Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Navigation rewrite: Add WPT for initiator origin in document state #36352

Merged
merged 1 commit into from
Oct 13, 2022

Conversation

chromium-wpt-export-bot
Copy link
Collaborator

@chromium-wpt-export-bot chromium-wpt-export-bot commented Oct 9, 2022

Per one of the remaining work items 1 in the navigation & session history spec rewrite, we need to store the original initiator origin of a given session history entry's document state.

This CL introduces a test to ensure that the initiator origin in a document state is indeed used in history navigations. The way we test this is by:
1.) Producing a session history of [A] -> [B], in order to set [B]'s initiator origin to [A] (also we disable bf-cache). [A] and [B] are cross-site
2.) Navigate back to [A] ([B] is destroyed), and perform location.replace([B])
3.) Then perform history.forward() to initiate a same-origin history navigation to a session history entry whose document state has a cross-origin initiator origin
4.) Confirm that the history.forward() [B] loads with request parameters consistent with the document state that captures state from the original initiator. For example:

  • Sec-Fetch-Site: cross-site, implying that the initiator origin was
    saved to the document state and correctly re-used upon subsequent
    navigation (even by a same-origin document).
  • Referer: cross-origin, implying that it was correctly written to
    the document state the first time, and reused later
  • document.referrer (same as above)

R=[email protected]

Bug: N/A
Change-Id: I2361ef7d5d516e71ad3026626db97a5b9fdb8e38
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3936785
Reviewed-by: Domenic Denicola <[email protected]>
Commit-Queue: Dominic Farolino <[email protected]>
Cr-Commit-Position: refs/heads/main@{#1056900}

Copy link
Collaborator

@wpt-pr-bot wpt-pr-bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The review process for this patch is being conducted in the Chromium project.

@jcscottiii
Copy link
Contributor

ERROR /speculation-rules/prerender/visibility-state.html - Error: assert_implements: <script type="speculationrules"> is not supported undefined looks unrelated. Going to rebase and push again

Per one of the remaining work items [1] in the navigation & session history spec rewrite, we need to store the original initiator origin of a given session history entry's document state.

This CL introduces a test to ensure that the initiator origin in a document state is indeed used in history navigations. The way we test this is by:
 1.) Producing a session history of [A] -> [B], in order to set [B]'s initiator origin to [A] (also we disable bf-cache). [A] and [B] are cross-site
 2.) Navigate back to [A] ([B] is destroyed), and perform location.replace([B])
 3.) Then perform history.forward() to initiate a same-origin history navigation to a session history entry whose document state has a cross-origin initiator origin
 4.) Confirm that the history.forward() [B] loads with request parameters consistent with the document state that captures state from the *original* initiator. For example:
   - Sec-Fetch-Site: cross-site, implying that the initiator origin was
     saved to the document state and correctly re-used upon subsequent
     navigation (even by a same-origin document).
   - Referer: cross-origin, implying that it was correctly written to
     the document state the first time, and reused later
   - document.referrer (same as above)

[1]: https://docs.google.com/document/d/1yxnzjRDVmAR5CC9GcAyY448lBD0u0E98eUEMHDhx1Dw/edit#heading=h.lwfczldtst3r

[email protected]

Bug: N/A
Change-Id: I2361ef7d5d516e71ad3026626db97a5b9fdb8e38
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3936785
Reviewed-by: Domenic Denicola <[email protected]>
Commit-Queue: Dominic Farolino <[email protected]>
Cr-Commit-Position: refs/heads/main@{#1056900}
@jcscottiii jcscottiii force-pushed the chromium-export-cl-3936785 branch from 5b3c323 to d05fdf7 Compare October 13, 2022 16:41
@WeizhongX
Copy link
Contributor

@jcscottiii, are you working on this? can we admin merge this now?

@WeizhongX
Copy link
Contributor

WPT Command: python3 ./wpt run --channel=nightly --verify --verify-no-chaos-mode --verify-repeat-loop=0 --verify-repeat-restart=10 --github-checks-text-file=/home/test/artifacts/checkrun.md --affected base_head --log-mach-level=info --log-mach=- -y --no-pause --no-restart-on-unexpected --install-fonts --no-headless --verify-log-full --binary=/home/test/build/firefox/firefox firefox

Some affected tests had slow results:

Slow tests

Test Result Longest duration (ms) Timeout (ms)
/html/browsers/browsing-the-web/history-traversal/document-state.tentative.https.html OK 9795 10000
/performance-timeline/not-restored-reasons/performance-navigation-timing-same-origin-bfcache.window.html OK 8778 10000

These may be pre-existing or newly slow tests. Slow tests indicate that a test ran very close to the test timeout limit and so may become TIMEOUT-flaky in the future. Consider speeding up the test or breaking it into multiple tests. For help, please tag @web-platform-tests/wpt-core-team in a comment.

@past
Copy link
Member

past commented Oct 13, 2022

This is a newly added test, so the slowness is likely introduced in this CL. @domfarolino, @domenic maybe you could split it up?

I'll admin merge the PR in the meantime.

@past past merged commit 2c1f4d0 into master Oct 13, 2022
@past past deleted the chromium-export-cl-3936785 branch October 13, 2022 23:46
@domfarolino
Copy link
Member

document-state.tentative.https.html is just a single test, I honestly don't see any way to make it faster, and I can't imagine why it is taking almost 10 seconds to run anywhere.

domenic added a commit to whatwg/html that referenced this pull request Oct 31, 2022
This monster completely rewrites everything to do with navigation and traversal.

It introduces the "navigable" and "traversable navigable" concepts, which take on many of the roles that browsing contexts previously did, but better. A navigable can present a sequence of browsing contexts, which to the user seem to all be the same, but due to browsing context group switches, have different WindowProxys and are allocated in different agent clusters. A traversable navigable manages the session history for itself and all its descendant navigables, providing a synchronization point and source of truth.

The general flow of navigation and traversal is now geared toward creating a session history entry, populated with the appropriate document, before finally applying the history "step". The step concept for session history, managed by the traversable, replaces the previous idea of joint session history, which was a sort of deduplicated union of individual session histories for each browsing context within a top-level browsing context.

Notable things we won't tackle this round, but are much easier to tackle in the future:

- Iframe restoration on (non-bfcache) history traversal is not yet specified.
- Overlapping navigations and traversals (see #6927) are not perfect yet, although this makes them better.
- Browsing context names (see #313) are not perfect yet, although this makes them better.
- Base URL inheritance and storage in session history (see #421, #2883, and #3989) is not yet specified.
- Sandbox flag storage in session history (see #6809) is not yet specified.
- Task queuing when creating agents/realms/windows/documents (see #8443) remains sketchy.
- Window object reuse is not yet rationalized (see #3267).

Closes #854 by clarifying the javascript: URL origin and origin-checking setup.

Closes #1073 by properly resetting active-ness of documents when they are removed.

Closes #1130 by removing the source browsing context concept, using a sourceDocument argument instead, and taking source snapshot params at the appropriate early time.

Closes #1191 by properly sharing document state across documents, as well as overlapping same-document navigations plus cross-document traversals.

Closes #1336 by properly handling child browsing contexts.

Closes #1382 by only unloading after we are sure we have a new document (i.e., not a 204 or download).

Closes #1454 by rewriting session history closer to what implementations do, with the nested history concept in particular taking care of the issues discussed there.

Closes #1524 by introducing the POST data concept and storing it in the document state.

Closes #2436 by rewriting the spec for history.go() to be clear about the results. Tests: web-platform-tests/wpt#36366.

Closes #2566 by introducing an explicit "history object" definition. Tests: web-platform-tests/wpt#36367.

Closes #2649 through clear creation of srcdoc documents, including during history traversal.

Closes #3215 by preserving POST data and reusing it on reloads.

Closes #3447 by specifying a precise mechanism (the ongoing navigation) for canceling navigations, and the points at which that mechanism is consulted. It also stops queuing a task for hyperlink navigations.

Closes #3497 by posting appropriate tasks for cross-event-loop navigations.

Closes #3615 by rewriting traverse a history by a delta, which eventually calls into apply the history step, to navigate all relevant navigables.

Closes #3625 by storing information in the document state (not just the URL), so that future traversals can reconstruct the request appropriately.

Closes #3730 by doing proper task queuing for navigation, including one for javascript: URLs but not including one for normal same-frame navigations. Tests: web-platform-tests/wpt#36358.

Closes #3734 by rewriting the definition of script-closable to use well-defined concepts.

Closes #3812 by removing all uses of "active document" as a predicate instead of a property.

Closes #4054 by introducing the session history traversal queue and renaming the previous "history traversal task source" to "navigation and traversal task source".

Closes #4121 by doing the "allowed to navigate" check at the top of apply the history step.

Closes #4428 by keeping a strong reference from documents (including bfcached documents) to their containing browsing context.

Closes #4782 by introducing the top-level traversable and navigable concepts.

Closes #4838 by doing sandbox checking in a much more precise manner, in particular snapshotting the relevant flags early in any traversals.

Closes #4852 by using document state (in particular history policy container, request referrer, and request referrer policy) in reloads.

Closes #5103 by properly restoring scroll positions for everything that is traversed, as part of properly traversing more than one navigable.

Closes #5350 by properly restoring window names across browsing context group switches, and going back to the same browsing context as was previously there when traversing back across a BCG switch boundary. (Implementations could create new browsing contexts, as long as they restore the WindowProxy scripting relationships and other browsing context features; the result is observably equivalent.)

Closes #5597 by rewriting "allowed to download" to just take booleans, derived from the appropriate snapshotted or computed sandboxing flags.

Closes #5767, modulo bugs and oversights we made, by rewriting everything :).

Closes #5877 by re-specifying "fully active" in terms of navigables, instead of browsing contexts.

Closes #6446 by properly firing beforeunload to all descendant navigables, although whether or not they actually prompt still allows implementation leeway.

Closes #6483 by introducing the distinction between current session history entry and active session history entry.

Closes #6514 by settling on using a single origin for these checks.

Closes #6628 by storing window.name values in the document state, so even in strange splitting situations like described there, they remain.

Closes #6652 by no longer changing history.state when reactivating a document from bfcache ("restore the history object state" is called only when documentsEntryChanged is true). Tests: web-platform-tests/wpt#36368.

Closes #6773 by having careful handling of synchronous navigations during traversals. Test updates: web-platform-tests/wpt#36364.

Closes #6798 by treating javascript: URL navigations as replacements.

Works towards #6809 by storing srcdoc resources in the document state.

Closes #6813 by storing referrer in the document state. Tests for the repopulation case: web-platform-tests/wpt#36352. (No tests yet for the reload case.)

Closes #6947 by rolling its contents into this change: PDF documents are put in the same category as other inaccessible, no-DOM documents.

Closes #7107 by clearing history state on redirects and when origin changes by other means, such as CSP.

Closes #7441 by making window.blur() a no-op because that was simpler than updating it to operate on navigables.

Closes #7722 by incorporating its contents into the rewritten version.

Closes #8295 by refactoring the iframe/frame load event specs to avoid the bug.

Helps with #8395 by at least ensuring the javascript: case does not fire beforeunload. Tests: web-platform-tests/wpt#36488. (The other cases remain open for investigation and testing.)

Closes #8449 by exporting "create a fresh top-level traversable" which is designed for the use case in question.

Co-authored-by: Domenic Denicola <[email protected]>
Co-authored-by: Dominic Farolino <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

6 participants