105423 – Web Inspector: deny access from injected script to nodes from document with another origin

RESOLVED FIXED105423

Web Inspector: deny access from injected script to nodes from document with another origin

https://bugs.webkit.org/show_bug.cgi?id=105423

Summary Web Inspector: deny access from injected script to nodes from document with a...

Yury Semikhatsky

Reported 2012-12-19 05:27:21 PST

$0-$4 should not resolve into a node if the node is from inaccessible context. Chromium bug: https://code.google.com/p/chromium/issues/detail?id=31590

Attachments
Patch (7.55 KB, patch) 2012-12-19 05:31 PST, Yury Semikhatsky	pfeldman: review+ webkit-ews: commit-queue-	Details Formatted Diff Diff
Patch with a fix for platforms that use JSC (7.14 KB, patch) 2012-12-19 08:56 PST, Yury Semikhatsky	no flags	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Yury Semikhatsky

Comment 1 2012-12-19 05:31:57 PST

Created attachment 180142 [details] Patch

Early Warning System Bot

Comment 2 2012-12-19 05:38:00 PST

Comment on attachment 180142 [details] Patch Attachment 180142 [details] did not pass qt-ews (qt): Output: http://queues.webkit.org/results/15402694

Early Warning System Bot

Comment 3 2012-12-19 05:39:26 PST

Comment on attachment 180142 [details] Patch Attachment 180142 [details] did not pass qt-wk2-ews (qt): Output: http://queues.webkit.org/results/15411605

EFL EWS Bot

Comment 4 2012-12-19 05:40:07 PST

Comment on attachment 180142 [details] Patch Attachment 180142 [details] did not pass efl-ews (efl): Output: http://queues.webkit.org/results/15412597

Build Bot

Comment 5 2012-12-19 05:47:24 PST

Comment on attachment 180142 [details] Patch Attachment 180142 [details] did not pass win-ews (win): Output: http://queues.webkit.org/results/15412598

Build Bot

Comment 6 2012-12-19 06:19:38 PST

Comment on attachment 180142 [details] Patch Attachment 180142 [details] did not pass mac-ews (mac): Output: http://queues.webkit.org/results/15399715

Yury Semikhatsky

Comment 7 2012-12-19 08:56:32 PST

Created attachment 180178 [details] Patch with a fix for platforms that use JSC

Yury Semikhatsky

Comment 8 2012-12-19 22:42:49 PST

Committed r138228: <http://trac.webkit.org/changeset/138228>

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware All

OS All

Product WebKit

Component Web Inspector (Deprecated)

Assignee

Yury Semikhatsky

Reported

2012-12-19 05:27 PST

Modified

2012-12-19 22:42 PST History

CC List

15 users Show

URL

Keywords

Depends on

Blocks