Skip to content

sync: from linuxdeepin/dde-session-shell #456

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
yixinshark merged 2 commits into from
Sep 12, 2025
Merged

sync: from linuxdeepin/dde-session-shell #456

yixinshark merged 2 commits into from
Sep 12, 2025

Conversation

@deepin-ci-robot
Copy link
Contributor

@deepin-ci-robot deepin-ci-robot commented Sep 5, 2025

Synchronize source files from linuxdeepin/dde-session-shell.

Source-pull-request: linuxdeepin/dde-session-shell#34

@deepin-ci-robot
sync: from linuxdeepin/dde-session-shell
7e3919f 
Synchronize source files from linuxdeepin/dde-session-shell.

Source-pull-request: linuxdeepin/dde-session-shell#34
sourcery-ai[bot]
sourcery-ai bot reviewed Sep 5, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry @deepin-ci-robot, your pull request is too large to review

yixinshark
yixinshark previously approved these changes Sep 12, 2025
View reviewed changes
@yixinshark
Copy link
Contributor

yixinshark commented Sep 12, 2025

/forcemerge

@deepin-bot
Copy link

deepin-bot bot commented Sep 12, 2025

This pr force merged! (status: unstable)

@yixinshark
Copy link
Contributor

yixinshark commented Sep 12, 2025

/forcemerge

@deepin-bot
Copy link

deepin-bot bot commented Sep 12, 2025

This pr force merged! (status: blocked)

@deepin-ci-robot
Copy link
Contributor Author

deepin-ci-robot commented Sep 12, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: deepin-ci-robot, yixinshark

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@yixinshark yixinshark closed this Sep 12, 2025
@yixinshark yixinshark reopened this Sep 12, 2025
@yixinshark yixinshark merged commit e4d2293 into master Sep 12, 2025
36 of 43 checks passed
@deepin-ci-robot
Copy link
Contributor Author

deepin-ci-robot commented Sep 12, 2025

deepin pr auto review

代码审查报告

总体评价

这是一个关于 UOS 登录器插件开发的文档和代码更新,主要涉及认证插件接口规范、开发指南以及相关代码的改进。代码整体结构清晰,功能完整,但存在一些需要改进的地方。

具体改进建议

1. 代码质量

  1. 命名规范

    • 部分变量名不够清晰,如 fscaleList 应改为 floatScaleList
    • 函数名 getScaleList() 可以更具体,改为 getAvailableScaleFactors()
    • 布尔变量 m_canShowPasswordErrorTips 可以改为 m_isPasswordErrorTipsEnabled

  2. 代码结构

    • greeterworker.cpplockworker.cpp 中的 initData() 函数过长,建议拆分成多个小函数
    • sessionbasemodel.cpp 中的 isNoPasswordLogin() 函数可以移到 User 类中,因为这是用户相关的属性

  3. 注释和文档

    • 部分函数缺少详细注释,特别是 getScaleList() 函数
    • 复杂的业务逻辑(如锁屏状态切换)需要添加更多注释说明

2. 代码性能

  1. 资源管理

    • getScaleList() 函数中 X11 资源(如 displayresources)的释放时机不够明确,建议使用 RAII 管理这些资源
    • FullScreenBackground 类中的屏幕切换操作可能存在性能问题,建议优化

  2. 内存管理

    • AuthPassword 类中的 m_authenticationDconfig 指针应该在析构函数中显式检查和释放
    • 部分地方使用了裸指针,建议使用智能指针管理对象生命周期

3. 代码安全

  1. 输入验证

    • JSON 数据解析时缺少充分的错误处理
    • 用户输入(如密码)的处理需要加强安全性检查

  2. 权限控制

    • 确保插件不会提权运行
    • 敏感操作(如系统重启)需要额外的权限验证

  3. 数据保护

    • 密码等敏感信息在内存中的存储需要加密
    • 日志中不应包含敏感信息

4. 功能改进

  1. 错误处理

    • 增加更多的错误处理和恢复机制
    • 提供更友好的错误提示

  2. 用户体验

    • 密码错误提示的显示逻辑可以优化
    • 锁屏界面的状态切换可以更流畅

  3. 兼容性

    • 确保 API 版本兼容性声明准确
    • 处理更多边界情况(如多显示器环境)

具体代码问题

  1. 内存泄漏风险
Display *display = XOpenDisplay(nullptr);
// ... 使用 display
// 缺少 XCloseDisplay(display)
  1. 潜在的空指针访问
if (m_authenticationDconfig) {
    // 使用 m_authenticationDconfig
}
// 但在其他地方直接使用 m_authenticationDconfig->value()
  1. 线程安全问题
void LockContent::pushUserFrame()
{
    setFocus();
    Q_EMIT requestLockStateChange(true);
}
// setFocus 和 emit 信号之间可能存在线程安全问题

总结

代码整体质量良好,功能完整,但在以下几个方面需要改进:

  1. 加强错误处理和资源管理
  2. 改进代码结构和命名规范
  3. 增强安全性和性能优化
  4. 完善注释和文档

建议按照上述建议进行修改,特别是在资源管理和错误处理方面需要重点关注。同时,建议添加更多的单元测试来确保代码的可靠性。

@deepin-ci-robot deepin-ci-robot mentioned this pull request Sep 12, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

@yixinshark yixinshark yixinshark approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@deepin-ci-robot @yixinshark