Michael de Raadt added a comment - 25/Jan/12 11:18 AM I'm finally catching up with the pre-christmas issues. Thanks for reporting that and providing a solution.

Renaat Debleu added a comment - 10/Mar/12 8:23 PM The file /lib/javascript-static.js is also generating security errors when using web fonts - some chrome plugins.... I modified the file (try catch block & extra null checking) and the mp3 player is showing up again in Firefox-Chrome-IE : javascript-static.js for (var j=0; j < document.styleSheets.length; j++) { var allrules = new Array(); try { if (typeof (document.styleSheets[j].rules) != 'undefined') { allrules = document.styleSheets[j].rules; } else if (typeof (document.styleSheets[j].cssRules) != 'undefined') { allrules = document.styleSheets[j].cssRules; } else { // why?? continue; } //chrome plugins - web fonts - ... if (allrules == null) { continue; } for(var i=0; i<allrules.length; i++) { rule = ''; if (/^\.mp3flowplayer_.*Color$/.test(allrules[i].selectorText)) { if (typeof(allrules[i].cssText) != 'undefined') { rule = allrules[i].cssText; } else if (typeof(allrules[i].style.cssText) != 'undefined') { rule = allrules[i].style.cssText; } if (rule != '' && /.*color\s*:\s*([^;]+).*/gi.test(rule)) { rule = rule.replace(/.*color\s*:\s*([^;]+).*/gi, '$1'); var colprop = allrules[i].selectorText.replace(/^\.mp3flowplayer_/, ''); controls[colprop] = rule; } } } allrules = false; } catch (err) { //Houston, we have a security problem continue; } }

David Monllaó added a comment - 06/Jul/12 10:08 AM Hi Renaat, The attached patches https://github.com/dmonllao/moodle/compare/master...MDL-30876_master (for example) should solve your problem as well, can you please verify it or provide steps to reproduce your problem? Thanks in advance

David Monllaó added a comment - 09/Jul/12 9:40 AM The MDL-30876 patch solves MDL-32310 and MDL-32582 , it includes the "allrules = null" checking

Rajesh Taneja added a comment - 11/Jul/12 2:23 PM Thanks David, Patch looks good to me, pushing it for integration review.

Dan Poltawski added a comment - 12/Jul/12 6:03 PM The main moodle.git repository has just been updated with latest weekly modifications. You may wish to rebase your PULL branches to simplify history and avoid any possible merge conflicts. This would also make integrator's life easier next week. TIA and ciao

Sam Hemelryk added a comment - 16/Jul/12 7:42 AM This issue looked very familiar. I integrated a fix for this earlier today MDL-32310 . David can you tell me, the try...catch that has been introduced here, is it required (do any browsers throw exceptions)? If so then certainly this fix needs to be merged into the existing fix. If not then I think the current fix should be enough. I'll leave this in integration until I've heard back from you David, and will ping Dan as well to get his thoughts. Cheers Sam

David Monllaó added a comment - 16/Jul/12 10:03 AM - edited Hi Sam, Yes, Firefox reports the exception and stops the JS execution, this patch includes the other one. Attaching exception thrown with the MDL-32310 patch applied

Sam Hemelryk added a comment - 17/Jul/12 8:22 AM Awesome thanks for clarifying that David, I've merged these changes in now

Ankit Agarwal added a comment - 18/Jul/12 12:51 PM works as expected. Thanks

Dan Poltawski added a comment - 19/Jul/12 2:43 PM * Notice *: Undefined variable: friendlyintegrator in /Users/danp/git/tokenintegrationthanks.php on line 26 Congratulations {tracker.user.name} ! You've made into Moodle {tracker.fixversion-1} + I would like to personally thank you for this contribution on behalf of all Moodle users throughout the world. cheers! {tracker.friendlyintegrator}