DescriptionAdd an extra guard to replaceDocument()
The key of this change is to add an extra guard against rude JS in unload event
handlers.
To add the change in a sane way, this change also includes some refactoring:
* Moving |shouldReuseDefaultView| local variable, which should be computed
beforehand to DocumentInit.
* Splitting replaceDocument into DocuentLoader and FrameLoader.
* Renaming them to replaceDocumentWriteExecutingJavaScriptURL() for clarity.
* Using the FrameLoader API instead of DocumentLoader one from ScriptController.
TEST=unload-mutation-crash.html
R=esprehn@chromium.org, dglazkov@chromium.org, abarth@chromium.org
BUG=405745
Committed: https://src.chromium.org/viewvc/blink?view=rev&revision=180918
Patch Set 1 #
Total comments: 4
Patch Set 2 : Ppdated #
Total comments: 1
Patch Set 3 : Landing #Messages
Total messages: 8 (0 generated)
|