1 /*
2 * Copyright (C) 2009 Google Inc. All rights reserved.
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions are
6 * met:
7 *
8 * * Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * * Redistributions in binary form must reproduce the above
11 * copyright notice, this list of conditions and the following disclaimer
12 * in the documentation and/or other materials provided with the
13 * distribution.
14 * * Neither the name of Google Inc. nor the names of its
15 * contributors may be used to endorse or promote products derived from
16 * this software without specific prior written permission.
17 *
18 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
19 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
20 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
21 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
22 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
23 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
24 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
25 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
28 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 */
30
31 #include "config.h"
32 #include "V8BindingState.h"
33
34 #include "Frame.h"
35 #include "ScriptController.h"
36 #include "V8Proxy.h"
37 #include <wtf/StdLibExtras.h>
38
39 namespace WebCore {
40
Only()41 State<V8Binding>* State<V8Binding>::Only()
42 {
43 DEFINE_STATIC_LOCAL(State, globalV8BindingState, ());
44 return &globalV8BindingState;
45 }
46
activeWindow()47 DOMWindow* State<V8Binding>::activeWindow()
48 {
49 v8::Local<v8::Context> activeContext = v8::Context::GetCalling();
50 if (activeContext.IsEmpty()) {
51 // There is a single activation record on the stack, so that must
52 // be the activeContext.
53 activeContext = v8::Context::GetCurrent();
54 }
55 return V8Proxy::retrieveWindow(activeContext);
56 }
57
firstWindow()58 DOMWindow* State<V8Binding>::firstWindow()
59 {
60 return V8Proxy::retrieveWindow(v8::Context::GetEntered());
61 }
62
activeFrame()63 Frame* State<V8Binding>::activeFrame()
64 {
65 Frame* frame = V8Proxy::retrieveFrameForCallingContext();
66 if (!frame) {
67 // Unfortunately, when processing script from a plug-in, we might not
68 // have a calling context. In those cases, we fall back to the
69 // entered context for security checks.
70 // FIXME: We need a better API for retrieving frames that abstracts
71 // away this concern.
72 frame = V8Proxy::retrieveFrameForEnteredContext();
73 }
74 return frame;
75 }
76
firstFrame()77 Frame* State<V8Binding>::firstFrame()
78 {
79 return V8Proxy::retrieveFrameForEnteredContext();
80 }
81
immediatelyReportUnsafeAccessTo(Frame * target)82 void State<V8Binding>::immediatelyReportUnsafeAccessTo(Frame* target)
83 {
84 V8Proxy::reportUnsafeAccessTo(target);
85 }
86
processingUserGesture()87 bool State<V8Binding>::processingUserGesture()
88 {
89 return ScriptController::processingUserGesture();
90 }
91
allowsAccessFromFrame(Frame * frame)92 bool State<V8Binding>::allowsAccessFromFrame(Frame* frame)
93 {
94 return ScriptController::isSafeScript(frame);
95 }
96
97 } // namespace WebCore
98