From 06828b988cdcfcadad4cb2032b768634356ba70e Mon Sep 17 00:00:00 2001 From: "ananta@chromium.org" Date: Mon, 20 Oct 2008 21:25:46 +0000 Subject: This fixes http://code.google.com/p/chromium/issues/detail?id=205, which was an issue with a windowed flash instance not rendering content at times.The bug occurs as a result of the following:-1. The flash plugin executes a script via GetURLNotify. This script calls window.open with the target as self, which shows up as a new tab in the browser. This causes a new RenderView object to be instantiated (See RenderView::CreateWebView).2. RenderView::CreateWebView sends over the ViewHostMsg_CreateWindow IPC message to the browser. The handler in the browser sends over an ack for this message with the window handle. This is used as the parent window for any plugins instantiated in the page.3. At times, the newly created view starts receiving data which is processed before the ViewMsg_CreatingNew_ACK message is received and processed by the view. This causes the plugin to be instantiated without a parent window thus ending up as a top level window.The fix is to queue up resource messages and process them after we receive the ack for the ViewHostMsg_CreateWindow IPC. Tests :- Covered by UI tests. R=jam Review URL: http://codereview.chromium.org/7514 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@3631 0039d316-1c4b-4281-b951-d872f2087c98 --- chrome/renderer/render_view.cc | 26 +++++++++++++++++++++++++- 1 file changed, 25 insertions(+), 1 deletion(-) (limited to 'chrome/renderer/render_view.cc') diff --git a/chrome/renderer/render_view.cc b/chrome/renderer/render_view.cc index 253a869..f6c19d7 100644 --- a/chrome/renderer/render_view.cc +++ b/chrome/renderer/render_view.cc @@ -156,7 +156,8 @@ RenderView::RenderView() disable_popup_blocking_(false), has_unload_listener_(false), decrement_shared_popup_at_destruction_(false), - greasemonkey_enabled_(false) { + greasemonkey_enabled_(false), + waiting_for_create_window_ack_(false) { resource_dispatcher_ = new ResourceDispatcher(this); #ifdef CHROME_PERSONALIZATION personalization_ = Personalization::CreateRendererPersonalization(); @@ -291,9 +292,22 @@ void RenderView::Init(HWND parent_hwnd, } void RenderView::OnMessageReceived(const IPC::Message& message) { + // If the current RenderView instance represents a popup, then we + // need to wait for ViewMsg_CreatingNew_ACK to be sent by the browser. + // As part of this ack we also receive the browser window handle, which + // parents any plugins instantiated in this RenderView instance. + // Plugins can be instantiated only when we receive the parent window + // handle as they are child windows. + if (waiting_for_create_window_ack_ && + resource_dispatcher_->IsResourceMessage(message)) { + queued_resource_messages_.push(new IPC::Message(message)); + return; + } + // Let the resource dispatcher intercept resource messages first. if (resource_dispatcher_->OnMessageReceived(message)) return; + IPC_BEGIN_MESSAGE_MAP(RenderView, message) IPC_MESSAGE_HANDLER(ViewMsg_CreatingNew_ACK, OnCreatingNewAck) IPC_MESSAGE_HANDLER(ViewMsg_CaptureThumbnail, SendThumbnail) @@ -375,6 +389,15 @@ void RenderView::OnMessageReceived(const IPC::Message& message) { // view. void RenderView::OnCreatingNewAck(HWND parent) { CompleteInit(parent); + + waiting_for_create_window_ack_ = false; + + while (!queued_resource_messages_.empty()) { + IPC::Message* queued_msg = queued_resource_messages_.front(); + queued_resource_messages_.pop(); + resource_dispatcher_->OnMessageReceived(*queued_msg); + delete queued_msg; + } } void RenderView::SendThumbnail() { @@ -1715,6 +1738,7 @@ WebView* RenderView::CreateWebView(WebView* webview, bool user_gesture) { prefs, shared_popup_counter_, routing_id); view->set_opened_by_user_gesture(user_gesture); + view->set_waiting_for_create_window_ack(true); // Copy over the alternate error page URL so we can have alt error pages in // the new render view (we don't need the browser to send the URL back down). -- cgit v1.1