re-add link context, add tests for audio and source

Narretz · Narretz · commit 1278b7acac99 · 2016-08-17T22:32:11.000+02:00
diff --git a/src/ng/compile.js b/src/ng/compile.js
@@ -3160,7 +3160,9 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {
         }
       // maction[xlink:href] can source SVG.  It's not limited to <maction>.
       } else if (attrNormalizedName === 'xlinkHref' ||
-          (tag === 'form' && attrNormalizedName === 'action')
+          (tag === 'form' && attrNormalizedName === 'action') ||
+          // links can be stylesheets or imports, which can run script in the current origin
+          (tag === 'link' && attrNormalizedName === 'href')
       ) {
         return $sce.RESOURCE_URL;
       }
diff --git a/test/ng/compileSpec.js b/test/ng/compileSpec.js
@@ -10152,25 +10152,27 @@ describe('$compile', function() {
     }));
 
     // Older IEs seem to reject the video tag with "Error: Not implemented"
-    if (!msie || msie > 9) {
-      it('should NOT require trusted values for video src',
-          inject(function($rootScope, $compile, $sce) {
-        element = $compile('<video src="{{testUrl}}"></video>')($rootScope);
-        $rootScope.testUrl = 'http://example.com/image.mp4';
-        $rootScope.$digest();
-        expect(element.attr('src')).toEqual('http://example.com/image.mp4');
+    // if (!msie || msie > 9) {
+      they('should NOT require trusted values for $prop src', ['video', 'audio', 'source'],
+      function(tag) {
+        inject(function($rootScope, $compile, $sce) {
+          element = $compile('<' + tag + ' src="{{testUrl}}"></' + tag + '>')($rootScope);
+          $rootScope.testUrl = 'http://example.com/image.mp4';
+          $rootScope.$digest();
+          expect(element.attr('src')).toEqual('http://example.com/image.mp4');
 
-        // But it should accept trusted values anyway.
-        $rootScope.testUrl = $sce.trustAsUrl('http://example.com/image2.mp4');
-        $rootScope.$digest();
-        expect(element.attr('src')).toEqual('http://example.com/image2.mp4');
+          // But it should accept trusted values anyway.
+          $rootScope.testUrl = $sce.trustAsUrl('http://example.com/image2.mp4');
+          $rootScope.$digest();
+          expect(element.attr('src')).toEqual('http://example.com/image2.mp4');
 
-        // and trustedResourceUrls for retrocompatibility
-        $rootScope.testUrl = $sce.trustAsResourceUrl('http://example.com/image3.mp4');
-        $rootScope.$digest();
-        expect(element.attr('src')).toEqual('http://example.com/image3.mp4');
-      }));
-    }
+          // and trustedResourceUrls for retrocompatibility
+          $rootScope.testUrl = $sce.trustAsResourceUrl('http://example.com/image3.mp4');
+          $rootScope.$digest();
+          expect(element.attr('src')).toEqual('http://example.com/image3.mp4');
+        });
+      });
+    // }
   });
 
   describe('img[src] sanitization', function() {

Original file line number	Diff line number	Diff line change
`@@ -3160,7 +3160,9 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {`
`3160`	`3160`	`}`
`3161`	`3161`	`// maction[xlink:href] can source SVG. It's not limited to <maction>.`
`3162`	`3162`	`} else if (attrNormalizedName === 'xlinkHref' \|\|`
`3163`		`- (tag === 'form' && attrNormalizedName === 'action')`
	`3163`	`+ (tag === 'form' && attrNormalizedName === 'action') \|\|`
	`3164`	`+ // links can be stylesheets or imports, which can run script in the current origin`
	`3165`	`+ (tag === 'link' && attrNormalizedName === 'href')`
`3164`	`3166`	`) {`
`3165`	`3167`	`return $sce.RESOURCE_URL;`
`3166`	`3168`	`}`