| blob | a1a5bad9162160743270efda55e56f45b7fa1b10 |
1 /* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 2 -*-
2 * vim: sw=2 ts=4 et :
3 */
4 /* This Source Code Form is subject to the terms of the Mozilla Public
5 * License, v. 2.0. If a copy of the MPL was not distributed with this
6 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
8 #ifndef ipc_glue_MessageChannel_h
9 #define ipc_glue_MessageChannel_h
17 #if defined(XP_WIN)
21 #include <functional>
22 #include <map>
23 #include <stack>
24 #include <vector>
30 #ifdef FUZZING_SNAPSHOT
32 #endif
39 }
54 }
60 };
63 eSending,
64 eReceiving,
65 };
68 Endpoint,
69 TransferStart,
70 TransferEnd,
71 };
74 SendSuccess,
75 PreviousTimeout,
76 SendingCPOWWhileDispatchingSync,
77 SendingCPOWWhileDispatchingUrgent,
78 NotConnectedBeforeSend,
79 DisconnectedDuringSend,
80 CancelledBeforeSend,
81 CancelledAfterSend,
82 TimedOut,
83 ReplyError,
84 };
87 SendError,
88 ChannelClosed,
89 HandlerRejected,
90 ActorDestroyed,
91 ResolverDestroyed,
92 EndGuard_,
93 };
101 ChannelClosed,
102 ChannelConnected,
103 ChannelClosing,
104 ChannelError
105 };
130 RejectCallback mReject;
131 };
143 };
159 // Returns the event target which the worker lives on and must be used for
160 // operations on the current thread. Only safe to access after the
161 // MessageChannel has been opened.
164 // "Open" a connection using an existing ScopedPort. The ScopedPort must be
165 // valid and connected to a remote.
166 //
167 // The `aEventTarget` parameter must be on the current thread.
171 // "Open" a connection to another thread in the same process.
172 //
173 // Returns true if the transport layer was successfully connected,
174 // i.e., mChannelState == ChannelConnected.
175 //
176 // For more details on the process of opening a channel between
177 // threads, see the extended comment on this function
178 // in MessageChannel.cpp.
180 Side aSide);
182 // "Open" a connection to an actor on the current thread.
183 //
184 // Returns true if the transport layer was successfully connected,
185 // i.e., mChannelState == ChannelConnected.
186 //
187 // Same-thread channels may not perform synchronous or blocking message
188 // sends, to avoid deadlocks.
191 /**
192 * This sends a special message that is processed on the IO thread, so that
193 * other actors can know that the process will soon shutdown.
194 */
197 // Close the underlying transport channel.
200 // Induce an error in this MessageChannel's connection.
201 //
202 // After this method is called, no more message notifications will be
203 // delivered to the listener, and the channel will be unable to send or
204 // receive future messages, as if the peer dropped the connection
205 // unexpectedly.
206 //
207 // The OnChannelError notification will be delivered either asynchronously or
208 // during an explicit call to Close(), whichever happens first.
209 //
210 // NOTE: If SetAbortOnError(true) has been called on this MessageChannel,
211 // calling this function will immediately exit the current process.
217 }
219 // Call aInvoke for each pending message until it returns false.
220 // XXX: You must get permission from an IPC peer to use this function
221 // since it requires custom deserialization and re-orders events.
225 // Misc. behavioral traits consumers can request for this channel
228 // Windows: if this channel operates on the UI thread, indicates
229 // WindowsMessageLoop code should enable deferred native message
230 // handling to prevent deadlocks. Should only be used for protocols
231 // that manage child processes which might create native UI, like
232 // plugins.
234 };
238 // Asynchronously send a message to the other side of the channel
241 // Asynchronously send a message to the other side of the channel
242 // and wait for asynchronous reply.
252 }
258 gUnresolvedResponses++;
259 }
266 }
268 // Synchronously send |aMsg| (i.e., wait for |aReply|)
274 // Remove and return a callback that needs reply
278 // Used to reject and remove pending responses owned by the given
279 // actor when it's about to be destroyed.
282 // If sending a sync message returns an error, this function gives a more
283 // descriptive error message.
287 }
295 // Return whether the current transaction is complete.
296 //
297 // This is intended only for tests.
300 // IsClosed and NumQueuedMessages are safe to call from any thread, but
301 // may provide an out-of-date value.
305 }
309 }
314 }
316 /**
317 * Does this MessageChannel currently cross process boundaries?
318 */
325 }
327 #ifdef FUZZING_SNAPSHOT
331 }
332 #endif
334 #ifdef XP_WIN
343 // The previous stack frame for this channel.
346 // The previous stack frame on any channel.
348 };
354 }
356 }
359 // The deepest sync stack frame for this channel.
364 // The deepest sync stack frame on any channel.
399 // Dispatches an incoming message to its appropriate handler.
403 // DispatchMessage will route to one of these functions depending on the
404 // protocol type of the message.
410 // Return true if the wait ended because a notification was received.
411 //
412 // Return false if the time elapsed from when we started the process of
413 // waiting until afterwards exceeded the currently allotted timeout.
414 // That *DOES NOT* mean false => "no event" (== timeout); there are many
415 // circumstances that could cause the measured elapsed time to exceed the
416 // timeout EVEN WHEN we were notified.
417 //
418 // So in sum: true is a meaningful return value; false isn't,
419 // necessarily.
434 }
443 // Returns true if we're dispatching an async message's callback.
447 }
452 }
454 // Check if there is still a live connection to our peer. This may change to
455 // `false` at any time due to the connection to our peer being closed or
456 // dropped (e.g. due to a crash).
459 // Check if there is either still a live connection to our peer, or we have
460 // received a `Goodbye` from our peer, and are actively shutting down our
461 // connection with our peer.
465 // Executed on the IO thread.
468 // Return true if |aMsg| is a special message targeted at the IO
469 // thread, in which case it shouldn't be delivered to the worker.
473 // Returns true if ShouldDeferMessage(aMsg) is guaranteed to return true.
474 // Otherwise, the result of ShouldDeferMessage(aMsg) may be true or false,
475 // depending on context.
478 // Helper for sending a message via the link. If the message is [LazySend], it
479 // will be queued, and if the message is not-[LazySend], it will flush any
480 // pending [LazySend] messages.
483 // Called to flush [LazySend] messages to the link.
493 // Clear this channel, and notify the listener that the channel has either
494 // closed or errored.
495 //
496 // These methods must be called on the worker thread, passing in a
497 // `ReleasableMonitorAutoLock`. This lock guard will be reset before the
498 // listener is called, allowing for the monitor to be unlocked before the
499 // MessageChannel is potentially destroyed.
510 }
522 NS_DECL_ISUPPORTS_INHERITED
527 NS_DECL_NSIRUNNABLEIPCMESSAGETYPE
533 }
538 }
542 }
547 }
556 }
558 // The connected MessageChannel's monitor. Guards `mChannel` and
559 // `mScheduled`.
561 // The channel which this MessageTask is associated with. Only valid while
562 // `mMonitor` is held, and this MessageTask `isInList()`.
567 #ifdef FUZZING_SNAPSHOT
570 #endif
571 };
579 NS_DECL_THREADSAFE_ISUPPORTS
591 // Cleared by MessageChannel before it is destroyed.
593 };
599 NS_DECL_ISUPPORTS_INHERITED
610 // Cleared by MessageChannel before it is destroyed.
613 // LazySend messages which haven't been sent yet, but will be sent as soon
614 // as a non-LazySend message is sent, or this runnable is executed.
616 };
623 // This will be a string literal, so lifetime is not an issue.
626 // ID for each MessageChannel. Set when it is opened, and never cleared
627 // afterwards.
628 //
629 // This ID is only intended for diagnostics, debugging, and reporting
630 // purposes, and shouldn't be used for message routing or permissions checks.
633 // Based on presumption the listener owns and overlives the channel,
634 // this is never nullified.
637 // This monitor guards all state in this MessageChannel, except where
638 // otherwise noted. It is refcounted so a reference to it can be shared with
639 // IPC listener objects which need to access weak references to this
640 // `MessageChannel`.
648 // NotifyMaybeChannelError runnable
651 // Thread we are allowed to send and receive on. Set in Open(); never
652 // changed, and we can only call Open() once. We shouldn't be accessing
653 // from multiple threads before Open().
656 // Shutdown task to close the channel before mWorkerThread goes away.
659 // Task to force sending lazy messages when mQueuedLazyMessages is non-empty.
663 // Timeout periods are broken up in two to prevent system suspension from
664 // triggering an abort. This method (called by WaitForEvent with a 'did
665 // timeout' flag) decides if we should wait again for half of mTimeoutMs
666 // or give up.
667 // only accessed on WorkerThread
671 // Worker-thread only; sequence numbers for messages that require
672 // replies.
677 // If ::Send returns false, this gives a more descriptive error.
686 }
688 // The value may have been zeroed if the transaction was
689 // canceled. In that case we shouldn't return it to its previous
690 // value.
693 }
694 }
698 T mPrev;
699 T mNew;
700 };
705 // When we send an urgent request from the parent process, we could race
706 // with an RPC message that was issued by the child beforehand. In this
707 // case, if the parent were to wake up while waiting for the urgent reply,
708 // and process the RPC, it could send an additional urgent message. The
709 // child would wake up to process the urgent message (as it always will),
710 // then send a reply, which could be received by the parent out-of-order
711 // with respect to the first urgent reply.
712 //
713 // To address this problem, urgent or RPC requests are associated with a
714 // "transaction". Whenever one side of the channel wishes to start a
715 // chain of RPC/urgent messages, it allocates a new transaction ID. Any
716 // messages the parent receives, not apart of this transaction, are
717 // deferred. When issuing RPC/urgent requests on top of a started
718 // transaction, the initiating transaction ID is used.
719 //
720 // To ensure IDs are unique, we use sequence numbers for transaction IDs,
721 // which grow in opposite directions from child to parent.
734 #ifdef DEBUG
736 #else
738 #endif
740 // If a sync message times out, we store its sequence number here. Any
741 // future sync messages will fail immediately. Once the reply for original
742 // sync message is received, we allow sync messages again.
743 //
744 // When a message times out, nothing is done to inform the other side. The
745 // other side will eventually dispatch the message and send a reply. Our
746 // side is responsible for replying to all sync messages sent by the other
747 // side when it dispatches the timed out message. The response is always an
748 // error.
749 //
750 // A message is only timed out if it initiated a transaction. This avoids
751 // hitting a lot of corner cases with message nesting that we don't really
752 // care about.
756 // Queue of all incoming messages.
757 //
758 // If both this side and the other side are functioning correctly, the other
759 // side can send as many async messages as it wants before sending us a
760 // blocking message. After sending a blocking message, the other side must be
761 // blocked, and thus can't send us any more messages until we process the sync
762 // in-msg.
763 //
766 // The number of messages in mPending for which IsAlwaysDeferred is false
767 // (i.e., the number of messages that might not be deferred, depending on
768 // context).
771 // Is there currently MessageChannel logic for this channel on the C++ stack?
772 // This member is only accessed on the worker thread, and so is not protected
773 // by mMonitor.
776 // Map of async Callbacks that are still waiting replies.
777 CallbackMap mPendingResponses;
779 #ifdef XP_WIN
780 HANDLE mEvent;
781 #endif
783 // Should the channel abort the process from the I/O thread when
784 // a channel error occurs?
787 // True if the listener has already been notified of a channel close or
788 // error.
791 // See SetChannelFlags
796 // If this is true, both ends of this message channel have event targets
797 // on the same thread.
799 };
820 }
829 // This payload still streams a startTime and endTime property because it
830 // made the migration to MarkerTiming on the front-end easier.
847 // Tech note: If `ToNumber()` returns a uint64_t, the conversion to
848 // int64_t is "implementation-defined" before C++20. This is acceptable
849 // here, because this is a one-way conversion to a unique identifier
850 // that's used to visually separate data by thread on the front-end.
854 }
855 }
858 }
872 }
873 }
887 }
888 }
889 };