| blob | 34fd45a6afb55f44ad673ee46eb76f248fcd79e8 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=2 sw=2 tw=80 et: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
9 #include <algorithm>
27 #ifdef MOZ_LOGGING
28 // so we can get logging even in release builds (but only for some things)
29 #define FORCE_PR_LOG 1
30 #endif
79 // we want to explore making the document own the load group
80 // so we can associate the document URI with the load group.
81 // until this point, we have an evil hack:
85 // Local Includes
92 // Helper Classes
96 // Interfaces Needed
121 #ifdef MOZ_PLACES
124 #endif
127 // Editor-related
137 // For reporting errors with the console service.
138 // These can go away if error reporting is propagated up past nsDocShell.
141 // used to dispatch urls to default protocol handlers
160 // for embedding
163 #if NS_PRINT_PREVIEW
166 #endif
200 #if defined(DEBUG_bryner) || defined(DEBUG_chb)
201 //#define DEBUG_DOCSHELL_FOCUS
202 #define DEBUG_PAGE_CACHE
203 #endif
205 #ifdef XP_WIN
206 #include <process.h>
207 #define getpid _getpid
208 #else
210 #endif
215 // True means sUseErrorPages has been added to preferences var cache.
220 // Number of documents currently loading
223 // Global count of existing docshells.
226 // Global count of docshells with the private attribute set
229 // Global reference to the URI fixup service.
232 // True means we validate window targets to prevent frameset
233 // spoofing. Initialize this to a non-bolean value so we know to check
234 // the pref on the creation of the first docshell.
237 // Hint for native dispatch of events on how long to delay after
238 // all documents have loaded in milliseconds before favoring normal
239 // native event dispatch priorites over performance
240 // Can be overridden with docshell.event_starvation_delay_hint pref.
241 #define NS_EVENT_STARVATION_DELAY_HINT 2000
243 #ifdef PR_LOGGING
244 #ifdef DEBUG
246 #endif
248 #endif
253 static void
255 {
260 NS_EVENT_STARVATION_DELAY_HINT));
261 }
262 }
264 //*****************************************************************************
265 // <a ping> support
266 //*****************************************************************************
272 // Check prefs to see if pings are enabled and if so what restrictions might
273 // be applied.
274 //
275 // @param maxPerLink
276 // This parameter returns the number of pings that are allowed per link click
277 //
278 // @param requireSameHost
279 // This parameter returns true if pings are restricted to the same host as
280 // the document in which the click occurs. If the same host restriction is
281 // imposed, then we still allow for pings to cross over to different
282 // protocols and ports for flexibility and because it is not possible to send
283 // a ping via FTP.
284 //
285 // @returns
286 // true if pings are enabled and false otherwise.
287 //
288 static bool
290 {
299 }
302 }
304 static bool
306 {
310 // Check with nsIScriptSecurityManager
315 nsresult rv =
320 }
322 // Ignore non-HTTP(S)
327 }
329 // Check with contentpolicy
332 uri,
334 content,
339 }
344 static bool
346 {
347 // Make sure we are dealing with either an <A> or <AREA> element in the HTML
348 // or XHTML namespace.
351 }
354 }
356 static void
358 {
359 // NOTE: Using nsIDOMHTMLAnchorElement::GetPing isn't really worth it here
360 // since we'd still need to parse the resulting string. Instead, we
361 // just parse the raw attribute. It might be nice if the content node
362 // implemented an interface that exposed an enumeration of nsIURIs.
364 // Make sure we are dealing with either an <A> or <AREA> element in the HTML
365 // or XHTML namespace.
373 nsAutoString value;
393 }
394 }
395 }
397 //----------------------------------------------------------------------
399 // We wait this many milliseconds before killing the ping channel...
400 #define PING_TIMEOUT 10000
402 static void
404 {
408 }
410 // Check to see if two URIs have the same host or not
411 static bool
413 {
418 }
423 {
425 NS_DECL_ISUPPORTS
426 NS_DECL_NSIREQUESTOBSERVER
427 NS_DECL_NSISTREAMLISTENER
428 NS_DECL_NSIINTERFACEREQUESTOR
429 NS_DECL_NSICHANNELEVENTSINK
435 {}
446 };
452 {
456 }
457 }
459 nsresult
461 {
466 PING_TIMEOUT,
471 }
472 }
475 }
477 NS_IMETHODIMP
479 {
481 }
483 NS_IMETHODIMP
487 {
490 }
492 NS_IMETHODIMP
494 nsresult status)
495 {
501 }
504 }
506 NS_IMETHODIMP
508 {
513 }
516 }
518 NS_IMETHODIMP
522 {
532 }
534 // XXXbz should this be using something more like the nsContentUtils
535 // same-origin checker?
545 }
553 };
555 static void
557 {
563 // Make sure the referrer and the given uri share the same origin. We
564 // only require the same hostname. The scheme and port may differ.
567 }
576 // Don't bother caching the result of this URI load.
583 // This is needed in order for 3rd-party cookie blocking to work.
591 // Remove extraneous request headers (to reduce request size)
599 // Always send a Ping-To header.
600 nsAutoCString pingTo;
612 // Default to sending less data if NS_URIChainHasFlags() fails.
618 // If both the address of the document containing the hyperlink being
619 // audited and "ping URL" have the same origin or the document containing
620 // the hyperlink being audited was not retrieved over an encrypted
621 // connection, send a Ping-From header.
623 nsAutoCString pingFrom;
626 }
628 // If the document containing the hyperlink being audited was not retrieved
629 // over an encrypted connection and its address does not have the same
630 // origin as "ping URL", send a referrer.
633 }
650 // The channel needs to have a loadgroup associated with it, so that we can
651 // cancel the channel and any redirected channels it may create.
658 // Construct a listener that merely discards any response. If successful at
659 // opening the channel, then it is not necessary to hold a reference to the
660 // channel. The networking subsystem will take care of that for us.
668 // Observe redirects as well:
675 // Even if AsyncOpen failed, we still count this as a successful ping. It's
676 // possible that AsyncOpen may have failed after triggering some background
677 // process that may have written something to the network.
680 // Prevent ping requests from stalling and never being garbage collected...
682 // If we failed to setup the timer, then we should just cancel the channel
683 // because we won't be able to ensure that it goes away in a timely manner.
685 }
686 }
688 // Spec: http://whatwg.org/specs/web-apps/current-work/#ping
689 static void
691 {
692 SendPingInfo info;
704 }
706 static nsDOMPerformanceNavigationType
708 {
709 // Not initialized, assume it's normal load.
712 }
747 // NS_NOTREACHED("Unexpected load type value");
750 }
753 }
757 static void
759 {
760 gNumberOfPrivateDocShells++;
764 }
768 }
770 static void
772 {
774 gNumberOfPrivateDocShells--;
776 {
781 }
786 }
787 }
788 }
790 //*****************************************************************************
791 //*** nsDocShell: Object Management
792 //*****************************************************************************
796 // Note: operator new zeros our memory
844 #ifdef DEBUG
846 #endif
853 {
860 }
862 #ifdef PR_LOGGING
863 #ifdef DEBUG
866 #endif
871 #endif
873 #ifdef DEBUG
874 // We're counting the number of |nsDocShells| to help find leaks
879 gNumberOfDocShells,
882 }
883 #endif
884 }
887 {
894 }
898 }
900 #ifdef PR_LOGGING
903 #endif
905 #ifdef DEBUG
906 // We're counting the number of |nsDocShells| to help find leaks
911 gNumberOfDocShells,
914 }
915 #endif
916 }
918 nsresult
920 {
932 // We want to hold a strong ref to the loadgroup, so it better hold a weak
933 // ref to us... use an InterfaceRequestorProxy to do this.
943 // Add as |this| a progress listener to itself. A little weird, but
944 // simpler than reproducing all the listener-notification logic in
945 // overrides of the various methods via which nsDocLoader can be
946 // notified. Note that this holds an nsWeakPtr to ourselves, so it's ok.
950 }
952 void
954 {
963 }
964 }
967 }
969 //*****************************************************************************
970 // nsDocShell::nsISupports
971 //*****************************************************************************
997 ///*****************************************************************************
998 // nsDocShell::nsIInterfaceRequestor
999 //*****************************************************************************
1001 {
1009 }
1012 }
1020 }
1025 }
1031 }
1035 // Return application cache associated with this docshell, if any
1048 #if defined(PR_LOGGING) && defined(DEBUG)
1052 #endif
1054 }
1057 nsresult rv;
1062 // Get the an auth prompter for our window so that the parenting
1063 // of the dialogs works as it should when using tabs.
1070 }
1076 }
1079 nsresult
1080 rv =
1086 }
1088 }
1096 }
1101 {
1105 }
1108 }
1114 }
1119 }
1125 }
1133 }
1134 }
1140 tabChild->
1146 }
1147 }
1149 }
1152 }
1156 }
1158 uint32_t
1161 {
1230 }
1233 }
1236 nsDocShellInfoLoadType
1238 {
1307 }
1310 }
1312 //*****************************************************************************
1313 // nsDocShell::nsIDocShell
1314 //*****************************************************************************
1315 NS_IMETHODIMP
1320 {
1325 // Note: we allow loads to get through here even if mFiredUnloadEvent is
1326 // true; that case will get handled in LoadInternal or LoadHistoryEntry,
1327 // so we pass false as the second parameter to IsNavigationAllowed.
1328 // However, we don't allow the page to change location *in the middle of*
1329 // firing beforeunload, so we do need to check if *beforeunload* is currently
1330 // firing, so we call IsNavigationAllowed rather than just IsPrintingOrPP.
1333 }
1337 }
1348 nsXPIDLString target;
1349 nsAutoString srcdoc;
1360 }
1362 // Extract the info from the DocShellLoadInfo struct...
1368 // Get the appropriate loadType from nsIDocShellLoadInfo type
1383 }
1385 #if defined(PR_LOGGING) && defined(DEBUG)
1387 nsAutoCString uristr;
1392 }
1393 #endif
1397 // First verify if this is a subframe.
1404 /* OK. It is a subframe. Checkout the
1405 * parent's loadtype. If the parent was loaded thro' a history
1406 * mechanism, then get the SH entry for the child from the parent.
1407 * This is done to restore frameset navigation while going back/forward.
1408 * If the parent was loaded through any other loadType, set the
1409 * child's loadType too accordingly, so that session history does not
1410 * get confused.
1411 */
1413 // Get the parent's load type
1416 // Get the ShEntry for the child from the parent
1423 }
1425 // Only use the old SHEntry, if we're sure enough that
1426 // it wasn't originally for some other frame.
1428 }
1430 // Make some decisions on the child frame's loadType based on the
1431 // parent's loadType.
1433 // This is a newly created frame. Check for exception cases first.
1434 // By default the subframe will inherit the parent's loadType.
1438 // The parent was loaded normally. In this case, this *brand new* child really shouldn't
1439 // have a SHEntry. If it does, it could be because the parent is replacing an
1440 // existing frame with a new frame, in the onLoadHandler. We don't want this
1441 // url to get into session history. Clear off shEntry, and set load type to
1442 // LOAD_BYPASS_HISTORY.
1448 }
1450 // Clear shEntry. For refresh loads, we have to load
1451 // what comes thro' the pipe, not what's in history.
1458 // If the parent url, bypassed history or was loaded from
1459 // history, pass on the parent's loadType to the new child
1460 // frame too, so that the child frame will also
1461 // avoid getting into history.
1464 // If the parent document is an error page, we don't
1465 // want to update global/session history. However,
1466 // this child frame is not an error page.
1471 // the new frame should inherit the parent's load type so that it also
1472 // bypasses the cache and/or proxy
1474 }
1476 // This is a pre-existing subframe. If the load was not originally initiated
1477 // by session history, (if (!shEntry) condition succeeded) and mCurrentURI is not null,
1478 // it is possible that a parent's onLoadHandler or even self's onLoadHandler is loading
1479 // a new page in this child. Check parent's and self's busy flag and if it is set,
1480 // we don't want this onLoadHandler load to get in to session history.
1489 }
1490 }
1493 // This is the root docshell. If we got here while
1494 // executing an onLoad Handler,this load will not go
1495 // into session history.
1500 }
1501 }
1505 #ifdef DEBUG
1508 #endif
1511 }
1513 // On history navigation via Back/Forward buttons, don't execute
1514 // automatic JavaScript redirection such as |location.href = ...| or
1515 // |window.open()|
1516 //
1517 // LOAD_NORMAL: window.open(...) etc.
1518 // LOAD_STOP_CONTENT: location.href = ..., location.assign(...)
1522 }
1524 // Perform the load...
1526 // We need an owner (a referring principal).
1527 //
1528 // If ownerIsExplicit is not set there are 4 possibilities:
1529 // (1) If the system principal or an expanded principal was passed
1530 // in and we're a typeContent docshell, inherit the principal
1531 // from the current document instead.
1532 // (2) In all other cases when the principal passed in is not null,
1533 // use that principal.
1534 // (3) If the caller has allowed inheriting from the current document,
1535 // or if we're being called from system code (eg chrome JS or pure
1536 // C++) then inheritOwner should be true and InternalLoad will get
1537 // an owner from the current document. If none of these things are
1538 // true, then
1539 // (4) we pass a null owner into the channel, and an owner will be
1540 // created later from the channel's internal data.
1541 //
1542 // If ownerIsExplicit *is* set, there are 4 possibilities
1543 // (1) If the system principal or an expanded principal was passed in
1544 // and we're a typeContent docshell, return an error.
1545 // (2) In all other cases when the principal passed in is not null,
1546 // use that principal.
1547 // (3) If the caller has allowed inheriting from the current document,
1548 // then inheritOwner should be true and InternalLoad will get an owner
1549 // from the current document. If none of these things are true, then
1550 // (4) we pass a null owner into the channel, and an owner will be
1551 // created later from the channel's internal data.
1552 //
1553 // NOTE: This all only works because the only thing the owner is used
1554 // for in InternalLoad is data:, javascript:, and about:blank
1555 // URIs. For other URIs this would all be dead wrong!
1562 }
1565 }
1566 }
1568 // See if there's system or chrome JS code running
1570 }
1575 }
1601 referrer,
1602 owner,
1603 flags,
1607 postStream,
1608 headersStream,
1609 loadType,
1611 aFirstParty,
1612 srcdoc,
1613 sourceDocShell,
1614 baseURI,
1617 }
1619 NS_IMETHODIMP
1624 {
1629 // if the caller doesn't pass in a URI we need to create a dummy URI. necko
1630 // currently requires a URI in various places during the load. Some consumers
1631 // do as well.
1634 // HACK ALERT
1639 // Make sure that the URI spec "looks" like a protocol and path...
1640 // For now, just use a bogus protocol called "internal"
1644 }
1650 // Get the appropriate LoadType from nsIDocShellLoadInfo type
1652 }
1658 // build up a channel for this stream.
1663 NS_ERROR_FAILURE);
1670 NS_ERROR_FAILURE);
1672 }
1674 NS_IMETHODIMP
1676 {
1684 }
1687 /*
1688 * Reset state to a new content model within the current document and the document
1689 * viewer. Called by the document before initiating an out of band document.write().
1690 */
1691 NS_IMETHODIMP
1693 {
1696 }
1699 NS_IMETHODIMP
1701 {
1703 // Keep an explicit reference since calling PageHide could release
1704 // mContentViewer
1710 }
1716 }
1723 }
1729 }
1730 }
1731 // Now make sure our editor, if any, is detached before we go
1732 // any farther.
1734 }
1737 }
1739 void
1741 {
1744 }
1748 }
1751 //
1752 // Bug 13871: Prevent frameset spoofing
1753 //
1754 // This routine answers: 'Is origin's document from same domain as
1755 // target's document?'
1756 //
1757 // file: uris are considered the same domain for the purpose of
1758 // frame navigation regardless of script accessibility (bug 420425)
1759 //
1760 /* static */
1761 bool
1764 {
1765 // We want to bypass this check for chrome callers, but only if there's
1766 // JS on the stack. System callers still need to do it.
1769 }
1773 // Get origin document principal
1777 // Get target principal
1786 }
1788 // Not strictly equal, special case if both are file: uris
1808 }
1810 NS_IMETHODIMP
1812 {
1822 }
1824 }
1827 }
1829 NS_IMETHODIMP
1831 {
1839 }
1843 {
1847 }
1849 NS_IMETHODIMP
1851 {
1862 }
1865 }
1867 NS_IMETHODIMP
1869 {
1875 }
1877 NS_IMETHODIMP
1879 {
1880 // Weak reference. Don't addref.
1886 }
1889 }
1891 NS_IMETHODIMP
1893 {
1898 }
1900 /* void setCurrentURI (in nsIURI uri); */
1901 NS_IMETHODIMP
1903 {
1904 // Note that securityUI will set STATE_IS_INSECURE, even if
1905 // the scheme of |aURI| is "https".
1908 }
1910 bool
1913 {
1914 #ifdef PR_LOGGING
1916 nsAutoCString spec;
1920 }
1921 #endif
1923 // We don't want to send a location change when we're displaying an error
1924 // page, and we don't want to change our idea of "current URI" either
1927 }
1938 {
1939 // This is the root docshell
1941 }
1944 }
1946 // nsDocShell owns a URLSearchParams that is used by
1947 // window.location.searchParams to be in sync with the current location.
1950 }
1952 nsAutoCString search;
1959 }
1960 }
1965 /*
1966 * We don't want to send OnLocationChange notifications when
1967 * a subframe is being loaded for the first time, while
1968 * visiting a frameset page
1969 */
1971 }
1975 }
1977 }
1979 NS_IMETHODIMP
1981 {
1990 }
1992 NS_IMETHODIMP
1994 {
1999 }
2004 }
2012 }
2017 // Unlabeled doc on a domain that we map to a fallback encoding
2025 // Changing charset on an unlabeled doc.
2030 }
2033 // Changing charset on unlabeled doc where chardet fired
2038 }
2043 // Changing charset on a doc that had a charset label.
2048 // Changing charset on a document that already had an override.
2056 // Bug. This isn't supposed to happen.
2059 }
2061 }
2063 NS_IMETHODIMP
2065 {
2066 // set the charset override
2068 }
2071 {
2075 }
2076 nsAutoCString encoding;
2078 // Reject unknown labels
2080 }
2082 // Reject XSS hazards
2084 }
2087 }
2090 {
2093 }
2095 void
2099 {
2103 }
2105 void
2109 {
2113 }
2115 NS_IMETHODIMP
2117 {
2123 }
2128 }
2131 }
2133 NS_IMETHODIMP
2135 {
2139 }
2141 NS_IMETHODIMP
2143 {
2147 }
2149 NS_IMETHODIMP
2151 {
2155 }
2157 NS_IMETHODIMP
2159 {
2163 }
2165 NS_IMETHODIMP
2167 {
2171 }
2173 NS_IMETHODIMP
2175 {
2179 }
2181 NS_IMETHODIMP
2183 {
2189 }
2194 }
2196 NS_IMETHODIMP
2198 {
2200 //XXX should enable or disable a plugin host
2202 }
2204 NS_IMETHODIMP
2206 {
2211 }
2213 NS_IMETHODIMP
2215 {
2219 }
2221 NS_IMETHODIMP
2223 {
2228 }
2230 NS_IMETHODIMP
2232 {
2240 }
2242 NS_IMETHODIMP
2244 {
2253 }
2254 }
2255 }
2262 }
2263 }
2274 }
2275 }
2276 }
2278 }
2280 NS_IMETHODIMP
2282 {
2287 }
2289 NS_IMETHODIMP
2291 {
2292 #ifdef MOZ_CRASHREPORTER
2296 }
2297 #endif
2301 }
2303 NS_IMETHODIMP
2305 {
2312 }
2313 }
2321 }
2322 }
2324 }
2326 NS_IMETHODIMP
2328 {
2331 }
2333 NS_IMETHODIMP
2335 {
2339 }
2341 }
2343 NS_IMETHODIMP
2345 {
2349 }
2351 }
2353 NS_IMETHODIMP
2355 {
2358 }
2360 NS_IMETHODIMP
2362 DOMHighResTimeStamp aStart,
2363 DOMHighResTimeStamp aEnd)
2364 {
2375 }
2376 }
2378 }
2381 {
2387 }
2392 }
2395 {
2398 }
2401 {
2406 }
2409 {
2412 }
2415 {
2420 }
2423 {
2426 }
2429 {
2432 }
2435 {
2438 // Mute or unmute audio contexts attached to the inner window.
2446 }
2447 }
2448 }
2451 }
2454 {
2457 }
2460 {
2463 }
2466 {
2469 }
2472 {
2475 }
2477 NS_IMETHODIMP
2479 {
2482 }
2484 NS_IMETHODIMP
2486 {
2489 }
2491 NS_IMETHODIMP
2493 {
2496 // Browsers and apps have their mFullscreenAllowed retrieved from their
2497 // corresponding iframe in their parent upon creation.
2501 }
2503 // Assume false until we determine otherwise...
2506 // For non-browsers/apps, check that the enclosing iframe element
2507 // has the allowfullscreen attribute set to true. If any ancestor
2508 // iframe does not have mozallowfullscreen=true, then fullscreen is
2509 // prohibited.
2513 }
2520 }
2522 // If we have no parent then we're the root docshell; no ancestor of the
2523 // original docshell doesn't have a allowfullscreen attribute, so
2524 // report fullscreen as allowed.
2529 }
2531 // Otherwise, we have a parent, continue the checking for
2532 // mozFullscreenAllowed in the parent docshell's ancestors.
2534 }
2536 NS_IMETHODIMP
2538 {
2540 // Only allow setting of fullscreenAllowed on content/process boundaries.
2541 // At non-boundaries the fullscreenAllowed attribute is calculated based on
2542 // whether all enclosing frames have the "mozFullscreenAllowed" attribute
2543 // set to "true". fullscreenAllowed is set at the process boundaries to
2544 // propagate the value of the parent's "mozFullscreenAllowed" attribute
2545 // across process boundaries.
2547 }
2550 }
2552 NS_IMETHODIMP
2554 {
2558 }
2562 }
2565 }
2569 }
2571 NS_IMETHODIMP
2572 nsDocShell::GetDocShellEnumerator(int32_t aItemType, int32_t aDirection, nsISimpleEnumerator **outEnum)
2573 {
2580 else
2597 }
2599 NS_IMETHODIMP
2601 {
2604 }
2606 NS_IMETHODIMP
2608 {
2611 }
2614 NS_IMETHODIMP
2616 {
2619 }
2621 NS_IMETHODIMP
2623 {
2626 }
2628 NS_IMETHODIMP
2630 {
2634 }
2636 NS_IMETHODIMP
2638 {
2640 }
2642 NS_IMETHODIMP
2644 {
2649 }
2651 NS_IMETHODIMP
2653 {
2656 }
2658 NS_IMETHODIMP
2660 {
2665 }
2667 NS_IMETHODIMP
2669 {
2672 }
2674 NS_IMETHODIMP
2676 {
2681 }
2683 NS_IMETHODIMP
2685 {
2692 else
2698 }
2700 NS_IMETHODIMP
2702 {
2705 }
2707 NS_IMETHODIMP
2709 {
2713 }
2715 NS_IMETHODIMP
2717 {
2720 }
2722 NS_IMETHODIMP
2724 {
2725 // If mUseErrorPages is set explicitly, stop using sUseErrorPages.
2728 }
2731 }
2733 NS_IMETHODIMP
2735 {
2738 }
2740 NS_IMETHODIMP
2742 {
2745 }
2747 NS_IMETHODIMP
2749 {
2750 // These indices are used for fastback cache eviction, to determine
2751 // which session history entries are candidates for content viewer
2752 // eviction. We need to adjust by the number of entries that we
2753 // just purged from history, so that we look at the right session history
2754 // entries during eviction.
2763 }
2764 }
2767 }
2769 nsresult
2771 {
2772 // These indices are used for fastback cache eviction, to determine
2773 // which session history entries are candidates for content viewer
2774 // eviction. We need to adjust by the number of entries that we
2775 // just purged from history, so that we look at the right session history
2776 // entries during eviction.
2781 }
2786 }
2794 }
2795 }
2798 }
2800 nsIDOMStorageManager*
2802 {
2803 nsresult rv;
2809 }
2813 }
2818 }
2821 mSessionStorageManager =
2823 }
2826 }
2828 NS_IMETHODIMP
2833 {
2837 }
2844 }
2847 aStorage);
2848 }
2850 nsresult
2853 {
2857 }
2863 }
2868 }
2871 }
2873 NS_IMETHODIMP
2875 {
2878 }
2880 nsIChannel*
2882 {
2887 }
2888 }
2890 }
2892 NS_IMETHODIMP
2894 {
2898 }
2900 }
2902 NS_IMETHODIMP
2904 {
2907 }
2909 void
2911 {
2920 }
2921 }
2922 }
2924 void
2926 {
2935 }
2936 }
2937 }
2939 NS_IMETHODIMP
2941 {
2950 }
2951 }
2953 }
2955 //*****************************************************************************
2956 // nsDocShell::nsIDocShellTreeItem
2957 //*****************************************************************************
2959 NS_IMETHODIMP
2961 {
2964 }
2966 NS_IMETHODIMP
2968 {
2971 }
2973 NS_IMETHODIMP
2975 {
2980 }
2984 {
2986 }
2988 NS_IMETHODIMP
2990 {
2995 }
2997 NS_IMETHODIMP
2999 {
3002 // Only allow setting the type on root docshells. Those would be the ones
3003 // that have the docloader service as mParent or have no mParent at all.
3012 // disable auth prompting for anything but content
3019 }
3022 }
3024 NS_IMETHODIMP
3026 {
3031 }
3032 // Note that in the case when the parent is not an nsIDocShellTreeItem we
3033 // don't want to throw; we just want to return null.
3035 }
3039 {
3042 }
3044 void
3046 {
3050 // If we have no tree owner, that means that we've been detached from the
3051 // docshell tree (this is distinct from having no parent dochshell, which
3052 // is the case for root docshells). It would be nice to simply disallow
3053 // script in detached docshells, but bug 986542 demonstrates that this
3054 // behavior breaks at least one website.
3055 //
3056 // So instead, we use our previous value, unless mAllowJavascript has been
3057 // explicitly set to false.
3060 // If scripting has been explicitly disabled on our docshell, we're done.
3063 // If we have a parent, inherit.
3066 // Otherwise, we're the root of the tree, and we haven't explicitly disabled
3067 // script. Allow.
3070 }
3072 // Inform our active DOM window.
3073 //
3074 // This will pass the outer, which will be in the scope of the active inner.
3079 }
3081 // If our value has changed, our children might be affected. Recompute their
3082 // value as well.
3087 }
3088 }
3089 }
3091 nsresult
3093 {
3101 }
3103 // Curse ambiguous nsISupports inheritance!
3106 // If parent is another docshell, we inherit all their flags for
3107 // allowing plugins, scripting etc.
3111 {
3113 {
3115 }
3117 {
3119 }
3121 {
3123 }
3125 {
3127 }
3129 {
3131 }
3134 {
3136 }
3140 {
3142 }
3145 }
3151 {
3153 }
3155 }
3160 {
3162 }
3168 // Our parent has changed. Recompute scriptability.
3172 }
3174 NS_IMETHODIMP
3176 {
3182 }
3191 }
3193 }
3195 NS_IMETHODIMP
3197 {
3209 }
3211 }
3213 NS_IMETHODIMP
3215 {
3223 }
3227 }
3229 NS_IMETHODIMP
3231 {
3237 NS_ERROR_FAILURE);
3242 NS_ERROR_FAILURE);
3243 }
3246 }
3248 /* static */
3249 bool
3253 {
3257 // Good to go
3259 }
3261 // XXXbz should we care if aAccessingItem or the document therein is
3262 // chrome? Should those get extra privileges?
3264 // For historical context, see:
3265 //
3266 // Bug 13871: Prevent frameset spoofing
3267 // Bug 103638: Targets with same name in different windows open in wrong
3268 // window with javascript
3269 // Bug 408052: Adopt "ancestor" frame navigation policy
3271 // Now do a security check.
3272 //
3273 // Disallow navigation if the two frames are not part of the same app, or if
3274 // they have different is-in-browser-element states.
3275 //
3276 // Allow navigation if
3277 // 1) aAccessingItem can script aTargetItem or one of its ancestors in
3278 // the frame hierarchy or
3279 // 2) aTargetItem is a top-level frame and aAccessingItem is its descendant
3280 // 3) aTargetItem is a top-level frame and aAccessingItem can target
3281 // its opener per rule (1) or (2).
3284 // A frame is allowed to navigate itself.
3286 }
3291 // We must be able to convert both or neither to nsIDocShell.
3293 }
3300 }
3306 // A frame can navigate its root.
3308 }
3310 // Check if aAccessingItem can navigate one of aTargetItem's ancestors.
3315 }
3326 // target is a subframe, not in accessor's frame hierarchy, and all its
3327 // ancestors have origins different from that of the accessor. Don't
3328 // allow access.
3330 }
3333 // All done here
3335 }
3341 }
3350 }
3353 }
3355 static bool
3357 {
3365 }
3366 }
3369 }
3371 NS_IMETHODIMP
3376 {
3380 // If we don't find one, we return NS_OK and a null result
3387 // If aRequestor is not null we don't need to check special names, so
3388 // just hand straight off to the search by actual name function.
3390 _retval);
3393 // This is the entry point into the target-finding algorithm. Check
3394 // for special names. This should only be done once, hence the check
3395 // for a null aRequestor.
3401 }
3403 {
3404 // Just return null. Caller must handle creating a new window with
3405 // a blank name himself.
3407 }
3409 {
3413 }
3415 {
3418 }
3419 // _main is an IE target which should be case-insensitive but isn't
3420 // see bug 217886 for details
3423 {
3424 // Must pass our same type root as requestor to the
3425 // treeowner to make sure things work right.
3432 }
3433 #ifdef DEBUG
3436 "You might like to try that. "
3438 // Note: _content should always exist. If we don't have one
3439 // hanging off the treeowner, just create a named window....
3440 // so don't return here, in case we did that and can now find
3441 // it.
3442 // XXXbz should we be using |root| instead of creating
3443 // a new window?
3444 }
3445 #endif
3447 // Do the search for item by an actual name.
3450 }
3454 }
3456 // DoFindItemWithName only returns active items and we don't check if
3457 // the item is active for the special cases.
3460 }
3462 }
3463 }
3465 nsresult
3470 {
3471 // First we check our name.
3476 }
3478 // This QI may fail, but the places where we want to compare, comparing
3479 // against nullptr serves the same purpose.
3482 // Second we check our children making sure not to ask a child if
3483 // it is the aRequestor.
3484 #ifdef DEBUG
3485 nsresult rv =
3486 #endif
3494 // Third if we have a parent and it isn't the requestor then we
3495 // should ask it to do the search. If it is the requestor we
3496 // should just stop here and let the parent do the rest. If we
3497 // don't have a parent, then we should ask the
3498 // docShellTreeOwner to do the search.
3510 aOriginalRequestor,
3511 _retval);
3512 }
3513 }
3515 // If the parent is null or not of the same type fall through and ask tree
3516 // owner.
3518 // This may fail, but comparing against null serves the same purpose
3525 }
3528 }
3530 bool
3532 {
3533 // If no target then not sandboxed.
3536 }
3538 // We cannot be sandboxed from ourselves.
3541 }
3543 // Default the sandbox flags to our flags, so that if we can't retrieve the
3544 // active document, we will still enforce our own.
3550 }
3551 }
3553 // If no flags, we are not sandboxed at all.
3556 }
3558 // If aTargetDocShell has an ancestor, it is not top level.
3563 // We are not sandboxed if we are an ancestor of target.
3566 }
3572 // Otherwise, we are sandboxed from aTargetDocShell.
3574 }
3576 // aTargetDocShell is top level, are we the "one permitted sandboxed
3577 // navigator", i.e. did we open aTargetDocShell?
3579 aTargetDocShell->
3583 }
3585 // If SANDBOXED_TOPLEVEL_NAVIGATION flag is not on, we are not sandboxed
3586 // from our top.
3592 }
3593 }
3595 // Otherwise, we are sandboxed from aTargetDocShell.
3597 }
3599 NS_IMETHODIMP
3601 {
3607 }
3609 #ifdef DEBUG_DOCSHELL_FOCUS
3610 static void
3612 {
3630 }
3644 }
3645 }
3646 }
3648 static void
3650 {
3660 }
3662 }
3666 }
3669 }
3670 #endif
3672 NS_IMETHODIMP
3674 {
3675 #ifdef DEBUG_DOCSHELL_FOCUS
3679 }
3680 #endif
3682 // Don't automatically set the progress based on the tree owner for frames
3695 }
3700 }
3701 }
3702 }
3713 }
3715 // Our tree owner has changed. Recompute scriptability.
3716 //
3717 // Note that this is near-redundant with the recomputation in
3718 // SetDocLoaderParent(), but not so for the root DocShell, where the call to
3719 // SetTreeOwner() happens after the initial AddDocLoaderAsChildOfRoot(),
3720 // and we never set another parent. Given that this is neither expensive nor
3721 // performance-critical, let's be safe and unconditionally recompute this
3722 // state whenever dependent state changes.
3726 }
3728 NS_IMETHODIMP
3730 {
3733 }
3735 NS_IMETHODIMP
3737 {
3740 }
3742 NS_IMETHODIMP
3744 {
3747 }
3749 NS_IMETHODIMP
3751 {
3755 }
3759 NS_IMETHODIMP
3761 {
3767 // Make sure we're not creating a loop in the docshell tree
3772 }
3776 // Make sure to remove the child from its current parent.
3780 }
3782 // Make sure to clear the treeowner in case this child is a different type
3783 // from us.
3800 }
3801 }
3804 /* Set the child's global history if the parent has one */
3807 }
3811 }
3819 // charset, style-disabling, and zoom will be inherited in SetupNewViewer()
3821 // Now take this document's charset and set the child's parentCharset field
3822 // to it. We'll later use that field, in the loading process, for the
3823 // charset choosing algorithm.
3824 // If we fail, at any point, we just return NS_OK.
3825 // This code has some performance impact. But this will be reduced when
3826 // the current charset will finally be stored as an Atom, avoiding the
3827 // alias resolution extra look-up.
3829 // we are NOT going to propagate the charset is this Chrome's docshell
3833 // get the parent's current charset
3843 // Check if the url is wyciwyg
3845 }
3848 // If this docshell is loaded from a wyciwyg: URI, don't
3849 // advertise our charset since it does not in any way reflect
3850 // the actual source charset, which is what we're trying to
3851 // expose here.
3855 // set the child's parentCharset
3857 charsetSource,
3859 }
3861 // printf("### 1 >>> Adding child. Parent CS = %s. ItemType = %d.\n", NS_LossyConvertUTF16toASCII(parentCS).get(), mItemType);
3864 }
3866 NS_IMETHODIMP
3868 {
3880 }
3882 NS_IMETHODIMP
3884 {
3887 #ifdef DEBUG
3892 }
3893 #endif
3899 }
3901 NS_IMETHODIMP
3907 {
3916 nsXPIDLString childName;
3932 }
3938 {
3939 // See if child contains the shell with the given name
3940 #ifdef DEBUG
3941 nsresult rv =
3942 #endif
3944 aSameType,
3947 aOriginalRequestor,
3948 _retval);
3953 }
3954 }
3956 }
3958 NS_IMETHODIMP
3960 {
3967 // A nsISHEntry for a child is *only* available when the parent is in
3968 // the progress of loading a document too...
3971 /* Before looking for the subframe's url, check
3972 * the expiration status of the parent. If the parent
3973 * has expired from cache, then subframes will not be
3974 * loaded from history in certain situations.
3975 */
3979 /* Get the parent's Load Type so that it can be set on the child too.
3980 * By default give a loadHistory value
3981 */
3984 // If the user did a shift-reload on this frameset page,
3985 // we don't want to load the subframes from history.
3992 /* If the user pressed reload and the parent frame has expired
3993 * from cache, we do not want to load the child frame from history.
3994 */
3996 // The parent has expired. Return null.
3999 }
4003 // Get the child subframe from session history.
4007 }
4008 }
4010 }
4012 NS_IMETHODIMP
4016 {
4017 nsresult rv;
4020 /* You get here if you are currently building a
4021 * hierarchy ie.,you just visited a frameset page
4022 */
4026 }
4027 }
4029 /* This is an initial load in some subframe. Just append it if we can */
4033 }
4034 }
4036 /* You are currently in the rootDocShell.
4037 * You will get here when a subframe has a new url
4038 * to load and you have walked up the tree all the
4039 * way to the top to clone the current SHEntry hierarchy
4040 * and replace the subframe where a new url was loaded with
4041 * a new entry.
4042 */
4066 }
4067 }
4068 }
4070 /* Just pass this along */
4076 }
4077 }
4079 }
4081 nsresult
4084 {
4085 /* You will get here when you are in a subframe and
4086 * a new url has been loaded on you.
4087 * The mOSHE in this subframe will be the previous url's
4088 * mOSHE. This mOSHE will be used as the identification
4089 * for this subframe in the CloneAndReplace function.
4090 */
4092 // In this case, we will end up calling AddEntry, which increases the
4093 // current index by 1
4098 }
4100 nsresult rv;
4105 aCloneChildren);
4106 }
4111 #ifdef DEBUG_PAGE_CACHE
4113 mLoadedTransIndex);
4114 #endif
4115 }
4118 }
4120 NS_IMETHODIMP
4122 {
4123 nsresult rv;
4130 }
4132 // No need to initialize mGlobalHistory if IHistory is available.
4136 }
4140 }
4144 }
4146 NS_IMETHODIMP
4148 {
4151 }
4153 NS_IMETHODIMP
4155 {
4166 }
4167 }
4170 }
4178 }
4180 NS_IMETHODIMP
4182 {
4185 }
4187 NS_IMETHODIMP
4189 {
4192 }
4194 NS_IMETHODIMP
4196 {
4204 }
4206 }
4208 nsIScriptGlobalObject*
4210 {
4213 }
4215 nsIDocument*
4217 {
4220 }
4222 nsPIDOMWindow*
4224 {
4227 }
4229 NS_IMETHODIMP
4231 {
4238 }
4239 }
4241 }
4243 NS_IMETHODIMP
4245 {
4248 }
4250 void
4252 {
4259 }
4271 }
4272 }
4276 }
4278 //-------------------------------------
4279 //-- Helper Method for Print discovery
4280 //-------------------------------------
4281 bool
4283 {
4286 }
4289 }
4291 bool
4294 {
4299 }
4302 }
4306 }
4308 //*****************************************************************************
4309 // nsDocShell::nsIWebNavigation
4310 //*****************************************************************************
4312 NS_IMETHODIMP
4314 {
4318 }
4319 nsresult rv;
4327 }
4329 NS_IMETHODIMP
4331 {
4335 }
4336 nsresult rv;
4344 }
4346 NS_IMETHODIMP
4348 {
4351 }
4352 nsresult rv;
4360 }
4362 NS_IMETHODIMP
4364 {
4367 }
4368 nsresult rv;
4376 }
4379 {
4382 }
4383 nsresult rv;
4391 }
4393 NS_IMETHODIMP
4399 {
4402 }
4404 NS_IMETHODIMP
4411 {
4416 }
4421 // Create a URI from our string; if that succeeds, we want to
4422 // change aLoadFlags to not include the ALLOW_THIRD_PARTY_FIXUP
4423 // flag.
4426 // Cleanup the empty spaces that might be on each end.
4428 // Eliminate embedded newlines, which single-line text fields now allow:
4435 }
4438 // Call the fixup object. This will clobber the rv from NS_NewURI
4439 // above, but that's fine with us. Note that we need to do this even
4440 // if NS_NewURI returned a URI, because fixup handles nested URIs, etc
4441 // (things like view-source:mozilla.org for example).
4445 }
4448 }
4458 }
4461 // CreateFixupURI only returns a post data stream if it succeeded
4462 // and changed the URI, in which case we should override the
4463 // passed-in post data.
4465 }
4471 }
4472 }
4473 }
4474 // else no fixup service so just use the URI we created and see
4475 // what happens
4479 }
4484 PopupControlState popupState;
4490 }
4493 // Don't pass certain flags that aren't needed and end up confusing
4494 // ConvertLoadTypeToDocShellLoadInfo. We do need to ensure that they are
4495 // passed to LoadURI though, since it uses them.
4503 /*
4504 * If the user "Disables Protection on This Page", we have to make sure to
4505 * remember the users decision when opening links in child tabs [Bug 906190]
4506 */
4512 }
4522 // Save URI string in case it's needed later when
4523 // sending to search engine service in EndPageLoad()
4527 }
4529 NS_IMETHODIMP
4533 {
4534 // Get prompt and string bundle servcies
4543 nsAutoString error;
4549 nsAutoString messageStr;
4550 nsAutoCString cssClass;
4551 nsAutoCString errorPage;
4555 // Turn the error code into a human readable error message.
4559 // Extract the schemes into a comma delimited list.
4560 nsAutoCString scheme;
4566 nsresult rv2;
4572 }
4574 }
4577 }
4581 }
4584 // Get the host
4585 nsAutoCString host;
4591 }
4596 }
4601 }
4604 // Get the host
4605 nsAutoCString host;
4610 }
4612 // CSP error
4615 }
4624 }
4632 // Usually we should have aFailedChannel and get a detailed message
4634 }
4636 // No channel, let's obtain the generic error message
4639 }
4640 }
4645 // if this is a Strict-Transport-Security host and the cert
4646 // is bad, don't allow overrides (STS Spec section 7.3).
4664 }
4669 }
4671 // HSTS takes precedence over the expert bad cert pref. We
4672 // never want to show the "Add Exception" button for HSTS sites.
4676 //measuring STS separately allows us to measure click through
4677 //rates easily
4681 }
4683 // See if an alternate cert error page is registered
4684 nsAdoptingCString alternateErrorPage =
4695 }
4696 }
4698 nsAutoCString host;
4703 // Malware and phishing detectors may want to use an alternate error
4704 // page, but if the pref's not set, we'll fall back on the standard page
4705 nsAdoptingCString alternateErrorPage =
4719 }
4723 bucketId);
4734 }
4736 // DisplayLoadError requires a non-empty messageStr to proceed and call LoadErrorPage.
4737 // If the page doesn't have a title, we will use a blank space which will be trimmed
4738 // and thus treated as empty by the front-end.
4741 }
4742 }
4744 // Errors requiring simple formatting
4747 // URI is malformed
4751 // Doc failed to load because the server generated too many redirects
4755 // Doc failed to load because PSM is not installed
4759 // Doc failed to load because the server kept reseting the connection
4760 // before we could read any data from it
4764 // Doc failed to load because the cache does not contain a copy of
4765 // the document.
4769 // Doc failed to load because we are offline.
4773 // Doc navigation attempted while Printing or Print Preview
4777 // Port blocked for security reasons
4782 // Proxy hostname could not be resolved.
4786 // Proxy connection was refused.
4790 // Bad Content Encoding.
4794 {
4797 }
4799 // Channel refused to load from an unrecognized content type.
4803 // Broken Content Detected. e.g. Content-MD5 check failure.
4808 }
4809 }
4811 // Test if the error should be displayed
4814 }
4816 // Test if the error needs to be formatted
4818 // already obtained message
4819 }
4822 // Build up the host:port string.
4823 nsAutoCString hostport;
4828 }
4830 }
4832 nsAutoCString spec;
4835 // displaying "file://" is aesthetically unpleasing and could even be
4836 // confusing to the user
4841 else
4844 nsAutoCString charset;
4845 // unescape and convert from origin charset
4851 }
4854 }
4863 }
4864 nsXPIDLString str;
4870 }
4872 // Display the error as a page or an alert prompt
4876 // Display an error page
4879 }
4880 else
4881 {
4882 // The prompter reqires that our private window has a document (or it
4883 // asserts). Satisfy that assertion now since GetDoc will force
4884 // creation of one if it hasn't already been created.
4887 }
4889 // Display a message box
4891 }
4894 }
4897 NS_IMETHODIMP
4904 {
4905 #if defined(PR_LOGGING) && defined(DEBUG)
4907 nsAutoCString spec;
4910 nsAutoCString chanName;
4913 else
4919 }
4920 #endif
4926 // Abandon mLSHE's BFCache entry and create a new one. This way, if
4927 // we go back or forward to another SHEntry with the same doc
4928 // identifier, the error page won't persist.
4930 }
4932 nsAutoCString url;
4933 nsAutoCString charset;
4935 {
4940 }
4942 {
4944 }
4945 else
4946 {
4948 }
4950 // Create a URL to pass all the error information through to the page.
4952 #undef SAFE_ESCAPE
4953 #define SAFE_ESCAPE(cstring, escArg1, escArg2) \
4954 { \
4955 char* s = nsEscape(escArg1, escArg2); \
4956 if (!s) \
4957 return NS_ERROR_OUT_OF_MEMORY; \
4958 cstring.Adopt(s); \
4959 }
4961 escapedCSSClass;
4970 }
4981 }
4989 // Append the manifest URL if the error comes from an app.
4990 nsString manifestURL;
4993 nsCString manifestParam;
4996 url_Path);
4999 }
5001 // In some cases we need to hardcode new strings in the en-US case.
5002 // Pass the locale because about:neterror doesn't know it:
5006 nsAutoCString locale;
5010 }
5012 // netError.xhtml's getDescription only handles the "d" parameter at the
5013 // end of the URL, so append it last.
5026 }
5029 NS_IMETHODIMP
5031 {
5034 }
5035 nsresult rv;
5044 // Send notifications to the HistoryListener if any, about the impending reload
5051 }
5056 /* If you change this part of code, make sure bug 45297 does not re-occur */
5059 }
5062 }
5066 // Do not inherit owner from document
5068 nsAutoString srcdoc;
5070 nsAutoString contentTypeHint;
5080 }
5081 }
5083 mReferrerURI,
5084 principal,
5085 flags,
5096 baseURI,
5099 }
5102 }
5104 NS_IMETHODIMP
5106 {
5107 // Revoke any pending event related to content viewer restoration
5112 // Since error page loads never unset mLSHE, do so now
5115 }
5119 }
5122 // Stop the document loading
5126 }
5127 }
5130 // Suspend any timers that were set for this loader. We'll clear
5131 // them out for good in CreateContentViewer.
5136 }
5138 // XXXbz We could also pass |this| to nsIURILoader::Stop. That will
5139 // just call Stop() on us as an nsIDocumentLoader... We need fewer
5140 // redundant apis!
5142 }
5149 }
5152 }
5154 NS_IMETHODIMP
5156 {
5161 }
5163 NS_IMETHODIMP
5165 {
5170 }
5174 }
5176 NS_IMETHODIMP
5178 {
5185 }
5187 NS_IMETHODIMP
5189 {
5192 // make sure that we are the root docshell and
5193 // set a handle to root docshell in SH.
5196 /* Get the root docshell. If *this* is the root docshell
5197 * then save a handle to *this* in SH. SH needs it to do
5198 * traversions thro' its entries
5199 */
5209 }
5212 }
5215 NS_IMETHODIMP
5217 {
5222 }
5224 //*****************************************************************************
5225 // nsDocShell::nsIWebPageDescriptor
5226 //*****************************************************************************
5227 NS_IMETHODIMP
5229 {
5232 // Currently, the opaque 'page descriptor' is an nsISHEntry...
5235 }
5237 // Now clone shEntryIn, since we might end up modifying it later on, and we
5238 // want a page descriptor to be reusable.
5243 // Give our cloned shEntry a new bfcache entry so this load is independent
5244 // of all other loads. (This is important, in particular, for bugs 582795
5245 // and 585298.)
5249 //
5250 // load the page as view-source
5251 //
5256 // Create a new view-source URI and replace the original.
5268 }
5270 }
5274 }
5276 NS_IMETHODIMP
5278 {
5290 }
5292 // null out inappropriate cloned attributes...
5297 }
5300 }
5303 //*****************************************************************************
5304 // nsDocShell::nsIBaseWindow
5305 //*****************************************************************************
5307 NS_IMETHODIMP
5311 {
5316 }
5318 NS_IMETHODIMP
5320 {
5322 // We've already been created
5324 }
5333 // Check pref to see if we should prevent frameset spoofing
5334 gValidateOrigin =
5336 }
5338 // Should we use XUL error pages instead of alerts if possible?
5339 mUseErrorPages =
5345 mUseErrorPages);
5347 }
5349 mDeviceSizeIsPageSize =
5351 mDeviceSizeIsPageSize);
5358 }
5361 }
5363 NS_IMETHODIMP
5365 {
5375 }
5376 }
5380 // Remove our pref observers
5383 }
5385 // Make sure to blow away our mLoadingURI just in case. No loads
5386 // from inside this pagehide.
5389 // Fire unload event before we blow anything away.
5392 // Clear pointers to any detached nsEditorData that's lying
5393 // around in shistory entries. Breaks cycle. See bug 430921.
5399 // Note: mContentListener can be null if Init() failed and we're being
5400 // called from the destructor.
5404 // Note that we do NOT set mContentListener to null here; that
5405 // way if someone tries to do a load in us after this point
5406 // the nsDSURIContentListener will block it. All of which
5407 // means that we should do this before calling Stop(), of
5408 // course.
5409 }
5411 // Stop any URLs that are currently being loaded...
5418 // Save the state of the current document, before destroying the window.
5419 // This is needed to capture the state of a frameset when the new document
5420 // causes the frameset to be destroyed...
5423 // Remove this docshell from its parent's child list
5433 }
5443 }
5448 }
5451 // We want to destroy these content viewers now rather than
5452 // letting their destruction wait for the session history
5453 // entries to get garbage collected. (Bug 488394)
5458 }
5460 }
5466 // required to break ref cycle
5469 // Cancel any timers that were set for this docshell; this is needed
5470 // to break the cycle between us and the timers.
5477 }
5478 }
5481 }
5483 NS_IMETHODIMP
5485 {
5489 }
5494 }
5498 }
5500 NS_IMETHODIMP
5502 {
5510 }
5512 NS_IMETHODIMP
5514 {
5517 }
5519 NS_IMETHODIMP
5521 {
5525 }
5527 NS_IMETHODIMP
5529 {
5532 }
5534 NS_IMETHODIMP
5537 {
5543 // Hold strong ref, since SetBounds can make us null out mContentViewer
5546 //XXX Border figured in here or is that handled elsewhere?
5548 }
5551 }
5553 NS_IMETHODIMP
5556 {
5558 // ensure size is up-to-date if window has changed resolution
5559 nsIntRect r;
5562 }
5564 // We should really consider just getting this information from
5565 // our window instead of duplicating the storage and code...
5567 // Caller wants to know our size; make sure to give them up to
5568 // date information.
5572 }
5573 }
5577 }
5579 void
5582 {
5591 }
5593 NS_IMETHODIMP
5595 {
5604 }
5606 NS_IMETHODIMP
5608 {
5615 }
5617 NS_IMETHODIMP
5619 {
5623 }
5625 NS_IMETHODIMP
5627 {
5632 else
5636 }
5638 NS_IMETHODIMP
5640 {
5642 }
5644 NS_IMETHODIMP
5646 {
5647 // the nativeHandle should be accessed from nsIXULWindow
5649 }
5651 NS_IMETHODIMP
5653 {
5665 // get the view manager
5669 // get the root view
5673 // if our root view is hidden, we are not visible
5677 // otherwise, we must walk up the document and view trees checking
5678 // for a hidden view, unless we're an off screen browser, which
5679 // would make this test meaningless.
5688 // Null-check for crash in bug 267804
5692 }
5697 }
5703 }
5704 }
5713 }
5717 }
5723 }
5725 // Check with the tree owner as well to give embedders a chance to
5726 // expose visibility as well.
5728 }
5730 NS_IMETHODIMP
5732 {
5735 }
5737 NS_IMETHODIMP
5739 {
5742 }
5744 NS_IMETHODIMP
5746 {
5747 // We disallow setting active on chrome docshells.
5751 // Keep track ourselves.
5754 // Tell the PresShell about it.
5759 // Tell the window about it
5764 }
5765 }
5767 // Recursively tell all of our children, but don't tell <iframe mozbrowser>
5768 // children; they handle their state separately.
5774 }
5778 }
5779 }
5782 }
5784 NS_IMETHODIMP
5786 {
5789 }
5791 NS_IMETHODIMP
5793 {
5796 }
5798 NS_IMETHODIMP
5800 {
5803 }
5805 NS_IMETHODIMP
5807 {
5810 }
5812 NS_IMETHODIMP
5814 {
5817 }
5819 NS_IMETHODIMP
5821 {
5825 }
5832 }
5834 NS_IMETHODIMP
5836 {
5842 }
5844 NS_IMETHODIMP
5846 {
5849 // Tell the load group to set these flags all requests in the group
5854 }
5856 // Recursively tell all of our children. We *do not* skip
5857 // <iframe mozbrowser> children - if someone sticks custom flags in this
5858 // docShell then they too get the same flags.
5864 }
5866 }
5868 }
5870 NS_IMETHODIMP
5872 {
5875 }
5878 NS_IMETHODIMP
5880 {
5881 #ifdef DEBUG
5882 // if the channel is non-null
5884 // Get the root docshell.
5889 "Setting mMixedContentChannel on a docshell that is not the root docshell"
5890 );
5891 }
5892 #endif
5895 }
5897 NS_IMETHODIMP
5899 {
5905 }
5908 }
5910 NS_IMETHODIMP
5912 {
5916 }
5918 NS_IMETHODIMP
5919 nsDocShell::GetAllowMixedContentAndConnectionData(bool* aRootHasSecureConnection, bool* aAllowMixedContent, bool* aIsRootDocShell)
5920 {
5930 // now get the document from sameTypeRoot
5935 // For things with system principal (e.g. scratchpad) there is no uri
5936 // aRootHasSecureConnection should be false.
5942 }
5944 // Check the root doc's channel against the root docShell's mMixedContentChannel to see
5945 // if they are the same. If they are the same, the user has overriden
5946 // the block.
5951 }
5954 }
5956 NS_IMETHODIMP
5958 {
5959 // Show()/Hide() may change mContentViewer.
5965 }
5968 }
5971 }
5973 NS_IMETHODIMP
5975 {
5979 }
5981 NS_IMETHODIMP
5983 {
5985 }
5987 NS_IMETHODIMP
5989 {
5991 }
5993 NS_IMETHODIMP
5995 {
5996 // We don't create our own widget, so simply return the parent one.
5998 }
6000 NS_IMETHODIMP
6002 {
6007 }
6009 NS_IMETHODIMP
6011 {
6012 // Store local title
6018 // When title is set on the top object it should then be passed to the
6019 // tree owner.
6025 }
6032 }
6035 }
6036 }
6038 // Update SessionHistory with the document's title.
6043 }
6046 }
6048 nsresult
6050 {
6069 }
6070 }
6072 nsresult
6074 {
6081 }
6083 //*****************************************************************************
6084 // nsDocShell::nsIScrollable
6085 //*****************************************************************************
6087 NS_IMETHODIMP
6090 {
6103 }
6105 }
6107 NS_IMETHODIMP
6110 {
6122 }
6124 }
6126 NS_IMETHODIMP
6129 {
6140 }
6142 //*****************************************************************************
6143 // nsDocShell::nsITextScroll
6144 //*****************************************************************************
6146 NS_IMETHODIMP
6148 {
6155 }
6157 NS_IMETHODIMP
6159 {
6166 }
6168 //*****************************************************************************
6169 // nsDocShell::nsIRefreshURI
6170 //*****************************************************************************
6172 NS_IMETHODIMP
6175 {
6178 /* Check if Meta refresh/redirects are permitted. Some
6179 * embedded applications may not want to do this.
6180 * Must do this before sending out NOTIFY_REFRESH events
6181 * because listeners may have side effects (e.g. displaying a
6182 * button to manually trigger the refresh later).
6183 */
6189 // If any web progress listeners are listening for NOTIFY_REFRESH events,
6190 // give them a chance to block this refresh.
6213 NS_ERROR_FAILURE);
6214 }
6217 // We are busy loading another page. Don't create the
6218 // timer right now. Instead queue up the request and trigger the
6219 // timer in EndPageLoad().
6221 }
6223 // There is no page loading going on right now. Create the
6224 // timer and fire it right away.
6230 }
6232 }
6234 nsresult
6239 {
6242 // Remove aTimer from mRefreshURIList if needed
6252 }
6253 }
6254 }
6257 }
6259 bool
6263 {
6268 }
6281 }
6282 }
6283 }
6286 }
6288 NS_IMETHODIMP
6292 {
6299 /* We do need to pass in a referrer, but we don't want it to
6300 * be sent to the server.
6301 */
6304 /* for most refreshes the current URI is an appropriate
6305 * internal referrer
6306 */
6309 /* Don't ever "guess" on which owner to use to avoid picking
6310 * the current owner.
6311 */
6314 /* Check if this META refresh causes a redirection
6315 * to another site.
6316 */
6322 /* It is a META refresh based redirection within the threshold time
6323 * we have in mind (15000 ms as defined by REFRESH_REDIRECT_TIMER).
6324 * Pass a REPLACE flag to LoadURI().
6325 */
6328 /* for redirects we mimic HTTP, which passes the
6329 * original referrer
6330 */
6335 }
6336 }
6339 }
6341 /*
6342 * LoadURI(...) will cancel all refresh timers... This causes the
6343 * Timer and its refreshData instance to be released...
6344 */
6348 }
6350 nsresult
6354 {
6355 // Refresh headers are parsed with the following format in mind
6356 // <META HTTP-EQUIV=REFRESH CONTENT="5; URL=http://uri">
6357 // By the time we are here, the following is true:
6358 // header = "REFRESH"
6359 // content = "5; URL=http://uri" // note the URL attribute is
6360 // optional, if it is absent, the currently loaded url is used.
6361 // Also note that the seconds and URL separator can be either
6362 // a ';' or a ','. The ',' separator should be illegal but CNN
6363 // is using it.
6364 //
6365 // We need to handle the following strings, where
6366 // - X is a set of digits
6367 // - URI is either a relative or absolute URI
6368 //
6369 // Note that URI should start with "url=" but we allow omission
6370 //
6371 // "" || ";" || ","
6372 // empty string. use the currently loaded URI
6373 // and refresh immediately.
6374 // "X" || "X;" || "X,"
6375 // Refresh the currently loaded URI in X seconds.
6376 // "X; URI" || "X, URI"
6377 // Refresh using URI as the destination in X seconds.
6378 // "URI" || "; URI" || ", URI"
6379 // Refresh immediately using URI as the destination.
6380 //
6381 // Currently, anything immediately following the URI, if
6382 // separated by any char in the set "'\"\t\r\n " will be
6383 // ignored. So "10; url=go.html ; foo=bar" will work,
6384 // and so will "10; url='go.html'; foo=bar". However,
6385 // "10; url=go.html; foo=bar" will result in the uri
6386 // "go.html;" since ';' and ',' are valid uri characters.
6387 //
6388 // Note that we need to remove any tokens wrapping the URI.
6389 // These tokens currently include spaces, double and single
6390 // quotes.
6392 // when done, seconds is 0 or the given number of seconds
6393 // uriAttrib is empty or the URI specified
6396 nsAutoCString uriAttrib;
6405 // skip leading whitespace
6411 // skip leading + and -
6415 // parse number
6420 }
6423 // if we started with a '-', number is negative
6427 // skip to next ';' or ','
6430 {
6432 {
6433 // Non-whitespace characters here mean that the string is
6434 // malformed but tolerate sites that specify a decimal point,
6435 // even though meta refresh only works on whole seconds.
6438 {
6439 // The characters between the seconds and the next
6440 // section are just garbage!
6441 // e.g. content="2a0z+,URL=http://www.mozilla.org/"
6442 // Just ignore this redirect.
6444 }
6446 {
6447 // We've had at least one whitespace so tolerate the mistake
6448 // and drop through.
6449 // e.g. content="10 foo"
6452 }
6453 }
6455 }
6457 // skip any remaining whitespace
6461 // skip ';' or ','
6464 }
6466 // skip whitespace
6469 }
6471 // possible start of URI
6474 // skip "url = " to real start of URI
6482 // skip whitespace
6489 // skip whitespace
6493 // found real start of URI
6495 }
6496 }
6497 }
6498 }
6500 // skip a leading '"' or '\''.
6504 {
6507 }
6509 // set iter to start of URI
6512 // tokenStart here points to the beginning of URI
6514 // grab the rest of the URI
6516 {
6520 }
6522 // move iter one back if the last character is a '"' or '\''
6527 }
6529 // URI is whatever's contained from tokenStart to iter.
6530 // note: if tokenStart == doneIterating, so is iter.
6538 }
6541 // NS_NewURI takes care of any whitespace surrounding the URL
6544 }
6546 // No URI or seconds were specified
6548 {
6549 // Do nothing because the alternative is to spin around in a refresh
6550 // loop forever!
6552 }
6571 }
6572 }
6575 // Since we can't travel back in time yet, just pretend
6576 // negative numbers do nothing at all.
6581 }
6582 }
6583 }
6585 }
6588 {
6589 nsresult rv;
6592 nsAutoCString refreshHeader;
6594 refreshHeader);
6609 }
6610 }
6611 }
6613 }
6615 static void
6617 {
6631 }
6632 }
6634 NS_IMETHODIMP
6636 {
6643 }
6645 NS_IMETHODIMP
6647 {
6651 }
6658 }
6660 NS_IMETHODIMP
6662 {
6672 // Replace this timer object with a nsRefreshTimer object.
6682 }
6683 }
6685 // Suspend refresh URIs for our child shells as well.
6691 }
6694 }
6696 NS_IMETHODIMP
6698 {
6701 // Resume refresh URIs for our child shells as well.
6707 }
6710 }
6712 nsresult
6714 {
6726 // This is the nsRefreshTimer object, waiting to be
6727 // setup in a timer object and fired.
6728 // Create the timer and trigger it.
6729 uint32_t delay = static_cast<nsRefreshTimer*>(static_cast<nsITimerCallback*>(refreshInfo))->GetDelay();
6732 // Replace the nsRefreshTimer element in the queue with
6733 // its corresponding timer object, so that in case another
6734 // load comes through before the timer can go off, the timer will
6735 // get cancelled in CancelRefreshURITimer()
6738 }
6739 }
6743 }
6745 //*****************************************************************************
6746 // nsDocShell::nsIContentViewerContainer
6747 //*****************************************************************************
6749 NS_IMETHODIMP
6752 {
6753 // Save the LayoutHistoryState of the previous document, before
6754 // setting up new document
6760 // If we are loading a wyciwyg url from history, change the base URI for
6761 // the document to the original http url that created the document.write().
6762 // This makes sure that all relative urls in a document.written page loaded
6763 // via history work properly.
6769 // Check if the url is wyciwyg
6773 }
6774 // XXX What if SetupNewViewer fails?
6776 // Restore the editing state, if it's stored in session history.
6779 }
6780 // Set history.state
6784 }
6788 // Determine if this type of load should update history
6800 }
6806 }
6808 /* void setIsPrinting (in boolean aIsPrinting); */
6809 NS_IMETHODIMP
6811 {
6814 }
6816 //*****************************************************************************
6817 // nsDocShell::nsIWebProgressListener
6818 //*****************************************************************************
6820 NS_IMETHODIMP
6827 {
6829 }
6831 NS_IMETHODIMP
6834 {
6836 // Save timing statistics.
6840 nsAutoCString aURI;
6847 // We don't update navigation timing for wyciwyg channels
6851 }
6853 // Was the wyciwyg document loaded on this docshell?
6856 // Store the wyciwyg url in session history, only if it is
6857 // being loaded fresh for the first time. We don't want
6858 // multiple entries for successive loads
6869 }
6871 // We're handling parent's load event listener, which causes
6872 // document.write in a subdocument.
6873 // Need to clear the session history for all child
6874 // docshells so that we can handle them like they would
6875 // all be added dynamically.
6884 }
6885 }
6887 // This is a document.write(). Get the made-up url
6888 // from the channel and store it in session history.
6889 // Pass false for aCloneChildren, since we're creating
6890 // a new DOM here.
6894 // Save history state of the previous page
6896 // We'll never get an Embed() for this load, so just go ahead
6897 // and SetHistoryEntry now.
6899 }
6901 }
6902 // Page has begun to load
6906 // Show the progress cursor if the pref is set
6912 }
6913 }
6914 }
6915 }
6917 // Page is loading
6919 }
6921 // Page has finished loading
6924 // Hide the progress cursor if the pref is set
6930 }
6931 }
6932 }
6936 // Is the document stop notification for this document?
6940 }
6941 }
6942 // note that redirect state changes will go through here as well, but it
6943 // is better to handle those in OnRedirectStateChange where more
6944 // information is available.
6946 }
6948 NS_IMETHODIMP
6951 {
6954 }
6956 void
6961 {
6972 }
6976 }
6978 // Below a URI visit is saved (see AddURIVisit method doc).
6979 // The visit chain looks something like:
6980 // ...
6981 // Site N - 1
6982 // => Site N
6983 // (redirect to =>) Site N + 1 (we are here!)
6985 // Get N - 1 and transition type
6992 // 1. Internal redirects are ignored because they are specific to the
6993 // channel implementation.
6994 // 2. POSTs are not saved by global history.
6995 //
6996 // Regardless, we need to propagate the previous visit to the new
6997 // channel.
6999 }
7002 // Treat referrer as null if there is an error getting it.
7006 // Get the HTTP response code, if available.
7011 }
7013 // Add visit N -1 => N
7015 responseStatus);
7017 // Since N + 1 could be the final destination, we will not save N => N + 1
7018 // here. OnNewURI will do that, so we will cache it.
7020 }
7022 // check if the new load should go through the application cache.
7027 // Permission will be checked in the parent process.
7037 mInPrivateBrowsing));
7038 }
7039 }
7040 }
7046 }
7047 }
7049 NS_IMETHODIMP
7053 {
7056 }
7058 NS_IMETHODIMP
7061 {
7064 }
7067 nsresult
7070 {
7083 TimeStamp channelCreationTime;
7088 channelCreationTime);
7093 }
7094 }
7096 // Timing is picked up by the window, we don't need it anymore
7099 // clean up reload state for meta charset
7102 else
7105 // Save a pointer to the currently-loading history entry.
7106 // nsDocShell::EndPageLoad will clear mLSHE, but we may need this history
7107 // entry further down in this method.
7110 //
7111 // one of many safeguards that prevent death and destruction if
7112 // someone is so very very rude as to bring this window down
7113 // during this load handler.
7114 //
7117 // Notify the ContentViewer that the Document has finished loading. This
7118 // will cause any OnLoad(...) and PopState(...) handlers to fire.
7126 // If all documents have completed their loading
7127 // favor native event dispatch priorities
7128 // over performance
7130 // Hint to use normal native event dispatch priorities
7132 }
7133 }
7134 /* Check if the httpChannel has any cache-control related response headers,
7135 * like no-store, no-cache. If so, update SHEntry so that
7136 * when a user goes back/forward to this page, we appropriately do
7137 * form value restoration or load from server.
7138 */
7144 // figure out if SH should be saving layout state.
7149 }
7151 // Clear mLSHE after calling the onLoadHandlers. This way, if the
7152 // onLoadHandler tries to load something different in
7153 // itself or one of its children, we can deal with it appropriately.
7157 // Clear the mLSHE reference to indicate document loading is done one
7158 // way or another.
7160 }
7161 // if there's a refresh header in the channel, this method
7162 // will set it up for us.
7165 // Test whether this is the top frame or a subframe
7171 }
7173 //
7174 // If the page load failed, then deal with the error condition...
7175 // Errors are handled as follows:
7176 // 1. Check to see if it's a file not found error or bad content
7177 // encoding error.
7178 // 2. Send the URI to a keyword server (if enabled)
7179 // 3. If the error was DNS failure, then add www and .com to the URI
7180 // (if appropriate).
7181 // 4. Throw an error dialog box...
7182 //
7189 }
7191 // Handle iframe document not loading error because source was
7192 // a tracking URL. We make a note of this iframe node by including
7193 // it in a dedicated array of blocked tracking nodes under its parent
7194 // document. (document of parent window of blocked document)
7196 // frameElement is our nsIContent to be annotated
7201 }
7206 }
7208 // Parent window
7213 }
7219 }
7225 }
7228 //
7229 // Try and make an alternative URI from the old one
7230 //
7234 nsAutoCString oldSpec;
7237 //
7238 // First try keyword fixup
7239 //
7244 nsAutoCString host;
7247 nsAutoCString scheme;
7252 // we should only perform a keyword search under the following
7253 // conditions:
7254 // (0) Pref keyword.enabled is true
7255 // (1) the url scheme is http (or https)
7256 // (2) the url does not have a protocol scheme
7257 // If we don't enforce such a policy, then we end up doing
7258 // keyword searchs on urls we don't intend like imap, file,
7259 // mailbox, etc. This could lead to a security problem where we
7260 // send data to the keyword server that we shouldn't be.
7261 // Someone needs to clean up keywords in general so we can
7262 // determine on a per url basis if we want keywords
7263 // enabled...this is just a bandaid...
7267 }
7270 // only send non-qualified hosts to the keyword server
7275 }
7277 //
7278 // If this string was passed through nsStandardURL by
7279 // chance, then it may have been converted from UTF-8 to
7280 // ACE, which would result in a completely bogus keyword
7281 // query. Here we try to recover the original Unicode
7282 // value, but this is not 100% correct since the value may
7283 // have been normalized per the IDN normalization rules.
7284 //
7285 // Since we don't have access to the exact original string
7286 // that was entered by the user, this will just have to do.
7288 nsAutoCString utf8Host;
7301 }
7302 }
7304 }
7306 //
7307 // Now try change the address, e.g. turn http://foo into
7308 // http://www.foo.com
7309 //
7314 // Skip fixup for anything except a normal document load
7315 // operation on the topframe.
7319 }
7321 // Test if keyword lookup produced a new URI or not
7326 // Keyword lookup made a new URI so no need to try
7327 // an alternate one.
7329 }
7330 }
7331 }
7339 }
7340 }
7342 // Did we make a new URI that is different to the old one? If so
7343 // load it.
7344 //
7346 // Make sure the new URI is different from the old one,
7347 // otherwise there's little point trying to load it again.
7351 nsAutoCString newSpec;
7360 }
7361 }
7362 }
7364 // Well, fixup didn't work :-(
7365 // It is time to throw an error dialog box, and be done with it...
7367 // Errors to be shown only on top-level frames
7374 }
7375 // Errors to be shown for any frame
7389 }
7391 // Non-caching channels will simply return NS_ERROR_OFFLINE.
7392 // Caching channels would have to look at their flags to work
7393 // out which error to return. Or we can fix up the error here.
7397 }
7401 }
7404 }
7407 //*****************************************************************************
7408 // nsDocShell: Content Viewer Management
7409 //*****************************************************************************
7411 NS_IMETHODIMP
7413 {
7430 }
7431 }
7432 }
7441 "Should have doc if CreateAboutBlankContentViewer "
7445 }
7448 }
7450 nsresult
7454 {
7459 /* mCreatingDocument should never be true at this point. However, it's
7460 a theoretical possibility. We want to know about it and make it stop,
7461 and this sounds like a job for an assertion. */
7469 // mContentViewer->PermitUnload may release |this| docshell.
7472 // Make sure timing is created. But first record whether we had it
7473 // already, so we don't clobber the timing for an in-progress load.
7477 // We've got a content viewer already. Make sure the user
7478 // permits us to discard the current document and replace it
7479 // with about:blank. And also ensure we fire the unload events
7480 // in the current document.
7482 // Unload gets fired first for
7483 // document loaded from the session history.
7490 // The user chose not to unload the page, interrupt the load.
7492 }
7499 }
7501 // Make sure to blow away our mLoadingURI just in case. No loads
7502 // from inside this pagehide.
7505 // Stop any in-progress loading, so that we don't accidentally trigger any
7506 // PageShow notifications from Embed() interrupting our loading below.
7509 // Notify the current document that it is about to be unloaded!!
7510 //
7511 // It is important to fire the unload() notification *before* any state
7512 // is changed within the DocShell - otherwise, javascript will get the
7513 // wrong information :-(
7514 //
7516 }
7518 // Now make sure we don't think we're in the middle of firing unload after
7519 // this point. This will make us fire unload when the about:blank document
7520 // unloads... but that's ok, more or less. Would be nice if it fired load
7521 // too, of course.
7534 }
7535 // generate (about:blank) document to load
7539 // Hack: set the base URI manually, since this document never
7540 // got Reset() with a channel.
7545 // Copy our sandbox flags to the document. These are immutable
7546 // after being set here.
7549 // create a content viewer for us and the new document
7553 // hook 'em up
7561 }
7562 }
7563 }
7565 // The transient about:blank viewer doesn't have a session history entry.
7568 // Clear out our mTiming like we would in EndPageLoad, if we didn't
7569 // have one before entering this function.
7572 }
7575 }
7577 NS_IMETHODIMP
7579 {
7581 }
7583 bool
7587 {
7596 }
7598 // Only save presentation for "normal" loads and link loads. Anything else
7599 // probably wants to refetch the page, so caching the old presentation
7600 // would be incorrect.
7609 // If the session history entry has the saveLayoutState flag set to false,
7610 // then we should not cache the presentation.
7616 // If the document is not done loading, don't cache it.
7623 // Avoid doing the work of saving the presentation state in the case where
7624 // the content viewer cache is disabled.
7628 // Don't cache the content viewer if we're in a subframe and the subframe
7629 // pref is disabled.
7638 }
7639 }
7641 // If the document does not want its presentation cached, then don't.
7644 }
7646 void
7648 {
7659 #ifdef DEBUG
7660 nsresult rv =
7661 #endif
7664 }
7665 }
7667 void
7669 {
7671 // If there's nothing to detach, or if the editor data is actually set
7672 // up for the _new_ page that's coming in, don't detach.
7674 }
7683 // Make mOSHE hold the owning ref to the editor data.
7686 else
7688 }
7690 #ifdef DEBUG
7691 {
7696 }
7698 }
7700 nsresult
7702 {
7704 // No entry to save into, or we're replacing the existing entry.
7706 }
7714 #ifdef DEBUG_PAGE_CACHE
7717 nsAutoCString spec;
7722 #endif
7727 // Suspend refresh URIs and save off the timer queue
7731 // Capture the current content viewer bounds.
7733 nsIntRect bounds;
7737 }
7739 // Capture the docshell hierarchy.
7748 }
7751 }
7753 NS_IMETHODIMP
7755 {
7759 }
7761 NS_IMETHODIMP
7763 {
7764 nsresult rv;
7770 }
7772 // Dispatch events for restoring the presentation. We try to simulate
7773 // the progress notifications loading the document would cause, so we add
7774 // the document's channel to the loadgroup to initiate stateChange
7775 // notifications.
7787 }
7788 }
7791 // This point corresponds to us having gotten OnStartRequest or
7792 // STATE_START, so do the same thing that CreateContentViewer does at
7793 // this point to ensure that unload/pagehide events for this document
7794 // will fire when it's unloaded again.
7797 // For non-top frames, there is no notion of making sure that the
7798 // previous document is in the domwindow when STATE_START notifications
7799 // happen. We can just call BeginRestore for all of the child shells
7800 // now.
7803 }
7806 }
7808 nsresult
7810 {
7817 }
7818 }
7820 }
7822 NS_IMETHODIMP
7824 {
7825 // First we call finishRestore() on our children. In the simulated load,
7826 // all of the child frames finish loading before the main document.
7833 }
7834 }
7838 }
7842 // Finally, we remove the request from the loadgroup. This will
7843 // cause onStateChange(STATE_STOP) to fire, which will fire the
7844 // pageshow event to the chrome.
7851 }
7852 }
7855 }
7857 NS_IMETHODIMP
7859 {
7862 }
7864 nsresult
7866 {
7873 #ifdef DEBUG_PAGE_CACHE
7877 nsAutoCString spec;
7880 #endif
7885 #ifdef DEBUG_PAGE_CACHE
7887 #endif
7889 }
7891 // We need to make sure the content viewer's container is this docshell.
7892 // In subframe navigation, it's possible for the docshell that the
7893 // content viewer was originally loaded into to be replaced with a
7894 // different one. We don't currently support restoring the presentation
7895 // in that case.
7900 #ifdef DEBUG_PAGE_CACHE
7902 #endif
7905 }
7909 #ifdef DEBUG_PAGE_CACHE
7911 #endif
7915 // Add the request to our load group. We do this before swapping out
7916 // the content viewers so that consumers of STATE_START can access
7917 // the old document. We only deal with the toplevel load at this time --
7918 // to be consistent with normal document loading, subframes cannot start
7919 // loading until after data arrives, which is after STATE_START completes.
7923 // Post an event that will remove the request after we've returned
7924 // to the event loop. This mimics the way it is called by nsIChannel
7925 // implementations.
7927 // Revoke any pending restore (just in case)
7936 // The rest of the restore processing will happen on our event
7937 // callback.
7939 }
7942 }
7944 nsresult
7946 {
7949 // This section of code follows the same ordering as CreateContentViewer.
7959 // We determined that it was safe to cache the document presentation
7960 // at the time we initiated the new load. We need to check whether
7961 // it's still safe to do so, since there may have been DOM mutations
7962 // or new requests initiated.
7970 }
7983 }
7985 // Protect against mLSHE going away via a load triggered from
7986 // pagehide or unload.
7989 // Make sure to blow away our mLoadingURI just in case. No loads
7990 // from inside this pagehide.
7993 // Notify the old content viewer that it's being hidden.
7996 // If mLSHE was changed as a result of the pagehide event, then
7997 // something else was loaded. Don't finish restoring.
8001 // Set mFiredUnloadEvent = false so that the unload handler for the
8002 // *new* document will fire.
8013 #ifdef DEBUG_PAGE_CACHE
8015 mLoadedTransIndex);
8016 #endif
8017 }
8019 // Rather than call Embed(), we will retrieve the viewer from the session
8020 // history entry and swap it in.
8021 // XXX can we refactor this so that we can just call Embed()?
8023 nsresult rv;
8028 }
8030 }
8031 }
8035 // In cases where we use a transient about:blank viewer between loads,
8036 // we never show the transient viewer, so _its_ previous viewer is never
8037 // unhooked from the view hierarchy. Destroy any such previous viewer now,
8038 // before we grab the root view sibling, so that we don't grab a view
8039 // that's about to go away.
8047 }
8048 }
8050 // Save off the root view's parent and sibling so that we can insert the
8051 // new content viewer's root view at the same position. Also save the
8052 // bounds of the root view's widget.
8068 }
8069 }
8070 }
8077 }
8081 }
8083 // Transfer ownership to mContentViewer. By ensuring that either the
8084 // docshell or the session history, but not both, have references to the
8085 // content viewer, we prevent the viewer from being torn down after
8086 // Destroy() is called.
8091 }
8093 // We don't plan to save a viewer in mOSHE; tell it to drop
8094 // any other state it's holding.
8096 }
8098 // Order the mContentViewer setup just like Embed does.
8101 // Now that we're about to switch documents, forget all of our children.
8102 // Note that we cached them as needed up in CaptureState above.
8107 // Grab all of the related presentation from the SHEntry now.
8108 // Clearing the viewer from the SHEntry will clear all of this state.
8123 child) {
8125 }
8127 // get the previous content viewer size
8131 // Restore the refresh URI list. The refresh timers will be restarted
8132 // when EndPageLoad() is called.
8136 // Reattach to the window object.
8141 // Hack to keep nsDocShellEditorData alive across the
8142 // SetContentViewer(nullptr) call below.
8145 // Now remove it from the cached presentation.
8151 #ifdef DEBUG
8152 {
8159 }
8160 #endif
8162 // Restore the sticky state of the viewer. The viewer has set this state
8163 // on the history entry in Destroy() just before marking itself non-sticky,
8164 // to avoid teardown of the presentation.
8169 // mLSHE is now our currently-loaded document.
8172 // XXX special wyciwyg handling in Embed()?
8174 // We aren't going to restore any items from the LayoutHistoryState,
8175 // but we don't want them to stay around in case the page is reloaded.
8178 // This is the end of our Embed() replacement
8183 // Tell the event loop to favor plevents over user events, see comments
8184 // in CreateContentViewer.
8194 }
8206 }
8208 // Ick, it'd be nicer to not rewalk all of the subdocs here.
8212 }
8217 }
8218 }
8219 }
8221 // Use the uri from the mLSHE we had when we entered this function
8222 // (which need not match the document's URI if anchors are involved),
8223 // since that's the history entry we're loading. Note that if we use
8224 // origLSHE we don't have to worry about whether the entry in question
8225 // is still mLSHE or whether it's now mOSHE.
8229 }
8231 // This is the end of our CreateContentViewer() replacement.
8232 // Now we simulate a load. First, we restore the state of the javascript
8233 // window object.
8240 // Now, dispatch a title change event which would happen as the
8241 // <head> is parsed.
8244 // Now we simulate appending child docshells for subframes.
8249 // Make sure to not clobber the state of the child. Since AddChild
8250 // always clobbers it, save it off first.
8276 // this.AddChild(child) calls child.SetDocLoaderParent(this), meaning
8277 // that the child inherits our state. Among other things, this means
8278 // that the child inherits our mIsActive and mInPrivateBrowsing, which
8279 // is what we want.
8294 }
8298 // We may be displayed on a different monitor (or in a different
8299 // HiDPI mode) than when we got into the history list. So we need
8300 // to check if this has happened. See bug 838239.
8302 // Because the prescontext normally handles resolution changes via
8303 // a runnable (see nsPresContext::UIResolutionChanged), its device
8304 // context won't be -immediately- updated as a result of calling
8305 // shell->BackingScaleFactorChanged().
8307 // But we depend on that device context when adjusting the view size
8308 // via mContentViewer->SetBounds(newBounds) below. So we need to
8309 // explicitly tell it to check for changed resolution here.
8312 }
8317 // Insert the new root view at the correct location in the view tree.
8321 }
8328 }
8332 // InsertChild(parent, child, sib, true) inserts the child after
8333 // sib in content order, which is before sib in view order. BUT
8334 // when sib is null it inserts at the end of the the document
8335 // order, i.e., first in view order. But when oldRootSibling is
8336 // null, the old root as at the end of the view list --- last in
8337 // content order --- and we want to call InsertChild(parent, child,
8338 // nullptr, false) in that case.
8340 rootViewSibling,
8345 }
8346 }
8348 // If parent is suspended, increase suspension count.
8349 // This can't be done as early as event suppression since this
8350 // depends on docshell tree.
8353 }
8355 // Now that all of the child docshells have been put into place, we can
8356 // restart the timers for the window and all of the child frames.
8359 // Restore the refresh URI list. The refresh timers will be restarted
8360 // when EndPageLoad() is called.
8363 // Meta-refresh timers have been restarted for this shell, but not
8364 // for our children. Walk the child shells and restart their timers.
8370 }
8372 // Make sure this presentation is the same size as the previous
8373 // presentation. If this is not the same size we showed it at last time,
8374 // then we need to resize the widget.
8376 // XXXbryner This interacts poorly with Firefox's infobar. If the old
8377 // presentation had the infobar visible, then we will resize the new
8378 // presentation to that smaller size. However, firing the locationchanged
8379 // event will hide the infobar, which will immediately resize the window
8380 // back to the larger size. A future optimization might be to restore
8381 // the presentation at the "wrong" size, then fire the locationchanged
8382 // event and check whether the docshell's new size is the same as the
8383 // cached viewer size (skipping the resize if they are equal).
8387 #ifdef DEBUG_PAGE_CACHE
8390 #endif
8397 }
8398 }
8399 }
8401 // The FinishRestore call below can kill these, null them out so we don't
8402 // have invalid pointer lying around.
8406 // Simulate the completion of the load.
8409 // Restart plugins, and paint the content.
8412 }
8415 }
8417 NS_IMETHODIMP
8421 {
8424 // Can we check the content type of the current content viewer
8425 // and reuse it without destroying it and re-creating it?
8429 // Instantiate the content viewer object
8437 // Notify the current document that it is about to be unloaded!!
8438 //
8439 // It is important to fire the unload() notification *before* any state
8440 // is changed within the DocShell - otherwise, javascript will get the
8441 // wrong information :-(
8442 //
8445 // We determined that it was safe to cache the document presentation
8446 // at the time we initiated the new load. We need to check whether
8447 // it's still safe to do so, since there may have been DOM mutations
8448 // or new requests initiated.
8453 }
8460 }
8464 // Set mFiredUnloadEvent = false so that the unload handler for the
8465 // *new* document will fire.
8468 // we've created a new document so go ahead and call
8469 // OnLoadingSite(), but don't fire OnLocationChange()
8470 // notifications before we've called Embed(). See bug 284993.
8474 // We need to set the SH entry and our current URI here and not
8475 // at the moment we load the page. We want the same behavior
8476 // of Stop() as for a normal page load. See bug 514232 for details.
8478 // Revert mLoadType to load type to state the page load failed,
8479 // following function calls need it.
8487 }
8489 // Make sure we have a URI to set currentURI.
8493 }
8497 }
8499 // We need a URI object to store a session history entry, so make up a URI
8501 }
8503 // When we don't have failedURI, something wrong will happen. See
8504 // bug 291876.
8510 // Create an shistory entry for the old load.
8518 LOCATION_CHANGE_ERROR_PAGE);
8519 }
8520 }
8522 // Be sure to have a correct mLSHE, it may have been cleared by
8523 // EndPageLoad. See bug 302115.
8531 }
8534 }
8538 // let's try resetting the load group if we need to...
8542 NS_ERROR_FAILURE);
8547 //Cancel any URIs that are currently loading...
8548 /// XXX: Need to do this eventually Stop();
8549 //
8550 // Retarget the document to this loadgroup...
8551 //
8552 /* First attach the channel to the right loadgroup
8553 * and then remove from the old loadgroup. This
8554 * puts the notifications in the right order and
8555 * we don't null-out mLSHE in OnStateChange() for
8556 * all redirected urls
8557 */
8560 // Mark the channel as being a document URI...
8569 NS_BINDING_RETARGETED);
8571 // Update the notification callbacks, so that progress and
8572 // status information are sent to the right docshell...
8574 }
8577 NS_ERROR_FAILURE);
8583 // if this document is part of a multipart document,
8584 // the ID can be used to distinguish it from the other parts.
8594 }
8595 }
8596 }
8598 // Give hint to native plevent dispatch mechanism. If a document
8599 // is loading the native plevent dispatch mechanism should favor
8600 // performance over normal native event dispatch priorities.
8602 // Hint to favor performance for the plevent notification mechanism.
8603 // We want the pages to load as fast as possible even if its means
8604 // native messages might be starved.
8606 }
8610 }
8613 }
8615 nsresult
8620 {
8627 }
8629 // Now create an instance of the content viewer
8630 // nsLayoutDLF makes the determination if it should be a "view-source" instead of "view"
8632 aOpenedChannel,
8636 aContentHandler,
8637 aViewer);
8642 }
8644 NS_IMETHODIMP
8646 {
8647 //
8648 // Copy content viewer state from previous or parent content viewer.
8649 //
8650 // The following logic is mirrored in nsHTMLDocument::StartDocumentLoad!
8651 //
8652 // Do NOT to maintain a reference to the old content viewer outside
8653 // of this "copying" block, or it will not be destroyed until the end of
8654 // this routine and all <SCRIPT>s and event handlers fail! (bug 20315)
8655 //
8656 // In this block of code, if we get an error result, we return it
8657 // but if we get a null pointer, that's perfectly legal for parent
8658 // and parentContentViewer.
8659 //
8666 // This will get the size from the current content viewer or from the
8667 // Init settings
8672 NS_ERROR_FAILURE);
8675 nsAutoCString forceCharset;
8676 nsAutoCString hintCharset;
8682 // |newMUDV| also serves as a flag to set the data from the above vars
8688 // Get any interesting state from old content viewer
8689 // XXX: it would be far better to just reuse the document viewer ,
8690 // since we know we're just displaying the same document as before
8693 // Tell the old content viewer to hibernate in session history when
8694 // it is destroyed.
8699 }
8701 }
8702 }
8704 // No old content viewer, so get state from parent's content viewer
8706 }
8713 NS_ERROR_FAILURE);
8716 NS_ERROR_FAILURE);
8719 NS_ERROR_FAILURE);
8722 NS_ERROR_FAILURE);
8725 NS_ERROR_FAILURE);
8728 NS_ERROR_FAILURE);
8731 NS_ERROR_FAILURE);
8732 }
8733 }
8734 }
8737 // Ensure that the content viewer is destroyed *after* the GC - bug 71515
8740 // Stop any activity that may be happening in the old document before
8741 // releasing it...
8744 // Try to extract the canvas background color from the old
8745 // presentation shell, so we can use it for the next document.
8751 }
8755 }
8757 // We don't plan to save a viewer in mOSHE; tell it to drop
8758 // any other state it's holding.
8760 }
8764 // Now that we're about to switch documents, forget all of our children.
8765 // Note that we cached them as needed up in CaptureState above.
8781 }
8783 // If we have old state to copy, set the old state onto the new content
8784 // viewer
8787 NS_ERROR_FAILURE);
8789 NS_ERROR_FAILURE);
8792 NS_ERROR_FAILURE);
8794 NS_ERROR_FAILURE);
8796 NS_ERROR_FAILURE);
8798 NS_ERROR_FAILURE);
8800 NS_ERROR_FAILURE);
8801 }
8803 // Stuff the bgcolor from the old pres shell into the new
8804 // pres shell. This improves page load continuity.
8810 }
8812 // XXX: It looks like the LayoutState gets restored again in Embed()
8813 // right after the call to SetupNewViewer(...)
8815 // We don't show the mContentViewer yet, since we want to draw the old page
8816 // until we have enough of the new page to show. Just return with the new
8817 // viewer still set to hidden.
8820 }
8822 nsresult
8824 {
8834 // If shEntry is null, just set the document's state object to null.
8835 }
8837 // It's OK for scContainer too be null here; that just means there's no
8838 // state data associated with this history entry.
8842 }
8844 nsresult
8846 {
8847 // This method checks whether the caller may load content into
8848 // this docshell. Even though we've done our best to hide windows
8849 // from code that doesn't have the right to access them, it's
8850 // still possible for an evil site to open a window and access
8851 // frames in the new window through window.frames[] (which is
8852 // allAccess for historic reasons), so we still need to do this
8853 // check on load.
8857 // Origin validation was turned off, or we're not a frame.
8858 // Permit all loads.
8861 }
8863 // Note - The check for a current JSContext here isn't necessarily sensical.
8864 // It's just designed to preserve the old semantics during a mass-conversion
8865 // patch.
8868 // Check if the caller is from the same origin as this docshell,
8869 // or any of its ancestors.
8878 }
8881 // Same origin, permit load
8883 }
8891 }
8893 //*****************************************************************************
8894 // nsDocShell: Site Loading
8895 //*****************************************************************************
8896 namespace
8897 {
8899 #ifdef MOZ_PLACES
8900 // Callback used by CopyFavicon to inform the favicon service that one URI
8901 // (mNewURI) has the same favicon URI (OnComplete's aFaviconURI) as another.
8903 {
8905 NS_DECL_ISUPPORTS
8910 {
8911 }
8913 NS_IMETHODIMP
8916 {
8917 // Continue only if there is an associated favicon.
8920 }
8930 mInPrivateBrowsing ?
8934 }
8941 };
8944 #endif
8946 // Tell the favicon service that aNewURI has the same favicon as aOldURI.
8948 {
8949 #ifdef MOZ_PLACES
8956 }
8957 #endif
8958 }
8963 {
8985 {
8986 // Make sure to keep null things null as needed
8989 }
8990 }
8999 }
9003 // Use IDL strings so .get() returns null by default
9004 nsXPIDLString mWindowTarget;
9005 nsXPIDLCString mTypeHint;
9006 nsString mSrcdoc;
9020 };
9022 /**
9023 * Returns true if we started an asynchronous load (i.e., from the network), but
9024 * the document we're loading there hasn't yet become this docshell's active
9025 * document.
9026 *
9027 * When JustStartedNetworkLoad is true, you should be careful about modifying
9028 * mLoadType and mLSHE. These are both set when the asynchronous load first
9029 * starts, and the load expects that, when it eventually runs InternalLoad,
9030 * mLoadType and mLSHE will have their original values.
9031 */
9032 bool
9034 {
9037 }
9039 NS_IMETHODIMP
9057 {
9061 #ifdef PR_LOGGING
9063 nsAutoCString spec;
9067 }
9068 #endif
9069 // Initialize aDocShell/aRequest
9072 }
9075 }
9079 }
9085 // wyciwyg urls can only be loaded through history. Any normal load of
9086 // wyciwyg through docshell is illegal. Disallow such loads.
9092 }
9097 }
9099 //
9100 // First, notify any nsIContentPolicy listeners about the document load.
9101 // Only abort the load if a content policy listener explicitly vetos it!
9102 //
9104 // Use nsPIDOMWindow since we _want_ to cross the chrome boundary if needed
9116 // Locate the target DocShell.
9123 // If the targetDocShell doesn't exist, then this is a new docShell
9124 // and we should consider this a TYPE_DOCUMENT load
9127 // If the targetDocShell and the rootDocShell are the same, then the
9128 // targetDocShell is the top level document and hence we should
9129 // consider this TYPE_DOCUMENT
9139 }
9140 }
9141 }
9147 }
9152 }
9154 // XXXbz would be nice to know the loading principal here... but we don't
9163 }
9166 aURI,
9167 loadingPrincipal,
9168 context,
9176 }
9179 }
9182 //
9183 // Get an owner from the current document if necessary. Note that we only
9184 // do this for URIs that inherit a security context and local file URIs;
9185 // in particular we do NOT do this for about:blank. This way, random
9186 // about:blank loads that have no owner (which basically means they were
9187 // done by someone from chrome manually messing with our nsIWebNavigation
9188 // or by C++ setting document.location) don't get a funky principal. If
9189 // callers want something interesting to happen with the about:blank
9190 // principal in this case, they should pass an owner in.
9191 //
9192 {
9194 // One more twist: Don't inherit the owner for external loads.
9199 inherits) {
9202 }
9203 }
9205 // Don't allow loads that would inherit our security context
9206 // if this document came from an unsafe channel.
9207 {
9209 // This condition needs to match the one in
9210 // nsContentUtils::SetUpChannelOwner.
9211 // Except we reverse the rv check to be safe in case
9212 // nsContentUtils::URIInheritsSecurityContext fails here and
9213 // succeeds there.
9223 isUnsafe) {
9225 }
9231 }
9232 }
9234 //
9235 // Resolve the window target before going any further...
9236 // If the load has been targeted to another DocShell, then transfer the
9237 // load to it...
9238 //
9240 // We've already done our owner-inheriting. Mask out that bit, so we
9241 // don't try inheriting an owner from the target window if we came up
9242 // with a null owner above.
9247 // If the docshell's document is sandboxed, only open a new window
9248 // if the document's SANDBOXED_AUXILLARY_NAVIGATION flag is not set.
9249 // (i.e. if allow-popups is specified)
9258 }
9259 }
9266 nsAutoCString spec;
9274 // In some cases the Open call doesn't actually result in a new
9275 // window being opened. We can detect these cases by examining the
9276 // document in |newWin|, if any.
9284 // set opener object to null for noreferrer
9287 }
9288 }
9289 }
9293 }
9295 //
9296 // Transfer the load to the target DocShell... Pass nullptr as the
9297 // window target name from to prevent recursive retargeting!
9298 //
9301 aReferrer,
9302 owner,
9303 aFlags,
9305 aTypeHint,
9307 aPostData,
9308 aHeadersData,
9309 aLoadType,
9310 aSHEntry,
9311 aFirstParty,
9312 aSrcdoc,
9313 aSourceDocShell,
9314 aBaseURI,
9315 aDocShell,
9316 aRequest);
9318 // XXXbz except we never reach this code!
9320 //
9321 // At this point, a new window has been created, but the
9322 // URI did not have any data associated with it...
9323 //
9324 // So, the best we can do, is to tear down the new window
9325 // that was just created!
9326 //
9330 }
9331 }
9332 //
9333 // NS_ERROR_NO_CONTENT should not be returned to the
9334 // caller... This is an internal error code indicating that
9335 // the URI had no data associated with it - probably a
9336 // helper-app style protocol (ie. mailto://)
9337 //
9339 }
9341 // XXX: Once new windows are created hidden, the new
9342 // window will need to be made visible... For now,
9343 // do nothing.
9344 }
9345 }
9347 // Else we ran out of memory, or were a popup and got blocked,
9348 // or something.
9351 }
9353 //
9354 // Load is being targetted at this docshell so return an error if the
9355 // docshell is in the process of being destroyed.
9356 //
9359 }
9366 }
9373 // If this is a replace load, make whatever load triggered
9374 // the unload event also a replace load, so we don't
9375 // create extra history entries.
9378 }
9380 // Do this asynchronously
9387 }
9389 // Just ignore this load attempt
9391 }
9393 // If a source docshell has been passed, check to see if we are sandboxed
9394 // from it as the result of an iframe or CSP sandbox.
9397 }
9399 // If this docshell is owned by a frameloader, make sure to cancel
9400 // possible frameloader initialization before loading a new page.
9406 }
9407 }
9409 // Before going any further vet loads initiated by external programs.
9411 // Disallow external chrome: loads targetted at content windows
9416 }
9418 // clear the decks to prevent context bleed-through (bug 298255)
9423 // reset loadType so we don't have to add lots of tests for
9424 // LOAD_NORMAL_EXTERNAL after this point
9426 }
9428 mAllowKeywordFixup =
9439 // Split currentURI and aURI on the '#' character. Make sure we read
9440 // the return values of SplitURIAtHash; if it fails, we don't want to
9441 // allow a short-circuited navigation.
9447 NS_ERROR_FAILURE;
9456 // Maybe aURI came from the exposable form of currentURI?
9465 }
9469 // We're doing a history load.
9473 #ifdef DEBUG
9479 }
9480 #endif
9481 }
9483 // A short-circuited load happens when we navigate between two SHEntries
9484 // for the same document. We do a short-circuited load under two
9485 // circumstances. Either
9486 //
9487 // a) we're navigating between two different SHEntries which share a
9488 // document, or
9489 //
9490 // b) we're navigating to a new shentry whose URI differs from the
9491 // current URI only in its hash, the new hash is non-empty, and
9492 // we're not doing a POST.
9493 //
9494 // The restriction tha the SHEntries in (a) must be different ensures
9495 // that history.go(0) and the like trigger full refreshes, rather than
9496 // short-circuited loads.
9503 // Save the position of the scrollers.
9508 // Reset mLoadType to its original value once we exit this block,
9509 // because this short-circuited load might have started after a
9510 // normal, network load, and we don't want to clobber its load type.
9511 // See bug 737307.
9514 // If a non-short-circuit load (i.e., a network load) is pending,
9515 // make this a replacement load, so that we don't add a SHEntry here
9516 // and the network load goes into the SHEntry it expects to.
9519 }
9522 }
9528 /* we need to assign mLSHE to aSHEntry right here, so that on History loads,
9529 * SetCurrentURI() called from OnNewURI() will send proper
9530 * onLocationChange() notifications to the browser to update
9531 * back/forward buttons.
9532 */
9535 /* This is a anchor traversal with in the same page.
9536 * call OnNewURI() so that, this traversal will be
9537 * recorded in session and global history.
9538 */
9542 }
9543 // Pass true for aCloneSHChildren, since we're not
9544 // changing documents here, so all of our subframes are
9545 // still relevant to the new session history entry.
9546 //
9547 // It also makes OnNewURI(...) set LOCATION_CHANGE_SAME_DOCUMENT
9548 // flag on firing onLocationChange(...).
9549 // Anyway, aCloneSHChildren param is simply reflecting
9550 // doShortCircuitedLoad in this scope.
9557 /* save current position of scroller(s) (bug 59774) */
9559 // Get the postdata and page ident from the current page, if
9560 // the new load is being done via normal means. Note that
9561 // "normal means" can be checked for just by checking for
9562 // LOAD_CMD_NORMAL, given the loadType and allowScroll check
9563 // above -- it filters out some LOAD_CMD_NORMAL cases that we
9564 // wouldn't want here.
9569 // Link our new SHEntry to the old SHEntry's back/forward
9570 // cache data, since the two SHEntries correspond to the
9571 // same document.
9574 }
9575 }
9577 /* Assign mOSHE to mLSHE. This will either be a new entry created
9578 * by OnNewURI() for normal loads or aSHEntry for history loads.
9579 */
9582 // Save the postData obtained from the previous page
9583 // in to the session history entry created for the
9584 // anchor page, so that any history load of the anchor
9585 // page will restore the appropriate postData.
9589 // Make sure we won't just repost without hitting the
9590 // cache first
9593 }
9595 /* Restore the original LSHE if we were loading something
9596 * while short-circuited load was initiated.
9597 */
9599 /* Set the title for the SH entry for this target url. so that
9600 * SH menus in go/back/forward buttons won't be empty for this.
9601 */
9610 }
9612 /* Set the title for the Global History entry for this anchor url.
9613 */
9618 }
9621 }
9622 }
9624 // Set the doc's URI according to the new history entry's URI.
9631 // Inform the favicon service that the favicon for oldURI also
9632 // applies to aURI.
9638 // ScrollToAnchor doesn't necessarily cause us to scroll the window;
9639 // the function decides whether a scroll is appropriate based on the
9640 // arguments it receives. But even if we don't end up scrolling,
9641 // ScrollToAnchor performs other important tasks, such as informing
9642 // the presShell that we have a new hash. See bug 680257.
9646 /* restore previous position of scroller(s), if we're moving
9647 * back in history (bug 59774)
9648 */
9654 }
9656 // Dispatch the popstate and hashchange events, as appropriate.
9657 //
9658 // The event dispatch below can cause us to re-enter script and
9659 // destroy the docshell, nulling out mScriptGlobal. Hold a stack
9660 // reference to avoid null derefs. See bug 914521.
9662 // Fire a hashchange event URIs differ, and only in their hashes.
9667 }
9670 // Note that currentURI hasn't changed because it's on the
9671 // stack, so we can just use it directly as the old URI.
9673 }
9674 }
9677 }
9678 }
9680 // mContentViewer->PermitUnload can destroy |this| docShell, which
9681 // causes the next call of CanSavePresentation to crash.
9682 // Hold onto |this| until we return, to prevent a crash from happening.
9683 // (bug#331040)
9686 // Don't init timing for javascript:, since it generally doesn't
9687 // actually start a load or anything. If it does, we'll init
9688 // timing then, from OnStateChange.
9690 // XXXbz mTiming should know what channel it's for, so we don't
9691 // need this hackery. Note that this is still broken in cases
9692 // when we're loading something that's not javascript: and the
9693 // beforeunload handler denies the load. That will screw up
9694 // timing for the next load!
9697 }
9701 }
9702 // Check if the page doesn't want to be unloaded. The javascript:
9703 // protocol handler deals with this for javascript: URLs.
9709 // The user chose not to unload the page, interrupt the
9710 // load.
9712 }
9713 }
9717 }
9719 // Check for saving the presentation here, before calling Stop().
9720 // This is necessary so that we can catch any pending requests.
9721 // Since the new request has not been created yet, we pass null for the
9722 // new request parameter.
9723 // Also pass nullptr for the document, since it doesn't affect the return
9724 // value for our purposes here.
9727 // Don't stop current network activity for javascript: URL's since
9728 // they might not result in any data, and thus nothing should be
9729 // stopped in those cases. In the case where they do result in
9730 // data, the javascript: URL channel takes care of stopping
9731 // current network activity.
9733 // Stop any current network activity.
9734 // Also stop content if this is a zombie doc. otherwise
9735 // the onload will be delayed by other loads initiated in the
9736 // background by the first document that
9737 // didn't fully load before the next load was initiated.
9738 // If not a zombie, don't stop content until data
9739 // starts arriving from the new URI...
9744 }
9751 }
9755 }
9759 // mLSHE should be assigned to aSHEntry, only after Stop() has
9760 // been called. But when loading an error page, do not clear the
9761 // mLSHE for the real page.
9767 // If we have a saved content viewer in history, restore and show it now.
9769 // Make sure our history ID points to the same ID as
9770 // SHEntry's docshell ID.
9773 // It's possible that the previous viewer of mContentViewer is the
9774 // viewer that will end up in aSHEntry when it gets closed. If that's
9775 // the case, we need to go ahead and force it into its shentry so we
9776 // can restore it.
9781 #ifdef DEBUG
9785 #endif
9789 // Make sure this viewer ends up in the right place
9792 }
9793 }
9794 }
9801 // We failed to restore the presentation, so clean up.
9802 // Both the old and new history entries could potentially be in
9803 // an inconsistent state.
9809 }
9810 }
9812 nsAutoString srcdoc;
9815 else
9837 }
9840 }
9842 nsIPrincipal*
9844 {
9851 }
9858 }
9859 }
9864 }
9866 // Make sure we end up with _something_ as the principal no matter
9867 // what.
9869 // docViewer and bail.
9874 }
9876 //-- Get the document's principal
9880 // Don't allow loads in typeContent docShells to inherit the system
9881 // principal from existing documents.
9886 }
9889 }
9892 }
9894 nsresult
9911 {
9912 #ifdef MOZ_VISUAL_EVENT_TRACER
9913 nsAutoCString urlSpec;
9917 #endif
9919 nsresult rv;
9927 // tag first party URL loads
9929 }
9932 // Error pages are LOAD_BACKGROUND
9934 }
9936 // check for Content Security Policy to pass along with the
9937 // new channel we are creating
9940 // check the parent docshell for a CSP
9953 }
9954 }
9955 }
9957 // Only allow view-source scheme in top-level docshells. view-source is
9958 // the only scheme to which this applies at the moment due to potential
9959 // timing attacks to read data from cross-origin iframes. If this widens
9960 // we should add a protocol flag for whether the scheme is allowed in
9961 // frames and use something like nsNetUtil::NS_URIChainHasFlags.
9965 // view-source should always be an nsINestedURI, loop and check the
9966 // scheme on this and all inner URIs that are also nested URIs.
9971 }
9974 }
9975 }
9977 // open a channel for the url
9983 aURI,
9987 loadFlags,
9988 channelPolicy);
9991 // This is a uri with a protocol scheme we don't know how
9992 // to handle. Embedders might still be interested in
9993 // handling the load, though, so we fire a notification
9994 // before throwing the load away.
9998 // Hey, they're handling the load for us! How convenient!
10000 }
10001 }
10003 }
10008 }
10009 }
10010 }
10012 nsAutoCString scheme;
10025 }
10028 aSrcdoc,
10035 }
10036 }
10041 // Any document load should not inherit application cache.
10044 // Loads with the correct permissions should check for a matching
10045 // application cache.
10047 // Permission will be checked in the parent process
10058 }
10059 }
10060 }
10062 // Make sure to give the caller a channel if we managed to create one
10063 // This is important for correct error page/session history interaction
10073 }
10081 }
10082 }
10089 /*
10090 * If the user "Disables Protection on This Page", we call
10091 * SetMixedContentChannel for the first time, otherwise
10092 * mMixedContentChannel is still null.
10093 * Later, if the new channel passes a same orign check, we remember the
10094 * users decision by calling SetMixedContentChannel using the new channel.
10095 * This way, the user does not have to click the disable protection button
10096 * over and over for browsing the same site.
10097 */
10101 }
10102 }
10104 //hack
10110 }
10115 }
10116 }
10120 {
10121 // save true referrer for those who need it (e.g. xpinstall whitelisting)
10122 // Currently only http and ftp channels support this.
10124 aReferrerURI);
10125 }
10127 //
10128 // If this is a HTTP channel, then set up the HTTP specific information
10129 // (ie. POST data, referrer, ...)
10130 //
10133 /* Get the cache Key from SH */
10137 }
10141 // figure out if we need to set the post data stream on the channel...
10142 // right now, this is only done for http channels.....
10144 // XXX it's a bit of a hack to rewind the postdata stream here but
10145 // it has to be done in case the post data is being reused multiple
10146 // times.
10152 }
10157 // we really need to have a content type associated with this stream!!
10159 /* If there is a valid postdata *and* it is a History Load,
10160 * set up the cache key on the channel, to retrieve the
10161 * data *only* from the cache. If it is a normal reload, the
10162 * cache is free to go to the server for updated postdata.
10163 */
10170 }
10173 }
10174 }
10176 /* If there is no postdata, set the cache key on the channel, and
10177 * do not set the LOAD_ONLY_FROM_CACHE flag, so that the channel
10178 * will be free to get it from net if it is not found in cache.
10179 * New cache may use it creatively on CGI pages with GET
10180 * method and even on those that say "no-cache"
10181 */
10186 }
10187 }
10190 }
10191 // Set the referrer explicitly
10193 // Referrer is currenly only set for link clicks here.
10195 }
10196 }
10201 isSrcdoc);
10205 // Allow execution against our context if the principals match
10206 scriptChannel->
10208 }
10216 }
10217 }
10224 }
10225 }
10229 //
10230 // If the channel load failed, we failed and nsIWebProgress just ain't
10231 // gonna happen.
10232 //
10237 }
10238 }
10241 }
10243 static NS_METHOD
10250 {
10251 // aFromSegment now contains aCount bytes of data.
10256 // Indicate that we have consumed all of aFromSegment
10259 }
10261 NS_IMETHODIMP
10264 {
10269 nsAutoCString headersString;
10272 UINT32_MAX,
10276 // used during the manipulation of the String from the InputStream
10277 nsAutoCString headerName;
10278 nsAutoCString headerValue;
10282 //
10283 // Iterate over the headersString: for each "\r\n" delimited chunk,
10284 // add the value as a header to the nsIHttpChannel
10285 //
10307 //
10308 // FINALLY: we can set the header!
10309 //
10313 }
10317 }
10322 {
10323 nsresult rv;
10324 // Mark the channel as being a document URI and allow content sniffing...
10330 // Load attributes depend on load type...
10333 {
10334 // Only send VALIDATE_NEVER if mLSHE's URI was never changed via
10335 // push/replaceState (bug 669671).
10339 }
10343 }
10370 // Set cache checking flags
10381 }
10383 }
10387 }
10394 }
10397 }
10402 }
10404 nsresult
10407 {
10410 }
10414 // If we failed to get the shell, or if there is no shell,
10415 // nothing left to do here.
10417 }
10422 }
10424 // If we have no new anchor, we do not want to scroll, unless there is a
10425 // current anchor and we are doing a history load. So return if we have no
10426 // new anchor, and there is no current anchor or the load is not a history
10427 // load.
10431 }
10433 // Take the '#' off aNewHash to get the ref name. (aNewHash might be empty,
10434 // but that's fine.)
10437 // Both the new and current URIs refer to the same page. We can now
10438 // browse to the hash stored in the new URI.
10441 // anchor is there, but if it's a load from history,
10442 // we don't have any anchor jumping to do
10449 }
10451 // nsUnescape modifies the string that is passed into it.
10454 // We assume that the bytes are in UTF-8, as it says in the
10455 // spec:
10456 // http://www.w3.org/TR/html4/appendix/notes.html#h-B.2.1
10458 // We try the UTF-8 string first, and then try the document's
10459 // charset (see below). If the string is not UTF-8,
10460 // conversion will fail and give us an empty Unicode string.
10461 // In that case, we should just fall through to using the
10462 // page's charset.
10467 }
10470 // Above will fail if the anchor name is not UTF-8. Need to
10471 // convert from document charset to unicode.
10474 // Get a document charset
10484 // Unescape and convert to unicode
10485 nsXPIDLString uStr;
10492 // Ignore return value of GoToAnchor, since it will return an error
10493 // if there is no such anchor in the document, which is actually a
10494 // success condition for us (we want to update the session history
10495 // with the new URI no matter whether we actually scrolled
10496 // somewhere).
10497 //
10498 // When newHashName contains "%00", unescaped string may be empty.
10499 // And GoToAnchor asserts if we ask it to scroll to an empty ref.
10501 }
10502 }
10505 // Tell the shell it's at an anchor, without scrolling.
10508 // An empty anchor was found, but if it's a load from history,
10509 // we don't have to jump to the top of the page. Scrollbar
10510 // position will be restored by the caller, based on positions
10511 // stored in session history.
10514 // An empty anchor. Scroll to the top of the page. Ignore the
10515 // return value; failure to scroll here (e.g. if there is no
10516 // root scrollframe) is not grounds for canceling the load!
10518 }
10521 }
10523 void
10525 {
10532 }
10533 }
10534 }
10536 bool
10540 {
10544 #if defined(PR_LOGGING) && defined(DEBUG)
10546 nsAutoCString spec;
10549 nsAutoCString chanName;
10552 else
10558 }
10559 #endif
10563 // Get the post data and the HTTP response code from the channel.
10569 // Check if the HTTPChannel is hiding under a multiPartChannel
10572 }
10578 }
10580 // If the response status indicates an error, unlink this session
10581 // history entry from any entries sharing its document.
10585 }
10586 }
10587 }
10589 // Determine if this type of load should update history.
10594 // We don't update session history on reload.
10597 /* Create SH Entry (mLSHE) only if there is a SessionHistory object (mSessionHistory) in
10598 * the current frame or in the root docshell
10599 */
10602 // Get the handle to SH from the root docshell
10607 }
10610 // Check if the url to be loaded is the same as the one already loaded.
10614 #ifdef DEBUG
10617 // XXX This log message is almost useless because |updateSHistory|
10618 // and |updateGHistory| are not correct at this point.
10627 }
10628 #endif
10630 /* If the url to be loaded is the same as the one already there,
10631 * and the original loadType is LOAD_NORMAL, LOAD_LINK, or
10632 * LOAD_STOP_CONTENT, set loadType to LOAD_NORMAL_REPLACE so that
10633 * AddToSessionHistory() won't mess with the current SHEntry and
10634 * if this page has any frame children, it also will be handled
10635 * properly. see bug 83684
10636 *
10637 * NB: If mOSHE is null but we have a current URI, then it means
10638 * that we must be at the transient about:blank content viewer
10639 * (asserted above) and we should let the normal load continue,
10640 * since there's nothing to replace.
10641 *
10642 * XXX Hopefully changing the loadType at this time will not hurt
10643 * anywhere. The other way to take care of sequentially repeating
10644 * frameset pages is to add new methods to nsIDocShellTreeItem.
10645 * Hopefully I don't have to do that.
10646 */
10648 mOSHE &&
10653 {
10655 }
10657 // If this is a refresh to the currently loaded url, we don't
10658 // have to update session or global history.
10661 }
10663 /* If the user pressed shift-reload, cache will create a new cache key
10664 * for the page. Save the new cacheKey in Session History.
10665 * see bug 90098
10666 */
10673 "We shouldn't be updating session history for forced"
10678 // Get the Cache Key and store it in SH.
10681 // If we already have a loading history entry, store the new cache key
10682 // in it. Otherwise, since we're doing a reload and won't be updating
10683 // our history entry, store the cache key in our current history entry.
10689 // Since we're force-reloading, clear all the sub frame history.
10692 }
10701 }
10704 }
10705 }
10710 }
10713 // Update session history if necessary...
10715 /* This is a fresh page getting loaded for the first time
10716 *.Create a Entry for it and add it to SH, if this is the
10717 * rootDocShell
10718 */
10721 }
10722 }
10724 // If this is a POST request, we do not want to include this in global
10725 // history.
10727 aAddToGlobalHistory &&
10733 // On a reload request, we don't set redirecting flags.
10738 }
10740 // Note: We don't use |referrer| when our global history is
10741 // based on IHistory.
10743 // Treat referrer as null if there is an error getting it.
10747 }
10749 // If this was a history load or a refresh,
10750 // update the index in SH.
10757 #ifdef DEBUG_PAGE_CACHE
10760 #endif
10761 }
10762 }
10764 // aCloneSHChildren exactly means "we are not loading a new document".
10769 aFireOnLocationChange,
10770 locationFlags);
10771 // Make sure to store the referrer from the channel, if any
10774 }
10776 bool
10779 {
10781 // If this a redirect, use the final url (uri)
10782 // else use the original url
10783 //
10784 // Note that this should match what documents do (see nsDocument::Reset).
10788 // Pass false for aCloneSHChildren, since we're loading a new page here.
10792 }
10794 void
10796 {
10798 }
10800 //*****************************************************************************
10801 // nsDocShell: Session History
10802 //*****************************************************************************
10804 NS_IMETHODIMP
10807 {
10808 // Implements History.pushState and History.replaceState
10810 // Here's what we do, roughly in the order specified by HTML5:
10811 // 1. Serialize aData using structured clone.
10812 // 2. If the third argument is present,
10813 // a. Resolve the url, relative to the first script's base URL
10814 // b. If (a) fails, raise a SECURITY_ERR
10815 // c. Compare the resulting absolute URL to the document's address. If
10816 // any part of the URLs difer other than the <path>, <query>, and
10817 // <fragment> components, raise a SECURITY_ERR and abort.
10818 // 3. If !aReplace:
10819 // Remove from the session history all entries after the current entry,
10820 // as we would after a regular navigation, and save the current
10821 // entry's scroll position (bug 590573).
10822 // 4. As apropriate, either add a state object entry to the session history
10823 // after the current entry with the following properties, or modify the
10824 // current session history entry to set
10825 // a. cloned data as the state object,
10826 // b. if the third argument was present, the absolute URL found in
10827 // step 2
10828 // Also clear the new history entry's POST data (see bug 580069).
10829 // 5. If aReplace is false (i.e. we're doing a pushState instead of a
10830 // replaceState), notify bfcache that we've navigated to a new page.
10831 // 6. If the third argument is present, set the document's current address
10832 // to the absolute URL found in step 2.
10833 //
10834 // It's important that this function not run arbitrary scripts after step 1
10835 // and before completing step 5. For example, if a script called
10836 // history.back() before we completed step 5, bfcache might destroy an
10837 // active content viewer. Since EvictOutOfRangeContentViewers at the end of
10838 // step 5 might run script, we can't just put a script blocker around the
10839 // critical section.
10840 //
10841 // Note that we completely ignore the aTitle parameter.
10843 nsresult rv;
10845 // Don't clobber the load type of an existing network load.
10848 // pushState effectively becomes replaceState when we've started a network
10849 // load but haven't adopted its document yet. This mirrors what we do with
10850 // changes to the hash at this stage of the game.
10853 }
10858 // Step 1: Serialize aData using structured clone.
10861 // scContainer->Init might cause arbitrary JS to run, and this code might
10862 // navigate the page we're on, potentially to a different origin! (bug
10863 // 634834) To protect against this, we abort if our principal changes due
10864 // to the InitFromJSVal() call.
10865 {
10883 }
10885 // Check that the state object isn't too long.
10886 // Default max length: 640k bytes.
10891 }
10898 NS_ERROR_ILLEGAL_VALUE);
10900 // Step 2: Resolve aURL
10909 }
10914 }
10916 // 2a: Resolve aURL relative to mURI
10922 nsAutoCString spec;
10925 nsAutoCString charset;
10932 // 2b: If 2a fails, raise a SECURITY_ERR
10935 }
10937 // 2c: Same-origin check.
10939 // In addition to checking that the security manager says that
10940 // the new URI has the same origin as our current URI, we also
10941 // check that the two URIs have the same userpass. (The
10942 // security manager says that |http://foo.com| and
10943 // |http://me@foo.com| have the same origin.) currentURI
10944 // won't contain the password part of the userpass, so this
10945 // means that it's never valid to specify a password in a
10946 // pushState or replaceState URI.
10952 // It's very important that we check that newURI is of the same
10953 // origin as currentURI, not docBaseURI, because a page can
10954 // set docBaseURI arbitrarily to any domain.
10957 NS_ERROR_FAILURE);
10959 NS_ERROR_FAILURE);
10965 }
10966 }
10968 // It's a file:// URI
10974 }
10982 }
10983 }
10987 }
10990 }
10994 // Step 3: Create a new entry in the session history. This will erase
10995 // all SHEntries after the new entry and make this entry the current
10996 // one. This operation may modify mOSHE, which we need later, so we
10997 // keep a reference here.
11005 // Save the current scroll position (bug 590573).
11011 // Since we're not changing which page we have loaded, pass
11012 // true for aCloneChildren.
11019 // Link the new SHEntry to the old SHEntry's BFCache entry, since the
11020 // two entries correspond to the same document.
11022 NS_ERROR_FAILURE);
11024 // Set the new SHEntry's title (bug 655273).
11025 nsString title;
11029 // AddToSessionHistory may not modify mOSHE. In case it doesn't,
11030 // we'll just set mOSHE here.
11036 }
11038 // Step 4: Modify new/original session history entry and clear its POST
11039 // data, if there is any.
11043 // If this push/replaceState changed the document's current URI and the new
11044 // URI differs from the old URI in more than the hash, or if the old
11045 // SHEntry's URI was modified in this way by a push/replaceState call
11046 // set URIWasModified to true for the current SHEntry (bug 669671).
11052 // Step 5: If aReplace is false, indicating that we're doing a pushState
11053 // rather than a replaceState, notify bfcache that we've added a page to
11054 // the history so it can evict content viewers if appropriate. Otherwise
11055 // call ReplaceEntry so that we notify nsIHistoryListeners that an entry
11056 // was replaced.
11070 }
11078 }
11079 }
11081 // Step 6: If the document's URI changed, update document's URI and update
11082 // global history.
11083 //
11084 // We need to call FireOnLocationChange so that the browser's address bar
11085 // gets updated and the back button is enabled, but we only need to
11086 // explicitly call FireOnLocationChange if we're not calling SetCurrentURI,
11087 // since SetCurrentURI will call FireOnLocationChange for us.
11088 //
11089 // Both SetCurrentURI(...) and FireDummyOnLocationChange() pass
11090 // nullptr for aRequest param to FireOnLocationChange(...). Such an update
11091 // notification is allowed only when we know docshell is not loading a new
11092 // document and it requires LOCATION_CHANGE_SAME_DOCUMENT flag. Otherwise,
11093 // FireOnLocationChange(...) breaks security UI.
11100 // AddURIVisit doesn't set the title for the new URI in global history,
11101 // so do that here.
11106 }
11109 }
11110 }
11112 // Inform the favicon service that our old favicon applies to this new
11113 // URI.
11115 }
11118 }
11122 }
11124 bool
11126 {
11127 // I believe none of the about: urls should go in the history. But then
11128 // that could just be me... If the intent is only deny about:blank then we
11129 // should just do a spec compare, rather than two gets of the scheme and
11130 // then the path. -Gagan
11131 nsresult rv;
11145 }
11146 }
11152 }
11158 }
11160 nsresult
11164 {
11168 #if defined(PR_LOGGING) && defined(DEBUG)
11170 nsAutoCString spec;
11173 nsAutoCString chanName;
11176 else
11182 }
11183 #endif
11191 // Get a handle to the root docshell
11194 /*
11195 * If this is a LOAD_FLAGS_REPLACE_HISTORY in a subframe, we use
11196 * the existing SH entry in the page and replace the url and
11197 * other vitalities.
11198 */
11201 // This is a subframe
11207 // Remove all children of this entry
11215 }
11217 // Create a new entry if necessary.
11223 }
11224 }
11226 // Get the post data & referrer
11237 /* If there is a caching channel, get the Cache Key and store it
11238 * in SH.
11239 */
11242 }
11245 // Check if the httpChannel is hiding under a multipartChannel
11248 }
11253 }
11257 }
11263 // For now keep storing just the principal in the SHEntry.
11269 }
11270 }
11271 }
11272 }
11274 //Title is set in nsDocShell::SetTitle()
11282 mHistoryID,
11283 mDynamicallyCreated);
11290 nsAutoString srcdoc;
11296 }
11297 }
11298 /* If cache got a 'no-store', ask SH not to store
11299 * HistoryLayoutState. By default, SH will set this
11300 * flag to true and save HistoryLayoutState.
11301 */
11304 }
11306 // Check if the page has expired from cache
11312 }
11318 // If we need to clone our children onto the new session
11319 // history entry, do so now.
11326 }
11328 // This is the root docshell
11330 // Replace current entry in session history.
11334 // Replace the current entry with the new entry
11337 }
11339 // Add to session history
11346 #ifdef DEBUG_PAGE_CACHE
11349 #endif
11350 }
11351 }
11353 // This is a subframe.
11355 LOAD_FLAGS_REPLACE_HISTORY))
11357 }
11359 // Return the new SH entry...
11365 }
11366 }
11369 }
11372 NS_IMETHODIMP
11374 {
11377 }
11382 nsAutoCString contentType;
11389 NS_ERROR_FAILURE);
11391 NS_ERROR_FAILURE);
11394 NS_ERROR_FAILURE);
11396 // Calling CreateAboutBlankContentViewer can set mOSHE to null, and if
11397 // that's the only thing holding a ref to aEntry that will cause aEntry to
11398 // die while we're loading it. So hold a strong ref to aEntry here, just
11399 // in case.
11404 // We're loading a URL that will execute script from inside asyncOpen.
11405 // Replace the current document with about:blank now to prevent
11406 // anything from the current document from leaking into any JavaScript
11407 // code in the URL.
11409 // Don't cache the presentation if we're going to just reload the
11410 // current entry. Caching would lead to trying to save the different
11411 // content viewers in the same nsISHEntry object.
11415 // The creation of the intermittent about:blank content
11416 // viewer failed for some reason (potentially because the
11417 // user prevented it). Interrupt the history load.
11419 }
11422 // Ensure that we have an owner. Otherwise javascript: URIs will
11423 // pick it up from the about:blank page we just loaded, and we
11424 // don't really want even that in this case.
11427 }
11428 }
11430 /* If there is a valid postdata *and* the user pressed
11431 * reload or shift-reload, take user's permission before we
11432 * repost the data to the server.
11433 */
11439 // If the user pressed cancel in the dialog, return. We're done here.
11442 }
11444 // Do not inherit owner from document (security-critical!);
11447 nsAutoString srcdoc;
11455 }
11458 }
11460 // Passing nullptr as aSourceDocShell gives the same behaviour as before
11461 // aSourceDocShell was introduced. According to spec we should be passing
11462 // the source browsing context that was used when the history entry was
11463 // first created. bug 947716 has been created to address this issue.
11465 referrerURI,
11466 owner,
11467 flags,
11476 srcdoc,
11478 baseURI,
11482 }
11485 {
11488 // Don't capture historystate and save it in history
11489 // if the page asked not to do so.
11491 }
11494 }
11497 {
11505 }
11506 }
11509 }
11511 /* static */ nsresult
11514 WalkHistoryEntriesFunc aCallback,
11516 {
11529 // childEntry can be null for valid reasons, for example if the
11530 // docshell at index i never loaded anything useful.
11531 // Remember to clone also nulls in the child array (bug 464064).
11534 }
11538 // Walk the children of aRootShell and see if one of them
11539 // has srcChild as a SHEntry.
11548 }
11549 }
11550 }
11553 }
11556 }
11558 // callback data for WalkHistoryEntries
11559 struct MOZ_STACK_CLASS CloneAndReplaceData
11560 {
11573 };
11575 /* static */ nsresult
11578 {
11590 }
11592 }
11599 // Replace the entry
11602 // Clone the SHEntry...
11605 }
11609 // Walk the children
11615 }
11619 }
11626 }
11628 /* static */ nsresult
11635 {
11644 }
11646 void
11648 {
11654 }
11657 struct SwapEntriesData
11658 {
11662 // whose children will correspond to aEntry
11663 };
11666 nsresult
11669 {
11683 // aEntry is a clone of some child of destTreeParent, but since the
11684 // trees aren't necessarily in sync, we'll have to locate it.
11685 // Note that we could set aShell's entry to null if we don't find a
11686 // corresponding entry under destTreeParent.
11691 // First look at the given index, since this is the common case.
11708 }
11709 }
11710 }
11713 }
11717 // Now handle the children of aEntry.
11721 }
11726 {
11732 }
11735 }
11738 void
11740 {
11741 // We need to sync up the docshell and session history trees for
11742 // subframe navigation. If the load was in a subframe, we forward up to
11743 // the root docshell, which will then recursively sync up all docshells
11744 // to their corresponding entries in the new session history tree.
11745 // If we don't do this, then we can cache a content viewer on the wrong
11746 // cloned entry, and subsequently restore it at the wrong time.
11750 // newRootEntry is now the new root entry.
11751 // Find the old root entry as well.
11753 // Need a strong ref. on |oldRootEntry| so it isn't destroyed when
11754 // SetChildHistoryEntry() does SwapHistoryEntries() (bug 304639).
11767 #ifdef DEBUG
11768 nsresult rv =
11769 #endif
11773 }
11774 }
11775 }
11778 }
11781 nsresult
11783 {
11784 nsresult rv;
11787 //Get the root docshell
11789 // QI to nsIWebNavigation
11792 // Get the handle to SH from the root docshell
11794 }
11796 }
11798 nsresult
11800 {
11812 }
11814 }
11816 bool
11818 {
11819 // By default layout State will be saved.
11823 // figure out if SH should be saving layout state
11831 }
11834 {
11840 }
11843 }
11846 {
11851 }
11855 {
11859 }
11863 {
11867 {
11871 }
11872 else
11873 {
11875 }
11878 }
11881 {
11886 }
11888 bool
11890 {
11894 }
11896 nsAutoCString method;
11899 }
11901 void
11905 {
11909 }
11915 );
11918 // There is no last visit for this channel, so this must be the first
11919 // link. Link the visit to the referrer of this request, if any.
11920 // Treat referrer as null if there is an error getting it.
11922 }
11926 aChannelRedirectFlags
11927 );
11931 "Could not fetch previous flags, URI will be treated like referrer"
11932 );
11933 }
11934 }
11936 void
11940 {
11944 }
11947 aURI);
11949 aChannelRedirectFlags);
11950 }
11952 void
11958 {
11964 // Only content-type docshells save URI visits. Also don't do
11965 // anything here if we're not supposed to use global history.
11968 }
11977 }
11981 }
11985 }
11989 }
11990 // Errors 400-501 and 505 are considered unrecoverable, in the sense a
11991 // simple retry attempt by the user is unlikely to solve them.
11992 // 408 is special cased, since may actually indicate a temporary
11993 // connection problem.
11998 }
12001 }
12003 // Falls back to sync global history interface.
12007 aReferrerURI);
12008 }
12009 }
12011 //*****************************************************************************
12012 // nsDocShell: Helper Routines
12013 //*****************************************************************************
12015 NS_IMETHODIMP
12017 {
12020 }
12022 NS_IMETHODIMP
12024 {
12027 }
12029 nsresult
12031 {
12036 }
12055 nsXPIDLString brandName;
12063 }
12065 // Brand available - if the app has an override file with formatting, the app name will
12066 // be included. Without an override, the prompt will look like the generic version.
12071 }
12079 // The actual value here is irrelevant, but we can't pass an invalid
12080 // bool through XPConnect.
12091 }
12093 NS_IMETHODIMP
12096 {
12098 NS_ERROR_FAILURE);
12106 aStringBundle),
12107 NS_ERROR_FAILURE);
12110 }
12112 NS_IMETHODIMP
12115 {
12120 NS_ERROR_FAILURE);
12128 NS_ERROR_FAILURE);
12134 }
12135 }
12138 }
12140 nsIScrollableFrame *
12142 {
12147 }
12149 NS_IMETHODIMP
12151 {
12157 }
12159 #ifdef DEBUG
12161 "Infinite loop! Calling EnsureScriptEnvironment() from "
12164 // Yeah, this isn't re-entrant safe, but that's ok since if we
12165 // re-enter this method, we'll infinitely loop...
12168 #endif
12178 // There can be various other content docshells associated with the
12179 // top-level window, like sidebars. Make sure that we only create an
12180 // nsGlobalModalWindow for the primary content shell.
12186 }
12188 // If our window is modal and we're not opened as chrome, make
12189 // this window a modal content window.
12190 mScriptGlobal =
12196 // Ensure the script object is set up to run script.
12198 }
12201 NS_IMETHODIMP
12203 {
12206 // We shouldn't recreate the editor data if it already exists, or
12207 // we're shutting down, or we already have a detached editor data
12208 // stored in the session history. We should only have one editordata
12209 // per docshell.
12211 }
12214 }
12216 nsresult
12218 {
12222 }
12225 }
12229 {
12230 nsresult rv;
12232 {
12235 }
12237 // we promise that the nsIWebBrowserFind that we return has been set
12238 // up to point to the focused, or content window, so we have to
12239 // set that up each time.
12244 // default to our window
12258 }
12260 bool
12262 {
12266 }
12268 /* boolean IsBeingDestroyed (); */
12269 NS_IMETHODIMP
12271 {
12275 }
12278 NS_IMETHODIMP
12280 {
12284 }
12286 NS_IMETHODIMP
12288 {
12292 }
12294 NS_IMETHODIMP
12296 {
12300 }
12302 //*****************************************************************************
12303 //*** nsRefreshTimer: Object Management
12304 //*****************************************************************************
12308 {
12309 }
12312 {
12313 }
12315 //*****************************************************************************
12316 // nsRefreshTimer::nsISupports
12317 //*****************************************************************************
12325 NS_INTERFACE_MAP_END_THREADSAFE
12327 ///*****************************************************************************
12328 // nsRefreshTimer::nsITimerCallback
12329 //******************************************************************************
12330 NS_IMETHODIMP
12332 {
12336 // Get the delay count to determine load type
12340 }
12342 }
12344 //*****************************************************************************
12345 // nsDocShell::InterfaceRequestorProxy
12346 //*****************************************************************************
12348 {
12351 }
12352 }
12355 {
12357 }
12361 NS_IMETHODIMP
12363 {
12368 }
12371 }
12373 nsresult
12375 {
12386 // Get the current document and set the base uri
12391 }
12392 }
12394 }
12396 //*****************************************************************************
12397 // nsDocShell::nsIAuthPromptProvider
12398 //*****************************************************************************
12400 NS_IMETHODIMP
12403 {
12404 // a priority prompt request will override a false mAllowAuth setting
12410 // we're either allowing auth, or it's a proxy request
12411 nsresult rv;
12419 // Get the an auth prompter for our window so that the parenting
12420 // of the dialogs works as it should when using tabs.
12424 }
12426 //*****************************************************************************
12427 // nsDocShell::nsILoadContext
12428 //*****************************************************************************
12429 NS_IMETHODIMP
12431 {
12434 }
12436 NS_IMETHODIMP
12438 {
12442 }
12444 }
12446 NS_IMETHODIMP
12448 {
12453 }
12459 // GetFrameElement, /not/ GetScriptableFrameElement -- if |top| is inside
12460 // <iframe mozbrowser>, we want to return the iframe, not null.
12462 }
12464 NS_IMETHODIMP
12466 {
12469 }
12471 NS_IMETHODIMP
12473 {
12481 }
12483 }
12487 }
12489 NS_IMETHODIMP
12491 {
12494 }
12496 bool
12498 {
12503 }
12507 }
12511 return
12512 secMan &&
12514 }
12516 //
12517 // Routines for selection and clipboard
12518 //
12519 nsresult
12522 {
12532 }
12534 NS_IMETHODIMP
12536 {
12548 }
12550 NS_IMETHODIMP
12552 {
12561 }
12563 nsresult
12565 {
12567 {
12576 }
12579 }
12581 NS_IMETHODIMP
12583 {
12585 }
12587 NS_IMETHODIMP
12589 {
12591 }
12593 NS_IMETHODIMP
12595 {
12597 }
12599 NS_IMETHODIMP
12601 {
12603 aResult);
12604 }
12606 NS_IMETHODIMP
12608 {
12610 aResult);
12611 }
12613 NS_IMETHODIMP
12615 {
12617 }
12619 NS_IMETHODIMP
12621 {
12623 }
12625 NS_IMETHODIMP
12627 {
12629 }
12631 NS_IMETHODIMP
12633 {
12635 }
12637 NS_IMETHODIMP
12639 {
12641 }
12643 NS_IMETHODIMP
12645 {
12647 }
12649 NS_IMETHODIMP
12651 {
12653 }
12655 NS_IMETHODIMP
12657 {
12659 }
12661 //
12662 // SelectNone
12663 //
12664 // Collapses the current selection, insertion point ends up at beginning
12665 // of previous selection.
12666 //
12667 NS_IMETHODIMP
12669 {
12671 }
12673 //----------------------------------------------------------------------
12675 // link handling
12690 AutoJSAPI jsapi;
12696 }
12698 }
12703 nsString mTargetSpec;
12704 nsString mFileName;
12708 PopupControlState mPopupState;
12710 };
12729 {
12730 }
12732 //----------------------------------------
12734 NS_IMETHODIMP
12742 {
12747 }
12749 // On history navigation through Back/Forward buttons, don't execute
12750 // automatic JavaScript redirection such as |anchorElement.click()| or
12751 // |formElement.submit()|.
12752 //
12753 // XXX |formElement.submit()| bypasses this checkpoint because it calls
12754 // nsDocShell::OnLinkClickSync(...) instead.
12757 }
12761 }
12764 nsAutoString target;
12772 }
12781 }
12783 NS_IMETHODIMP
12792 {
12793 // Initialize the DocShell / Request
12796 }
12799 }
12803 }
12805 // XXX When the linking node was HTMLFormElement, it is synchronous event.
12806 // That is, the caller of this method is not |OnLinkClickEvent::Run()|
12807 // but |HTMLFormElement::SubmitSubmission(...)|.
12810 }
12814 }
12816 {
12817 // defer to an external protocol handler if necessary...
12821 nsAutoCString scheme;
12824 // if the URL scheme does not correspond to an exposed protocol, then we
12825 // need to hand this link click over to the external protocol handler.
12830 }
12831 }
12832 }
12833 }
12843 INTERNAL_LOAD_FLAGS_NO_OPENER;
12844 }
12845 }
12847 // Get the owner document of the link that was clicked, this will be
12848 // the document that the link is in, or the last document that the
12849 // link was in. From that document, we'll get the URI to use as the
12850 // referer, since the current URI in this docshell may be a
12851 // new document that we're in the process of loading.
12855 // Now check that the refererDoc's inner window is the current inner
12856 // window for mScriptGlobal. If it's not, then we don't want to
12857 // follow this link.
12862 // We're no longer the current inner window
12864 }
12868 // referer could be null here in some odd cases, but that's ok,
12869 // we'll just load the link w/o sending a referer in those cases.
12873 // If this is an anchor element, grab its type property to use as a hint
12874 nsAutoString typeHint;
12882 }
12884 // Clone the URI now, in case a content policy or something messes
12885 // with it under InternalLoad; we do _not_ want to change the URI
12886 // our caller passed in.
12891 }
12896 // principal
12897 flags,
12913 }
12915 }
12917 NS_IMETHODIMP
12921 {
12924 }
12934 }
12941 // use url origin charset to unescape the URL
12942 nsAutoCString charset;
12946 nsAutoCString spec;
12950 nsAutoString uStr;
12964 }
12966 }
12968 NS_IMETHODIMP
12970 {
12977 }
12979 }
12981 bool
12983 {
12988 }
12993 }
12995 bool
12997 {
13002 }
13007 }
13011 }
13013 //----------------------------------------------------------------------
13014 // Web Shell Services API
13016 //This functions is only called when a new charset is detected in loading a document.
13017 //Its name should be changed to "CharsetReloadDocument"
13018 NS_IMETHODIMP
13021 {
13023 // XXX hack. keep the aCharset and aSource wait to pick it up
13036 }
13037 }
13038 }
13039 //return failure if this request is not accepted due to mCharsetReloadState
13041 }
13044 NS_IMETHODIMP
13046 {
13048 {
13051 }
13052 //return failer if this request is not accepted due to mCharsetReloadState
13054 }
13056 NS_IMETHODIMP
13058 {
13060 #if NS_PRINT_PREVIEW
13072 }
13076 #else
13078 #endif
13079 }
13082 #ifdef DEBUG
13084 #endif
13086 NS_IMETHODIMP
13088 {
13091 }
13093 NS_IMETHODIMP
13095 {
13102 }
13105 }
13107 NS_IMETHODIMP
13109 {
13113 }
13115 /* [infallible] */ NS_IMETHODIMP
13117 {
13120 }
13122 /* [infallible] */ NS_IMETHODIMP
13124 {
13127 }
13129 /* [infallible] */ NS_IMETHODIMP
13131 {
13140 }
13143 }
13147 {
13150 }
13158 }
13161 }
13163 /* [infallible] */ NS_IMETHODIMP
13165 {
13168 }
13170 /* [infallible] */ NS_IMETHODIMP
13172 {
13181 }
13184 }
13186 /* [infallible] */ NS_IMETHODIMP
13188 {
13192 }
13200 }
13203 }
13205 NS_IMETHODIMP
13207 {
13219 }
13222 }
13224 NS_IMETHODIMP
13226 {
13230 }
13233 }
13235 bool
13237 {
13244 }
13246 }
13248 }
13250 bool
13252 {
13254 }
13256 void
13258 {
13260 }
13262 void
13264 {
13266 }
13268 nsITabParent*
13270 {
13273 }
13275 void
13277 {
13279 }
13281 nsITabParent*
13283 {
13286 }
13288 URLSearchParams*
13290 {
13292 }