Closed Bug 951991 Opened 11 years ago Closed 10 years ago

Route all cx pushing through AutoJSAPI and Implement GetEntryGlobal

Categories

(Core :: DOM: Core & HTML, defect)

Product:
Core
Component:
DOM: Core & HTML
Platform:
x86
macOS
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla34

People

(Reporter: bholley, Assigned: bobowen)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

Attachments

(2 files, 2 obsolete files)

Part 1 - Assert against calling GetCurrentInnerWindow on an inner. v1
6.33 KB, patch
smaug
: review+
Details | Diff | Splinter Review
Part 2 - Implement GetEntryGlobal. v2
9.20 KB, patch
smaug
: review+
Details | Diff | Splinter Review 
From bug 937317, we currently have a partial implementation of the script settings stack [1].

The letter of the spec indicates that the script settings stack should be munged at every function call, and that the items pushed onto it should in some cases (relatively rarely) be marked as candidate entry points. The incumbent is the topmost item. The entry point is the topmost item that is marked as a candidate entry point.

Implementing this verbatim would obviously be super inefficient. So we cheat, and only munge the explicit stack in two cases:
(1) When the thing being pushed would be a candidate entry point (since the JS engine can't tell us anything useful about entry points).
(2) When examining the innermost JSScript* on the JSRuntime is not guaranteed to match the incumbent script.

We do the munging for (1) with AutoEntryScript, and the munging for (2) with AutoIncumbentScript.

Because our strategy for computing the incumbent relies mostly on the pre-existing information in the JS engine, the number of places where we need to use AutoIncumbentScript are quite few. We've (hopefully) got those covered at this point, so we can expose GetIncumbentGlobal() and trust that it returns the right thing in all cases.

However, exposing GetEntryGlobal() requires us to use AutoEntryScript in all the places where we need a candidate entry point. Currently, we more or less track the entry point with the JSContext stack. JSContexts are going away, so this needs to change.

So the main thing we need to do here is to go through all of the places where we explicitly push a JSContext (via nsCxPusher, AutoCxPusher, and AutoPushJSContext), and replace them. They fall into 4 categories:
(A) Entry points specified in the spec.
(B) Entry points not in the spec, but that should be added to the spec.
(C) Entry points that should not be in the spec, but that we need because Gecko's architecture introduces complications that don't exist in the spec.
(D) Places where we push a JSContext for no good reason at all.

For each of the cases that fall into (A-C), we should switch to an AutoEntryScript (which, for now, also pushes a JSContext, so that it preserves the old behavior during the transition period). For (B) we should file spec bugs. For (D), we should remove the cx push.

This work is likely too much to land all at once, and should land iteratively in dependent bugs. Once it's all done, implementing GetEntryGlobal is just ~10 lines of code.

[1] http://www.whatwg.org/specs/web-apps/current-work/#calling-scripts
Blocks: 951992
Is this on your radar, Bobby?  It is blocking some other stuff.
Yeah, Bob is working on it.
Assignee: nobody → bobowencode
(In reply to Bobby Holley (:bholley) from comment #2)
> Yeah, Bob is working on it.

Well, I am now ... sorry about the delay.
I got myself tied in knots re-writing some of the iframe sandbox tests that have been producing oranges fairly frequently since September.
The week's holiday in between probably didn't help (my progress, not me :-) ).

I didn't realise that this was reasonably urgent, I thought it was more of a background task.

Anyway, I've got my patches for the re-writes uploaded, so I'll see if I can spend much more time on it and start to make some progress.
Depends on: 978042
(In reply to Bob Owen (:bobowen) from comment #3)
> > Yeah, Bob is working on it.
> 
> Well, I am now ... sorry about the delay.

No worries - PTO is sacred!

> I didn't realise that this was reasonably urgent, I thought it was more of a
> background task.

It's somewhere in between. We need to get it done, but it's still worth being careful and incremental about it, and we don't anyone to burn out trying to do it all at once. So no need to drop everything else, but just try to keep this moving. :-)

> Anyway, I've got my patches for the re-writes uploaded, so I'll see if I can
> spend much more time on it and start to make some progress.

Sounds great! I r+ed the first one already.
Blocks: 981187
Blocks: 796938
Depends on: 988383
Summary: Implement GetEntryGlobal → Route all cx pushing through AutoJSAPI and Implement GetEntryGlobal
Blocks: 991754
Depends on: 997067
Depends on: 997440
Depends on: 1006024
Depends on: 1014553
Depends on: 1017030
Depends on: 1023969
Depends on: 1025476
Depends on: 1027553
Depends on: 1029494
Depends on: 1030707
Attachment #8383580 - Attachment is obsolete: true
Depends on: 1037564
Depends on: 1037904
Depends on: 1037936
Depends on: 1042996
Blocks: 1041602
Depends on: 1045646
Depends on: 1046647
Depends on: 1047509
Depends on: 1050795
Depends on: 1052042
Depends on: 1052052
Depends on: 1052171
No longer blocks: 951992
The current convention is that this returns null when invoked on an inner, which
callers may or may not handle correctly. But when we start using GetEntryGlobal,
we'll end up with a lot of inners where we used to get outers, so we should get
strict about this now.
Attachment #8474289 - Flags: review?(bugs)

        Attachment #8474290 -
        Flags: review?(bugs)

    
    

    
  
Comment on attachment 8474290 [details] [diff] [review]
Part 2 - Implement GetEntryGlobal. v1

Review of attachment 8474290 [details] [diff] [review]:
-----------------------------------------------------------------

::: dom/base/ScriptSettings.cpp
@@ +129,4 @@
>  }
>  
>  // Note: When we're ready to expose it, GetEntryGlobal will look similar to
>  // GetIncumbentGlobal below.

This note can go now.

    
    

    
  
Comment on attachment 8474289 [details] [diff] [review]
Part 1 - Assert against calling GetCurrentInnerWindow on an inner. v1

>-  if (inner) {
>-    inner->CleanUp();
>+  if (IsOuterWindow()) {
>+    nsGlobalWindow *inner = GetCurrentInnerWindowInternal();
* goes with the type

>   bool IsLoadingOrRunningTimeout() const
>   {
>-    const nsPIDOMWindow *win = GetCurrentInnerWindow();
>-
>-    if (!win) {
>-      win = this;
>-    }
>-
>+    const nsPIDOMWindow *win = IsInnerWindow() ? this : GetCurrentInnerWindow();
ditto

        Attachment #8474289 -
        Flags: review?(bugs) → review+

    
    

    
  
Comment on attachment 8474290 [details] [diff] [review]
Part 2 - Implement GetEntryGlobal. v1

>-// This mostly gets the entry global, but doesn't entirely match the spec in
>-// certain edge cases. It's good enough for some purposes, but not others. If
>-// you want to call this function, ping bholley and describe your use-case.
>-nsIGlobalObject* BrokenGetEntryGlobal();
>+// Returns the global associated with the top-most Candidate Entry Point on
>+// the Script Settings Stack. See HTML5. This may be null.
>+nsIGlobalObject* GetEntryGlobal();
> 
>-// Note: We don't yet expose GetEntryGlobal, because in order for it to be
>-// correct, we first need to replace a bunch of explicit cx pushing in the
>-// browser with AutoEntryScript. But GetIncumbentGlobal is simpler, because it
>-// can mostly be inferred from the JS stack.
>+// Returns the global associated with the top-most entry of the the Script
>+// Settings Stack. See HTML5.
> nsIGlobalObject* GetIncumbentGlobal();
> 


Even if the spec was good at explaining what the difference is between
EntryGlogal and IncumbentGlobal (which it certainly isn't, https://www.w3.org/Bugs/Public/show_bug.cgi?id=26547)
we should add good examples here indicating when one should use which Global.
So, just because miss the documentation here, r-

        Attachment #8474290 -
        Flags: review?(bugs) → review-

    
    

    
  
I'm expecting to see some JS examples which tell which global is which object in case of 
several globals.
(This is a bit complicated stuff and the spec is pretty much unreadable in its current form so
I can't expect anyone using this API to understand the spec.)

    
    

    
  


  

        Attachment #8474290 -
        Attachment is obsolete: true

        Attachment #8474874 -
        Flags: review?(bugs)

    
    

    
  
(In reply to Bob Owen (:bobowen) from comment #10)
> >  // Note: When we're ready to expose it, GetEntryGlobal will look similar to
> >  // GetIncumbentGlobal below.
> 
> This note can go now.

(fixed this locally).

    
    

    
  
Comment on attachment 8474874 [details] [diff] [review]
Part 2 - Implement GetEntryGlobal. v2

Review of attachment 8474874 [details] [diff] [review]:
-----------------------------------------------------------------

::: dom/base/ScriptSettings.h
@@ +78,5 @@
> +// current compartment. This roughly corresponds with the notion of Realms in
> +// ECMAScript. Note that this concept may be merged with that of the incumbent
> +// global - see [1].
> +//
> +// Suppose some event trigger an event listener in window A, which invokes a

nit: triggers

@@ +86,5 @@
> +//
> +// In general, it's best to use to use the most-closely-associated global
> +// unless the spec says to do otherwise. In 95% of the cases, the global of
> +// the current compartment (GetCurrentGlobal()) is the right thing. The
> +// incumbent global is very similar, and may not need to be a separate concept

Won't we at least always need incumbent global for navigation?
It's sometimes used to get the source browsing context.
I can't see how iframe sandboxing would work if there were no distinction between the incumbent global and the current global.

    
    

    
  
Comment on attachment 8474874 [details] [diff] [review]
Part 2 - Implement GetEntryGlobal. v2

>-// This mostly gets the entry global, but doesn't entirely match the spec in
>-// certain edge cases. It's good enough for some purposes, but not others. If
>-// you want to call this function, ping bholley and describe your use-case.
>-nsIGlobalObject* BrokenGetEntryGlobal();
>+// To implement a web-compatible browser, it is often necessary to obtain the
>+// global object that is "associated" with the currently-running code. This
>+// process is made more complicated by the fact that, historically, different
>+// algorithms have operated with different definitions of the "associated"
>+// global.
>+//
>+// HTML5 formalizes this into two concepts: the "incumbent global" and the
>+// "entry global". The incumbent global corresponds to the global of the
>+// current script being executed, whereas the entry global corresponds to the
>+// global of the script where the current JS execution began.
>+//
>+// There is also a potentially-distinct third global that is determined by the
>+// current compartment. This roughly corresponds with the notion of Realms in
>+// ECMAScript. Note that this concept may be merged with that of the incumbent
>+// global - see [1].
>+//
>+// Suppose some event trigger an event listener in window A, which invokes a
>+// scripted function in window B, which invokes the href setter in window C.
What href setter? window object doesn't have such.

It might be good to explain also what global webidl constructor get.
If the listener (from B) calls 'new windowC.XMLHttpRequest()', the constructor
gets C as param (or at least it should since all the code expects that and that is what
pre-webidl code did).


>+// In general, it's best to use to use the most-closely-associated global
>+// unless the spec says to do otherwise. In 95% of the cases, the global of
>+// the current compartment (GetCurrentGlobal()) is the right thing. The
>+// incumbent global is very similar, and may not need to be a separate concept
>+// at all (again, see [1]). The entry global is used for various things like
>+// computing base URIs, mostly for historical reasons.
Ah good, getting rid of the incumbent jargon would be great, but
based on https://www.w3.org/Bugs/Public/show_bug.cgi?id=26603#c1 it sounds like we can't really do it.


>+// Returns the global associated with the top-most Candidate Entry Point on
>+// the Script Settings Stack. See HTML5. This may be null.
>+nsIGlobalObject* GetEntryGlobal();
>+
>+// Returns the global associated with the top-most entry of the the Script
>+// Settings Stack. See HTML5. This may be null.
> nsIGlobalObject* GetIncumbentGlobal();

s/See HTML5/See HTML/

(Hixie is the editor of HTML spec, not HTML5)


Thanks.

        Attachment #8474874 -
        Flags: review?(bugs) → review+

    
    

    
  
One thing which must be still documented is that whether these methods return inner or outer window.

    
  
Blocks: 981198

    
    

    
  
https://hg.mozilla.org/mozilla-central/rev/6b5285b794ba
https://hg.mozilla.org/mozilla-central/rev/5ed2046aa6c6
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla34

    
  
Blocks: 1056271

    
  
Depends on: 1057405
Blocks: 810808
Component: DOM → DOM: Core & HTML

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: