RESOLVED FIXED Bug 206108
document.cookie should not do a sync IPC to the network process for iframes that do not have storage access 
https://bugs.webkit.org/show_bug.cgi?id=206108
Summary document.cookie should not do a sync IPC to the network process for iframes t...
Chris Dumez
Reported 2020-01-10 16:26:55 PST
document.cookie should not do a sync IPC to the network process for iframes that do not have storage access.
Attachments
WIP Patch (33.75 KB, patch)
2020-01-10 16:55 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
WIP Patch (40.49 KB, patch)
2020-01-13 08:56 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
WIP Patch (43.96 KB, patch)
2020-01-13 14:34 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
WIP Patch (76.95 KB, patch)
2020-01-13 16:57 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
Patch (87.60 KB, patch)
2020-01-14 11:50 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
Patch (88.35 KB, patch)
2020-01-14 12:03 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
Patch (86.99 KB, patch)
2020-01-14 16:42 PST, Chris Dumez 		no flags
DetailsFormatted DiffDiff
Show Obsolete (6) View All Add attachment proposed patch, testcase, etc.
Chris Dumez
Comment 1 2020-01-10 16:55:01 PST
Created attachment 387397 [details] WIP Patch
Chris Dumez
Comment 2 2020-01-13 08:56:13 PST
Created attachment 387535 [details] WIP Patch
Chris Dumez
Comment 3 2020-01-13 14:34:01 PST
Created attachment 387567 [details] WIP Patch
Chris Dumez
Comment 4 2020-01-13 16:57:23 PST
Created attachment 387593 [details] WIP Patch Almost ready.
Chris Dumez
Comment 5 2020-01-14 11:50:59 PST
Created attachment 387681 [details] Patch
Chris Dumez
Comment 6 2020-01-14 12:03:19 PST
Created attachment 387684 [details] Patch
Geoffrey Garen
Comment 7 2020-01-14 13:55:48 PST
Comment on attachment 387684 [details] Patch r=me
John Wilander
Comment 8 2020-01-14 15:34:56 PST
Comment on attachment 387684 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=387684&action=review Thanks for fixing the preferences read and the improvements to when blocking is done and to test async behavior. See inline comments. > Source/WebKit/ChangeLog:6 > + Reviewed by NOBODY (OOPS!). I thought we always described the change in both the WebCore and the WebKit change logs, at least when there are significant changes in both. > Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:65 > + return false; Does this match some existing behavior? > Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:69 > + return false; What does this imply? Can there be cookies for empty resource domains? > Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:108 > + if (!WebProcess::singleton().ensureNetworkProcessConnection().connection().sendSync(Messages::NetworkConnectionToWebProcess::CookiesForDOM(document.firstPartyForCookies(), sameSiteInfo(document), url, frameID, pageID, shouldIncludeSecureCookies(document, url), delegatesCookieBlockingToNetworkProcess ? ShouldApplyITPCookieBlockingPolicy::Yes : ShouldApplyITPCookieBlockingPolicy::No), Messages::NetworkConnectionToWebProcess::CookiesForDOM::Reply(cookieString, secureCookiesAccessed), 0)) Now that I see the use of ShouldApplyITPCookieBlockingPolicy, I think a more detailed enum is called for, such as { IsFirstParty, IsThirdPartyWithStorageAccess, IsThirdPartyWithoutStorageAccess, IsMissingPartyContext }, the last value being my attempt to encode the two cases with empty domains as commented on above. Then ITP in the network process can make an informed decision instead of being served a decision Apply policy Yes or No. Such an enum would also make sense in both places instead of this delegatesCookieBlockingToNetworkProcess boolean plus the Yes/No enum.
Chris Dumez
Comment 9 2020-01-14 15:38:46 PST
Comment on attachment 387684 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=387684&action=review >> Source/WebKit/ChangeLog:6 >> + Reviewed by NOBODY (OOPS!). > > I thought we always described the change in both the WebCore and the WebKit change logs, at least when there are significant changes in both. Not sure what the policy is. I can add the changelog to both WebKit and WebCore. >> Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:65 >> + return false; > > Does this match some existing behavior? This logic is identical to what is used in NetworkStorageSession::shouldBlockCookies() on network process side. >> Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:69 >> + return false; > > What does this imply? Can there be cookies for empty resource domains? This logic is identical to what is used in NetworkStorageSession::shouldBlockCookies() on network process side. >> Source/WebKit/WebProcess/WebPage/WebCookieJar.cpp:108 >> + if (!WebProcess::singleton().ensureNetworkProcessConnection().connection().sendSync(Messages::NetworkConnectionToWebProcess::CookiesForDOM(document.firstPartyForCookies(), sameSiteInfo(document), url, frameID, pageID, shouldIncludeSecureCookies(document, url), delegatesCookieBlockingToNetworkProcess ? ShouldApplyITPCookieBlockingPolicy::Yes : ShouldApplyITPCookieBlockingPolicy::No), Messages::NetworkConnectionToWebProcess::CookiesForDOM::Reply(cookieString, secureCookiesAccessed), 0)) > > Now that I see the use of ShouldApplyITPCookieBlockingPolicy, I think a more detailed enum is called for, such as { IsFirstParty, IsThirdPartyWithStorageAccess, IsThirdPartyWithoutStorageAccess, IsMissingPartyContext }, the last value being my attempt to encode the two cases with empty domains as commented on above. Then ITP in the network process can make an informed decision instead of being served a decision Apply policy Yes or No. > > Such an enum would also make sense in both places instead of this delegatesCookieBlockingToNetworkProcess boolean plus the Yes/No enum. The logic for checking is the same on the network process and WebProcess side. A yes/no bit is thus enough to communicate to the network process that we already did the check.
Chris Dumez
Comment 10 2020-01-14 16:42:47 PST
Created attachment 387730 [details] Patch
John Wilander
Comment 11 2020-01-14 17:22:15 PST
Comment on attachment 387730 [details] Patch The shouldAskITPInNetworkProcess boolean and the ShouldAskITP enum are both good improvements. I assume you are waiting for EWS before you add cq+. Regardless, I'm OK for it to go on the queue.
WebKit Commit Bot
Comment 12 2020-01-14 19:10:21 PST
The commit-queue encountered the following flaky tests while processing attachment 387730 [details]: editing/spelling/spellcheck-async-remove-frame.html bug 158401 (authors: morrita@google.com, rniwa@webkit.org, and tony@chromium.org) The commit-queue is continuing to process your patch.
WebKit Commit Bot
Comment 13 2020-01-14 19:11:01 PST
Comment on attachment 387730 [details] Patch Clearing flags on attachment: 387730 Committed r254556: <https://trac.webkit.org/changeset/254556>
WebKit Commit Bot
Comment 14 2020-01-14 19:11:03 PST
All reviewed patches have been landed. Closing bug.
Radar WebKit Bug Importer
Comment 15 2020-01-14 19:12:15 PST
<rdar://problem/58592851>
Note You need to log in before you can comment on or make changes to this bug.