alert ã®ä½ç½®ã‚’知る
- dom/src/base/nsGlobalWindow.cpp 4035 行目
- nsGlobalWindow::Alert
JavaScript を書ã
alert(0); var img = document.createElement('img'); img.onload = function() { alert(1) }; alert(2); img.src = 'http://www.hatena.ne.jp/images/top/h1.gif'; alert(3); document.body.appendChild(img); alert(4);
Firefox ã§é–‹ã
0 -> 2 -> 3 -> 1 -> 4
gdb 起動(Firefox ã®ãƒ“ルドãŒå¿…è¦ï¼‰
$ gdb MinefieldDebug.app/Contents/MacOS/firefox-bin (gdb) b nsGlobalWindow::Alert (gdb) r
alert(1) ã®ã¨ã“ã‚ã ã‘見る
var img = document.createElement('img'); img.onload = function() { alert(1) }; img.src = 'http://www.hatena.ne.jp/images/top/h1.gif'; document.body.appendChild(img);
ãƒãƒƒã‚¯ãƒˆãƒ¬ãƒ¼ã‚¹
#0 nsGlobalWindow::Alert (this=0x1c97f420, aString=@0x18cc38d0) at /Users/amachang/mozilla/dom/src/base/nsGlobalWindow.cpp:4035 : : #16 0x1314fcf1 in nsImageLoadingContent::Event::Run (this=0x17f93040) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:833 : :
nsImageLoadingContent::Event::Run ã®ã‚³ãƒ¼ãƒ‰ã‚’見ã¦ã¿ã‚‹
(gdb) b nsImageLoadingContent::Event::Run
(gdb) c
Breakpoint 2, nsImageLoadingContent::Event::Run (this=0x17e55150) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:823
823 if (mMessage.EqualsLiteral("load")) {
(gdb) l
818 NS_IMETHODIMP
819 nsImageLoadingContent::Event::Run()
820 {
821 PRUint32 eventMsg;
822
823 if (mMessage.EqualsLiteral("load")) {
824 eventMsg = NS_LOAD;
825 } else {
826 eventMsg = NS_LOAD_ERROR;
827 }
(gdb) l
828
829 nsCOMPtr<nsIContent> ourContent = do_QueryInterface(mContent);
830
831 nsEvent event(PR_TRUE, eventMsg);
832 event.flags |= NS_EVENT_FLAG_CANT_BUBBLE;
833 nsEventDispatcher::Dispatch(ourContent, mPresContext, &event);
834
835 return NS_OK;
836 }
837
(gdb)
ã†ãƒ¼ã‚“。é€ä¿¡ã—ã¦ã‚‹ã¨ã“ã‚ãŒè¦‹ãŸã„
(gdb) reverse-search "load"
823 if (mMessage.EqualsLiteral("load")) {
(gdb) reverse-search "load"
249 FireEvent(NS_LITERAL_STRING("load"));
ã‚ã£ãŸï¼
249 行目ã§æ¢ã‚ã¦ã¿ã‚‹
(gdb) b nsImageLoadingContent.cpp:249
(gdb) c
Breakpoint 4, nsImageLoadingContent::OnStopDecode (this=0x1c6dd39c, aRequest=0x1c6dbf80, aStatus=5505024, aStatusArg=0x0) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:249
249 FireEvent(NS_LITERAL_STRING("load"));
(gdb)
ãƒãƒƒã‚¯ãƒˆãƒ¬ãƒ¼ã‚¹
Breakpoint 4, nsImageLoadingContent::OnStopDecode (this=0x1c6dd39c, aRequest=0x1c6dbf80, aStatus=5505024, aStatusArg=0x0) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:249
249 FireEvent(NS_LITERAL_STRING("load"));
(gdb) bt
#0 nsImageLoadingContent::OnStopDecode (this=0x1c6dd39c, aRequest=0x1c6dbf80, aStatus=5505024, aStatusArg=0x0) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:249
:
:
#10 0x13227d41 in nsHTMLImageElement::SetSrc (this=0x1c6dd380, aValue=@0xbfff99a4) at /Users/amachang/mozilla/content/html/content/src/nsHTMLImageElement.cpp:219
#11 0x11223f98 in nsIDOMHTMLImageElement_SetSrc (cx=0xb67000, obj=0x1cc65340, id=441507292, vp=0xbfffa5f8) at dom_quickstubs.cpp:6846
:
:
#64 0x000026e3 in main (argc=1, argv=0xbffff8e8) at /Users/amachang/mozilla/browser/app/nsBrowserApp.cpp:156ãªãŒã„ãªãƒ¼
よーã見るã¨
nsHTMLImageElement::SetSrc ã‹ã‚‰ load イベントãŒç™ºç«ã•ã‚Œã¦ã„ã‚‹ã“ã¨ãŒåˆ†ã‹ã‚‹
ã§ã‚‚
alert(0); var img = document.createElement('img'); img.onload = function() { alert(1) }; alert(2); img.src = 'http://www.hatena.ne.jp/images/top/h1.gif'; // ã“ã“ã§ç™ºç«ã•ã‚Œã‚‹ã®ã« alert(3); // ã“ã“㌠alert(1) より先ã«èµ·ã“ã‚‹ã®ã¯ä½•æ•…? document.body.appendChild(img); alert(4);
alert(3) ã§æ¢ã‚ã¦ãƒãƒƒã‚¯ãƒˆãƒ¬ãƒ¼ã‚¹ã‚’見る
Breakpoint 1, nsGlobalWindow::Alert (this=0x1c97f420, aString=@0x1e75d860) at /Users/amachang/mozilla/dom/src/base/nsGlobalWindow.cpp:4035
4035 FORWARD_TO_OUTER(Alert, (aString), NS_ERROR_NOT_INITIALIZED);
(gdb) p aString
$7 = (const nsAString_internal &) @0x1e75d860: {
mData = 0x1e66a898,
mLength = 1,
mFlags = 5
}
(gdb) p aString->mData
$8 = (PRUnichar *) 0x1e66a898
(gdb) p (char*)aString->mData
$9 = 0x1e66a898 "3"
(gdb) bt
#0 nsGlobalWindow::Alert (this=0x1c97f420, aString=@0x1e75d860) at /Users/amachang/mozilla/dom/src/base/nsGlobalWindow.cpp:4035
#1 0x0049e1c1 in NS_InvokeByIndex_P (that=0x1c97f420, methodIndex=65, paramCount=1, params=0xbfff84e4) at /Users/amachang/mozilla/xpcom/reflect/xptcall/src/md/unix/xptcinvoke_unixish_x86.cpp:179
:
:ã†ãƒ¼ã‚“。
別スレッドãªã®ã‹ãªï¼Ÿ
全スレッドãƒãƒƒã‚¯ãƒˆãƒ¬ãƒ¼ã‚¹
(gdb) thread apply all bt
ã§ã‚‚〠alert(1) ã‚‚ alert(2) ã‚‚ main ã‹ã‚‰ç¹‹ãŒã£ã¦ãŸã‹ã‚‰ã€‚ãŸã¶ã‚“åŒã˜ã‚¹ãƒ¬ãƒƒãƒ‰ã ã¨æ€ã†ã‚“ã ã‘ã©ãªãƒ¼
ã‚ãã£ã‹
イベントã¯ç™ºç«ã•ã‚Œã¦ã‚‚ã™ãã«ã¯å®Ÿè¡Œã•ã‚Œãªãã¦ã€ã—ã‹ã‚‹ã¹ãタイミングã§ã‚¤ãƒ™ãƒ³ãƒˆã®ã‚ューを見ã«è¡Œãã®ã‹ã€‚
ãã®ã‚¿ã‚¤ãƒŸãƒ³ã‚°ã£ã¦ã©ã“よ
ã‚‚ã£ã‹ã„ nsImageLoadingContent::Event::Run ã§æ¢ã‚ã¦ã¿ã‚‹
Event::Run ã®ãƒãƒƒã‚¯ã¨ãƒ¬ãƒ¼ã‚¹ã‚’見ã¦ã¿ã‚‹ã¨ alert(3) ã® nsGlobalWindow::Alert ã‹ã‚‰å‘¼ã°ã‚Œã¦ã„ã‚‹ã“ã¨ãŒåˆ†ã‹ã£ãŸ
#0 nsImageLoadingContent::Event::Run (this=0x1d67fe50) at /Users/amachang/mozilla/content/base/src/nsImageLoadingContent.cpp:823 #1 0x004833c0 in nsThread::ProcessNextEvent (this=0x719030, mayWait=1, result=0xbfffadfc) at /Users/amachang/mozilla/xpcom/threads/nsThread.cpp:510 #2 0x0040d198 in NS_ProcessNextEvent_P (thread=0x719030, mayWait=1) at nsThreadUtils.cpp:227 #3 0x1298c2da in nsXULWindow::ShowModal (this=0x16991bc0) at /Users/amachang/mozilla/xpfe/appshell/src/nsXULWindow.cpp:396 : : #10 0x133b6904 in nsGlobalWindow::Alert (this=0x1c53aa10, aString=@0x1d69f080) at /Users/amachang/mozilla/dom/src/base/nsGlobalWindow.cpp:4064
ã§ã‚‚ã€ãªã‚“㧠XULWindow::showModal ㌠NS_ProcessNextEvent_P を呼ã³å‡ºã™ã‹ãŒåˆ†ã‹ã‚‰ãªã„
NS_ProcessNextEvent_P (マクãƒå NS_ProcessNextEvent)を呼ã³å‡ºã—ã¦ã‚‹ã¨ã“ã‚ã‚’ grep ã—ã¦ã¿ã‚‹ã¨ãŸãã•ã‚“ã‚ã‚‹ã“ã¨ã«æ°—ãŒã¤ã。
ã“れらã®ã‚¿ã‚¤ãƒŸãƒ³ã‚°ã§ã‚¤ãƒ™ãƒ³ãƒˆã¯å‡¦ç†ã•ã‚Œã‚‹ã®ã‹ã€‚
- alert ã•ã‚ŒãŸã¨ã
- window.open ã—ãŸã¨ã
- HTML ã®ãƒ‘ースãŒçµ‚ã‚ã£ãŸã¨ã
ãªã©ãªã©
ã¤ã¾ã‚Šã€
var img = document.createElement('img'); img.onload = function() { alert(1) }; img.src = 'http://www.hatena.ne.jp/images/top/h1.gif'; // ã“ã®æ™‚点ã§ç”»åƒã®ãƒãƒ¼ãƒ‰ãŒçµ‚ã‚ã£ã¦ã„㦠alert(3); // ã“ã® alert ã«èª˜ç™ºã•ã‚Œã¦ onload イベントãƒãƒ³ãƒ‰ãƒ©ãŒèµ·å‹•ã—㟠document.body.appendChild(img);
ã£ã¦ã“ã¨ã‹
ã˜ã‚ƒã‚〠Firefox ã®ç”»åƒã£ã¦éžåŒæœŸã«ãƒãƒ¼ãƒ‰ã•ã‚Œã¦ã‚‹è¨³ã˜ã‚ƒãªã„ã®ã‹ãªï¼Ÿ
試ã—ã«ã€ä»¥ä¸‹ã®ã‚ˆã†ãª CGI を作ã£ã¦ã¿ã‚‹
#! /usr/bin/perl print "Content-Type: image/gif\n\n"; # 10 秒åœæ¢ sleep(10); open IMG, "hogehogehogehoge.gif"; binmode IMG; binmode STDIO; while (my $bin = <IMG>) { print STDOUT $bin; } close IMG;
ã§ã€ä»¥ä¸‹ã®ã‚ˆã†ãª JavaScript ã‹ã‚‰ã“ã® image.cgi ã‚’èµ·å‹•
var start = new Date; var img = document.createElement('img'); img.onload = function() { alert(1) }; img.src = 'image.cgi'; document.body.appendChild(img); alert(4);
ãŠã€‚ã¡ã‚ƒã‚“ã¨éžåŒæœŸã«ãªã£ã¦ã‚‹ãªãƒ¼
ã¨ã‚Šã‚ãˆãš
今日ã¯ã“ã®è¾ºã§ã€çµå±€ãªã‚“㧠Firefox ã® img.src ã®è¨å®šãŒé…ã„ã‹ã¯åˆ†ã‹ã‚‰ãªã‹ã£ãŸ
