/* * Copyright (C) 1999 Lars Knoll (knoll@kde.org) * (C) 1999 Antti Koivisto (koivisto@kde.org) * (C) 2001 Dirk Mueller (mueller@kde.org) * Copyright (C) 2003, 2004, 2005, 2006, 2007, 2008 Apple Inc. All rights reserved. * Copyright (C) 2008 Nikolas Zimmermann * * This library is free software; you can redistribute it and/or * modify it under the terms of the GNU Library General Public * License as published by the Free Software Foundation; either * version 2 of the License, or (at your option) any later version. * * This library is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Library General Public License for more details. * * You should have received a copy of the GNU Library General Public License * along with this library; see the file COPYING.LIB. If not, write to * the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, * Boston, MA 02110-1301, USA. */ #include "config.h" #include "ScriptElement.h" #include "CachedScript.h" #include "CachedResourceLoader.h" #include "ContentSecurityPolicy.h" #include "Document.h" #include "DocumentParser.h" #include "Frame.h" #include "FrameLoader.h" #include "HTMLNames.h" #include "HTMLScriptElement.h" #include "IgnoreDestructiveWriteCountIncrementer.h" #include "MIMETypeRegistry.h" #include "Page.h" #include "ScriptController.h" #include "ScriptRunner.h" #include "ScriptSourceCode.h" #include "ScriptValue.h" #include "Settings.h" #include "Text.h" #include #include #if ENABLE(SVG) #include "SVGNames.h" #include "SVGScriptElement.h" #endif namespace WebCore { ScriptElement::ScriptElement(Element* element, bool parserInserted, bool alreadyStarted) : m_element(element) , m_cachedScript(0) , m_parserInserted(parserInserted) , m_isExternalScript(false) , m_alreadyStarted(alreadyStarted) , m_haveFiredLoad(false) , m_willBeParserExecuted(false) , m_readyToBeParserExecuted(false) , m_willExecuteWhenDocumentFinishedParsing(false) , m_forceAsync(!parserInserted) , m_willExecuteInOrder(false) { ASSERT(m_element); } ScriptElement::~ScriptElement() { stopLoadRequest(); } void ScriptElement::insertedIntoDocument() { if (!m_parserInserted) prepareScript(); // FIXME: Provide a real starting line number here. } void ScriptElement::removedFromDocument() { // Eventually stop loading any not-yet-finished content stopLoadRequest(); } void ScriptElement::childrenChanged() { if (!m_parserInserted && m_element->inDocument()) prepareScript(); // FIXME: Provide a real starting line number here. } void ScriptElement::handleSourceAttribute(const String& sourceUrl) { if (ignoresLoadRequest() || sourceUrl.isEmpty()) return; prepareScript(); // FIXME: Provide a real starting line number here. } void ScriptElement::handleAsyncAttribute() { m_forceAsync = false; } // Helper function static bool isLegacySupportedJavaScriptLanguage(const String& language) { // Mozilla 1.8 accepts javascript1.0 - javascript1.7, but WinIE 7 accepts only javascript1.1 - javascript1.3. // Mozilla 1.8 and WinIE 7 both accept javascript and livescript. // WinIE 7 accepts ecmascript and jscript, but Mozilla 1.8 doesn't. // Neither Mozilla 1.8 nor WinIE 7 accept leading or trailing whitespace. // We want to accept all the values that either of these browsers accept, but not other values. // FIXME: This function is not HTML5 compliant. These belong in the MIME registry as "text/javascript" entries. typedef HashSet LanguageSet; DEFINE_STATIC_LOCAL(LanguageSet, languages, ()); if (languages.isEmpty()) { languages.add("javascript"); languages.add("javascript"); languages.add("javascript1.0"); languages.add("javascript1.1"); languages.add("javascript1.2"); languages.add("javascript1.3"); languages.add("javascript1.4"); languages.add("javascript1.5"); languages.add("javascript1.6"); languages.add("javascript1.7"); languages.add("livescript"); languages.add("ecmascript"); languages.add("jscript"); } return languages.contains(language); } bool ScriptElement::isScriptTypeSupported(LegacyTypeSupport supportLegacyTypes) const { // FIXME: isLegacySupportedJavaScriptLanguage() is not valid HTML5. It is used here to maintain backwards compatibility with existing layout tests. The specific violations are: // - Allowing type=javascript. type= should only support MIME types, such as text/javascript. // - Allowing a different set of languages for language= and type=. language= supports Javascript 1.1 and 1.4-1.6, but type= does not. String type = typeAttributeValue(); String language = languageAttributeValue(); if (type.isEmpty() && language.isEmpty()) return true; // Assume text/javascript. if (type.isEmpty()) { type = "text/" + language.lower(); if (MIMETypeRegistry::isSupportedJavaScriptMIMEType(type) || isLegacySupportedJavaScriptLanguage(language)) return true; } else if (MIMETypeRegistry::isSupportedJavaScriptMIMEType(type.stripWhiteSpace().lower()) || (supportLegacyTypes == AllowLegacyTypeInTypeAttribute && isLegacySupportedJavaScriptLanguage(type))) return true; return false; } // http://dev.w3.org/html5/spec/Overview.html#prepare-a-script bool ScriptElement::prepareScript(const TextPosition1& scriptStartPosition, LegacyTypeSupport supportLegacyTypes) { if (m_alreadyStarted) return false; bool wasParserInserted; if (m_parserInserted) { wasParserInserted = true; m_parserInserted = false; } else wasParserInserted = false; if (wasParserInserted && !asyncAttributeValue()) m_forceAsync = true; // FIXME: HTML5 spec says we should check that all children are either comments or empty text nodes. if (!hasSourceAttribute() && !m_element->firstChild()) return false; if (!m_element->inDocument()) return false; if (!isScriptTypeSupported(supportLegacyTypes)) return false; if (wasParserInserted) { m_parserInserted = true; m_forceAsync = false; } m_alreadyStarted = true; // FIXME: If script is parser inserted, verify it's still in the original document. // FIXME: Eventually we'd like to evaluate scripts which are inserted into a // viewless document but this'll do for now. // See http://bugs.webkit.org/show_bug.cgi?id=5727 if (!m_element->document()->frame()) return false; if (!m_element->document()->frame()->script()->canExecuteScripts(AboutToExecuteScript)) return false; // FIXME: This is non-standard. Remove this after https://bugs.webkit.org/show_bug.cgi?id=62412. Node* ancestor = m_element->parentNode(); while (ancestor) { if (ancestor->isSVGShadowRoot()) return false; ancestor = ancestor->parentNode(); } if (!isScriptForEventSupported()) return false; if (!charsetAttributeValue().isEmpty()) m_characterEncoding = charsetAttributeValue(); else m_characterEncoding = m_element->document()->charset(); if (hasSourceAttribute()) if (!requestScript(sourceAttributeValue())) return false; if (hasSourceAttribute() && deferAttributeValue() && m_parserInserted && !asyncAttributeValue()) { m_willExecuteWhenDocumentFinishedParsing = true; m_willBeParserExecuted = true; } else if (hasSourceAttribute() && m_parserInserted && !asyncAttributeValue()) m_willBeParserExecuted = true; else if (!hasSourceAttribute() && m_parserInserted && !m_element->document()->haveStylesheetsLoaded()) { m_willBeParserExecuted = true; m_readyToBeParserExecuted = true; } else if (hasSourceAttribute() && !asyncAttributeValue() && !m_forceAsync) { m_willExecuteInOrder = true; m_element->document()->scriptRunner()->queueScriptForExecution(this, m_cachedScript, ScriptRunner::IN_ORDER_EXECUTION); m_cachedScript->addClient(this); } else if (hasSourceAttribute()) m_cachedScript->addClient(this); else executeScript(ScriptSourceCode(scriptContent(), m_element->document()->url(), scriptStartPosition)); return true; } bool ScriptElement::requestScript(const String& sourceUrl) { RefPtr originalDocument = m_element->document(); if (!m_element->dispatchBeforeLoadEvent(sourceUrl)) return false; if (!m_element->inDocument() || m_element->document() != originalDocument) return false; ASSERT(!m_cachedScript); // FIXME: If sourceUrl is empty, we should dispatchErrorEvent(). m_cachedScript = m_element->document()->cachedResourceLoader()->requestScript(sourceUrl, scriptCharset()); m_isExternalScript = true; if (m_cachedScript) return true; dispatchErrorEvent(); return false; } void ScriptElement::executeScript(const ScriptSourceCode& sourceCode) { ASSERT(m_alreadyStarted); if (sourceCode.isEmpty()) return; if (!m_isExternalScript && !m_element->document()->contentSecurityPolicy()->allowInlineScript()) return; RefPtr document = m_element->document(); ASSERT(document); if (Frame* frame = document->frame()) { { IgnoreDestructiveWriteCountIncrementer ignoreDesctructiveWriteCountIncrementer(m_isExternalScript ? document.get() : 0); // Create a script from the script element node, using the script // block's source and the script block's type. // Note: This is where the script is compiled and actually executed. frame->script()->evaluate(sourceCode); } Document::updateStyleForAllDocuments(); } } void ScriptElement::stopLoadRequest() { if (m_cachedScript) { if (!m_willBeParserExecuted) m_cachedScript->removeClient(this); m_cachedScript = 0; } } void ScriptElement::execute(CachedScript* cachedScript) { ASSERT(!m_willBeParserExecuted); ASSERT(cachedScript); if (cachedScript->errorOccurred()) dispatchErrorEvent(); else { executeScript(ScriptSourceCode(cachedScript)); dispatchLoadEvent(); } cachedScript->removeClient(this); } void ScriptElement::notifyFinished(CachedResource* o) { ASSERT(!m_willBeParserExecuted); ASSERT_UNUSED(o, o == m_cachedScript); if (m_willExecuteInOrder) m_element->document()->scriptRunner()->notifyInOrderScriptReady(); else m_element->document()->scriptRunner()->queueScriptForExecution(this, m_cachedScript, ScriptRunner::ASYNC_EXECUTION); m_cachedScript = 0; } bool ScriptElement::ignoresLoadRequest() const { return m_alreadyStarted || m_isExternalScript || m_parserInserted || !m_element->inDocument(); } bool ScriptElement::isScriptForEventSupported() const { String eventAttribute = eventAttributeValue(); String forAttribute = forAttributeValue(); if (!eventAttribute.isEmpty() && !forAttribute.isEmpty()) { forAttribute = forAttribute.stripWhiteSpace(); if (!equalIgnoringCase(forAttribute, "window")) return false; eventAttribute = eventAttribute.stripWhiteSpace(); if (!equalIgnoringCase(eventAttribute, "onload") && !equalIgnoringCase(eventAttribute, "onload()")) return false; } return true; } String ScriptElement::scriptContent() const { Vector val; Text* firstTextNode = 0; bool foundMultipleTextNodes = false; for (Node* n = m_element->firstChild(); n; n = n->nextSibling()) { if (!n->isTextNode()) continue; Text* t = static_cast(n); if (foundMultipleTextNodes) append(val, t->data()); else if (firstTextNode) { append(val, firstTextNode->data()); append(val, t->data()); foundMultipleTextNodes = true; } else firstTextNode = t; } if (firstTextNode && !foundMultipleTextNodes) return firstTextNode->data(); return String::adopt(val); } ScriptElement* toScriptElement(Element* element) { if (element->isHTMLElement() && element->hasTagName(HTMLNames::scriptTag)) return static_cast(element); #if ENABLE(SVG) if (element->isSVGElement() && element->hasTagName(SVGNames::scriptTag)) return static_cast(element); #endif return 0; } }