/* * Copyright (C) 2012 Google Inc. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are * met: * * * Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * Redistributions in binary form must reproduce the above * copyright notice, this list of conditions and the following disclaimer * in the documentation and/or other materials provided with the * distribution. * * Neither the name of Google Inc. nor the names of its * contributors may be used to endorse or promote products derived from * this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include "config.h" #include "core/inspector/InjectedScriptManager.h" #include "V8InjectedScriptHost.h" #include "V8Window.h" #include "bindings/v8/BindingSecurity.h" #include "bindings/v8/ScopedPersistent.h" #include "bindings/v8/ScriptDebugServer.h" #include "bindings/v8/ScriptObject.h" #include "bindings/v8/V8Binding.h" #include "bindings/v8/V8ObjectConstructor.h" #include "bindings/v8/V8ScriptRunner.h" #include "core/inspector/InjectedScriptHost.h" #include "core/frame/DOMWindow.h" #include "wtf/RefPtr.h" namespace WebCore { struct InjectedScriptManager::CallbackData { ScopedPersistent handle; RefPtr host; }; static v8::Local createInjectedScriptHostV8Wrapper(InjectedScriptHost* host, v8::Isolate* isolate) { v8::Local function = V8InjectedScriptHost::domTemplate(isolate, MainWorld)->GetFunction(); if (function.IsEmpty()) { // Return if allocation failed. return v8::Local(); } v8::Local instanceTemplate = V8ObjectConstructor::newInstance(function); if (instanceTemplate.IsEmpty()) { // Avoid setting the wrapper if allocation failed. return v8::Local(); } V8DOMWrapper::setNativeInfo(instanceTemplate, &V8InjectedScriptHost::wrapperTypeInfo, host); // Create a weak reference to the v8 wrapper of InspectorBackend to deref // InspectorBackend when the wrapper is garbage collected. InjectedScriptManager::CallbackData* data = new InjectedScriptManager::CallbackData; data->host = host; data->handle.set(isolate, instanceTemplate); data->handle.setWeak(data, &InjectedScriptManager::setWeakCallback); return instanceTemplate; } ScriptObject InjectedScriptManager::createInjectedScript(const String& scriptSource, ScriptState* inspectedScriptState, int id) { v8::Isolate* isolate = inspectedScriptState->isolate(); v8::HandleScope handleScope(isolate); v8::Local inspectedContext = inspectedScriptState->context(); v8::Context::Scope contextScope(inspectedContext); // Call custom code to create InjectedScripHost wrapper specific for the context // instead of calling toV8() that would create the // wrapper in the current context. // FIXME: make it possible to use generic bindings factory for InjectedScriptHost. v8::Local scriptHostWrapper = createInjectedScriptHostV8Wrapper(m_injectedScriptHost.get(), inspectedContext->GetIsolate()); if (scriptHostWrapper.IsEmpty()) return ScriptObject(); // Inject javascript into the context. The compiled script is supposed to evaluate into // a single anonymous function(it's anonymous to avoid cluttering the global object with // inspector's stuff) the function is called a few lines below with InjectedScriptHost wrapper, // injected script id and explicit reference to the inspected global object. The function is expected // to create and configure InjectedScript instance that is going to be used by the inspector. v8::Local value = V8ScriptRunner::compileAndRunInternalScript(v8String(isolate, scriptSource), isolate); ASSERT(!value.IsEmpty()); ASSERT(value->IsFunction()); v8::Local windowGlobal = inspectedContext->Global(); v8::Handle info[] = { scriptHostWrapper, windowGlobal, v8::Number::New(inspectedContext->GetIsolate(), id) }; v8::Local injectedScriptValue = V8ScriptRunner::callInternalFunction(v8::Local::Cast(value), windowGlobal, WTF_ARRAY_LENGTH(info), info, inspectedContext->GetIsolate()); return ScriptObject(inspectedScriptState, v8::Handle::Cast(injectedScriptValue)); } bool InjectedScriptManager::canAccessInspectedWindow(ScriptState* scriptState) { v8::HandleScope handleScope(scriptState->isolate()); v8::Local context = scriptState->context(); v8::Local global = context->Global(); if (global.IsEmpty()) return false; v8::Handle holder = global->FindInstanceInPrototypeChain(V8Window::domTemplate(context->GetIsolate(), MainWorld)); if (holder.IsEmpty()) holder = global->FindInstanceInPrototypeChain(V8Window::domTemplate(context->GetIsolate(), IsolatedWorld)); if (holder.IsEmpty()) return false; Frame* frame = V8Window::toNative(holder)->frame(); v8::Context::Scope contextScope(context); return BindingSecurity::shouldAllowAccessToFrame(frame, DoNotReportSecurityError); } void InjectedScriptManager::setWeakCallback(const v8::WeakCallbackData& data) { data.GetParameter()->handle.clear(); data.GetParameter()->host.clear(); delete data.GetParameter(); } } // namespace WebCore