Issue 2620001: A new way of hooking internet protocols.

stoyan

10 years, 6 months ago (2010-06-03 23:26:12 UTC) #1

amit

Excellent work and thanks for getting this up so quickly. Can't wait to see this ...

10 years, 6 months ago (2010-06-04 01:08:53 UTC) #2

tommi (sloooow) - chröme

great! please run lint http://codereview.chromium.org/2620001/diff/9001/10002 File chrome_frame/bind_context_info.h (right): http://codereview.chromium.org/2620001/diff/9001/10002#newcode93 chrome_frame/bind_context_info.h:93: scoped_refptr<ProtData> prot_data_; keep with other ...

10 years, 6 months ago (2010-06-04 09:01:53 UTC) #3

stoyan

http://codereview.chromium.org/2620001/diff/9001/10002 File chrome_frame/bind_context_info.h (right): http://codereview.chromium.org/2620001/diff/9001/10002#newcode84 chrome_frame/bind_context_info.h:84: void put_prot_data(ProtData* data) { On 2010/06/04 01:08:53, amit wrote: ...

10 years, 6 months ago (2010-06-04 16:47:32 UTC) #4

amit

http://codereview.chromium.org/2620001/diff/20001/21003 File chrome_frame/protocol_sink_wrap.cc (right): http://codereview.chromium.org/2620001/diff/20001/21003#newcode83 chrome_frame/protocol_sink_wrap.cc:83: ScopedComPtr<IInternetProtocolSink> ProtocolSinkWrap::CreateNewSink( check input arguments or at least a ...

10 years, 6 months ago (2010-06-04 21:36:22 UTC) #5

amit

On 2010/06/04 16:47:32, stoyan wrote: > http://codereview.chromium.org/2620001/diff/9001/10003#newcode294 > chrome_frame/protocol_sink_wrap.cc:294: RendererType DetermineRendererType(void* > buffer, DWORD size, ...

10 years, 6 months ago (2010-06-04 21:55:58 UTC) #6

On 2010/06/04 16:47:32, stoyan wrote:
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode294
> chrome_frame/protocol_sink_wrap.cc:294: RendererType
DetermineRendererType(void*
> buffer, DWORD size, bool last_chance) {
> On 2010/06/04 01:08:53, amit wrote:
> > check validity of buffer, size etc?
> 
> No.
This is a global helper receiving a pointer as input. Why would you not want to
check the validity of input arguments? 
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode317
> chrome_frame/protocol_sink_wrap.cc:317: InternetProtocol_Read_Fn read_fun,
const
> wchar_t* url)
> On 2010/06/04 01:08:53, amit wrote:
> > nit: alignment
> > 
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode339
> chrome_frame/protocol_sink_wrap.cc:339: HRESULT ProtData::Read(void* buffer,
> ULONG size, ULONG* size_read) {
> On 2010/06/04 01:08:53, amit wrote:
> > validate input args?
> 
> Done. Checking for size_read.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode356
> chrome_frame/protocol_sink_wrap.cc:356: // User buffer is greater than what we
> have.
> On 2010/06/04 01:08:53, amit wrote:
> > do we have to do this or we can simply return less data and wait for the
next
> > read?
> 
> This is what the urlmon code does.
So in some cases the original read could return E_PENDING and we would end up
returning data with that error code?

> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode370
> chrome_frame/protocol_sink_wrap.cc:370: if (status_code ==
> BINDSTATUS_DIRECTBIND) {
> On 2010/06/04 01:08:53, amit wrote:
> > switch?
> 
> I don't like to indent code.
Please be considerate of your fellow programmers :)
I think using a switch makes this code much more readable.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode374
> chrome_frame/protocol_sink_wrap.cc:374: // if (status_code ==
> BINDSTATUS_DECODING) {
> On 2010/06/04 09:01:53, tommi wrote:
> > remove?
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode412
> chrome_frame/protocol_sink_wrap.cc:412: if (first_data_notification_ == false)
{
> On 2010/06/04 01:08:53, amit wrote:
> > nit: !first_data_notification_
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode419
> chrome_frame/protocol_sink_wrap.cc:419: if
> (!IsTextHtml(suggested_mime_type_.c_str())) {
> On 2010/06/04 01:08:53, amit wrote:
> > are we guaranteed to have a valid suggested_mime_type_ when we reach here?
> It's
> > better to check in any case.
> 
> No. We may have not received mime_type at all, but it does not matter.
In that case wouldn't we fire up a ReportProgress of
BINDSTATUS_MIMETYPEAVAILABLE with an empty string? Secondly, looking at code it
seems we could send the BINDSTATUS_MIMETYPEAVAILABLE notification more than once
which is not necessarily a good thing.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode436
> chrome_frame/protocol_sink_wrap.cc:436: bool last_chance = false;
> On 2010/06/04 01:08:53, amit wrote:
> > nit: last_chance = (hr == S_OK || hr == S_FALSE)? :)
> 
> Not good for coverage.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode443
> chrome_frame/protocol_sink_wrap.cc:443: // TODO: How we are going to send
> BSCF_FIRSTDATANOTIFICATION then?
> On 2010/06/04 09:01:53, tommi wrote:
> > todo(stoyan):
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode450
> chrome_frame/protocol_sink_wrap.cc:450: if (renderer_type_ == CHROME) {
> On 2010/06/04 01:08:53, amit wrote:
> > Is this happening for every ReportData?
> 
> No.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode456
> chrome_frame/protocol_sink_wrap.cc:456: // TODO: DLOG
> On 2010/06/04 09:01:53, tommi wrote:
> > same here
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode461
> chrome_frame/protocol_sink_wrap.cc:461: //
> On 2010/06/04 09:01:53, tommi wrote:
> > comment?
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode464
> chrome_frame/protocol_sink_wrap.cc:464: // bytes_avail
> On 2010/06/04 09:01:53, tommi wrote:
> > remove?
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode478
> chrome_frame/protocol_sink_wrap.cc:478: HRESULT ProtData::FillBuffer() {
> On 2010/06/04 01:08:53, amit wrote:
> > nit: this helper attempts to read enough data to make a determination. So
how
> > about something like ReadContentSniffSize? 
> 
> No. I like FillBuffer more.
Again, please be considerate to your fellow citizens :)
I think it deserves a more readable name. FillBuffer does not tell me what this
function is doing. Neither there are comments to this effect. 
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode508
> chrome_frame/protocol_sink_wrap.cc:508: ScopedComPtr<IBindCtx> pbc;
> On 2010/06/04 01:08:53, amit wrote:
> > nit: bind_context or bind_ctx if you prefer a slightly shorter version :)
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode538
> chrome_frame/protocol_sink_wrap.cc:538: prot_data = new ProtData(protocol,
> read_fun, url);
> On 2010/06/04 01:08:53, amit wrote:
> > handing over the read_fun to ProtData is a bit scary. We have to make sure
> that
> > we are always calling it with the same instance this was supposed to be
called
> > for.
> 
> I do not understand what do you mean. If we are here - in Hook_Start - it
means
> we are in same vtable as Hook_Read and hence the original read_fun is
relevant.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode600
> chrome_frame/protocol_sink_wrap.cc:600: HRESULT hr = prot_data->Read(buffer,
> size, size_read);
> On 2010/06/04 01:08:53, amit wrote:
> > DCHECK(prot_data->protocol_ == protocol)? 
> 
> pointless. we have just called ProtData::DataFromProtocol
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode605
> chrome_frame/protocol_sink_wrap.cc:605: struct FakeProtocol : public
> CComObjectRootEx<CComSingleThreadModel>,
> On 2010/06/04 09:01:53, tommi wrote:
> > class?
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode641
> chrome_frame/protocol_sink_wrap.cc:641: HRESULT hr =
obj_->QueryInterface(riid,
> ppvObj);
> On 2010/06/04 01:08:53, amit wrote:
> > if (obj)
> 
> What are the chances?
It's a separate detail that currently the class factory is being used only from
one place where this member is correctly set. However, the factory class on its
own, relies on this member being valid. So shouldn't it be validated or at least
DCHECKed?
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode652
> chrome_frame/protocol_sink_wrap.cc:652: static void
> HookCTrans(IInternetProtocol* p) {
> On 2010/06/04 01:08:53, amit wrote:
> > nit: rename to HookTransactionVtable?
> 
> Done.
> 
> http://codereview.chromium.org/2620001/diff/9001/10003#newcode669
> chrome_frame/protocol_sink_wrap.cc:669: hr =
> session->RegisterNameSpace(&factory, CLSID_NULL, L"611", 0, 0, 0);
> On 2010/06/04 01:08:53, amit wrote:
> > nit: "611" -> kDummyNameSpace
> 
> too long.
> 
> http://codereview.chromium.org/2620001/diff/9001/10004
> File chrome_frame/protocol_sink_wrap.h (right):
> 
> http://codereview.chromium.org/2620001/diff/9001/10004#newcode41
> chrome_frame/protocol_sink_wrap.h:41: enum RendererType {
> On 2010/06/04 01:08:53, amit wrote:
> > Share this with the one declared in urlmon_bind_status_callback.h?
> 
> If we are going to remove urlmon_bind_status_callback.h this is not very
useful
> exercise.
> 
> http://codereview.chromium.org/2620001/diff/9001/10004#newcode62
> chrome_frame/protocol_sink_wrap.h:62: public IInternetProtocolSink {
> On 2010/06/04 01:08:53, amit wrote:
> > since we are wrapping original sink, it is better to support/forward most
the
> > interfaces that the original sink implements. This is so that QI on the
other
> > interface for IInternetProtocolSink would come back to us.
> 
> Inside urlmon.dll QI for IInternetProtocolSink is used only when
> handlers/filters are created.
I hope that's true for all current and future versions. If, however, that does
not turn out to be a case, it will lead to bugs that are quite hard to find.

stoyan

http://codereview.chromium.org/2620001/diff/20001/21003 File chrome_frame/protocol_sink_wrap.cc (right): http://codereview.chromium.org/2620001/diff/20001/21003#newcode83 chrome_frame/protocol_sink_wrap.cc:83: ScopedComPtr<IInternetProtocolSink> ProtocolSinkWrap::CreateNewSink( On 2010/06/04 21:36:23, amit wrote: > check ...

10 years, 6 months ago (2010-06-04 22:25:47 UTC) #7

stoyan

On 2010/06/04 21:55:58, amit wrote: > On 2010/06/04 16:47:32, stoyan wrote: > > http://codereview.chromium.org/2620001/diff/9001/10003#newcode294 > ...

10 years, 6 months ago (2010-06-04 22:41:23 UTC) #8

On 2010/06/04 21:55:58, amit wrote:
> On 2010/06/04 16:47:32, stoyan wrote:
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode294
> > chrome_frame/protocol_sink_wrap.cc:294: RendererType
> DetermineRendererType(void*
> > buffer, DWORD size, bool last_chance) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > check validity of buffer, size etc?
> > 
> > No.
> This is a global helper receiving a pointer as input. Why would you not want
to
> check the validity of input arguments? 

How are you going to check validity of the buffer? It can never be zero anyway.


> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode317
> > chrome_frame/protocol_sink_wrap.cc:317: InternetProtocol_Read_Fn read_fun,
> const
> > wchar_t* url)
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: alignment
> > > 
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode339
> > chrome_frame/protocol_sink_wrap.cc:339: HRESULT ProtData::Read(void* buffer,
> > ULONG size, ULONG* size_read) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > validate input args?
> > 
> > Done. Checking for size_read.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode356
> > chrome_frame/protocol_sink_wrap.cc:356: // User buffer is greater than what
we
> > have.
> > On 2010/06/04 01:08:53, amit wrote:
> > > do we have to do this or we can simply return less data and wait for the
> next
> > > read?
> > 
> > This is what the urlmon code does.
> So in some cases the original read could return E_PENDING and we would end up
> returning data with that error code?
> 
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode370
> > chrome_frame/protocol_sink_wrap.cc:370: if (status_code ==
> > BINDSTATUS_DIRECTBIND) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > switch?
> > 
> > I don't like to indent code.
> Please be considerate of your fellow programmers :)
> I think using a switch makes this code much more readable.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode374
> > chrome_frame/protocol_sink_wrap.cc:374: // if (status_code ==
> > BINDSTATUS_DECODING) {
> > On 2010/06/04 09:01:53, tommi wrote:
> > > remove?
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode412
> > chrome_frame/protocol_sink_wrap.cc:412: if (first_data_notification_ ==
false)
> {
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: !first_data_notification_
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode419
> > chrome_frame/protocol_sink_wrap.cc:419: if
> > (!IsTextHtml(suggested_mime_type_.c_str())) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > are we guaranteed to have a valid suggested_mime_type_ when we reach here?
> > It's
> > > better to check in any case.
> > 
> > No. We may have not received mime_type at all, but it does not matter.
> In that case wouldn't we fire up a ReportProgress of
> BINDSTATUS_MIMETYPEAVAILABLE with an empty string? Secondly, looking at code
it
> seems we could send the BINDSTATUS_MIMETYPEAVAILABLE notification more than
once
> which is not necessarily a good thing.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode436
> > chrome_frame/protocol_sink_wrap.cc:436: bool last_chance = false;
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: last_chance = (hr == S_OK || hr == S_FALSE)? :)
> > 
> > Not good for coverage.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode443
> > chrome_frame/protocol_sink_wrap.cc:443: // TODO: How we are going to send
> > BSCF_FIRSTDATANOTIFICATION then?
> > On 2010/06/04 09:01:53, tommi wrote:
> > > todo(stoyan):
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode450
> > chrome_frame/protocol_sink_wrap.cc:450: if (renderer_type_ == CHROME) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > Is this happening for every ReportData?
> > 
> > No.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode456
> > chrome_frame/protocol_sink_wrap.cc:456: // TODO: DLOG
> > On 2010/06/04 09:01:53, tommi wrote:
> > > same here
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode461
> > chrome_frame/protocol_sink_wrap.cc:461: //
> > On 2010/06/04 09:01:53, tommi wrote:
> > > comment?
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode464
> > chrome_frame/protocol_sink_wrap.cc:464: // bytes_avail
> > On 2010/06/04 09:01:53, tommi wrote:
> > > remove?
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode478
> > chrome_frame/protocol_sink_wrap.cc:478: HRESULT ProtData::FillBuffer() {
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: this helper attempts to read enough data to make a determination. So
> how
> > > about something like ReadContentSniffSize? 
> > 
> > No. I like FillBuffer more.
> Again, please be considerate to your fellow citizens :)
> I think it deserves a more readable name. FillBuffer does not tell me what
this
> function is doing. Neither there are comments to this effect. 
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode508
> > chrome_frame/protocol_sink_wrap.cc:508: ScopedComPtr<IBindCtx> pbc;
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: bind_context or bind_ctx if you prefer a slightly shorter version :)
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode538
> > chrome_frame/protocol_sink_wrap.cc:538: prot_data = new ProtData(protocol,
> > read_fun, url);
> > On 2010/06/04 01:08:53, amit wrote:
> > > handing over the read_fun to ProtData is a bit scary. We have to make sure
> > that
> > > we are always calling it with the same instance this was supposed to be
> called
> > > for.
> > 
> > I do not understand what do you mean. If we are here - in Hook_Start - it
> means
> > we are in same vtable as Hook_Read and hence the original read_fun is
> relevant.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode600
> > chrome_frame/protocol_sink_wrap.cc:600: HRESULT hr = prot_data->Read(buffer,
> > size, size_read);
> > On 2010/06/04 01:08:53, amit wrote:
> > > DCHECK(prot_data->protocol_ == protocol)? 
> > 
> > pointless. we have just called ProtData::DataFromProtocol
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode605
> > chrome_frame/protocol_sink_wrap.cc:605: struct FakeProtocol : public
> > CComObjectRootEx<CComSingleThreadModel>,
> > On 2010/06/04 09:01:53, tommi wrote:
> > > class?
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode641
> > chrome_frame/protocol_sink_wrap.cc:641: HRESULT hr =
> obj_->QueryInterface(riid,
> > ppvObj);
> > On 2010/06/04 01:08:53, amit wrote:
> > > if (obj)
> > 
> > What are the chances?
> It's a separate detail that currently the class factory is being used only
from
> one place where this member is correctly set. However, the factory class on
its
> own, relies on this member being valid. So shouldn't it be validated or at
least
> DCHECKed?
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode652
> > chrome_frame/protocol_sink_wrap.cc:652: static void
> > HookCTrans(IInternetProtocol* p) {
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: rename to HookTransactionVtable?
> > 
> > Done.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10003#newcode669
> > chrome_frame/protocol_sink_wrap.cc:669: hr =
> > session->RegisterNameSpace(&factory, CLSID_NULL, L"611", 0, 0, 0);
> > On 2010/06/04 01:08:53, amit wrote:
> > > nit: "611" -> kDummyNameSpace
> > 
> > too long.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10004
> > File chrome_frame/protocol_sink_wrap.h (right):
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10004#newcode41
> > chrome_frame/protocol_sink_wrap.h:41: enum RendererType {
> > On 2010/06/04 01:08:53, amit wrote:
> > > Share this with the one declared in urlmon_bind_status_callback.h?
> > 
> > If we are going to remove urlmon_bind_status_callback.h this is not very
> useful
> > exercise.
> > 
> > http://codereview.chromium.org/2620001/diff/9001/10004#newcode62
> > chrome_frame/protocol_sink_wrap.h:62: public IInternetProtocolSink {
> > On 2010/06/04 01:08:53, amit wrote:
> > > since we are wrapping original sink, it is better to support/forward most
> the
> > > interfaces that the original sink implements. This is so that QI on the
> other
> > > interface for IInternetProtocolSink would come back to us.
> > 
> > Inside urlmon.dll QI for IInternetProtocolSink is used only when
> > handlers/filters are created.
> I hope that's true for all current and future versions. If, however, that does
> not turn out to be a case, it will lead to bugs that are quite hard to find.

tommi (sloooow) - chröme

http://codereview.chromium.org/2620001/diff/26002/28002 File chrome_frame/bind_context_info.h (right): http://codereview.chromium.org/2620001/diff/26002/28002#newcode114 chrome_frame/bind_context_info.h:114: #endif // CHROME_FRAME_BIND_CONTEXT_INFO_ don't delete this \n. If you ...

10 years, 6 months ago (2010-06-07 11:11:21 UTC) #9

stoyan

http://codereview.chromium.org/2620001/diff/26002/28002 File chrome_frame/bind_context_info.h (right): http://codereview.chromium.org/2620001/diff/26002/28002#newcode114 chrome_frame/bind_context_info.h:114: #endif // CHROME_FRAME_BIND_CONTEXT_INFO_ On 2010/06/07 11:11:22, tommi wrote: > ...

10 years, 6 months ago (2010-06-07 20:40:24 UTC) #10

tommi (sloooow) - chröme

lgtm http://codereview.chromium.org/2620001/diff/26002/28008 File chrome_frame/utils.h (right): http://codereview.chromium.org/2620001/diff/26002/28008#newcode455 chrome_frame/utils.h:455: std::string bindstatus2str(ULONG bind_status); On 2010/06/07 20:40:24, stoyan wrote: ...

10 years, 6 months ago (2010-06-07 22:12:10 UTC) #11

amit

10 years, 6 months ago (2010-06-07 22:54:00 UTC) #12

Thanks for keeping up with the suggestions.
LGTM with Tommi's concerns addressed.

Issue 2620001: A new way of hooking internet protocols. (Closed)

Description

Patch Set 1 #

Patch Set 2 : '' #

Patch Set 3 : '' #

Patch Set 4 : '' #

Patch Set 5 : '' #

Patch Set 6 : '' #

Messages