eliott/servo
1
0
Fork 0
mirror of https://github.com/servo/servo synced 2026-04-25 17:15:48 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
e73c010bb18f7c84c3ce12721a08b6fcccc8dca7
servo/components/net/resource_thread.rs
Simon Wülker e73c010bb1 Force callers to claim blob url before making a fetch request (#43746) 
`blob` URLs have a implicit blob URL entry attached, which stores the
data contained in the blob. The specification requires this entry to be
resolved as the URL is parsed. We only resolve it inside `net` when
loading the URL. That causes problems if the blob entry has been revoked
in the meantime - see https://github.com/servo/servo/issues/25226.

Ideally we would want to resolve blobs at parse-time as required. But
because `ServoUrl` is such a fundamental type, I've not managed to do
this change without having to touch hundreds of files at once.

Thus, we now require passing a `UrlWithBlobClaim` instead of a
`ServoUrl` when `fetch`-ing. This type proves that the caller has
acquired the blob beforehand.

As a temporary escape hatch, I've added
`UrlWithBlobClaim::from_url_without_having_claimed_blob`. That method
logs a warning if its used unsafely. This method is currently used in
most places to keep this change small. Only workers now acquire the blob
beforehand.

Testing: A new test starts to pass
Part of https://github.com/servo/servo/issues/43326
Part of https://github.com/servo/servo/issues/25226

---------

Signed-off-by: Simon Wülker <simon.wuelker@arcor.de>
Co-authored-by: Josh Matthews <josh@joshmatthews.net>
2026-04-06 14:21:55 +00:00

918 lines
37 KiB
Rust
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at https://mozilla.org/MPL/2.0/. */
//! A thread that takes a URL and streams back the binary data.
use std::borrow::ToOwned;
use std::collections::HashMap;
use std::fs::File;
use std::io::{self, BufReader};
use std::path::{Path, PathBuf};
use std::sync::{Arc, Weak};
use std::thread;
use cookie::Cookie;
use crossbeam_channel::Sender;
use devtools_traits::DevtoolsControlMsg;
use embedder_traits::GenericEmbedderProxy;
use hyper_serde::Serde;
use ipc_channel::ipc::IpcSender;
use log::{debug, trace, warn};
use net_traits::blob_url_store::{BlobTokenCommunicator, parse_blob_url};
use net_traits::filemanager_thread::FileTokenCheck;
use net_traits::pub_domains::public_suffix_list_size_of;
use net_traits::request::{Destination, PreloadEntry, PreloadId, RequestBuilder, RequestId};
use net_traits::response::{Response, ResponseInit};
use net_traits::{
AsyncRuntime, CookieAsyncResponse, CookieData, CookieSource, CoreResourceMsg,
CoreResourceThread, CustomResponseMediator, DiscardFetch, FetchChannels, FetchTaskTarget,
ResourceFetchTiming, ResourceThreads, ResourceTimingType, WebSocketDomAction,
WebSocketNetworkEvent,
};
use parking_lot::{Mutex, RwLock};
use profile_traits::mem::{
ProcessReports, ProfilerChan as MemProfilerChan, Report, ReportKind, ReportsChan,
perform_memory_report,
};
use profile_traits::path;
use profile_traits::time::ProfilerChan;
use rustc_hash::FxHashMap;
use rustls_pki_types::CertificateDer;
use rustls_pki_types::pem::PemObject;
use serde::{Deserialize, Serialize};
use servo_arc::Arc as ServoArc;
use servo_base::generic_channel::{
self, CallbackSetter, GenericCallback, GenericReceiver, GenericReceiverSet,
GenericSelectionResult,
};
use servo_base::id::CookieStoreId;
use servo_url::{ImmutableOrigin, ServoUrl};
use tokio::sync::Mutex as TokioMutex;
use crate::async_runtime::{init_async_runtime, spawn_task};
use crate::connector::{
CACertificates, CertificateErrorOverrideManager, create_http_client, create_tls_config,
};
use crate::cookie::ServoCookie;
use crate::cookie_storage::CookieStorage;
use crate::embedder::NetToEmbedderMsg;
use crate::fetch::cors_cache::CorsCache;
use crate::fetch::fetch_params::{FetchParams, SharedPreloadedResources};
use crate::fetch::methods::{
AutoRequestBodyStreamCloser, CancellationListener, FetchContext,
SharedInflightKeepAliveRecords, WebSocketChannel, fetch,
transfers_request_body_stream_to_later_manual_redirect,
};
use crate::filemanager_thread::FileManager;
use crate::hsts::{self, HstsList};
use crate::http_cache::HttpCache;
use crate::http_loader::{HttpState, http_redirect_fetch};
use crate::protocols::ProtocolRegistry;
use crate::request_interceptor::RequestInterceptor;
use crate::websocket_loader::create_handshake_request;
/// Load a file with CA certificate and produce a RootCertStore with the results.
fn load_root_cert_store_from_file(file_path: String) -> io::Result<Vec<CertificateDer<'static>>> {
let mut pem = BufReader::new(File::open(file_path)?);
let certs = CertificateDer::pem_reader_iter(&mut pem)
.filter_map(|cert| {
cert.inspect_err(|e| log::error!("Could not load certificate ({e}). Ignoring it."))
.ok()
})
.collect();
Ok(certs)
}
/// Returns a tuple of (public, private) senders to the new threads.
#[expect(clippy::too_many_arguments)]
pub fn new_resource_threads(
devtools_sender: Option<Sender<DevtoolsControlMsg>>,
time_profiler_chan: ProfilerChan,
mem_profiler_chan: MemProfilerChan,
embedder_proxy: GenericEmbedderProxy<NetToEmbedderMsg>,
config_dir: Option<PathBuf>,
certificate_path: Option<String>,
ignore_certificate_errors: bool,
protocols: Arc<ProtocolRegistry>,
) -> (ResourceThreads, ResourceThreads, Box<dyn AsyncRuntime>) {
// Initialize the async runtime, and get a handle to it for use in clean shutdown.
let async_runtime = init_async_runtime();
let ca_certificates = certificate_path
.and_then(|path| {
Some(CACertificates::Override(
load_root_cert_store_from_file(path).ok()?,
))
})
.unwrap_or_default();
let (public_core, private_core) = new_core_resource_thread(
devtools_sender,
time_profiler_chan,
mem_profiler_chan,
embedder_proxy,
config_dir,
ca_certificates,
ignore_certificate_errors,
protocols,
);
(
ResourceThreads::new(public_core),
ResourceThreads::new(private_core),
async_runtime,
)
}
/// Create a CoreResourceThread
#[expect(clippy::too_many_arguments)]
pub fn new_core_resource_thread(
devtools_sender: Option<Sender<DevtoolsControlMsg>>,
time_profiler_chan: ProfilerChan,
mem_profiler_chan: MemProfilerChan,
embedder_proxy: GenericEmbedderProxy<NetToEmbedderMsg>,
config_dir: Option<PathBuf>,
ca_certificates: CACertificates<'static>,
ignore_certificate_errors: bool,
protocols: Arc<ProtocolRegistry>,
) -> (CoreResourceThread, CoreResourceThread) {
let (public_setup_chan, public_setup_port) = generic_channel::channel().unwrap();
let (private_setup_chan, private_setup_port) = generic_channel::channel().unwrap();
let (report_chan, report_port) = generic_channel::channel().unwrap();
let (revoke_sender, revoke_receiver) = generic_channel::channel().unwrap();
let (refresh_sender, refresh_receiver) = generic_channel::channel().unwrap();
let blob_token_communicator = Arc::new(Mutex::new(BlobTokenCommunicator {
revoke_sender,
refresh_token_sender: refresh_sender,
}));
thread::Builder::new()
.name("ResourceManager".to_owned())
.spawn(move || {
let resource_manager = CoreResourceManager::new(
devtools_sender,
time_profiler_chan,
embedder_proxy.clone(),
ca_certificates.clone(),
ignore_certificate_errors,
blob_token_communicator,
);
let mut channel_manager = ResourceChannelManager {
resource_manager,
config_dir,
ca_certificates,
ignore_certificate_errors,
cancellation_listeners: Default::default(),
cookie_listeners: Default::default(),
};
mem_profiler_chan.run_with_memory_reporting(
|| {
channel_manager.start(
public_setup_port,
private_setup_port,
report_port,
revoke_receiver,
refresh_receiver,
protocols,
embedder_proxy,
)
},
String::from("network-cache-reporter"),
report_chan,
CoreResourceMsg::CollectMemoryReport,
);
})
.expect("Thread spawning failed");
(public_setup_chan, private_setup_chan)
}
struct ResourceChannelManager {
resource_manager: CoreResourceManager,
config_dir: Option<PathBuf>,
ca_certificates: CACertificates<'static>,
ignore_certificate_errors: bool,
cancellation_listeners: FxHashMap<RequestId, Weak<CancellationListener>>,
cookie_listeners: FxHashMap<CookieStoreId, GenericCallback<CookieAsyncResponse>>,
}
/// This returns a tuple HttpState and a private HttpState.
fn create_http_states(
config_dir: Option<&Path>,
ca_certificates: CACertificates<'static>,
ignore_certificate_errors: bool,
embedder_proxy: GenericEmbedderProxy<NetToEmbedderMsg>,
) -> (Arc<HttpState>, Arc<HttpState>) {
let mut hsts_list = HstsList::default();
let mut auth_cache = AuthCache::default();
let mut cookie_jar = CookieStorage::new(150);
if let Some(config_dir) = config_dir {
servo_base::read_json_from_file(&mut auth_cache, config_dir, "auth_cache.json");
servo_base::read_json_from_file(&mut hsts_list, config_dir, "hsts_list.json");
servo_base::read_json_from_file(&mut cookie_jar, config_dir, "cookie_jar.json");
}
let override_manager = CertificateErrorOverrideManager::new();
let http_state = HttpState {
hsts_list: RwLock::new(hsts_list),
cookie_jar: RwLock::new(cookie_jar),
auth_cache: RwLock::new(auth_cache),
history_states: RwLock::new(FxHashMap::default()),
http_cache: HttpCache::default(),
client: create_http_client(create_tls_config(
ca_certificates.clone(),
ignore_certificate_errors,
override_manager.clone(),
)),
override_manager,
embedder_proxy: embedder_proxy.clone(),
};
let override_manager = CertificateErrorOverrideManager::new();
let private_http_state = HttpState {
hsts_list: RwLock::new(HstsList::default()),
cookie_jar: RwLock::new(CookieStorage::new(150)),
auth_cache: RwLock::new(AuthCache::default()),
history_states: RwLock::new(FxHashMap::default()),
http_cache: HttpCache::default(),
client: create_http_client(create_tls_config(
ca_certificates,
ignore_certificate_errors,
override_manager.clone(),
)),
override_manager,
embedder_proxy,
};
(Arc::new(http_state), Arc::new(private_http_state))
}
impl ResourceChannelManager {
#[expect(clippy::too_many_arguments)]
fn start(
&mut self,
public_receiver: GenericReceiver<CoreResourceMsg>,
private_receiver: GenericReceiver<CoreResourceMsg>,
memory_reporter: GenericReceiver<CoreResourceMsg>,
revoke_receiver: GenericReceiver<CoreResourceMsg>,
refresh_receiver: GenericReceiver<CoreResourceMsg>,
protocols: Arc<ProtocolRegistry>,
embedder_proxy: GenericEmbedderProxy<NetToEmbedderMsg>,
) {
let (public_http_state, private_http_state) = create_http_states(
self.config_dir.as_deref(),
self.ca_certificates.clone(),
self.ignore_certificate_errors,
embedder_proxy,
);
let mut rx_set = GenericReceiverSet::new();
let private_id = rx_set.add(private_receiver);
let public_id = rx_set.add(public_receiver);
let reporter_id = rx_set.add(memory_reporter);
let revoker_id = rx_set.add(revoke_receiver);
let refresh_id = rx_set.add(refresh_receiver);
loop {
for received in rx_set.select().into_iter() {
// Handles case where profiler thread shuts down before resource thread.
match received {
GenericSelectionResult::ChannelClosed(_) => continue,
GenericSelectionResult::Error(error) => {
log::error!("Found selection error: {error}")
},
GenericSelectionResult::MessageReceived(id, msg) => {
if id == revoker_id {
let CoreResourceMsg::RevokeTokenForFile(revocation_request) = msg
else {
log::error!("Blob revocation channel received unexpected message");
continue;
};
self.resource_manager.filemanager.invalidate_token(
&FileTokenCheck::Required(revocation_request.token),
&revocation_request.blob_id,
)
} else if id == refresh_id {
let CoreResourceMsg::RefreshTokenForFile(refresh_request) = msg else {
log::error!("Blob revocation channel received unexpected message");
continue;
};
let FileTokenCheck::Required(refreshed_token) = self
.resource_manager
.filemanager
.get_token_for_file(&refresh_request.blob_id, true)
else {
unreachable!();
};
let _ = refresh_request.new_token_sender.send(refreshed_token);
} else if id == reporter_id {
if let CoreResourceMsg::CollectMemoryReport(report_chan) = msg {
self.process_report(
report_chan,
&public_http_state,
&private_http_state,
);
continue;
} else {
log::error!("memory reporter should only send CollectMemoryReport");
}
} else {
let group = if id == private_id {
&private_http_state
} else {
assert_eq!(id, public_id);
&public_http_state
};
if !self.process_msg(msg, group, Arc::clone(&protocols)) {
return;
}
}
},
}
}
}
}
fn process_report(
&mut self,
msg: ReportsChan,
public_http_state: &Arc<HttpState>,
private_http_state: &Arc<HttpState>,
) {
perform_memory_report(|ops| {
let mut reports = public_http_state.memory_reports("public", ops);
reports.extend(private_http_state.memory_reports("private", ops));
reports.extend(vec![
Report {
path: path!["hsts-preload-list"],
kind: ReportKind::ExplicitJemallocHeapSize,
size: hsts::hsts_preload_size_of(ops),
},
Report {
path: path!["public-suffix-list"],
kind: ReportKind::ExplicitJemallocHeapSize,
size: public_suffix_list_size_of(ops),
},
]);
msg.send(ProcessReports::new(reports));
})
}
fn cancellation_listener(&self, request_id: RequestId) -> Option<Arc<CancellationListener>> {
self.cancellation_listeners
.get(&request_id)
.and_then(Weak::upgrade)
}
fn get_or_create_cancellation_listener(
&mut self,
request_id: RequestId,
) -> Arc<CancellationListener> {
if let Some(listener) = self.cancellation_listener(request_id) {
return listener;
}
// Clear away any cancellation listeners that are no longer valid.
self.cancellation_listeners
.retain(|_, listener| listener.strong_count() > 0);
let cancellation_listener = Arc::new(Default::default());
self.cancellation_listeners
.insert(request_id, Arc::downgrade(&cancellation_listener));
cancellation_listener
}
fn send_cookie_response(&self, store_id: CookieStoreId, data: CookieData) {
let Some(sender) = self.cookie_listeners.get(&store_id) else {
warn!(
"Async cookie request made for store id that is non-existent {:?}",
store_id
);
return;
};
let res = sender.send(CookieAsyncResponse { data });
if res.is_err() {
warn!("Unable to send cookie response to script thread");
}
}
/// Returns false if the thread should exit.
fn process_msg(
&mut self,
msg: CoreResourceMsg,
http_state: &Arc<HttpState>,
protocols: Arc<ProtocolRegistry>,
) -> bool {
match msg {
CoreResourceMsg::Fetch(request_builder, channels) => match channels {
FetchChannels::ResponseMsg(sender) => {
let cancellation_listener =
self.get_or_create_cancellation_listener(request_builder.id);
self.resource_manager.fetch(
request_builder,
None,
sender,
http_state,
cancellation_listener,
protocols,
);
},
FetchChannels::WebSocket {
event_sender,
action_receiver,
} => {
let cancellation_listener =
self.get_or_create_cancellation_listener(request_builder.id);
self.resource_manager.websocket_connect(
request_builder,
event_sender,
action_receiver,
http_state,
cancellation_listener,
protocols,
)
},
FetchChannels::Prefetch => self.resource_manager.fetch(
request_builder,
None,
DiscardFetch,
http_state,
Arc::new(Default::default()),
protocols,
),
},
CoreResourceMsg::Cancel(request_ids) => {
for cancellation_listener in request_ids
.into_iter()
.filter_map(|request_id| self.cancellation_listener(request_id))
{
cancellation_listener.cancel();
}
},
CoreResourceMsg::DeleteCookiesForSites(sites, sender) => {
http_state
.cookie_jar
.write()
.delete_cookies_for_sites(&sites);
let _ = sender.send(());
},
CoreResourceMsg::DeleteCookies(request, sender) => {
http_state
.cookie_jar
.write()
.clear_storage(request.as_ref());
if let Some(sender) = sender {
let _ = sender.send(());
}
return true;
},
CoreResourceMsg::DeleteCookie(request, name) => {
http_state
.cookie_jar
.write()
.delete_cookie_with_name(&request, name);
return true;
},
CoreResourceMsg::DeleteCookieAsync(cookie_store_id, url, name) => {
http_state
.cookie_jar
.write()
.delete_cookie_with_name(&url, name);
self.send_cookie_response(cookie_store_id, CookieData::Delete(Ok(())));
},
CoreResourceMsg::FetchRedirect(request_builder, res_init, sender) => {
let cancellation_listener =
self.get_or_create_cancellation_listener(request_builder.id);
self.resource_manager.fetch(
request_builder,
Some(res_init),
sender,
http_state,
cancellation_listener,
protocols,
)
},
CoreResourceMsg::SetCookieForUrl(request, cookie, source, sender) => {
self.resource_manager.set_cookie_for_url(
&request,
cookie.into_inner().to_owned(),
source,
http_state,
);
if let Some(sender) = sender {
let _ = sender.send(());
}
},
CoreResourceMsg::SetCookiesForUrl(request, cookies, source) => {
for cookie in cookies {
self.resource_manager.set_cookie_for_url(
&request,
cookie.into_inner(),
source,
http_state,
);
}
},
CoreResourceMsg::SetCookieForUrlAsync(cookie_store_id, url, cookie, source) => {
self.resource_manager.set_cookie_for_url(
&url,
cookie.into_inner().to_owned(),
source,
http_state,
);
self.send_cookie_response(cookie_store_id, CookieData::Set(Ok(())));
},
CoreResourceMsg::GetCookieStringForUrl(url, consumer, source) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_expired_cookies_for_url(&url);
consumer
.send(cookie_jar.cookies_for_url(&url, source))
.unwrap();
},
CoreResourceMsg::GetCookiesForUrl(url, consumer, source) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_expired_cookies_for_url(&url);
let cookies = cookie_jar
.cookies_data_for_url(&url, source)
.map(Serde)
.collect();
consumer.send(cookies).unwrap();
},
CoreResourceMsg::GetCookieDataForUrlAsync(cookie_store_id, url, name) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_expired_cookies_for_url(&url);
let cookie = cookie_jar
.query_cookies(&url, name)
.into_iter()
.map(Serde)
.next();
self.send_cookie_response(cookie_store_id, CookieData::Get(cookie));
},
CoreResourceMsg::GetAllCookieDataForUrlAsync(cookie_store_id, url, name) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_expired_cookies_for_url(&url);
let cookies = cookie_jar
.query_cookies(&url, name)
.into_iter()
.map(Serde)
.collect();
self.send_cookie_response(cookie_store_id, CookieData::GetAll(cookies));
},
CoreResourceMsg::NewCookieListener(cookie_store_id, callback, _url) => {
// TODO: Use the URL for setting up the actual monitoring
self.cookie_listeners.insert(cookie_store_id, callback);
},
CoreResourceMsg::RemoveCookieListener(cookie_store_id) => {
self.cookie_listeners.remove(&cookie_store_id);
},
CoreResourceMsg::NetworkMediator(mediator_chan, origin) => {
self.resource_manager
.sw_managers
.insert(origin, mediator_chan);
},
CoreResourceMsg::GetCookiesDataForUrl(url, consumer, source) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_expired_cookies_for_url(&url);
let cookies = cookie_jar
.cookies_data_for_url(&url, source)
.map(Serde)
.collect();
consumer.send(cookies).unwrap();
},
CoreResourceMsg::ListCookies(sender) => {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.remove_all_expired_cookies();
let _ = sender.send(cookie_jar.cookie_site_descriptors());
},
CoreResourceMsg::GetHistoryState(history_state_id, consumer) => {
let history_states = http_state.history_states.read();
consumer
.send(history_states.get(&history_state_id).cloned())
.unwrap();
},
CoreResourceMsg::SetHistoryState(history_state_id, structured_data) => {
let mut history_states = http_state.history_states.write();
history_states.insert(history_state_id, structured_data);
},
CoreResourceMsg::RemoveHistoryStates(states_to_remove) => {
let mut history_states = http_state.history_states.write();
for history_state in states_to_remove {
history_states.remove(&history_state);
}
},
CoreResourceMsg::GetCacheEntries(sender) => {
let _ = sender.send(http_state.http_cache.cache_entry_descriptors());
},
CoreResourceMsg::ClearCache(sender) => {
http_state.http_cache.clear();
if let Some(sender) = sender {
let _ = sender.send(());
}
},
CoreResourceMsg::ToFileManager(msg) => self.resource_manager.filemanager.handle(msg),
CoreResourceMsg::StorePreloadedResponse(preload_id, response) => self
.resource_manager
.handle_preloaded_response(preload_id, response),
CoreResourceMsg::TotalSizeOfInFlightKeepAliveRecords(pipeline_id, sender) => {
let total = self
.resource_manager
.in_flight_keep_alive_records
.lock()
.get(&pipeline_id)
.map(|records| {
records
.iter()
.map(|record| record.keep_alive_body_length)
.sum()
})
.unwrap_or_default();
let _ = sender.send(total);
},
CoreResourceMsg::Exit(sender) => {
if let Some(ref config_dir) = self.config_dir {
let auth_cache = http_state.auth_cache.read();
servo_base::write_json_to_file(&*auth_cache, config_dir, "auth_cache.json");
let jar = http_state.cookie_jar.read();
servo_base::write_json_to_file(&*jar, config_dir, "cookie_jar.json");
let hsts = http_state.hsts_list.read();
servo_base::write_json_to_file(&*hsts, config_dir, "hsts_list.json");
}
self.resource_manager.exit();
let _ = sender.send(());
return false;
},
// Ignore these messages as they are only sent on very specific channels.
CoreResourceMsg::CollectMemoryReport(_) |
CoreResourceMsg::RevokeTokenForFile(..) |
CoreResourceMsg::RefreshTokenForFile(..) => {},
}
true
}
}
#[derive(Clone, Debug, Deserialize, Serialize)]
pub struct AuthCacheEntry {
pub user_name: String,
pub password: String,
}
impl Default for AuthCache {
fn default() -> Self {
Self {
version: 1,
entries: HashMap::new(),
}
}
}
#[derive(Clone, Debug, Deserialize, Serialize)]
pub struct AuthCache {
pub version: u32,
pub entries: HashMap<String, AuthCacheEntry>,
}
pub struct CoreResourceManager {
devtools_sender: Option<Sender<DevtoolsControlMsg>>,
sw_managers: HashMap<ImmutableOrigin, IpcSender<CustomResponseMediator>>,
filemanager: FileManager,
request_interceptor: RequestInterceptor,
ca_certificates: CACertificates<'static>,
ignore_certificate_errors: bool,
preloaded_resources: SharedPreloadedResources,
/// <https://fetch.spec.whatwg.org/#concept-fetch-record>
in_flight_keep_alive_records: SharedInflightKeepAliveRecords,
}
impl CoreResourceManager {
pub fn new(
devtools_sender: Option<Sender<DevtoolsControlMsg>>,
_profiler_chan: ProfilerChan,
embedder_proxy: GenericEmbedderProxy<NetToEmbedderMsg>,
ca_certificates: CACertificates<'static>,
ignore_certificate_errors: bool,
blob_token_communicator: Arc<Mutex<BlobTokenCommunicator>>,
) -> CoreResourceManager {
CoreResourceManager {
devtools_sender,
sw_managers: Default::default(),
filemanager: FileManager::new(embedder_proxy.clone(), blob_token_communicator),
request_interceptor: RequestInterceptor::new(embedder_proxy),
ca_certificates,
ignore_certificate_errors,
preloaded_resources: Default::default(),
in_flight_keep_alive_records: Default::default(),
}
}
fn handle_preloaded_response(&self, preload_id: PreloadId, response: Response) {
let mut preloaded_resources = self.preloaded_resources.lock().unwrap();
if let Some(entry) = preloaded_resources.get_mut(&preload_id) {
entry.with_response(response);
}
}
/// Exit the core resource manager.
pub fn exit(&mut self) {
debug!("Exited CoreResourceManager");
}
fn set_cookie_for_url(
&mut self,
request: &ServoUrl,
cookie: Cookie<'static>,
source: CookieSource,
http_state: &Arc<HttpState>,
) {
if let Some(cookie) = ServoCookie::new_wrapped(cookie, request, source) {
let mut cookie_jar = http_state.cookie_jar.write();
cookie_jar.push(cookie, request, source)
}
}
fn fetch<Target: 'static + FetchTaskTarget + Send>(
&self,
request_builder: RequestBuilder,
res_init_: Option<ResponseInit>,
mut sender: Target,
http_state: &Arc<HttpState>,
cancellation_listener: Arc<CancellationListener>,
protocols: Arc<ProtocolRegistry>,
) {
let http_state = http_state.clone();
let devtools_chan = self.devtools_sender.clone();
let filemanager = self.filemanager.clone();
let request_interceptor = self.request_interceptor.clone();
let timing_type = match request_builder.destination {
Destination::Document => ResourceTimingType::Navigation,
_ => ResourceTimingType::Resource,
};
let request = request_builder.build();
let url = request.current_url();
// In the case of a valid blob URL, acquiring a token granting access to a file,
// regardless if the URL is revoked after token acquisition.
//
// Ideally all callers should have claimed the blob entry themselves, but we're not there
// yet.
let (file_token, blob_url_file_id) = match url.scheme() {
"blob" => {
if let Some(token) = request.current_url_with_blob_claim().token() {
(FileTokenCheck::Required(token.token), Some(token.file_id))
} else if let Ok((id, _)) = parse_blob_url(&url) {
// See https://github.com/servo/servo/issues/25226
log::warn!(
"Failed to claim blob URL entry of valid blob URL before passing it to `net`. This causes race conditions."
);
(self.filemanager.get_token_for_file(&id, false), Some(id))
} else {
(FileTokenCheck::ShouldFail, None)
}
},
_ => (FileTokenCheck::NotRequired, None),
};
let ca_certificates = self.ca_certificates.clone();
let ignore_certificate_errors = self.ignore_certificate_errors;
let in_flight_keep_alive_records = self.in_flight_keep_alive_records.clone();
let preloaded_resources = self.preloaded_resources.clone();
if let Some(ref preload_id) = request.preload_id {
let mut preloaded_resources = self.preloaded_resources.lock().unwrap();
let entry = PreloadEntry::new(request.integrity_metadata.clone());
preloaded_resources.insert(preload_id.clone(), entry);
}
spawn_task(async move {
// XXXManishearth: Check origin against pipeline id (also ensure that the mode is allowed)
// todo load context / mimesniff in fetch
// todo referrer policy?
// todo service worker stuff
let context = FetchContext {
state: http_state,
user_agent: servo_config::pref!(user_agent),
devtools_chan,
filemanager,
file_token,
request_interceptor: Arc::new(TokioMutex::new(request_interceptor)),
cancellation_listener,
timing: ServoArc::new(Mutex::new(ResourceFetchTiming::new(request.timing_type()))),
protocols,
websocket_chan: None,
ca_certificates,
ignore_certificate_errors,
preloaded_resources,
in_flight_keep_alive_records,
};
match res_init_ {
Some(res_init) => {
let response = Response::from_init(res_init, timing_type);
let mut fetch_params = FetchParams::new(request);
let mut request_body_stream_closer =
AutoRequestBodyStreamCloser::new(fetch_params.request.body.as_ref());
let response = http_redirect_fetch(
&mut fetch_params,
&mut CorsCache::default(),
response,
true,
&mut sender,
&mut None,
&context,
)
.await;
if transfers_request_body_stream_to_later_manual_redirect(
&fetch_params.request,
&response,
) {
request_body_stream_closer.disarm();
}
},
None => {
fetch(request, &mut sender, &context).await;
},
};
// Remove token after fetch.
if let Some(id) = blob_url_file_id.as_ref() {
context
.filemanager
.invalidate_token(&context.file_token, id);
}
});
}
/// <https://websockets.spec.whatwg.org/#concept-websocket-establish>
fn websocket_connect(
&self,
mut request: RequestBuilder,
event_sender: IpcSender<WebSocketNetworkEvent>,
action_receiver: CallbackSetter<WebSocketDomAction>,
http_state: &Arc<HttpState>,
cancellation_listener: Arc<CancellationListener>,
protocols: Arc<ProtocolRegistry>,
) {
let http_state = http_state.clone();
let devtools_chan = self.devtools_sender.clone();
let filemanager = self.filemanager.clone();
let request_interceptor = self.request_interceptor.clone();
let ca_certificates = self.ca_certificates.clone();
let ignore_certificate_errors = self.ignore_certificate_errors;
let in_flight_keep_alive_records = self.in_flight_keep_alive_records.clone();
let preloaded_resources = self.preloaded_resources.clone();
spawn_task(async move {
let mut event_sender = event_sender;
// Let requestURL be a copy of url, with its scheme set to "http", if urls scheme is
// "ws"; otherwise to "https"
let scheme = match request.url.scheme() {
"ws" => "http",
_ => "https",
};
request
.url
.as_mut_url()
.set_scheme(scheme)
.unwrap_or_else(|_| panic!("Can't set scheme to {scheme}"));
match create_handshake_request(request, http_state.clone()) {
Ok(request) => {
let context = FetchContext {
state: http_state,
user_agent: servo_config::pref!(user_agent),
devtools_chan,
filemanager,
file_token: FileTokenCheck::NotRequired,
request_interceptor: Arc::new(TokioMutex::new(request_interceptor)),
cancellation_listener,
timing: ServoArc::new(Mutex::new(ResourceFetchTiming::new(
request.timing_type(),
))),
protocols: protocols.clone(),
websocket_chan: Some(Arc::new(Mutex::new(WebSocketChannel::new(
event_sender.clone(),
Some(action_receiver),
)))),
ca_certificates,
ignore_certificate_errors,
preloaded_resources,
in_flight_keep_alive_records,
};
fetch(request, &mut event_sender, &context).await;
},
Err(e) => {
trace!("unable to create websocket handshake request {:?}", e);
let _ = event_sender.send(WebSocketNetworkEvent::Fail);
},
}
});
}
}
Reference in New Issue View Git Blame Copy Permalink