RESOLVED FIXED Bug 238892
WebProcessProxy should not hold WebsiteDataStore alive when there is no page 
https://bugs.webkit.org/show_bug.cgi?id=238892
Summary WebProcessProxy should not hold WebsiteDataStore alive when there is no page
Sihui Liu
Reported 2022-04-06 14:34:16 PDT
...
Attachments
Patch (32.39 KB, patch)
2022-04-06 14:36 PDT, Sihui Liu 		ews-feeder: commit-queue-
DetailsFormatted DiffDiff
Patch (33.24 KB, patch)
2022-04-06 15:04 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (33.26 KB, patch)
2022-04-06 21:19 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (34.79 KB, patch)
2022-04-08 10:46 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (34.73 KB, patch)
2022-04-08 12:39 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (34.79 KB, patch)
2022-04-08 13:51 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (35.10 KB, patch)
2022-04-12 16:22 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (35.09 KB, patch)
2022-04-21 10:05 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (29.04 KB, patch)
2022-05-13 16:09 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (28.46 KB, patch)
2022-05-17 11:18 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch (29.53 KB, patch)
2022-05-17 12:54 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Patch for landing (29.53 KB, patch)
2022-05-17 19:19 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
Show Obsolete (11) View All Add attachment proposed patch, testcase, etc.
Sihui Liu
Comment 1 2022-04-06 14:36:36 PDT
Created attachment 456860 [details] Patch
Sihui Liu
Comment 2 2022-04-06 15:04:29 PDT
Created attachment 456869 [details] Patch
Sihui Liu
Comment 3 2022-04-06 21:19:42 PDT
Created attachment 456887 [details] Patch
Sihui Liu
Comment 4 2022-04-08 10:46:49 PDT
Created attachment 457092 [details] Patch
Sihui Liu
Comment 5 2022-04-08 12:39:08 PDT
Created attachment 457110 [details] Patch
Sihui Liu
Comment 6 2022-04-08 13:51:59 PDT
Created attachment 457115 [details] Patch
Sihui Liu
Comment 7 2022-04-12 16:22:37 PDT
Created attachment 457489 [details] Patch
Radar WebKit Bug Importer
Comment 8 2022-04-13 14:35:14 PDT
<rdar://problem/91715517>
Carlos Garcia Campos
Comment 9 2022-04-19 02:28:13 PDT
The problem is a crash when trying to add a web process to the cache in WebProcessCache::CachedProcess::CachedProcess(Ref<WebProcessProxy>&& process) because we hit RELEASE_ASSERT(dataStore). In current code, the process proxy keeps a reference of the data store, so when added to the cache it still has the data sore, but now the data store is destroyed before the process is added to the cache. This happens in the tests because every test case is creating a new web context (WebProcessPool) with a new website data store. When the test case finishes the web context is destroyed and the data store too. Since WebPageProxy::close() sends the close message in the following run loop iteration, WebProcessProxy::maybeShutDown() (which adds the process to the cache) is called when the new data store has already been removed. We should make WebProcessCache::canCacheProcess() return false if the process session ID doesn't have a valid data store.
Carlos Garcia Campos
Comment 10 2022-04-19 02:31:19 PDT
Comment on attachment 457489 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=457489&action=review > Source/WebKit/UIProcess/WebProcessCache.cpp:83 > - auto sessionID = process.websiteDataStore().sessionID(); > - if (sessionID.isEphemeral() && !process.processPool().hasPagesUsingWebsiteDataStore(process.websiteDataStore())) { > + auto sessionID = process.sessionID(); > + if (sessionID.isEphemeral() && !process.processPool().hasPagesUsingWebsiteDataStore(process.sessionID())) { > WEBPROCESSCACHE_RELEASE_LOG("canCacheProcess: Not caching process because this session has been destroyed", process.processIdentifier()); > return false; > } Why are we doing this only for ephemeral sessions? With this patch I think we can do: if (!WebsiteDataStore::existingDataStoreForSessionID(process.sessionID()) if there isn't a data store for the process session ID is because the session has been destroyed.
Sihui Liu
Comment 11 2022-04-21 10:03:57 PDT
(In reply to Carlos Garcia Campos from comment #10) > Comment on attachment 457489 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=457489&action=review > > > Source/WebKit/UIProcess/WebProcessCache.cpp:83 > > - auto sessionID = process.websiteDataStore().sessionID(); > > - if (sessionID.isEphemeral() && !process.processPool().hasPagesUsingWebsiteDataStore(process.websiteDataStore())) { > > + auto sessionID = process.sessionID(); > > + if (sessionID.isEphemeral() && !process.processPool().hasPagesUsingWebsiteDataStore(process.sessionID())) { > > WEBPROCESSCACHE_RELEASE_LOG("canCacheProcess: Not caching process because this session has been destroyed", process.processIdentifier()); > > return false; > > } > > Why are we doing this only for ephemeral sessions? With this patch I think > we can do: > > if (!WebsiteDataStore::existingDataStoreForSessionID(process.sessionID()) > > if there isn't a data store for the process session ID is because the > session has been destroyed. Thanks for looking into this! I will update the patch as suggested.
Sihui Liu
Comment 12 2022-04-21 10:05:20 PDT
Created attachment 458073 [details] Patch
youenn fablet
Comment 13 2022-04-25 23:11:12 PDT
Comment on attachment 458073 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=458073&action=review > Source/WebKit/UIProcess/ProvisionalPageProxy.cpp:119 > + if (m_process->sessionID() != m_page.websiteDataStore().sessionID()) So we could now have a WebProcessProxy with a session ID pointing to nothing. Should we proactively destroy WebProcessProxies in case its session data store is destroyed? > Source/WebKit/UIProcess/WebProcessProxy.cpp:1752 > + return m_sessionID; We could probably add an ASSERT(m_sessionID.isValid()). Previously we would return m_websiteDataStore which might cause a nullptr crash. If we return an invalid session ID and query the website data store map, we will corrupt the map. > Source/WebKit/UIProcess/WebProcessProxy.h:-170 > - WebsiteDataStore& websiteDataStore() const { ASSERT(m_websiteDataStore); return *m_websiteDataStore; } WebProcessProxy could continue providing a WebsiteDataStore* getter() which would call WebsiteDataStore::existingDataStoreForSessionID under the hood. If we later think we should use a WeakPtr<WebsiteDataStore> instead, that will make the code easier to migrate.
Sihui Liu
Comment 14 2022-05-05 12:27:39 PDT
(In reply to youenn fablet from comment #13) > Comment on attachment 458073 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=458073&action=review > > > Source/WebKit/UIProcess/ProvisionalPageProxy.cpp:119 > > + if (m_process->sessionID() != m_page.websiteDataStore().sessionID()) > > So we could now have a WebProcessProxy with a session ID pointing to nothing. > Should we proactively destroy WebProcessProxies in case its session data > store is destroyed? I think WebProcessProxy may have an invalid sessionID if it's pre-warmed; so we cannot say WebProcessProxy with invalid session is invalid. > > > Source/WebKit/UIProcess/WebProcessProxy.cpp:1752 > > + return m_sessionID; > > We could probably add an ASSERT(m_sessionID.isValid()). > Previously we would return m_websiteDataStore which might cause a nullptr > crash. > If we return an invalid session ID and query the website data store map, we > will corrupt the map. > > > Source/WebKit/UIProcess/WebProcessProxy.h:-170 > > - WebsiteDataStore& websiteDataStore() const { ASSERT(m_websiteDataStore); return *m_websiteDataStore; } > > WebProcessProxy could continue providing a WebsiteDataStore* getter() which > would call WebsiteDataStore::existingDataStoreForSessionID under the hood. > If we later think we should use a WeakPtr<WebsiteDataStore> instead, that > will make the code easier to migrate. Sounds good; and I can add the SessionID validity check inside websiteDataStore().
Sihui Liu
Comment 15 2022-05-13 16:09:38 PDT
Created attachment 459325 [details] Patch
Sihui Liu
Comment 16 2022-05-17 11:18:41 PDT
Created attachment 459509 [details] Patch
Sihui Liu
Comment 17 2022-05-17 12:54:48 PDT
Created attachment 459511 [details] Patch
Sihui Liu
Comment 18 2022-05-17 19:19:14 PDT
Created attachment 459522 [details] Patch for landing
EWS
Comment 19 2022-05-17 20:25:00 PDT
Committed r294381 (250678@main): <https://commits.webkit.org/250678@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 459522 [details].
Note You need to log in before you can comment on or make changes to this bug.