Changeset 85056 in webkit

Timestamp:

Apr 27, 2011 9:22:48 AM (13 years ago)

Author:

Darin Adler

Message:

2011-04-27 Darin Adler <Darin Adler>

Reviewed by Sam Weinig.

Somehow about:blank gets into the icon database
​https://bugs.webkit.org/show_bug.cgi?id=58067
rdar://problem/6751446

Implemented the policy Brady suggested, where only http and https URLs can
be associated with and icon, guarding both on the way in to the database,
and on the way out.

• loader/icon/IconDatabase.cpp: (WebCore::pageCanHaveIcon): Added. (WebCore::IconDatabase::synchronousIconForPageURL): Call pageCanHaveIcon instead of just checking for an empty URL. (WebCore::IconDatabase::synchronousIconURLForPageURL): Ditto. (WebCore::IconDatabase::retainIconForPageURL): Ditto. (WebCore::IconDatabase::releaseIconForPageURL): Ditto. (WebCore::IconDatabase::setIconURLForPageURL): Ditto. (WebCore::IconDatabase::getOrCreatePageURLRecord): Ditto. (WebCore::IconDatabase::importIconURLForPageURL): Broke assertion into two separate assertions and added a third. (WebCore::IconDatabase::performURLImport): Call pageCanHaveIcon.

• platform/KURL.cpp: Sorted includes. Moved a FIXME to the top of the file. (WebCore::isLetterMatchIgnoringCase): Renamed matchLetter to this name, overloaded it to work on both UChar and char, and added an assertion to it. Also moved this to the top of the file and made the UChar version usable in the shared code used even by Google. (WebCore::KURL::invalidate): Updated for name change. (WebCore::KURL::protocolIs): Use isLetterMatchIgnoringCase instead of toASCIILower since it's faster. (WebCore::KURL::parse): Updated for name changes. (WebCore::protocolIs):Use isLetterMatchIgnoringCase instead of toASCIILower since it's faster. (WebCore::protocolIsInHTTPFamily): Added.

• platform/KURL.h: Tweaked formatting. Renamed protocolInHTTPFamily to protocolIsInHTTPFamily and added a version that works on a string. Kept the old name as an inline function so we don't have to rename all the cal sites now.

• platform/KURLGoogle.cpp: Renamed as above. (WebCore::KURLGooglePrivate::KURLGooglePrivate): Updated for rename. (WebCore::KURLGooglePrivate::setUtf8): Ditto. (WebCore::KURLGooglePrivate::setAscii): Ditto. (WebCore::KURLGooglePrivate::initProtocolIsInHTTPFamily): Ditto. (WebCore::KURLGooglePrivate::copyTo): Ditto. (WebCore::KURL::KURL): Ditto. (WebCore::KURL::protocolIsInHTTPFamily): Ditto. (WebCore::KURL::invalidate): Ditto.
• platform/KURLGooglePrivate.h: Ditto.

• WebCore.exp.in: Updated for above changes.

Location:

trunk/Source/WebCore

Files:

• ChangeLog (modified) (1 diff)
• WebCore.exp.in (modified) (2 diffs)
• loader/icon/IconDatabase.cpp (modified) (9 diffs)
• platform/KURL.cpp (modified) (13 diffs)
• platform/KURL.h (modified) (8 diffs)
• platform/KURLGoogle.cpp (modified) (10 diffs)
• platform/KURLGooglePrivate.h (modified) (1 diff)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2011-04-27  Darin Adler  <darin@apple.com>
+
+        Reviewed by Sam Weinig.
+
+        Somehow about:blank gets into the icon database
+        https://bugs.webkit.org/show_bug.cgi?id=58067
+        rdar://problem/6751446
+
+        Implemented the policy Brady suggested, where only http and https URLs can
+        be associated with and icon, guarding both on the way in to the database,
+        and on the way out.
+
+        * loader/icon/IconDatabase.cpp:
+        (WebCore::pageCanHaveIcon): Added.
+        (WebCore::IconDatabase::synchronousIconForPageURL): Call pageCanHaveIcon
+        instead of just checking for an empty URL.
+        (WebCore::IconDatabase::synchronousIconURLForPageURL): Ditto.
+        (WebCore::IconDatabase::retainIconForPageURL): Ditto.
+        (WebCore::IconDatabase::releaseIconForPageURL): Ditto.
+        (WebCore::IconDatabase::setIconURLForPageURL): Ditto.
+        (WebCore::IconDatabase::getOrCreatePageURLRecord): Ditto.
+        (WebCore::IconDatabase::importIconURLForPageURL): Broke assertion into
+        two separate assertions and added a third.
+        (WebCore::IconDatabase::performURLImport): Call pageCanHaveIcon.
+
+        * platform/KURL.cpp: Sorted includes. Moved a FIXME to the top of the file.
+        (WebCore::isLetterMatchIgnoringCase): Renamed matchLetter to this name,
+        overloaded it to work on both UChar and char, and added an assertion to it.
+        Also moved this to the top of the file and made the UChar version usable
+        in the shared code used even by Google.
+        (WebCore::KURL::invalidate): Updated for name change.
+        (WebCore::KURL::protocolIs): Use isLetterMatchIgnoringCase instead of
+        toASCIILower since it's faster.
+        (WebCore::KURL::parse): Updated for name changes.
+        (WebCore::protocolIs):Use isLetterMatchIgnoringCase instead of toASCIILower
+        since it's faster.
+        (WebCore::protocolIsInHTTPFamily): Added.
+
+        * platform/KURL.h: Tweaked formatting. Renamed protocolInHTTPFamily
+        to protocolIsInHTTPFamily and added a version that works on a string.
+        Kept the old name as an inline function so we don't have to rename
+        all the cal sites now.
+
+        * platform/KURLGoogle.cpp: Renamed as above.
+        (WebCore::KURLGooglePrivate::KURLGooglePrivate): Updated for rename.
+        (WebCore::KURLGooglePrivate::setUtf8): Ditto.
+        (WebCore::KURLGooglePrivate::setAscii): Ditto.
+        (WebCore::KURLGooglePrivate::initProtocolIsInHTTPFamily): Ditto.
+        (WebCore::KURLGooglePrivate::copyTo): Ditto.
+        (WebCore::KURL::KURL): Ditto.
+        (WebCore::KURL::protocolIsInHTTPFamily): Ditto.
+        (WebCore::KURL::invalidate): Ditto.
+        * platform/KURLGooglePrivate.h: Ditto.
+
+        * WebCore.exp.in: Updated for above changes.
+
 2011-04-27  Yury Semikhatsky  <yurys@chromium.org>
 

trunk/Source/WebCore/WebCore.exp.in

@@ -1191 +1191 @@
 __ZNK7WebCore4Font5widthERKNS_7TextRunEPN3WTF7HashSetIPKNS_14SimpleFontDataENS4_7PtrHashIS8_EENS4_10HashTraitsIS8_EEEEPNS_13GlyphOverflowE
 __ZNK7WebCore4Font8drawTextEPNS_15GraphicsContextERKNS_7TextRunERKNS_10FloatPointEii
+__ZNK7WebCore4KURL10protocolIsEPKc
 __ZNK7WebCore4KURL11createCFURLEv
 __ZNK7WebCore4KURL11isLocalFileEv
@@ -1602 +1603 @@
 __ZN7WebCore17HTMLPlugInElement11getNPObjectEv
 __ZNK7WebCore14SecurityOrigin9canAccessEPKS0_
-__ZNK7WebCore4KURL10protocolIsEPKc
 __ZNK7WebCore4KURL7hasPathEv
 __ZNK7WebCore4KURL9prettyURLEv

trunk/Source/WebCore/loader/icon/IconDatabase.cpp

@@ -100 +100 @@
 }
 
+static inline bool pageCanHaveIcon(const String& pageURL)
+{
+    return protocolIsInHTTPFamily(pageURL);
+}
+
 // ************************
 // *** Main Thread Only ***
@@ -219 +224 @@
     // We should go our of our way to only copy it if we have to store it
     
-    if (!isOpen() || pageURLOriginal.isEmpty())
+    if (!isOpen() || !pageCanHaveIcon(pageURLOriginal))
         return defaultIcon(size);
 
@@ -306 +311 @@
     // Also, in the case we have a real answer for the caller, we must deep copy that as well
     
-    if (!isOpen() || pageURLOriginal.isEmpty())
+    if (!isOpen() || !pageCanHaveIcon(pageURLOriginal))
         return String();
         
@@ -396 +401 @@
     // Cannot do anything with pageURLOriginal that would end up storing it without deep copying first
     
-    if (!isEnabled() || pageURLOriginal.isEmpty())
+    if (!isEnabled() || !pageCanHaveIcon(pageURLOriginal))
         return;
        
@@ -440 +445 @@
     // Cannot do anything with pageURLOriginal that would end up storing it without deep copying first
     
-    if (!isEnabled() || pageURLOriginal.isEmpty())
+    if (!isEnabled() || !pageCanHaveIcon(pageURLOriginal))
         return;
     
@@ -575 +580 @@
     ASSERT(!iconURLOriginal.isEmpty());
         
-    if (!isOpen() || pageURLOriginal.isEmpty())
+    if (!isOpen() || !pageCanHaveIcon(pageURLOriginal))
         return;
     
@@ -885 +890 @@
     ASSERT(!m_urlAndIconLock.tryLock());
 
-    if (pageURL.isEmpty())
+    if (!pageCanHaveIcon(pageURL))
         return 0;
 
@@ -921 +926 @@
     
     // This function is only for setting actual existing url mappings so assert that neither of these URLs are empty
-    ASSERT(!iconURL.isEmpty() && !pageURL.isEmpty());
+    ASSERT(!iconURL.isEmpty());
+    ASSERT(!pageURL.isEmpty());
+    ASSERT(pageCanHaveIcon(pageURL));
     
     setIconURLForPageURLInSQLDatabase(iconURL, pageURL);    
@@ -1228 +1235 @@
             // If database cleanup *is* allowed, we don't want to bother pulling in a page url from disk that noone is actually interested
             // in - we'll prune it later instead!
-            if (!pageRecord && databaseCleanupCounter && !pageURL.isEmpty()) {
+            if (!pageRecord && databaseCleanupCounter && pageCanHaveIcon(pageURL)) {
                 pageRecord = new PageURLRecord(pageURL);
                 m_pageURLToRecordMap.set(pageURL, pageRecord);

trunk/Source/WebCore/platform/KURL.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2004, 2007, 2008 Apple Inc. All rights reserved.
+ * Copyright (C) 2004, 2007, 2008, 2011 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -25 +25 @@
 
 #include "config.h"
-
 #include "KURL.h"
 
 #include "TextEncoding.h"
-#include <wtf/text/CString.h>
+#include <stdio.h>
 #include <wtf/HashMap.h>
 #include <wtf/HexNumber.h>
 #include <wtf/StdLibExtras.h>
+#include <wtf/text/CString.h>
 #include <wtf/text/StringHash.h>
 
@@ -44 +44 @@
 #endif
 
-#include <stdio.h>
+// FIXME: This file makes too much use of the + operator on String.
+// We either have to optimize that operator so it doesn't involve
+// so many allocations, or change this to use StringBuffer instead.
 
 using namespace std;
@@ -57 +59 @@
 static const unsigned invalidPortNumber = 0xFFFF;
 
+static inline bool isLetterMatchIgnoringCase(UChar character, char lowercaseLetter)
+{
+    ASSERT(isASCIILower(lowercaseLetter));
+    return (character | 0x20) == lowercaseLetter;
+}
+
 #if !USE(GOOGLEURL)
 
-// FIXME: This file makes too much use of the + operator on String.
-// We either have to optimize that operator so it doesn't involve
-// so many allocations, or change this to use Vector<UChar> instead.
+static inline bool isLetterMatchIgnoringCase(char character, char lowercaseLetter)
+{
+    ASSERT(isASCIILower(lowercaseLetter));
+    return (character | 0x20) == lowercaseLetter;
+}
 
 enum URLCharacterClasses {
@@ -296 +306 @@
 {
     m_isValid = false;
-    m_protocolInHTTPFamily = false;
+    m_protocolIsInHTTPFamily = false;
     m_schemeEnd = 0;
     m_userStart = 0;
@@ -693 +703 @@
     // Do the comparison without making a new string object.
     for (int i = 0; i < m_schemeEnd; ++i) {
-        if (!protocol[i] || toASCIILower(m_string[i]) != protocol[i])
+        if (!protocol[i] || !isLetterMatchIgnoringCase(m_string[i], protocol[i]))
             return false;
     }
@@ -1086 +1096 @@
 }
 
-static inline bool matchLetter(char c, char lowercaseLetter)
-{
-    return (c | 0x20) == lowercaseLetter;
-}
-
 void KURL::parse(const String& string)
 {
@@ -1194 +1199 @@
 
     bool isFile = schemeEnd == 4
-        && matchLetter(url[0], 'f')
-        && matchLetter(url[1], 'i')
-        && matchLetter(url[2], 'l')
-        && matchLetter(url[3], 'e');
-
-    m_protocolInHTTPFamily = matchLetter(url[0], 'h')
-        && matchLetter(url[1], 't')
-        && matchLetter(url[2], 't')
-        && matchLetter(url[3], 'p')
-        && (url[4] == ':' || (matchLetter(url[4], 's') && url[5] == ':'));
+        && isLetterMatchIgnoringCase(url[0], 'f')
+        && isLetterMatchIgnoringCase(url[1], 'i')
+        && isLetterMatchIgnoringCase(url[2], 'l')
+        && isLetterMatchIgnoringCase(url[3], 'e');
+
+    m_protocolIsInHTTPFamily = isLetterMatchIgnoringCase(url[0], 'h')
+        && isLetterMatchIgnoringCase(url[1], 't')
+        && isLetterMatchIgnoringCase(url[2], 't')
+        && isLetterMatchIgnoringCase(url[3], 'p')
+        && (url[4] == ':' || (isLetterMatchIgnoringCase(url[4], 's') && url[5] == ':'));
 
     if ((hierarchical && hasSecondSlash) || isNonFileHierarchicalScheme(url, schemeEnd)) {
@@ -1290 +1295 @@
         }
 
-        if (userStart == portEnd && !m_protocolInHTTPFamily && !isFile) {
+        if (userStart == portEnd && !m_protocolIsInHTTPFamily && !isFile) {
             // No authority found, which means that this is not a net_path, but rather an abs_path whose first two
             // path segments are empty. For file, http and https only, an empty authority is allowed.
@@ -1345 +1350 @@
 
     bool hostIsLocalHost = portEnd - userStart == 9
-        && matchLetter(url[userStart], 'l')
-        && matchLetter(url[userStart+1], 'o')
-        && matchLetter(url[userStart+2], 'c')
-        && matchLetter(url[userStart+3], 'a')
-        && matchLetter(url[userStart+4], 'l')
-        && matchLetter(url[userStart+5], 'h')
-        && matchLetter(url[userStart+6], 'o')
-        && matchLetter(url[userStart+7], 's')
-        && matchLetter(url[userStart+8], 't');
+        && isLetterMatchIgnoringCase(url[userStart], 'l')
+        && isLetterMatchIgnoringCase(url[userStart+1], 'o')
+        && isLetterMatchIgnoringCase(url[userStart+2], 'c')
+        && isLetterMatchIgnoringCase(url[userStart+3], 'a')
+        && isLetterMatchIgnoringCase(url[userStart+4], 'l')
+        && isLetterMatchIgnoringCase(url[userStart+5], 'h')
+        && isLetterMatchIgnoringCase(url[userStart+6], 'o')
+        && isLetterMatchIgnoringCase(url[userStart+7], 's')
+        && isLetterMatchIgnoringCase(url[userStart+8], 't');
 
     // File URLs need a host part unless it is just file:// or file://localhost
@@ -1417 +1422 @@
     // For canonicalization, ensure we have a '/' for no path.
     // Do this only for URL with protocol http or https.
-    if (m_protocolInHTTPFamily && pathEnd == pathStart)
+    if (m_protocolIsInHTTPFamily && pathEnd == pathStart)
         *p++ = '/';
 
@@ -1774 +1779 @@
         if (!protocol[i])
             return url[i] == ':';
-        if (toASCIILower(url[i]) != protocol[i])
+        if (!isLetterMatchIgnoringCase(url[i], protocol[i]))
             return false;
     }
@@ -1966 +1971 @@
 }
 
-}
+bool protocolIsInHTTPFamily(const String& url)
+{
+    unsigned length = url.length();
+    const UChar* characters = url.characters();
+    return length > 4
+        && isLetterMatchIgnoringCase(characters[0], 'h')
+        && isLetterMatchIgnoringCase(characters[1], 't')
+        && isLetterMatchIgnoringCase(characters[2], 't')
+        && isLetterMatchIgnoringCase(characters[3], 'p')
+        && (characters[4] == ':'
+            || (isLetterMatchIgnoringCase(characters[4], 's') && length > 5 && characters[5] == ':'));
+}
+
+}

trunk/Source/WebCore/platform/KURL.h

@@ -1 +1 @@
 /*
- * Copyright (C) 2003, 2004, 2005, 2006, 2007, 2008 Apple Inc. All rights reserved.
+ * Copyright (C) 2003, 2004, 2005, 2006, 2007, 2008, 2011 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -94 +94 @@
     KURL(const KURL& base, const String& relative, const TextEncoding&);
 
-
-#if USE(GOOGLEURL)
-    // For conversions for other structures that have already parsed and
+#if USE(GOOGLEURL)
+    // For conversions from other structures that have already parsed and
     // canonicalized the URL. The input must be exactly what KURL would have
     // done with the same input.
-    KURL(const CString& canonicalSpec,
-         const url_parse::Parsed& parsed, bool isValid);
+    KURL(const CString& canonicalSpec, const url_parse::Parsed&, bool isValid);
 #endif
 
@@ -160 +158 @@
     bool protocolIs(const char*) const;
     bool protocolIsData() const { return protocolIs("data"); }
-    bool protocolInHTTPFamily() const;
+    bool protocolIsInHTTPFamily() const;
     bool isLocalFile() const;
 
@@ -197 +195 @@
     unsigned pathEnd() const;
     unsigned pathAfterLastSlash() const;
+
     operator const String&() const { return string(); }
 
@@ -226 +225 @@
     void print() const;
 #endif
+
+    // FIXME: Remove this after changing all callers to use protocolIsInHTTPFamily.
+    bool protocolInHTTPFamily() const { return protocolIsInHTTPFamily(); }
 
 private:
@@ -248 +250 @@
     String m_string;
     bool m_isValid : 1;
-    bool m_protocolInHTTPFamily : 1;
+    bool m_protocolIsInHTTPFamily : 1;
 
     int m_schemeEnd;
@@ -281 +283 @@
 
 bool protocolIs(const String& url, const char* protocol);
+bool protocolIsInHTTPFamily(const String& url);
 bool protocolIsJavaScript(const String& url);
 
@@ -355 +358 @@
 }
 
-inline bool KURL::protocolInHTTPFamily() const
-{
-    return m_protocolInHTTPFamily;
+inline bool KURL::protocolIsInHTTPFamily() const
+{
+    return m_protocolIsInHTTPFamily;
 }
 

trunk/Source/WebCore/platform/KURLGoogle.cpp

@@ -155 +155 @@
 KURLGooglePrivate::KURLGooglePrivate()
     : m_isValid(false)
-    , m_protocolInHTTPFamily(false)
+    , m_protocolIsInHTTPFamily(false)
     , m_utf8IsASCII(true)
     , m_stringIsValid(false)
@@ -163 +163 @@
 KURLGooglePrivate::KURLGooglePrivate(const url_parse::Parsed& parsed, bool isValid)
     : m_isValid(isValid)
-    , m_protocolInHTTPFamily(false)
+    , m_protocolIsInHTTPFamily(false)
     , m_parsed(parsed)
     , m_utf8IsASCII(true)
@@ -197 +197 @@
     m_utf8 = str;
     m_stringIsValid = false;
-    initProtocolInHTTPFamily();
+    initProtocolIsInHTTPFamily();
 }
 
@@ -205 +205 @@
     m_utf8IsASCII = true;
     m_stringIsValid = false;
-    initProtocolInHTTPFamily();
+    initProtocolIsInHTTPFamily();
 }
 
@@ -259 +259 @@
 }
 
-void KURLGooglePrivate::initProtocolInHTTPFamily()
+void KURLGooglePrivate::initProtocolIsInHTTPFamily()
 {
     if (!m_isValid) {
-        m_protocolInHTTPFamily = false;
+        m_protocolIsInHTTPFamily = false;
         return;
     }
@@ -268 +268 @@
     const char* scheme = m_utf8.data() + m_parsed.scheme.begin;
     if (m_parsed.scheme.len == 4)
-        m_protocolInHTTPFamily = lowerCaseEqualsASCII(scheme, scheme + 4, "http");
+        m_protocolIsInHTTPFamily = lowerCaseEqualsASCII(scheme, scheme + 4, "http");
     else if (m_parsed.scheme.len == 5)
-        m_protocolInHTTPFamily = lowerCaseEqualsASCII(scheme, scheme + 5, "https");
+        m_protocolIsInHTTPFamily = lowerCaseEqualsASCII(scheme, scheme + 5, "https");
     else
-        m_protocolInHTTPFamily = false;
+        m_protocolIsInHTTPFamily = false;
 }
 
@@ -278 +278 @@
 {
     dest->m_isValid = m_isValid;
-    dest->m_protocolInHTTPFamily = m_protocolInHTTPFamily;
+    dest->m_protocolIsInHTTPFamily = m_protocolIsInHTTPFamily;
     dest->m_parsed = m_parsed;
 
@@ -371 +371 @@
         // empty string, which is what init() will create.
         m_url.m_isValid = false;
-        m_url.m_protocolInHTTPFamily = false;
+        m_url.m_protocolIsInHTTPFamily = false;
     }
 }
@@ -444 +444 @@
 }
 
-bool KURL::protocolInHTTPFamily() const
-{
-    return m_url.m_protocolInHTTPFamily;
+bool KURL::protocolIsInHTTPFamily() const
+{
+    return m_url.m_protocolIsInHTTPFamily;
 }
 
@@ -884 +884 @@
     // initialized) string and parsed structure would be a waste of time.
     m_url.m_isValid = false;
-    m_url.m_protocolInHTTPFamily = false;
+    m_url.m_protocolIsInHTTPFamily = false;
 }
 

trunk/Source/WebCore/platform/KURLGooglePrivate.h

@@ -92 +92 @@
 
         bool m_isValid;
-        bool m_protocolInHTTPFamily;
+        bool m_protocolIsInHTTPFamily;
         url_parse::Parsed m_parsed; // Indexes into the UTF-8 version of the string.
 
     private:
-        void initProtocolInHTTPFamily();
+        void initProtocolIsInHTTPFamily();
 
         CString m_utf8;