From: mjs <mjs@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Date: Tue, 4 Jan 2005 01:28:51 +0000 (+0000)
Subject: WebCore:
X-Git-Url: https://git.webkit.org/?p=WebKit-https.git;a=commitdiff_plain;h=d70d4181e8dec8eb0e50066d5b41c5f1630b1ce2;hp=d70d4181e8dec8eb0e50066d5b41c5f1630b1ce2

WebCore:

        Reviewed by Darin.

	<rdar://problem/3888931> frame naming allows malicious site to bring up a window when you click on a link in another

	Added opener bridge method to help WebKit implement security check
	for named frame visibility.

	* khtml/khtml_part.h:
        * kwq/WebCoreBridge.h:
        * kwq/WebCoreBridge.mm:
        (-[WebCoreBridge opener]):

WebKit:

        Reviewed by Darin.

	<rdar://problem/3888931> frame naming allows malicious site to bring up a window when you click on a link in another

        Implement a security check on name frame visbility. This is the
	same rule as mozilla. You can only target frames by name if you
	are in the same window, have the same domain as the frame or an
	ancestor, or if it's a top level window have the same domain as
	the opener.

        * WebView.subproj/WebFrame.m:
        (-[WebFrame _shouldAllowAccessFrom:]):
        (-[WebFrame _descendantFrameNamed:sourceFrame:]):
        (-[WebFrame findFrameNamed:]):
        * WebView.subproj/WebFramePrivate.h:
        * WebView.subproj/WebView.m:
        (-[WebView _findFrameInThisWindowNamed:sourceFrame:]):
        (-[WebView _findFrameNamed:sourceFrame:]):
        * WebView.subproj/WebViewPrivate.h:


git-svn-id: https://svn.webkit.org/repository/webkit/trunk@8286 268f45cc-cd09-0410-ab3c-d52691b4dbfc
---