search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Bug 1807268 - Fix verifyOpenAllInNewTabsOptionTest UI test r=ohorvath
[gecko.git] / docshell / base / BrowsingContext.h
blob5ec95a61e4d3af265cbe7dd9d83f6535da1d103e
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
6
7 #ifndef mozilla_dom_BrowsingContext_h
8 #define mozilla_dom_BrowsingContext_h
9
10 #include <tuple>
11 #include "GVAutoplayRequestUtils.h"
12 #include "mozilla/ErrorResult.h"
13 #include "mozilla/HalScreenConfiguration.h"
14 #include "mozilla/LinkedList.h"
15 #include "mozilla/Maybe.h"
16 #include "mozilla/RefPtr.h"
17 #include "mozilla/Span.h"
18
19 #include "mozilla/dom/BindingDeclarations.h"
20 #include "mozilla/dom/LocationBase.h"
21 #include "mozilla/dom/MaybeDiscarded.h"
22 #include "mozilla/dom/PopupBlocker.h"
23 #include "mozilla/dom/UserActivation.h"
24 #include "mozilla/dom/BrowsingContextBinding.h"
25 #include "mozilla/dom/ScreenOrientationBinding.h"
26 #include "mozilla/dom/SyncedContext.h"
27 #include "nsCOMPtr.h"
28 #include "nsCycleCollectionParticipant.h"
29 #include "nsIDocShell.h"
30 #include "nsTArray.h"
31 #include "nsWrapperCache.h"
32 #include "nsILoadInfo.h"
33 #include "nsILoadContext.h"
34 #include "nsThreadUtils.h"
35
36 class nsDocShellLoadState;
37 class nsGlobalWindowInner;
38 class nsGlobalWindowOuter;
39 class nsIPrincipal;
40 class nsOuterWindowProxy;
41 struct nsPoint;
42 class PickleIterator;
43
44 namespace IPC {
45 class Message;
46 class MessageReader;
47 class MessageWriter;
48 } // namespace IPC
49
50 namespace mozilla {
51
52 class ErrorResult;
53 class LogModule;
54
55 namespace ipc {
56 class IProtocol;
57 class IPCResult;
58
59 template <typename T>
60 struct IPDLParamTraits;
61 } // namespace ipc
62
63 namespace dom {
64 class BrowsingContent;
65 class BrowsingContextGroup;
66 class CanonicalBrowsingContext;
67 class ChildSHistory;
68 class ContentParent;
69 class Element;
70 struct LoadingSessionHistoryInfo;
71 class Location;
72 template <typename>
73 struct Nullable;
74 template <typename T>
75 class Sequence;
76 class SessionHistoryInfo;
77 class SessionStorageManager;
78 class StructuredCloneHolder;
79 class WindowContext;
80 class WindowGlobalChild;
81 struct WindowPostMessageOptions;
82 class WindowProxyHolder;
83
84 enum class ExplicitActiveStatus : uint8_t {
85 None,
86 Active,
87 Inactive,
88 EndGuard_,
89 };
90
91 struct EmbedderColorSchemes {
92 PrefersColorSchemeOverride mUsed{};
93 PrefersColorSchemeOverride mPreferred{};
94
95 bool operator==(const EmbedderColorSchemes& aOther) const {
96 return mUsed == aOther.mUsed && mPreferred == aOther.mPreferred;
97 }
98
99 bool operator!=(const EmbedderColorSchemes& aOther) const {
100 return !(*this == aOther);
101 }
102 };
103
104 // Fields are, by default, settable by any process and readable by any process.
105 // Racy sets will be resolved as-if they occurred in the order the parent
106 // process finds out about them.
107 //
108 // The `DidSet` and `CanSet` methods may be overloaded to provide different
109 // behavior for a specific field.
110 // * `DidSet` is called to run code in every process whenever the value is
111 // updated (This currently occurs even if the value didn't change, though
112 // this may change in the future).
113 // * `CanSet` is called before attempting to set the value, in both the process
114 // which calls `Set`, and the parent process, and will kill the misbehaving
115 // process if it fails.
116 #define MOZ_EACH_BC_FIELD(FIELD) \
117 FIELD(Name, nsString) \
118 FIELD(Closed, bool) \
119 FIELD(ExplicitActive, ExplicitActiveStatus) \
120 /* Top()-only. If true, new-playing media will be suspended when in an \
121 * inactive browsing context. */ \
122 FIELD(SuspendMediaWhenInactive, bool) \
123 /* If true, we're within the nested event loop in window.open, and this \
124 * context may not be used as the target of a load */ \
125 FIELD(PendingInitialization, bool) \
126 /* Indicates if the browser window is active for the purpose of the \
127 * :-moz-window-inactive pseudoclass. Only read from or set on the \
128 * top BrowsingContext. */ \
129 FIELD(IsActiveBrowserWindowInternal, bool) \
130 FIELD(OpenerPolicy, nsILoadInfo::CrossOriginOpenerPolicy) \
131 /* Current opener for the BrowsingContext. Weak reference */ \
132 FIELD(OpenerId, uint64_t) \
133 FIELD(OnePermittedSandboxedNavigatorId, uint64_t) \
134 /* WindowID of the inner window which embeds this BC */ \
135 FIELD(EmbedderInnerWindowId, uint64_t) \
136 FIELD(CurrentInnerWindowId, uint64_t) \
137 FIELD(HadOriginalOpener, bool) \
138 FIELD(IsPopupSpam, bool) \
139 /* Hold the audio muted state and should be used on top level browsing \
140 * contexts only */ \
141 FIELD(Muted, bool) \
142 /* Hold the pinned/app-tab state and should be used on top level browsing \
143 * contexts only */ \
144 FIELD(IsAppTab, bool) \
145 /* Whether there's more than 1 tab / toplevel browsing context in this \
146 * parent window. Used to determine if a given BC is allowed to resize \
147 * and/or move the window or not. */ \
148 FIELD(HasSiblings, bool) \
149 /* Indicate that whether we should delay media playback, which would only \
150 be done on an unvisited tab. And this should only be used on the top \
151 level browsing contexts */ \
152 FIELD(ShouldDelayMediaFromStart, bool) \
153 /* See nsSandboxFlags.h for the possible flags. */ \
154 FIELD(SandboxFlags, uint32_t) \
155 /* The value of SandboxFlags when the BrowsingContext is first created. \
156 * Used for sandboxing the initial about:blank document. */ \
157 FIELD(InitialSandboxFlags, uint32_t) \
158 /* A non-zero unique identifier for the browser element that is hosting \
159 * this \
160 * BrowsingContext tree. Every BrowsingContext in the element's tree will \
161 * return the same ID in all processes and it will remain stable \
162 * regardless of process changes. When a browser element's frameloader is \
163 * switched to another browser element this ID will remain the same but \
164 * hosted under the under the new browser element. */ \
165 FIELD(BrowserId, uint64_t) \
166 FIELD(HistoryID, nsID) \
167 FIELD(InRDMPane, bool) \
168 FIELD(Loading, bool) \
169 /* A field only set on top browsing contexts, which indicates that either: \
170 * \
171 * * This is a browsing context created explicitly for printing or print \
172 * preview (thus hosting static documents). \
173 * \
174 * * This is a browsing context where something in this tree is calling \
175 * window.print() (and thus showing a modal dialog). \
176 * \
177 * We use it exclusively to block navigation for both of these cases. */ \
178 FIELD(IsPrinting, bool) \
179 FIELD(AncestorLoading, bool) \
180 FIELD(AllowContentRetargeting, bool) \
181 FIELD(AllowContentRetargetingOnChildren, bool) \
182 FIELD(ForceEnableTrackingProtection, bool) \
183 FIELD(UseGlobalHistory, bool) \
184 FIELD(TargetTopLevelLinkClicksToBlankInternal, bool) \
185 FIELD(FullscreenAllowedByOwner, bool) \
186 FIELD(ForceDesktopViewport, bool) \
187 /* \
188 * "is popup" in the spec. \
189 * Set only on top browsing contexts. \
190 * This doesn't indicate whether this is actually a popup or not, \
191 * but whether this browsing context is created by requesting popup or not. \
192 * See also: nsWindowWatcher::ShouldOpenPopup. \
193 */ \
194 FIELD(IsPopupRequested, bool) \
195 /* These field are used to store the states of autoplay media request on \
196 * GeckoView only, and it would only be modified on the top level browsing \
197 * context. */ \
198 FIELD(GVAudibleAutoplayRequestStatus, GVAutoplayRequestStatus) \
199 FIELD(GVInaudibleAutoplayRequestStatus, GVAutoplayRequestStatus) \
200 /* ScreenOrientation-related APIs */ \
201 FIELD(CurrentOrientationAngle, float) \
202 FIELD(CurrentOrientationType, mozilla::dom::OrientationType) \
203 FIELD(OrientationLock, mozilla::hal::ScreenOrientation) \
204 FIELD(UserAgentOverride, nsString) \
205 FIELD(TouchEventsOverrideInternal, mozilla::dom::TouchEventsOverride) \
206 FIELD(EmbedderElementType, Maybe<nsString>) \
207 FIELD(MessageManagerGroup, nsString) \
208 FIELD(MaxTouchPointsOverride, uint8_t) \
209 FIELD(FullZoom, float) \
210 FIELD(WatchedByDevToolsInternal, bool) \
211 FIELD(TextZoom, float) \
212 FIELD(OverrideDPPX, float) \
213 /* The current in-progress load. */ \
214 FIELD(CurrentLoadIdentifier, Maybe<uint64_t>) \
215 /* See nsIRequest for possible flags. */ \
216 FIELD(DefaultLoadFlags, uint32_t) \
217 /* Signals that session history is enabled for this browsing context tree. \
218 * This is only ever set to true on the top BC, so consumers need to get \
219 * the value from the top BC! */ \
220 FIELD(HasSessionHistory, bool) \
221 /* Tracks if this context is the only top-level document in the session \
222 * history of the context. */ \
223 FIELD(IsSingleToplevelInHistory, bool) \
224 FIELD(UseErrorPages, bool) \
225 FIELD(PlatformOverride, nsString) \
226 /* Specifies if this BC has loaded documents besides the initial \
227 * about:blank document. about:privatebrowsing, about:home, about:newtab \
228 * and non-initial about:blank are not considered to be initial \
229 * documents. */ \
230 FIELD(HasLoadedNonInitialDocument, bool) \
231 /* Default value for nsIDocumentViewer::authorStyleDisabled in any new \
232 * browsing contexts created as a descendant of this one. Valid only for \
233 * top BCs. */ \
234 FIELD(AuthorStyleDisabledDefault, bool) \
235 FIELD(ServiceWorkersTestingEnabled, bool) \
236 FIELD(MediumOverride, nsString) \
237 /* DevTools override for prefers-color-scheme */ \
238 FIELD(PrefersColorSchemeOverride, dom::PrefersColorSchemeOverride) \
239 /* prefers-color-scheme override based on the color-scheme style of our \
240 * <browser> embedder element. */ \
241 FIELD(EmbedderColorSchemes, EmbedderColorSchemes) \
242 FIELD(DisplayMode, dom::DisplayMode) \
243 /* The number of entries added to the session history because of this \
244 * browsing context. */ \
245 FIELD(HistoryEntryCount, uint32_t) \
246 /* Don't use the getter of the field, but IsInBFCache() method */ \
247 FIELD(IsInBFCache, bool) \
248 FIELD(HasRestoreData, bool) \
249 FIELD(SessionStoreEpoch, uint32_t) \
250 /* Whether we can execute scripts in this BrowsingContext. Has no effect \
251 * unless scripts are also allowed in the parent WindowContext. */ \
252 FIELD(AllowJavascript, bool) \
253 /* The count of request that are used to prevent the browsing context tree \
254 * from being suspended, which would ONLY be modified on the top level \
255 * context in the chrome process because that's a non-atomic counter */ \
256 FIELD(PageAwakeRequestCount, uint32_t) \
257 /* This field only gets incrememented when we start navigations in the \
258 * parent process. This is used for keeping track of the racing navigations \
259 * between the parent and content processes. */ \
260 FIELD(ParentInitiatedNavigationEpoch, uint64_t) \
261 /* This browsing context is for a synthetic image document wrapping an \
262 * image embedded in <object> or <embed>. */ \
263 FIELD(SyntheticDocumentContainer, bool) \
264 /* If true, this document is embedded within a content document, either \
265 * loaded in the parent (e.g. about:addons or the devtools toolbox), or in \
266 * a content process. */ \
267 FIELD(EmbeddedInContentDocument, bool) \
268 /* If true, this browsing context is within a hidden embedded document. */ \
269 FIELD(IsUnderHiddenEmbedderElement, bool) \
270 /* If true, this browsing context is offline */ \
271 FIELD(ForceOffline, bool)
272
273 // BrowsingContext, in this context, is the cross process replicated
274 // environment in which information about documents is stored. In
275 // particular the tree structure of nested browsing contexts is
276 // represented by the tree of BrowsingContexts.
277 //
278 // The tree of BrowsingContexts is created in step with its
279 // corresponding nsDocShell, and when nsDocShells are connected
280 // through a parent/child relationship, so are BrowsingContexts. The
281 // major difference is that BrowsingContexts are replicated (synced)
282 // to the parent process, making it possible to traverse the
283 // BrowsingContext tree for a tab, in both the parent and the child
284 // process.
285 //
286 // Trees of BrowsingContexts should only ever contain nodes of the
287 // same BrowsingContext::Type. This is enforced by asserts in the
288 // BrowsingContext::Create* methods.
289 class BrowsingContext : public nsILoadContext, public nsWrapperCache {
290 MOZ_DECL_SYNCED_CONTEXT(BrowsingContext, MOZ_EACH_BC_FIELD)
291
292 public:
293 enum class Type { Chrome, Content };
294
295 static void Init();
296 static LogModule* GetLog();
297 static LogModule* GetSyncLog();
298
299 // Look up a BrowsingContext in the current process by ID.
300 static already_AddRefed<BrowsingContext> Get(uint64_t aId);
301 static already_AddRefed<BrowsingContext> Get(GlobalObject&, uint64_t aId) {
302 return Get(aId);
303 }
304 // Look up the top-level BrowsingContext by BrowserID.
305 static already_AddRefed<BrowsingContext> GetCurrentTopByBrowserId(
306 uint64_t aBrowserId);
307 static already_AddRefed<BrowsingContext> GetCurrentTopByBrowserId(
308 GlobalObject&, uint64_t aId) {
309 return GetCurrentTopByBrowserId(aId);
310 }
311
312 static void UpdateCurrentTopByBrowserId(BrowsingContext* aNewBrowsingContext);
313
314 static already_AddRefed<BrowsingContext> GetFromWindow(
315 WindowProxyHolder& aProxy);
316 static already_AddRefed<BrowsingContext> GetFromWindow(
317 GlobalObject&, WindowProxyHolder& aProxy) {
318 return GetFromWindow(aProxy);
319 }
320
321 static void DiscardFromContentParent(ContentParent* aCP);
322
323 // Create a brand-new toplevel BrowsingContext with no relationships to other
324 // BrowsingContexts, and which is not embedded within any <browser> or frame
325 // element.
326 //
327 // This BrowsingContext is immediately attached, and cannot have LoadContext
328 // flags customized unless it is of `Type::Chrome`.
329 //
330 // The process which created this BrowsingContext is responsible for detaching
331 // it.
332 static already_AddRefed<BrowsingContext> CreateIndependent(Type aType);
333
334 // Create a brand-new BrowsingContext object, but does not immediately attach
335 // it. State such as OriginAttributes and PrivateBrowsingId may be customized
336 // to configure the BrowsingContext before it is attached.
337 //
338 // `EnsureAttached()` must be called before the BrowsingContext is used for a
339 // DocShell, BrowserParent, or BrowserBridgeChild.
340 static already_AddRefed<BrowsingContext> CreateDetached(
341 nsGlobalWindowInner* aParent, BrowsingContext* aOpener,
342 BrowsingContextGroup* aSpecificGroup, const nsAString& aName, Type aType,
343 bool aIsPopupRequested, bool aCreatedDynamically = false);
344
345 void EnsureAttached();
346
347 bool EverAttached() const { return mEverAttached; }
348
349 // Cast this object to a canonical browsing context, and return it.
350 CanonicalBrowsingContext* Canonical();
351
352 // Is the most recent Document in this BrowsingContext loaded within this
353 // process? This may be true with a null mDocShell after the Window has been
354 // closed.
355 bool IsInProcess() const { return mIsInProcess; }
356
357 bool IsOwnedByProcess() const;
358
359 bool CanHaveRemoteOuterProxies() const {
360 return !mIsInProcess || mDanglingRemoteOuterProxies;
361 }
362
363 // Has this BrowsingContext been discarded. A discarded browsing context has
364 // been destroyed, and may not be available on the other side of an IPC
365 // message.
366 bool IsDiscarded() const { return mIsDiscarded; }
367
368 // Returns true if none of the BrowsingContext's ancestor BrowsingContexts or
369 // WindowContexts are discarded or cached.
370 bool AncestorsAreCurrent() const;
371
372 bool Windowless() const { return mWindowless; }
373
374 // Get the DocShell for this BrowsingContext if it is in-process, or
375 // null if it's not.
376 nsIDocShell* GetDocShell() const { return mDocShell; }
377 void SetDocShell(nsIDocShell* aDocShell);
378 void ClearDocShell() { mDocShell = nullptr; }
379
380 // Get the Document for this BrowsingContext if it is in-process, or
381 // null if it's not.
382 Document* GetDocument() const {
383 return mDocShell ? mDocShell->GetDocument() : nullptr;
384 }
385 Document* GetExtantDocument() const {
386 return mDocShell ? mDocShell->GetExtantDocument() : nullptr;
387 }
388
389 // This cleans up remote outer window proxies that might have been left behind
390 // when the browsing context went from being remote to local. It does this by
391 // turning them into cross-compartment wrappers to aOuter. If there is already
392 // a remote proxy in the compartment of aOuter, then aOuter will get swapped
393 // to it and the value of aOuter will be set to the object that used to be the
394 // remote proxy and is now an OuterWindowProxy.
395 void CleanUpDanglingRemoteOuterWindowProxies(
396 JSContext* aCx, JS::MutableHandle<JSObject*> aOuter);
397
398 // Get the embedder element for this BrowsingContext if the embedder is
399 // in-process, or null if it's not.
400 Element* GetEmbedderElement() const { return mEmbedderElement; }
401 void SetEmbedderElement(Element* aEmbedder);
402
403 // Return true if the type of the embedder element is either object
404 // or embed, false otherwise.
405 bool IsEmbedderTypeObjectOrEmbed();
406
407 // Called after the BrowingContext has been embedded in a FrameLoader. This
408 // happens after `SetEmbedderElement` is called on the BrowsingContext and
409 // after the BrowsingContext has been set on the FrameLoader.
410 void Embed();
411
412 // Get the outer window object for this BrowsingContext if it is in-process
413 // and still has a docshell, or null otherwise.
414 nsPIDOMWindowOuter* GetDOMWindow() const {
415 return mDocShell ? mDocShell->GetWindow() : nullptr;
416 }
417
418 uint64_t GetRequestContextId() const { return mRequestContextId; }
419
420 // Detach the current BrowsingContext from its parent, in both the
421 // child and the parent process.
422 void Detach(bool aFromIPC = false);
423
424 // Prepare this BrowsingContext to leave the current process.
425 void PrepareForProcessChange();
426
427 // Triggers a load in the process which currently owns this BrowsingContext.
428 nsresult LoadURI(nsDocShellLoadState* aLoadState,
429 bool aSetNavigating = false);
430
431 nsresult InternalLoad(nsDocShellLoadState* aLoadState);
432
433 // Removes the root document for this BrowsingContext tree from the BFCache,
434 // if it is cached, and returns true if it was.
435 bool RemoveRootFromBFCacheSync();
436
437 // If the load state includes a source BrowsingContext has been passed, check
438 // to see if we are sandboxed from it as the result of an iframe or CSP
439 // sandbox.
440 nsresult CheckSandboxFlags(nsDocShellLoadState* aLoadState);
441
442 void DisplayLoadError(const nsAString& aURI);
443
444 // Check that this browsing context is targetable for navigations (i.e. that
445 // it is neither closed, cached, nor discarded).
446 bool IsTargetable() const;
447
448 // True if this browsing context is inactive and is able to be suspended.
449 bool InactiveForSuspend() const;
450
451 const nsString& Name() const { return GetName(); }
452 void GetName(nsAString& aName) { aName = GetName(); }
453 bool NameEquals(const nsAString& aName) { return GetName().Equals(aName); }
454
455 Type GetType() const { return mType; }
456 bool IsContent() const { return mType == Type::Content; }
457 bool IsChrome() const { return !IsContent(); }
458
459 bool IsTop() const { return !GetParent(); }
460 bool IsSubframe() const { return !IsTop(); }
461
462 bool IsTopContent() const { return IsContent() && IsTop(); }
463
464 bool IsInSubtreeOf(BrowsingContext* aContext);
465
466 bool IsContentSubframe() const { return IsContent() && IsSubframe(); }
467
468 // non-zero
469 uint64_t Id() const { return mBrowsingContextId; }
470
471 BrowsingContext* GetParent() const;
472 BrowsingContext* Top();
473 const BrowsingContext* Top() const;
474
475 int32_t IndexOf(BrowsingContext* aChild);
476
477 // NOTE: Unlike `GetEmbedderWindowGlobal`, `GetParentWindowContext` does not
478 // cross toplevel content browser boundaries.
479 WindowContext* GetParentWindowContext() const { return mParentWindow; }
480 WindowContext* GetTopWindowContext() const;
481
482 already_AddRefed<BrowsingContext> GetOpener() const {
483 RefPtr<BrowsingContext> opener(Get(GetOpenerId()));
484 if (!mIsDiscarded && opener && !opener->mIsDiscarded) {
485 MOZ_DIAGNOSTIC_ASSERT(opener->mType == mType);
486 return opener.forget();
487 }
488 return nullptr;
489 }
490 void SetOpener(BrowsingContext* aOpener);
491 bool HasOpener() const;
492
493 bool HadOriginalOpener() const { return GetHadOriginalOpener(); }
494
495 // Returns true if the browsing context and top context are same origin
496 bool SameOriginWithTop();
497
498 /**
499 * When a new browsing context is opened by a sandboxed document, it needs to
500 * keep track of the browsing context that opened it, so that it can be
501 * navigated by it. This is the "one permitted sandboxed navigator".
502 */
503 already_AddRefed<BrowsingContext> GetOnePermittedSandboxedNavigator() const {
504 return Get(GetOnePermittedSandboxedNavigatorId());
505 }
506 [[nodiscard]] nsresult SetOnePermittedSandboxedNavigator(
507 BrowsingContext* aNavigator) {
508 if (GetOnePermittedSandboxedNavigatorId()) {
509 MOZ_ASSERT(false,
510 "One Permitted Sandboxed Navigator should only be set once.");
511 return NS_ERROR_FAILURE;
512 } else {
513 return SetOnePermittedSandboxedNavigatorId(aNavigator ? aNavigator->Id()
514 : 0);
515 }
516 }
517
518 uint32_t SandboxFlags() const { return GetSandboxFlags(); }
519
520 Span<RefPtr<BrowsingContext>> Children() const;
521 void GetChildren(nsTArray<RefPtr<BrowsingContext>>& aChildren);
522
523 Span<RefPtr<BrowsingContext>> NonSyntheticChildren() const;
524
525 const nsTArray<RefPtr<WindowContext>>& GetWindowContexts() {
526 return mWindowContexts;
527 }
528 void GetWindowContexts(nsTArray<RefPtr<WindowContext>>& aWindows);
529
530 void RegisterWindowContext(WindowContext* aWindow);
531 void UnregisterWindowContext(WindowContext* aWindow);
532 WindowContext* GetCurrentWindowContext() const {
533 return mCurrentWindowContext;
534 }
535
536 // Helpers to traverse this BrowsingContext subtree. Note that these will only
537 // traverse active contexts, and will ignore ones in the BFCache.
538 enum class WalkFlag {
539 Next,
540 Skip,
541 Stop,
542 };
543
544 /**
545 * Walk the browsing context tree in pre-order and call `aCallback`
546 * for every node in the tree. PreOrderWalk accepts two types of
547 * callbacks, either of the type `void(BrowsingContext*)` or
548 * `WalkFlag(BrowsingContext*)`. The former traverses the entire
549 * tree, but the latter let's you control if a sub-tree should be
550 * skipped by returning `WalkFlag::Skip`, completely abort traversal
551 * by returning `WalkFlag::Stop` or continue as normal with
552 * `WalkFlag::Next`.
553 */
554 template <typename F>
555 void PreOrderWalk(F&& aCallback) {
556 if constexpr (std::is_void_v<
557 typename std::invoke_result_t<F, BrowsingContext*>>) {
558 PreOrderWalkVoid(std::forward<F>(aCallback));
559 } else {
560 PreOrderWalkFlag(std::forward<F>(aCallback));
561 }
562 }
563
564 void PreOrderWalkVoid(const std::function<void(BrowsingContext*)>& aCallback);
565 WalkFlag PreOrderWalkFlag(
566 const std::function<WalkFlag(BrowsingContext*)>& aCallback);
567
568 void PostOrderWalk(const std::function<void(BrowsingContext*)>& aCallback);
569
570 void GetAllBrowsingContextsInSubtree(
571 nsTArray<RefPtr<BrowsingContext>>& aBrowsingContexts);
572
573 BrowsingContextGroup* Group() { return mGroup; }
574
575 // WebIDL bindings for nsILoadContext
576 Nullable<WindowProxyHolder> GetAssociatedWindow();
577 Nullable<WindowProxyHolder> GetTopWindow();
578 Element* GetTopFrameElement();
579 bool GetIsContent() { return IsContent(); }
580 void SetUsePrivateBrowsing(bool aUsePrivateBrowsing, ErrorResult& aError);
581 // Needs a different name to disambiguate from the xpidl method with
582 // the same signature but different return value.
583 void SetUseTrackingProtectionWebIDL(bool aUseTrackingProtection,
584 ErrorResult& aRv);
585 bool UseTrackingProtectionWebIDL() { return UseTrackingProtection(); }
586 void GetOriginAttributes(JSContext* aCx, JS::MutableHandle<JS::Value> aVal,
587 ErrorResult& aError);
588
589 bool InRDMPane() const { return GetInRDMPane(); }
590
591 bool WatchedByDevTools();
592 void SetWatchedByDevTools(bool aWatchedByDevTools, ErrorResult& aRv);
593
594 dom::TouchEventsOverride TouchEventsOverride() const;
595 bool TargetTopLevelLinkClicksToBlank() const;
596
597 bool FullscreenAllowed() const;
598
599 float FullZoom() const { return GetFullZoom(); }
600 float TextZoom() const { return GetTextZoom(); }
601
602 float OverrideDPPX() const { return Top()->GetOverrideDPPX(); }
603
604 bool SuspendMediaWhenInactive() const {
605 return GetSuspendMediaWhenInactive();
606 }
607
608 bool IsActive() const;
609 bool ForceOffline() const { return GetForceOffline(); }
610
611 bool ForceDesktopViewport() const { return GetForceDesktopViewport(); }
612
613 bool AuthorStyleDisabledDefault() const {
614 return GetAuthorStyleDisabledDefault();
615 }
616
617 bool UseGlobalHistory() const { return GetUseGlobalHistory(); }
618
619 bool GetIsActiveBrowserWindow();
620
621 void SetIsActiveBrowserWindow(bool aActive);
622
623 uint64_t BrowserId() const { return GetBrowserId(); }
624
625 bool IsLoading();
626
627 void GetEmbedderElementType(nsString& aElementType) {
628 if (GetEmbedderElementType().isSome()) {
629 aElementType = GetEmbedderElementType().value();
630 }
631 }
632
633 bool IsLoadingIdentifier(uint64_t aLoadIdentifer) {
634 if (GetCurrentLoadIdentifier() &&
635 *GetCurrentLoadIdentifier() == aLoadIdentifer) {
636 return true;
637 }
638 return false;
639 }
640
641 // ScreenOrientation related APIs
642 [[nodiscard]] nsresult SetCurrentOrientation(OrientationType aType,
643 float aAngle) {
644 Transaction txn;
645 txn.SetCurrentOrientationType(aType);
646 txn.SetCurrentOrientationAngle(aAngle);
647 return txn.Commit(this);
648 }
649
650 void SetRDMPaneOrientation(OrientationType aType, float aAngle,
651 ErrorResult& aRv) {
652 if (InRDMPane()) {
653 if (NS_FAILED(SetCurrentOrientation(aType, aAngle))) {
654 aRv.ThrowInvalidStateError("Browsing context is discarded");
655 }
656 }
657 }
658
659 void SetRDMPaneMaxTouchPoints(uint8_t aMaxTouchPoints, ErrorResult& aRv) {
660 if (InRDMPane()) {
661 SetMaxTouchPointsOverride(aMaxTouchPoints, aRv);
662 }
663 }
664
665 // Find a browsing context in this context's list of
666 // children. Doesn't consider the special names, '_self', '_parent',
667 // '_top', or '_blank'. Performs access control checks with regard to
668 // 'this'.
669 BrowsingContext* FindChildWithName(const nsAString& aName,
670 WindowGlobalChild& aRequestingWindow);
671
672 // Find a browsing context in the subtree rooted at 'this' Doesn't
673 // consider the special names, '_self', '_parent', '_top', or
674 // '_blank'.
675 //
676 // If passed, performs access control checks with regard to
677 // 'aRequestingContext', otherwise performs no access checks.
678 BrowsingContext* FindWithNameInSubtree(const nsAString& aName,
679 WindowGlobalChild* aRequestingWindow);
680
681 // Find the special browsing context if aName is '_self', '_parent',
682 // '_top', but not '_blank'. The latter is handled in FindWithName
683 BrowsingContext* FindWithSpecialName(const nsAString& aName,
684 WindowGlobalChild& aRequestingWindow);
685
686 nsISupports* GetParentObject() const;
687 JSObject* WrapObject(JSContext* aCx,
688 JS::Handle<JSObject*> aGivenProto) override;
689
690 // Return the window proxy object that corresponds to this browsing context.
691 inline JSObject* GetWindowProxy() const { return mWindowProxy; }
692 inline JSObject* GetUnbarrieredWindowProxy() const {
693 return mWindowProxy.unbarrieredGet();
694 }
695
696 // Set the window proxy object that corresponds to this browsing context.
697 void SetWindowProxy(JS::Handle<JSObject*> aWindowProxy) {
698 mWindowProxy = aWindowProxy;
699 }
700
701 Nullable<WindowProxyHolder> GetWindow();
702
703 NS_DECL_CYCLE_COLLECTING_ISUPPORTS
704 NS_DECL_CYCLE_COLLECTION_SKIPPABLE_SCRIPT_HOLDER_CLASS(BrowsingContext)
705 NS_DECL_NSILOADCONTEXT
706
707 // Window APIs that are cross-origin-accessible (from the HTML spec).
708 WindowProxyHolder Window();
709 BrowsingContext* GetBrowsingContext() { return this; };
710 BrowsingContext* Self() { return this; }
711 void Location(JSContext* aCx, JS::MutableHandle<JSObject*> aLocation,
712 ErrorResult& aError);
713 void Close(CallerType aCallerType, ErrorResult& aError);
714 bool GetClosed(ErrorResult&) { return GetClosed(); }
715 void Focus(CallerType aCallerType, ErrorResult& aError);
716 void Blur(CallerType aCallerType, ErrorResult& aError);
717 WindowProxyHolder GetFrames(ErrorResult& aError);
718 int32_t Length() const { return Children().Length(); }
719 Nullable<WindowProxyHolder> GetTop(ErrorResult& aError);
720 void GetOpener(JSContext* aCx, JS::MutableHandle<JS::Value> aOpener,
721 ErrorResult& aError) const;
722 Nullable<WindowProxyHolder> GetParent(ErrorResult& aError);
723 void PostMessageMoz(JSContext* aCx, JS::Handle<JS::Value> aMessage,
724 const nsAString& aTargetOrigin,
725 const Sequence<JSObject*>& aTransfer,
726 nsIPrincipal& aSubjectPrincipal, ErrorResult& aError);
727 void PostMessageMoz(JSContext* aCx, JS::Handle<JS::Value> aMessage,
728 const WindowPostMessageOptions& aOptions,
729 nsIPrincipal& aSubjectPrincipal, ErrorResult& aError);
730
731 void GetCustomUserAgent(nsAString& aUserAgent) {
732 aUserAgent = Top()->GetUserAgentOverride();
733 }
734 nsresult SetCustomUserAgent(const nsAString& aUserAgent);
735 void SetCustomUserAgent(const nsAString& aUserAgent, ErrorResult& aRv);
736
737 void GetCustomPlatform(nsAString& aPlatform) {
738 aPlatform = Top()->GetPlatformOverride();
739 }
740 void SetCustomPlatform(const nsAString& aPlatform, ErrorResult& aRv);
741
742 JSObject* WrapObject(JSContext* aCx);
743
744 static JSObject* ReadStructuredClone(JSContext* aCx,
745 JSStructuredCloneReader* aReader,
746 StructuredCloneHolder* aHolder);
747 bool WriteStructuredClone(JSContext* aCx, JSStructuredCloneWriter* aWriter,
748 StructuredCloneHolder* aHolder);
749
750 void StartDelayedAutoplayMediaComponents();
751
752 [[nodiscard]] nsresult ResetGVAutoplayRequestStatus();
753
754 /**
755 * Information required to initialize a BrowsingContext in another process.
756 * This object may be serialized over IPC.
757 */
758 struct IPCInitializer {
759 uint64_t mId = 0;
760
761 // IDs are used for Parent and Opener to allow for this object to be
762 // deserialized before other BrowsingContext in the BrowsingContextGroup
763 // have been initialized.
764 uint64_t mParentId = 0;
765 already_AddRefed<WindowContext> GetParent();
766 already_AddRefed<BrowsingContext> GetOpener();
767
768 uint64_t GetOpenerId() const { return mFields.Get<IDX_OpenerId>(); }
769
770 bool mWindowless = false;
771 bool mUseRemoteTabs = false;
772 bool mUseRemoteSubframes = false;
773 bool mCreatedDynamically = false;
774 int32_t mChildOffset = 0;
775 int32_t mSessionHistoryIndex = -1;
776 int32_t mSessionHistoryCount = 0;
777 OriginAttributes mOriginAttributes;
778 uint64_t mRequestContextId = 0;
779
780 FieldValues mFields;
781 };
782
783 // Create an IPCInitializer object for this BrowsingContext.
784 IPCInitializer GetIPCInitializer();
785
786 // Create a BrowsingContext object from over IPC.
787 static mozilla::ipc::IPCResult CreateFromIPC(IPCInitializer&& aInitializer,
788 BrowsingContextGroup* aGroup,
789 ContentParent* aOriginProcess);
790
791 bool IsSandboxedFrom(BrowsingContext* aTarget);
792
793 // The runnable will be called once there is idle time, or the top level
794 // page has been loaded or if a timeout has fired.
795 // Must be called only on the top level BrowsingContext.
796 void AddDeprioritizedLoadRunner(nsIRunnable* aRunner);
797
798 RefPtr<SessionStorageManager> GetSessionStorageManager();
799
800 // Set PendingInitialization on this BrowsingContext before the context has
801 // been attached.
802 void InitPendingInitialization(bool aPendingInitialization) {
803 MOZ_ASSERT(!EverAttached());
804 mFields.SetWithoutSyncing<IDX_PendingInitialization>(
805 aPendingInitialization);
806 }
807
808 bool CreatedDynamically() const { return mCreatedDynamically; }
809
810 // Returns true if this browsing context, or any ancestor to this browsing
811 // context was created dynamically. See also `CreatedDynamically`.
812 bool IsDynamic() const;
813
814 int32_t ChildOffset() const { return mChildOffset; }
815
816 bool GetOffsetPath(nsTArray<uint32_t>& aPath) const;
817
818 const OriginAttributes& OriginAttributesRef() { return mOriginAttributes; }
819 nsresult SetOriginAttributes(const OriginAttributes& aAttrs);
820
821 void GetHistoryID(JSContext* aCx, JS::MutableHandle<JS::Value> aVal,
822 ErrorResult& aError);
823
824 // This should only be called on the top browsing context.
825 void InitSessionHistory();
826
827 // This will only ever return a non-null value if called on the top browsing
828 // context.
829 ChildSHistory* GetChildSessionHistory();
830
831 bool CrossOriginIsolated();
832
833 // Check if it is allowed to open a popup from the current browsing
834 // context or any of its ancestors.
835 bool IsPopupAllowed();
836
837 // aCurrentURI is only required to be non-null if the load type contains the
838 // nsIWebNavigation::LOAD_FLAGS_IS_REFRESH flag and aInfo is for a refresh to
839 // the current URI.
840 void SessionHistoryCommit(const LoadingSessionHistoryInfo& aInfo,
841 uint32_t aLoadType, nsIURI* aCurrentURI,
842 SessionHistoryInfo* aPreviousActiveEntry,
843 bool aPersist, bool aCloneEntryChildren,
844 bool aChannelExpired, uint32_t aCacheKey);
845
846 // Set a new active entry on this browsing context. This is used for
847 // implementing history.pushState/replaceState and same document navigations.
848 // The new active entry will be linked to the current active entry through
849 // its shared state.
850 // aPreviousScrollPos is the scroll position that needs to be saved on the
851 // previous active entry.
852 // aUpdatedCacheKey is the cache key to set on the new active entry. If
853 // aUpdatedCacheKey is 0 then it will be ignored.
854 void SetActiveSessionHistoryEntry(const Maybe<nsPoint>& aPreviousScrollPos,
855 SessionHistoryInfo* aInfo,
856 uint32_t aLoadType,
857 uint32_t aUpdatedCacheKey,
858 bool aUpdateLength = true);
859
860 // Replace the active entry for this browsing context. This is used for
861 // implementing history.replaceState and same document navigations.
862 void ReplaceActiveSessionHistoryEntry(SessionHistoryInfo* aInfo);
863
864 // Removes dynamic child entries of the active entry.
865 void RemoveDynEntriesFromActiveSessionHistoryEntry();
866
867 // Removes entries corresponding to this BrowsingContext from session history.
868 void RemoveFromSessionHistory(const nsID& aChangeID);
869
870 void SetTriggeringAndInheritPrincipals(nsIPrincipal* aTriggeringPrincipal,
871 nsIPrincipal* aPrincipalToInherit,
872 uint64_t aLoadIdentifier);
873
874 // Return mTriggeringPrincipal and mPrincipalToInherit if the load id
875 // saved with the principal matches the current load identifier of this BC.
876 std::tuple<nsCOMPtr<nsIPrincipal>, nsCOMPtr<nsIPrincipal>>
877 GetTriggeringAndInheritPrincipalsForCurrentLoad();
878
879 void HistoryGo(int32_t aOffset, uint64_t aHistoryEpoch,
880 bool aRequireUserInteraction, bool aUserActivation,
881 std::function<void(Maybe<int32_t>&&)>&& aResolver);
882
883 bool ShouldUpdateSessionHistory(uint32_t aLoadType);
884
885 // Checks if we reached the rate limit for calls to Location and History API.
886 // The rate limit is controlled by the
887 // "dom.navigation.locationChangeRateLimit" prefs.
888 // Rate limit applies per BrowsingContext.
889 // Returns NS_OK if we are below the rate limit and increments the counter.
890 // Returns NS_ERROR_DOM_SECURITY_ERR if limit is reached.
891 nsresult CheckLocationChangeRateLimit(CallerType aCallerType);
892
893 void ResetLocationChangeRateLimit();
894
895 mozilla::dom::DisplayMode DisplayMode() { return Top()->GetDisplayMode(); }
896
897 // Returns canFocus, isActive
898 std::tuple<bool, bool> CanFocusCheck(CallerType aCallerType);
899
900 bool CanBlurCheck(CallerType aCallerType);
901
902 // Examine the current document state to see if we're in a way that is
903 // typically abused by web designers. The window.open code uses this
904 // routine to determine whether to allow the new window.
905 // Returns a value from the PopupControlState enum.
906 PopupBlocker::PopupControlState RevisePopupAbuseLevel(
907 PopupBlocker::PopupControlState aControl);
908
909 // Get the modifiers associated with the user activation for relevant
910 // documents. The window.open code uses this routine to determine where the
911 // new window should be located.
912 void GetUserActivationModifiersForPopup(
913 UserActivation::Modifiers* aModifiers);
914
915 void IncrementHistoryEntryCountForBrowsingContext();
916
917 bool ServiceWorkersTestingEnabled() const {
918 return GetServiceWorkersTestingEnabled();
919 }
920
921 void GetMediumOverride(nsAString& aOverride) const {
922 aOverride = GetMediumOverride();
923 }
924
925 dom::PrefersColorSchemeOverride PrefersColorSchemeOverride() const {
926 return GetPrefersColorSchemeOverride();
927 }
928
929 bool IsInBFCache() const;
930
931 bool AllowJavascript() const { return GetAllowJavascript(); }
932 bool CanExecuteScripts() const { return mCanExecuteScripts; }
933
934 uint32_t DefaultLoadFlags() const { return GetDefaultLoadFlags(); }
935
936 // When request for page awake, it would increase a count that is used to
937 // prevent whole browsing context tree from being suspended. The request can
938 // be called multiple times. When calling the revoke, it would decrease the
939 // count and once the count reaches to zero, the browsing context tree could
940 // be suspended when the tree is inactive.
941 void RequestForPageAwake();
942 void RevokeForPageAwake();
943
944 void AddDiscardListener(std::function<void(uint64_t)>&& aListener);
945
946 bool IsAppTab() { return GetIsAppTab(); }
947 bool HasSiblings() { return GetHasSiblings(); }
948
949 bool IsUnderHiddenEmbedderElement() const {
950 return GetIsUnderHiddenEmbedderElement();
951 }
952
953 void LocationCreated(dom::Location* aLocation);
954 void ClearCachedValuesOfLocations();
955
956 protected:
957 virtual ~BrowsingContext();
958 BrowsingContext(WindowContext* aParentWindow, BrowsingContextGroup* aGroup,
959 uint64_t aBrowsingContextId, Type aType, FieldValues&& aInit);
960
961 void SetChildSHistory(ChildSHistory* aChildSHistory);
962 already_AddRefed<ChildSHistory> ForgetChildSHistory() {
963 // FIXME Do we need to unset mHasSessionHistory?
964 return mChildSessionHistory.forget();
965 }
966
967 static bool ShouldAddEntryForRefresh(nsIURI* aCurrentURI,
968 const SessionHistoryInfo& aInfo);
969 static bool ShouldAddEntryForRefresh(nsIURI* aCurrentURI, nsIURI* aNewURI,
970 bool aHasPostData);
971
972 private:
973 mozilla::ipc::IPCResult Attach(bool aFromIPC, ContentParent* aOriginProcess);
974
975 // Recomputes whether we can execute scripts in this BrowsingContext based on
976 // the value of AllowJavascript() and whether scripts are allowed in the
977 // parent WindowContext. Called whenever the AllowJavascript() flag or the
978 // parent WC changes.
979 void RecomputeCanExecuteScripts();
980
981 // Is it early enough in the BrowsingContext's lifecycle that it is still
982 // OK to set OriginAttributes?
983 bool CanSetOriginAttributes();
984
985 void AssertOriginAttributesMatchPrivateBrowsing();
986
987 // Assert that the BrowsingContext's LoadContext flags appear coherent
988 // relative to related BrowsingContexts.
989 void AssertCoherentLoadContext();
990
991 friend class ::nsOuterWindowProxy;
992 friend class ::nsGlobalWindowOuter;
993 friend class WindowContext;
994
995 // Update the window proxy object that corresponds to this browsing context.
996 // This should be called from the window proxy object's objectMoved hook, if
997 // the object mWindowProxy points to was moved by the JS GC.
998 void UpdateWindowProxy(JSObject* obj, JSObject* old) {
999 if (mWindowProxy) {
1000 MOZ_ASSERT(mWindowProxy == old);
1001 mWindowProxy = obj;
1002 }
1003 }
1004 // Clear the window proxy object that corresponds to this browsing context.
1005 // This should be called if the window proxy object is finalized, or it can't
1006 // reach its browsing context anymore.
1007 void ClearWindowProxy() { mWindowProxy = nullptr; }
1008
1009 friend class Location;
1010 friend class RemoteLocationProxy;
1011 /**
1012 * LocationProxy is the class for the native object stored as a private in a
1013 * RemoteLocationProxy proxy representing a Location object in a different
1014 * process. It forwards all operations to its BrowsingContext and aggregates
1015 * its refcount to that BrowsingContext.
1016 */
1017 class LocationProxy final : public LocationBase {
1018 public:
1019 MozExternalRefCountType AddRef() { return GetBrowsingContext()->AddRef(); }
1020 MozExternalRefCountType Release() {
1021 return GetBrowsingContext()->Release();
1022 }
1023
1024 protected:
1025 friend class RemoteLocationProxy;
1026 BrowsingContext* GetBrowsingContext() override {
1027 return reinterpret_cast<BrowsingContext*>(
1028 uintptr_t(this) - offsetof(BrowsingContext, mLocation));
1029 }
1030
1031 nsIDocShell* GetDocShell() override { return nullptr; }
1032 };
1033
1034 // Send a given `BaseTransaction` object to the correct remote.
1035 void SendCommitTransaction(ContentParent* aParent,
1036 const BaseTransaction& aTxn, uint64_t aEpoch);
1037 void SendCommitTransaction(ContentChild* aChild, const BaseTransaction& aTxn,
1038 uint64_t aEpoch);
1039
1040 bool CanSet(FieldIndex<IDX_SessionStoreEpoch>, uint32_t aEpoch,
1041 ContentParent* aSource) {
1042 return IsTop() && !aSource;
1043 }
1044
1045 void DidSet(FieldIndex<IDX_SessionStoreEpoch>, uint32_t aOldValue);
1046
1047 using CanSetResult = syncedcontext::CanSetResult;
1048
1049 // Ensure that opener is in the same BrowsingContextGroup.
1050 bool CanSet(FieldIndex<IDX_OpenerId>, const uint64_t& aValue,
1051 ContentParent* aSource) {
1052 if (aValue != 0) {
1053 RefPtr<BrowsingContext> opener = Get(aValue);
1054 return opener && opener->Group() == Group();
1055 }
1056 return true;
1057 }
1058
1059 bool CanSet(FieldIndex<IDX_OpenerPolicy>,
1060 nsILoadInfo::CrossOriginOpenerPolicy, ContentParent*);
1061
1062 bool CanSet(FieldIndex<IDX_ServiceWorkersTestingEnabled>, bool,
1063 ContentParent*) {
1064 return IsTop();
1065 }
1066
1067 bool CanSet(FieldIndex<IDX_MediumOverride>, const nsString&, ContentParent*) {
1068 return IsTop();
1069 }
1070
1071 bool CanSet(FieldIndex<IDX_EmbedderColorSchemes>, const EmbedderColorSchemes&,
1072 ContentParent* aSource) {
1073 return CheckOnlyEmbedderCanSet(aSource);
1074 }
1075
1076 bool CanSet(FieldIndex<IDX_PrefersColorSchemeOverride>,
1077 dom::PrefersColorSchemeOverride, ContentParent*) {
1078 return IsTop();
1079 }
1080
1081 void DidSet(FieldIndex<IDX_InRDMPane>, bool aOldValue);
1082
1083 void DidSet(FieldIndex<IDX_EmbedderColorSchemes>,
1084 EmbedderColorSchemes&& aOldValue);
1085
1086 void DidSet(FieldIndex<IDX_PrefersColorSchemeOverride>,
1087 dom::PrefersColorSchemeOverride aOldValue);
1088
1089 template <typename Callback>
1090 void WalkPresContexts(Callback&&);
1091 void PresContextAffectingFieldChanged();
1092
1093 void DidSet(FieldIndex<IDX_MediumOverride>, nsString&& aOldValue);
1094
1095 bool CanSet(FieldIndex<IDX_SuspendMediaWhenInactive>, bool, ContentParent*) {
1096 return IsTop();
1097 }
1098
1099 bool CanSet(FieldIndex<IDX_TouchEventsOverrideInternal>,
1100 dom::TouchEventsOverride aTouchEventsOverride,
1101 ContentParent* aSource);
1102 void DidSet(FieldIndex<IDX_TouchEventsOverrideInternal>,
1103 dom::TouchEventsOverride&& aOldValue);
1104
1105 bool CanSet(FieldIndex<IDX_DisplayMode>, const enum DisplayMode& aDisplayMode,
1106 ContentParent* aSource) {
1107 return IsTop();
1108 }
1109
1110 void DidSet(FieldIndex<IDX_DisplayMode>, enum DisplayMode aOldValue);
1111
1112 bool CanSet(FieldIndex<IDX_ExplicitActive>, const ExplicitActiveStatus&,
1113 ContentParent* aSource);
1114 void DidSet(FieldIndex<IDX_ExplicitActive>, ExplicitActiveStatus aOldValue);
1115
1116 bool CanSet(FieldIndex<IDX_IsActiveBrowserWindowInternal>, const bool& aValue,
1117 ContentParent* aSource);
1118 void DidSet(FieldIndex<IDX_IsActiveBrowserWindowInternal>, bool aOldValue);
1119
1120 // Ensure that we only set the flag on the top level browsingContext.
1121 // And then, we do a pre-order walk in the tree to refresh the
1122 // volume of all media elements.
1123 void DidSet(FieldIndex<IDX_Muted>);
1124
1125 bool CanSet(FieldIndex<IDX_IsAppTab>, const bool& aValue,
1126 ContentParent* aSource);
1127
1128 bool CanSet(FieldIndex<IDX_HasSiblings>, const bool& aValue,
1129 ContentParent* aSource);
1130
1131 bool CanSet(FieldIndex<IDX_ShouldDelayMediaFromStart>, const bool& aValue,
1132 ContentParent* aSource);
1133 void DidSet(FieldIndex<IDX_ShouldDelayMediaFromStart>, bool aOldValue);
1134
1135 bool CanSet(FieldIndex<IDX_OverrideDPPX>, const float& aValue,
1136 ContentParent* aSource);
1137 void DidSet(FieldIndex<IDX_OverrideDPPX>, float aOldValue);
1138
1139 bool CanSet(FieldIndex<IDX_EmbedderInnerWindowId>, const uint64_t& aValue,
1140 ContentParent* aSource);
1141
1142 CanSetResult CanSet(FieldIndex<IDX_CurrentInnerWindowId>,
1143 const uint64_t& aValue, ContentParent* aSource);
1144
1145 void DidSet(FieldIndex<IDX_CurrentInnerWindowId>);
1146
1147 bool CanSet(FieldIndex<IDX_ParentInitiatedNavigationEpoch>,
1148 const uint64_t& aValue, ContentParent* aSource);
1149
1150 bool CanSet(FieldIndex<IDX_IsPopupSpam>, const bool& aValue,
1151 ContentParent* aSource);
1152
1153 void DidSet(FieldIndex<IDX_IsPopupSpam>);
1154
1155 void DidSet(FieldIndex<IDX_GVAudibleAutoplayRequestStatus>);
1156 void DidSet(FieldIndex<IDX_GVInaudibleAutoplayRequestStatus>);
1157
1158 void DidSet(FieldIndex<IDX_Loading>);
1159
1160 void DidSet(FieldIndex<IDX_AncestorLoading>);
1161
1162 void DidSet(FieldIndex<IDX_PlatformOverride>);
1163 CanSetResult CanSet(FieldIndex<IDX_PlatformOverride>,
1164 const nsString& aPlatformOverride,
1165 ContentParent* aSource);
1166
1167 void DidSet(FieldIndex<IDX_UserAgentOverride>);
1168 CanSetResult CanSet(FieldIndex<IDX_UserAgentOverride>,
1169 const nsString& aUserAgent, ContentParent* aSource);
1170 bool CanSet(FieldIndex<IDX_OrientationLock>,
1171 const mozilla::hal::ScreenOrientation& aOrientationLock,
1172 ContentParent* aSource);
1173
1174 bool CanSet(FieldIndex<IDX_EmbedderElementType>,
1175 const Maybe<nsString>& aInitiatorType, ContentParent* aSource);
1176
1177 bool CanSet(FieldIndex<IDX_MessageManagerGroup>,
1178 const nsString& aMessageManagerGroup, ContentParent* aSource);
1179
1180 CanSetResult CanSet(FieldIndex<IDX_AllowContentRetargeting>,
1181 const bool& aAllowContentRetargeting,
1182 ContentParent* aSource);
1183 CanSetResult CanSet(FieldIndex<IDX_AllowContentRetargetingOnChildren>,
1184 const bool& aAllowContentRetargetingOnChildren,
1185 ContentParent* aSource);
1186 bool CanSet(FieldIndex<IDX_FullscreenAllowedByOwner>, const bool&,
1187 ContentParent*);
1188 bool CanSet(FieldIndex<IDX_WatchedByDevToolsInternal>,
1189 const bool& aWatchedByDevToolsInternal, ContentParent* aSource);
1190
1191 CanSetResult CanSet(FieldIndex<IDX_DefaultLoadFlags>,
1192 const uint32_t& aDefaultLoadFlags,
1193 ContentParent* aSource);
1194 void DidSet(FieldIndex<IDX_DefaultLoadFlags>);
1195
1196 bool CanSet(FieldIndex<IDX_UseGlobalHistory>, const bool& aUseGlobalHistory,
1197 ContentParent* aSource);
1198
1199 bool CanSet(FieldIndex<IDX_TargetTopLevelLinkClicksToBlankInternal>,
1200 const bool& aTargetTopLevelLinkClicksToBlankInternal,
1201 ContentParent* aSource);
1202
1203 void DidSet(FieldIndex<IDX_HasSessionHistory>, bool aOldValue);
1204
1205 bool CanSet(FieldIndex<IDX_BrowserId>, const uint32_t& aValue,
1206 ContentParent* aSource);
1207
1208 bool CanSet(FieldIndex<IDX_UseErrorPages>, const bool& aUseErrorPages,
1209 ContentParent* aSource);
1210
1211 bool CanSet(FieldIndex<IDX_PendingInitialization>, bool aNewValue,
1212 ContentParent* aSource);
1213
1214 bool CanSet(FieldIndex<IDX_PageAwakeRequestCount>, uint32_t aNewValue,
1215 ContentParent* aSource);
1216 void DidSet(FieldIndex<IDX_PageAwakeRequestCount>, uint32_t aOldValue);
1217
1218 CanSetResult CanSet(FieldIndex<IDX_AllowJavascript>, bool aValue,
1219 ContentParent* aSource);
1220 void DidSet(FieldIndex<IDX_AllowJavascript>, bool aOldValue);
1221
1222 bool CanSet(FieldIndex<IDX_ForceDesktopViewport>, bool aValue,
1223 ContentParent* aSource) {
1224 return IsTop() && XRE_IsParentProcess();
1225 }
1226
1227 // TODO(emilio): Maybe handle the flag being set dynamically without
1228 // navigating? The previous code didn't do it tho, and a reload is probably
1229 // worth it regardless.
1230 // void DidSet(FieldIndex<IDX_ForceDesktopViewport>, bool aOldValue);
1231
1232 bool CanSet(FieldIndex<IDX_HasRestoreData>, bool aNewValue,
1233 ContentParent* aSource);
1234
1235 bool CanSet(FieldIndex<IDX_IsUnderHiddenEmbedderElement>,
1236 const bool& aIsUnderHiddenEmbedderElement,
1237 ContentParent* aSource);
1238
1239 bool CanSet(FieldIndex<IDX_ForceOffline>, bool aNewValue,
1240 ContentParent* aSource);
1241
1242 bool CanSet(FieldIndex<IDX_EmbeddedInContentDocument>, bool,
1243 ContentParent* aSource) {
1244 return CheckOnlyEmbedderCanSet(aSource);
1245 }
1246
1247 template <size_t I, typename T>
1248 bool CanSet(FieldIndex<I>, const T&, ContentParent*) {
1249 return true;
1250 }
1251
1252 // Overload `DidSet` to get notifications for a particular field being set.
1253 //
1254 // You can also overload the variant that gets the old value if you need it.
1255 template <size_t I>
1256 void DidSet(FieldIndex<I>) {}
1257 template <size_t I, typename T>
1258 void DidSet(FieldIndex<I>, T&& aOldValue) {}
1259
1260 void DidSet(FieldIndex<IDX_FullZoom>, float aOldValue);
1261 void DidSet(FieldIndex<IDX_TextZoom>, float aOldValue);
1262 void DidSet(FieldIndex<IDX_AuthorStyleDisabledDefault>);
1263
1264 bool CanSet(FieldIndex<IDX_IsInBFCache>, bool, ContentParent* aSource);
1265 void DidSet(FieldIndex<IDX_IsInBFCache>);
1266
1267 void DidSet(FieldIndex<IDX_SyntheticDocumentContainer>);
1268
1269 void DidSet(FieldIndex<IDX_IsUnderHiddenEmbedderElement>, bool aOldValue);
1270
1271 // Allow if the process attemping to set field is the same as the owning
1272 // process. Deprecated. New code that might use this should generally be moved
1273 // to WindowContext or be settable only by the parent process.
1274 CanSetResult LegacyRevertIfNotOwningOrParentProcess(ContentParent* aSource);
1275
1276 // True if the process attempting to set field is the same as the embedder's
1277 // process.
1278 bool CheckOnlyEmbedderCanSet(ContentParent* aSource);
1279
1280 void CreateChildSHistory();
1281
1282 using PrincipalWithLoadIdentifierTuple =
1283 std::tuple<nsCOMPtr<nsIPrincipal>, uint64_t>;
1284
1285 nsIPrincipal* GetSavedPrincipal(
1286 Maybe<PrincipalWithLoadIdentifierTuple> aPrincipalTuple);
1287
1288 // Type of BrowsingContent
1289 const Type mType;
1290
1291 // Unique id identifying BrowsingContext
1292 const uint64_t mBrowsingContextId;
1293
1294 RefPtr<BrowsingContextGroup> mGroup;
1295 RefPtr<WindowContext> mParentWindow;
1296 nsCOMPtr<nsIDocShell> mDocShell;
1297
1298 RefPtr<Element> mEmbedderElement;
1299
1300 nsTArray<RefPtr<WindowContext>> mWindowContexts;
1301 RefPtr<WindowContext> mCurrentWindowContext;
1302
1303 // This is not a strong reference, but using a JS::Heap for that should be
1304 // fine. The JSObject stored in here should be a proxy with a
1305 // nsOuterWindowProxy handler, which will update the pointer from its
1306 // objectMoved hook and clear it from its finalize hook.
1307 JS::Heap<JSObject*> mWindowProxy;
1308 LocationProxy mLocation;
1309
1310 // OriginAttributes for this BrowsingContext. May not be changed after this
1311 // BrowsingContext is attached.
1312 OriginAttributes mOriginAttributes;
1313
1314 // The network request context id, representing the nsIRequestContext
1315 // associated with this BrowsingContext, and LoadGroups created for it.
1316 uint64_t mRequestContextId = 0;
1317
1318 // Determines if private browsing should be used. May not be changed after
1319 // this BrowsingContext is attached. This field matches mOriginAttributes in
1320 // content Browsing Contexts. Currently treated as a binary value: 1 - in
1321 // private mode, 0 - not private mode.
1322 uint32_t mPrivateBrowsingId;
1323
1324 // True if Attach() has been called on this BrowsingContext already.
1325 bool mEverAttached : 1;
1326
1327 // Is the most recent Document in this BrowsingContext loaded within this
1328 // process? This may be true with a null mDocShell after the Window has been
1329 // closed.
1330 bool mIsInProcess : 1;
1331
1332 // Has this browsing context been discarded? BrowsingContexts should
1333 // only be discarded once.
1334 bool mIsDiscarded : 1;
1335
1336 // True if this BrowsingContext has no associated visible window, and is owned
1337 // by whichever process created it, even if top-level.
1338 bool mWindowless : 1;
1339
1340 // This is true if the BrowsingContext was out of process, but is now in
1341 // process, and might have remote window proxies that need to be cleaned up.
1342 bool mDanglingRemoteOuterProxies : 1;
1343
1344 // True if this BrowsingContext has been embedded in a element in this
1345 // process.
1346 bool mEmbeddedByThisProcess : 1;
1347
1348 // Determines if remote (out-of-process) tabs should be used. May not be
1349 // changed after this BrowsingContext is attached.
1350 bool mUseRemoteTabs : 1;
1351
1352 // Determines if out-of-process iframes should be used. May not be changed
1353 // after this BrowsingContext is attached.
1354 bool mUseRemoteSubframes : 1;
1355
1356 // True if this BrowsingContext is for a frame that was added dynamically.
1357 bool mCreatedDynamically : 1;
1358
1359 // Set to true if the browsing context is in the bfcache and pagehide has been
1360 // dispatched. When coming out from the bfcache, the value is set to false
1361 // before dispatching pageshow.
1362 bool mIsInBFCache : 1;
1363
1364 // Determines if we can execute scripts in this BrowsingContext. True if
1365 // AllowJavascript() is true and script execution is allowed in the parent
1366 // WindowContext.
1367 bool mCanExecuteScripts : 1;
1368
1369 // The original offset of this context in its container. This property is -1
1370 // if this BrowsingContext is for a frame that was added dynamically.
1371 int32_t mChildOffset;
1372
1373 // The start time of user gesture, this is only available if the browsing
1374 // context is in process.
1375 TimeStamp mUserGestureStart;
1376
1377 // Triggering principal and principal to inherit need to point to original
1378 // principal instances if the document is loaded in the same process as the
1379 // process that initiated the load. When the load starts we save the
1380 // principals along with the current load id.
1381 // These principals correspond to the most recent load that took place within
1382 // the process of this browsing context.
1383 Maybe<PrincipalWithLoadIdentifierTuple> mTriggeringPrincipal;
1384 Maybe<PrincipalWithLoadIdentifierTuple> mPrincipalToInherit;
1385
1386 class DeprioritizedLoadRunner
1387 : public mozilla::Runnable,
1388 public mozilla::LinkedListElement<DeprioritizedLoadRunner> {
1389 public:
1390 explicit DeprioritizedLoadRunner(nsIRunnable* aInner)
1391 : Runnable("DeprioritizedLoadRunner"), mInner(aInner) {}
1392
1393 NS_IMETHOD Run() override {
1394 if (mInner) {
1395 RefPtr<nsIRunnable> inner = std::move(mInner);
1396 inner->Run();
1397 }
1398
1399 return NS_OK;
1400 }
1401
1402 private:
1403 RefPtr<nsIRunnable> mInner;
1404 };
1405
1406 mozilla::LinkedList<DeprioritizedLoadRunner> mDeprioritizedLoadRunner;
1407
1408 RefPtr<SessionStorageManager> mSessionStorageManager;
1409 RefPtr<ChildSHistory> mChildSessionHistory;
1410
1411 nsTArray<std::function<void(uint64_t)>> mDiscardListeners;
1412
1413 // Counter and time span for rate limiting Location and History API calls.
1414 // Used by CheckLocationChangeRateLimit. Do not apply cross-process.
1415 uint32_t mLocationChangeRateLimitCount;
1416 mozilla::TimeStamp mLocationChangeRateLimitSpanStart;
1417
1418 mozilla::LinkedList<dom::Location> mLocations;
1419 };
1420
1421 /**
1422 * Gets a WindowProxy object for a BrowsingContext that lives in a different
1423 * process (creating the object if it doesn't already exist). The WindowProxy
1424 * object will be in the compartment that aCx is currently in. This should only
1425 * be called if aContext doesn't hold a docshell, otherwise the BrowsingContext
1426 * lives in this process, and a same-process WindowProxy should be used (see
1427 * nsGlobalWindowOuter). This should only be called by bindings code, ToJSValue
1428 * is the right API to get a WindowProxy for a BrowsingContext.
1429 *
1430 * If aTransplantTo is non-null, then the WindowProxy object will eventually be
1431 * transplanted onto it. Therefore it should be used as the value in the remote
1432 * proxy map. We assume that in this case the failure is unrecoverable, so we
1433 * crash immediately rather than return false.
1434 */
1435 extern bool GetRemoteOuterWindowProxy(JSContext* aCx, BrowsingContext* aContext,
1436 JS::Handle<JSObject*> aTransplantTo,
1437 JS::MutableHandle<JSObject*> aRetVal);
1438
1439 using BrowsingContextTransaction = BrowsingContext::BaseTransaction;
1440 using BrowsingContextInitializer = BrowsingContext::IPCInitializer;
1441 using MaybeDiscardedBrowsingContext = MaybeDiscarded<BrowsingContext>;
1442
1443 // Specialize the transaction object for every translation unit it's used in.
1444 extern template class syncedcontext::Transaction<BrowsingContext>;
1445
1446 } // namespace dom
1447
1448 // Allow sending BrowsingContext objects over IPC.
1449 namespace ipc {
1450 template <>
1451 struct IPDLParamTraits<dom::MaybeDiscarded<dom::BrowsingContext>> {
1452 static void Write(IPC::MessageWriter* aWriter, IProtocol* aActor,
1453 const dom::MaybeDiscarded<dom::BrowsingContext>& aParam);
1454 static bool Read(IPC::MessageReader* aReader, IProtocol* aActor,
1455 dom::MaybeDiscarded<dom::BrowsingContext>* aResult);
1456 };
1457
1458 template <>
1459 struct IPDLParamTraits<dom::BrowsingContext::IPCInitializer> {
1460 static void Write(IPC::MessageWriter* aWriter, IProtocol* aActor,
1461 const dom::BrowsingContext::IPCInitializer& aInitializer);
1462
1463 static bool Read(IPC::MessageReader* aReader, IProtocol* aActor,
1464 dom::BrowsingContext::IPCInitializer* aInitializer);
1465 };
1466 } // namespace ipc
1467 } // namespace mozilla
1468
1469 #endif // !defined(mozilla_dom_BrowsingContext_h)