2020-12-11 05:03:40 +03:00
|
|
|
/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
|
|
|
/* vim:set ts=2 sw=2 sts=2 et cindent: */
|
|
|
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
|
|
|
|
|
|
#include "nsUpdateSyncManager.h"
|
|
|
|
|
|
|
|
|
|
#include "mozilla/Unused.h"
|
|
|
|
|
#include "mozilla/Services.h"
|
|
|
|
|
#include "nsComponentManagerUtils.h"
|
|
|
|
|
#include "nsCRT.h"
|
|
|
|
|
#include "nsIFile.h"
|
|
|
|
|
#include "nsIObserverService.h"
|
|
|
|
|
#include "nsIProperties.h"
|
|
|
|
|
#include "nsString.h"
|
|
|
|
|
#include "nsXULAppAPI.h"
|
|
|
|
|
|
|
|
|
|
// The lock code generates a path that already includes the vendor name,
|
|
|
|
|
// so this only needs to name the specific lock.
|
|
|
|
|
#define UPDATE_LOCK_NAME_TOKEN "UpdateLock"
|
|
|
|
|
|
|
|
|
|
nsUpdateSyncManager* gUpdateSyncManager = nullptr;
|
|
|
|
|
|
|
|
|
|
NS_IMPL_ISUPPORTS(nsUpdateSyncManager, nsIUpdateSyncManager, nsIObserver)
|
|
|
|
|
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
nsUpdateSyncManager::nsUpdateSyncManager(nsIFile* anAppFile /* = nullptr */) {
|
|
|
|
|
gUpdateSyncManager = this;
|
|
|
|
|
OpenLock(anAppFile);
|
|
|
|
|
}
|
2020-12-11 05:03:40 +03:00
|
|
|
|
|
|
|
|
nsUpdateSyncManager::~nsUpdateSyncManager() {
|
|
|
|
|
ReleaseLock();
|
|
|
|
|
gUpdateSyncManager = nullptr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
already_AddRefed<nsUpdateSyncManager> nsUpdateSyncManager::GetSingleton() {
|
|
|
|
|
if (!gUpdateSyncManager) {
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
new nsUpdateSyncManager(); // This sets gUpdateSyncManager.
|
2020-12-11 05:03:40 +03:00
|
|
|
}
|
|
|
|
|
return do_AddRef(gUpdateSyncManager);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
NS_IMETHODIMP nsUpdateSyncManager::Observe(nsISupports* aSubject,
|
|
|
|
|
const char* aTopic,
|
|
|
|
|
const char16_t* aData) {
|
|
|
|
|
mozilla::Unused << aSubject;
|
|
|
|
|
mozilla::Unused << aData;
|
|
|
|
|
|
|
|
|
|
// We want to hold the lock for as much of the lifetime of the app as we can,
|
|
|
|
|
// so we observe xpcom-startup so we get constructed as early as possible,
|
|
|
|
|
// which triggers constructing the singleton.
|
|
|
|
|
if (!nsCRT::strcmp(aTopic, NS_XPCOM_STARTUP_OBSERVER_ID)) {
|
|
|
|
|
nsCOMPtr<nsIObserverService> observerService =
|
|
|
|
|
mozilla::services::GetObserverService();
|
|
|
|
|
if (observerService) {
|
|
|
|
|
return observerService->AddObserver(this, NS_XPCOM_SHUTDOWN_OBSERVER_ID,
|
|
|
|
|
false);
|
|
|
|
|
}
|
|
|
|
|
return NS_ERROR_SERVICE_NOT_AVAILABLE;
|
|
|
|
|
}
|
|
|
|
|
if (!nsCRT::strcmp(aTopic, NS_XPCOM_SHUTDOWN_OBSERVER_ID)) {
|
|
|
|
|
ReleaseLock();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return NS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
nsresult nsUpdateSyncManager::OpenLock(nsIFile* anAppFile) {
|
2020-12-11 05:03:40 +03:00
|
|
|
if (mLock != MULTI_INSTANCE_LOCK_HANDLE_ERROR) {
|
|
|
|
|
// Lock is already open.
|
|
|
|
|
return NS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Only open the lock from the browser process.
|
|
|
|
|
// Our component registration should already have made sure of this.
|
|
|
|
|
if (NS_WARN_IF(XRE_GetProcessType() != GeckoProcessType_Default)) {
|
|
|
|
|
return NS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
// If we're given an app file, use it; otherwise, get it from the ambient
|
|
|
|
|
// directory service.
|
|
|
|
|
nsresult rv;
|
2020-12-11 05:03:40 +03:00
|
|
|
nsCOMPtr<nsIFile> appFile;
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
if (anAppFile) {
|
|
|
|
|
rv = anAppFile->Clone(getter_AddRefs(appFile));
|
|
|
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
|
} else {
|
|
|
|
|
nsCOMPtr<nsIProperties> dirSvc =
|
|
|
|
|
do_GetService(NS_DIRECTORY_SERVICE_CONTRACTID);
|
|
|
|
|
NS_ENSURE_TRUE(dirSvc, NS_ERROR_SERVICE_NOT_AVAILABLE);
|
|
|
|
|
|
|
|
|
|
rv = dirSvc->Get(XRE_EXECUTABLE_FILE, NS_GET_IID(nsIFile),
|
|
|
|
|
getter_AddRefs(appFile));
|
|
|
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
|
}
|
2020-12-11 05:03:40 +03:00
|
|
|
|
|
|
|
|
nsCOMPtr<nsIFile> appDirFile;
|
|
|
|
|
rv = appFile->GetParent(getter_AddRefs(appDirFile));
|
|
|
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
|
|
|
|
|
|
nsAutoString appDirPath;
|
|
|
|
|
rv = appDirFile->GetPath(appDirPath);
|
|
|
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
|
|
|
|
|
|
mLock = mozilla::OpenMultiInstanceLock(UPDATE_LOCK_NAME_TOKEN,
|
|
|
|
|
PromiseFlatString(appDirPath).get());
|
|
|
|
|
NS_ENSURE_TRUE(mLock, NS_ERROR_FAILURE);
|
|
|
|
|
|
|
|
|
|
return NS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void nsUpdateSyncManager::ReleaseLock() {
|
|
|
|
|
if (mLock == MULTI_INSTANCE_LOCK_HANDLE_ERROR) {
|
|
|
|
|
// Lock is already released.
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mozilla::ReleaseMultiInstanceLock(mLock);
|
|
|
|
|
mLock = MULTI_INSTANCE_LOCK_HANDLE_ERROR;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
NS_IMETHODIMP nsUpdateSyncManager::IsOtherInstanceRunning(bool* aResult) {
|
|
|
|
|
if (NS_WARN_IF(XRE_GetProcessType() != GeckoProcessType_Default)) {
|
|
|
|
|
return NS_ERROR_SERVICE_NOT_AVAILABLE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (mLock == MULTI_INSTANCE_LOCK_HANDLE_ERROR) {
|
|
|
|
|
return NS_ERROR_NOT_INITIALIZED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool rv = mozilla::IsOtherInstanceRunning(mLock, aResult);
|
|
|
|
|
NS_ENSURE_TRUE(rv, NS_ERROR_FAILURE);
|
|
|
|
|
|
|
|
|
|
return NS_OK;
|
|
|
|
|
}
|
|
|
|
|
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
NS_IMETHODIMP nsUpdateSyncManager::ResetLock(nsIFile* anAppFile = nullptr) {
|
2020-12-11 05:03:40 +03:00
|
|
|
ReleaseLock();
|
Bug 1695797 - In background task mode, only process updates if we're the sole instance running. r=mhowell,application-update-reviewers,dthayer,bytesized
This commit does three main things:
1) It allows to configure the global singleton `nsUpdateSyncManager`
with an `nsIFile` rather than having it use the ambient XPCOM
directory service. This allows to initialize the
`nsUpdateSyncManager` very early: before processing updates and long
before XPCOM is initialized. This in turn allows us to determine if
other instances early enough to skip processing updates when
appropriate.
When this initialization path is followed, i.e., in Firefox but not
`xpcshell`, the `xpcom-startup` notification will be received but no
action taken, since the singleton will already exist.
There is a classic time-of-check, time-of-use race window in this
implementation: an instance may be launched immediately after we check
for other instances. In practice this will result in behaviour that
is alreay possible: two independent instances both processing updates.
It is expected that the updater itself will exclude one of the
instances using its existing mutex.
2) It updates an existing background task test to use an explicit
`nsIFile` rather than the existing directory service method. This
exercises the newer API. There are other tests that might benefit,
but there's no harm in remaining with the previous approach, since
both are required.
3) It adds a new background task test to verify that update processing
is skipped if we're not the sole instance running.
Differential Revision: https://phabricator.services.mozilla.com/D106994
2021-03-06 08:40:39 +03:00
|
|
|
return OpenLock(anAppFile);
|
2020-12-11 05:03:40 +03:00
|
|
|
}
|
