We need to make SecurityOrigin thread safe, i.e., the way to initialize static values in SecurityOrigin and other classes it calls. Considering moving all statics into one place and use TLS. Currently we assume that main thread will initialize a document and thus create a SecurityOrigin before any other thread that uses WebKit is run.
I don't think TLS is a good answer. What if someone modifies these tables lazily?
Yes, I do not see how TLS would be relevant here. What we really need is to move SecurityOrigin checks out of XMLHttpRequest and into DocumentThreadableLoader.
> What we really need is to move SecurityOrigin checks out of XMLHttpRequest and > into DocumentThreadableLoader. So that makes this bug WONTFIX right? The implication being that SecurityOrigin checks will then only run on the WebKit main thread.
Resolving as WONTFIX per comment 3 and due to general inactivity.