Skip to content
  • weinig@apple.com's avatar
    WebCore: · fbec81e4
    weinig@apple.com authored
            Reviewed by Darin Adler.
    
            Fix for <rdar://problem/5726604> 
            dom-checker: deleting properties of the window object cross-domain should not be allowed
    
            Fix flaw found while testing with dom-checker testing tool (http://code.google.com/p/dom-checker/).
    
            Test: http/tests/security/cross-frame-access-delete.html
    
            * bindings/js/JSDOMWindowCustom.cpp:
            (WebCore::JSDOMWindow::deleteProperty): Override deleteProperty to not delete cross-domain.
            * bindings/js/JSHistoryCustom.cpp:
            (WebCore::JSHistory::deleteProperty): ditto.
            * bindings/js/JSLocation.cpp:
            (WebCore::JSLocation::deleteProperty): ditto.
            * bindings/js/JSLocation.h:
    
            * bindings/scripts/CodeGeneratorJS.pm: Add deleteProperty declaration when CustomDeleteProperty is used.
            * page/DOMWindow.idl: Add CustomDeleteProperty extended attribute.
            * page/History.idl: ditto.
    
    LayoutTests:
    
            Reviewed by Darin Adler.
    
            Test for <rdar://problem/5726604>
            dom-checker: deleting properties of the window object cross-domain should not be allowed
    
            * http/tests/security/cross-frame-access-delete-expected.txt: Added.
            * http/tests/security/cross-frame-access-delete.html: Added.
            * http/tests/security/resources/cross-frame-iframe-for-delete-test.html: Added.
    
    
    
    git-svn-id: http://svn.webkit.org/repository/webkit/trunk@30032 268f45cc-cd09-0410-ab3c-d52691b4dbfc
    fbec81e4