Design how to call into WebView from WebView Support Library |
|||||||
Issue descriptionCreated this bug instead of b/38302238 The Android framework communicates with WebView/chromium code through the glue-layer (a layer of classes in the WebView APK, implementing Android-interfaces, that converts between Android- and Chromium types, and performs API-level checks to provide different functionality on different OS versions). We consider creating a second glue-layer (support_library_glue) to provide a stable layer (one that won't change between WebView versions) to reflect into from the Support Library. This is necessary since once we release the WebView support library (reflecting into WebView code) we can't change any of the code into which the library is reflecting (for any WebView version). Thus, we might want to take on Android's approach of having a public API list that requires special review to change this new glue layer. The way we currently call into the code in the WebView APK from the Android framework is simplified by the fact that the existing WebView glue-layer implements interfaces defined in the Android framework (shared by both an app classloader and the WebView-APK classloader through their parent Android frameworks classloader). In our support library we won't be able to define interfaces that can be shared by both the app classloader and the WebView classloader (the class-declarations can be defined in both classloaders but they won't be seen as the same classes since they don't originate from the same classloader). So we will probably have to resort to using either reflection or AIDL for each method call from the support library into WebView code. Initial insights: 1. Since we only run into problems with the support_library_client <-> support_library_glue connection at run-time we could potentially build this in a way where we (WebView Support Library developers) write the Support Library code (the parts that are imported into apps) using normal Java code, and then use some kind of tool to convert that Java code into using reflection/AIDL. In this way we should be able to avoid most type conversion bugs (that would otherwise only show up at run-time). Such a tool could potentially also be used to build against old WebView versions (without the support_library_glue). 2. There are some different ways in which calls are made into WebView: a) Methods with "simple" classes, example: WebView.loadUrl(String) b) Methods taking app-implemented callbacks, example: WebView.postVisualStateCallback(long, WebView.VisualStateCallback) c) Methods taking more complex app-implemented classes, example: WebView.setWebViewClient(WebViewClient) d) Methods passing classes created by WebView, and used by the app, example: WebResourceRequest. e) Methods passing/taking/returning frameworks (outside android.webkit), examples: WebChromeClient.onReceivedIcon(WebView, android.graphics.Bitmap) WebView.setLayoutParams(android.view.ViewGroup.LayoutParams) 3. We will have to provide duplicates of any android.webkit app-implemented classes (like WebViewClient) in the support library - otherwise apps will be limited to their frameworks-implementation of that class. E.g. in the case of android.webkit.WebViewClient, the method "void onReceivedError(WebView view, WebResourceRequest request, WebResourceError error)" was introduced in API level 23 - so a device running Lollipop would declare WebViewClient without such a method. Reflection: 2a is straight forward - just fetch the correct object (e.g. WebView), and method (e.g. loadUrl) and call the method. 2b is a bit more complex - implementing a class (e.g. WebView.VisualStateCallback) through reflection involves using the class java.lang.reflect.Proxy. 2c is similar to 2b except we here have to support big classes like WebViewClient (which contains default-implementations for all of its methods!) rather than minor callback-classes containing a single method. One potential issue here: java.lang.reflect.Proxy doesn't support implementing abstract classes - it only supports implementing Interfaces. WebViewClient is not a pure interface because it provides default implementations for all its methods (to avoid forcing app developers to provide those implementations). Default-implementations for methods (Default Methods) within Interfaces is supported for Java 8 - but that feature is only supported for apps targeting API level 24 and above. 2d TODO 2e TODO AIDL: TODO
,
May 22 2017
Yeah, we don't need to use Proxy anywhere I don't think. We're going to need to use the caller's support library version to determine what callbacks/etc to make on them, the same way we currently use OS version for that.
,
May 22 2017
,
May 23 2017
Re #2: but how else do we implement any interfaces from the WebView classloader (e.g. support_library_glue.WebViewClient) within the Support Library? All interfaces/classes imported from support_library_glue into the Support Library will differ from the interfaces/classes loaded into the WebView classloader, since at run-time the ones imported into the Support library will have been loaded through the app classloader, no?
,
May 23 2017
If we use AIDL then there's no need to do that in the first place..
,
May 23 2017
Good point, I just want to scope out both solutions (and make sure I understand their limitations) - I'll have a closer look at the AIDL solution now.
,
May 23 2017
Yeah, sorry, that's a good idea. I don't really know a lot about how Proxy works I'm afraid :)
,
May 25 2017
I've been looking a at how to do an AIDL implementation of this, and there are at least a couple of drawbacks: 1. we use some classes which (IMO) would be infeasible to make Parcelable - such as Context. I guess we could work around this by using reflection in addition to AIDL (but then maybe we should just always use reflection). 2. The standard way of using AIDL is to define a Service, connect to that Service, and communicate with it using AIDL. I'm not sure whether we can use AIDL without also introducing a new Service (it seems unnecessary to introduce a new Service just to be able to use AIDL). 3. For each callback / object (e.g. WebViewClient) provided by an embedding app, we would either have to make the class defining that callback/object Parcelable, or take care to always call back through AIDL from the WebView code out into the Support Library code, to call the callback / use the object. For example: say an app implements WebViewClient.shouldOverrideUrlLoading. We would either make WebViewClient Parcelable (and thus force the app-implementation of WebViewClient to be Parcelable as well), or we store our WebViewClient in the Support Library code, and somehow reference that instance (e.g. using some unique ID) when calling through AIDL into WebView code - then when the WebView code wants to use the callback, it would call back through AIDL into the support library code, passing the WebViewClient reference (probably some unique ID). This feels fairly convoluted IMO :/ (though we could automate the creation of the AIDL code for passing IDs).
,
May 25 2017
I have a naive question, and I am guessing answer is obvious but...: Why do we have to make Context parcelable. Isn't it already a frameworks class? put another way: if we use AIDL, do we need to make all frameworks classes we use for communication a parcelable?
,
May 25 2017
AIDL parcels everything because it's intended for IPC, so yes, you can *only* pass things that can be parceled. There's no mechanism to pass the actual objects, because that's impossible in an IPC context. So, yeah, this suggests my thought of using AIDL here isn't really suitable. Some framework types are already parcelable, but this only makes sense for value objects really - there's no meaningful way to parcel a Context because a Context represents a set of resources belonging to the current process.
,
Jun 1 2017
Coming back to question 2d in the original post: handling cases where the WebView APK passes some class (created by the apk) to the Support Library, e.g. WebResourceRequest in shouldOverrideUrlLoading(WebView view, WebResourceRequest request). Ideally we would want to pass some class which both the support library (app classloader), and the support library glue (webview classloader) have loaded. Since WebResourceRequest is defined in the framework we don't want to use that. In this specific case of replacing WebResourceRequest we could just use an android.os.Bundle since all the members in WebResourceRequest are parcelable, but in general we might have to define some class representing WebResourceRequest in either the support library, or in the glue, and then use reflection from the side which doesn't define that WebResourceRequest class, to load it.
,
Jun 1 2017
As for 2e: I don't see how this (passing frameworks classes from outside android.webkit) could be an issue - if there is some feature that a specific class won't support at a specific Android version, then we (the WebView Support Library) shouldn't be able to support that feature anyway, since we can't communicate correctly with the framework anyway to make the feature work. I think the only case I can think of as interesting for 2e is when Android introduces a feature in version X, and with it introduces some class which is passed through WebView APIs, but we want to support this feature in the support library for version Y (Y < X). I'm not sure what kind of such feature wouldn't require any communication with the rest of the framework though (outside android.webkit). If such a feature exists we would have to come up with our own version of that framework class, and pass it between support library and glue similarly to how we solve 2d.
,
Jun 8 2017
aidl might be ok for data types (eg WebResourceRequest), but surely it won't work for things like WebViewClient, because I assume aidl makes a *copy* of the object, and for WebViewClient, we need to call methods on the original and since it's trivial to turn a "data-only" type into one that's not data-only by adding more methods in the future, maybe it's not all that safe to use aidl for anything..
,
Jun 8 2017
Yup, that's basically the same as comment 10. I don't think we're going to pursue using AIDL. It's possible to make that work by passing binders that can call back to the original object (lots of service APIs work this way and it's pretty transparent) but it's not really for the use case that we have.
,
Jun 12 2017
hmm, the interface between support lib and apk will need to be kept stable. if it's all reflection in between, then we can't rely compiler doing this for us I think? :/
,
Jun 12 2017
Yeah, it's probably going to be difficult to have this enforced by the compiler in that way :(
,
Jun 13 2017
I'm not so sure about that - I was imagining that we could build our support library against he support_lib_glue layer normally, and then add a build-step where we convert the "normal" java calls into reflection calls instead. I'm not entirely sure whether doing so is feasible yet, but I think it is definitely worth aiming for some kind of conversion step that would convert our code into reflection (whether or not that 'code' is normal Java code or some kind of template-code) - to avoid having to add that boiler-plate ourselves for each new method call, and to avoid bugs in the reflection itself.
,
Jul 7 2017
,
Sep 14 2017
,
Sep 19 2017
One thing that came up during yesterday's sync meeting: apps can repackage/proguard their code so we have to make sure the support library works with apps doing so. This could potentially affect the way we make calls between the support library and the Chromium glue layer. So we'll have to be careful with that implementation. More specifically, we probably can't use signatures of support library classes the webview apk is built against since those classes can be renamed in the actual app implementation.
,
Sep 19 2017
If we do need to rely on naming/reflection/etc of our code we would need to provide a proguard flags file that can be used to preserve the parts that are important. Other libraries do this (play services at least?) though I'm not sure how automatic the mechanisms for it are (I'm not very familiar with how libraries are packaged and used in modern android development with gradle/android studio/etc).
,
Sep 19 2017
Right, on second thought I think we should always be able to get the correct class-name at run-time - since we know which class we want to convert an object to (or which class we want to call into) we can just fetch its name at run-time instead of using any static names (we would have to be careful to ensure we are doing so though, probably add a test for this). Does this sound correct?
,
Sep 27 2017
,
Oct 24 2017
Hah, I did not realize you had already mentioned the proguarding thing here Torne :) (it came up in an email thread lately as well). Anyways, the doc here: https://docs.google.com/a/google.com/document/d/1wWAxd5EwZQBUReEqbnnyjpU475gK4VIzUTtS-oUgIQs/edit?usp=sharing compares the two possible approaches. I'm leaning towards using InvocationHandlers and Proxies (even thought that's a more complex approach) because it very much hides implementation details of calling between support library and glue-layer better than the object+reflection approach (because we don't need reflection after passing an object across the boundary). An alternative could be to avoid using reflection in the actual code, and then use code transformations to turn that code into Object + reflection calls. Any thoughts on which approach to use?
,
Nov 6 2017
It looks like using InvocationHandlers is the way to go here - if this turns out to be a performance issue (which should only happen for calls made very often), we can switch the affected calls to use reflection. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by gsennton@chromium.org
, May 22 2017