Closed
Bug 563322
Opened 15 years ago
Closed 14 years ago
Does nsGenericHTMLElement::SetInnerHTML need to call scriptloader->SetEnabled(...)
Categories
(Core :: DOM: Core & HTML, defect)
Tracking
()
RESOLVED
FIXED
mozilla8
People
(Reporter: smaug, Assigned: hsivonen)
References
Details
(Whiteboard: [inbound])
Attachments
(4 files, 1 obsolete file)
|
2.85 KB,
patch
|
smaug
:
review+
|
Details | Diff | Splinter Review |
|
16.81 KB,
patch
|
smaug
:
review+
|
Details | Diff | Splinter Review |
|
2.27 KB,
patch
|
smaug
:
review+
|
Details | Diff | Splinter Review |
|
1.18 KB,
patch
|
smaug
:
review+
|
Details | Diff | Splinter Review |
|
||
Comment 1•15 years ago
|
||
From bug 562013 comment 29:
> Is this script disabling and re-enabling for <script> elements or also for
> something else?
As far as I know, it's just for <script> elements. The change to scriptloader was made in bug 299231. The change to do something for scripts at all was bug 116834.
So if the HTML5 parser guarantees that the <script>s from inside innerHTML won't run, this code can go away.
We do want to make sure that those <script>s get their mIsEvaluated flag set though. Otherwise these scripts could run unexpectedly if their parent is moved around in the DOM.
Not sure how that affects things?
|
|
||
Comment 4•15 years ago
|
||
> We do want to make sure that those <script>s get their mIsEvaluated flag set
Sure. It is. Right here: http://hg.mozilla.org/mozilla-central/file/1acce93e0198/parser/html/nsHtml5TreeOpExecutor.cpp#l693
(On a somewhat unrelated note we have a similar call in the frameset case in the old parser that doesn't happen in the new one... should it?)
|
Assignee | |
Comment 5•15 years ago
|
||
In the fragment mode, the HTML5 parser takes care of preventing execution per spec. Inside framesets, the HTML5 parser discards scripts without putting them into the DOM.
|
|
Assignee | |
Updated•14 years ago
|
Assignee: nobody → hsivonen
Status: NEW → ASSIGNED
|
|
Assignee | |
Comment 6•14 years ago
|
||
|
|
Assignee | |
Comment 7•14 years ago
|
||
Attachment #522995 -
Attachment is obsolete: true
|
|
Assignee | |
Comment 8•14 years ago
|
||
|
|
Assignee | |
Comment 9•14 years ago
|
||
|
|
Assignee | |
Updated•14 years ago
|
Attachment #523265 -
Flags: review?(Olli.Pettay)
|
|
Assignee | |
Updated•14 years ago
|
Attachment #523266 -
Flags: review?(Olli.Pettay)
|
|
Assignee | |
Updated•14 years ago
|
Attachment #523267 -
Flags: review?(Olli.Pettay)
|
Reporter | |
Updated•14 years ago
|
Attachment #523265 -
Flags: review?(Olli.Pettay) → review+
|
|
Reporter | |
Updated•14 years ago
|
Attachment #523267 -
Flags: review?(Olli.Pettay) → review+
|
|
Reporter | |
Comment 10•14 years ago
|
||
Comment on attachment 523266 [details] [diff] [review]
Part 2: XML case (changes behavior to spec compliance)
>+ // True to call prevent script execution in the fragment mode.
>+ PRUint8 mPreventScriptExecution : 1;
>+
I think contentsink has zeroing new, but couldn't find it now.
But if we have, this is ok.
Attachment #523266 -
Flags: review?(Olli.Pettay) → review+
|
|
Assignee | |
Comment 11•14 years ago
|
||
(In reply to comment #10)
> Comment on attachment 523266 [details] [diff] [review]
> Part 2: XML case (changes behavior to spec compliance)
>
> >+ // True to call prevent script execution in the fragment mode.
> >+ PRUint8 mPreventScriptExecution : 1;
> >+
> I think contentsink has zeroing new, but couldn't find it now.
> But if we have, this is ok.
We have NS_DECL_AND_IMPL_ZEROING_OPERATOR_NEW in each subclass as the comment in nsContentSink says we should.
Thanks.
|
|
Assignee | |
Comment 12•14 years ago
|
||
Bug 650501 was accidentally making the mochitest here pass, which is why I didn't notice that the fix in part 2 was incomplete. Here's an addendum that makes the fix actually work.
Attachment #526707 -
Flags: review?(Olli.Pettay)
|
|
Reporter | |
Comment 13•14 years ago
|
||
Comment on attachment 526707 [details] [diff] [review]
Part 3: Make XML script execution prevention work for real
> nsresult
> nsXMLFragmentContentSink::CloseElement(nsIContent* aContent)
> {
> // don't do fancy stuff in nsXMLContentSink
>+ if (mPreventScriptExecution && aContent->Tag() == nsGkAtoms::script
>+ && (aContent->GetNameSpaceID() == kNameSpaceID_XHTML
&& should be in the previous line
>+ || aContent->GetNameSpaceID() == kNameSpaceID_SVG)) {
And so should ||
Attachment #526707 -
Flags: review?(Olli.Pettay) → review+
|
|
Assignee | |
Comment 14•14 years ago
|
||
Pushed to inbound:
http://hg.mozilla.org/integration/mozilla-inbound/rev/ff515cbd864e
http://hg.mozilla.org/integration/mozilla-inbound/rev/1e3cf346898c
http://hg.mozilla.org/integration/mozilla-inbound/rev/a228ff77a9f8
http://hg.mozilla.org/integration/mozilla-inbound/rev/79548c572c09
Flags: in-testsuite?
Whiteboard: [inbound]
Target Milestone: --- → mozilla8
|
||
Comment 15•14 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/ff515cbd864e
http://hg.mozilla.org/mozilla-central/rev/1e3cf346898c
http://hg.mozilla.org/mozilla-central/rev/a228ff77a9f8
http://hg.mozilla.org/mozilla-central/rev/79548c572c09
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•