servo

mirror of https://github.com/servo/servo synced 2026-05-10 17:12:23 +02:00

Files

Andrei Volykhin 6a1a3aea08 html: Allow legacy referrer policies only for <meta> referrer (#39506 )

Follow the HTML specification and allow to use legacy referrer policies
(never/default/always/origin-when-crossorigin) only with 'meta'
referrer.

See https://html.spec.whatwg.org/multipage/#meta-referrer (step 5)

While for another HTML elements with 'referrerpolicy' content attribute
(https://html.spec.whatwg.org/multipage/#referrer-policy-attribute)
and for 'Referrer-Policy' HTTP header

(https://w3c.github.io/webappsec-referrer-policy/#referrer-policy-header-dfn)
the referrer policy should be determine from the standard policy tokens
(https://w3c.github.io/webappsec-referrer-policy/#referrer-policy).

So unknown policy values (legacy from meta-referrer) will be ignored
and determine as 'ReferrerPolicy::EmptyString'.

Testing: No changes

Fixes: #36833

Signed-off-by: Andrei Volykhin <andrei.volykhin@gmail.com>

2025-09-30 16:29:24 +00:00

fetch

Use spec compliant content-type extraction in more places and enable a <stylesheet> quirk (#28321 )

2025-05-19 11:38:01 +00:00

tests

Hookup mime classifier to main document loader (#39109 )

2025-09-04 08:30:55 +00:00

blob_url_store.rs

Fix more clippy warnings in components/shared/net (#31548 )

2024-03-10 17:47:38 +00:00

Cargo.toml

Cargo.toml cleanup (#39403 )