2014-08-27 21:01:29 -07:00
|
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this file,
|
|
|
|
|
* You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
|
|
|
|
|
|
"use strict";
|
|
|
|
|
|
|
|
|
|
const Cc = Components.classes;
|
|
|
|
|
const Ci = Components.interfaces;
|
|
|
|
|
const Cu = Components.utils;
|
|
|
|
|
|
2014-10-21 13:48:42 -07:00
|
|
|
this.EXPORTED_SYMBOLS = [];
|
2014-08-27 21:01:29 -07:00
|
|
|
|
|
|
|
|
Cu.import("resource://gre/modules/SettingsDB.jsm");
|
|
|
|
|
Cu.import("resource://gre/modules/XPCOMUtils.jsm");
|
|
|
|
|
Cu.import("resource://gre/modules/Services.jsm");
|
|
|
|
|
Cu.import("resource://gre/modules/PermissionsTable.jsm");
|
|
|
|
|
|
2014-12-10 18:32:00 -08:00
|
|
|
let DEBUG = false;
|
|
|
|
|
let VERBOSE = false;
|
2014-12-17 07:40:00 -08:00
|
|
|
let TRACK = false;
|
2014-12-10 18:32:00 -08:00
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
DEBUG =
|
|
|
|
|
Services.prefs.getBoolPref("dom.mozSettings.SettingsRequestManager.debug.enabled");
|
|
|
|
|
VERBOSE =
|
|
|
|
|
Services.prefs.getBoolPref("dom.mozSettings.SettingsRequestManager.verbose.enabled");
|
2014-12-17 07:40:00 -08:00
|
|
|
TRACK =
|
|
|
|
|
Services.prefs.getBoolPref("dom.mozSettings.trackTasksUsage");
|
2014-12-10 18:32:00 -08:00
|
|
|
} catch (ex) { }
|
|
|
|
|
|
2014-12-17 06:30:00 -08:00
|
|
|
let allowForceReadOnly = false;
|
|
|
|
|
try {
|
|
|
|
|
allowForceReadOnly = Services.prefs.getBoolPref("dom.mozSettings.allowForceReadOnly");
|
|
|
|
|
} catch (ex) { }
|
|
|
|
|
|
2014-12-10 18:32:00 -08:00
|
|
|
function debug(s) {
|
|
|
|
|
dump("-*- SettingsRequestManager: " + s + "\n");
|
|
|
|
|
}
|
|
|
|
|
|
2014-08-27 21:01:29 -07:00
|
|
|
const kXpcomShutdownObserverTopic = "xpcom-shutdown";
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
const kInnerWindowDestroyed = "inner-window-destroyed";
|
2014-08-27 21:01:29 -07:00
|
|
|
const kMozSettingsChangedObserverTopic = "mozsettings-changed";
|
|
|
|
|
const kSettingsReadSuffix = "-read";
|
|
|
|
|
const kSettingsWriteSuffix = "-write";
|
|
|
|
|
const kSettingsClearPermission = "settings-clear";
|
|
|
|
|
const kAllSettingsReadPermission = "settings" + kSettingsReadSuffix;
|
|
|
|
|
const kAllSettingsWritePermission = "settings" + kSettingsWriteSuffix;
|
|
|
|
|
// Any application with settings permissions, be it for all settings
|
|
|
|
|
// or a single one, will need to be able to access the settings API.
|
|
|
|
|
// The settings-api permission allows an app to see the mozSettings
|
|
|
|
|
// API in order to create locks and queue tasks. Whether these tasks
|
|
|
|
|
// will be allowed depends on the exact permissions the app has.
|
|
|
|
|
const kSomeSettingsReadPermission = "settings-api" + kSettingsReadSuffix;
|
|
|
|
|
const kSomeSettingsWritePermission = "settings-api" + kSettingsWriteSuffix;
|
|
|
|
|
|
2014-12-02 05:50:00 -08:00
|
|
|
XPCOMUtils.defineLazyServiceGetter(this, "mrm",
|
|
|
|
|
"@mozilla.org/memory-reporter-manager;1",
|
|
|
|
|
"nsIMemoryReporterManager");
|
2014-08-27 21:01:29 -07:00
|
|
|
XPCOMUtils.defineLazyServiceGetter(this, "ppmm",
|
|
|
|
|
"@mozilla.org/parentprocessmessagemanager;1",
|
|
|
|
|
"nsIMessageBroadcaster");
|
|
|
|
|
XPCOMUtils.defineLazyServiceGetter(this, "uuidgen",
|
|
|
|
|
"@mozilla.org/uuid-generator;1",
|
|
|
|
|
"nsIUUIDGenerator");
|
|
|
|
|
|
|
|
|
|
let SettingsPermissions = {
|
2014-09-04 11:15:10 -07:00
|
|
|
checkPermission: function(aPrincipal, aPerm) {
|
2014-12-09 13:52:46 -08:00
|
|
|
if (!aPrincipal) {
|
|
|
|
|
Cu.reportError("SettingsPermissions.checkPermission was passed a null principal. Denying all permissions.");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2014-09-04 11:15:10 -07:00
|
|
|
if (aPrincipal.origin == "[System Principal]" ||
|
|
|
|
|
Services.perms.testExactPermissionFromPrincipal(aPrincipal, aPerm) == Ci.nsIPermissionManager.ALLOW_ACTION) {
|
|
|
|
|
return true;
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
2014-09-04 11:15:10 -07:00
|
|
|
return false;
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasAllReadPermission: function(aPrincipal) {
|
|
|
|
|
return this.checkPermission(aPrincipal, kAllSettingsReadPermission);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasAllWritePermission: function(aPrincipal) {
|
|
|
|
|
return this.checkPermission(aPrincipal, kAllSettingsWritePermission);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasSomeReadPermission: function(aPrincipal) {
|
|
|
|
|
return this.checkPermission(aPrincipal, kSomeSettingsReadPermission);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasSomeWritePermission: function(aPrincipal) {
|
|
|
|
|
return this.checkPermission(aPrincipal, kSomeSettingsWritePermission);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasClearPermission: function(aPrincipal) {
|
|
|
|
|
return this.checkPermission(aPrincipal, kSettingsClearPermission);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasReadPermission: function(aPrincipal, aSettingsName) {
|
|
|
|
|
return this.hasAllReadPermission(aPrincipal) || this.checkPermission(aPrincipal, "settings:" + aSettingsName + kSettingsReadSuffix);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
2014-09-04 11:15:10 -07:00
|
|
|
hasWritePermission: function(aPrincipal, aSettingsName) {
|
|
|
|
|
return this.hasAllWritePermission(aPrincipal) || this.checkPermission(aPrincipal, "settings:" + aSettingsName + kSettingsWriteSuffix);
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
function SettingsLockInfo(aDB, aMsgMgr, aPrincipal, aLockID, aIsServiceLock, aWindowID) {
|
2014-08-27 21:01:29 -07:00
|
|
|
return {
|
|
|
|
|
// ID Shared with the object on the child side
|
|
|
|
|
lockID: aLockID,
|
|
|
|
|
// Is this a content lock or a settings service lock?
|
|
|
|
|
isServiceLock: aIsServiceLock,
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
// Which inner window ID
|
|
|
|
|
windowID: aWindowID,
|
2014-08-27 21:01:29 -07:00
|
|
|
// Tasks to be run once the lock is at the head of the queue
|
|
|
|
|
tasks: [],
|
|
|
|
|
// This is set to true once a transaction is ready to run, but is not at the
|
|
|
|
|
// head of the lock queue.
|
|
|
|
|
consumable: false,
|
|
|
|
|
// Holds values that are requested to be set until the lock lifetime ends,
|
|
|
|
|
// then commits them to the DB.
|
|
|
|
|
queuedSets: {},
|
|
|
|
|
// Internal transaction object
|
|
|
|
|
_transaction: undefined,
|
|
|
|
|
// Message manager that controls the lock
|
|
|
|
|
_mm: aMsgMgr,
|
|
|
|
|
// If true, it means a permissions check failed, so just fail everything now
|
|
|
|
|
_failed: false,
|
|
|
|
|
// If we're slated to run finalize, set this to make sure we don't
|
|
|
|
|
// somehow run other events afterward.
|
|
|
|
|
finalizing: false,
|
|
|
|
|
// Lets us know if we can use this lock for a clear command
|
|
|
|
|
canClear: true,
|
|
|
|
|
// Lets us know if this lock has been used to clear at any point.
|
|
|
|
|
hasCleared: false,
|
2014-12-17 06:30:00 -08:00
|
|
|
// forceReadOnly sets whether we want to do a read only transaction. Define
|
|
|
|
|
// true by default, and let queueTask() set this to false if we queue any
|
|
|
|
|
// "set" task. Since users of settings locks will queue all tasks before
|
|
|
|
|
// any idb transaction is created, we know we will have all needed
|
|
|
|
|
// information to set this before creating a transaction.
|
|
|
|
|
forceReadOnly: true,
|
2014-12-09 13:53:04 -08:00
|
|
|
// Principal the lock was created under. We assume that the lock
|
|
|
|
|
// will continue to exist under this principal for the duration of
|
|
|
|
|
// its lifetime.
|
|
|
|
|
principal: aPrincipal,
|
|
|
|
|
getObjectStore: function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Getting transaction for " + this.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
let store;
|
|
|
|
|
// Test for transaction validity via trying to get the
|
|
|
|
|
// datastore. If it doesn't work, assume the transaction is
|
|
|
|
|
// closed, create a new transaction and try again.
|
|
|
|
|
if (this._transaction) {
|
|
|
|
|
try {
|
|
|
|
|
store = this._transaction.objectStore(SETTINGSSTORE_NAME);
|
|
|
|
|
} catch (e) {
|
|
|
|
|
if (e.name == "InvalidStateError") {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Current transaction for " + this.lockID + " closed, trying to create new one.");
|
2014-08-27 21:01:29 -07:00
|
|
|
} else {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (DEBUG) debug("Unexpected exception, throwing: " + e);
|
2014-08-27 21:01:29 -07:00
|
|
|
throw e;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Create one transaction with a global permission. This may be
|
|
|
|
|
// slightly slower on apps with full settings permissions, but
|
|
|
|
|
// it means we don't have to do our own transaction order
|
|
|
|
|
// bookkeeping.
|
2014-12-17 06:30:00 -08:00
|
|
|
let canReadOnly = allowForceReadOnly && this.forceReadOnly;
|
|
|
|
|
if (canReadOnly || !SettingsPermissions.hasSomeWritePermission(this.principal)) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Making READONLY transaction for " + this.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
this._transaction = aDB._db.transaction(SETTINGSSTORE_NAME, "readonly");
|
|
|
|
|
} else {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Making READWRITE transaction for " + this.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
this._transaction = aDB._db.transaction(SETTINGSSTORE_NAME, "readwrite");
|
|
|
|
|
}
|
|
|
|
|
this._transaction.oncomplete = function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Transaction for lock " + this.lockID + " closed");
|
2014-08-27 21:01:29 -07:00
|
|
|
}.bind(this);
|
|
|
|
|
this._transaction.onabort = function () {
|
|
|
|
|
if (DEBUG) debug("Transaction for lock " + this.lockID + " aborted");
|
|
|
|
|
this._failed = true;
|
|
|
|
|
}.bind(this);
|
|
|
|
|
try {
|
|
|
|
|
store = this._transaction.objectStore(SETTINGSSTORE_NAME);
|
|
|
|
|
} catch (e) {
|
|
|
|
|
if (e.name == "InvalidStateError") {
|
|
|
|
|
if (DEBUG) debug("Cannot create objectstore on transaction for " + this.lockID);
|
|
|
|
|
return null;
|
|
|
|
|
} else {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (DEBUG) debug("Unexpected exception, throwing: " + e);
|
2014-08-27 21:01:29 -07:00
|
|
|
throw e;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return store;
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let SettingsRequestManager = {
|
|
|
|
|
// Access to the settings DB
|
|
|
|
|
settingsDB: new SettingsDB(),
|
|
|
|
|
// Remote messages to listen for from child
|
|
|
|
|
messages: ["child-process-shutdown", "Settings:Get", "Settings:Set",
|
|
|
|
|
"Settings:Clear", "Settings:Run", "Settings:Finalize",
|
|
|
|
|
"Settings:CreateLock", "Settings:RegisterForMessages"],
|
|
|
|
|
// Map of LockID to SettingsLockInfo objects
|
|
|
|
|
lockInfo: {},
|
|
|
|
|
// Queue of LockIDs. The LockID on the front of the queue is the only lock
|
|
|
|
|
// that will have requests processed, all other locks will queue requests
|
|
|
|
|
// until they hit the front of the queue.
|
|
|
|
|
settingsLockQueue: [],
|
|
|
|
|
children: [],
|
2014-12-09 13:53:20 -08:00
|
|
|
// Since we need to call observers at times when we may not have
|
|
|
|
|
// just received a message from a child process, we cache principals
|
|
|
|
|
// for message managers and check permissions on them before we send
|
|
|
|
|
// settings notifications to child processes.
|
|
|
|
|
observerPrincipalCache: new Map(),
|
2014-12-17 07:40:00 -08:00
|
|
|
totalProcessed: 0,
|
|
|
|
|
tasksConsumed: {},
|
|
|
|
|
totalSetProcessed: 0,
|
|
|
|
|
tasksSetConsumed: {},
|
|
|
|
|
totalGetProcessed: 0,
|
|
|
|
|
tasksGetConsumed: {},
|
2014-09-15 13:39:20 -07:00
|
|
|
|
2014-08-27 21:01:29 -07:00
|
|
|
init: function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("init");
|
2014-08-27 21:01:29 -07:00
|
|
|
this.settingsDB.init();
|
|
|
|
|
this.messages.forEach((function(msgName) {
|
|
|
|
|
ppmm.addMessageListener(msgName, this);
|
|
|
|
|
}).bind(this));
|
|
|
|
|
Services.obs.addObserver(this, kXpcomShutdownObserverTopic, false);
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
Services.obs.addObserver(this, kInnerWindowDestroyed, false);
|
2014-12-02 05:50:00 -08:00
|
|
|
mrm.registerStrongReporter(this);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
|
|
|
|
|
|
|
|
|
_serializePreservingBinaries: function _serializePreservingBinaries(aObject) {
|
|
|
|
|
function needsUUID(aValue) {
|
|
|
|
|
if (!aValue || !aValue.constructor) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return (aValue.constructor.name == "Date") || (aValue instanceof Ci.nsIDOMFile) ||
|
|
|
|
|
(aValue instanceof Ci.nsIDOMBlob);
|
|
|
|
|
}
|
|
|
|
|
// We need to serialize settings objects, otherwise they can change between
|
|
|
|
|
// the set() call and the enqueued request being processed. We can't simply
|
|
|
|
|
// parse(stringify(obj)) because that breaks things like Blobs, Files and
|
|
|
|
|
// Dates, so we use stringify's replacer and parse's reviver parameters to
|
|
|
|
|
// preserve binaries.
|
|
|
|
|
let binaries = Object.create(null);
|
|
|
|
|
let stringified = JSON.stringify(aObject, function(key, value) {
|
|
|
|
|
value = this.settingsDB.prepareValue(value);
|
|
|
|
|
if (needsUUID(value)) {
|
|
|
|
|
let uuid = uuidgen.generateUUID().toString();
|
|
|
|
|
binaries[uuid] = value;
|
|
|
|
|
return uuid;
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
}.bind(this));
|
|
|
|
|
return JSON.parse(stringified, function(key, value) {
|
|
|
|
|
if (value in binaries) {
|
|
|
|
|
return binaries[value];
|
|
|
|
|
}
|
|
|
|
|
return value;
|
|
|
|
|
});
|
|
|
|
|
},
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
queueTask: function(aOperation, aData) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Queueing task: " + aOperation);
|
2014-08-27 21:01:29 -07:00
|
|
|
|
|
|
|
|
let defer = {};
|
|
|
|
|
|
|
|
|
|
let lock = this.lockInfo[aData.lockID];
|
|
|
|
|
|
|
|
|
|
if (!lock) {
|
|
|
|
|
return Promise.reject({error: "Lock already dead, cannot queue task"});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (aOperation == "set") {
|
|
|
|
|
aData.settings = this._serializePreservingBinaries(aData.settings);
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-17 06:30:00 -08:00
|
|
|
if (aOperation === "set" || aOperation === "clear") {
|
|
|
|
|
lock.forceReadOnly = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.tasks.push({
|
2014-08-27 21:01:29 -07:00
|
|
|
operation: aOperation,
|
|
|
|
|
data: aData,
|
|
|
|
|
defer: defer
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
let promise = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return promise;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
// Due to the fact that we're skipping the database in some places
|
|
|
|
|
// by keeping a local "set" value cache, resolving some calls
|
|
|
|
|
// without a call to the database would mean we could potentially
|
|
|
|
|
// receive promise responses out of expected order if a get is
|
|
|
|
|
// called before a set. Therefore, we wrap our resolve in a null
|
|
|
|
|
// get, which means it will resolves afer the rest of the calls
|
|
|
|
|
// queued to the DB.
|
|
|
|
|
queueTaskReturn: function(aTask, aReturnValue) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Making task queuing transaction request.");
|
2014-08-27 21:01:29 -07:00
|
|
|
let data = aTask.data;
|
|
|
|
|
let lock = this.lockInfo[data.lockID];
|
2014-12-09 13:53:04 -08:00
|
|
|
let store = lock.getObjectStore(lock.principal);
|
2014-08-27 21:01:29 -07:00
|
|
|
if (!store) {
|
|
|
|
|
if (DEBUG) debug("Rejecting task queue on lock " + aTask.data.lockID);
|
|
|
|
|
return Promise.reject({task: aTask, error: "Cannot get object store"});
|
|
|
|
|
}
|
|
|
|
|
// Due to the fact that we're skipping the database, resolving
|
|
|
|
|
// this without a call to the database would mean we could
|
|
|
|
|
// potentially receive promise responses out of expected order if
|
|
|
|
|
// a get is called before a set. Therefore, we wrap our resolve in
|
|
|
|
|
// a null get, which means it will resolves afer the rest of the
|
|
|
|
|
// calls queued to the DB.
|
|
|
|
|
let getReq = store.get(0);
|
|
|
|
|
|
|
|
|
|
let defer = {};
|
|
|
|
|
let promiseWrapper = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
getReq.onsuccess = function(event) {
|
|
|
|
|
return defer.resolve(aReturnValue);
|
|
|
|
|
};
|
|
|
|
|
getReq.onerror = function() {
|
|
|
|
|
return defer.reject({task: aTask, error: getReq.error.name});
|
|
|
|
|
};
|
|
|
|
|
return promiseWrapper;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
taskGet: function(aTask) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Running Get task on lock " + aTask.data.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
|
|
|
|
|
// Check that we have permissions for getting the value
|
|
|
|
|
let data = aTask.data;
|
|
|
|
|
let lock = this.lockInfo[data.lockID];
|
|
|
|
|
|
|
|
|
|
if (!lock) {
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock died, can't finalize"});
|
|
|
|
|
}
|
|
|
|
|
if (lock._failed) {
|
|
|
|
|
if (DEBUG) debug("Lock failed. All subsequent requests will fail.");
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock failed, all requests now failing."});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (lock.hasCleared) {
|
|
|
|
|
if (DEBUG) debug("Lock was used for a clear command. All subsequent requests will fail.");
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock was used for a clear command. All subsequent requests will fail."});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.canClear = false;
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
if (!SettingsPermissions.hasReadPermission(lock.principal, data.name)) {
|
2014-08-27 21:01:29 -07:00
|
|
|
if (DEBUG) debug("get not allowed for " + data.name);
|
|
|
|
|
lock._failed = true;
|
|
|
|
|
return Promise.reject({task: aTask, error: "No permission to get " + data.name});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the value was set during this transaction, use the cached value
|
|
|
|
|
if (data.name in lock.queuedSets) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Returning cached set value " + lock.queuedSets[data.name] + " for " + data.name);
|
2014-08-27 21:01:29 -07:00
|
|
|
let local_results = {};
|
|
|
|
|
local_results[data.name] = lock.queuedSets[data.name];
|
|
|
|
|
return this.queueTaskReturn(aTask, {task: aTask, results: local_results});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create/Get transaction and make request
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Making get transaction request for " + data.name);
|
2014-12-09 13:53:04 -08:00
|
|
|
let store = lock.getObjectStore(lock.principal);
|
2014-08-27 21:01:29 -07:00
|
|
|
if (!store) {
|
|
|
|
|
if (DEBUG) debug("Rejecting Get task on lock " + aTask.data.lockID);
|
|
|
|
|
return Promise.reject({task: aTask, error: "Cannot get object store"});
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Making get request for " + data.name);
|
2014-08-27 21:01:29 -07:00
|
|
|
let getReq = (data.name === "*") ? store.mozGetAll() : store.mozGetAll(data.name);
|
|
|
|
|
|
|
|
|
|
let defer = {};
|
|
|
|
|
let promiseWrapper = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
getReq.onsuccess = function(event) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Request for '" + data.name + "' successful. " +
|
2014-08-27 21:01:29 -07:00
|
|
|
"Record count: " + event.target.result.length);
|
|
|
|
|
|
|
|
|
|
if (event.target.result.length == 0) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("MOZSETTINGS-GET-WARNING: " + data.name + " is not in the database.\n");
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let results = {};
|
|
|
|
|
|
|
|
|
|
for (let i in event.target.result) {
|
|
|
|
|
let result = event.target.result[i];
|
|
|
|
|
let name = result.settingName;
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug(name + ": " + result.userValue +", " + result.defaultValue);
|
2014-08-27 21:01:29 -07:00
|
|
|
let value = result.userValue !== undefined ? result.userValue : result.defaultValue;
|
|
|
|
|
results[name] = value;
|
|
|
|
|
}
|
|
|
|
|
return defer.resolve({task: aTask, results: results});
|
|
|
|
|
};
|
|
|
|
|
getReq.onerror = function() {
|
|
|
|
|
return defer.reject({task: aTask, error: getReq.error.name});
|
|
|
|
|
};
|
|
|
|
|
return promiseWrapper;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
taskSet: function(aTask) {
|
|
|
|
|
let data = aTask.data;
|
|
|
|
|
let lock = this.lockInfo[data.lockID];
|
|
|
|
|
let keys = Object.getOwnPropertyNames(data.settings);
|
|
|
|
|
|
|
|
|
|
if (!lock) {
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock died, can't finalize"});
|
|
|
|
|
}
|
|
|
|
|
if (lock._failed) {
|
|
|
|
|
if (DEBUG) debug("Lock failed. All subsequent requests will fail.");
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock failed a permissions check, all requests now failing."});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (lock.hasCleared) {
|
|
|
|
|
if (DEBUG) debug("Lock was used for a clear command. All subsequent requests will fail.");
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock was used for a clear command. All other requests will fail."});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.canClear = false;
|
|
|
|
|
|
|
|
|
|
// If we have no keys, resolve
|
|
|
|
|
if (keys.length === 0) {
|
|
|
|
|
if (DEBUG) debug("No keys to change entered!");
|
|
|
|
|
return Promise.resolve({task: aTask});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (let i = 0; i < keys.length; i++) {
|
2014-12-09 13:53:04 -08:00
|
|
|
if (!SettingsPermissions.hasWritePermission(lock.principal, keys[i])) {
|
2014-08-27 21:01:29 -07:00
|
|
|
if (DEBUG) debug("set not allowed on " + keys[i]);
|
|
|
|
|
lock._failed = true;
|
|
|
|
|
return Promise.reject({task: aTask, error: "No permission to set " + keys[i]});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (let i = 0; i < keys.length; i++) {
|
|
|
|
|
let key = keys[i];
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("key: " + key + ", val: " + JSON.stringify(data.settings[key]) + ", type: " + typeof(data.settings[key]));
|
2014-08-27 21:01:29 -07:00
|
|
|
lock.queuedSets[key] = data.settings[key];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return this.queueTaskReturn(aTask, {task: aTask});
|
|
|
|
|
},
|
|
|
|
|
|
2014-11-02 23:15:12 -08:00
|
|
|
startRunning: function(aLockID) {
|
|
|
|
|
let lock = this.lockInfo[aLockID];
|
|
|
|
|
|
|
|
|
|
if (!lock) {
|
|
|
|
|
if (DEBUG) debug("Lock no longer alive, cannot start running");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.consumable = true;
|
|
|
|
|
if (aLockID == this.settingsLockQueue[0] || this.settingsLockQueue.length == 0) {
|
|
|
|
|
// If a lock is currently at the head of the queue, run all tasks for
|
|
|
|
|
// it.
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Start running tasks for " + aLockID);
|
2014-11-02 23:15:12 -08:00
|
|
|
this.queueConsume();
|
|
|
|
|
} else {
|
|
|
|
|
// If a lock isn't at the head of the queue, but requests to be run,
|
|
|
|
|
// simply mark it as consumable, which means it will automatically run
|
|
|
|
|
// once it comes to the head of the queue.
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Queuing tasks for " + aLockID + " while waiting for " + this.settingsLockQueue[0]);
|
2014-11-02 23:15:12 -08:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
2014-08-27 21:01:29 -07:00
|
|
|
queueConsume: function() {
|
|
|
|
|
if (this.settingsLockQueue.length > 0 && this.lockInfo[this.settingsLockQueue[0]].consumable) {
|
|
|
|
|
Services.tm.currentThread.dispatch(SettingsRequestManager.consumeTasks.bind(this), Ci.nsIThread.DISPATCH_NORMAL);
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
finalizeSets: function(aTask) {
|
|
|
|
|
let data = aTask.data;
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Finalizing tasks for lock " + data.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
let lock = this.lockInfo[data.lockID];
|
|
|
|
|
|
|
|
|
|
if (!lock) {
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock died, can't finalize"});
|
|
|
|
|
}
|
2014-08-29 16:36:02 -07:00
|
|
|
lock.finalizing = true;
|
2014-08-27 21:01:29 -07:00
|
|
|
if (lock._failed) {
|
|
|
|
|
this.removeLock(data.lockID);
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock failed a permissions check, all requests now failing."});
|
|
|
|
|
}
|
|
|
|
|
// If we have cleared, there is no reason to continue finalizing
|
|
|
|
|
// this lock. Just resolve promise with task and move on.
|
|
|
|
|
if (lock.hasCleared) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Clear was called on lock, skipping finalize");
|
2014-08-27 21:01:29 -07:00
|
|
|
this.removeLock(data.lockID);
|
|
|
|
|
return Promise.resolve({task: aTask});
|
|
|
|
|
}
|
|
|
|
|
let keys = Object.getOwnPropertyNames(lock.queuedSets);
|
|
|
|
|
if (keys.length === 0) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Nothing to finalize. Exiting.");
|
2014-08-27 21:01:29 -07:00
|
|
|
this.removeLock(data.lockID);
|
|
|
|
|
return Promise.resolve({task: aTask});
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
let store = lock.getObjectStore(lock.principal);
|
2014-08-27 21:01:29 -07:00
|
|
|
if (!store) {
|
|
|
|
|
if (DEBUG) debug("Rejecting Set task on lock " + aTask.data.lockID);
|
2014-11-29 14:47:46 -08:00
|
|
|
this.removeLock(data.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
return Promise.reject({task: aTask, error: "Cannot get object store"});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Due to the fact there may have multiple set operations to clear, and
|
|
|
|
|
// they're all async, callbacks are gathered into promises, and the promises
|
|
|
|
|
// are processed with Promises.all().
|
|
|
|
|
let checkPromises = [];
|
|
|
|
|
let finalValues = {};
|
|
|
|
|
for (let i = 0; i < keys.length; i++) {
|
|
|
|
|
let key = keys[i];
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("key: " + key + ", val: " + lock.queuedSets[key] + ", type: " + typeof(lock.queuedSets[key]));
|
2014-08-27 21:01:29 -07:00
|
|
|
let checkDefer = {};
|
|
|
|
|
let checkPromise = new Promise(function(resolve, reject) {
|
|
|
|
|
checkDefer.resolve = resolve;
|
|
|
|
|
checkDefer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// Get operation is used to fill in the default value, assuming there is
|
|
|
|
|
// one. For the moment, if a value doesn't exist in the settings DB, we
|
|
|
|
|
// allow the user to add it, and just pass back a null default value.
|
|
|
|
|
let checkKeyRequest = store.get(key);
|
|
|
|
|
checkKeyRequest.onsuccess = function (event) {
|
|
|
|
|
let userValue = lock.queuedSets[key];
|
|
|
|
|
let defaultValue;
|
|
|
|
|
if (!event.target.result) {
|
|
|
|
|
defaultValue = null;
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("MOZSETTINGS-GET-WARNING: " + key + " is not in the database.\n");
|
2014-08-27 21:01:29 -07:00
|
|
|
} else {
|
|
|
|
|
defaultValue = event.target.result.defaultValue;
|
|
|
|
|
}
|
|
|
|
|
let obj = {settingName: key, defaultValue: defaultValue, userValue: userValue};
|
|
|
|
|
finalValues[key] = {defaultValue: defaultValue, userValue: userValue};
|
|
|
|
|
let setReq = store.put(obj);
|
|
|
|
|
setReq.onsuccess = function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Set successful!");
|
|
|
|
|
if (VERBOSE) debug("key: " + key + ", val: " + finalValues[key] + ", type: " + typeof(finalValues[key]));
|
2014-08-27 21:01:29 -07:00
|
|
|
return checkDefer.resolve({task: aTask});
|
|
|
|
|
};
|
|
|
|
|
setReq.onerror = function() {
|
|
|
|
|
return checkDefer.reject({task: aTask, error: setReq.error.name});
|
|
|
|
|
};
|
|
|
|
|
}.bind(this);
|
|
|
|
|
checkKeyRequest.onerror = function(event) {
|
|
|
|
|
return checkDefer.reject({task: aTask, error: checkKeyRequest.error.name});
|
|
|
|
|
};
|
|
|
|
|
checkPromises.push(checkPromise);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let defer = {};
|
|
|
|
|
let promiseWrapper = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// Once all transactions are done, or any have failed, remove the lock and
|
|
|
|
|
// start processing the tasks from the next lock in the queue.
|
|
|
|
|
Promise.all(checkPromises).then(function() {
|
|
|
|
|
// If all commits were successful, notify observers
|
|
|
|
|
for (let i = 0; i < keys.length; i++) {
|
|
|
|
|
this.sendSettingsChange(keys[i], finalValues[keys[i]].userValue, lock.isServiceLock);
|
|
|
|
|
}
|
|
|
|
|
this.removeLock(data.lockID);
|
|
|
|
|
defer.resolve({task: aTask});
|
|
|
|
|
}.bind(this), function(ret) {
|
|
|
|
|
this.removeLock(data.lockID);
|
|
|
|
|
defer.reject({task: aTask, error: "Set transaction failure"});
|
|
|
|
|
}.bind(this));
|
|
|
|
|
return promiseWrapper;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
// Clear is only expected to be called via tests, and if a lock
|
|
|
|
|
// calls clear, it should be the only thing the lock does. This
|
|
|
|
|
// allows us to not have to deal with the possibility of query
|
|
|
|
|
// integrity checking. Clear should never be called in the wild,
|
|
|
|
|
// even by certified apps, which is why it has its own permission
|
|
|
|
|
// (settings-clear).
|
|
|
|
|
taskClear: function(aTask) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Clearing");
|
2014-08-27 21:01:29 -07:00
|
|
|
let data = aTask.data;
|
|
|
|
|
let lock = this.lockInfo[data.lockID];
|
|
|
|
|
|
|
|
|
|
if (lock._failed) {
|
|
|
|
|
if (DEBUG) debug("Lock failed, all requests now failing.");
|
|
|
|
|
return Promise.reject({task: aTask, error: "Lock failed, all requests now failing."});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!lock.canClear) {
|
|
|
|
|
if (DEBUG) debug("Lock tried to clear after queuing other tasks. Failing.");
|
|
|
|
|
lock._failed = true;
|
|
|
|
|
return Promise.reject({task: aTask, error: "Cannot call clear after queuing other tasks, all requests now failing."});
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
if (!SettingsPermissions.hasClearPermission(lock.principal)) {
|
2014-08-27 21:01:29 -07:00
|
|
|
if (DEBUG) debug("clear not allowed");
|
|
|
|
|
lock._failed = true;
|
|
|
|
|
return Promise.reject({task: aTask, error: "No permission to clear DB"});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.hasCleared = true;
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
let store = lock.getObjectStore(lock.principal);
|
2014-08-27 21:01:29 -07:00
|
|
|
if (!store) {
|
|
|
|
|
if (DEBUG) debug("Rejecting Clear task on lock " + aTask.data.lockID);
|
|
|
|
|
return Promise.reject({task: aTask, error: "Cannot get object store"});
|
|
|
|
|
}
|
|
|
|
|
let defer = {};
|
|
|
|
|
let promiseWrapper = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
let clearReq = store.clear();
|
|
|
|
|
clearReq.onsuccess = function() {
|
|
|
|
|
return defer.resolve({task: aTask});
|
|
|
|
|
};
|
|
|
|
|
clearReq.onerror = function() {
|
|
|
|
|
return defer.reject({task: aTask});
|
|
|
|
|
};
|
|
|
|
|
return promiseWrapper;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
ensureConnection : function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Ensuring Connection");
|
2014-08-27 21:01:29 -07:00
|
|
|
let defer = {};
|
|
|
|
|
let promiseWrapper = new Promise(function(resolve, reject) {
|
|
|
|
|
defer.resolve = resolve;
|
|
|
|
|
defer.reject = reject;
|
|
|
|
|
});
|
|
|
|
|
this.settingsDB.ensureDB(
|
|
|
|
|
function() { defer.resolve(); },
|
|
|
|
|
function(error) {
|
|
|
|
|
if (DEBUG) debug("Cannot open Settings DB. Trying to open an old version?\n");
|
|
|
|
|
defer.reject(error);
|
|
|
|
|
}
|
|
|
|
|
);
|
|
|
|
|
return promiseWrapper;
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
runTasks: function(aLockID) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Running tasks for " + aLockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
let lock = this.lockInfo[aLockID];
|
|
|
|
|
if (!lock) {
|
|
|
|
|
if (DEBUG) debug("Lock no longer alive, cannot run tasks");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
let currentTask = lock.tasks.shift();
|
|
|
|
|
let promises = [];
|
2014-12-17 07:40:00 -08:00
|
|
|
if (TRACK) {
|
|
|
|
|
if (this.tasksConsumed[aLockID] === undefined) {
|
|
|
|
|
this.tasksConsumed[aLockID] = 0;
|
|
|
|
|
this.tasksGetConsumed[aLockID] = 0;
|
|
|
|
|
this.tasksSetConsumed[aLockID] = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
while (currentTask) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Running Operation " + currentTask.operation);
|
2014-09-15 09:29:29 -07:00
|
|
|
if (lock.finalizing) {
|
2014-09-18 13:43:40 -07:00
|
|
|
// We should really never get to this point, but if we do,
|
|
|
|
|
// fail every task that happens.
|
2014-09-15 09:29:29 -07:00
|
|
|
Cu.reportError("Settings lock trying to run more tasks after finalizing. Ignoring tasks, but this is bad. Lock: " + aLockID);
|
2014-09-18 13:43:40 -07:00
|
|
|
currentTask.defer.reject("Cannot call new task after finalizing");
|
|
|
|
|
} else {
|
2014-08-27 21:01:29 -07:00
|
|
|
let p;
|
2014-12-17 07:40:00 -08:00
|
|
|
this.totalProcessed++;
|
|
|
|
|
if (TRACK) {
|
|
|
|
|
this.tasksConsumed[aLockID]++;
|
|
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
switch (currentTask.operation) {
|
|
|
|
|
case "get":
|
2014-12-17 07:40:00 -08:00
|
|
|
this.totalGetProcessed++;
|
|
|
|
|
if (TRACK) {
|
|
|
|
|
this.tasksGetConsumed[aLockID]++;
|
|
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
p = this.taskGet(currentTask);
|
|
|
|
|
break;
|
|
|
|
|
case "set":
|
2014-12-17 07:40:00 -08:00
|
|
|
this.totalSetProcessed++;
|
|
|
|
|
if (TRACK) {
|
|
|
|
|
this.tasksSetConsumed[aLockID]++;
|
|
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
p = this.taskSet(currentTask);
|
|
|
|
|
break;
|
|
|
|
|
case "clear":
|
|
|
|
|
p = this.taskClear(currentTask);
|
|
|
|
|
break;
|
|
|
|
|
case "finalize":
|
|
|
|
|
p = this.finalizeSets(currentTask);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
if (DEBUG) debug("Invalid operation: " + currentTask.operation);
|
|
|
|
|
p.reject("Invalid operation: " + currentTask.operation);
|
|
|
|
|
}
|
|
|
|
|
p.then(function(ret) {
|
2014-09-05 18:39:54 -07:00
|
|
|
ret.task.defer.resolve("results" in ret ? ret.results : null);
|
2014-08-27 21:01:29 -07:00
|
|
|
}.bind(currentTask), function(ret) {
|
|
|
|
|
ret.task.defer.reject(ret.error);
|
|
|
|
|
});
|
|
|
|
|
promises.push(p);
|
2014-09-18 13:43:40 -07:00
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
currentTask = lock.tasks.shift();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
consumeTasks: function() {
|
|
|
|
|
if (this.settingsLockQueue.length == 0) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Nothing to run!");
|
2014-08-27 21:01:29 -07:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let lockID = this.settingsLockQueue[0];
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Consuming tasks for " + lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
let lock = this.lockInfo[lockID];
|
|
|
|
|
|
|
|
|
|
// If a process dies, we should clean up after it via the
|
|
|
|
|
// child-process-shutdown event. But just in case we don't, we want to make
|
|
|
|
|
// sure we never block on consuming.
|
|
|
|
|
if (!lock) {
|
|
|
|
|
if (DEBUG) debug("Lock no longer alive, cannot consume tasks");
|
|
|
|
|
this.queueConsume();
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!lock.consumable || lock.tasks.length === 0) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("No more tasks to run or not yet consuamble.");
|
2014-08-27 21:01:29 -07:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
lock.consumable = false;
|
|
|
|
|
this.ensureConnection().then(
|
|
|
|
|
function(task) {
|
|
|
|
|
this.runTasks(lockID);
|
|
|
|
|
}.bind(this), function(ret) {
|
|
|
|
|
dump("-*- SettingsRequestManager: SETTINGS DATABASE ERROR: Cannot make DB connection!\n");
|
|
|
|
|
});
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
observe: function(aSubject, aTopic, aData) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("observe: " + aTopic);
|
2014-08-27 21:01:29 -07:00
|
|
|
switch (aTopic) {
|
|
|
|
|
case kXpcomShutdownObserverTopic:
|
|
|
|
|
this.messages.forEach((function(msgName) {
|
|
|
|
|
ppmm.removeMessageListener(msgName, this);
|
|
|
|
|
}).bind(this));
|
|
|
|
|
Services.obs.removeObserver(this, kXpcomShutdownObserverTopic);
|
|
|
|
|
ppmm = null;
|
2014-12-02 05:50:00 -08:00
|
|
|
mrm.unregisterStrongReporter(this);
|
2014-08-27 21:01:29 -07:00
|
|
|
break;
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
|
|
|
|
|
case kInnerWindowDestroyed:
|
|
|
|
|
let wId = aSubject.QueryInterface(Ci.nsISupportsPRUint64).data;
|
|
|
|
|
this.forceFinalizeChildLocksNonOOP(wId);
|
|
|
|
|
break;
|
|
|
|
|
|
2014-08-27 21:01:29 -07:00
|
|
|
default:
|
|
|
|
|
if (DEBUG) debug("Wrong observer topic: " + aTopic);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
2014-12-02 05:50:00 -08:00
|
|
|
collectReports: function(aCallback, aData, aAnonymize) {
|
|
|
|
|
for (let lockId of Object.keys(this.lockInfo)) {
|
|
|
|
|
let lock = this.lockInfo[lockId];
|
|
|
|
|
let length = lock.tasks.length;
|
|
|
|
|
|
|
|
|
|
if (length === 0) {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2014-12-17 07:40:00 -08:00
|
|
|
let path = "settings-locks/tasks/lock(id=" + lockId + ")/";
|
2014-12-02 05:50:00 -08:00
|
|
|
|
2014-12-17 07:40:00 -08:00
|
|
|
aCallback.callback("", path + "alive",
|
2014-12-02 05:50:00 -08:00
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
length,
|
2014-12-17 07:40:00 -08:00
|
|
|
"Alive tasks for this lock",
|
2014-12-02 05:50:00 -08:00
|
|
|
aData);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
aCallback.callback("",
|
2014-12-17 07:40:00 -08:00
|
|
|
"settings-locks/tasks-total/processed",
|
|
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
this.totalProcessed,
|
|
|
|
|
"The total number of tasks that were executed.",
|
|
|
|
|
aData);
|
|
|
|
|
|
|
|
|
|
aCallback.callback("",
|
|
|
|
|
"settings-locks/tasks-total/set",
|
2014-12-02 05:50:00 -08:00
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
2014-12-17 07:40:00 -08:00
|
|
|
this.totalSetProcessed,
|
|
|
|
|
"The total number of set tasks that were executed.",
|
2014-12-02 05:50:00 -08:00
|
|
|
aData);
|
2014-12-17 07:40:00 -08:00
|
|
|
|
|
|
|
|
aCallback.callback("",
|
|
|
|
|
"settings-locks/tasks-total/get",
|
|
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
this.totalGetProcessed,
|
|
|
|
|
"The total number of get tasks that were executed.",
|
|
|
|
|
aData);
|
|
|
|
|
|
|
|
|
|
// if TRACK is not enabled, then, no details are available
|
|
|
|
|
if (!TRACK) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (let lockId of Object.keys(this.tasksConsumed)) {
|
|
|
|
|
let lock = this.lockInfo[lockId];
|
|
|
|
|
let length = 0;
|
|
|
|
|
if (lock) {
|
|
|
|
|
length = lock.tasks.length;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let path = "settings-locks/tasks/lock(id=" + lockId + ")/";
|
|
|
|
|
|
|
|
|
|
aCallback.callback("", path + "set",
|
|
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
this.tasksSetConsumed[lockId],
|
|
|
|
|
"Set tasks for this lock.",
|
|
|
|
|
aData);
|
|
|
|
|
|
|
|
|
|
aCallback.callback("", path + "get",
|
|
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
this.tasksGetConsumed[lockId],
|
|
|
|
|
"Get tasks for this lock.",
|
|
|
|
|
aData);
|
|
|
|
|
|
|
|
|
|
aCallback.callback("", path + "processed",
|
|
|
|
|
Ci.nsIMemoryReporter.KIND_OTHER,
|
|
|
|
|
Ci.nsIMemoryReporter.UNITS_COUNT,
|
|
|
|
|
this.tasksConsumed[lockId],
|
|
|
|
|
"Number of tasks that were executed.",
|
|
|
|
|
aData);
|
|
|
|
|
}
|
2014-12-02 05:50:00 -08:00
|
|
|
},
|
|
|
|
|
|
2014-08-27 21:01:29 -07:00
|
|
|
sendSettingsChange: function(aKey, aValue, aIsServiceLock) {
|
|
|
|
|
this.broadcastMessage("Settings:Change:Return:OK",
|
|
|
|
|
{ key: aKey, value: aValue });
|
2014-09-16 10:15:16 -07:00
|
|
|
var setting = {
|
|
|
|
|
key: aKey,
|
|
|
|
|
value: aValue,
|
|
|
|
|
isInternalChange: aIsServiceLock
|
|
|
|
|
};
|
|
|
|
|
setting.wrappedJSObject = setting;
|
|
|
|
|
Services.obs.notifyObservers(setting, kMozSettingsChangedObserverTopic, "");
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
|
|
|
|
|
|
|
|
|
broadcastMessage: function broadcastMessage(aMsgName, aContent) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Broadcast");
|
2014-08-27 21:01:29 -07:00
|
|
|
this.children.forEach(function(msgMgr) {
|
2014-12-09 13:53:20 -08:00
|
|
|
let principal = this.observerPrincipalCache.get(msgMgr);
|
2014-09-04 11:15:10 -07:00
|
|
|
if (!principal) {
|
|
|
|
|
if (DEBUG) debug("Cannot find principal for message manager to check permissions");
|
|
|
|
|
}
|
|
|
|
|
else if (SettingsPermissions.hasReadPermission(principal, aContent.key)) {
|
2014-10-01 19:57:48 -07:00
|
|
|
try {
|
|
|
|
|
msgMgr.sendAsyncMessage(aMsgName, aContent);
|
|
|
|
|
} catch (e) {
|
|
|
|
|
if (DEBUG) debug("Failed sending message: " + aMsgName);
|
|
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
2014-09-04 11:15:10 -07:00
|
|
|
}.bind(this));
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Finished Broadcasting");
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
|
|
|
|
|
2014-09-04 11:15:10 -07:00
|
|
|
addObserver: function(aMsgMgr, aPrincipal) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Add observer for " + aPrincipal.origin);
|
2014-08-27 21:01:29 -07:00
|
|
|
if (this.children.indexOf(aMsgMgr) == -1) {
|
|
|
|
|
this.children.push(aMsgMgr);
|
2014-12-09 13:53:20 -08:00
|
|
|
this.observerPrincipalCache.set(aMsgMgr, aPrincipal);
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
removeObserver: function(aMsgMgr) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) {
|
2014-12-09 13:53:20 -08:00
|
|
|
let principal = this.observerPrincipalCache.get(aMsgMgr);
|
2014-10-09 02:12:00 -07:00
|
|
|
if (principal) {
|
|
|
|
|
debug("Remove observer for " + principal.origin);
|
|
|
|
|
}
|
2014-09-15 13:39:20 -07:00
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
let index = this.children.indexOf(aMsgMgr);
|
|
|
|
|
if (index != -1) {
|
|
|
|
|
this.children.splice(index, 1);
|
2014-12-09 13:53:20 -08:00
|
|
|
this.observerPrincipalCache.delete(aMsgMgr);
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
2014-12-09 13:53:20 -08:00
|
|
|
if (VERBOSE) debug("Principal/MessageManager pairs left in observer cache: " + this.observerPrincipalCache.size);
|
2014-08-27 21:01:29 -07:00
|
|
|
},
|
|
|
|
|
|
|
|
|
|
removeLock: function(aLockID) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Removing lock " + aLockID);
|
2014-09-18 17:23:27 -07:00
|
|
|
if (this.lockInfo[aLockID]) {
|
2014-08-27 21:01:29 -07:00
|
|
|
let transaction = this.lockInfo[aLockID]._transaction;
|
|
|
|
|
if (transaction) {
|
|
|
|
|
try {
|
|
|
|
|
transaction.abort();
|
|
|
|
|
} catch (e) {
|
|
|
|
|
if (e.name == "InvalidStateError") {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Transaction for " + aLockID + " closed already");
|
2014-08-27 21:01:29 -07:00
|
|
|
} else {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (DEBUG) debug("Unexpected exception, throwing: " + e);
|
2014-08-27 21:01:29 -07:00
|
|
|
throw e;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
delete this.lockInfo[aLockID];
|
2014-09-18 17:23:27 -07:00
|
|
|
}
|
2014-08-27 21:01:29 -07:00
|
|
|
let index = this.settingsLockQueue.indexOf(aLockID);
|
|
|
|
|
if (index > -1) {
|
|
|
|
|
this.settingsLockQueue.splice(index, 1);
|
|
|
|
|
}
|
|
|
|
|
// If index is 0, the lock we just removed was at the head of
|
|
|
|
|
// the queue, so possibly queue the next lock if it's
|
|
|
|
|
// consumable.
|
|
|
|
|
if (index == 0) {
|
|
|
|
|
this.queueConsume();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
hasLockFinalizeTask: function(lock) {
|
|
|
|
|
// Go in reverse order because finalize should be the last one
|
|
|
|
|
for (let task_index = lock.tasks.length; task_index >= 0; task_index--) {
|
|
|
|
|
if (lock.tasks[task_index]
|
|
|
|
|
&& lock.tasks[task_index].operation === "finalize") {
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
},
|
|
|
|
|
|
2014-12-09 13:53:04 -08:00
|
|
|
enqueueForceFinalize: function(lock) {
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
if (!this.hasLockFinalizeTask(lock)) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Alive lock has pending tasks: " + lock.lockID);
|
2014-12-09 13:53:04 -08:00
|
|
|
this.queueTask("finalize", {lockID: lock.lockID}).then(
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
function() {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Alive lock " + lock.lockID + " succeeded to force-finalize");
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
},
|
|
|
|
|
function(error) {
|
2014-11-02 23:15:12 -08:00
|
|
|
if (DEBUG) debug("Alive lock " + lock.lockID + " failed to force-finalize due to error: " + error);
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
}
|
|
|
|
|
);
|
2014-11-02 23:15:12 -08:00
|
|
|
// Finalize is considered a task running situation, but it also needs to
|
|
|
|
|
// queue a task.
|
|
|
|
|
this.startRunning(lock.lockID);
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
forceFinalizeChildLocksNonOOP: function(windowId) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Forcing finalize on child locks, non OOP");
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
|
|
|
|
|
for (let lockId of Object.keys(this.lockInfo)) {
|
|
|
|
|
let lock = this.lockInfo[lockId];
|
|
|
|
|
if (lock.windowID === windowId) {
|
2014-12-09 13:53:04 -08:00
|
|
|
this.enqueueForceFinalize(lock);
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
2014-11-02 23:15:12 -08:00
|
|
|
forceFinalizeChildLocksOOP: function(aMsgMgr) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Forcing finalize on child locks, OOP");
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
|
|
|
|
|
for (let lockId of Object.keys(this.lockInfo)) {
|
2014-10-09 02:12:00 -07:00
|
|
|
let lock = this.lockInfo[lockId];
|
2014-11-02 23:15:12 -08:00
|
|
|
if (lock._mm === aMsgMgr) {
|
2014-12-09 13:53:04 -08:00
|
|
|
this.enqueueForceFinalize(lock);
|
2014-08-27 21:01:29 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
receiveMessage: function(aMessage) {
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("receiveMessage " + aMessage.name + ": " + JSON.stringify(aMessage.data));
|
2014-08-27 21:01:29 -07:00
|
|
|
|
|
|
|
|
let msg = aMessage.data;
|
|
|
|
|
let mm = aMessage.target;
|
|
|
|
|
|
|
|
|
|
function returnMessage(name, data) {
|
|
|
|
|
try {
|
|
|
|
|
mm.sendAsyncMessage(name, data);
|
|
|
|
|
} catch (e) {
|
|
|
|
|
if (DEBUG) debug("Return message failed, " + name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// For all message types that expect a lockID, we check to make
|
|
|
|
|
// sure that we're accessing a lock that's part of our process. If
|
|
|
|
|
// not, consider it a security violation and kill the app. Killing
|
|
|
|
|
// based on creating a colliding lock ID happens as part of
|
|
|
|
|
// CreateLock check below.
|
|
|
|
|
switch (aMessage.name) {
|
|
|
|
|
case "Settings:Get":
|
|
|
|
|
case "Settings:Set":
|
|
|
|
|
case "Settings:Clear":
|
|
|
|
|
case "Settings:Run":
|
|
|
|
|
case "Settings:Finalize":
|
|
|
|
|
let kill_process = false;
|
|
|
|
|
if (!msg.lockID) {
|
|
|
|
|
Cu.reportError("Process sending request for lock that does not exist. Killing.");
|
|
|
|
|
kill_process = true;
|
|
|
|
|
}
|
|
|
|
|
else if (!this.lockInfo[msg.lockID]) {
|
|
|
|
|
if (DEBUG) debug("Cannot find lock ID " + msg.lockID);
|
|
|
|
|
// This doesn't kill, because we can have things that file
|
|
|
|
|
// finalize, then die, and we may get the observer
|
|
|
|
|
// notification before we get the IPC messages.
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
else if (mm != this.lockInfo[msg.lockID]._mm) {
|
|
|
|
|
Cu.reportError("Process trying to access settings lock from another process. Killing.");
|
|
|
|
|
kill_process = true;
|
|
|
|
|
}
|
|
|
|
|
if (kill_process) {
|
|
|
|
|
// Kill the app by checking for a non-existent permission
|
|
|
|
|
aMessage.target.assertPermission("message-manager-mismatch-kill");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (aMessage.name) {
|
|
|
|
|
case "child-process-shutdown":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Child process shutdown received.");
|
2014-11-02 23:15:12 -08:00
|
|
|
this.forceFinalizeChildLocksOOP(mm);
|
|
|
|
|
this.removeObserver(mm);
|
2014-08-27 21:01:29 -07:00
|
|
|
break;
|
|
|
|
|
case "Settings:RegisterForMessages":
|
2014-09-04 11:15:10 -07:00
|
|
|
if (!SettingsPermissions.hasSomeReadPermission(aMessage.principal)) {
|
2014-08-27 21:01:29 -07:00
|
|
|
Cu.reportError("Settings message " + aMessage.name +
|
|
|
|
|
" from a content process with no 'settings-api-read' privileges.");
|
2014-09-04 11:15:10 -07:00
|
|
|
aMessage.target.assertPermission("message-manager-no-read-kill");
|
2014-08-27 21:01:29 -07:00
|
|
|
return;
|
|
|
|
|
}
|
2014-09-04 11:15:10 -07:00
|
|
|
this.addObserver(mm, aMessage.principal);
|
2014-08-27 21:01:29 -07:00
|
|
|
break;
|
|
|
|
|
case "Settings:UnregisterForMessages":
|
|
|
|
|
this.removeObserver(mm);
|
|
|
|
|
break;
|
|
|
|
|
case "Settings:CreateLock":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received CreateLock for " + msg.lockID + " from " + aMessage.principal.origin + " window: " + msg.windowID);
|
2014-08-27 21:01:29 -07:00
|
|
|
// If we try to create a lock ID that collides with one
|
|
|
|
|
// already in the system, consider it a security violation and
|
|
|
|
|
// kill.
|
|
|
|
|
if (msg.lockID in this.settingsLockQueue) {
|
|
|
|
|
Cu.reportError("Trying to queue a lock with the same ID as an already queued lock. Killing app.");
|
|
|
|
|
aMessage.target.assertPermission("lock-id-duplicate-kill");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
this.settingsLockQueue.push(msg.lockID);
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
this.lockInfo[msg.lockID] = SettingsLockInfo(this.settingsDB,
|
|
|
|
|
mm,
|
2014-12-09 13:53:04 -08:00
|
|
|
aMessage.principal,
|
Bug 1082001 - Cleanup settings lock from parent itself. r=bent
From bug 1065128 SettingsManager has been changed to listen the
dom-window-destroyed event for its cleanup. However, when running Gaia
in Mulet, a race condition is exposed. For B2G, when loading a page,
about:blank is first used. This means that window destroyed events will
be triggered. However, from the dom-window-destroyed event we cannot
distinguish whether this is about:blank or a legit application being
closed. SettingsManager gets initialized (i.e., init() called) when the
application makes use of navigator.mozSettings. So the chain of event is
that we have a SettingsManager living because System app did some
request. At this time, about:blank is being unloaded and triggers a
dom-window-destroyed event. This makes SettingsManager doing its
cleanup, especially freeing the window reference. Then in the meantime,
we have the navigator.mozSettings use that is progressing. At some
point, SettingsManager has no more window to send messages to, and Gaia
is not able to even start.
SettingsRequestManager lives on the parent process and SettingsManager
lives on the child side. Part of the cleanup performed by
SettingsManager was to ensure pending locks on the parent process would
be forced to finalize to make sure those are being properly committed.
We move this cleanup to SettingsRequestManager and we augment the lock
informations with the proper inner window id. This way we can track
which lock is attached to which inner window when the lock gets created.
And thus we can listen on inner-window-destroyed from
SettingsRequestManager to be able to force finalize on any pending lock.
Impacted code path are those were we are not running out of process.
When we are running out of process, SettingsRequestManager already
listens on the child-process-shutdown event to perform the lock
finalization.
2014-10-28 23:36:00 -07:00
|
|
|
msg.lockID,
|
|
|
|
|
msg.isServiceLock,
|
|
|
|
|
msg.windowID);
|
2014-08-27 21:01:29 -07:00
|
|
|
break;
|
|
|
|
|
case "Settings:Get":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received getRequest from " + msg.lockID);
|
2014-12-09 13:53:04 -08:00
|
|
|
this.queueTask("get", msg).then(function(settings) {
|
2014-08-27 21:01:29 -07:00
|
|
|
returnMessage("Settings:Get:OK", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID,
|
|
|
|
|
settings: settings
|
|
|
|
|
});
|
|
|
|
|
}, function(error) {
|
|
|
|
|
if (DEBUG) debug("getRequest FAILED " + msg.name);
|
|
|
|
|
returnMessage("Settings:Get:KO", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID,
|
|
|
|
|
errorMsg: error
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
break;
|
|
|
|
|
case "Settings:Set":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received Set Request from " + msg.lockID);
|
2014-12-09 13:53:04 -08:00
|
|
|
this.queueTask("set", msg).then(function(settings) {
|
2014-08-27 21:01:29 -07:00
|
|
|
returnMessage("Settings:Set:OK", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID
|
|
|
|
|
});
|
|
|
|
|
}, function(error) {
|
|
|
|
|
returnMessage("Settings:Set:KO", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID,
|
|
|
|
|
errorMsg: error
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
break;
|
|
|
|
|
case "Settings:Clear":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received Clear Request from " + msg.lockID);
|
2014-12-09 13:53:04 -08:00
|
|
|
this.queueTask("clear", msg).then(function() {
|
2014-08-27 21:01:29 -07:00
|
|
|
returnMessage("Settings:Clear:OK", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID
|
|
|
|
|
});
|
|
|
|
|
}, function(error) {
|
|
|
|
|
returnMessage("Settings:Clear:KO", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
requestID: msg.requestID,
|
|
|
|
|
errorMsg: error
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
break;
|
|
|
|
|
case "Settings:Finalize":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received Finalize");
|
2014-12-09 13:53:04 -08:00
|
|
|
this.queueTask("finalize", msg).then(function() {
|
2014-08-27 21:01:29 -07:00
|
|
|
returnMessage("Settings:Finalize:OK", {
|
|
|
|
|
lockID: msg.lockID
|
|
|
|
|
});
|
|
|
|
|
}, function(error) {
|
|
|
|
|
returnMessage("Settings:Finalize:KO", {
|
|
|
|
|
lockID: msg.lockID,
|
|
|
|
|
errorMsg: error
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
// YES THIS IS SUPPOSED TO FALL THROUGH. Finalize is considered a task
|
|
|
|
|
// running situation, but it also needs to queue a task.
|
|
|
|
|
case "Settings:Run":
|
2014-12-02 05:50:00 -08:00
|
|
|
if (VERBOSE) debug("Received Run");
|
2014-11-02 23:15:12 -08:00
|
|
|
this.startRunning(msg.lockID);
|
2014-08-27 21:01:29 -07:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
if (DEBUG) debug("Wrong message: " + aMessage.name);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
SettingsRequestManager.init();
|
