Changeset 32922 in webkit

Timestamp:

May 6, 2008 3:00:05 PM (16 years ago)

Author:

weinig@apple.com

Message:

WebCore:

2008-05-06 Adam Barth <​abarth-webkit@adambarth.com>

Reviewed by Sam Weinig.

​https://bugs.webkit.org/show_bug.cgi?id=18725
Implement asynchronous postMessage.
MessageEvent no longer bubbles as per r1237 in the HTML 5 working draft.

Collin Jackson <​collinj-webkit@collinjackson.com> also contributed to this patch.

Test: http/tests/security/postMessage/delivery-order.html

• dom/MessageEvent.cpp: (WebCore::MessageEvent::MessageEvent):
• page/DOMWindow.cpp: (WebCore::PostMessageTimer::PostMessageTimer): (WebCore::PostMessageTimer::event): (WebCore::PostMessageTimer::targetOrigin): (WebCore::PostMessageTimer::fired): (WebCore::DOMWindow::postMessage): (WebCore::DOMWindow::postMessageTimerFired):
• page/DOMWindow.h:
• page/DOMWindow.idl:

LayoutTests:

2008-05-06 Adam Barth <​abarth-webkit@adambarth.com>

Reviewed by Sam Weinig.

​https://bugs.webkit.org/show_bug.cgi?id=18725
Update tests for asynchronous postMessage.

Collin Jackson <​collinj-webkit@collinjackson.com> also contributed to this patch.

• http/tests/messaging/cross-domain-message-send.html:
• http/tests/messaging/resources/cross-domain-message-receive.html:
• http/tests/security/cross-frame-access-delete.html:
• http/tests/security/cross-frame-access-history-put.html:
• http/tests/security/cross-frame-access-location-put.html:
• http/tests/security/postMessage/delivery-order-expected.txt: Added.
• http/tests/security/postMessage/delivery-order.html: Added.
• http/tests/security/postMessage/invalid-origin-throws-exception-expected.txt:
• http/tests/security/postMessage/invalid-origin-throws-exception.html:
• http/tests/security/postMessage/origin-unaffected-by-base-tag-expected.txt:
• http/tests/security/postMessage/origin-unaffected-by-base-tag.html:
• http/tests/security/postMessage/origin-unaffected-by-document-domain-expected.txt:
• http/tests/security/postMessage/origin-unaffected-by-document-domain.html:
• http/tests/security/postMessage/resources/javascript-post-message-sender.html:
• http/tests/security/postMessage/resources/post-message-listener.html:
• http/tests/security/postMessage/resources/recv.js: Added.
• http/tests/security/postMessage/target-origin-expected.txt:
• http/tests/security/postMessage/target-origin.html:
• http/tests/security/resources/cross-frame-iframe-for-delete-test.html:
• http/tests/security/resources/cross-frame-iframe-for-history-put-test.html:
• http/tests/security/resources/cross-frame-iframe-for-location-put-test.html:
• http/tests/security/resources/xss-eval3.html:
• http/tests/security/xss-eval.html:

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/messaging/cross-domain-message-send.html (modified) (1 diff)
• LayoutTests/http/tests/messaging/resources/cross-domain-message-receive.html (modified) (1 diff)
• LayoutTests/http/tests/security/cross-frame-access-delete.html (modified) (1 diff)
• LayoutTests/http/tests/security/cross-frame-access-history-put.html (modified) (1 diff)
• LayoutTests/http/tests/security/cross-frame-access-location-put.html (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/delivery-order-expected.txt (added)
• LayoutTests/http/tests/security/postMessage/delivery-order.html (added)
• LayoutTests/http/tests/security/postMessage/invalid-origin-throws-exception-expected.txt (modified) (2 diffs)
• LayoutTests/http/tests/security/postMessage/invalid-origin-throws-exception.html (modified) (2 diffs)
• LayoutTests/http/tests/security/postMessage/origin-unaffected-by-base-tag-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/origin-unaffected-by-base-tag.html (modified) (2 diffs)
• LayoutTests/http/tests/security/postMessage/origin-unaffected-by-document-domain-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/origin-unaffected-by-document-domain.html (modified) (2 diffs)
• LayoutTests/http/tests/security/postMessage/resources/javascript-post-message-sender.html (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/resources/post-message-listener.html (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/resources/recv.js (added)
• LayoutTests/http/tests/security/postMessage/target-origin-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/security/postMessage/target-origin.html (modified) (4 diffs)
• LayoutTests/http/tests/security/resources/cross-frame-iframe-for-delete-test.html (modified) (1 diff)
• LayoutTests/http/tests/security/resources/cross-frame-iframe-for-history-put-test.html (modified) (1 diff)
• LayoutTests/http/tests/security/resources/cross-frame-iframe-for-location-put-test.html (modified) (1 diff)
• LayoutTests/http/tests/security/resources/xss-eval2.html (modified) (1 diff)
• LayoutTests/http/tests/security/resources/xss-eval3.html (modified) (1 diff)
• LayoutTests/http/tests/security/xss-eval.html (modified) (1 diff)
• WebCore/ChangeLog (modified) (1 diff)
• WebCore/dom/MessageEvent.cpp (modified) (1 diff)
• WebCore/page/DOMWindow.cpp (modified) (3 diffs)
• WebCore/page/DOMWindow.h (modified) (2 diffs)
• WebCore/page/DOMWindow.idl (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2008-05-06  Adam Barth  <abarth-webkit@adambarth.com>
+
+        Reviewed by Sam Weinig.
+
+        https://bugs.webkit.org/show_bug.cgi?id=18725
+        Update tests for asynchronous postMessage.
+
+        Collin Jackson <collinj-webkit@collinjackson.com> also contributed to this patch.
+
+        * http/tests/messaging/cross-domain-message-send.html:
+        * http/tests/messaging/resources/cross-domain-message-receive.html:
+        * http/tests/security/cross-frame-access-delete.html:
+        * http/tests/security/cross-frame-access-history-put.html:
+        * http/tests/security/cross-frame-access-location-put.html:
+        * http/tests/security/postMessage/delivery-order-expected.txt: Added.
+        * http/tests/security/postMessage/delivery-order.html: Added.
+        * http/tests/security/postMessage/invalid-origin-throws-exception-expected.txt:
+        * http/tests/security/postMessage/invalid-origin-throws-exception.html:
+        * http/tests/security/postMessage/origin-unaffected-by-base-tag-expected.txt:
+        * http/tests/security/postMessage/origin-unaffected-by-base-tag.html:
+        * http/tests/security/postMessage/origin-unaffected-by-document-domain-expected.txt:
+        * http/tests/security/postMessage/origin-unaffected-by-document-domain.html:
+        * http/tests/security/postMessage/resources/javascript-post-message-sender.html:
+        * http/tests/security/postMessage/resources/post-message-listener.html:
+        * http/tests/security/postMessage/resources/recv.js: Added.
+        * http/tests/security/postMessage/target-origin-expected.txt:
+        * http/tests/security/postMessage/target-origin.html:
+        * http/tests/security/resources/cross-frame-iframe-for-delete-test.html:
+        * http/tests/security/resources/cross-frame-iframe-for-history-put-test.html:
+        * http/tests/security/resources/cross-frame-iframe-for-location-put-test.html:
+        * http/tests/security/resources/xss-eval3.html:
+        * http/tests/security/xss-eval.html:
+
 2008-05-05  Alexey Proskuryakov  <ap@webkit.org>
 

trunk/LayoutTests/http/tests/messaging/cross-domain-message-send.html

@@ -13 +13 @@
 
 function postIt () {
-    document.getElementById("receiver").contentWindow.postMessage("Something");
+    document.getElementById("receiver").contentWindow.postMessage("Something", "*");
 }
 

trunk/LayoutTests/http/tests/messaging/resources/cross-domain-message-receive.html

@@ -11 +11 @@
     result += "data: " + e.data + "\n";
     result += "origin: " + e.origin + "\n";
-    e.source.postMessage(result);   
+    e.source.postMessage(result, "*");   
 }
 

trunk/LayoutTests/http/tests/security/cross-frame-access-delete.html

@@ -27 +27 @@
             shouldBe("eval('delete targetWindow.location[1]')", "false");
 
-            targetWindow.postMessage("deletingValuesComplete");
+            targetWindow.postMessage("deletingValuesComplete", "*");
         }
     </script>

trunk/LayoutTests/http/tests/security/cross-frame-access-history-put.html

@@ -44 +44 @@
 
             if (window.postMessage)
-                targetWindow.postMessage("settingValuesComplete");
+                targetWindow.postMessage("settingValuesComplete", "*");
             else
                 log("\nSet Test complete!  Click button entitled 'Step 2 - Set Check' to finish the test.");

trunk/LayoutTests/http/tests/security/cross-frame-access-location-put.html

@@ -45 +45 @@
 
             if (window.postMessage)
-                targetWindow.postMessage("settingValuesComplete");
+                targetWindow.postMessage("settingValuesComplete", "*");
             else
                 log("\nSet Test complete!  Click button entitled 'Step 2 - Set Check' to finish the test.");

trunk/LayoutTests/http/tests/security/postMessage/invalid-origin-throws-exception-expected.txt

@@ -1 @@
-CONSOLE MESSAGE: line 0: Unable to post message to asdf:. Recipient has origin http://localhost:8000.
+CONSOLE MESSAGE: line 0: Unable to post message to asdf://. Recipient has origin http://localhost:8000.
 
-CONSOLE MESSAGE: line 0: Unable to post message to http:. Recipient has origin http://localhost:8000.
+CONSOLE MESSAGE: line 0: Unable to post message to http://. Recipient has origin http://localhost:8000.
 
-CONSOLE MESSAGE: line 0: Unable to post message to /tmp/foo. Recipient has origin http://localhost:8000.
+CONSOLE MESSAGE: line 0: Unable to post message to localhost:8000.
 
-CONSOLE MESSAGE: line 0: Unable to post message to //localhost. Recipient has origin http://localhost:8000.
+CONSOLE MESSAGE: line 0: Unable to post message to localhost:8000.
 
 window.location.href = http://127.0.0.1:8000/security/postMessage/invalid-origin-throws-exception.html
@@ -16 +16 @@
 Posted message to '/tmp/foo' without any exceptions.
 Posted message to '//localhost' without any exceptions.
+Received message: data="Received message: data="done" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"

trunk/LayoutTests/http/tests/security/postMessage/invalid-origin-throws-exception.html

@@ -1 @@
-<script>
-if (window.layoutTestController)
-  layoutTestController.dumpAsText();
-</script>
-
 <!DOCTYPE html>
 <html>
 <head>
+<script src="resources/recv.js"></script>
 <script>
 if (window.layoutTestController) {
     layoutTestController.dumpAsText();
     layoutTestController.waitUntilDone();
-}
-
-function recv(e) {
-    document.getElementById("result").innerHTML += "<br>" + e.data;
 }
  
@@ -44 +36 @@
     tryPostMessage("//localhost");
 
-    if (window.layoutTestController)
-        layoutTestController.notifyDone();
+    
+    win.postMessage('done', '*');
 }
 </script>

trunk/LayoutTests/http/tests/security/postMessage/origin-unaffected-by-base-tag-expected.txt

@@ -1 +1 @@
 window.location.href = http://127.0.0.1:8000/security/postMessage/origin-unaffected-by-base-tag.html
 
-Received message: data="Message from parent" origin="http://127.0.0.1:8000"
+waiting...
+Received message: data="Received message: data="Message from parent" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="done" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"

trunk/LayoutTests/http/tests/security/postMessage/origin-unaffected-by-base-tag.html

@@ -2 +2 @@
 <html>
 <head>
+<script src="resources/recv.js"></script>
 <script>
 if (window.layoutTestController) {
     layoutTestController.dumpAsText();
     layoutTestController.waitUntilDone();
-}
-
-function recv(e) {
-    document.getElementById("result").firstChild.data = e.data;
-
-    if (window.layoutTestController)
-        layoutTestController.notifyDone();
 }
 
@@ -20 +14 @@
     var iframe = document.getElementById('child');
     var win = iframe.contentWindow;
-    win.postMessage('Message from parent');
+    win.postMessage('Message from parent', '*');
+
+    win.postMessage('done', '*');
 }
 </script>

trunk/LayoutTests/http/tests/security/postMessage/origin-unaffected-by-document-domain-expected.txt

@@ -2 +2 @@
 document.domain = 0.0.1
 
-Received message: data="Message from parent" origin="http://127.0.0.1:8000"
+waiting...
+Received message: data="Received message: data="Message from parent" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="done" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"

trunk/LayoutTests/http/tests/security/postMessage/origin-unaffected-by-document-domain.html

@@ -2 +2 @@
 <html>
 <head>
+<script src="resources/recv.js"></script>
 <script>
 if (window.layoutTestController) {
     layoutTestController.dumpAsText();
     layoutTestController.waitUntilDone();
-}
-
-function recv(e) {
-    document.getElementById("result").firstChild.data = e.data;
-
-    if (window.layoutTestController)
-        layoutTestController.notifyDone();
 }
 
@@ -20 +14 @@
     var iframe = document.getElementById('child');
     var win = iframe.contentWindow;
-    win.postMessage('Message from parent');
+    win.postMessage('Message from parent', '*');
+
+    win.postMessage('done', '*');
 }
 

trunk/LayoutTests/http/tests/security/postMessage/resources/javascript-post-message-sender.html

@@ -5 +5 @@
 function nav() {
     var url = "javascript:'<script>" + 
-      "top.postMessage(\"Hello from child\");" + 
+      "top.postMessage(\"Hello from child\", \"*\");" + 
       "document.write(\"Message sent\");" +
       "</scri" + "pt>'";

trunk/LayoutTests/http/tests/security/postMessage/resources/post-message-listener.html

@@ -6 +6 @@
 function recv(e) {
     var msg = 'Received message: data="' + e.data + '" origin="' + e.origin + '"';
-    top.postMessage(msg);
+    top.postMessage(msg, '*');
 }
 

trunk/LayoutTests/http/tests/security/postMessage/target-origin-expected.txt

@@ -12 +12 @@
 
 waiting...
-Received message: data="Trying origin=http://localhost:8000" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=http://localhost:8000/" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=http://localhost:8000/foo" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=http://localhost:8000/foo?bar" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=http://localhost:8000/foo?bar#baz" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=http://user:pass@localhost:8000/foo?bar#baz" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=null" origin="http://127.0.0.1:8000"
-Received message: data="Trying origin=undefined" origin="http://127.0.0.1:8000"
+Error sending message to null. Error: SYNTAX_ERR: DOM Exception 12
+Error sending message to undefined. Error: SYNTAX_ERR: DOM Exception 12
+Received message: data="Received message: data="Trying origin=http://localhost:8000" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=http://localhost:8000/" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=http://localhost:8000/foo" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=http://localhost:8000/foo?bar" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=http://localhost:8000/foo?bar#baz" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=http://user:pass@localhost:8000/foo?bar#baz" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="Trying origin=*" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"
+Received message: data="Received message: data="done" origin="http://127.0.0.1:8000"" origin="http://localhost:8000"

trunk/LayoutTests/http/tests/security/postMessage/target-origin.html

@@ -2 +2 @@
 <html>
 <head>
+<script src="resources/recv.js"></script>
 <script>
 if (window.layoutTestController) {
@@ -8 +9 @@
 }
 
-function recv(e) {
-    document.getElementById("result").innerHTML += "<br>" + e.data;
-}
- 
 document.addEventListener("message", recv, false);
 
 function tryPostMessage(win, origin) {
-    win.postMessage("Trying origin=" + origin, origin);
+    try {
+        win.postMessage("Trying origin=" + origin, origin);
+    } catch(ex) {
+        log("Error sending message to " + origin + ". " + ex);
+    }
 }
 
@@ -29 +30 @@
     tryPostMessage(win, "http://localhost:8000/foo?bar#baz");
     tryPostMessage(win, "http://user:pass@localhost:8000/foo?bar#baz");
-    tryPostMessage(win, null);
-    tryPostMessage(win, undefined);
+    tryPostMessage(win, "*");
 
     // Should fail:
@@ -39 +39 @@
     tryPostMessage(win, "http://www.example.com");
 
-    if (window.layoutTestController)
-        layoutTestController.notifyDone();
+    // Should throw syntax error:
+    tryPostMessage(win, null);
+    tryPostMessage(win, undefined);
+
+    win.postMessage('done', '*');
 }
 </script>

trunk/LayoutTests/http/tests/security/resources/cross-frame-iframe-for-delete-test.html

@@ -19 +19 @@
             window.location[1] = "test value";
 
-            window.parent.postMessage("setValuesComplete");
+            window.parent.postMessage("setValuesComplete", "*");
         }
 

trunk/LayoutTests/http/tests/security/resources/cross-frame-iframe-for-history-put-test.html

@@ -37 +37 @@
 
             if (window.postMessage)
-                window.parent.postMessage("storedOldValuesComplete");
+                window.parent.postMessage("storedOldValuesComplete", "*");
         }
 

trunk/LayoutTests/http/tests/security/resources/cross-frame-iframe-for-location-put-test.html

@@ -35 +35 @@
 
             if (window.postMessage)
-                window.parent.postMessage("storedOldValuesComplete");
+                window.parent.postMessage("storedOldValuesComplete", "*");
         }
 

trunk/LayoutTests/http/tests/security/resources/xss-eval2.html

@@ -3 +3 @@
 
 parent.childEvalCaller = function(s) {
-    return eval(s);
+    return window.eval(s);
 }
 

trunk/LayoutTests/http/tests/security/resources/xss-eval3.html

@@ -1 +1 @@
 <script>
-parent.postMessage("done");
+parent.postMessage("done", "*");
 </script>

trunk/LayoutTests/http/tests/security/xss-eval.html

@@ -26 +26 @@
 }
 
-addEventListener("message", function()
+document.addEventListener("message", function()
 {
     shouldBe("eval.call(frames[0], 'document')", (function() { try { return eval.call(frames[0], 'document'); } catch(e) { return e.name; } })(), "EvalError");

trunk/WebCore/ChangeLog

@@ +1 @@
+2008-05-06  Adam Barth  <abarth-webkit@adambarth.com>
+
+        Reviewed by Sam Weinig.
+
+        https://bugs.webkit.org/show_bug.cgi?id=18725
+        Implement asynchronous postMessage.
+        MessageEvent no longer bubbles as per r1237 in the HTML 5 working draft.
+
+        Collin Jackson <collinj-webkit@collinjackson.com> also contributed to this patch.
+
+        Test: http/tests/security/postMessage/delivery-order.html
+
+        * dom/MessageEvent.cpp:
+        (WebCore::MessageEvent::MessageEvent):
+        * page/DOMWindow.cpp:
+        (WebCore::PostMessageTimer::PostMessageTimer):
+        (WebCore::PostMessageTimer::event):
+        (WebCore::PostMessageTimer::targetOrigin):
+        (WebCore::PostMessageTimer::fired):
+        (WebCore::DOMWindow::postMessage):
+        (WebCore::DOMWindow::postMessageTimerFired):
+        * page/DOMWindow.h:
+        * page/DOMWindow.idl:
+        
 2008-05-06  Anders Carlsson  <andersca@apple.com>
 

trunk/WebCore/dom/MessageEvent.cpp

@@ -43 +43 @@
 
 MessageEvent::MessageEvent(const String& data, const String& origin, DOMWindow* source)
-    : Event(messageEvent, true, true)
+    : Event(messageEvent, false, true)
     , m_data(data)
     , m_origin(origin)

trunk/WebCore/page/DOMWindow.cpp

@@ -80 +80 @@
 namespace WebCore {
 
+#if ENABLE(CROSS_DOCUMENT_MESSAGING)
+class PostMessageTimer : public TimerBase {
+public:
+    PostMessageTimer(DOMWindow* window, MessageEvent* event, SecurityOrigin* targetOrigin)
+        : m_window(window)
+        , m_event(event)
+        , m_targetOrigin(targetOrigin)
+    {
+    }
+
+    MessageEvent* event() const { return m_event.get(); }
+    SecurityOrigin* targetOrigin() const { return m_targetOrigin.get(); }
+
+private:
+    virtual void fired() 
+    {
+        m_window->postMessageTimerFired(this);
+    }
+
+    RefPtr<DOMWindow> m_window;
+    RefPtr<MessageEvent> m_event;
+    RefPtr<SecurityOrigin> m_targetOrigin;
+};
+#endif
+
 // This function:
 // 1) Validates the pending changes are not changing to NaN
@@ -326 +351 @@
 
 #if ENABLE(CROSS_DOCUMENT_MESSAGING)
-void DOMWindow::postMessage(const String& message, const String& targetOrigin, DOMWindow* source, ExceptionCode& ecForSender) const
-{
-    if (!m_frame)
-        return;
-
-    if (!targetOrigin.isNull()) {
-        KURL desiredTargetURL(targetOrigin);
-        if (!desiredTargetURL.isValid()) {
-            ecForSender = SYNTAX_ERR;
+void DOMWindow::postMessage(const String& message, const String& targetOrigin, DOMWindow* source, ExceptionCode& ec)
+{
+    if (!m_frame)
+        return;
+
+    // Compute the target origin.  We need to do this synchronously in order
+    // to generate the SYNTAX_ERR exception correctly.
+    RefPtr<SecurityOrigin> target;
+    if (targetOrigin != "*") {
+        target = SecurityOrigin::create(KURL(targetOrigin));
+        if (target->isEmpty()) {
+            ec = SYNTAX_ERR;
             return;
         }
-
-        RefPtr<SecurityOrigin> desiredTargetOrigin = SecurityOrigin::create(desiredTargetURL);
-        SecurityOrigin* actualTargetOrigin = document()->securityOrigin();
-        if (desiredTargetOrigin->isEmpty() || !desiredTargetOrigin->isSameSchemeHostPort(actualTargetOrigin)) {
-            // The sender is not allowed to find out the origin of
-            // the recipient, so we fail silently and log a message
-            // to the console.
+    }
+
+    // Capture the source of the message.  We need to do this synchronously
+    // in order to capture the source of the message correctly.
+    Document* sourceDocument = source->document();
+    if (!sourceDocument)
+        return;
+    String sourceOrigin = sourceDocument->securityOrigin()->toString();
+
+    // Schedule the message.
+    PostMessageTimer* timer = new PostMessageTimer(this, new MessageEvent(message, sourceOrigin, source), target.get());
+    timer->startOneShot(0);
+}
+
+void DOMWindow::postMessageTimerFired(PostMessageTimer* t)
+{
+    OwnPtr<PostMessageTimer> timer(t);
+
+    if (!document())
+        return;
+
+    if (timer->targetOrigin()) {
+        // Check target origin now since the target document may have changed since the simer was scheduled.
+        if (!timer->targetOrigin()->isSameSchemeHostPort(document()->securityOrigin())) {
             String message = String::format("Unable to post message to %s. Recipient has origin %s.\n", 
-                targetOrigin.utf8().data(), actualTargetOrigin->toString().utf8().data());
+                timer->targetOrigin()->toString().utf8().data(), document()->securityOrigin()->toString().utf8().data());
             console()->addMessage(JSMessageSource, ErrorMessageLevel, message, 0, String());
             return;
@@ -351 +396 @@
     }
 
-    Document* sourceDocument = source->document();
-    if (!sourceDocument)
-        return;
-    String sourceOrigin = sourceDocument->securityOrigin()->toString();
-
-    // Sender is not allowed to see exceptions other than syntax errors
-    ExceptionCode ec; 
-    document()->dispatchEvent(new MessageEvent(message, sourceOrigin, source), ec, true);
+    ExceptionCode ec;
+    document()->dispatchEvent(timer->event(), ec, true);
 }
 #endif

trunk/WebCore/page/DOMWindow.h

@@ -51 +51 @@
     class History;
     class Location;
+#if ENABLE(CROSS_DOCUMENT_MESSAGING)
+    class PostMessageTimer;
+#endif
     class Navigator;
     class Screen;
@@ -173 +176 @@
         DOMApplicationCache* applicationCache() const;
 #endif
+
 #if ENABLE(CROSS_DOCUMENT_MESSAGING)
-        void postMessage(const String& message, const String& targetOrigin, DOMWindow* source, ExceptionCode& ecForSender) const;
+        void postMessage(const String& message, const String& targetOrigin, DOMWindow* source, ExceptionCode&);
+        void postMessageTimerFired(PostMessageTimer*);
 #endif
 

trunk/WebCore/page/DOMWindow.idl

@@ -149 +149 @@
 #if defined(ENABLE_CROSS_DOCUMENT_MESSAGING)
         // cross-document messaging
-        [DoNotCheckDomainSecurity, Custom] void postMessage(in DOMString message, in [Optional] DOMString targetOrigin)
+        [DoNotCheckDomainSecurity, Custom] void postMessage(in DOMString message, in DOMString targetOrigin)
             raises(DOMException);
 #endif