-
weinig@apple.com authored
Reviewed by Darin Adler. Fix for <rdar://problem/5726604> dom-checker: deleting properties of the window object cross-domain should not be allowed Fix flaw found while testing with dom-checker testing tool (http://code.google.com/p/dom-checker/). Test: http/tests/security/cross-frame-access-delete.html * bindings/js/JSDOMWindowCustom.cpp: (WebCore::JSDOMWindow::deleteProperty): Override deleteProperty to not delete cross-domain. * bindings/js/JSHistoryCustom.cpp: (WebCore::JSHistory::deleteProperty): ditto. * bindings/js/JSLocation.cpp: (WebCore::JSLocation::deleteProperty): ditto. * bindings/js/JSLocation.h: * bindings/scripts/CodeGeneratorJS.pm: Add deleteProperty declaration when CustomDeleteProperty is used. * page/DOMWindow.idl: Add CustomDeleteProperty extended attribute. * page/History.idl: ditto. LayoutTests: Reviewed by Darin Adler. Test for <rdar://problem/5726604> dom-checker: deleting properties of the window object cross-domain should not be allowed * http/tests/security/cross-frame-access-delete-expected.txt: Added. * http/tests/security/cross-frame-access-delete.html: Added. * http/tests/security/resources/cross-frame-iframe-for-delete-test.html: Added. git-svn-id: http://svn.webkit.org/repository/webkit/trunk@30032 268f45cc-cd09-0410-ab3c-d52691b4dbfc
fbec81e4