/* * Copyright (C) 2006-2007, 2009, 2016 Apple Inc. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. Neither the name of Apple Inc. ("Apple") nor the names of * its contributors may be used to endorse or promote products derived * from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE * DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR ANY * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include "config.h" #include "SubresourceLoader.h" #include "CachedResourceLoader.h" #include "CrossOriginAccessControl.h" #include "DiagnosticLoggingClient.h" #include "DiagnosticLoggingKeys.h" #include "Document.h" #include "DocumentLoader.h" #include "Frame.h" #include "FrameLoader.h" #include "Logging.h" #include "MainFrame.h" #include "MemoryCache.h" #include "Page.h" #include "ResourceLoadObserver.h" #include "Settings.h" #include #include #include #include #include #if PLATFORM(IOS) #include #endif #if ENABLE(CONTENT_EXTENSIONS) #include "ResourceLoadInfo.h" #endif namespace WebCore { DEFINE_DEBUG_ONLY_GLOBAL(WTF::RefCountedLeakCounter, subresourceLoaderCounter, ("SubresourceLoader")); SubresourceLoader::RequestCountTracker::RequestCountTracker(CachedResourceLoader& cachedResourceLoader, CachedResource* resource) : m_cachedResourceLoader(cachedResourceLoader) , m_resource(resource) { m_cachedResourceLoader.incrementRequestCount(m_resource); } SubresourceLoader::RequestCountTracker::~RequestCountTracker() { m_cachedResourceLoader.decrementRequestCount(m_resource); } SubresourceLoader::SubresourceLoader(Frame* frame, CachedResource* resource, const ResourceLoaderOptions& options) : ResourceLoader(frame, options) , m_resource(resource) , m_loadingMultipartContent(false) , m_state(Uninitialized) , m_requestCountTracker(std::make_unique(frame->document()->cachedResourceLoader(), resource)) { #ifndef NDEBUG subresourceLoaderCounter.increment(); #endif #if ENABLE(CONTENT_EXTENSIONS) m_resourceType = toResourceType(resource->type()); #endif } SubresourceLoader::~SubresourceLoader() { ASSERT(m_state != Initialized); ASSERT(reachedTerminalState()); #ifndef NDEBUG subresourceLoaderCounter.decrement(); #endif } RefPtr SubresourceLoader::create(Frame* frame, CachedResource* resource, const ResourceRequest& request, const ResourceLoaderOptions& options) { RefPtr subloader(adoptRef(new SubresourceLoader(frame, resource, options))); #if PLATFORM(IOS) if (!applicationIsWebProcess()) { // On iOS, do not invoke synchronous resource load delegates while resource load scheduling // is disabled to avoid re-entering style selection from a different thread (see ). // FIXME: This should be fixed for all ports in . subloader->m_iOSOriginalRequest = request; return subloader.release(); } #endif if (!subloader->init(request)) return nullptr; return subloader; } #if PLATFORM(IOS) bool SubresourceLoader::startLoading() { ASSERT(!applicationIsWebProcess()); if (!init(m_iOSOriginalRequest)) return false; m_iOSOriginalRequest = ResourceRequest(); start(); return true; } #endif CachedResource* SubresourceLoader::cachedResource() { return m_resource; } void SubresourceLoader::cancelIfNotFinishing() { if (m_state != Initialized) return; ResourceLoader::cancel(); } bool SubresourceLoader::init(const ResourceRequest& request) { if (!ResourceLoader::init(request)) return false; ASSERT(!reachedTerminalState()); m_state = Initialized; m_documentLoader->addSubresourceLoader(this); // FIXME: https://bugs.webkit.org/show_bug.cgi?id=155633. // SubresourceLoader could use the document origin as a default and set PotentiallyCrossOriginEnabled requests accordingly. // This would simplify resource loader users as they would only need to set the policy to PotentiallyCrossOriginEnabled. if (options().requestOriginPolicy() == PotentiallyCrossOriginEnabled) m_origin = SecurityOrigin::createFromString(request.httpOrigin()); return true; } bool SubresourceLoader::isSubresourceLoader() { return true; } void SubresourceLoader::willSendRequestInternal(ResourceRequest& newRequest, const ResourceResponse& redirectResponse) { // Store the previous URL because the call to ResourceLoader::willSendRequest will modify it. URL previousURL = request().url(); Ref protect(*this); if (!newRequest.url().isValid()) { cancel(cannotShowURLError()); return; } ASSERT(!newRequest.isNull()); if (!redirectResponse.isNull()) { // CachedResources are keyed off their original request URL. // Requesting the same original URL a second time can redirect to a unique second resource. // Therefore, if a redirect to a different destination URL occurs, we should no longer consider this a revalidation of the first resource. // Doing so would have us reusing the resource from the first request if the second request's revalidation succeeds. if (newRequest.isConditional() && m_resource->resourceToRevalidate() && newRequest.url() != m_resource->resourceToRevalidate()->response().url()) { newRequest.makeUnconditional(); MemoryCache::singleton().revalidationFailed(*m_resource); if (m_frame) m_frame->mainFrame().diagnosticLoggingClient().logDiagnosticMessageWithResult(DiagnosticLoggingKeys::cachedResourceRevalidationKey(), emptyString(), DiagnosticLoggingResultFail, ShouldSample::Yes); } if (!m_documentLoader->cachedResourceLoader().canRequest(m_resource->type(), newRequest.url(), options())) { cancel(); return; } if (options().requestOriginPolicy() == PotentiallyCrossOriginEnabled && !checkCrossOriginAccessControl(request(), redirectResponse, newRequest)) { cancel(); return; } if (m_resource->isImage() && m_documentLoader->cachedResourceLoader().shouldDeferImageLoad(newRequest.url())) { cancel(); return; } m_resource->redirectReceived(newRequest, redirectResponse); } if (newRequest.isNull() || reachedTerminalState()) return; ResourceLoader::willSendRequestInternal(newRequest, redirectResponse); if (newRequest.isNull()) cancel(); if (Settings::resourceLoadStatisticsEnabled()) ResourceLoadObserver::sharedObserver().logSubresourceLoading(!redirectResponse.isNull(), redirectResponse.url(), newRequest.url(), m_frame ? m_frame->mainFrame().document()->url() : URL()); } void SubresourceLoader::didSendData(unsigned long long bytesSent, unsigned long long totalBytesToBeSent) { ASSERT(m_state == Initialized); Ref protect(*this); m_resource->didSendData(bytesSent, totalBytesToBeSent); } void SubresourceLoader::didReceiveResponse(const ResourceResponse& response) { ASSERT(!response.isNull()); ASSERT(m_state == Initialized); // Reference the object in this method since the additional processing can do // anything including removing the last reference to this object; one example of this is 3266216. Ref protect(*this); if (shouldIncludeCertificateInfo()) response.includeCertificateInfo(); if (response.isHttpVersion0_9()) { if (m_frame) { String message = "Sandboxing '" + response.url().string() + "' because it is using HTTP/0.9."; m_frame->document()->addConsoleMessage(MessageSource::Security, MessageLevel::Error, message, identifier()); frameLoader()->forceSandboxFlags(SandboxScripts | SandboxPlugins); } } if (m_resource->resourceToRevalidate()) { if (response.httpStatusCode() == 304) { // 304 Not modified / Use local copy // Existing resource is ok, just use it updating the expiration time. m_resource->setResponse(response); MemoryCache::singleton().revalidationSucceeded(*m_resource, response); if (m_frame) m_frame->mainFrame().diagnosticLoggingClient().logDiagnosticMessageWithResult(DiagnosticLoggingKeys::cachedResourceRevalidationKey(), emptyString(), DiagnosticLoggingResultPass, ShouldSample::Yes); if (!reachedTerminalState()) ResourceLoader::didReceiveResponse(response); return; } // Did not get 304 response, continue as a regular resource load. MemoryCache::singleton().revalidationFailed(*m_resource); if (m_frame) m_frame->mainFrame().diagnosticLoggingClient().logDiagnosticMessageWithResult(DiagnosticLoggingKeys::cachedResourceRevalidationKey(), emptyString(), DiagnosticLoggingResultFail, ShouldSample::Yes); } m_resource->responseReceived(response); if (reachedTerminalState()) return; ResourceLoader::didReceiveResponse(response); if (reachedTerminalState()) return; // FIXME: Main resources have a different set of rules for multipart than images do. // Hopefully we can merge those 2 paths. if (response.isMultipart() && m_resource->type() != CachedResource::MainResource) { m_loadingMultipartContent = true; // We don't count multiParts in a CachedResourceLoader's request count m_requestCountTracker = nullptr; if (!m_resource->isImage()) { cancel(); return; } } auto* buffer = resourceData(); if (m_loadingMultipartContent && buffer && buffer->size()) { // The resource data will change as the next part is loaded, so we need to make a copy. m_resource->finishLoading(buffer->copy().ptr()); clearResourceData(); // Since a subresource loader does not load multipart sections progressively, data was delivered to the loader all at once. // After the first multipart section is complete, signal to delegates that this load is "finished" m_documentLoader->subresourceLoaderFinishedLoadingOnePart(this); didFinishLoadingOnePart(0); } checkForHTTPStatusCodeError(); } void SubresourceLoader::didReceiveData(const char* data, unsigned length, long long encodedDataLength, DataPayloadType dataPayloadType) { didReceiveDataOrBuffer(data, length, 0, encodedDataLength, dataPayloadType); } void SubresourceLoader::didReceiveBuffer(PassRefPtr buffer, long long encodedDataLength, DataPayloadType dataPayloadType) { didReceiveDataOrBuffer(0, 0, buffer, encodedDataLength, dataPayloadType); } void SubresourceLoader::didReceiveDataOrBuffer(const char* data, int length, PassRefPtr prpBuffer, long long encodedDataLength, DataPayloadType dataPayloadType) { if (m_resource->response().httpStatusCode() >= 400 && !m_resource->shouldIgnoreHTTPStatusCodeErrors()) return; ASSERT(!m_resource->resourceToRevalidate()); ASSERT(!m_resource->errorOccurred()); ASSERT(m_state == Initialized); // Reference the object in this method since the additional processing can do // anything including removing the last reference to this object; one example of this is 3266216. Ref protect(*this); RefPtr buffer = prpBuffer; ResourceLoader::didReceiveDataOrBuffer(data, length, buffer, encodedDataLength, dataPayloadType); if (!m_loadingMultipartContent) { if (auto* resourceData = this->resourceData()) m_resource->addDataBuffer(*resourceData); else m_resource->addData(buffer ? buffer->data() : data, buffer ? buffer->size() : length); } } bool SubresourceLoader::checkForHTTPStatusCodeError() { if (m_resource->response().httpStatusCode() < 400 || m_resource->shouldIgnoreHTTPStatusCodeErrors()) return false; m_state = Finishing; m_resource->error(CachedResource::LoadError); cancel(); return true; } static void logResourceLoaded(Frame* frame, CachedResource::Type type) { if (!frame) return; String resourceType; switch (type) { case CachedResource::MainResource: resourceType = DiagnosticLoggingKeys::mainResourceKey(); break; case CachedResource::ImageResource: resourceType = DiagnosticLoggingKeys::imageKey(); break; #if ENABLE(XSLT) case CachedResource::XSLStyleSheet: #endif case CachedResource::CSSStyleSheet: resourceType = DiagnosticLoggingKeys::styleSheetKey(); break; case CachedResource::Script: resourceType = DiagnosticLoggingKeys::scriptKey(); break; case CachedResource::FontResource: #if ENABLE(SVG_FONTS) case CachedResource::SVGFontResource: #endif resourceType = DiagnosticLoggingKeys::fontKey(); break; case CachedResource::RawResource: resourceType = DiagnosticLoggingKeys::rawKey(); break; case CachedResource::SVGDocumentResource: resourceType = DiagnosticLoggingKeys::svgDocumentKey(); break; #if ENABLE(LINK_PREFETCH) case CachedResource::LinkPrefetch: case CachedResource::LinkSubresource: #endif #if ENABLE(VIDEO_TRACK) case CachedResource::TextTrackResource: #endif resourceType = DiagnosticLoggingKeys::otherKey(); break; } frame->mainFrame().diagnosticLoggingClient().logDiagnosticMessageWithValue(DiagnosticLoggingKeys::resourceKey(), DiagnosticLoggingKeys::loadedKey(), resourceType, ShouldSample::Yes); } bool SubresourceLoader::checkCrossOriginAccessControl(const ResourceRequest& previousRequest, const ResourceResponse& redirectResponse, ResourceRequest& newRequest) { if (m_origin->canRequest(newRequest.url())) return true; String errorDescription; bool responsePassesCORS = m_origin->canRequest(previousRequest.url()) || passesAccessControlCheck(redirectResponse, options().allowCredentials(), m_origin.get(), errorDescription); if (!responsePassesCORS || !isValidCrossOriginRedirectionURL(newRequest.url())) { if (m_frame && m_frame->document()) { String errorMessage = "Cross-origin redirection denied by Cross-Origin Resource Sharing policy: " + (!responsePassesCORS ? errorDescription : "Redirected to either a non-HTTP URL or a URL that contains credentials."); m_frame->document()->addConsoleMessage(MessageSource::Security, MessageLevel::Error, errorMessage); } return false; } // If the request URL origin is not the same as the original origin, the request origin should be set to a globally unique identifier. m_origin = SecurityOrigin::createUnique(); cleanRedirectedRequestForAccessControl(newRequest); updateRequestForAccessControl(newRequest, m_origin.get(), options().allowCredentials()); return true; } void SubresourceLoader::didFinishLoading(double finishTime) { if (m_state != Initialized) return; ASSERT(!reachedTerminalState()); ASSERT(!m_resource->resourceToRevalidate()); // FIXME (129394): We should cancel the load when a decode error occurs instead of continuing the load to completion. ASSERT(!m_resource->errorOccurred() || m_resource->status() == CachedResource::DecodeError); LOG(ResourceLoading, "Received '%s'.", m_resource->url().string().latin1().data()); logResourceLoaded(m_frame.get(), m_resource->type()); Ref protect(*this); CachedResourceHandle protectResource(m_resource); m_state = Finishing; m_resource->setLoadFinishTime(finishTime); m_resource->finishLoading(resourceData()); if (wasCancelled()) return; m_resource->finish(); ASSERT(!reachedTerminalState()); didFinishLoadingOnePart(finishTime); notifyDone(); if (reachedTerminalState()) return; releaseResources(); } void SubresourceLoader::didFail(const ResourceError& error) { if (m_state != Initialized) return; ASSERT(!reachedTerminalState()); LOG(ResourceLoading, "Failed to load '%s'.\n", m_resource->url().string().latin1().data()); Ref protect(*this); CachedResourceHandle protectResource(m_resource); m_state = Finishing; if (m_resource->resourceToRevalidate()) MemoryCache::singleton().revalidationFailed(*m_resource); m_resource->setResourceError(error); if (!m_resource->isPreloaded()) MemoryCache::singleton().remove(*m_resource); m_resource->error(CachedResource::LoadError); cleanupForError(error); notifyDone(); if (reachedTerminalState()) return; releaseResources(); } void SubresourceLoader::willCancel(const ResourceError& error) { #if PLATFORM(IOS) // Since we defer initialization to scheduling time on iOS but // CachedResourceLoader stores resources in the memory cache immediately, // m_resource might be cached despite its loader not being initialized. if (m_state != Initialized && m_state != Uninitialized) #else if (m_state != Initialized) #endif return; ASSERT(!reachedTerminalState()); LOG(ResourceLoading, "Cancelled load of '%s'.\n", m_resource->url().string().latin1().data()); Ref protect(*this); #if PLATFORM(IOS) m_state = m_state == Uninitialized ? CancelledWhileInitializing : Finishing; #else m_state = Finishing; #endif auto& memoryCache = MemoryCache::singleton(); if (m_resource->resourceToRevalidate()) memoryCache.revalidationFailed(*m_resource); m_resource->setResourceError(error); memoryCache.remove(*m_resource); } void SubresourceLoader::didCancel(const ResourceError&) { if (m_state == Uninitialized) return; m_resource->cancelLoad(); notifyDone(); } void SubresourceLoader::notifyDone() { if (reachedTerminalState()) return; m_requestCountTracker = nullptr; #if PLATFORM(IOS) m_documentLoader->cachedResourceLoader().loadDone(m_resource, m_state != CancelledWhileInitializing); #else m_documentLoader->cachedResourceLoader().loadDone(m_resource); #endif if (reachedTerminalState()) return; m_documentLoader->removeSubresourceLoader(this); } void SubresourceLoader::releaseResources() { ASSERT(!reachedTerminalState()); #if PLATFORM(IOS) if (m_state != Uninitialized && m_state != CancelledWhileInitializing) #else if (m_state != Uninitialized) #endif m_resource->clearLoader(); m_resource = nullptr; ResourceLoader::releaseResources(); } }