LibWeb/SVG: Respect script element type attribute

Previously, scripts would run regardless of the value of this attribute.
Author: https://github.com/tcl3 Commit: d114f13029 Pull-request: https://github.com/LadybirdBrowser/ladybird/pull/3703 Reviewed-by: https://github.com/awesomekling ✅
2025-07-29 20:29:18 +00:00 · 2025-02-26 12:53:43 +00:00 · 2025-02-26 12:53:43 +00:00 · d114f13029 · 2025-02-26 15:09:48 +00:00
commit d114f13029
parent f4c4d3c780
5 changed files with 654 additions and 1 deletions
--- a/Tests/LibWeb/Text/input/wpt-import/html/semantics/scripting-1/the-script-element/resources/script-type-and-language-js.js
+++ b/Tests/LibWeb/Text/input/wpt-import/html/semantics/scripting-1/the-script-element/resources/script-type-and-language-js.js
@ -0,0 +1,141 @@
+function testAttribute(attr, val, shouldRun) {
+  test(function() {
+    assert_false(window.ran, "ran variable not reset");
+    let script;
+    if (document.contentType === 'image/svg+xml') {
+      // SVG
+      script = document.createElementNS("http://www.w3.org/2000/svg", "script");
+    } else {
+      // HTML or XHTML
+      script = document.createElement("script");
+    }
+    script.setAttribute(attr, val);
+    script.textContent = "window.ran = true;";
+    document.querySelector('#script-placeholder').appendChild(script);
+    assert_equals(window.ran, shouldRun);
+  }, "Script should" + (shouldRun ? "" : "n't") + " run with " + attr + "=" +
+     format_value(val));
+  window.ran = false;
+}
+function testTypeShouldRun(type) {
+  testAttribute("type", type, true);
+}
+function testLanguageShouldRun(lang) {
+  testAttribute("language", lang, true);
+}
+function testTypeShouldNotRun(type) {
+  testAttribute("type", type, false);
+}
+function testLanguageShouldNotRunUnlessSVG(lang) {
+  // In SVGs, there is no concrete spec but all browsers agree that
+  // language attributes have no effects and thus script elements
+  // without type attributes are always expected to run regardless of
+  // language attributes.
+  const expectedToRun = document.contentType === 'image/svg+xml';
+  testAttribute("language", lang, expectedToRun);
+}
+
+// Unlike `test*()` methods above, there should be a (parser-inserted) script
+// with an invalid type/language that would set `window.ran` to true just
+// before `testParserInsertedDidNotRun()`, and
+// `testParserInsertedDidNotRun()` asserts that the script did not run.
+// `window.ran` should be reset where needed. For example:
+//   <script>window.ran = false;</script>
+//   <script type="invalid-type">window.ran = true;</script>
+//   <script>testParserInsertedDidNotRun('type=invalid-type');</script>
+function testParserInsertedDidNotRun(description) {
+  test(() => assert_false(window.ran),
+       "Script shouldn't run with " + description + " (parser-inserted)");
+  window.ran = false;
+}
+
+// When prefixed by "application/", these match with
+// https://mimesniff.spec.whatwg.org/#javascript-mime-type
+const application = [
+  "ecmascript",
+  "javascript",
+  "x-ecmascript",
+  "x-javascript"
+];
+
+// When prefixed by "text/", these match with
+// https://mimesniff.spec.whatwg.org/#javascript-mime-type
+const text = [
+  "ecmascript",
+  "javascript",
+  "javascript1.0",
+  "javascript1.1",
+  "javascript1.2",
+  "javascript1.3",
+  "javascript1.4",
+  "javascript1.5",
+  "jscript",
+  "livescript",
+  "x-ecmascript",
+  "x-javascript"
+];
+
+const legacyTypes = [
+  "javascript1.6",
+  "javascript1.7",
+  "javascript1.8",
+  "javascript1.9"
+];
+
+const spaces = [" ", "\t", "\n", "\r", "\f"];
+
+window.ran = false;
+
+// Type attribute
+
+testTypeShouldRun("");
+testTypeShouldNotRun(" ");
+
+application.map(t => "application/" + t).forEach(testTypeShouldRun);
+application.map(t => ("application/" + t).toUpperCase()).forEach(
+    testTypeShouldRun);
+
+spaces.forEach(function(s) {
+  application.map(t => "application/" + t + s).forEach(testTypeShouldRun);
+  application.map(t => s + "application/" + t).forEach(testTypeShouldRun);
+});
+
+application.map(t => "application/" + t + "\0").forEach(testTypeShouldNotRun);
+application.map(t => "application/" + t + "\0foo").forEach(
+    testTypeShouldNotRun);
+
+text.map(t => "text/" + t).forEach(testTypeShouldRun);
+text.map(t => ("text/" + t).toUpperCase()).forEach(testTypeShouldRun);
+
+legacyTypes.map(t => "text/" + t).forEach(testTypeShouldNotRun);
+
+spaces.forEach(function(s) {
+  text.map(t => "text/" + t + s).forEach(testTypeShouldRun);
+  text.map(t => s + "text/" + t).forEach(testTypeShouldRun);
+});
+
+text.map(t => "text/" + t + "\0").forEach(testTypeShouldNotRun);
+text.map(t => "text/" + t + "\0foo").forEach(testTypeShouldNotRun);
+
+text.forEach(testTypeShouldNotRun);
+legacyTypes.forEach(testTypeShouldNotRun);
+
+// Language attribute
+
+testLanguageShouldRun("");
+testLanguageShouldNotRunUnlessSVG(" ");
+
+text.forEach(testLanguageShouldRun);
+text.map(t => t.toUpperCase()).forEach(testLanguageShouldRun);
+
+legacyTypes.forEach(testLanguageShouldNotRunUnlessSVG);
+
+spaces.forEach(function(s) {
+  text.map(t => t + s).forEach(testLanguageShouldNotRunUnlessSVG);
+  text.map(t => s + t).forEach(testLanguageShouldNotRunUnlessSVG);
+});
+text.map(t => t + "xyz").forEach(testLanguageShouldNotRunUnlessSVG);
+text.map(t => "xyz" + t).forEach(testLanguageShouldNotRunUnlessSVG);
+
+text.map(t => t + "\0").forEach(testLanguageShouldNotRunUnlessSVG);
+text.map(t => t + "\0foo").forEach(testLanguageShouldNotRunUnlessSVG);
--- a/Tests/LibWeb/Text/input/wpt-import/html/semantics/scripting-1/the-script-element/script-type-and-language-js-svg.svg
+++ b/Tests/LibWeb/Text/input/wpt-import/html/semantics/scripting-1/the-script-element/script-type-and-language-js-svg.svg
@ -0,0 +1,37 @@
+<?xml version="1.0" standalone="no"?>
+<svg xmlns="http://www.w3.org/2000/svg"
+     xmlns:h="http://www.w3.org/1999/xhtml">
+<metadata>
+  <h:link rel="help" href="https://html.spec.whatwg.org/multipage/#scriptingLanguages" />
+  <h:link rel="help" href="https://html.spec.whatwg.org/multipage/#prepare-a-script" />
+</metadata>
+<h:script src="../../../../resources/testharness.js"/>
+<h:script src="../../../../resources/testharnessreport.js"/>
+<h:div id="script-placeholder"/>
+<h:script src="resources/script-type-and-language-js.js"/>
+<script>window.ran = false;</script>
+<script type="javascript">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript');</script>
+<script type="javascript1.0">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.0');</script>
+<script type="javascript1.1">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.1');</script>
+<script type="javascript1.2">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.2');</script>
+<script type="javascript1.3">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.3');</script>
+<script type="javascript1.4">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.4');</script>
+<script type="javascript1.5">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.5');</script>
+<script type="javascript1.6">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.6');</script>
+<script type="javascript1.7">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=javascript1.7');</script>
+<script type="livescript">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=livescript');</script>
+<script type="ecmascript">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=ecmascript');</script>
+<script type="jscript">window.ran = true;</script>
+<script>testParserInsertedDidNotRun('type=jscript');</script>
+</svg>