| /* |
| * Copyright (C) 2011 Google Inc. All rights reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions |
| * are met: |
| * |
| * 1. Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * 2. Redistributions in binary form must reproduce the above copyright |
| * notice, this list of conditions and the following disclaimer in the |
| * documentation and/or other materials provided with the distribution. |
| * 3. Neither the name of Apple Computer, Inc. ("Apple") nor the names of |
| * its contributors may be used to endorse or promote products derived |
| * from this software without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY |
| * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED |
| * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE |
| * DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR ANY |
| * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES |
| * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
| * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND |
| * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| */ |
| |
| #include "config.h" |
| #include "IDBFactoryBackendProxy.h" |
| |
| #include <public/WebIDBDatabase.h> |
| #include <public/WebIDBDatabaseError.h> |
| #include <public/WebIDBFactory.h> |
| #include <public/WebVector.h> |
| #include "IDBDatabaseBackendProxy.h" |
| #include "WebFrameImpl.h" |
| #include "WebIDBCallbacksImpl.h" |
| #include "WebIDBDatabaseCallbacksImpl.h" |
| #include "WebKit.h" |
| #include "WebPermissionClient.h" |
| #include "WebSecurityOrigin.h" |
| #include "WebViewImpl.h" |
| #include "WebWorkerBase.h" |
| #include "WebWorkerClientImpl.h" |
| #include "bindings/v8/WorkerScriptController.h" |
| #include "core/dom/CrossThreadTask.h" |
| #include "core/dom/ScriptExecutionContext.h" |
| #include "core/workers/WorkerContext.h" |
| #include "core/workers/WorkerLoaderProxy.h" |
| #include "core/workers/WorkerThread.h" |
| #include "modules/indexeddb/IDBDatabaseCallbacks.h" |
| #include "modules/indexeddb/IDBDatabaseError.h" |
| #include "origin/SecurityOrigin.h" |
| |
| |
| using namespace WebCore; |
| |
| namespace WebKit { |
| |
| static WebIDBFactory* s_webIDBFactory = 0; |
| |
| void setIDBFactory(WebIDBFactory* factory) |
| { |
| s_webIDBFactory = factory; |
| } |
| |
| PassRefPtr<IDBFactoryBackendInterface> IDBFactoryBackendProxy::create() |
| { |
| return adoptRef(new IDBFactoryBackendProxy()); |
| } |
| |
| IDBFactoryBackendProxy::IDBFactoryBackendProxy() |
| { |
| ASSERT(s_webIDBFactory); |
| m_webIDBFactory = s_webIDBFactory; |
| } |
| |
| IDBFactoryBackendProxy::~IDBFactoryBackendProxy() |
| { |
| } |
| |
| static const char allowIndexedDBMode[] = "allowIndexedDBMode"; |
| |
| class AllowIndexedDBMainThreadBridge : public ThreadSafeRefCounted<AllowIndexedDBMainThreadBridge> { |
| public: |
| static PassRefPtr<AllowIndexedDBMainThreadBridge> create(WebWorkerBase* webWorkerBase, const String& mode, const String& name) |
| { |
| return adoptRef(new AllowIndexedDBMainThreadBridge(webWorkerBase, mode, name)); |
| } |
| |
| // These methods are invoked on the worker context. |
| void cancel() |
| { |
| MutexLocker locker(m_mutex); |
| m_webWorkerBase = 0; |
| } |
| |
| bool result() |
| { |
| return m_result; |
| } |
| |
| // This method is invoked on the main thread. |
| void signalCompleted(bool result, const String& mode) |
| { |
| MutexLocker locker(m_mutex); |
| if (m_webWorkerBase) |
| m_webWorkerBase->workerLoaderProxy()->postTaskForModeToWorkerContext(createCallbackTask(&didComplete, this, result), mode); |
| } |
| |
| private: |
| AllowIndexedDBMainThreadBridge(WebWorkerBase* webWorkerBase, const String& mode, const String& name) |
| : m_result(false) |
| , m_webWorkerBase(webWorkerBase) |
| { |
| WebCommonWorkerClient* commonClient = webWorkerBase->commonClient(); |
| // See note about thread-safety below. |
| WebWorkerBase::dispatchTaskToMainThread( |
| createCallbackTask(&allowIndexedDBTask, this, WebCore::AllowCrossThreadAccess(commonClient), name, mode)); |
| } |
| |
| static void allowIndexedDBTask(ScriptExecutionContext*, PassRefPtr<AllowIndexedDBMainThreadBridge> bridge, WebCommonWorkerClient* commonClient, const String& name, const String& mode) |
| { |
| if (!commonClient) { |
| bridge->signalCompleted(false, mode); |
| return; |
| } |
| bool allowed = commonClient->allowIndexedDB(name); |
| bridge->signalCompleted(allowed, mode); |
| } |
| |
| static void didComplete(ScriptExecutionContext* context, PassRefPtr<AllowIndexedDBMainThreadBridge> bridge, bool result) |
| { |
| bridge->m_result = result; |
| } |
| |
| bool m_result; |
| Mutex m_mutex; |
| // AllowIndexedDBMainThreadBridge uses two non-threadsafe classes across |
| // threads: WebWorkerBase and WebCommonWorkerClient. |
| // In the dedicated worker case, these are both the same object of type |
| // WebWorkerClientImpl, which isn't deleted for the life of the renderer |
| // process so we don't have to worry about use-after-frees. |
| // In the shared worker case, these are of type WebSharedWorkerImpl and |
| // chromium's WebSharedWorkerClientProxy, respectively. These are both |
| // deleted on the main thread in response to a request on the worker thread, |
| // but only after the worker run loop stops processing tasks. So even in |
| // the most interleaved case, we have: |
| // W AllowIndexedDBMainThreadBridge schedules allowIndexedDBTask |
| // M workerRunLoop marked as killed |
| // W runLoop stops and schedules object deletion on main thread |
| // M allowIndexedDBTask calls commonClient->allowIndexedDB() |
| // M WebWorkerBase and WebCommonWorkerClient are deleted |
| WebWorkerBase* m_webWorkerBase; |
| }; |
| |
| bool IDBFactoryBackendProxy::allowIndexedDB(ScriptExecutionContext* context, const String& name, const WebSecurityOrigin& origin, PassRefPtr<IDBCallbacks> callbacks) |
| { |
| bool allowed; |
| ASSERT_WITH_SECURITY_IMPLICATION(context->isDocument() || context->isWorkerContext()); |
| if (context->isDocument()) { |
| Document* document = static_cast<Document*>(context); |
| WebFrameImpl* webFrame = WebFrameImpl::fromFrame(document->frame()); |
| WebViewImpl* webView = webFrame->viewImpl(); |
| // FIXME: webView->permissionClient() returns 0 in test_shell and content_shell http://crbug.com/137269 |
| allowed = !webView->permissionClient() || webView->permissionClient()->allowIndexedDB(webFrame, name, origin); |
| } else { |
| WorkerContext* workerContext = static_cast<WorkerContext*>(context); |
| WebWorkerBase* webWorkerBase = static_cast<WebWorkerBase*>(workerContext->thread()->workerLoaderProxy().toWebWorkerBase()); |
| WorkerRunLoop& runLoop = workerContext->thread()->runLoop(); |
| |
| String mode = allowIndexedDBMode; |
| mode.append(String::number(runLoop.createUniqueId())); |
| RefPtr<AllowIndexedDBMainThreadBridge> bridge = AllowIndexedDBMainThreadBridge::create(webWorkerBase, mode, name); |
| |
| // Either the bridge returns, or the queue gets terminated. |
| if (runLoop.runInMode(workerContext, mode) == MessageQueueTerminated) { |
| bridge->cancel(); |
| return false; |
| } |
| allowed = bridge->result(); |
| } |
| |
| if (!allowed) |
| callbacks->onError(WebIDBDatabaseError(IDBDatabaseException::UnknownError, "The user denied permission to access the database.")); |
| |
| return allowed; |
| } |
| |
| void IDBFactoryBackendProxy::getDatabaseNames(PassRefPtr<IDBCallbacks> prpCallbacks, const String& databaseIdentifier, ScriptExecutionContext* context, const String& dataDir) |
| { |
| RefPtr<IDBCallbacks> callbacks(prpCallbacks); |
| WebSecurityOrigin origin(context->securityOrigin()); |
| if (!allowIndexedDB(context, "Database Listing", origin, callbacks)) |
| return; |
| |
| m_webIDBFactory->getDatabaseNames(new WebIDBCallbacksImpl(callbacks), databaseIdentifier, dataDir); |
| } |
| |
| void IDBFactoryBackendProxy::open(const String& name, int64_t version, int64_t transactionId, PassRefPtr<IDBCallbacks> prpCallbacks, PassRefPtr<IDBDatabaseCallbacks> prpDatabaseCallbacks, const String& databaseIdentifier, ScriptExecutionContext* context, const String& dataDir) |
| { |
| RefPtr<IDBCallbacks> callbacks(prpCallbacks); |
| RefPtr<IDBDatabaseCallbacks> databaseCallbacks(prpDatabaseCallbacks); |
| WebSecurityOrigin origin(context->securityOrigin()); |
| if (!allowIndexedDB(context, name, origin, callbacks)) |
| return; |
| |
| m_webIDBFactory->open(name, version, transactionId, new WebIDBCallbacksImpl(callbacks), new WebIDBDatabaseCallbacksImpl(databaseCallbacks), databaseIdentifier, dataDir); |
| } |
| |
| void IDBFactoryBackendProxy::deleteDatabase(const String& name, PassRefPtr<IDBCallbacks> prpCallbacks, const String& databaseIdentifier, ScriptExecutionContext* context, const String& dataDir) |
| { |
| RefPtr<IDBCallbacks> callbacks(prpCallbacks); |
| WebSecurityOrigin origin(context->securityOrigin()); |
| if (!allowIndexedDB(context, name, origin, callbacks)) |
| return; |
| |
| m_webIDBFactory->deleteDatabase(name, new WebIDBCallbacksImpl(callbacks), databaseIdentifier, dataDir); |
| } |
| |
| } // namespace WebKit |