Open Bug 1539906 Opened 5 years ago Updated 2 years ago

Is it expected that preconnect (speculative connect) machinery can synchronously run script?

Categories

(Core :: Networking, enhancement, P3)

Product:
Core
Component:
Networking
Type:
enhancement

Tracking

()

Tracking Flags:
Tracking Status
firefox68 --- affected

People

(Reporter: bzbarsky, Unassigned)

References

(Blocks 2 open bugs)

Details

(Whiteboard: [necko-triaged])

Attachments

(1 file)

Mark DOM bits that end up calling into necko preconnect machinery as MOZ_CAN_RUN_SCRIPT.
4.34 KB, patch
Details | Diff | Splinter Review

I was trying to annotate nsIObserverService::NotifyObservers() as "can run script", and it turns out that preconnect machinery can synchronously call into that, via PSM bits that notify about cert when DNS lookups happen, etc, etc. The predictor stuff is involved as well.

Is that expected? Should all this be done async somehow? We currently kick off preconnects from all sorts of places in the DOM, and while I could add async behavior at all of those it seems like it might be better to centralize the async parts.

Flags: needinfo?(dd.mozilla)

Alternately, maybe PSM should either not send the notifications sync or not use a general observer service notification for things that are meant for one single consumer (e.g. I am looking at "psm:user-certificate-added", "psm:user-certificate-deleted", "net:cancel-all-connections").

It might also be good to think about an alternate implementation for some things that are test-only but end up infecting a bunch of the codebase with can-run-script (e.g. the "data-storage-ready" and "data-storage-written" notifications).

Flags: needinfo?(valentin.gosu)
Flags: needinfo?(dkeeler)

I have no objections to improving how this works.

Flags: needinfo?(dkeeler)

Well, ok, but what does "improving" mean in this case? Can PSM switch to notifying async, or would that break something? Who owns this general area of code?

Just to be clear, I don't have time right now to change around the PSM stuff; it's just blocking safety improvements in other parts of Gecko at the moment... We could probably MOZ_CAN_RUN_SCRIPT_BOUNDARY on the PSM notifications and move on to unblock the work in bug 1539808, but it would be good to have a long-term plan.

I had a quick look and I believe "psm:user-certificate-added", "psm:user-certificate-deleted", "data-storage-ready", and "data-storage-written" can all be made asynchronous without breaking anything, if that's the quickest way to get you unblocked. Making "net:cancel-all-connections" asynchronous might cause intermittent failures in security/manager/ssl/tests/mochitest/browser/browser_clientAuth_connection.js if we can't find an alternative way to have the test wait until necko has actually terminated all connections, but that's the only potential problem I saw.

Thank you for checking that! I'll take a look at doing that and see where that lands me.

I do not have any objectives, anyway keeleris better person to judge about PSM.
About "net:cancel-all-connections" we can look how we can achieve the same behavior in a different way. This is only for tests.

Flags: needinfo?(dd.mozilla)
Flags: needinfo?(valentin.gosu)
Priority: -- → P3
Whiteboard: [necko-triaged]

I've had this in my tree for a bit. Attaching here so it does not get lost.

Severity: normal → S3
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: