Source/core/frame/DOMWindow.cpp - Issue 1320523002: Merge 201139 "Use Document of callingWindow for access check in ..."

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: Source/core/frame/DOMWindow.cpp

Issue 1320523002: Merge 201139 "Use Document of callingWindow for access check in ..." (Closed) Base URL: svn://svn.chromium.org/blink/branches/chromium/2490/

Patch Set: Created 5 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 // Copyright 2014 The Chromium Authors. All rights reserved.	1 // Copyright 2014 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #include "config.h"	5 #include "config.h"

6 #include "core/frame/DOMWindow.h"	6 #include "core/frame/DOMWindow.h"

7	7

8 #include "bindings/core/v8/ScriptCallStackFactory.h"	8 #include "bindings/core/v8/ScriptCallStackFactory.h"

9 #include "core/dom/Document.h"	9 #include "core/dom/Document.h"

10 #include "core/dom/ExceptionCode.h"	10 #include "core/dom/ExceptionCode.h"

(...skipping 119 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
130	130

131 // If this DOMWindow isn't currently active in the Frame, then there's no	131 // If this DOMWindow isn't currently active in the Frame, then there's no

132 // way we should allow the access.	132 // way we should allow the access.

133 if (isCurrentlyDisplayedInFrame()) {	133 if (isCurrentlyDisplayedInFrame()) {

134 // FIXME: Is there some way to eliminate the need for a separate "callin gWindow == this" check?	134 // FIXME: Is there some way to eliminate the need for a separate "callin gWindow == this" check?

135 if (&callingWindow == this)	135 if (&callingWindow == this)

136 return false;	136 return false;

137	137

138 // FIXME: The name canAccess seems to be a roundabout way to ask "can ex ecute script".	138 // FIXME: The name canAccess seems to be a roundabout way to ask "can ex ecute script".

139 // Can we name the SecurityOrigin function better to make this more clea r?	139 // Can we name the SecurityOrigin function better to make this more clea r?

140 if (callingWindow.frame()->securityContext()->securityOrigin()->canAcces sCheckSuborigins(frame()->securityContext()->securityOrigin()))	140 if (callingWindow.document()->securityOrigin()->canAccessCheckSuborigins (frame()->securityContext()->securityOrigin()))

141 return false;	141 return false;

142 }	142 }

143	143

144 callingWindow.printErrorMessage(crossDomainAccessErrorMessage(&callingWindow ));	144 callingWindow.printErrorMessage(crossDomainAccessErrorMessage(&callingWindow ));

145 return true;	145 return true;

146 }	146 }

147	147

148 void DOMWindow::resetLocation()	148 void DOMWindow::resetLocation()

149 {	149 {

150 // Location needs to be reset manually because it doesn't inherit from DOMWi ndowProperty.	150 // Location needs to be reset manually because it doesn't inherit from DOMWi ndowProperty.

(...skipping 177 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
328 m_windowIsClosing = true;	328 m_windowIsClosing = true;

329 }	329 }

330	330

331 DEFINE_TRACE(DOMWindow)	331 DEFINE_TRACE(DOMWindow)

332 {	332 {

333 visitor->trace(m_location);	333 visitor->trace(m_location);

334 EventTargetWithInlineData::trace(visitor);	334 EventTargetWithInlineData::trace(visitor);

335 }	335 }

336	336

337 } // namespace blink	337 } // namespace blink

OLD	NEW

« no previous file with comments | « LayoutTests/http/tests/security/location-change-from-detached-DOMWindow-expected.txt ('k') | no next file » | no next file with comments »