On Tue, Feb 16, 2010 at 1:38 AM, <[email protected]> wrote: > The check is actually done on line 1317. By the time the request reaches > the QmlXMLHttpRequest class the parameters have been verified. This is just > because it is easier to throw a JavaScript exception from the > qmlxmlhttprequest_open method. > > There's even a test for it (tst_qmlxmlhttprequest::open_invalid_method) for > the skeptical :) Thanks for raising this potential issue though!
Ah great. I didn't think to look at the static methods gluing it to the interpreter. I updated my qt clone last night, so now I should be able to test this stuff out. One further issue I spotted was that I don't see any check to prevent headers containing newlines, though I guess this could be filtered out by QNetworkAccessManager. This would allow you to bypass the header restrictions in a similar way to an earlier flaw in safari (see http://www.westpoint.ltd.uk/advisories/wp-07-0002.txt for details). I've checked the autotests and I don't see this case covered. Cheers Rich. _______________________________________________ Qt4-preview-feedback mailing list [email protected] http://lists.trolltech.com/mailman/listinfo/qt4-preview-feedback
