Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(198)

Unified Diff: Source/WebCore/ChangeLog

Issue 10116046: Merge 113287 - Auto-size may not work on first load (Closed) Base URL: http://svn.webkit.org/repository/webkit/branches/chromium/1084/
Patch Set: Created 8 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
Download patch
« no previous file with comments | « no previous file | Source/WebCore/dom/Document.cpp » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: Source/WebCore/ChangeLog
===================================================================
--- Source/WebCore/ChangeLog (revision 114571)
+++ Source/WebCore/ChangeLog (working copy)
@@ -1,3 +1,77 @@
+2012-04-04 Andrei Burago <aburago@chromium.org>
+
+ Auto-size may not work on first load
+ https://bugs.webkit.org/show_bug.cgi?id=82989
+
+ Reviewed by David Levin.
+
+ No new tests. The only known repro scenario involves using chrome with a third-party extension,
+ which makes making a test out of it problematic.
+
+ * dom/Document.cpp:
+ (WebCore::Document::implicitClose):
+ * page/FrameView.cpp:
+ (WebCore::FrameView::autoSizeIfEnabled):
+
+2012-04-04 Adam Barth <abarth@webkit.org>
+
+ XSSAuditor doesn't catch injected srcdoc attributes
+ https://bugs.webkit.org/show_bug.cgi?id=83238
+
+ Reviewed by Daniel Bates.
+
+ <iframe srcdoc> is an XSS injection vector because the srcdoc inherits
+ the security origin of the parent page. This patch updates the XSS
+ auditor to check whether the attribute is injected using the same
+ hueristics we use for inline event handlers.
+
+ Test: http/tests/security/xssAuditor/iframe-srcdoc.html
+
+ * html/parser/XSSAuditor.cpp:
+ (WebCore::XSSAuditor::filterIframeToken):
+ (WebCore::XSSAuditor::eraseDangerousAttributesIfInjected):
+ (WebCore::XSSAuditor::eraseAttributeIfInjected):
+ (WebCore::XSSAuditor::decodedSnippetForAttribute):
+ * html/parser/XSSAuditor.h:
+
+2012-04-04 Leo Yang <leo.yang@torchmobile.com.cn>
+
+ [BlackBerry] Add local: protocol support in KURL for blackberry
+ https://bugs.webkit.org/show_bug.cgi?id=82695
+
+ Reviewed by Rob Buis.
+
+ BlackBerry porting is using local: protocol just as file: protocol
+ with the exception that it sandboxes the path to the application private space.
+
+ * platform/KURL.cpp:
+ (WebCore::KURL::parse):
+ (WebCore::portAllowed):
+
+2012-04-04 Simon Fraser <simon.fraser@apple.com>
+
+ https://bugs.webkit.org/show_bug.cgi?id=82994
+
+ Reviewed by James Robinson.
+
+ Fix an issue when removing elements with reflections from the document.
+
+ Test: compositing/reflections/remove-reflection.html
+
+ * platform/graphics/GraphicsLayer.cpp:
+ (WebCore::GraphicsLayer::willBeDestroyed):
+
+2012-04-04 Charles Wei <charles.wei@torchmobile.com.cn>
+
+ Need using namespace std for system calls in MIMESniffing.cpp
+ https://bugs.webkit.org/show_bug.cgi?id=82706
+
+ Reviewed by Antonio Gomes.
+
+ No new tests, just fix the compile error for BlackBerry porting.
+
+ * platform/network/MIMESniffing.cpp:
+
2012-04-04 Greg Billock <gbillock@google.com>
Switch web intents API to be vendor-prefixed
« no previous file with comments | « no previous file | Source/WebCore/dom/Document.cpp » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698