Consolidate iframe & object resource timing code paths #38348
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
wpt-pr-bot
approved these changes
Feb 3, 2023
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-4214695
branch
12 times, most recently
from
75a4ec7 to
6822cb3
Compare
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-4214695
branch
13 times, most recently
from
d1b0a5e to
623e08f
Compare
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-4214695
branch
6 times, most recently
from
88101ec to
3a16269
Compare
So far some of the logic in resource timing for subframe navigations iframe/object/embed) was duplicated, e.g. both in blink and in content. This has led to race conditions, inconsistencies and sometimes XSS leaks. This patch attempts to improve the situation by consolidating the code paths: - NavigationRequest receives is_container_initiated, which ensures only container-initiated navigations are reported to the parent. This is a clarification of something that was ambiguous in the spec previously (whatwg/html#8846). It later uses ParentResourceTimingAccess to decide if a navigation should report to its parent with/without response details (status code and mime-type), or not report at all (TAO-fail, not an iframe, not container-initiated). - Both object fallbacks and cancelled navigations (204/205) report to the parent via RenderFrameImpl, and blink converts that to a ResourceTimingInfo object. This allows us to remove the duplicated resource timing creation code in //content. - We report fallback resource timing also for plugin error events and not only for load events. Bug: 1399862 Bug: 1410705 Change-Id: Id37d23cd02eee9e38f812e6f3da99caedafdee3d Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4214695 Reviewed-by: Takashi Toyoshima <toyoshim@chromium.org> Reviewed-by: Daniel Cheng <dcheng@chromium.org> Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org> Commit-Queue: Noam Rosenthal <nrosenthal@chromium.org> Cr-Commit-Position: refs/heads/main@{#1110433}
chromium-wpt-export-bot
force-pushed
the
chromium-export-cl-4214695
branch
from
3a16269 to
6454474
Compare
|
WPT Command: Some affected tests had inconsistent (flaky) results: Unstable results
These may be pre-existing or new flakes. Please try to reproduce (see the above WPT command, though some flags may not be needed when running locally) and determine if your change introduced the flake. If you are unable to reproduce the problem, please tag |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
So far some of the logic in resource timing for subframe navigations
iframe/object/embed) was duplicated, e.g. both in blink and in content.
This has led to race conditions, inconsistencies and sometimes
XSS leaks.
This patch attempts to improve the situation by consolidating the code
paths:
NavigationRequest receives is_container_initiated, which ensures only
container-initiated navigations are reported to the parent. This
is a clarification of something that was ambiguous in the spec
previously (iframe resource timing: entry should only be created for frame-initiated navigation whatwg/html#8846).
It later uses ParentResourceTimingAccess to decide if a navigation
should report to its parent with/without response details
(status code and mime-type), or not report at all (TAO-fail, not
an iframe, not container-initiated).
Both object fallbacks and cancelled navigations (204/205) report
to the parent via RenderFrameImpl, and blink converts that to a
ResourceTimingInfo object. This allows us to remove the duplicated
resource timing creation code in //content.
We report fallback resource timing also for plugin error events and
not only for load events.
Bug: 1399862
Bug: 1410705
Change-Id: Id37d23cd02eee9e38f812e6f3da99caedafdee3d
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4214695
Reviewed-by: Takashi Toyoshima <toyoshim@chromium.org>
Reviewed-by: Daniel Cheng <dcheng@chromium.org>
Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org>
Commit-Queue: Noam Rosenthal <nrosenthal@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1110433}
Revert "Consolidate iframe & object resource timing code paths"
This reverts commit 5dcb6f7b01d5f51144a9ba847c34bb0cdc344ccb.
Reason for revert: MSan failures crbug.com/1420057
Change-Id: Id37d23cd02eee9e38f812e6f3da99caedafdee3d