Bug 4648

Summary: Shockwave unable to load GZip'd text resources when server sends Content-Length header
Product: WebKit Reporter: Sulka Haro <sulka>
Component: Plug-insAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: ap
Priority: P2 Keywords: InRadar
Version: 420+   
Hardware: Mac   
OS: OS X 10.4   
URL: http://www.kotska.com/swtest/
Attachments:
Description Flags
proposed fix
darin: review-
updated fix darin: review+

Sulka Haro
Reported 2005-08-25 02:25:39 PDT
When a Shockwave movie loads an external text resource over HTTP and the delivery uses the gzip content-encoding, and the server sends the resource with the Content-Length header set, the download always fails for some reason. If the server doesn't send the Content-Length header and specifies "Transfer-Encoding: chunked", the download succeeds. Safari seems to misreport the file size to the plugin in the case of failure - for some reason the file size is reported as being larger than the gzipped version (correct) but smaller than the decompressed resource so it seems that if the plugin asks for details of the file while the file is being decompressed, the decompression is somehow interrupted and the length of the already decompressed content is reported. Clearly there's some functional difference in how the content is delivered to plugins depending on the encoding type. Reproducible: Always Steps to Reproduce: See http://www.kotska.com/swtest/ for a testcase. Actual Results: The file being downloaded is downloaded but never delivered to the plugin. Expected Results: File should have been passed onto the plugin.
Attachments
proposed fix (1.10 KB, patch)
2006-03-07 11:50 PST, Alexey Proskuryakov 		darin: review-
DetailsFormatted DiffDiff
updated fix (2.39 KB, patch)
2007-08-12 03:21 PDT, Alexey Proskuryakov 		darin: review+
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Sulka Haro
Comment 1 2005-08-30 03:41:34 PDT
Tried this using both Safari 2.0.1 and the latest CVS version (AppleWebKit/420+ Safari/412.5) and the test fails using both. Effectively this means any site using Shockwave has to disable gzip compression for compatibility with Safari, causing textual content to require roughly 8-10x the amount of bandwidth necessary with compression.
Oliver Hunt
Comment 2 2005-09-07 04:25:37 PDT
Good test case
Aldo Hoeben
Comment 3 2006-03-04 05:40:49 PST
The testcase fails the same way in Firefox (1.0 and 1.5), both on OS X and Windows.
Sulka Haro
Comment 4 2006-03-07 02:10:58 PST
The Firefox bug is reported here: https://bugzilla.mozilla.org/show_bug.cgi?id=305766 FYI: Internet Explorer (Mac and Windows) doesn't fail the test and since the plugin running within those browsers is (afaik) exactly the same code on a given platform, there has to be some differences in the browser implementation. We have 100k+ Mac users on our site every month and as a result of this bug, most of these users have to download about 300kB of extra unnecessarily uncompressed data on every visit.
Alexey Proskuryakov
Comment 5 2006-03-07 11:50:44 PST
Created attachment 6922 [details] proposed fix Can we make automated tests for such bugs?
Darin Adler
Comment 6 2006-03-07 20:56:07 PST
Comment on attachment 6922 [details] proposed fix This patch is not quite right. The content encoding might be "identity", so just the presence of a content encoding header field is not the correct check. Also, buggy servers sometimes send strings like "identity, identity". It's hard to code this correctly at the WebKit level and stay in sync. with the features of the NSURL level; ideally we would have a Foundation method like expectedContentLength, but one that knew to only give us the length for things it won't decode. In general we don't want code that has to second-guess what NSURL is doing for us. Current versions of NSURLConnection support "deflate" and "gzip"; anything else is treated as "identity". The comparison is done in a case insensitive manner. NSURLConnection knows how to parse off an optional "x-" prefix. It knows how to ignore parameters that come after an optional ";" separator. It knows how to ignore whitespace. It parses a list separated by commas; if all the items in the list are the same (ignoring case, whitespace, "x-" prefixes, and parameters) then it uses it, otherwise it treats it as "identity". Hard-coding this precise rule into WebBaseNetscapePluginStream would be kinda lame, but I don't have a better idea.
Alexey Proskuryakov
Comment 7 2006-03-08 00:49:20 PST
<rdar://4470599> for NSURLConnection.
Alexey Proskuryakov
Comment 8 2006-03-11 04:36:25 PST
Actually, I think that expectedContentLength itself should only give us the length for things it won't decode, so I'm going to just wait for the resolution of the above Radar. That said, I still don't really understand why a simplified rule like the one used in the patch is much worse for deciding what to pass to the plugin. Also, servers SHOULD NOT send Content-Encoding: identity, according to RFC2616.
Alexey Proskuryakov
Comment 9 2007-08-12 03:21:47 PDT
Created attachment 15938 [details] updated fix As mentioned above, I think we do not need to match NSURLConnection logic particularly well.
Darin Adler
Comment 10 2007-08-12 12:05:47 PDT
Comment on attachment 15938 [details] updated fix OK, at this point it seems smart to work around the NSURL bug. r=me
Alexey Proskuryakov
Comment 11 2007-08-12 12:26:02 PDT
Committed revision 25024.
Mark Rowe (bdash)
Comment 12 2007-08-16 05:38:10 PDT
<rdar://problem/5415340>
Note You need to log in before you can comment on or make changes to this bug.