Created attachment 26006 [details] Patch implementing the fix This is the patch from Sam.

Comment on attachment 26006 [details] Patch implementing the fix > Index: WebCore/ChangeLog > =================================================================== > --- WebCore/ChangeLog (revision 39282) > +++ WebCore/ChangeLog (working copy) > @@ -1,3 +1,19 @@ > +2008-12-13 Greg Bolsinga <bolsinga@apple.com> > + > + Reviewed by NOBODY (OOPS!). > + > + https://bugs.webkit.org/show_bug.cgi?id=22847 > + > + PositionOptions can be any aribitrary object. > + > + * DerivedSources.make: > + * WebCore.xcodeproj/project.pbxproj: > + * bindings/js/JSGeolocationCustom.cpp: > + (WebCore::createPositionOptions): > + (WebCore::JSGeolocation::getCurrentPosition): > + (WebCore::JSGeolocation::watchPosition): > + * page/PositionOptions.idl: I'd like to see slightly more detailed comments explaining the changes. Also, arbitrary is misspelled here. > + // FIXME: Appropriately deal with an exception being thrown. Is this really something we have to put off? Can't you make a test case that throws an exception, and decide what we want to do in that case? > + unsigned timeout = timeoutValue->toInt32(exec); Should be toUInt32 if you're storing this in an unsigned. And are you sure we want the toUInt32 rules? This do modulo arithmetic. Another option is to use toNumber and then range check and convert to an integer. You should make test cases that are outside the 32-bit integer range and see what they do. > Index: WebCore/page/PositionOptions.idl > =================================================================== > --- WebCore/page/PositionOptions.idl (revision 39281) > +++ WebCore/page/PositionOptions.idl (working copy) > @@ -25,9 +25,8 @@ > > module core { > > - interface [ > - GenerateConstructor > - ] PositionOptions { > + // This interface generates no binding for JavaScript. > + interface PositionOptions { > attribute boolean enableHighAccuracy; > attribute unsigned long timeout; > }; I think we should eliminate the IDL file entirely. I see you taking things out of DerivedSources.make and the Xcode project. What about the build files for other platforms? Won't this break the build? I'm going to say review- because I don't think it's OK to break all the other platforms. Please consider my other comments too.

Created attachment 26027 [details] Updated patch Greg, this is an updated version of the patch which hopefully addresses Darin's comments. It would great if you could test this with some malformed PositionOptions to make sure all is well. Example of malformed PositionOptions include: // Exception being thrown var o = { get timeout() { throw 1; } } // Overflow (note UINT_MAX doesn't exist in JS, so you will have to fill it in yourself) var o = { timeout: UINT_MAX + 1; }

Comment on attachment 26027 [details] Updated patch r=me

Fixed in r39311.