mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

Bug 1148535 - Check if the density descriptor in srcset consists of a valid floating-point number. r=jdm 

MozReview-Commit-ID: 2Q6ybaIrLSt
This commit is contained in:
Edgar Chen 2016-03-14 14:48:58 +08:00
Родитель 16efc40bdc
Коммит fcbded3dbb
2 изменённых файлов: 62 добавлений и 23 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

65
dom/base/ResponsiveImageSelector.cpp
Просмотреть файл

@ -43,6 +43,66 @@ ParseInteger(const nsAString& aString, int32_t& aInt)
nsContentUtils::eParseHTMLInteger_NonStandard )); nsContentUtils::eParseHTMLInteger_NonStandard ));
} }
static bool
ParseFloat(const nsAString& aString, double& aDouble)
{
// Check if it is a valid floating-point number first since the result of
// nsString.ToDouble() is more lenient than the spec,
// https://html.spec.whatwg.org/#valid-floating-point-number
nsAString::const_iterator iter, end;
aString.BeginReading(iter);
aString.EndReading(end);
if (iter == end) {
return false;
}
if (*iter == char16_t('-') && ++iter == end) {
return false;
}
if (nsCRT::IsAsciiDigit(*iter)) {
for (; iter != end && nsCRT::IsAsciiDigit(*iter) ; ++iter);
} else if (*iter == char16_t('.')) {
// Do nothing, jumps to fraction part
} else {
return false;
}
// Fraction
if (*iter == char16_t('.')) {
++iter;
if (iter == end || !nsCRT::IsAsciiDigit(*iter)) {
// U+002E FULL STOP character (.) must be followed by one or more ASCII digits
return false;
}
for (; iter != end && nsCRT::IsAsciiDigit(*iter) ; ++iter);
}
if (iter != end && (*iter == char16_t('e') || *iter == char16_t('E'))) {
++iter;
if (*iter == char16_t('-') || *iter == char16_t('+')) {
++iter;
}
if (iter == end || !nsCRT::IsAsciiDigit(*iter)) {
// Should have one or more ASCII digits
return false;
}
for (; iter != end && nsCRT::IsAsciiDigit(*iter) ; ++iter);
}
if (iter != end) {
return false;
}
nsresult rv;
aDouble = PromiseFlatString(aString).ToDouble(&rv);
return NS_SUCCEEDED(rv);
}
ResponsiveImageSelector::ResponsiveImageSelector(nsIContent *aContent) ResponsiveImageSelector::ResponsiveImageSelector(nsIContent *aContent)
: mOwnerNode(aContent), : mOwnerNode(aContent),
mSelectedCandidateIndex(-1) mSelectedCandidateIndex(-1)
@ -533,9 +593,8 @@ ResponsiveImageDescriptors::AddDescriptor(const nsAString& aDescriptor)
} else if (*descType == char16_t('x')) { } else if (*descType == char16_t('x')) {
// If the value is not a valid floating point number, it doesn't match this // If the value is not a valid floating point number, it doesn't match this
// descriptor, fall through. // descriptor, fall through.
nsresult rv; double possibleDensity = 0.0;
double possibleDensity = PromiseFlatString(valueStr).ToDouble(&rv); if (ParseFloat(valueStr, possibleDensity)) {
if (NS_SUCCEEDED(rv)) {
if (possibleDensity >= 0.0 && if (possibleDensity >= 0.0 &&
mWidth.isNothing() && mWidth.isNothing() &&
mDensity.isNothing() && mDensity.isNothing() &&

20
testing/web-platform/meta/html/semantics/embedded-content/the-img-element/srcset/parse-a-srcset-attribute.html.ini
Просмотреть файл

@ -1,20 +0,0 @@
[parse-a-srcset-attribute.html]
type: testharness
["data:,a 1.x"]
expected: FAIL
["data:,a +1x"]
expected: FAIL
["data:,a 1x" (leading U+2009)]
expected: FAIL
["data:,a 1x" (leading U+200A)]
expected: FAIL
["data:,a 1x" (leading U+200C)]
expected: FAIL
["data:,a 1x" (leading U+200D)]
expected: FAIL