Chrome Extension Messaging Architecture

Question

I recently got started on developing my first Chrome extension, mostly just to see if I could do it, and I got to wondering about the mechanics behind how exactly messages are passed around. This may turn out to be a more general question about the windows.postMessage API, but I was wondering if someone could explain the behind-the-scenes processes that control the receipt and propagation of messages.

This is my current understanding of messaging w.r.t Chrome extensions:

There are four classes of Javascript: (1) JS tied to the popup, (2) JS running in the background or as an event, (3) JS in content scripts, and (4) JS injected into the page.
(2) -> (1) and (3) -> (1) are sent by runtime.sendMessage(). They're only received when the popup is open.
(1) -> (2) and (3) -> (2) are sent by runtime.sendMessage() or tabs.sendMessage() from (3) and (1) respectively. They're received ASAP, because background/event JS is persistent (I'm not quite sure if that's the right word, since event JS has to be tied into eventListeners).
(1) -> (3) and (2) -> (3) are sent by tabs.sendMessage(). They're received ASAP, since the content script is active as long as the webpage is (since it exists in a parallel sandbox).
(*) -> (4) and (4) -> (*) can't be handled by chrome.* for security issues, but (3) -> (4) and (4) -> (3) can be handled by window.postMessage(), since they both exist within the context of the webpage.

There's a couple of things I have questions about specifically - the first one being, of course, if I've even described things correctly. The others are these:

What exactly is the distinction between runtime.sendMessage() and tabs.sendMessage() that dictates which JS can actually use them?
How do messages get passed around? What happens in the background when *.sendMessage() or window.postMessage() is called?

Rob W · Accepted Answer

There are four classes of Javascript: (1) JS tied to the popup, (2) JS running in the background or as an event, (3) JS in content scripts, and (4) JS injected into the page.

(1) and (2) are actually the same ("popup" also falls under "extension code" - see Contexts and methods for communication between the browser action, background scripts, and content scripts of chrome extensions?).

(2) -> (1) and (3) -> (1) are sent by runtime.sendMessage(). They're only received when the popup is open.

(1) -> (2) and (3) -> (2) are sent by runtime.sendMessage() or tabs.sendMessage() from (3) and (1) respectively. They're received ASAP, because background/event JS is persistent (I'm not quite sure if that's the right word, since event JS has to be tied into eventListeners).

runtime.sendMessage can indeed be sent by (1), (2) and (3). In the role of a receiver, there is no special difference between (1) and (2). Here is where my classification of scripts comes in: A message sent by chrome.runtime.sendMessage is received by extension code, except for the frame of the sender. For instance, if you put an </code> in the background page and call <code>chrome.runtime.sendMessage</code> from the background page, <code>chrome.runtime.onMessage</code> is going to be triggered in that frame. When <a href="https://developer.chrome.com/extensions/event_pages" rel="nofollow noreferrer">event pages</a> are in use, the message event is only dispatched after having waited for the event page to load. <blockquote> <ul> <li><code>(1) -> (3)</code> and <code>(2) -> (3)</code> are sent by <code>tabs.sendMessage()</code>. They're received ASAP, since the content script is active as long as the webpage is (since it exists in a parallel sandbox).</li> </ul> </blockquote> <code>chrome.tabs.sendMessage</code> makes sense as long as you have a valid tab ID. Since background pages have no tab ID, it's not possible to send a message to a background page using <code>tabs.sendMessage</code>. Content scripts, extension pages in tabs, extension frames in tabs can all receive messages that are sent by <code>chrome.tabs.sendMessage</code>, since they are part of the tab. <blockquote> <ul> <li><code>(*) -> (4)</code> and <code>(4) -> (*)</code> can't be handled by <code>chrome.*</code> for security issues, but <code>(3) -> (4)</code> and <code>(4) -> (3)</code> can be handled by <code>window.postMessage()</code>, since they both exist within the context of the webpage.</li> </ul> </blockquote> <code>(4) -> (1,2)</code> (web page to extension code) is possible via <a href="https://developer.chrome.com/extensions/manifest/externally_connectable" rel="nofollow noreferrer">externally_connectable</a>. And <code>(4) -> (4)</code> is also possible with <code>window.postMessage</code>, but not directly with <code>*.sendMessage</code> (because this excludes the sender). <blockquote> <ul> <li>What exactly is the distinction between <code>runtime.sendMessage()</code> and <code>tabs.sendMessage()</code> that dictates which JS can actually use them?</li> </ul> </blockquote> <code>tabs.sendMessage</code> can only be used when the tabs API is available, to send a message to tabs, whereas <code>runtime.sendMessage</code> can also be used by content scripts. Succintly, use <code>tabs.sendMessage</code> to send messages to a tab, use <code>runtime.sendMessage</code> to send messages to another part of your extension. <blockquote> <ul> <li>How do messages get passed around? What happens in the background when <code>*.sendMessage()</code> or <code>window.postMessage()</code> is called?</li> </ul> </blockquote> <ul> <li><code>window.postMessage</code> has exactly one receiver, i.e. the <a href="https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage#The_dispatched_event" rel="nofollow noreferrer"><code>message</code> event</a> is called only once. <code>*.sendMessage</code> has zero or more receivers (if you use <a href="https://developer.chrome.com/extensions/tabs#method-sendMessage" rel="nofollow noreferrer"><code>tabs.sendMessage</code></a>, then you can restrict this to one by setting the <code>frameId</code> parameter), so <a href="https://developer.chrome.com/extensions/runtime#event-onMessage" rel="nofollow noreferrer"><code>chrome.runtime.onMessage</code></a> could be called multiple times (once for every frame).</li> <li>If you are not careful, you can accidentally leak information to untrusted scripts via <code>window.postMessage</code>. Make sure that you validate all messages in both directions (from and to the web page) - see the <a href="https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage#Security_concerns" rel="nofollow noreferrer">Window.postMessage#Security concerns article on MDN</a> for more info. <code>*.sendMessage</code> only passes messages around within your extension, so that is generally safe.</li> <li><code>*.sendMessage</code> messages are <a href="https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/JSON/stringify#Description" rel="nofollow noreferrer">JSON-serialized</a>, which is much more restricted than the <a href="https://developer.mozilla.org/en-US/docs/Web/API/Web_Workers_API/Structured_clone_algorithm" rel="nofollow noreferrer">structured cloning algorithm</a> as used by postMessage.</li> <li><code>*.sendMessage</code> always requires at least two <a href="https://www.chromium.org/developers/design-documents/inter-process-communication" rel="nofollow noreferrer">IPC messages</a> (sender to browser process, browser process to every receiver). <code>postMessage</code> can be handled more efficiently, since the messages are dealt with within the same renderer process. This is an internal implementation detail, and is not guaranteed to hold in the future. What it means in practice is that if you send lots of data around, and profile the performance, then you will most likely observe more issues with <code>*.sendMessage</code> than <code>window.postMessage</code> (for a one-sided benchmark, see e.g. <a href="https://stackoverflow.com/questions/31925936/is-there-a-size-limit-like-32bytes-or-64bytes-for-message-passing-between-conte">Is there a size limit like 32bytes or 64Bytes? for message passing between content scripts and background pages for chrome extensions?</a>).</li> <li><code>*.sendMessage(any message, optional function responseCallback)</code> is internally implemented as something that is equivalent to calling <a href="https://developer.chrome.com/extensions/runtime#method-connect" rel="nofollow noreferrer"><code>chrome.runtime.connect</code></a> (or <a href="https://developer.chrome.com/extensions/tabs#method-connect" rel="nofollow noreferrer"><code>chrome.tabs.connect</code></a>), registering <code>responseCallback</code> using <code>port.onMessage.addListener</code> and then disconnecting the port (immediately if no callback is set, otherwise only after the callback was called). <code>window.postMessage</code> <a href="https://html.spec.whatwg.org/multipage/comms.html#dom-window-postmessage" rel="nofollow noreferrer">queues a message</a>. The queue is not immediately drained, but the message event is dispatched "as soon as possible".</li> </ul>

Chrome Extension Messaging Architecture

Answers (1)

Related Questions