git.six.silmor.de Git - konrad/qtdeclarative.git/commit

Fix a crash in QQmlPropertyCache::findProperty

When the top type of a QML component is a C++ type registered with
qmlRegisterExtendedType, its QObjectPrivate::metaObject is already a
QQmlProxyMetaObject that gets chained as the parent of the
QQmlVMEMetaObject of the component.

When QQmlPropertyCache::findProperty iterates over the parents chain
of a child item, our QQmlProxyMetaObject eventually gets static_casted
to QQmlVMEMetaObject and causes a crash.

This patch implements a poor man's dynamic_cast in
QQmlVMEMetaObject::parentVMEMetaObject to fix the crash. Other casts
of parent.asT1() are changed to use parentVMEMetaObject as well even
though in those cases the static_cast is guaranteed by the context.

Task-number: QTBUG-27334
Change-Id: I5982fc273ccf466960ce54974cff5662e6ab605a
Reviewed-by: Matthew Vogt <mattvogt2@gmail.com>
Reviewed-by: Simon Hausmann <simon.hausmann@digia.com>

author	Jocelyn Turcotte <jocelyn.turcotte@digia.com>
	Thu, 27 Sep 2012 14:56:03 +0000 (16:56 +0200)
committer	The Qt Project <gerrit-noreply@qt-project.org>
	Fri, 28 Sep 2012 11:26:16 +0000 (13:26 +0200)
commit	5bd0e08063fcacba0c2b63528712968c7d74e7f9
tree	c430c6b783922fd310ec510fef08fc075c891f7f	tree \| snapshot
parent	b68fb568d8287e9a0c45a0dc0187398995313969	commit \| diff

src/qml/qml/qqmlvmemetaobject.cpp		diff \| blob \| history
src/qml/qml/qqmlvmemetaobject_p.h		diff \| blob \| history