Changeset 223958 in webkit

Timestamp:

Oct 25, 2017 10:19:41 AM (6 years ago)

Author:

Chris Dumez

Message:

Make SharedStringHashTable less error prone
​https://bugs.webkit.org/show_bug.cgi?id=178764

Reviewed by Youenn Fablet.

SharedStringHashTable is backed by SharedMemory and this SharedMemory
may be readonly (and is when used in the WebContent process). As a result,
some of the operations on SharedStringHashTable that write to this shared
memory will crash if called and the SharedMemory is readonly.

To make this less error prone, introduce a new SharedStringHashTableReadOnly
base class for SharedStringHashTable and only keep the operations that
write to the shared memory on SharedStringHashTableReadOnly (namely, add() /
remove() / clear(). Update VisitedLinkTableController and WebSWOriginTable
to use SharedStringHashTableReadOnly since they are instantiated in the
WebContent process and use readonly shared memory.

• Shared/SharedStringHashTable.cpp:

(WebKit::SharedStringHashTableReadOnly::SharedStringHashTableReadOnly):
(WebKit::SharedStringHashTableReadOnly::~SharedStringHashTableReadOnly):
(WebKit::SharedStringHashTableReadOnly::setSharedMemory):
(WebKit::doubleHash):
(WebKit::SharedStringHashTableReadOnly::contains const):
(WebKit::SharedStringHashTableReadOnly::findSlot const):
(WebKit::SharedStringHashTable::SharedStringHashTable):
(WebKit::SharedStringHashTable::~SharedStringHashTable):
(WebKit::SharedStringHashTable::add):
(WebKit::SharedStringHashTable::remove):
(WebKit::SharedStringHashTable::clear):

• Shared/SharedStringHashTable.h:
• WebProcess/Storage/WebSWOriginTable.h:
• WebProcess/WebPage/VisitedLinkTableController.cpp:

(WebKit::VisitedLinkTableController::removeAllVisitedLinks):

• WebProcess/WebPage/VisitedLinkTableController.h:

Location:

trunk/Source/WebKit

Files:

• CMakeLists.txt (modified) (1 diff)
• ChangeLog (modified) (1 diff)
• Shared/SharedStringHashTable.cpp (modified) (4 diffs)
• Shared/SharedStringHashTable.h (modified) (1 diff)
• Shared/SharedStringHashTableReadOnly.cpp (copied) (copied from trunk/Source/WebKit/Shared/SharedStringHashTable.cpp) (5 diffs)
• Shared/SharedStringHashTableReadOnly.h (copied) (copied from trunk/Source/WebKit/Shared/SharedStringHashTable.h) (2 diffs)
• WebKit.xcodeproj/project.pbxproj (modified) (6 diffs)
• WebProcess/Storage/WebSWOriginTable.h (modified) (2 diffs)
• WebProcess/WebPage/VisitedLinkTableController.cpp (modified) (1 diff)
• WebProcess/WebPage/VisitedLinkTableController.h (modified) (2 diffs)

trunk/Source/WebKit/CMakeLists.txt

@@ -182 +182 @@
     Shared/ShareableResource.cpp
     Shared/SharedStringHashStore.cpp
+    Shared/SharedStringHashTableReadOnly.cpp
     Shared/SharedStringHashTable.cpp
     Shared/StatisticsData.cpp

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2017-10-25  Chris Dumez  <cdumez@apple.com>
+
+        Make SharedStringHashTable less error prone
+        https://bugs.webkit.org/show_bug.cgi?id=178764
+
+        Reviewed by Youenn Fablet.
+
+        SharedStringHashTable is backed by SharedMemory and this SharedMemory
+        may be readonly (and is when used in the WebContent process). As a result,
+        some of the operations on SharedStringHashTable that write to this shared
+        memory will crash if called and the SharedMemory is readonly.
+
+        To make this less error prone, introduce a new SharedStringHashTableReadOnly
+        base class for SharedStringHashTable and only keep the operations that
+        write to the shared memory on SharedStringHashTableReadOnly (namely, add() /
+        remove() / clear(). Update VisitedLinkTableController and WebSWOriginTable
+        to use SharedStringHashTableReadOnly since they are instantiated in the
+        WebContent process and use readonly shared memory.
+
+        * Shared/SharedStringHashTable.cpp:
+        (WebKit::SharedStringHashTableReadOnly::SharedStringHashTableReadOnly):
+        (WebKit::SharedStringHashTableReadOnly::~SharedStringHashTableReadOnly):
+        (WebKit::SharedStringHashTableReadOnly::setSharedMemory):
+        (WebKit::doubleHash):
+        (WebKit::SharedStringHashTableReadOnly::contains const):
+        (WebKit::SharedStringHashTableReadOnly::findSlot const):
+        (WebKit::SharedStringHashTable::SharedStringHashTable):
+        (WebKit::SharedStringHashTable::~SharedStringHashTable):
+        (WebKit::SharedStringHashTable::add):
+        (WebKit::SharedStringHashTable::remove):
+        (WebKit::SharedStringHashTable::clear):
+        * Shared/SharedStringHashTable.h:
+        * WebProcess/Storage/WebSWOriginTable.h:
+        * WebProcess/WebPage/VisitedLinkTableController.cpp:
+        (WebKit::VisitedLinkTableController::removeAllVisitedLinks):
+        * WebProcess/WebPage/VisitedLinkTableController.h:
+
 2017-10-25  Adrian Perez de Castro  <aperez@igalia.com>
 

trunk/Source/WebKit/Shared/SharedStringHashTable.cpp

@@ -29 +29 @@
 #include "SharedMemory.h"
 
+namespace WebKit {
+
 using namespace WebCore;
-
-namespace WebKit {
 
 SharedStringHashTable::SharedStringHashTable()
@@ -41 +41 @@
 }
 
-#if !ASSERT_DISABLED
-static inline bool isPowerOf2(unsigned v)
-{
-    // Taken from http://www.cs.utk.edu/~vose/c-stuff/bithacks.html
-    
-    return !(v & (v - 1)) && v;
-}
-#endif
-
-void SharedStringHashTable::setSharedMemory(Ref<SharedMemory>&& sharedMemory)
-{
-    m_sharedMemory = WTFMove(sharedMemory);
-    
-    ASSERT(m_sharedMemory);
-    ASSERT(!(m_sharedMemory->size() % sizeof(SharedStringHash)));
-
-    m_table = static_cast<SharedStringHash*>(m_sharedMemory->data());
-    m_tableSize = m_sharedMemory->size() / sizeof(SharedStringHash);
-    ASSERT(isPowerOf2(m_tableSize));
-    
-    m_tableSizeMask = m_tableSize - 1;
-}
-
-static inline unsigned doubleHash(unsigned key)
-{
-    key = ~key + (key >> 23);
-    key ^= (key << 12);
-    key ^= (key >> 7);
-    key ^= (key << 2);
-    key ^= (key >> 20);
-    return key;
-}
-    
 bool SharedStringHashTable::add(SharedStringHash sharedStringHash)
 {
@@ -97 +64 @@
 }
 
-bool SharedStringHashTable::contains(SharedStringHash sharedStringHash) const
-{
-    auto* slot = findSlot(sharedStringHash);
-    return slot && *slot;
-}
-
-SharedStringHash* SharedStringHashTable::findSlot(SharedStringHash sharedStringHash) const
-{
-    if (!m_sharedMemory)
-        return nullptr;
-
-    int k = 0;
-    SharedStringHash* table = m_table;
-    int sizeMask = m_tableSizeMask;
-    unsigned h = static_cast<unsigned>(sharedStringHash);
-    int i = h & sizeMask;
-
-    SharedStringHash* entry;
-    while (1) {
-        entry = table + i;
-
-        // Check if we've reached the end of the table.
-        if (!*entry)
-            return entry;
-
-        if (*entry == sharedStringHash)
-            return entry;
-
-        if (!k)
-            k = 1 | doubleHash(h);
-        i = (i + k) & sizeMask;
-    }
-}
-
 void SharedStringHashTable::clear()
 {
@@ -137 +70 @@
 
     memset(m_sharedMemory->data(), 0, m_sharedMemory->size());
-    m_table = nullptr;
-    m_tableSize = 0;
-    m_tableSizeMask = 0;
-    m_sharedMemory = nullptr;
+    setSharedMemory(nullptr);
 }
 

trunk/Source/WebKit/Shared/SharedStringHashTable.h

@@ -26 +26 @@
 #pragma once
 
-#include <WebCore/SharedStringHash.h>
-#include <wtf/RefPtr.h>
+#include "SharedStringHashTableReadOnly.h"
 
 namespace WebKit {
 
-class SharedMemory;
-
-class SharedStringHashTable {
+class SharedStringHashTable : public SharedStringHashTableReadOnly {
 public:
     SharedStringHashTable();
     ~SharedStringHashTable();
 
-    void setSharedMemory(Ref<SharedMemory>&&);
-
-    // Can only be called if the underlying shared memory is in read / write mode.
     bool add(WebCore::SharedStringHash);
     bool remove(WebCore::SharedStringHash);
-
-    bool contains(WebCore::SharedStringHash) const;
-
-    SharedMemory* sharedMemory() const { return m_sharedMemory.get(); }
     void clear();
-
-private:
-    RefPtr<SharedMemory> m_sharedMemory;
-    WebCore::SharedStringHash* findSlot(WebCore::SharedStringHash) const;
-
-    unsigned m_tableSize { 0 };
-    unsigned m_tableSizeMask { 0 };
-    WebCore::SharedStringHash* m_table { nullptr };
 };
 

trunk/Source/WebKit/Shared/SharedStringHashTableReadOnly.cpp

@@ -25 +25 @@
 
 #include "config.h"
-#include "SharedStringHashTable.h"
+#include "SharedStringHashTableReadOnly.h"
 
 #include "SharedMemory.h"
 
-using namespace WebCore;
-
 namespace WebKit {
 
-SharedStringHashTable::SharedStringHashTable()
-{
-}
-
-SharedStringHashTable::~SharedStringHashTable()
-{
-}
+using namespace WebCore;
 
 #if !ASSERT_DISABLED
@@ -45 +37 @@
 {
     // Taken from http://www.cs.utk.edu/~vose/c-stuff/bithacks.html
-    
+
     return !(v & (v - 1)) && v;
 }
 #endif
-
-void SharedStringHashTable::setSharedMemory(Ref<SharedMemory>&& sharedMemory)
-{
-    m_sharedMemory = WTFMove(sharedMemory);
-    
-    ASSERT(m_sharedMemory);
-    ASSERT(!(m_sharedMemory->size() % sizeof(SharedStringHash)));
-
-    m_table = static_cast<SharedStringHash*>(m_sharedMemory->data());
-    m_tableSize = m_sharedMemory->size() / sizeof(SharedStringHash);
-    ASSERT(isPowerOf2(m_tableSize));
-    
-    m_tableSizeMask = m_tableSize - 1;
-}
 
 static inline unsigned doubleHash(unsigned key)
@@ -73 +51 @@
     return key;
 }
-    
-bool SharedStringHashTable::add(SharedStringHash sharedStringHash)
+
+SharedStringHashTableReadOnly::SharedStringHashTableReadOnly()
 {
-    auto* slot = findSlot(sharedStringHash);
-    ASSERT(slot);
-
-    // Check if the same link hash is in the table already.
-    if (*slot)
-        return false;
-
-    *slot = sharedStringHash;
-    return true;
 }
 
-bool SharedStringHashTable::remove(SharedStringHash sharedStringHash)
+SharedStringHashTableReadOnly::~SharedStringHashTableReadOnly()
 {
-    auto* slot = findSlot(sharedStringHash);
-    if (!slot || !*slot)
-        return false;
-
-    *slot = 0;
-    return true;
 }
 
-bool SharedStringHashTable::contains(SharedStringHash sharedStringHash) const
+void SharedStringHashTableReadOnly::setSharedMemory(RefPtr<SharedMemory>&& sharedMemory)
+{
+    m_sharedMemory = WTFMove(sharedMemory);
+
+    if (m_sharedMemory) {
+        ASSERT(!(m_sharedMemory->size() % sizeof(SharedStringHash)));
+        m_table = static_cast<SharedStringHash*>(m_sharedMemory->data());
+        m_tableSize = m_sharedMemory->size() / sizeof(SharedStringHash);
+        ASSERT(isPowerOf2(m_tableSize));
+        m_tableSizeMask = m_tableSize - 1;
+    } else {
+        m_table = nullptr;
+        m_tableSize = 0;
+        m_tableSizeMask = 0;
+    }
+}
+
+bool SharedStringHashTableReadOnly::contains(SharedStringHash sharedStringHash) const
 {
     auto* slot = findSlot(sharedStringHash);
@@ -103 +83 @@
 }
 
-SharedStringHash* SharedStringHashTable::findSlot(SharedStringHash sharedStringHash) const
+SharedStringHash* SharedStringHashTableReadOnly::findSlot(SharedStringHash sharedStringHash) const
 {
     if (!m_sharedMemory)
@@ -131 +111 @@
 }
 
-void SharedStringHashTable::clear()
-{
-    if (!m_sharedMemory)
-        return;
-
-    memset(m_sharedMemory->data(), 0, m_sharedMemory->size());
-    m_table = nullptr;
-    m_tableSize = 0;
-    m_tableSizeMask = 0;
-    m_sharedMemory = nullptr;
-}
-
 } // namespace WebKit

trunk/Source/WebKit/Shared/SharedStringHashTableReadOnly.h

@@ -33 +33 @@
 class SharedMemory;
 
-class SharedStringHashTable {
+class SharedStringHashTableReadOnly {
 public:
-    SharedStringHashTable();
-    ~SharedStringHashTable();
-
-    void setSharedMemory(Ref<SharedMemory>&&);
-
-    // Can only be called if the underlying shared memory is in read / write mode.
-    bool add(WebCore::SharedStringHash);
-    bool remove(WebCore::SharedStringHash);
+    SharedStringHashTableReadOnly();
+    ~SharedStringHashTableReadOnly();
 
     bool contains(WebCore::SharedStringHash) const;
 
     SharedMemory* sharedMemory() const { return m_sharedMemory.get(); }
-    void clear();
+    void setSharedMemory(RefPtr<SharedMemory>&&);
 
-private:
-    RefPtr<SharedMemory> m_sharedMemory;
+protected:
     WebCore::SharedStringHash* findSlot(WebCore::SharedStringHash) const;
 
+    RefPtr<SharedMemory> m_sharedMemory;
     unsigned m_tableSize { 0 };
     unsigned m_tableSizeMask { 0 };
@@ -58 +52 @@
 };
 
-}
+} // namespace WebKit

trunk/Source/WebKit/WebKit.xcodeproj/project.pbxproj

@@ -1402 +1402 @@
                 83F1A0791F96E7790045B94E /* WebSWOriginTable.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 83F1A0771F96E7700045B94E /* WebSWOriginTable.cpp */; };
                 83F1A07A1F96E7790045B94E /* WebSWOriginTable.h in Headers */ = {isa = PBXBuildFile; fileRef = 83F1A0781F96E7710045B94E /* WebSWOriginTable.h */; };
+                83F9644D1FA0F76E00C47750 /* SharedStringHashTableReadOnly.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 83F9644B1FA0F76200C47750 /* SharedStringHashTableReadOnly.cpp */; };
+                83F9644E1FA0F76E00C47750 /* SharedStringHashTableReadOnly.h in Headers */ = {isa = PBXBuildFile; fileRef = 83F9644C1FA0F76300C47750 /* SharedStringHashTableReadOnly.h */; };
                 84477853176FCC0800CDC7BB /* InjectedBundleHitTestResultMediaType.h in Headers */ = {isa = PBXBuildFile; fileRef = 84477851176FCAC100CDC7BB /* InjectedBundleHitTestResultMediaType.h */; };
                 868160D0187645570021E79D /* WindowServerConnection.mm in Sources */ = {isa = PBXBuildFile; fileRef = 868160CF187645370021E79D /* WindowServerConnection.mm */; };
@@ -3720 +3722 @@
                 7CDE73A11F9DA41400390312 /* GeneratePreferences.rb */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.script.ruby; path = GeneratePreferences.rb; sourceTree = "<group>"; };
                 7CDE73A21F9DA59700390312 /* PreferencesTemplates */ = {isa = PBXFileReference; lastKnownFileType = folder; path = PreferencesTemplates; sourceTree = "<group>"; };
-                7CDE73A31F9DAB6500390312 /* WebPreferencesDefinitions.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; name = WebPreferencesDefinitions.h; path = WebPreferencesDefinitions.h; sourceTree = "<group>"; };
+                7CDE73A31F9DAB6500390312 /* WebPreferencesDefinitions.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = WebPreferencesDefinitions.h; sourceTree = "<group>"; };
                 7CE4D2061A46775700C7F152 /* APILegacyContextHistoryClient.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = APILegacyContextHistoryClient.h; sourceTree = "<group>"; };
                 7CE4D2151A49148400C7F152 /* WebProcessPoolCocoa.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = WebProcessPoolCocoa.mm; sourceTree = "<group>"; };
@@ -3780 +3782 @@
                 83F1A0771F96E7700045B94E /* WebSWOriginTable.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = WebSWOriginTable.cpp; sourceTree = "<group>"; };
                 83F1A0781F96E7710045B94E /* WebSWOriginTable.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = WebSWOriginTable.h; sourceTree = "<group>"; };
+                83F9644B1FA0F76200C47750 /* SharedStringHashTableReadOnly.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = SharedStringHashTableReadOnly.cpp; sourceTree = "<group>"; };
+                83F9644C1FA0F76300C47750 /* SharedStringHashTableReadOnly.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = SharedStringHashTableReadOnly.h; sourceTree = "<group>"; };
                 84477851176FCAC100CDC7BB /* InjectedBundleHitTestResultMediaType.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = InjectedBundleHitTestResultMediaType.h; sourceTree = "<group>"; };
                 868160CD18763D4B0021E79D /* WindowServerConnection.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = WindowServerConnection.h; sourceTree = "<group>"; };
@@ -5073 +5077 @@
                                 8313F7E81F7DAE0300B944EB /* SharedStringHashTable.cpp */,
                                 8313F7E71F7DAE0300B944EB /* SharedStringHashTable.h */,
+                                83F9644B1FA0F76200C47750 /* SharedStringHashTableReadOnly.cpp */,
+                                83F9644C1FA0F76300C47750 /* SharedStringHashTableReadOnly.h */,
                                 5272B2881406985D0096A5D0 /* StatisticsData.cpp */,
                                 5272B2891406985D0096A5D0 /* StatisticsData.h */,
@@ -8835 +8841 @@
                                 8313F7EC1F7DAE0800B944EB /* SharedStringHashStore.h in Headers */,
                                 8313F7EE1F7DAE0800B944EB /* SharedStringHashTable.h in Headers */,
+                                83F9644E1FA0F76E00C47750 /* SharedStringHashTableReadOnly.h in Headers */,
                                 2DAF06D618BD1A470081CEB1 /* SmartMagnificationController.h in Headers */,
                                 2DE6943E18BD2A68005C15E5 /* SmartMagnificationControllerMessages.h in Headers */,
@@ -10430 +10437 @@
                                 8313F7EB1F7DAE0800B944EB /* SharedStringHashStore.cpp in Sources */,
                                 8313F7ED1F7DAE0800B944EB /* SharedStringHashTable.cpp in Sources */,
+                                83F9644D1FA0F76E00C47750 /* SharedStringHashTableReadOnly.cpp in Sources */,
                                 2DAF06D718BD1A470081CEB1 /* SmartMagnificationController.mm in Sources */,
                                 2DE6943D18BD2A68005C15E5 /* SmartMagnificationControllerMessageReceiver.cpp in Sources */,

trunk/Source/WebKit/WebProcess/Storage/WebSWOriginTable.h

@@ -29 +29 @@
 
 #include "SharedMemory.h"
-#include "SharedStringHashTable.h"
+#include "SharedStringHashTableReadOnly.h"
 
 namespace WebCore {
@@ -45 +45 @@
 
 private:
-    SharedStringHashTable m_serviceWorkerOriginTable;
+    SharedStringHashTableReadOnly m_serviceWorkerOriginTable;
 };
 

trunk/Source/WebKit/WebProcess/WebPage/VisitedLinkTableController.cpp

@@ -113 +113 @@
 void VisitedLinkTableController::removeAllVisitedLinks()
 {
-    m_visitedLinkTable.clear();
+    m_visitedLinkTable.setSharedMemory(nullptr);
 
     invalidateStylesForAllLinks();

trunk/Source/WebKit/WebProcess/WebPage/VisitedLinkTableController.h

@@ -28 +28 @@
 #include "MessageReceiver.h"
 #include "SharedMemory.h"
-#include "SharedStringHashTable.h"
+#include "SharedStringHashTableReadOnly.h"
 #include <WebCore/VisitedLinkStore.h>
 
@@ -54 +54 @@
 
     uint64_t m_identifier;
-    SharedStringHashTable m_visitedLinkTable;
+    SharedStringHashTableReadOnly m_visitedLinkTable;
 };