angler-fishThe Vulnerability History Project

Fix crash when accessing Event::path(). Now with de-flaked test.

      This is a re-try of crrev.com/516843004. In order to de-flake the test,
the nextIframeLoaded function checks whether finishJSTest (called from
within that function) has already been called, thus ensuring that the
guts of the test will only be executed once.

BUG=400476
R=haraken@chromium.org

Review URL: https://codereview.chromium.org/533633002

git-svn-id: svn://svn.chromium.org/blink/trunk@181234 bbb929c8-8fbe-4397-9dbb-9b2b20218538
by Trevor the Gibbon 2014-09-02 12:34:05 UTC
commit 4fa78b4d12db5b5511c6d2a28e098a0c96cfcfd8
Chromium Fix CVE-2014-3190
third_party/WebKit/LayoutTests/http/tests/dom/crash-on-querying-event-path-expected.txt
-11
third_party/WebKit/LayoutTests/http/tests/dom/crash-on-querying-event-path.html
-48
third_party/WebKit/Source/core/events/Event.cpp
+1 -1
third_party/WebKit/Source/core/events/Event.h
+1 -1
expand_less