Closed Bug 808218 Opened 12 years ago Closed 12 years ago

Update more NSS declarations to have const parameters

Categories

(NSS :: Libraries, defect)

Product:
NSS
Component:
Libraries
Type:
defect
Priority:
Not set
Severity:
trivial

Tracking

(blocking-basecamp:+, firefox18 fixed, firefox19 fixed)

Status:
RESOLVED FIXED
Milestone:
3.14.1
Project Flags:
blocking-basecamp +
Tracking Flags:
Tracking Status
firefox18 --- fixed
firefox19 --- fixed

People

(Reporter: briansmith, Assigned: briansmith)

References

Details

Attachments

(2 files, 2 obsolete files)

Update more NSS declarations to have const parameters [v3]
9.87 KB, patch
rrelyea
: review+
wtc
: review+
Details | Diff | Splinter Review
Update constness of PK11_Sign and PK11_Verify*
3.40 KB, patch
wtc
: review+
Details | Diff | Splinter Review 
The changes that implement the B2G signature verification logic depend on these changes that change some parameters of some functions "X*" parameters to "const X*" parameters. We could also just use casts in the code, but I'd rather clean these declarations up if/when we can.
Attachment #677915 - Flags: review?
Attachment #677915 - Flags: review? → review?(rrelyea)
Assignee: nobody → bsmith
Target Milestone: --- → 3.14.1
Comment on attachment 677915 [details] [diff] [review]
Update more NSS declarations to have const parameters

r+ rrelyea
Attachment #677915 - Flags: review?(rrelyea) → review+
This version adds PK11_Digest* and also fixes some const-related warnings. (Some parts of the previous version of the patch removed const-related warnings from the application, but added them into NSS.)

Perhaps we should update the PKCS#11 headers to be const-correct too. That would eliminate most of the need to cast. Note that I used the PKCS#11 type (CK_BYTE_PTR) instead of (PRUint8*) to hint that this cast is needed because the PKCS#11 declarations are wrong.
Attachment #677915 - Attachment is obsolete: true
Attachment #681717 - Flags: review?(rrelyea)
Comment on attachment 681717 [details] [diff] [review]
Update more NSS declarations to have const parameters [v2]

r-

PK11_DigestFinal isn't a const. data is actually returned. The rest look fine...
Attachment #681717 - Flags: review?(rrelyea) → review-
> Perhaps we should update the PKCS#11 headers to be const-correct too.

I'm of two minds about this. It's a good idea in general, but unfortunately a lot of things depend on these headers (stuff under ckfw, and things that aren't even in the NSS tree). We would have to coordinate such a change.

bob
Thanks for catching that, Bob. I don't know what I was thinking.
Attachment #681717 - Attachment is obsolete: true
Attachment #682486 - Flags: review?(rrelyea)
Comment on attachment 682486 [details] [diff] [review]
Update more NSS declarations to have const parameters [v3]

r+ on marches the progress of cleaning up const;).

bob
Attachment #682486 - Flags: review?(rrelyea) → review+
Necessary for app signing (bug 772365).
blocking-basecamp: --- → +
Comment on attachment 682486 [details] [diff] [review]
Update more NSS declarations to have const parameters [v3]

Review of attachment 682486 [details] [diff] [review]:
-----------------------------------------------------------------

r=wtc.
Attachment #682486 - Flags: review+
Comment on attachment 684282 [details] [diff] [review]
Update constness of PK11_Sign and PK11_Verify*

Review of attachment 684282 [details] [diff] [review]:
-----------------------------------------------------------------

r=wtc.

Note that adding 'const' to 'SECItem *' input arguments is a
cosmetic change because the real constness problem is with
the |data| fields of those SECItem structures.
Attachment #684282 - Flags: review+
Checking in security/nss/lib/nss/utilwrap.c;
/cvsroot/mozilla/security/nss/lib/nss/utilwrap.c,v  <--  utilwrap.c
new revision: 1.8; previous revision: 1.7
done
Checking in security/nss/lib/pk11wrap/pk11cxt.c;
/cvsroot/mozilla/security/nss/lib/pk11wrap/pk11cxt.c,v  <--  pk11cxt.c
new revision: 1.10; previous revision: 1.9
done
Checking in security/nss/lib/pk11wrap/pk11obj.c;
/cvsroot/mozilla/security/nss/lib/pk11wrap/pk11obj.c,v  <--  pk11obj.c
new revision: 1.29; previous revision: 1.28
done
Checking in security/nss/lib/pk11wrap/pk11pub.h;
/cvsroot/mozilla/security/nss/lib/pk11wrap/pk11pub.h,v  <--  pk11pub.h
new revision: 1.42; previous revision: 1.41
done
Checking in security/nss/lib/pkcs7/p7decode.c;
/cvsroot/mozilla/security/nss/lib/pkcs7/p7decode.c,v  <--  p7decode.c
new revision: 1.30; previous revision: 1.29
done
Checking in security/nss/lib/pkcs7/secpkcs7.h;
/cvsroot/mozilla/security/nss/lib/pkcs7/secpkcs7.h,v  <--  secpkcs7.h
new revision: 1.10; previous revision: 1.9
done
Checking in security/nss/lib/util/base64.h;
/cvsroot/mozilla/security/nss/lib/util/base64.h,v  <--  base64.h
new revision: 1.5; previous revision: 1.4
done
Checking in security/nss/lib/util/nssb64d.c;
/cvsroot/mozilla/security/nss/lib/util/nssb64d.c,v  <--  nssb64d.c
new revision: 1.10; previous revision: 1.9
done
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Attachment #684282 - Flags: review?(rrelyea)
(In reply to Brian Smith (:bsmith) from comment #0)
> Created attachment 677915 [details] [diff] [review]
> Update more NSS declarations to have const parameters
> 
> The changes that implement the B2G signature verification logic depend on
> these changes that change some parameters of some functions "X*" parameters
> to "const X*" parameters. We could also just use casts in the code, but I'd
> rather clean these declarations up if/when we can.

That's really not good enough a reason to introduce such changes in NSS, especially considering the implications that has, more so when the patch in question is uplifted up to beta. Cf. comments in bug 818717.
Fixed in bug 818717 for mozilla-aurora and mozilla-beta.
status-firefox18: --- → fixed
status-firefox19: --- → fixed
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: