`this` in methods marked as MOZ_CAN_RUN_SCRIPT is not considered as safe
Categories
(Developer Infrastructure :: Source Code Analysis, defect)
Tracking
(firefox68 affected)
| Tracking | Status | |
|---|---|---|
| firefox68 | --- | affected |
People
(Reporter: masayuki, Unassigned)
References
(Blocks 1 open bug)
Details
Attachments
(1 file)
|
970 bytes,
patch
|
Details | Diff | Splinter Review |
Foo::MozCanRunScript() {
mBar->MaybeCanRunScript(this);
}
is considered as not safe. I.e., it seems that the following two code blocks might be considered as different:
Foo::MozCanRunScript() {
AnotherCanRunScript();
}
Foo::MozCanRunScript() {
this->AnotherCanRunScript();
}
When MozCanRunScript() is called, the instance of Foo should be grabbed with local RefPtr or something. Therefore, this in MOZ_CAN_RUN_SCRIPT methods should be safe.
|
||
Updated•5 years ago
|
|
||
Comment 1•5 years ago
|
||
>Foo::MozCanRunScript() {
> mBar->MaybeCanRunScript(this);
>}
This would be considered unsafe because it's using mBar, which might get nulled out by the script running.
We don't seem to have explicit tests for the "this->AnotherCanRunScript()" case, but I just added one and it passes. I'll attach that here, but could you please double-check whether the problem you're actually running into is with "this" or with mBar?
|
|
||
Comment 2•5 years ago
|
||
|
|
||
Comment 3•5 years ago
|
||
I'm going to sneak this testcase into some other changes I'm making to the static analysis anyway.
|
|
||
Updated•5 years ago
|
|
Reporter | |
Comment 4•5 years ago
|
||
(In reply to Boris Zbarsky [:bzbarsky, bz on IRC] from comment #1)
We don't seem to have explicit tests for the "this->AnotherCanRunScript()" case, but I just added one and it passes. I'll attach that here, but could you please double-check whether the problem you're actually running into is with "this" or with mBar?
Oh, right. I confirmed that ^ is under the "m" of "mBar". Sorry for taking your time.
|
||
Updated•2 years ago
|
Description
•