Loading...

XML

Word

Printable

Details

Type: Task
Resolution: Unresolved
Priority: P2: Important
Fix Version/s: None
Affects Version/s: None
Component/s: Core: Serialization
Labels:
None

Story Points:
2
Sprint:
Foundation Sprint 134

Description

As a security-critical component, QTextStream should have internal APIs that are hard to abuse. But there are error-prone (ptr, size) functions, which should be using views instead. And there's, in particular, the putString() overload set, which is "dangerous", since it contains (ptr, size, bool=false) and (view, bool) overloads which are prone to incorrectly resolve some (p, n) overloads towards the latter instead of the former (e.g. if the ptr isn't QChar, but something accepted by the view).

Acceptance criteria:

replace (ptr, n) functions with ones taking view
either replace the bool parameter by a tag struct, or split putString() into putString() and putNumber().

Attachments

Issue Links

resulted from

QTBUG-135194 Review qtbase/src/serialization

Closed

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Marc Mutz

Reporter:: Marc Mutz

PM Owner:: Vladimir Minenko

RnD Owner:: Alex Blasche

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: Yesterday 17:35

Updated:: Yesterday 17:35

Gerrit Reviews

There are no open Gerrit changes