| /* |
| * Copyright (C) 2013 Google Inc. All rights reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions are |
| * met: |
| * |
| * * Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * * Redistributions in binary form must reproduce the above |
| * copyright notice, this list of conditions and the following disclaimer |
| * in the documentation and/or other materials provided with the |
| * distribution. |
| * * Neither the name of Google Inc. nor the names of its |
| * contributors may be used to endorse or promote products derived from |
| * this software without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
| * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
| * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR |
| * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT |
| * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
| * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE |
| * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| */ |
| |
| #include "modules/exported/WebEmbeddedWorkerImpl.h" |
| |
| #include <memory> |
| #include "bindings/core/v8/SourceLocation.h" |
| #include "core/dom/SecurityContext.h" |
| #include "core/frame/csp/ContentSecurityPolicy.h" |
| #include "core/inspector/ConsoleMessage.h" |
| #include "core/loader/FrameLoadRequest.h" |
| #include "core/loader/ThreadableLoadingContext.h" |
| #include "core/loader/WorkerFetchContext.h" |
| #include "core/probe/CoreProbes.h" |
| #include "core/workers/ParentFrameTaskRunners.h" |
| #include "core/workers/WorkerBackingThreadStartupData.h" |
| #include "core/workers/WorkerContentSettingsClient.h" |
| #include "core/workers/WorkerGlobalScope.h" |
| #include "core/workers/WorkerInspectorProxy.h" |
| #include "core/workers/WorkerScriptLoader.h" |
| #include "modules/indexeddb/IndexedDBClient.h" |
| #include "modules/serviceworkers/ServiceWorkerContainerClient.h" |
| #include "modules/serviceworkers/ServiceWorkerGlobalScopeClient.h" |
| #include "modules/serviceworkers/ServiceWorkerGlobalScopeProxy.h" |
| #include "modules/serviceworkers/ServiceWorkerInstalledScriptsManager.h" |
| #include "modules/serviceworkers/ServiceWorkerThread.h" |
| #include "platform/SharedBuffer.h" |
| #include "platform/heap/Handle.h" |
| #include "platform/instrumentation/tracing/TraceEvent.h" |
| #include "platform/loader/fetch/SubstituteData.h" |
| #include "platform/network/NetworkUtils.h" |
| #include "platform/runtime_enabled_features.h" |
| #include "platform/weborigin/SecurityOrigin.h" |
| #include "platform/wtf/Functional.h" |
| #include "platform/wtf/PtrUtil.h" |
| #include "public/platform/TaskType.h" |
| #include "public/platform/WebURLRequest.h" |
| #include "public/platform/WebWorkerFetchContext.h" |
| #include "public/platform/modules/serviceworker/WebServiceWorkerNetworkProvider.h" |
| #include "public/platform/modules/serviceworker/WebServiceWorkerProvider.h" |
| #include "public/web/WebConsoleMessage.h" |
| #include "public/web/WebDevToolsAgent.h" |
| #include "public/web/WebSettings.h" |
| #include "public/web/modules/serviceworker/WebServiceWorkerContextClient.h" |
| |
| namespace blink { |
| |
| std::unique_ptr<WebEmbeddedWorker> WebEmbeddedWorker::Create( |
| std::unique_ptr<WebServiceWorkerContextClient> client, |
| std::unique_ptr<WebServiceWorkerInstalledScriptsManager> |
| installed_scripts_manager, |
| mojo::ScopedMessagePipeHandle content_settings_handle, |
| mojo::ScopedMessagePipeHandle interface_provider) { |
| return std::make_unique<WebEmbeddedWorkerImpl>( |
| std::move(client), std::move(installed_scripts_manager), |
| std::make_unique<ServiceWorkerContentSettingsProxy>( |
| // Chrome doesn't use interface versioning. |
| mojom::blink::WorkerContentSettingsProxyPtrInfo( |
| std::move(content_settings_handle), 0u)), |
| service_manager::mojom::blink::InterfaceProviderPtrInfo( |
| std::move(interface_provider), |
| service_manager::mojom::blink::InterfaceProvider::Version_)); |
| } |
| |
| WebEmbeddedWorkerImpl::WebEmbeddedWorkerImpl( |
| std::unique_ptr<WebServiceWorkerContextClient> client, |
| std::unique_ptr<WebServiceWorkerInstalledScriptsManager> |
| installed_scripts_manager, |
| std::unique_ptr<ServiceWorkerContentSettingsProxy> content_settings_client, |
| service_manager::mojom::blink::InterfaceProviderPtrInfo |
| interface_provider_info) |
| : worker_context_client_(std::move(client)), |
| content_settings_client_(std::move(content_settings_client)), |
| worker_inspector_proxy_(WorkerInspectorProxy::Create()), |
| pause_after_download_state_(kDontPauseAfterDownload), |
| waiting_for_debugger_state_(kNotWaitingForDebugger), |
| interface_provider_info_(std::move(interface_provider_info)) { |
| if (RuntimeEnabledFeatures::ServiceWorkerScriptStreamingEnabled() && |
| installed_scripts_manager) { |
| installed_scripts_manager_ = |
| std::make_unique<ServiceWorkerInstalledScriptsManager>( |
| std::move(installed_scripts_manager)); |
| } |
| } |
| |
| WebEmbeddedWorkerImpl::~WebEmbeddedWorkerImpl() { |
| // TerminateWorkerContext() must be called before the destructor. |
| DCHECK(asked_to_terminate_); |
| } |
| |
| void WebEmbeddedWorkerImpl::StartWorkerContext( |
| const WebEmbeddedWorkerStartData& data) { |
| DCHECK(!asked_to_terminate_); |
| DCHECK(!main_script_loader_); |
| DCHECK_EQ(pause_after_download_state_, kDontPauseAfterDownload); |
| worker_start_data_ = data; |
| |
| // TODO(mkwst): This really needs to be piped through from the requesting |
| // document, like we're doing for SharedWorkers. That turns out to be |
| // incredibly convoluted, and since ServiceWorkers are locked to the same |
| // origin as the page which requested them, the only time it would come |
| // into play is a DNS poisoning attack after the page load. It's something |
| // we should fix, but we're taking this shortcut for the prototype. |
| // |
| // https://crbug.com/590714 |
| KURL script_url = worker_start_data_.script_url; |
| worker_start_data_.address_space = kWebAddressSpacePublic; |
| if (NetworkUtils::IsReservedIPAddress(script_url.Host())) |
| worker_start_data_.address_space = kWebAddressSpacePrivate; |
| if (SecurityOrigin::Create(script_url)->IsLocalhost()) |
| worker_start_data_.address_space = kWebAddressSpaceLocal; |
| |
| if (data.pause_after_download_mode == |
| WebEmbeddedWorkerStartData::kPauseAfterDownload) |
| pause_after_download_state_ = kDoPauseAfterDownload; |
| |
| instrumentation_token_ = data.instrumentation_token; |
| shadow_page_ = std::make_unique<WorkerShadowPage>(this); |
| WebSettings* settings = shadow_page_->GetSettings(); |
| |
| // Currently we block all mixed-content requests from a ServiceWorker. |
| settings->SetStrictMixedContentChecking(true); |
| settings->SetAllowRunningOfInsecureContent(false); |
| |
| // If we were asked to wait for debugger then now is a good time to do that. |
| worker_context_client_->WorkerReadyForInspection(); |
| if (worker_start_data_.wait_for_debugger_mode == |
| WebEmbeddedWorkerStartData::kWaitForDebugger) { |
| waiting_for_debugger_state_ = kWaitingForDebugger; |
| return; |
| } |
| |
| shadow_page_->Initialize(worker_start_data_.script_url); |
| } |
| |
| void WebEmbeddedWorkerImpl::TerminateWorkerContext() { |
| if (asked_to_terminate_) |
| return; |
| asked_to_terminate_ = true; |
| if (!shadow_page_->WasInitialized()) { |
| // This deletes 'this'. |
| worker_context_client_->WorkerContextFailedToStart(); |
| return; |
| } |
| if (main_script_loader_) { |
| main_script_loader_->Cancel(); |
| main_script_loader_ = nullptr; |
| // This deletes 'this'. |
| worker_context_client_->WorkerContextFailedToStart(); |
| return; |
| } |
| if (!worker_thread_) { |
| // The worker thread has not been created yet if the worker is asked to |
| // terminate during waiting for debugger or paused after download. |
| DCHECK(worker_start_data_.wait_for_debugger_mode == |
| WebEmbeddedWorkerStartData::kWaitForDebugger || |
| pause_after_download_state_ == kIsPausedAfterDownload); |
| // This deletes 'this'. |
| worker_context_client_->WorkerContextFailedToStart(); |
| return; |
| } |
| worker_thread_->Terminate(); |
| worker_inspector_proxy_->WorkerThreadTerminated(); |
| } |
| |
| void WebEmbeddedWorkerImpl::ResumeAfterDownload() { |
| DCHECK(!asked_to_terminate_); |
| DCHECK_EQ(pause_after_download_state_, kIsPausedAfterDownload); |
| |
| pause_after_download_state_ = kDontPauseAfterDownload; |
| StartWorkerThread(); |
| } |
| |
| void WebEmbeddedWorkerImpl::AttachDevTools(int session_id) { |
| WebDevToolsAgent* devtools_agent = shadow_page_->DevToolsAgent(); |
| if (devtools_agent) |
| devtools_agent->Attach(session_id); |
| } |
| |
| void WebEmbeddedWorkerImpl::ReattachDevTools(int session_id, |
| const WebString& saved_state) { |
| WebDevToolsAgent* devtools_agent = shadow_page_->DevToolsAgent(); |
| if (devtools_agent) |
| devtools_agent->Reattach(session_id, saved_state); |
| ResumeStartup(); |
| } |
| |
| void WebEmbeddedWorkerImpl::DetachDevTools(int session_id) { |
| WebDevToolsAgent* devtools_agent = shadow_page_->DevToolsAgent(); |
| if (devtools_agent) |
| devtools_agent->Detach(session_id); |
| } |
| |
| void WebEmbeddedWorkerImpl::DispatchDevToolsMessage(int session_id, |
| int call_id, |
| const WebString& method, |
| const WebString& message) { |
| if (asked_to_terminate_) |
| return; |
| WebDevToolsAgent* devtools_agent = shadow_page_->DevToolsAgent(); |
| if (devtools_agent) { |
| devtools_agent->DispatchOnInspectorBackend(session_id, call_id, method, |
| message); |
| } |
| } |
| |
| void WebEmbeddedWorkerImpl::AddMessageToConsole( |
| const WebConsoleMessage& message) { |
| MessageLevel web_core_message_level; |
| switch (message.level) { |
| case WebConsoleMessage::kLevelVerbose: |
| web_core_message_level = kVerboseMessageLevel; |
| break; |
| case WebConsoleMessage::kLevelInfo: |
| web_core_message_level = kInfoMessageLevel; |
| break; |
| case WebConsoleMessage::kLevelWarning: |
| web_core_message_level = kWarningMessageLevel; |
| break; |
| case WebConsoleMessage::kLevelError: |
| web_core_message_level = kErrorMessageLevel; |
| break; |
| default: |
| NOTREACHED(); |
| return; |
| } |
| |
| shadow_page_->GetDocument()->AddConsoleMessage(ConsoleMessage::Create( |
| kOtherMessageSource, web_core_message_level, message.text, |
| SourceLocation::Create(message.url, message.line_number, |
| message.column_number, nullptr))); |
| } |
| |
| void WebEmbeddedWorkerImpl::PostMessageToPageInspector(int session_id, |
| const String& message) { |
| worker_inspector_proxy_->DispatchMessageFromWorker(session_id, message); |
| } |
| |
| void WebEmbeddedWorkerImpl::SetContentSecurityPolicyAndReferrerPolicy( |
| ContentSecurityPolicy* content_security_policy, |
| String referrer_policy) { |
| DCHECK(IsMainThread()); |
| shadow_page_->SetContentSecurityPolicyAndReferrerPolicy( |
| content_security_policy, std::move(referrer_policy)); |
| } |
| |
| std::unique_ptr<WebApplicationCacheHost> |
| WebEmbeddedWorkerImpl::CreateApplicationCacheHost( |
| WebApplicationCacheHostClient*) { |
| return nullptr; |
| } |
| |
| void WebEmbeddedWorkerImpl::OnShadowPageInitialized() { |
| DCHECK(!asked_to_terminate_); |
| |
| DCHECK(worker_context_client_); |
| shadow_page_->DocumentLoader()->SetServiceWorkerNetworkProvider( |
| worker_context_client_->CreateServiceWorkerNetworkProvider()); |
| |
| // Kickstart the worker before loading the script when the script has been |
| // installed. |
| if (RuntimeEnabledFeatures::ServiceWorkerScriptStreamingEnabled() && |
| installed_scripts_manager_ && |
| installed_scripts_manager_->IsScriptInstalled( |
| worker_start_data_.script_url)) { |
| DCHECK_EQ(pause_after_download_state_, kDontPauseAfterDownload); |
| StartWorkerThread(); |
| return; |
| } |
| |
| DCHECK(!main_script_loader_); |
| main_script_loader_ = WorkerScriptLoader::Create(); |
| main_script_loader_->LoadAsynchronously( |
| *shadow_page_->GetDocument(), worker_start_data_.script_url, |
| WebURLRequest::kRequestContextServiceWorker, |
| network::mojom::FetchRequestMode::kSameOrigin, |
| network::mojom::FetchCredentialsMode::kSameOrigin, |
| worker_start_data_.address_space, WTF::Closure(), |
| Bind(&WebEmbeddedWorkerImpl::OnScriptLoaderFinished, |
| WTF::Unretained(this))); |
| // Do nothing here since onScriptLoaderFinished() might have been already |
| // invoked and |this| might have been deleted at this point. |
| } |
| |
| void WebEmbeddedWorkerImpl::SendProtocolMessage(int session_id, |
| int call_id, |
| const WebString& message, |
| const WebString& state) { |
| worker_context_client_->SendDevToolsMessage(session_id, call_id, message, |
| state); |
| } |
| |
| void WebEmbeddedWorkerImpl::ResumeStartup() { |
| bool was_waiting = (waiting_for_debugger_state_ == kWaitingForDebugger); |
| waiting_for_debugger_state_ = kNotWaitingForDebugger; |
| if (was_waiting) |
| shadow_page_->Initialize(worker_start_data_.script_url); |
| } |
| |
| WebDevToolsAgentClient::WebKitClientMessageLoop* |
| WebEmbeddedWorkerImpl::CreateClientMessageLoop() { |
| return worker_context_client_->CreateDevToolsMessageLoop(); |
| } |
| |
| const WebString& WebEmbeddedWorkerImpl::GetInstrumentationToken() { |
| return instrumentation_token_; |
| } |
| |
| void WebEmbeddedWorkerImpl::OnScriptLoaderFinished() { |
| DCHECK(main_script_loader_); |
| if (asked_to_terminate_) |
| return; |
| |
| if (main_script_loader_->Failed()) { |
| TerminateWorkerContext(); |
| return; |
| } |
| worker_context_client_->WorkerScriptLoaded(); |
| |
| if (pause_after_download_state_ == kDoPauseAfterDownload) { |
| pause_after_download_state_ = kIsPausedAfterDownload; |
| return; |
| } |
| StartWorkerThread(); |
| } |
| |
| void WebEmbeddedWorkerImpl::StartWorkerThread() { |
| DCHECK_EQ(pause_after_download_state_, kDontPauseAfterDownload); |
| DCHECK(!asked_to_terminate_); |
| |
| Document* document = shadow_page_->GetDocument(); |
| |
| // FIXME: this document's origin is pristine and without any extra privileges. |
| // (crbug.com/254993) |
| const SecurityOrigin* starter_origin = document->GetSecurityOrigin(); |
| |
| WorkerClients* worker_clients = WorkerClients::Create(); |
| ProvideIndexedDBClientToWorker(worker_clients, |
| IndexedDBClient::Create(*worker_clients)); |
| |
| ProvideContentSettingsClientToWorker(worker_clients, |
| std::move(content_settings_client_)); |
| ProvideServiceWorkerGlobalScopeClientToWorker( |
| worker_clients, |
| new ServiceWorkerGlobalScopeClient(*worker_context_client_)); |
| ProvideServiceWorkerContainerClientToWorker( |
| worker_clients, worker_context_client_->CreateServiceWorkerProvider()); |
| |
| if (RuntimeEnabledFeatures::OffMainThreadFetchEnabled()) { |
| std::unique_ptr<WebWorkerFetchContext> web_worker_fetch_context = |
| worker_context_client_->CreateServiceWorkerFetchContext(); |
| DCHECK(web_worker_fetch_context); |
| ProvideWorkerFetchContextToWorker(worker_clients, |
| std::move(web_worker_fetch_context)); |
| } |
| |
| std::unique_ptr<WorkerSettings> worker_settings = |
| std::make_unique<WorkerSettings>(document->GetSettings()); |
| |
| std::unique_ptr<GlobalScopeCreationParams> global_scope_creation_params; |
| String source_code; |
| std::unique_ptr<Vector<char>> cached_meta_data; |
| |
| // |main_script_loader_| isn't created if the InstalledScriptsManager had the |
| // script. |
| if (main_script_loader_) { |
| // We need to set the CSP to both the shadow page's document and the |
| // ServiceWorkerGlobalScope. |
| SetContentSecurityPolicyAndReferrerPolicy( |
| main_script_loader_->ReleaseContentSecurityPolicy(), |
| main_script_loader_->GetReferrerPolicy()); |
| global_scope_creation_params = std::make_unique<GlobalScopeCreationParams>( |
| worker_start_data_.script_url, worker_start_data_.user_agent, |
| document->GetContentSecurityPolicy()->Headers().get(), |
| document->GetReferrerPolicy(), starter_origin, worker_clients, |
| main_script_loader_->ResponseAddressSpace(), |
| main_script_loader_->OriginTrialTokens(), std::move(worker_settings), |
| static_cast<V8CacheOptions>(worker_start_data_.v8_cache_options), |
| std::move(interface_provider_info_)); |
| source_code = main_script_loader_->SourceText(); |
| cached_meta_data = main_script_loader_->ReleaseCachedMetadata(); |
| main_script_loader_ = nullptr; |
| } else { |
| // ContentSecurityPolicy and ReferrerPolicy are applied to |document| at |
| // SetContentSecurityPolicyAndReferrerPolicy() before evaluating the main |
| // script. |
| global_scope_creation_params = std::make_unique<GlobalScopeCreationParams>( |
| worker_start_data_.script_url, worker_start_data_.user_agent, |
| nullptr /* ContentSecurityPolicy */, kReferrerPolicyDefault, |
| starter_origin, worker_clients, worker_start_data_.address_space, |
| nullptr /* OriginTrialTokens */, std::move(worker_settings), |
| static_cast<V8CacheOptions>(worker_start_data_.v8_cache_options), |
| std::move(interface_provider_info_)); |
| } |
| |
| if (RuntimeEnabledFeatures::ServiceWorkerScriptFullCodeCacheEnabled()) { |
| global_scope_creation_params->v8_cache_options = |
| kV8CacheOptionsFullCodeWithoutHeatCheck; |
| } |
| |
| worker_thread_ = std::make_unique<ServiceWorkerThread>( |
| ThreadableLoadingContext::Create(*document), |
| ServiceWorkerGlobalScopeProxy::Create(*this, *worker_context_client_), |
| std::move(installed_scripts_manager_)); |
| |
| // We have a dummy document here for loading but it doesn't really represent |
| // the document/frame of associated document(s) for this worker. Here we |
| // populate the task runners with default task runners of the main thread. |
| worker_thread_->Start( |
| std::move(global_scope_creation_params), |
| WorkerBackingThreadStartupData::CreateDefault(), |
| std::make_unique<GlobalScopeInspectorCreationParams>( |
| worker_inspector_proxy_->ShouldPauseOnWorkerStart(document)), |
| ParentFrameTaskRunners::Create(), source_code, |
| std::move(cached_meta_data)); |
| |
| worker_inspector_proxy_->WorkerThreadCreated(document, worker_thread_.get(), |
| worker_start_data_.script_url); |
| } |
| |
| } // namespace blink |