[webkit-reviews] review denied: [Bug 36721] Return correct load result to NPAPI plugins calling getUrlNotify on target frames : [Attachment 75628] Patch

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Dec 6 21:04:14 PST 2010 

Alexey Proskuryakov <ap at webkit.org> has denied Robert Hogan
<robert at webkit.org>'s request for review:
Bug 36721: Return correct load result to NPAPI plugins calling getUrlNotify on
target frames
https://bugs.webkit.org/show_bug.cgi?id=36721

Attachment 75628: Patch
https://bugs.webkit.org/attachment.cgi?id=75628&action=review

------- Additional Comments from Alexey Proskuryakov <ap at webkit.org>
View in context: https://bugs.webkit.org/attachment.cgi?id=75628&action=review

> LayoutTests/ChangeLog:14
> +	   * platform/qt/Skipped: unskip plugins/get-url-with-blank-target.html

> +	   * platform/gtk/Skipped: ditto

What about platform/win?

> WebCore/loader/FrameLoader.cpp:207
>      , m_sandboxFlags(SandboxAll)
>      , m_forcedSandboxFlags(SandboxNone)
>  {
> +    m_PluginToNotify = 0;

This should be initialized, not assigned.

Also, wrong style, should be m_pluginToNotify.

> WebCore/loader/FrameLoader.cpp:1403
>      Frame* frame = findFrameForNavigation(frameName);
>      if (frame) {
> -	   frame->loader()->load(request, lockHistory);
> +	   frame->loader()->load(request, lockHistory, m_PluginToNotify);
> +	   m_PluginToNotify = 0;
>	   return;

What guarantees that frame->loader() != this?

> WebCore/loader/FrameLoader.h:494
> +    PluginView* m_PluginToNotify;

Can the view be destroyed before FrameLoader? Will we end up with a stale
pointer then?

I imagine that this may not be too bad, as the request will be stopped when
destroying plug-in, too. But to program defensively, we should not keep a stale
pointer, even if we're not going to use it.

> WebCore/plugins/PluginView.cpp:426
> +	   if (m_requestsAwaitingNotification[i]->request() == request &&
m_requestsAwaitingNotification[i]->sendNotification()) {

I still don't believe that comparing requests can ever be good. Am I missing
something?

> WebCore/plugins/PluginView.h:117
> +	   ResourceRequest m_resourceRequest;

If we actually don't need to compare requests, then this will go away, too.

More information about the webkit-reviews mailing list