// Copyright (c) 2013 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "webkit/plugins/ppapi/v8_var_converter.h" #include #include #include #include "base/hash_tables.h" #include "base/logging.h" #include "base/memory/scoped_ptr.h" #include "ppapi/shared_impl/array_var.h" #include "ppapi/shared_impl/dictionary_var.h" #include "ppapi/shared_impl/var.h" #include "ppapi/shared_impl/var_tracker.h" #include "third_party/WebKit/Source/WebKit/chromium/public/WebArrayBuffer.h" #include "webkit/plugins/ppapi/host_array_buffer_var.h" using ppapi::ArrayBufferVar; using ppapi::ArrayVar; using ppapi::DictionaryVar; using ppapi::ScopedPPVar; using ppapi::StringVar; using std::make_pair; namespace { struct HashedHandle { HashedHandle(v8::Handle h) : handle(h) {} size_t hash() const { return handle->GetIdentityHash(); } bool operator==(const HashedHandle& h) const { return handle == h.handle; } bool operator<(const HashedHandle& h) const { return hash() < h.hash(); } v8::Handle handle; }; } // namespace namespace BASE_HASH_NAMESPACE { #if defined(COMPILER_GCC) template <> struct hash { size_t operator()(const HashedHandle& handle) const { return handle.hash(); } }; #elif defined(COMPILER_MSVC) inline size_t hash_value(const HashedHandle& handle) { return handle.hash(); } #endif } // namespace BASE_HASH_NAMESPACE namespace webkit { namespace ppapi { namespace { // Maps PP_Var IDs to the V8 value handle they correspond to. typedef base::hash_map > VarHandleMap; // Maps V8 value handles to the PP_Var they correspond to. typedef base::hash_map HandleVarMap; // Returns a V8 value which corresponds to a given PP_Var. If |var| is a // reference counted PP_Var type, and it exists in |visited_ids|, the V8 value // associated with it in the map will be returned, otherwise a new V8 value will // be created and added to the map. |did_create| indicates whether a new v8 // value was created as a result of calling the function. bool GetOrCreateV8Value(const PP_Var& var, v8::Handle* result, bool* did_create, VarHandleMap* visited_ids) { *did_create = false; if (::ppapi::VarTracker::IsVarTypeRefcounted(var.type)) { VarHandleMap::iterator it = visited_ids->find(var.value.as_id); if (it != visited_ids->end()) { *result = it->second; return true; } } switch (var.type) { case PP_VARTYPE_UNDEFINED: *result = v8::Undefined(); break; case PP_VARTYPE_NULL: *result = v8::Null(); break; case PP_VARTYPE_BOOL: *result = (var.value.as_bool == PP_TRUE) ? v8::True() : v8::False(); break; case PP_VARTYPE_INT32: *result = v8::Integer::New(var.value.as_int); break; case PP_VARTYPE_DOUBLE: *result = v8::Number::New(var.value.as_double); break; case PP_VARTYPE_STRING: { StringVar* string = StringVar::FromPPVar(var); if (!string) { NOTREACHED(); result->Clear(); return false; } const std::string& value = string->value(); // Create a string object rather than a string primitive. This allows us // to have multiple references to the same string in javascript, which // matches the reference behavior of PP_Vars. *result = v8::String::New(value.c_str(), value.size())->ToObject(); break; } case PP_VARTYPE_ARRAY_BUFFER: { ArrayBufferVar* buffer = ArrayBufferVar::FromPPVar(var); if (!buffer) { NOTREACHED(); result->Clear(); return false; } HostArrayBufferVar* host_buffer = static_cast(buffer); *result = v8::Local::New(host_buffer->webkit_buffer().toV8Value()); break; } case PP_VARTYPE_ARRAY: *result = v8::Array::New(); break; case PP_VARTYPE_DICTIONARY: *result = v8::Object::New(); break; case PP_VARTYPE_OBJECT: NOTREACHED(); result->Clear(); return false; } *did_create = true; if (::ppapi::VarTracker::IsVarTypeRefcounted(var.type)) (*visited_ids)[var.value.as_id] = *result; return true; } // For a given V8 value handle, this returns a PP_Var which corresponds to it. // If the handle already exists in |visited_handles|, the PP_Var associated with // it will be returned, otherwise a new V8 value will be created and added to // the map. |did_create| indicates if a new PP_Var was created as a result of // calling the function. bool GetOrCreateVar(v8::Handle val, PP_Var* result, bool* did_create, HandleVarMap* visited_handles) { CHECK(!val.IsEmpty()); *did_create = false; // Even though every v8 string primitive encountered will be a unique object, // we still add them to |visited_handles| so that the corresponding string // PP_Var created will be properly refcounted. if (val->IsObject() || val->IsString()) { HandleVarMap::const_iterator it = visited_handles->find( HashedHandle(val->ToObject())); if (it != visited_handles->end()) { *result = it->second.get(); return true; } } if (val->IsUndefined()) { *result = PP_MakeUndefined(); } else if (val->IsNull()) { *result = PP_MakeNull(); } else if (val->IsBoolean() || val->IsBooleanObject()) { *result = PP_MakeBool(PP_FromBool(val->ToBoolean()->Value())); } else if (val->IsInt32()) { *result = PP_MakeInt32(val->ToInt32()->Value()); } else if (val->IsNumber() || val->IsNumberObject()) { *result = PP_MakeDouble(val->ToNumber()->Value()); } else if (val->IsString() || val->IsStringObject()) { v8::String::Utf8Value utf8(val->ToString()); *result = StringVar::StringToPPVar(std::string(*utf8, utf8.length())); } else if (val->IsArray()) { *result = (new ArrayVar())->GetPPVar(); } else if (val->IsObject()) { scoped_ptr web_array_buffer( WebKit::WebArrayBuffer::createFromV8Value(val)); if (web_array_buffer.get()) { scoped_refptr buffer_var(new HostArrayBufferVar( *web_array_buffer)); *result = buffer_var->GetPPVar(); } else { *result = (new DictionaryVar())->GetPPVar(); } } else { NOTREACHED(); return false; } *did_create = true; if (val->IsObject() || val->IsString()) { visited_handles->insert(make_pair( HashedHandle(val->ToObject()), ScopedPPVar(ScopedPPVar::PassRef(), *result))); } return true; } } // namespace V8VarConverter::V8VarConverter() { } bool V8VarConverter::ToV8Value(const PP_Var& var, v8::Handle context, v8::Handle* result) const { v8::Context::Scope context_scope(context); v8::HandleScope handle_scope; VarHandleMap visited_ids; std::stack stack; stack.push(var); v8::Handle root; bool is_root = true; while (!stack.empty()) { const PP_Var& current_var = stack.top(); v8::Handle current_v8; stack.pop(); bool did_create = false; if (!GetOrCreateV8Value(current_var, ¤t_v8, &did_create, &visited_ids)) { return false; } if (is_root) { is_root = false; root = current_v8; } // Add child nodes to the stack. if (current_var.type == PP_VARTYPE_ARRAY) { ArrayVar* array_var = ArrayVar::FromPPVar(current_var); if (!array_var) { NOTREACHED(); return false; } DCHECK(current_v8->IsArray()); v8::Handle v8_array = current_v8.As(); for (size_t i = 0; i < array_var->elements().size(); ++i) { const PP_Var& child_var = array_var->elements()[i].get(); v8::Handle child_v8; if (!GetOrCreateV8Value(child_var, &child_v8, &did_create, &visited_ids)) { return false; } if (did_create && (child_var.type == PP_VARTYPE_DICTIONARY || child_var.type == PP_VARTYPE_ARRAY)) { stack.push(child_var); } v8::TryCatch try_catch; v8_array->Set(static_cast(i), child_v8); if (try_catch.HasCaught()) { LOG(ERROR) << "Setter for index " << i << " threw an exception."; return false; } } } else if (current_var.type == PP_VARTYPE_DICTIONARY) { DictionaryVar* dict_var = DictionaryVar::FromPPVar(current_var); if (!dict_var) { NOTREACHED(); return false; } DCHECK(current_v8->IsObject()); v8::Handle v8_object = current_v8->ToObject(); for (DictionaryVar::KeyValueMap::const_iterator iter = dict_var->key_value_map().begin(); iter != dict_var->key_value_map().end(); ++iter) { const std::string& key = iter->first; const PP_Var& child_var = iter->second.get(); v8::Handle child_v8; if (!GetOrCreateV8Value(child_var, &child_v8, &did_create, &visited_ids)) { return false; } if (did_create && (child_var.type == PP_VARTYPE_DICTIONARY || child_var.type == PP_VARTYPE_ARRAY)) { stack.push(child_var); } v8::TryCatch try_catch; v8_object->Set(v8::String::New(key.c_str(), key.length()), child_v8); if (try_catch.HasCaught()) { LOG(ERROR) << "Setter for property " << key.c_str() << " threw an " << "exception."; return false; } } } } *result = handle_scope.Close(root); return true; } bool V8VarConverter::FromV8Value(v8::Handle val, v8::Handle context, PP_Var* result) const { v8::Context::Scope context_scope(context); v8::HandleScope handle_scope; HandleVarMap visited_handles; std::stack > stack; stack.push(val); ScopedPPVar root; bool is_root = true; while (!stack.empty()) { v8::Handle current_v8 = stack.top(); PP_Var current_var; stack.pop(); bool did_create = false; if (!GetOrCreateVar(current_v8, ¤t_var, &did_create, &visited_handles)) { return false; } if (is_root) { is_root = false; root = current_var; } // Add child nodes to the stack. if (current_var.type == PP_VARTYPE_ARRAY) { DCHECK(current_v8->IsArray()); v8::Handle v8_array = current_v8.As(); ArrayVar* array_var = ArrayVar::FromPPVar(current_var); if (!array_var) { NOTREACHED(); return false; } for (uint32 i = 0; i < v8_array->Length(); ++i) { v8::TryCatch try_catch; v8::Handle child_v8 = v8_array->Get(i); if (try_catch.HasCaught()) return false; if (!v8_array->HasRealIndexedProperty(i)) continue; PP_Var child_var; if (!GetOrCreateVar(child_v8, &child_var, &did_create, &visited_handles)) { // Silently ignore the case where we can't convert to a Var as we may // be trying to convert a type that doesn't have a corresponding // PP_Var type. continue; } if (did_create && child_v8->IsObject()) stack.push(child_v8); array_var->Set(i, child_var); } } else if (current_var.type == PP_VARTYPE_DICTIONARY) { DCHECK(current_v8->IsObject()); v8::Handle v8_object = current_v8->ToObject(); DictionaryVar* dict_var = DictionaryVar::FromPPVar(current_var); if (!dict_var) { NOTREACHED(); return false; } v8::Handle property_names(v8_object->GetOwnPropertyNames()); for (uint32 i = 0; i < property_names->Length(); ++i) { v8::Handle key(property_names->Get(i)); // Extend this test to cover more types as necessary and if sensible. if (!key->IsString() && !key->IsNumber()) { NOTREACHED() << "Key \"" << *v8::String::AsciiValue(key) << "\" " "is neither a string nor a number"; return false; } // Skip all callbacks: crbug.com/139933 if (v8_object->HasRealNamedCallbackProperty(key->ToString())) continue; v8::String::Utf8Value name_utf8(key->ToString()); v8::TryCatch try_catch; v8::Handle child_v8 = v8_object->Get(key); if (try_catch.HasCaught()) return false; PP_Var child_var; if (!GetOrCreateVar(child_v8, &child_var, &did_create, &visited_handles)) { continue; } if (did_create && child_v8->IsObject()) stack.push(child_v8); bool success = dict_var->SetWithStringKey( std::string(*name_utf8, name_utf8.length()), child_var); DCHECK(success); } } } *result = root.Release(); return true; } } // namespace ppapi } // namespace webkit