- From: Brendan Eich <brendan@mozilla.org>
- Date: Sun, 19 Feb 2012 15:08:09 -0800
- To: Boris Zbarsky <bzbarsky@MIT.EDU>
- CC: public-script-coord@w3.org
Boris Zbarsky wrote: > On 2/19/12 6:12 AM, Mark S. Miller wrote: >> Is this true for same origin iframes? I have always assumed that mixing >> heaps between same origin iframes results in unmediated direct >> object-to-object access. > > It does in Gecko right now, but that's a bug that we're fixing. Just an efficiency bug, I hasten to add. There's still a security check, but not by as efficient a means for frequent accesses as we'd like. Please let me know if I'm mistaken here. /be
Received on Sunday, 19 February 2012 23:08:40 UTC