Changeset 113573 in webkit

Timestamp:

Apr 9, 2012 4:42:18 AM (12 years ago)

Author:

commit-queue@webkit.org

Message:

Remove partially implemented per-Element visibility checks from requestAnimationFrame logic
​https://bugs.webkit.org/show_bug.cgi?id=74232

Patch by James Robinson <​jamesr@chromium.org> on 2012-04-09
Reviewed by Dean Jackson.

Source/WebCore:

The initial requestAnimationFrame implementation had an Element parameter as the second argument to the
function. This element was intended to convey the element associated with the animation so that when the element
was not visible the animation callback would not be run. The checked in implementation does a very limited check

• testing for display:none and being detached from the tree - but does it in a way that does not work correctly

if an element's visibility is manipulated by a callback running from a different document. It also adds
significant complexity to the code, making it less hackable and easy to introduce subtle security bugs or
infinite loops.

This patch removes the parameter. Since it has always been marked optional, there is no web compat risk.

If this functionality is added back in the future it needs to be implemented in a way that considers all
callbacks within a Page and not only those within a single Document.

• dom/Document.cpp:

(WebCore::Document::webkitRequestAnimationFrame):

• dom/Document.h:
• dom/RequestAnimationFrameCallback.h:
• dom/ScriptedAnimationController.cpp:

(WebCore::ScriptedAnimationController::registerCallback):
(WebCore::ScriptedAnimationController::serviceScriptedAnimations):

• dom/ScriptedAnimationController.h:
• page/DOMWindow.cpp:

(WebCore::DOMWindow::webkitRequestAnimationFrame):

• page/DOMWindow.h:
• page/DOMWindow.idl:

LayoutTests:

Remove tests for removed functionality.

• fast/animation/request-animation-frame-display-expected.txt: Removed.
• fast/animation/request-animation-frame-display.html: Removed.
• fast/animation/script-tests/request-animation-frame-display.js: Removed.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/fast/animation/request-animation-frame-display-expected.txt (deleted)
• LayoutTests/fast/animation/request-animation-frame-display.html (deleted)
• LayoutTests/fast/animation/script-tests/request-animation-frame-display.js (deleted)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/dom/Document.cpp (modified) (2 diffs)
• Source/WebCore/dom/Document.h (modified) (1 diff)
• Source/WebCore/dom/RequestAnimationFrameCallback.h (modified) (2 diffs)
• Source/WebCore/dom/ScriptedAnimationController.cpp (modified) (4 diffs)
• Source/WebCore/dom/ScriptedAnimationController.h (modified) (2 diffs)
• Source/WebCore/page/DOMWindow.cpp (modified) (1 diff)
• Source/WebCore/page/DOMWindow.h (modified) (1 diff)
• Source/WebCore/page/DOMWindow.idl (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2012-04-09  James Robinson  <jamesr@chromium.org>
+
+        Remove partially implemented per-Element visibility checks from requestAnimationFrame logic
+        https://bugs.webkit.org/show_bug.cgi?id=74232
+
+        Reviewed by Dean Jackson.
+
+        Remove tests for removed functionality.
+
+        * fast/animation/request-animation-frame-display-expected.txt: Removed.
+        * fast/animation/request-animation-frame-display.html: Removed.
+        * fast/animation/script-tests/request-animation-frame-display.js: Removed.
+
 2012-04-09  Ami Fischman  <fischman@chromium.org>
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2012-04-09  James Robinson  <jamesr@chromium.org>
+
+        Remove partially implemented per-Element visibility checks from requestAnimationFrame logic
+        https://bugs.webkit.org/show_bug.cgi?id=74232
+
+        Reviewed by Dean Jackson.
+
+        The initial requestAnimationFrame implementation had an Element parameter as the second argument to the
+        function. This element was intended to convey the element associated with the animation so that when the element
+        was not visible the animation callback would not be run. The checked in implementation does a very limited check
+        - testing for display:none and being detached from the tree - but does it in a way that does not work correctly
+        if an element's visibility is manipulated by a callback running from a different document. It also adds
+        significant complexity to the code, making it less hackable and easy to introduce subtle security bugs or
+        infinite loops.
+
+        This patch removes the parameter. Since it has always been marked optional, there is no web compat risk.
+
+        If this functionality is added back in the future it needs to be implemented in a way that considers all
+        callbacks within a Page and not only those within a single Document.
+
+        * dom/Document.cpp:
+        (WebCore::Document::webkitRequestAnimationFrame):
+        * dom/Document.h:
+        * dom/RequestAnimationFrameCallback.h:
+        * dom/ScriptedAnimationController.cpp:
+        (WebCore::ScriptedAnimationController::registerCallback):
+        (WebCore::ScriptedAnimationController::serviceScriptedAnimations):
+        * dom/ScriptedAnimationController.h:
+        * page/DOMWindow.cpp:
+        (WebCore::DOMWindow::webkitRequestAnimationFrame):
+        * page/DOMWindow.h:
+        * page/DOMWindow.idl:
+
 2012-04-09  Chris Guan  <chris.guan@torchmobile.com.cn>
 

trunk/Source/WebCore/dom/Document.cpp

@@ -5644 +5644 @@
 
 #if ENABLE(REQUEST_ANIMATION_FRAME)
-int Document::webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback> callback, Element* animationElement)
+int Document::webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback> callback)
 {
     if (!m_scriptedAnimationController) {
@@ -5659 +5659 @@
     }
 
-    return m_scriptedAnimationController->registerCallback(callback, animationElement);
+    return m_scriptedAnimationController->registerCallback(callback);
 }
 

trunk/Source/WebCore/dom/Document.h

@@ -1107 +1107 @@
 
 #if ENABLE(REQUEST_ANIMATION_FRAME)
-    int webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback>, Element*);
+    int webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback>);
     void webkitCancelAnimationFrame(int id);
     void serviceScriptedAnimations(DOMTimeStamp);

trunk/Source/WebCore/dom/RequestAnimationFrameCallback.h

@@ -32 +32 @@
 #define RequestAnimationFrameCallback_h
 
-#include "Element.h"
-#include <wtf/PassRefPtr.h>
 #include <wtf/RefCounted.h>
 
@@ -43 +41 @@
     virtual bool handleEvent(DOMTimeStamp) = 0;
 
-    RefPtr<Element> m_element;
     int m_id;
     bool m_firedOrCancelled;

trunk/Source/WebCore/dom/ScriptedAnimationController.cpp

@@ -30 +30 @@
 
 #include "Document.h"
-#include "Element.h"
 #include "FrameView.h"
 #include "InspectorInstrumentation.h"
@@ -82 +81 @@
 }
 
-ScriptedAnimationController::CallbackId ScriptedAnimationController::registerCallback(PassRefPtr<RequestAnimationFrameCallback> callback, Element* animationElement)
+ScriptedAnimationController::CallbackId ScriptedAnimationController::registerCallback(PassRefPtr<RequestAnimationFrameCallback> callback)
 {
     ScriptedAnimationController::CallbackId id = m_nextCallbackId++;
     callback->m_firedOrCancelled = false;
     callback->m_id = id;
-    callback->m_element = animationElement;
     m_callbacks.append(callback);
 
@@ -113 +111 @@
     if (!m_callbacks.size() || m_suspendCount)
         return;
-    // We want to run the callback for all elements in the document that have registered
-    // for a callback and that are visible.  Running the callbacks can cause new callbacks
-    // to be registered, existing callbacks to be cancelled, and elements to gain or lose
-    // visibility so this code has to iterate carefully.
-
-    // FIXME: Currently, this code doesn't do any visibility tests beyond checking display:
 
     // First, generate a list of callbacks to consider.  Callbacks registered from this point
@@ -124 +116 @@
     CallbackList callbacks(m_callbacks);
 
-    // Firing the callback may cause the visibility of other elements to change.  To avoid
-    // missing any callbacks, we keep iterating through the list of candiate callbacks and firing
-    // them until nothing new becomes visible.
-    bool firedCallback;
-
     // Invoking callbacks may detach elements from our document, which clear's the document's
     // reference to us, so take a defensive reference.
     RefPtr<ScriptedAnimationController> protector(this);
-    do {
-        firedCallback = false;
-        // A previous iteration may have detached this Document from the DOM tree.
-        // If so, then we do not need to process any more callbacks.
-        if (!m_document)
-            continue;
 
-        // A previous iteration may have invalidated style (or layout).  Update styles for each iteration
-        // for now since all we check is the existence of a renderer.
-        m_document->updateStyleIfNeeded();
-        for (size_t i = 0; i < callbacks.size(); ++i) {
-            RequestAnimationFrameCallback* callback = callbacks[i].get();
-            if (!callback->m_firedOrCancelled && (!callback->m_element || callback->m_element->renderer())) {
-                callback->m_firedOrCancelled = true;
-                InspectorInstrumentationCookie cookie = InspectorInstrumentation::willFireAnimationFrame(m_document, callback->m_id);
-                callback->handleEvent(time);
-                InspectorInstrumentation::didFireAnimationFrame(cookie);
-                firedCallback = true;
-                callbacks.remove(i);
-                break;
-            }
+    for (size_t i = 0; i < callbacks.size(); ++i) {
+        RequestAnimationFrameCallback* callback = callbacks[i].get();
+        if (!callback->m_firedOrCancelled) {
+            callback->m_firedOrCancelled = true;
+            InspectorInstrumentationCookie cookie = InspectorInstrumentation::willFireAnimationFrame(m_document, callback->m_id);
+            callback->handleEvent(time);
+            InspectorInstrumentation::didFireAnimationFrame(cookie);
         }
-    } while (firedCallback);
+    }
 
     // Remove any callbacks we fired from the list of pending callbacks.

trunk/Source/WebCore/dom/ScriptedAnimationController.h

@@ -43 +43 @@
 
 class Document;
-class Element;
 class RequestAnimationFrameCallback;
 
@@ -61 +60 @@
     typedef int CallbackId;
 
-    CallbackId registerCallback(PassRefPtr<RequestAnimationFrameCallback>, Element*);
+    CallbackId registerCallback(PassRefPtr<RequestAnimationFrameCallback>);
     void cancelCallback(CallbackId);
     void serviceScriptedAnimations(DOMTimeStamp);

trunk/Source/WebCore/page/DOMWindow.cpp

@@ -1486 +1486 @@
 
 #if ENABLE(REQUEST_ANIMATION_FRAME)
-int DOMWindow::webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback> callback, Element* e)
+int DOMWindow::webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback> callback)
 {
     if (Document* d = document())
-        return d->webkitRequestAnimationFrame(callback, e);
+        return d->webkitRequestAnimationFrame(callback);
     return 0;
 }

trunk/Source/WebCore/page/DOMWindow.h

@@ -253 +253 @@
         // WebKit animation extensions
 #if ENABLE(REQUEST_ANIMATION_FRAME)
-        int webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback>, Element*);
+        int webkitRequestAnimationFrame(PassRefPtr<RequestAnimationFrameCallback>);
         void webkitCancelAnimationFrame(int id);
         void webkitCancelRequestAnimationFrame(int id) { webkitCancelAnimationFrame(id); }

trunk/Source/WebCore/page/DOMWindow.idl

@@ -214 +214 @@
 #if defined(ENABLE_REQUEST_ANIMATION_FRAME)
         // WebKit animation extensions, being standardized in the WebPerf WG
-        long webkitRequestAnimationFrame(in [Callback] RequestAnimationFrameCallback callback, in [Optional=DefaultIsUndefined] Element element);
+        long webkitRequestAnimationFrame(in [Callback] RequestAnimationFrameCallback callback);
         void webkitCancelAnimationFrame(in long id);
         void webkitCancelRequestAnimationFrame(in long id); // This is a deprecated alias for webkitCancelAnimationFrame(). Remove this when removing vendor prefix.