Updates:
Summary: Cross-frame for-in is broken on Firefox 37, 38 beta
Comment #5 on issue 1962 by
kpr...@google.com: Cross-frame for-in is broken
on Firefox 37, 38 beta
https://code.google.com/p/google-caja/issues/detail?id=1962
Standalone test case (partly constructed from the cajaVM.anonIntrinsics
code).
Bizarrely, the thrown TypeError may appear in the console _before_ the rest
of the messages, depending on version and whether the console is open when
the page is loaded.
<iframe id="tmf" src="about:blank"></iframe>
<script>
var frame = document.getElementById('tmf');
var frwin = frame.contentWindow;
var iteratorSym = frwin.Symbol.iterator;
var arrayIter = (new frwin.Array())[iteratorSym]();
var ArrayIteratorPrototype = Object.getPrototypeOf(arrayIter);
var arrayIterProtoBase = Object.getPrototypeOf(ArrayIteratorPrototype);
var IteratorPrototype = arrayIterProtoBase;
console.log(IteratorPrototype.next);
delete IteratorPrototype.next;
console.log(IteratorPrototype.next);
var tam = frwin.eval('({})');
console.log('(1) About to fail');
for (var x in tam) { console.log('(1)', x); }
console.log('(1) Didn\'t fail');
</script>
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings