Closed
Bug 665012
Opened 13 years ago
Closed 13 years ago
Do not assume GetCurrentPrincipal() == nsnull means system principal, in nsDOMDataTransfer.cpp
Categories
(Core :: Security, defect)
Core
Security
Tracking
()
RESOLVED
FIXED
mozilla7
People
(Reporter: mounir, Assigned: mounir)
References
Details
(Whiteboard: [sg:audit])
Attachments
(1 file)
6.07 KB,
patch
|
bzbarsky
:
review+
|
Details | Diff | Splinter Review |
Follow-up from bug 658037.
Assignee | ||
Comment 1•13 years ago
|
||
I will work on that unless someone wants to steal.
Assignee: nobody → mounir.lamouri
Assignee | ||
Comment 2•13 years ago
|
||
I've added a |nsresult& rv| method instead of the usual |nsresult* rv|. I don't see any advantage of using a pointer instead of a reference but only disadvantages. I believe I should use a pointer given that it's used everywhere but I might know why ;)
Attachment #540070 -
Flags: review?(bzbarsky)
Assignee | ||
Updated•13 years ago
|
Whiteboard: [needs review]
Assignee | ||
Updated•13 years ago
|
Status: NEW → ASSIGNED
Comment 3•13 years ago
|
||
Comment on attachment 540070 [details] [diff] [review] Patch v1 >- NS_ENSURE_SUCCESS(rv, rv) >+ NS_ENSURE_SUCCESS(rv, rv); I assume this belongs in some other patch? The reason to use a pointer is that it makes it clearer at the callsite that an out param is being used (as opposed to in param). r=me modulo those issues.
Attachment #540070 -
Flags: review?(bzbarsky) → review+
Assignee | ||
Comment 4•13 years ago
|
||
(In reply to comment #3) > The reason to use a pointer is that it makes it clearer at the callsite that > an out param is being used (as opposed to in param). > > r=me modulo those issues. I believe in "those issues" you include making rv a pointer instead of a reference?
Assignee | ||
Comment 5•13 years ago
|
||
Pushed: http://hg.mozilla.org/mozilla-central/rev/f6d7d57e7747
Status: ASSIGNED → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
Whiteboard: [needs review]
Target Milestone: --- → mozilla7
Updated•13 years ago
|
Whiteboard: [sg:audit]
Updated•9 years ago
|
Group: core-security
You need to log in
before you can comment on or make changes to this bug.
Description
•