diff options
author | rowanbeentje <rowan@beent.je> | 2010-01-20 23:51:15 +0000 |
---|---|---|
committer | rowanbeentje <rowan@beent.je> | 2010-01-20 23:51:15 +0000 |
commit | a485d370c24cb6378a52c3452dc0cdbadfefd50f (patch) | |
tree | f3bb2ded2b5571d860d7677cca509d575ec5ef81 /Source/SPAlertSheets.m | |
parent | 38ed0a7356c24b2113e157fbec26004100b5f1e9 (diff) | |
download | sequelpro-a485d370c24cb6378a52c3452dc0cdbadfefd50f.tar.gz sequelpro-a485d370c24cb6378a52c3452dc0cdbadfefd50f.tar.bz2 sequelpro-a485d370c24cb6378a52c3452dc0cdbadfefd50f.zip |
Address Issue #546 (format string bugs):
- Fix incorrect uses of [NSString stringWithFormat:] with preconstructed strings and no arguments in SPUserManager
- To fix display issues, replace NSBeginAlertSheet (which includes automatic sprintf expansion of the message) with a safely-escaped SPBeginAlertSheet in many files
Diffstat (limited to 'Source/SPAlertSheets.m')
-rw-r--r-- | Source/SPAlertSheets.m | 55 |
1 files changed, 55 insertions, 0 deletions
diff --git a/Source/SPAlertSheets.m b/Source/SPAlertSheets.m new file mode 100644 index 00000000..581dfc37 --- /dev/null +++ b/Source/SPAlertSheets.m @@ -0,0 +1,55 @@ +// +// $Id$ +// +// SPAlertSheets.m +// sequel-pro +// +// Created by Rowan Beentje on January 20, 2010 +// +// This program is free software; you can redistribute it and/or modify +// it under the terms of the GNU General Public License as published by +// the Free Software Foundation; either version 2 of the License, or +// (at your option) any later version. +// +// This program is distributed in the hope that it will be useful, +// but WITHOUT ANY WARRANTY; without even the implied warranty of +// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +// GNU General Public License for more details. +// +// You should have received a copy of the GNU General Public License +// along with this program; if not, write to the Free Software +// Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +// +// More info at <http://code.google.com/p/sequel-pro/> + +/** + * Provide a very simple alias of NSBeginAlertSheet with one difference: + * printf-type format strings are no longer supported within the "msg" + * message text argument, preventing access of random stack areas for + * error text which contains inadvertant printf formatting. + */ +void SPBeginAlertSheet( + NSString *title, + NSString *defaultButton, + NSString *alternateButton, + NSString *otherButton, + NSWindow *docWindow, + id modalDelegate, + SEL didEndSelector, + SEL didDismissSelector, + void *contextInfo, + NSString *msg +) { + NSBeginAlertSheet( + title, + defaultButton, + alternateButton, + otherButton, + docWindow, + modalDelegate, + didEndSelector, + didDismissSelector, + contextInfo, + [msg stringByReplacingOccurrencesOfString:@"%" withString:@"%%"] + ); +} |