Update Content Blocking to use BSK stack #354

bwaresiak · 2021-11-28T20:10:57Z

Task/Issue URL:

Tech Design URL:
CC:

Description:

Move Content Blocking stack from iOS to BSK and introduce it to Mac OS browser.

This is sibling PR to the one from BSK: duckduckgo/BrowserServicesKit#35

Steps to test this PR:

All privacy related features should be carefully tested (see checklist below) and checked against privacy test pages.

Testing checklist:

Test with Release configuration

Privacy features:

Tracker Blocking.
Tracker Reporting (privacy dashboard).
Surrogates injection.
GPC toggling.
Unprotected sites and toggling protection.
Temporary list exceptions.
Tracker Allowlist exceptions (see https://app.asana.com/0/856498667320406/1201168402252793 for details).
TDS and PrivacyConfig updates.

Internal references:

Software Engineering Expectations
Technical Design Template
When ready for review, remember to post the PR in MM

bwaresiak · 2021-11-28T20:24:53Z

DuckDuckGo/BrowserTab/Model/Tab.swift

+        userScriptsUpdatedCancellable = scriptsSource.sourceUpdatedPublisher.receive(on: RunLoop.main).sink { [weak self] _ in
+            guard let self = self, self.delegate != nil else { return }
+
+            self.userScripts = UserScripts(with: self.scriptsSource)


We could check the diff of the rules here (e.g. for the presence of unprotected sites changes) and reload the tab here, instead of doing that from Dashboard (but it would require figuring out if current tab is the one for which change has been triggered, or if it matches the unprotected sites change).

+1
Not sure if it helps, but active tab state can be easily determined with webview.superview != nil

We still need to know if that tab is relevant to the change - hard to do that now, probably should be tackled elsewhere.

DuckDuckGo/Configuration/ConfigurationDownloading.swift

DuckDuckGo/ContentBlocker/ContentBlocking.swift

bwaresiak · 2021-11-28T20:36:11Z

DuckDuckGo/ContentBlocker/ScriptSourceProviding.swift

+
+            self.reload(knownChanges: newRulesInfo.changes)
+        })
+        contentBlockingRulesUpdatedCancellable = cancellable


I've refactored the event flow, as Scripts depend on the state of the Content Blocking & Config layers, so source provider now listens to changes and sends sigal once sources are updated. Tabs listen for this and reinstantiate scripts.

DuckDuckGo/ContentBlocker/ContentBlocking.swift

bwaresiak · 2021-11-28T20:45:33Z

DuckDuckGo/Preferences/Model/PrivacySecurityPreferences.swift

@@ -26,7 +26,7 @@ struct PrivacySecurityPreferences {
    @UserDefaultsWrapper(key: .gpcEnabled, defaultValue: true)
    public var gpcEnabled: Bool {
        didSet {
-            DefaultScriptSourceProvider.shared.reload()
+            DefaultScriptSourceProvider.shared.reload(knownChanges: nil)


This is just 2nd place where DefaultScriptSourceProvider.shared is used so we could make it regular instance instead of singleton if we were to refactor this code into some event-driven logic.

bwaresiak · 2021-11-28T20:48:26Z

DuckDuckGo/NavigationBar/View/AddressBarButtonsViewController.swift

+
+            let majorTrackerThresholdPrevalence = 25.0
+            let parentEntity = ContentBlocking.trackerDataManager.trackerData.findEntity(forHost: host)
+            let isMajorTrackingNetwork = (parentEntity?.prevalence ?? 0.0) >= majorTrackerThresholdPrevalence


This business logic has been moved from TrackerRadarManager.

bwaresiak · 2021-11-28T20:51:01Z

DuckDuckGo/Privacy Dashboard/View/PrivacyDashboardViewController.swift

+                self.sendPendingUpdates()
+
+                let activeTab = self.tabViewModel?.tab
+                activeTab?.reload()


There are some bugs related to fact that we allow user to change tabs after toggling protection status:

Current Tab can be closed - then browser crashes.

Current Tab can be changed - then reload() is called for wrong tab.

These issues should be handled in another task.

bwaresiak · 2021-11-28T20:52:18Z

DuckDuckGo/Privacy Dashboard/View/PrivacyDashboardViewController.swift


 final class PrivacyDashboardViewController: NSViewController {

    @IBOutlet var webView: WKWebView!
    private let privacyDashboardScript = PrivacyDashboardUserScript()
    private var cancellables = Set<AnyCancellable>()
-    @Published var pendingUpdates = Set<String>()
+    @Published var pendingUpdates = [String: String]()


It is not possible to have multiple pending updates per current logic (toggle is disabled when processing change), but I preserved that capability in the code to not make too many changes here.

tomasstrba

@bwaresiak, I promised this to be reviewed today, but I need few more minutes to review this tomorrow. Code architecture looks very good, I can see you cared. Don't expect any major changes after the second review tomorrow

tomasstrba · 2021-11-29T15:29:08Z

DuckDuckGo/Common/Extensions/URLExtension.swift

@@ -429,29 +430,27 @@ extension URL {
    }

    // MARK: - GPC
+
+    static func gpcHeadersEnabled(config: PrivacyConfiguration) -> [String] {


To be honest, these two methods are weird. They are static on URL, but the main point is to look into the instance of PrivacyConfiguration. I would define them there. Definitely not scope of this PR, I added a task into my tech debt list.

Definitely good idea, I didn't want to touch "too much" to not add to the scope creep.

tomasstrba · 2021-11-29T15:38:06Z

DuckDuckGo/ContentBlocker/ContentBlockerRulesUserScript.swift

@@ -19,7 +19,7 @@
 import WebKit
 import BrowserServicesKit

-final class ContentBlockerRulesUserScript: NSObject, UserScript {
+final class OldContentBlockerRulesUserScript: NSObject, UserScript {


The reference to this file is removed from Xcode but the file is still in ContentBlocker folder.

DuckDuckGo/ContentBlocker/ContentBlocking.swift

tomasstrba

These are tests that I used to verify the functionality:

Tracker blocking: https://privacy-test-pages.glitch.me/index.html
Surrogates: https://efficient-zest-side.glitch.me/
GPC: https://globalprivacycontrol.org/
Unprotected sites and toggling protection: switching the protection on/off in the privacy dashboard
Temporary list exceptions: Editing bundled macos-config.json and waiting until the downloaded version is applied
Tracker Allowlist exceptions: Run tests in BSK using "swift test" (Failed to load a local file when tests were running from Xcode)
TDS and PrivacyConfig updates: Combination of breakpoints, removal of the local configuration from ~/Library/Containers/com.duckduckgo.macos.browser.debug/Data/Library/Application Support/Configuration and looking whether tracker allowlist exceptions were applied

The only issue discovered is we are not passing information about temporary unprotected site to the user. It is not part of the scope of this PR

Bartek, this is an excelent work! 🎖️ 🏅 I'm very happy we have another pair of eyes looking at our codebase. Thanks for all suggestions, I took notes and will add follow up tasks into our macOS Development board.

LGTM! 💯

bwaresiak added 17 commits November 19, 2021 16:46

Initial setup for Privacy Config

b017c3a

Migrating Content Blocker Manager

7d17294

Update content blocker classes

888fbf3

Fix message processing after toggling privacy protection

f178f43

Simplify APIs

da4005a

More updates to used APIs

823af8b

Update user scripts

72cceae

Updates to user scripts event flow and tests

c3208cc

Fix unit tests and add temporary ones based on reference tests

dba8534

Merge branch 'develop' into bartek/update-content-blocking

1e9c984

Update embedded Config, add tests

763a944

Logging for Content Blocking

5bd2073

Pixels and updates to test after recent BSK changes

86226e3

Cleanup

ef70870

Better support for Pixels in BSK

8e63a81

Update BSK dependency

3f04dfe

Merge branch 'develop' into bartek/update-content-blocking

69f9dfe