Closed Bug 804395 Opened 12 years ago Closed 12 years ago

app:// protocol and XHR

Categories

(Core :: Networking, defect)

Product:
Core
Component:
Networking
Platform:
x86
macOS
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla19
Project Flags:
blocking-basecamp -
Tracking Flags:
Tracking Status
firefox18 --- fixed
firefox19 --- fixed

People

(Reporter: djf, Assigned: baku)

References

Details

(Keywords: addon-compat)

Attachments

(1 file, 5 obsolete files)

patch 5b
6.95 KB, patch
baku
: review+
bajaj
: approval-mozilla-aurora+
Details | Diff | Splinter Review
Third-party app developers for FirefoxOS will expect XHR on application resources using the app:// protocol to work like it does for http:// URLs. Currently, however, it does not seem to work that way. My test environment was using synchronous requests in a worker, with responseType set to "arraybuffer" so these bugs may not be general. What I observed, however: 1) successful requests had a status field of 0. Lots of developers are trained to check for a status of 200. Blob urls emulate http status codes, and we need to make it easy for developers to write code that works unpackaged with http urls and packaged with app urls. This piece of the bug seems like a specification and usability issue. 2) when I requested a file that did not exist, the request was successful. xhr.response was a valid array buffer, and my only indication that something was wrong was that the array buffer had a 0 length. This part of the bug seems like an implementation issue. Sorry I don't have a reduced test case to attach right now.
I'm nominating this as blocking because it would be pretty bad for 3rd party developers if XHR requests that work with http was to break when packaged up as an app.
blocking-basecamp: --- → ?
Attached patch patch 1 (obsolete) — Splinter Review
This is just a proposal.
Attachment #674197 - Flags: review?(dflanagan)
Andrea, That was fast work! Unfortunately, I'm not qualified to review it. I don't know anything about the codebase, and my C++ is weak. Maybe Fabrice would review the patch?
Attachment #674197 - Flags: review?(dflanagan) → review?(jonas)
I think we need something slightly more complicated here. We should only return 200 if the load was successful and there was actually a file to load. If you load something from app:// and there is no file with that URL we should return 404. If you load something from app:// and we had an error somewhere, other than the file-not-found problem, we should return 500.
Makes sense. Right now just the first point is done: > I think we need something slightly more complicated here. We should only > return 200 if the load was successful and there was actually a file to load. These 2 are missing: > If you load something from app:// and there is no file with that URL we > should return 404. > If you load something from app:// and we had an error somewhere, other than > the file-not-found problem, we should return 500. Soon a new patch :)
Attached patch patch 2 (obsolete) — Splinter Review
Jonas, feedback about this?
Attachment #674197 - Attachment is obsolete: true
Attachment #674197 - Flags: review?(jonas)
Attachment #674479 - Flags: review?(jonas)
Comment on attachment 674479 [details] [diff] [review] patch 2 >+already_AddRefed<nsIJARChannel> >+nsXMLHttpRequest::GetCurrentJARChannel() >+{ >+ nsIJARChannel *appChannel = nullptr; >+ >+ if (mReadRequest) { >+ CallQueryInterface(mReadRequest, &appChannel); >+ } >+ >+ if (!appChannel && mChannel) { >+ CallQueryInterface(mChannel, &appChannel); >+ } >+ >+ return appChannel; >+} Please use >nsCOMPtr<nsIJarChannel> appChannel = do_QueryInterface(mReadRequest); >if (!appChannel) { > appChannel = do_QueryInterface(mChannel); >} >return appChannel.forget(); instead.
Attached patch patch 3 (obsolete) — Splinter Review
Attachment #674479 - Attachment is obsolete: true
Attachment #674479 - Flags: review?(jonas)
Attachment #674587 - Flags: review?(josh)
Comment on attachment 674587 [details] [diff] [review] patch 3 Review of attachment 674587 [details] [diff] [review]: ----------------------------------------------------------------- ::: content/base/src/nsXMLHttpRequest.cpp @@ +1240,5 @@ > } > > uint16_t readyState; > GetReadyState(&readyState); > if (readyState == UNSENT || readyState == OPENED || mErrorLoad) { Won't this mean that doing something like >var xhr = SpecialPowers.createSystemXHR(); >xhr.open('GET', 'jar:http://example.org/tests/content/base/test/file_bug804395.jar!/foo.bar', true); >console.log(xhr.status) will display 500?
Attachment #674587 - Flags: review?(josh) → review?(jonas)
Attached patch patch 4 (obsolete) — Splinter Review
Good point, Josh. I added a new test case and now it returns 0 if the request has not been sent.
Attachment #674587 - Attachment is obsolete: true
Attachment #674587 - Flags: review?(jonas)
Attachment #674648 - Flags: review?(jonas)
This was discussed during triage and while we'd like to take the patch (and will aurora+), we wouldn't hold the release for it.
blocking-basecamp: ? → -
Comment on attachment 674648 [details] [diff] [review] patch 4 Review of attachment 674648 [details] [diff] [review]: ----------------------------------------------------------------- Please nominate this for aurora too. Since this affects all jar channels it has a non-zero but very low risk for non-B2G builds I don't want to plus it myself. Definitely worth taking in my opinion since the risk is so low and it'll be a nice fix for B2G. ::: content/base/src/nsXMLHttpRequest.cpp @@ +1261,5 @@ > + > + return 0; > + } > + > + // Let's simulate the http protocol for jar/app requests: Move this into the if(!httpChannel) branch.
Attachment #674648 - Flags: review?(jonas) → review+
Attached patch patch 5 (obsolete) — Splinter Review
[Approval Request Comment] Bug caused by (feature/regressing bug #): User impact if declined: Testing completed (on m-c, etc.): Risk to taking this patch (and alternatives if risky): String or UUID changes made by this patch:
Attachment #674648 - Attachment is obsolete: true
Attachment #674760 - Flags: review+
Attachment #674760 - Flags: approval-mozilla-aurora?
Attached patch patch 5bSplinter Review
forgot to do hg qref. Sorry. [Approval Request Comment] Bug caused by (feature/regressing bug #): User impact if declined: Testing completed (on m-c, etc.): Risk to taking this patch (and alternatives if risky): String or UUID changes made by this patch:
Attachment #674760 - Attachment is obsolete: true
Attachment #674760 - Flags: approval-mozilla-aurora?
Attachment #674763 - Flags: review+
Attachment #674763 - Flags: approval-mozilla-aurora?
(In reply to Andrea Marchesini (:baku) from comment #15) > Created attachment 674763 [details] [diff] [review] > patch 5b > > forgot to do hg qref. Sorry. > > [Approval Request Comment] > Bug caused by (feature/regressing bug #): > User impact if declined: > Testing completed (on m-c, etc.): > Risk to taking this patch (and alternatives if risky): > String or UUID changes made by this patch: Can you please help us out by filling the above information before we can approve the patch ? Thanks !
Right. I have answers for these 2 points: [Approval Request Comment] User impact if declined: Yes, Third-party app developers for FirefoxOS will expect XHR on application resources using the app:// protocol to work like it does for http:// URLs. Testing completed (on m-c, etc.): m-c mochitest is part of this patch.
(In reply to Andrea Marchesini (:baku) from comment #17) > Right. I have answers for these 2 points: > > [Approval Request Comment] > User impact if declined: Yes, Third-party app developers for FirefoxOS will > expect XHR on application resources using the app:// protocol to work like > it does for http:// URLs. > > Testing completed (on m-c, etc.): m-c mochitest is part of this patch. Thanks ! One last question, comment 13 suggest it has a " very low risk for non-B2G builds " . I was more worried about the regressions it might cause on the Desktop/mobile builds . What is the worst that could happen if this patch was approved on that front ?
> Thanks ! One last question, comment 13 suggest it has a " very low risk for > non-B2G builds " . I was more worried about the regressions it might cause > on the Desktop/mobile builds . What is the worst that could happen if this > patch was approved on that front ? If we have some XHR working with jar: or app: URIs, now xhr.status has http values (200, 404, 500). Previously it was always 0. If some code was checking the value of xhr.status, that code will break... but it was 0 before, so, probably nobody is relying on it
Keywords: checkin-needed
https://hg.mozilla.org/integration/mozilla-inbound/rev/02647d980da2
Assignee: nobody → amarchesini
Flags: in-testsuite-
Keywords: checkin-needed
https://hg.mozilla.org/mozilla-central/rev/02647d980da2
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla19
Attachment #674763 - Flags: approval-mozilla-aurora? → approval-mozilla-aurora+
Depends on: 807508
I'm concerned about potential add-on bustage from this. It broke the Jetpack automated tests and though looks like just a test problem (i.e. we aren't in a place where all SDK based add-ons will necessarily break) I wonder if other add-on developers are relying on the status being 0 for local-like resources. I think I've seen example code test for that. A brief search on AMO is suggesting that many cases are testing for both 200 and 0, so that's good, but that wasn't an exhaustive search.
Keywords: addon-compat
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: