Summary: | sandbox directive in X-WebKit-CSP header unable to create a unique origin | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Adam Barth <abarth> | ||||||||||
Component: | New Bugs | Assignee: | Adam Barth <abarth> | ||||||||||
Status: | RESOLVED FIXED | ||||||||||||
Severity: | Normal | CC: | haraken, japhet, mihaip, sam, webkit.review.bot | ||||||||||
Priority: | P2 | ||||||||||||
Version: | 528+ (Nightly build) | ||||||||||||
Hardware: | Unspecified | ||||||||||||
OS: | Unspecified | ||||||||||||
Attachments: |
|
Description
Adam Barth
2012-05-31 14:55:30 PDT
Created attachment 145164 [details]
Patch
Comment on attachment 145164 [details] Patch Attachment 145164 [details] did not pass mac-ews (mac): Output: http://queues.webkit.org/results/12868326 Created attachment 145185 [details]
Patch
Comment on attachment 145185 [details] Patch Attachment 145185 [details] did not pass mac-ews (mac): Output: http://queues.webkit.org/results/12860493 Created attachment 145196 [details]
Patch
Comment on attachment 145196 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=145196&action=review > Source/WebCore/ChangeLog:14 > + the SandboxOrigin bit. This patch is more complicated than you migh Typo: migh Comment on attachment 145196 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=145196&action=review > Source/WebCore/ChangeLog:11 > + sandbox directive in CSP couldn't create a unique origin. Please add URLs of the relevant specs. > Source/WebCore/dom/Document.cpp:5036 > -void Document::initContentSecurityPolicy() > +void Document::didUpdateSecurityOrigin() Could you swap the order of these two functions so that the diff looks saner? Created attachment 145218 [details]
Patch for landing
Comment on attachment 145218 [details] Patch for landing Clearing flags on attachment: 145218 Committed r119204: <http://trac.webkit.org/changeset/119204> All reviewed patches have been landed. Closing bug. |