/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */ /* vim: set ts=8 sts=2 et sw=2 tw=80: */ /* This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ #ifndef mozilla_dom_StructuredCloneHolder_h #define mozilla_dom_StructuredCloneHolder_h #include #include #include #include "js/StructuredClone.h" #include "js/TypeDecls.h" #include "mozilla/Assertions.h" #include "mozilla/Attributes.h" #include "mozilla/MemoryReporting.h" #include "mozilla/RefPtr.h" #include "mozilla/UniquePtr.h" #include "nsCOMPtr.h" #include "nsString.h" #include "nsTArray.h" class nsIEventTarget; class nsIGlobalObject; class nsIInputStream; struct JSStructuredCloneReader; struct JSStructuredCloneWriter; namespace JS { class Value; struct WasmModule; } // namespace JS namespace mozilla { class ErrorResult; template class OwningNonNull; namespace layers { class Image; } namespace gfx { class DataSourceSurface; } namespace dom { class BlobImpl; class MessagePort; class MessagePortIdentifier; template class Sequence; class StructuredCloneHolderBase { public: typedef JS::StructuredCloneScope StructuredCloneScope; StructuredCloneHolderBase( StructuredCloneScope aScope = StructuredCloneScope::SameProcess); virtual ~StructuredCloneHolderBase(); // Note, it is unsafe to std::move() a StructuredCloneHolderBase since a raw // this pointer is passed to mBuffer as a callback closure. That must // be fixed if you want to implement a move constructor here. StructuredCloneHolderBase(StructuredCloneHolderBase&& aOther) = delete; // These methods should be implemented in order to clone data. // Read more documentation in js/public/StructuredClone.h. virtual JSObject* CustomReadHandler( JSContext* aCx, JSStructuredCloneReader* aReader, const JS::CloneDataPolicy& aCloneDataPolicy, uint32_t aTag, uint32_t aIndex) = 0; virtual bool CustomWriteHandler(JSContext* aCx, JSStructuredCloneWriter* aWriter, JS::Handle aObj, bool* aSameProcessScopeRequired) = 0; // This method has to be called when this object is not needed anymore. // It will free memory and the buffer. This has to be called because // otherwise the buffer will be freed in the DTOR of this class and at that // point we cannot use the overridden methods. void Clear(); // If these 3 methods are not implement, transfering objects will not be // allowed. Otherwise only arrayBuffers will be transferred. virtual bool CustomReadTransferHandler(JSContext* aCx, JSStructuredCloneReader* aReader, uint32_t aTag, void* aContent, uint64_t aExtraData, JS::MutableHandleObject aReturnObject); virtual bool CustomWriteTransferHandler(JSContext* aCx, JS::Handle aObj, // Output: uint32_t* aTag, JS::TransferableOwnership* aOwnership, void** aContent, uint64_t* aExtraData); virtual void CustomFreeTransferHandler(uint32_t aTag, JS::TransferableOwnership aOwnership, void* aContent, uint64_t aExtraData); virtual bool CustomCanTransferHandler(JSContext* aCx, JS::Handle aObj, bool* aSameProcessScopeRequired); // These methods are what you should use to read/write data. // Execute the serialization of aValue using the Structured Clone Algorithm. // The data can read back using Read(). bool Write(JSContext* aCx, JS::Handle aValue); // Like Write() but it supports the transferring of objects and handling // of cloning policy. bool Write(JSContext* aCx, JS::Handle aValue, JS::Handle aTransfer, const JS::CloneDataPolicy& aCloneDataPolicy); // If Write() has been called, this method retrieves data and stores it into // aValue. bool Read(JSContext* aCx, JS::MutableHandle aValue); // Like Read() but it supports handling of clone policy. bool Read(JSContext* aCx, JS::MutableHandle aValue, const JS::CloneDataPolicy& aCloneDataPolicy); bool HasData() const { return !!mBuffer; } JSStructuredCloneData& BufferData() const { MOZ_ASSERT(mBuffer, "Write() has never been called."); return mBuffer->data(); } size_t SizeOfExcludingThis(mozilla::MallocSizeOf aMallocSizeOf) { size_t size = 0; if (HasData()) { size += mBuffer->sizeOfIncludingThis(aMallocSizeOf); } return size; } void SetErrorMessage(const char* aErrorMessage) { mErrorMessage.Assign(aErrorMessage); } protected: UniquePtr mBuffer; StructuredCloneScope mStructuredCloneScope; // Error message when a data clone error is about to throw. It's held while // the error callback is fired and it will be throw with a data clone error // later. nsCString mErrorMessage; #ifdef DEBUG bool mClearCalled; #endif }; class BlobImpl; class MessagePort; class MessagePortIdentifier; class StructuredCloneHolder : public StructuredCloneHolderBase { public: enum CloningSupport { CloningSupported, CloningNotSupported }; enum TransferringSupport { TransferringSupported, TransferringNotSupported }; // If cloning is supported, this object will clone objects such as Blobs, // FileList, ImageData, etc. // If transferring is supported, we will transfer MessagePorts and in the // future other transferrable objects. // The StructuredCloneScope is useful to know where the cloned/transferred // data can be read and written. Additional checks about the nature of the // objects will be done based on this scope value because not all the // objects can be sent between threads or processes. explicit StructuredCloneHolder(CloningSupport aSupportsCloning, TransferringSupport aSupportsTransferring, StructuredCloneScope aStructuredCloneScope); virtual ~StructuredCloneHolder(); StructuredCloneHolder(StructuredCloneHolder&& aOther) = delete; // Normally you should just use Write() and Read(). virtual void Write(JSContext* aCx, JS::Handle aValue, ErrorResult& aRv); virtual void Write(JSContext* aCx, JS::Handle aValue, JS::Handle aTransfer, const JS::CloneDataPolicy& aCloneDataPolicy, ErrorResult& aRv); void Read(nsIGlobalObject* aGlobal, JSContext* aCx, JS::MutableHandle aValue, ErrorResult& aRv); void Read(nsIGlobalObject* aGlobal, JSContext* aCx, JS::MutableHandle aValue, const JS::CloneDataPolicy& aCloneDataPolicy, ErrorResult& aRv); // Call this method to know if this object is keeping some DOM object alive. bool HasClonedDOMObjects() const { return !mBlobImplArray.IsEmpty() || !mWasmModuleArray.IsEmpty() || !mClonedSurfaces.IsEmpty() || !mInputStreamArray.IsEmpty(); } nsTArray>& BlobImpls() { MOZ_ASSERT(mSupportsCloning, "Blobs cannot be taken/set if cloning is not supported."); return mBlobImplArray; } nsTArray>& WasmModules() { MOZ_ASSERT(mSupportsCloning, "WasmModules cannot be taken/set if cloning is not supported."); return mWasmModuleArray; } nsTArray>& InputStreams() { MOZ_ASSERT(mSupportsCloning, "InputStreams cannot be taken/set if cloning is not supported."); return mInputStreamArray; } // This method returns the final scope. If the final scope is unknown, // DifferentProcess is returned because it's the most restrictive one. StructuredCloneScope CloneScope() const { if (mStructuredCloneScope == StructuredCloneScope::UnknownDestination) { return StructuredCloneScope::DifferentProcess; } return mStructuredCloneScope; } // The global object is set internally just during the Read(). This method // can be used by read functions to retrieve it. nsIGlobalObject* GlobalDuringRead() const { return mGlobal; } // This must be called if the transferring has ports generated by Read(). // MessagePorts are not thread-safe and they must be retrieved in the thread // where they are created. nsTArray>&& TakeTransferredPorts() { MOZ_ASSERT(mSupportsTransferring); return std::move(mTransferredPorts); } // This method uses TakeTransferredPorts() to populate a sequence of // MessagePorts for WebIDL binding classes. bool TakeTransferredPortsAsSequence( Sequence>& aPorts); nsTArray& PortIdentifiers() const { MOZ_ASSERT(mSupportsTransferring); return mPortIdentifiers; } nsTArray>& GetSurfaces() { return mClonedSurfaces; } // Implementations of the virtual methods to allow cloning of objects which // JS engine itself doesn't clone. virtual JSObject* CustomReadHandler( JSContext* aCx, JSStructuredCloneReader* aReader, const JS::CloneDataPolicy& aCloneDataPolicy, uint32_t aTag, uint32_t aIndex) override; virtual bool CustomWriteHandler(JSContext* aCx, JSStructuredCloneWriter* aWriter, JS::Handle aObj, bool* aSameProcessScopeRequired) override; virtual bool CustomReadTransferHandler( JSContext* aCx, JSStructuredCloneReader* aReader, uint32_t aTag, void* aContent, uint64_t aExtraData, JS::MutableHandleObject aReturnObject) override; virtual bool CustomWriteTransferHandler(JSContext* aCx, JS::Handle aObj, uint32_t* aTag, JS::TransferableOwnership* aOwnership, void** aContent, uint64_t* aExtraData) override; virtual void CustomFreeTransferHandler(uint32_t aTag, JS::TransferableOwnership aOwnership, void* aContent, uint64_t aExtraData) override; virtual bool CustomCanTransferHandler( JSContext* aCx, JS::Handle aObj, bool* aSameProcessScopeRequired) override; // These 2 static methods are useful to read/write fully serializable objects. // They can be used by custom StructuredCloneHolderBase classes to // serialize objects such as ImageData, CryptoKey, RTCCertificate, etc. static JSObject* ReadFullySerializableObjects( JSContext* aCx, JSStructuredCloneReader* aReader, uint32_t aTag); static bool WriteFullySerializableObjects(JSContext* aCx, JSStructuredCloneWriter* aWriter, JS::Handle aObj); // Helper functions for reading and writing strings. static bool ReadString(JSStructuredCloneReader* aReader, nsString& aString); static bool WriteString(JSStructuredCloneWriter* aWriter, const nsAString& aString); static const JSStructuredCloneCallbacks sCallbacks; protected: // If you receive a buffer from IPC, you can use this method to retrieve a // JS::Value. It can happen that you want to pre-populate the array of Blobs // and/or the PortIdentifiers. void ReadFromBuffer(nsIGlobalObject* aGlobal, JSContext* aCx, JSStructuredCloneData& aBuffer, JS::MutableHandle aValue, const JS::CloneDataPolicy& aCloneDataPolicy, ErrorResult& aRv); void ReadFromBuffer(nsIGlobalObject* aGlobal, JSContext* aCx, JSStructuredCloneData& aBuffer, uint32_t aAlgorithmVersion, JS::MutableHandle aValue, const JS::CloneDataPolicy& aCloneDataPolicy, ErrorResult& aRv); void SameProcessScopeRequired(bool* aSameProcessScopeRequired); bool mSupportsCloning; bool mSupportsTransferring; // SizeOfExcludingThis is inherited from StructuredCloneHolderBase. It doesn't // account for objects in the following arrays because a) they're not expected // to be stored in long-lived StructuredCloneHolder objects, and b) in the // case of BlobImpl objects, MemoryBlobImpls have their own memory reporters, // and the other types do not hold significant amounts of memory alive. // Used for cloning blobs in the structured cloning algorithm. nsTArray> mBlobImplArray; // Used for cloning JS::WasmModules in the structured cloning algorithm. nsTArray> mWasmModuleArray; // Used for cloning InputStream in the structured cloning algorithm. nsTArray> mInputStreamArray; // This is used for sharing the backend of ImageBitmaps. // The DataSourceSurface object must be thread-safely reference-counted. // The DataSourceSurface object will not be written ever via any ImageBitmap // instance, so no race condition will occur. nsTArray> mClonedSurfaces; // This raw pointer is only set within ::Read() and is unset by the end. nsIGlobalObject* MOZ_NON_OWNING_REF mGlobal; // This array contains the ports once we've finished the reading. It's // generated from the mPortIdentifiers array. nsTArray> mTransferredPorts; // This array contains the identifiers of the MessagePorts. Based on these we // are able to reconnect the new transferred ports with the other // MessageChannel ports. mutable nsTArray mPortIdentifiers; #ifdef DEBUG nsCOMPtr mCreationEventTarget; #endif }; } // namespace dom } // namespace mozilla #endif // mozilla_dom_StructuredCloneHolder_h