Context Navigation

← Previous Changeset
Next Changeset →

Changeset 183189 in webkit

Timestamp:

Apr 23, 2015 9:53:05 AM (9 years ago)

Author:

Carlos Garcia Campos

Message:

[UNIX] Do not allow copies of IPC::Attachment
https://bugs.webkit.org/show_bug.cgi?id=144096

Reviewed by Darin Adler.

It ensures that the file descriptor ownership is always correctly
transferred. This way we can remove the dispose() method to
explicitly close the file descriptor and always close it in the
Attachment destructor (unless explicitly transferred to
IPC::Connection or SharedMemory). It simplifies the code and
ensure we don't leak file descriptors.

Platform/IPC/ArgumentDecoder.cpp:

(IPC::ArgumentDecoder::~ArgumentDecoder): Remove the code to
explicitly dispose attachments.
(IPC::ArgumentDecoder::removeAttachment): Use WTF::move().

Platform/IPC/ArgumentEncoder.cpp:

(IPC::ArgumentEncoder::~ArgumentEncoder): Remove the code to
explicitly dispose attachments.
(IPC::ArgumentEncoder::addAttachment): Use WTF::move().
(IPC::ArgumentEncoder::releaseAttachments): Simplify by using WTF::move().

Platform/IPC/ArgumentEncoder.h:
Platform/IPC/Attachment.cpp:

(IPC::Attachment::encode): Move a copy of the attachment, and
reset the file descriptor, since the ownership is passed to the encoder.

Platform/IPC/Attachment.h: Make copy constructor and assignment

private to not allow public copies. The only copy allowed is done
by Attachment::encode(). Make m_fileDescriptor mutable so that we
can reset it in Attachment::encode() after passing the ownership
to the encoder.

Platform/IPC/unix/AttachmentUnix.cpp:

(IPC::Attachment::~Attachment): Close the file descriptor if it
hasn't been released explicitly.
(IPC::Attachment::dispose): Deleted.

Platform/IPC/unix/ConnectionUnix.cpp:

(IPC::Connection::processMessage): Do not use AttachmentResourceGuard.
(IPC::Connection::sendOutgoingMessage): Ditto.
(IPC::AttachmentResourceGuard::AttachmentResourceGuard): Deleted.
(IPC::AttachmentResourceGuard::~AttachmentResourceGuard): Deleted.

Platform/unix/SharedMemoryUnix.cpp:

(WebKit::SharedMemory::Handle::~Handle): Do not call clear().
(WebKit::SharedMemory::Handle::clear): Reset the attachment.

UIProcess/WebInspectorProxy.cpp:

(WebKit::WebInspectorProxy::createInspectorPage): Use WTF::move().

WebProcess/Plugins/PluginProcessConnectionManager.cpp:

(WebKit::PluginProcessConnectionManager::getPluginProcessConnection):
Call releaseFileDescriptor() instead of fileDescritpro() since the
ownership is passed to the connection.

Location:

trunk/Source/WebKit2

Files:

: 11 edited

ChangeLog (modified) (1 diff)
Platform/IPC/ArgumentDecoder.cpp (modified) (2 diffs)
Platform/IPC/ArgumentEncoder.cpp (modified) (2 diffs)
Platform/IPC/ArgumentEncoder.h (modified) (1 diff)
Platform/IPC/Attachment.cpp (modified) (1 diff)
Platform/IPC/Attachment.h (modified) (2 diffs)
Platform/IPC/unix/AttachmentUnix.cpp (modified) (1 diff)
Platform/IPC/unix/ConnectionUnix.cpp (modified) (3 diffs)
Platform/unix/SharedMemoryUnix.cpp (modified) (1 diff)
UIProcess/WebInspectorProxy.cpp (modified) (1 diff)
WebProcess/Plugins/PluginProcessConnectionManager.cpp (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/WebKit2/ChangeLog

-                      r183188
+                      r183189
+-04-23  Carlos Garcia Campos  <cgarcia@igalia.com>
+        [UNIX] Do not allow copies of IPC::Attachment
+        https://bugs.webkit.org/show_bug.cgi?id=144096
+        Reviewed by Darin Adler.
+        It ensures that the file descriptor ownership is always correctly
+        transferred. This way we can remove the dispose() method to
+        explicitly close the file descriptor and always close it in the
+        Attachment destructor (unless explicitly transferred to
+        IPC::Connection or SharedMemory). It simplifies the code and
+        ensure we don't leak file descriptors.
+        * Platform/IPC/ArgumentDecoder.cpp:
+        (IPC::ArgumentDecoder::~ArgumentDecoder): Remove the code to
+        explicitly dispose attachments.
+        (IPC::ArgumentDecoder::removeAttachment): Use WTF::move().
+        * Platform/IPC/ArgumentEncoder.cpp:
+        (IPC::ArgumentEncoder::~ArgumentEncoder): Remove the code to
+        explicitly dispose attachments.
+        (IPC::ArgumentEncoder::addAttachment): Use WTF::move().
+        (IPC::ArgumentEncoder::releaseAttachments): Simplify by using WTF::move().
+        * Platform/IPC/ArgumentEncoder.h:
+        * Platform/IPC/Attachment.cpp:
+        (IPC::Attachment::encode): Move a copy of the attachment, and
+        reset the file descriptor, since the ownership is passed to the encoder.
+        * Platform/IPC/Attachment.h: Make copy constructor and assignment
+        private to not allow public copies. The only copy allowed is done
+        by Attachment::encode(). Make m_fileDescriptor mutable so that we
+        can reset it in Attachment::encode() after passing the ownership
+        to the encoder.
+        * Platform/IPC/unix/AttachmentUnix.cpp:
+        (IPC::Attachment::~Attachment): Close the file descriptor if it
+        hasn't been released explicitly.
+        (IPC::Attachment::dispose): Deleted.
+        * Platform/IPC/unix/ConnectionUnix.cpp:
+        (IPC::Connection::processMessage): Do not use AttachmentResourceGuard.
+        (IPC::Connection::sendOutgoingMessage): Ditto.
+        (IPC::AttachmentResourceGuard::AttachmentResourceGuard): Deleted.
+        (IPC::AttachmentResourceGuard::~AttachmentResourceGuard): Deleted.
+        * Platform/unix/SharedMemoryUnix.cpp:
+        (WebKit::SharedMemory::Handle::~Handle): Do not call clear().
+        (WebKit::SharedMemory::Handle::clear): Reset the attachment.
+        * UIProcess/WebInspectorProxy.cpp:
+        (WebKit::WebInspectorProxy::createInspectorPage): Use WTF::move().
+        * WebProcess/Plugins/PluginProcessConnectionManager.cpp:
+        (WebKit::PluginProcessConnectionManager::getPluginProcessConnection):
+        Call releaseFileDescriptor() instead of fileDescritpro() since the
+        ownership is passed to the connection.
 -04-23  Alexey Proskuryakov  <ap@apple.com>

trunk/Source/WebKit2/Platform/IPC/ArgumentDecoder.cpp

-                      r176762
+                      r183189
     ASSERT(m_buffer);
     free(m_buffer);
-#if !USE(UNIX_DOMAIN_SOCKETS)
     // FIXME: We need to dispose of the mach ports in cases of failure.
-#else
-    Vector<Attachment>::iterator end = m_attachments.end();
-    for (Vector<Attachment>::iterator it = m_attachments.begin(); it != end; ++it)
-        it->dispose();
-#endif
+}
 …
         return false;
+    attachment = m_attachments.last();
+    m_attachments.removeLast();
+    attachment = m_attachments.takeLast();
     return true;
+}

trunk/Source/WebKit2/Platform/IPC/ArgumentEncoder.cpp

r179707	r183189
71	71	if (m_buffer != m_inlineBuffer)
72	72	freeBuffer(m_buffer, m_bufferCapacity);
73
74		~~#if !USE(UNIX_DOMAIN_SOCKETS)~~
75	73	// FIXME: We need to dispose of the attachments in cases of failure.
76		~~#else~~
77		~~for (size_t i = 0; i < m_attachments.size(); ++i)~~
78		~~m_attachments[i].dispose();~~
79		~~#endif~~
80	74	}
81	75
…	…
192	186	}
193	187
194		void ArgumentEncoder::addAttachment(~~const Attachment~~& attachment)
	188	void ArgumentEncoder::addAttachment(Attachment&& attachment)
195	189	{
196		m_attachments.append(~~attachment~~);
	190	m_attachments.append(WTF::move(attachment));
197	191	}
198	192
199	193	Vector<Attachment> ArgumentEncoder::releaseAttachments()
200	194	{
201		Vector<Attachment> newList;
202		newList.swap(m_attachments);
203		return newList;
	195	return WTF::move(m_attachments);
204	196	}
205	197

trunk/Source/WebKit2/Platform/IPC/ArgumentEncoder.h

r177543	r183189
66	66	size_t bufferSize() const { return m_bufferSize; }
67	67
68		void addAttachment(~~const Attachment~~&);
	68	void addAttachment(Attachment&&);
69	69	Vector<Attachment> releaseAttachments();
70	70	void reserve(size_t);

trunk/Source/WebKit2/Platform/IPC/Attachment.cpp

r161148	r183189
53	53	void Attachment::encode(ArgumentEncoder& encoder) const
54	54	{
55		encoder.addAttachment(*this);
	55	encoder.addAttachment(WTF::move(const_cast<Attachment>(this)));
56	56	}
57	57

trunk/Source/WebKit2/Platform/IPC/Attachment.h

-                      r183176
+                      r183189
     Attachment(Attachment&&);
     Attachment& operator=(Attachment&&);
-    Attachment(const Attachment&) = default;
-    Attachment& operator=(Attachment&) = default;
     Attachment(int fileDescriptor, size_t);
     Attachment(int fileDescriptor);
+    ~Attachment();
 #endif
 …
     int releaseFileDescriptor() { int temp = m_fileDescriptor; m_fileDescriptor = -1; return temp; }
     int fileDescriptor() const { return m_fileDescriptor; }
-    void dispose();
 #endif

trunk/Source/WebKit2/Platform/IPC/unix/AttachmentUnix.cpp

r183176	r183189
68	68	}
69	69
70		~~void Attachment::dispose~~()
	70	Attachment::~Attachment()
71	71	{
72		if (m_fileDescriptor == -1)
73		return;
74
75		closeWithRetry(m_fileDescriptor);
76		m_fileDescriptor = -1;
	72	if (m_fileDescriptor != -1)
	73	closeWithRetry(m_fileDescriptor);
77	74	}
78	75

trunk/Source/WebKit2/Platform/IPC/unix/ConnectionUnix.cpp

-                      r183176
+                      r183189
+}
-template<class T, class iterator>
-class AttachmentResourceGuard {
-public:
-    AttachmentResourceGuard(T& attachments)
-        : m_attachments(attachments)
+    {
+    }
-    ~AttachmentResourceGuard()
+    {
-        iterator end = m_attachments.end();
-        for (iterator i = m_attachments.begin(); i != end; ++i)
-            i->dispose();
+    }
-private:
-    T& m_attachments;
-};
 bool Connection::processMessage()
+{
 …
     Vector<Attachment> attachments(attachmentCount);
-    AttachmentResourceGuard<Vector<Attachment>, Vector<Attachment>::iterator> attachementDisposer(attachments);
     RefPtr<WebKit::SharedMemory> oolMessageBody;
 …
     Vector<Attachment> attachments = encoder->releaseAttachments();
-    AttachmentResourceGuard<Vector<Attachment>, Vector<Attachment>::iterator> attachementDisposer(attachments);
     if (attachments.size() > (attachmentMaxAmount - 1)) {
         ASSERT_NOT_REACHED();

trunk/Source/WebKit2/Platform/unix/SharedMemoryUnix.cpp

r183184	r183189
53	53	SharedMemory::Handle::~Handle()
54	54	{
55		~~clear();~~
56	55	}
57	56
58	57	void SharedMemory::Handle::clear()
59	58	{
60		m_attachment~~.dispose~~();
	59	m_attachment = IPC::Attachment();
61	60	}
62	61

trunk/Source/WebKit2/UIProcess/WebInspectorProxy.cpp

r182447	r183189
487	487
488	488	m_underTest = underTest;
489		m_connectionIdentifier = ~~connectionIdentifier~~;
	489	m_connectionIdentifier = WTF::move(connectionIdentifier);
490	490
491	491	m_inspectorPage->process().send(Messages::WebInspectorUI::EstablishConnection(m_connectionIdentifier, m_inspectedPage->pageID(), m_underTest), m_inspectorPage->pageID());

trunk/Source/WebKit2/WebProcess/Plugins/PluginProcessConnectionManager.cpp

-                      r180054
+                      r183189
 #if OS(DARWIN)
     IPC::Connection::Identifier connectionIdentifier(encodedConnectionIdentifier.port());
+#elif USE(UNIX_DOMAIN_SOCKETS)
+    IPC::Connection::Identifier connectionIdentifier = encodedConnectionIdentifier.releaseFileDescriptor();
+#endif
     if (IPC::Connection::identifierIsNull(connectionIdentifier))
+        return 0;
+#elif USE(UNIX_DOMAIN_SOCKETS)
+    IPC::Connection::Identifier connectionIdentifier = encodedConnectionIdentifier.fileDescriptor();
+    if (connectionIdentifier == -1)
+        return 0;
+#endif
+        return nullptr;
     RefPtr<PluginProcessConnection> pluginProcessConnection = PluginProcessConnection::create(this, pluginProcessToken, connectionIdentifier, supportsAsynchronousInitialization);

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 183189 in webkit

Legend:

Download in other formats: