Branch: refs/heads/main
Home: https://github.com/WebKit/WebKit
Commit: 549ae69ade489f3fa1be1f89b88184f92120b842
https://github.com/WebKit/WebKit/commit/549ae69ade489f3fa1be1f89b88184f92120b842
Author: Matthew Finkel <[email protected]>
Date: 2025-05-30 (Fri, 30 May 2025)
Changed paths:
M Source/WebCore/loader/cache/CachedResourceLoader.cpp
M Source/WebCore/page/Quirks.cpp
M Source/WebCore/page/Quirks.h
Log Message:
-----------
(Regression 15.2) Auto-upgrading some hosts to https that rely on localhost
subresource causes breakage
https://bugs.webkit.org/show_bug.cgi?id=292626
rdar://140368377
Reviewed by Brent Fulgham.
Safari 15.2 enabled a HTTPS auto-upgrade behavior that automatically upgrades
http:// urls to https:// on cross-site navigations. This is generally web
compatible, and both Chrome and Firefox have shipped some version of this for a
few years at this point. However, WebKit does not treat localhost or loopback
connections as secure, unlike Chromium and Gecko, and that causes unique
breakage in some cases. This patch adds a quirk for particularly problematic
hosts where this causes breakage.
Tested manually.
* Source/WebCore/loader/cache/CachedResourceLoader.cpp:
(WebCore::CachedResourceLoader::updateRequestAfterRedirection):
(WebCore::CachedResourceLoader::requestResource):
* Source/WebCore/page/Quirks.cpp:
(WebCore::shouldNotAutoUpgradeToHTTPSInternal):
(WebCore::Quirks::shouldNotAutoUpgradeToHTTPS):
* Source/WebCore/page/Quirks.h:
Canonical link: https://commits.webkit.org/295624@main
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
