dynamic reference to blacklisted host.
No explicit web request was fired by chromium for the dynamically constructed javascript tag. This must be the reason:
http://developer.chrome.com/extensions/webRequest.html#caching
Although I have no idea why the static reference would not also sit in the in-memory cache..
Conditions for this bug to happen:
www.xenu-directory.net, than blockwww.xenu-directory.net)www.raymondhill.nethere)Thus it won't happen if the script was never loaded, however I still consider this a serious bug: in that specific instance, HTTPSB doesn't do what it says it is doing.
Chrome doc says to call
handlerBehaviorChanged(), but at the same time they say it "shouldn't be called often"... So I will have to find a solution which doesn't rely onhandlerBehaviorChanged(), as there is no way I can control what the user does.I will have to consider
beforeloadevent.The text was updated successfully, but these errors were encountered: