angler-fishThe Vulnerability History Project

2009-10-07 Anton Muhin <antonm@chromium.org>

      Reviewed by Adam Barth.

        Fetch pointers to C++ DOM window immediately from holder
        object (do not search prototype chain for proper JS wrapper).
        https://bugs.webkit.org/show_bug.cgi?id=29031

        * bindings/scripts/CodeGeneratorV8.pm:
        * bindings/v8/V8DOMWrapper.cpp:
        (WebCore::V8DOMWrapper::getTemplate):
        * bindings/v8/V8Proxy.cpp:
        (WebCore::V8Proxy::createNewContext):
        (WebCore::V8Proxy::installDOMWindow):
        * bindings/v8/custom/V8DOMWindowCustom.cpp:
        (WebCore::ACCESSOR_GETTER):
        (WebCore::ACCESSOR_SETTER):
        (WebCore::INDEXED_PROPERTY_GETTER):
        (WebCore::NAMED_PROPERTY_GETTER):
        (WebCore::NAMED_ACCESS_CHECK):

git-svn-id: svn://svn.chromium.org/blink/trunk@49248 bbb929c8-8fbe-4397-9dbb-9b2b20218538
by Archie the Himalayan 2009-10-07 16:59:07 UTC
commit d7e92a5c92713040815fe7da1697e098d68f5384
Chromium
third_party/WebKit/WebCore/ChangeLog
-21
third_party/WebKit/WebCore/bindings/scripts/CodeGeneratorV8.pm
-12
third_party/WebKit/WebCore/bindings/v8/V8DOMWrapper.cpp
-1
third_party/WebKit/WebCore/bindings/v8/V8Proxy.cpp
-3
third_party/WebKit/WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp
+15 -5
expand_less