Title: [107904] trunk/Source/WebKit2
- Revision
- 107904
- Author
- [email protected]
- Date
- 2012-02-16 00:26:10 -0800 (Thu, 16 Feb 2012)
Log Message
[GTK] Document that local paths in html loaded with loadHTML might cause the web process to terminate
https://bugs.webkit.org/show_bug.cgi?id=78719
Reviewed by Martin Robinson.
* UIProcess/API/gtk/WebKitWebView.cpp:
Modified Paths
Diff
Modified: trunk/Source/WebKit2/ChangeLog (107903 => 107904)
--- trunk/Source/WebKit2/ChangeLog 2012-02-16 08:22:34 UTC (rev 107903)
+++ trunk/Source/WebKit2/ChangeLog 2012-02-16 08:26:10 UTC (rev 107904)
@@ -1,3 +1,12 @@
+2012-02-16 Carlos Garcia Campos <[email protected]>
+
+ [GTK] Document that local paths in html loaded with loadHTML might cause the web process to terminate
+ https://bugs.webkit.org/show_bug.cgi?id=78719
+
+ Reviewed by Martin Robinson.
+
+ * UIProcess/API/gtk/WebKitWebView.cpp:
+
2012-02-15 Anders Carlsson <[email protected]>
Add TiledCoreAnimationDrawingArea::forceRepaint
Modified: trunk/Source/WebKit2/UIProcess/API/gtk/WebKitWebView.cpp (107903 => 107904)
--- trunk/Source/WebKit2/UIProcess/API/gtk/WebKitWebView.cpp 2012-02-16 08:22:34 UTC (rev 107903)
+++ trunk/Source/WebKit2/UIProcess/API/gtk/WebKitWebView.cpp 2012-02-16 08:26:10 UTC (rev 107904)
@@ -841,10 +841,14 @@
* @base_uri: (allow-none): The base URI for relative locations or %NULL
*
* Load the given @content string with the specified @base_uri.
- * Relative URLs in the @content will be resolved against @base_uri.
- * When @base_uri is %NULL, it defaults to "about:blank". The mime type
- * of the document will be "text/html". You can monitor the load operation
- * by connecting to #WebKitWebView::load-changed signal.
+ * If @base_uri is not %NULL, relative URLs in the @content will be
+ * resolved against @base_uri and absolute local paths must be children of the @base_uri.
+ * For security reasons absolute local paths that are not children of @base_uri
+ * will cause the web process to terminate.
+ * If you need to include URLs in @content that are local paths in a different
+ * directory than @base_uri you can build a data URI for them. When @base_uri is %NULL,
+ * it defaults to "about:blank". The mime type of the document will be "text/html".
+ * You can monitor the load operation by connecting to #WebKitWebView::load-changed signal.
*/
void webkit_web_view_load_html(WebKitWebView* webView, const gchar* content, const gchar* baseURI)
{
_______________________________________________
webkit-changes mailing list
[email protected]
http://lists.webkit.org/mailman/listinfo.cgi/webkit-changes
