Changeset 129910 in webkit

Timestamp:

Sep 28, 2012, 9:38:08 AM (13 years ago)

Author:

leandrogracia@chromium.org

Message:

[Chromium] Fix the find-in-page implementation for detaching frames.
​https://bugs.webkit.org/show_bug.cgi?id=97807

Reviewed by Adam Barth.

Follow-up of 97688. Introduces proper test coverage for the find-in-page
feature in detaching/detached frame situations, fixing a few crashes and
ensuring that a final reply is always sent.

• public/WebNode.h:
• src/WebFrameImpl.cpp:

(WebKit::WebFrameImpl::find):
(WebKit::WebFrameImpl::scopeStringMatches):
(WebKit::WebFrameImpl::flushCurrentScopingEffort):
(WebKit):
(WebKit::WebFrameImpl::finishCurrentScopingEffort):
(WebKit::WebFrameImpl::cancelPendingScopingEffort):
(WebKit::WebFrameImpl::WebFrameImpl):
(WebKit::WebFrameImpl::setWebCoreFrame):
(WebKit::WebFrameImpl::initializeAsMainFrame):
(WebKit::WebFrameImpl::createChildFrame):
(WebKit::WebFrameImpl::shouldScopeMatches):
(WebKit::WebFrameImpl::willDetachPage):

• src/WebFrameImpl.h:

(WebFrameImpl):

• src/WebNode.cpp:

(WebKit::WebNode::remove):
(WebKit):

• tests/WebFrameTest.cpp:
• tests/data/find_in_page.html:

Location:

trunk/Source/WebKit/chromium

Files:

• ChangeLog (modified) (1 diff)
• public/WebNode.h (modified) (1 diff)
• src/WebFrameImpl.cpp (modified) (15 diffs)
• src/WebFrameImpl.h (modified) (8 diffs)
• src/WebNode.cpp (modified) (1 diff)
• tests/WebFrameTest.cpp (modified) (2 diffs)
• tests/data/find_in_page.html (modified) (1 diff)

trunk/Source/WebKit/chromium/ChangeLog

@@ +1 @@
+2012-09-28  Leandro Gracia Gil  <leandrogracia@chromium.org>
+
+        [Chromium] Fix the find-in-page implementation for detaching frames.
+        https://bugs.webkit.org/show_bug.cgi?id=97807
+
+        Reviewed by Adam Barth.
+
+        Follow-up of 97688. Introduces proper test coverage for the find-in-page
+        feature in detaching/detached frame situations, fixing a few crashes and
+        ensuring that a final reply is always sent.
+
+        * public/WebNode.h:
+        * src/WebFrameImpl.cpp:
+        (WebKit::WebFrameImpl::find):
+        (WebKit::WebFrameImpl::scopeStringMatches):
+        (WebKit::WebFrameImpl::flushCurrentScopingEffort):
+        (WebKit):
+        (WebKit::WebFrameImpl::finishCurrentScopingEffort):
+        (WebKit::WebFrameImpl::cancelPendingScopingEffort):
+        (WebKit::WebFrameImpl::WebFrameImpl):
+        (WebKit::WebFrameImpl::setWebCoreFrame):
+        (WebKit::WebFrameImpl::initializeAsMainFrame):
+        (WebKit::WebFrameImpl::createChildFrame):
+        (WebKit::WebFrameImpl::shouldScopeMatches):
+        (WebKit::WebFrameImpl::willDetachPage):
+        * src/WebFrameImpl.h:
+        (WebFrameImpl):
+        * src/WebNode.cpp:
+        (WebKit::WebNode::remove):
+        (WebKit):
+        * tests/WebFrameTest.cpp:
+        * tests/data/find_in_page.html:
+
 2012-09-28  Kent Tamura  <tkent@chromium.org>
 

trunk/Source/WebKit/chromium/public/WebNode.h

@@ -114 +114 @@
     WEBKIT_EXPORT WebElement rootEditableElement() const;
     WEBKIT_EXPORT bool focused() const;
+    WEBKIT_EXPORT bool remove();
 
     // Returns true if the node has a non-empty bounding box in layout.

trunk/Source/WebKit/chromium/src/WebFrameImpl.cpp

@@ -526 +526 @@
 }
 
-// WebFrame -------------------------------------------------------------------
-
 class WebFrameImpl::DeferredScopeStringMatches {
 public:
@@ -559 +557 @@
     bool m_reset;
 };
-
 
 // WebFrame -------------------------------------------------------------------
@@ -1619 +1616 @@
                         WebRect* selectionRect)
 {
+    if (!frame() || !frame()->page())
+        return false;
+
     WebFrameImpl* mainFrameImpl = viewImpl()->mainFrameImpl();
 
@@ -1717 +1717 @@
                                       bool reset)
 {
-    WebFrameImpl* mainFrameImpl = viewImpl()->mainFrameImpl();
-
     if (reset) {
         // This is a brand new search, so we need to reset everything.
         // Scoping is just about to begin.
-        m_scopingComplete = false;
+        m_scopingInProgress = true;
+
+        // Need to keep the current identifier locally in order to finish the
+        // request in case the frame is detached during the process.
+        m_findRequestIdentifier = identifier;
 
         // Clear highlighting for this frame.
@@ -1737 +1739 @@
         m_resumeScopingFromRange = 0;
 
-        mainFrameImpl->m_framesScopingCount++;
+        // The view might be null on detached frames.
+        if (frame() && frame()->page())
+            viewImpl()->mainFrameImpl()->m_framesScopingCount++;
 
         // Now, defer scoping until later to allow find operation to finish quickly.
@@ -1756 +1760 @@
     }
 
+    WebFrameImpl* mainFrameImpl = viewImpl()->mainFrameImpl();
     RefPtr<Range> searchRange(rangeOfContents(frame()->document()));
 
@@ -1885 +1890 @@
 }
 
-void WebFrameImpl::finishCurrentScopingEffort(int identifier)
-{
+void WebFrameImpl::flushCurrentScopingEffort(int identifier)
+{
+    if (!frame() || !frame()->page())
+        return;
+
     WebFrameImpl* mainFrameImpl = viewImpl()->mainFrameImpl();
 
     // This frame has no further scoping left, so it is done. Other frames might,
     // of course, continue to scope matches.
-    m_scopingComplete = true;
     mainFrameImpl->m_framesScopingCount--;
-    m_lastFindRequestCompletedWithNoMatches = !m_lastMatchCount;
 
     // If this is the last frame to finish scoping we need to trigger the final
@@ -1899 +1905 @@
     if (!mainFrameImpl->m_framesScopingCount)
         mainFrameImpl->increaseMatchCount(0, identifier);
+}
+
+void WebFrameImpl::finishCurrentScopingEffort(int identifier)
+{
+    flushCurrentScopingEffort(identifier);
+
+    m_scopingInProgress = false;
+    m_lastFindRequestCompletedWithNoMatches = !m_lastMatchCount;
 
     // This frame is done, so show any scrollbar tickmarks we haven't drawn yet.
@@ -1911 +1925 @@
     m_activeMatchIndexInCurrentFrame = -1;
 
-    if (!m_scopingComplete)
+    // Last request didn't complete.
+    if (m_scopingInProgress)
         m_lastFindRequestCompletedWithNoMatches = false;
+
+    m_scopingInProgress = false;
 }
 
@@ -2274 +2291 @@
 
 WebFrameImpl::WebFrameImpl(WebFrameClient* client)
-    : m_frameLoaderClient(this)
+    : FrameDestructionObserver(0)
+    , m_frameLoaderClient(this)
     , m_client(client)
     , m_frame(0)
@@ -2284 +2302 @@
     , m_totalMatchCount(-1)
     , m_framesScopingCount(-1)
-    , m_scopingComplete(false)
+    , m_findRequestIdentifier(-1)
+    , m_scopingInProgress(false)
     , m_lastFindRequestCompletedWithNoMatches(false)
     , m_nextInvalidateAfter(0)
@@ -2305 +2324 @@
 }
 
+void WebFrameImpl::setWebCoreFrame(WebCore::Frame* frame)
+{
+    ASSERT(frame);
+    m_frame = frame;
+    observeFrame(m_frame);
+}
+
 void WebFrameImpl::initializeAsMainFrame(WebCore::Page* page)
 {
     RefPtr<Frame> frame = Frame::create(page, 0, &m_frameLoaderClient);
-    m_frame = frame.get();
+    setWebCoreFrame(frame.get());
 
     // Add reference on behalf of FrameLoader.  See comments in
@@ -2331 +2357 @@
     RefPtr<Frame> childFrame = Frame::create(
         m_frame->page(), ownerElement, &webframe->m_frameLoaderClient);
-    webframe->m_frame = childFrame.get();
+    webframe->setWebCoreFrame(childFrame.get());
 
     childFrame->tree()->setName(request.frameName());
@@ -2570 +2596 @@
     // Don't scope if we can't find a frame or a view.
     // The user may have closed the tab/application, so abort.
-    if (!frame() || !frame()->view())
+    // Also ignore detached frames, as many find operations report to the main frame.
+    if (!frame() || !frame()->view() || !frame()->page())
         return false;
 
@@ -2658 +2685 @@
 }
 
+void WebFrameImpl::willDetachPage()
+{
+    if (!frame() || !frame()->page())
+        return;
+
+    // Do not expect string scoping results from any frames that got detached
+    // in the middle of the operation.
+    if (m_scopingInProgress) {
+
+        // There is a possibility that the frame being detached was the only
+        // pending one. We need to make sure final replies can be sent.
+        flushCurrentScopingEffort(m_findRequestIdentifier);
+
+        cancelPendingScopingEffort();
+    }
+}
+
 } // namespace WebKit

trunk/Source/WebKit/chromium/src/WebFrameImpl.h

@@ -36 +36 @@
 
 #include "Frame.h"
+#include "FrameDestructionObserver.h"
 #include "FrameLoaderClientImpl.h"
 #include <wtf/Compiler.h>
@@ -70 +71 @@
 
 // Implementation of WebFrame, note that this is a reference counted object.
-class WebFrameImpl : public WebFrame, public RefCounted<WebFrameImpl> {
+class WebFrameImpl
+    : public WebFrame
+    , public RefCounted<WebFrameImpl>
+    , public WebCore::FrameDestructionObserver {
 public:
     // WebFrame methods:
@@ -240 +244 @@
     virtual WebString layerTreeAsText(bool showDebugInfo = false) const;
 
+    // WebCore::FrameDestructionObserver methods.
+    virtual void willDetachPage();
+
     static PassRefPtr<WebFrameImpl> create(WebFrameClient* client);
     virtual ~WebFrameImpl();
@@ -331 +338 @@
     void closing();
 
+    // Sets the local WebCore frame and registers destruction observers.
+    void setWebCoreFrame(WebCore::Frame*);
+
     // Notifies the delegate about a new selection rect.
     void reportFindInPageSelection(
@@ -382 +392 @@
     bool shouldScopeMatches(const WTF::String& searchText);
 
+    // Removes the current frame from the global scoping effort and triggers any
+    // updates if appropriate. This method does not mark the scoping operation
+    // as finished.
+    void flushCurrentScopingEffort(int identifier);
+
     // Finishes the current scoping effort and triggers any updates if appropriate.
     void finishCurrentScopingEffort(int identifier);
@@ -407 +422 @@
     WebFrameClient* m_client;
 
+    // FIXME: this is redundant as we already have m_frame from FrameDestructionObserver.
     // This is a weak pointer to our corresponding WebCore frame.  A reference to
     // ourselves is held while frame_ is valid.  See our Closing method.
@@ -438 +454 @@
     // Keeps track of how many matches this frame has found so far, so that we
     // don't loose count between scoping efforts, and is also used (in conjunction
-    // with m_lastSearchString and m_scopingComplete) to figure out if we need to
-    // search the frame again.
+    // with m_lastSearchString) to figure out if we need to search the frame again.
     int m_lastMatchCount;
 
@@ -452 +467 @@
     int m_framesScopingCount;
 
-    // Keeps track of whether the scoping effort was completed (the user may
-    // interrupt it before it completes by submitting a new search).
-    bool m_scopingComplete;
+    // Identifier of the latest find-in-page request. Required to be stored in
+    // the frame in order to reply if required in case the frame is detached.
+    int m_findRequestIdentifier;
+
+    // Keeps track of whether there is an scoping effort ongoing in the frame.
+    bool m_scopingInProgress;
 
     // Keeps track of whether the last find request completed its scoping effort

trunk/Source/WebKit/chromium/src/WebNode.cpp

@@ -224 +224 @@
 }
 
+bool WebNode::remove()
+{
+    ExceptionCode exceptionCode = 0;
+    m_private->remove(exceptionCode);
+    return !exceptionCode;
+}
+
 bool WebNode::hasNonEmptyBoundingBox() const
 {

trunk/Source/WebKit/chromium/tests/WebFrameTest.cpp

@@ -901 +901 @@
     EXPECT_TRUE(mainFrame->find(kFindIdentifier, searchText, options, false, 0));
 
+    mainFrame->resetMatchCount();
+
     for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
         frame->scopeStringMatches(kFindIdentifier, searchText, options, true);
@@ -988 +990 @@
     EXPECT_TRUE(mainFrame->findMatchMarkersVersion() != rectsVersion);
 
+    webView->close();
+}
+
+TEST_F(WebFrameTest, FindOnDetachedFrame)
+{
+    registerMockedHttpURLLoad("find_in_page.html");
+    registerMockedHttpURLLoad("find_in_page_frame.html");
+
+    FindUpdateWebFrameClient client;
+    WebView* webView = FrameTestHelpers::createWebViewAndLoad(m_baseURL + "find_in_page.html", true, &client);
+    webView->resize(WebSize(640, 480));
+    webView->layout();
+    webkit_support::RunAllPendingMessages();
+
+    static const char* kFindString = "result";
+    static const int kFindIdentifier = 12345;
+
+    WebFindOptions options;
+    WebString searchText = WebString::fromUTF8(kFindString);
+    WebFrameImpl* mainFrame = static_cast<WebFrameImpl*>(webView->mainFrame());
+    WebFrameImpl* secondFrame = static_cast<WebFrameImpl*>(mainFrame->traverseNext(false));
+    RefPtr<WebCore::Frame> holdSecondFrame = secondFrame->frame();
+
+    // Detach the frame before finding.
+    EXPECT_TRUE(mainFrame->document().getElementById("frame").remove());
+
+    EXPECT_TRUE(mainFrame->find(kFindIdentifier, searchText, options, false, 0));
+    EXPECT_FALSE(secondFrame->find(kFindIdentifier, searchText, options, false, 0));
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_FALSE(client.findResultsAreReady());
+
+    mainFrame->resetMatchCount();
+
+    for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
+        frame->scopeStringMatches(kFindIdentifier, searchText, options, true);
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_TRUE(client.findResultsAreReady());
+
+    holdSecondFrame.release();
+    webView->close();
+}
+
+TEST_F(WebFrameTest, FindDetachFrameBeforeScopeStrings)
+{
+    registerMockedHttpURLLoad("find_in_page.html");
+    registerMockedHttpURLLoad("find_in_page_frame.html");
+
+    FindUpdateWebFrameClient client;
+    WebView* webView = FrameTestHelpers::createWebViewAndLoad(m_baseURL + "find_in_page.html", true, &client);
+    webView->resize(WebSize(640, 480));
+    webView->layout();
+    webkit_support::RunAllPendingMessages();
+
+    static const char* kFindString = "result";
+    static const int kFindIdentifier = 12345;
+
+    WebFindOptions options;
+    WebString searchText = WebString::fromUTF8(kFindString);
+    WebFrameImpl* mainFrame = static_cast<WebFrameImpl*>(webView->mainFrame());
+    WebFrameImpl* secondFrame = static_cast<WebFrameImpl*>(mainFrame->traverseNext(false));
+    RefPtr<WebCore::Frame> holdSecondFrame = secondFrame->frame();
+
+    for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
+        EXPECT_TRUE(frame->find(kFindIdentifier, searchText, options, false, 0));
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_FALSE(client.findResultsAreReady());
+
+    // Detach the frame between finding and scoping.
+    EXPECT_TRUE(mainFrame->document().getElementById("frame").remove());
+
+    mainFrame->resetMatchCount();
+
+    for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
+        frame->scopeStringMatches(kFindIdentifier, searchText, options, true);
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_TRUE(client.findResultsAreReady());
+
+    holdSecondFrame.release();
+    webView->close();
+}
+
+TEST_F(WebFrameTest, FindDetachFrameWhileScopingStrings)
+{
+    registerMockedHttpURLLoad("find_in_page.html");
+    registerMockedHttpURLLoad("find_in_page_frame.html");
+
+    FindUpdateWebFrameClient client;
+    WebView* webView = FrameTestHelpers::createWebViewAndLoad(m_baseURL + "find_in_page.html", true, &client);
+    webView->resize(WebSize(640, 480));
+    webView->layout();
+    webkit_support::RunAllPendingMessages();
+
+    static const char* kFindString = "result";
+    static const int kFindIdentifier = 12345;
+
+    WebFindOptions options;
+    WebString searchText = WebString::fromUTF8(kFindString);
+    WebFrameImpl* mainFrame = static_cast<WebFrameImpl*>(webView->mainFrame());
+    WebFrameImpl* secondFrame = static_cast<WebFrameImpl*>(mainFrame->traverseNext(false));
+    RefPtr<WebCore::Frame> holdSecondFrame = secondFrame->frame();
+
+    for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
+        EXPECT_TRUE(frame->find(kFindIdentifier, searchText, options, false, 0));
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_FALSE(client.findResultsAreReady());
+
+    mainFrame->resetMatchCount();
+
+    for (WebFrame* frame = mainFrame; frame; frame = frame->traverseNext(false))
+        frame->scopeStringMatches(kFindIdentifier, searchText, options, true);
+
+    // The first scopeStringMatches will have reset the state. Detach before it actually scopes.
+    EXPECT_TRUE(mainFrame->document().getElementById("frame").remove());
+
+    webkit_support::RunAllPendingMessages();
+    EXPECT_TRUE(client.findResultsAreReady());
+
+    holdSecondFrame.release();
     webView->close();
 }

trunk/Source/WebKit/chromium/tests/data/find_in_page.html

@@ -7 +7 @@
 This a find-in-page match rect test.</br>
 result 00</br>
-<iframe src="find_in_page_frame.html" height="300" scrolling="yes"></iframe>
+<iframe src="find_in_page_frame.html" id="frame" height="300" scrolling="yes"></iframe>
 </br>
 result 01