Closed Bug 994318 Opened 10 years ago Closed 10 years ago

CSP in C++: add caching to CSP policy checks

Categories

(Core :: DOM: Security, defect)

Product:
Core
Component:
DOM: Security
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla32

People

(Reporter: geekboy, Assigned: geekboy)

References

Details

Attachments

(1 file, 3 obsolete files)

policycache
7.11 KB, patch
geekboy
: review+
Details | Diff | Splinter Review 
      No description provided.
Blocks: 925004
Attached patch policycache (obsolete) — Splinter Review 
Implements a cache much like in bug 897745 so repeated hits to ShouldLoad with the same URI don't require policy checks.
Attachment #8405639 - Flags: review?(mozilla)
Attachment #8405639 - Flags: review?(grobinson)
Comment on attachment 8405639 [details] [diff] [review]
policycache

Bitrotted due do changes in parser and utils. Can you please export again once we are done reviewing parser and utils? Thanks
Attachment #8405639 - Flags: review?(mozilla)
Attachment #8405639 - Flags: review?(grobinson)
Attached patch policycache (obsolete) — Splinter Review 
Ok, here's an updated patch.  No tests directly, but all the CSP tests should still pass.  Fabrice implemented the first cache, so if we need an additional reviewer we could flag him (but this is pretty straightforward).
Attachment #8405639 - Attachment is obsolete: true
Attachment #8418681 - Flags: review?(mozilla)
Attachment #8418681 - Flags: review?(grobinson)
Comment on attachment 8418681 [details] [diff] [review]
policycache

Review of attachment 8418681 [details] [diff] [review]:
-----------------------------------------------------------------

Is setRequestContext only meant to be called once? If not, it seems like calling it should also invalidate the cache. If so, maybe we should enforce that somehow?

::: content/base/src/nsCSPContext.cpp
@@ +188,5 @@
>        // * Console error reporting, bug 994322
>      }
>    }
> +  // Done looping, cache any relevant result
> +  if (cacheKey.Length() > 0 && !isPreload) {

"isPreload" is "problematicPreload" in the earlier patch that introduced it. I don't care which name you prefer to use, just FYI you might have a merge conflict here.
Attachment #8418681 - Flags: review?(grobinson) → review+
Comment on attachment 8418681 [details] [diff] [review]
policycache

Review of attachment 8418681 [details] [diff] [review]:
-----------------------------------------------------------------

This looks pretty good, only some nits which should be easy to fix!

::: content/base/src/nsCSPContext.cpp
@@ +45,5 @@
>  
>  #define CSPCONTEXTLOG(args) PR_LOG(GetCspContextLog(), 4, args)
>  
> +#define CSP_CACHE_URI_CUTOFF_SIZE 512
> +

With respect to scope and type-safety we should use static const uint32_t.

@@ +54,5 @@
> +nsresult
> +CreateCacheKey_Internal(nsIURI* aContentLocation,
> +                        nsContentPolicyType aContentType,
> +                        nsACString& oCacheKey)
> +{

Nit: Since we are using 'out' as Prefix for outgoing arguments everywhere else in nsCSPContext we should be consistent and also rename oCacheKey to outCacheKey.

@@ +63,5 @@
> +  bool isDataScheme = false;
> +  nsresult rv = aContentLocation->SchemeIs("data", &isDataScheme);
> +  NS_ENSURE_SUCCESS(rv, rv);
> +
> +  oCacheKey.Truncate(0);

Nit: no need for an argument, just use Truncate()

@@ +119,5 @@
> +  rv = CreateCacheKey_Internal(aContentLocation, aContentType, cacheKey);
> +  NS_ENSURE_SUCCESS(rv, rv);
> +
> +  bool isCached = mShouldLoadCache.Get(cacheKey, outDecision);
> +  if (cacheKey.Length() > 0 && isCached) {

Flip this condition around so that the boolean condition (isChached) is checked first.

@@ +188,5 @@
>        // * Console error reporting, bug 994322
>      }
>    }
> +  // Done looping, cache any relevant result
> +  if (cacheKey.Length() > 0 && !isPreload) {

That's not an issue actuall becuase I changed problematicPreload to isPreload in an earlier patch and propagated that change all the way up the patch-queue.

@@ +290,5 @@
>    if (policy) {
>      mPolicies.AppendElement(policy);
>    }
> +  // reset cache since effective policy changes
> +  mShouldLoadCache.Clear();

Shouldn't it be sufficient to reset the cache only if mPolicies changes? In other words, can't we move mShouldLoadCache() inside the the {} of |if (policy)| ?

::: content/base/src/nsCSPContext.h
@@ +43,1 @@
>  };

Nit: Should we align mPolicies, mSelfURI with mShouldLoadCache?
Attachment #8418681 - Flags: review?(mozilla) → review+
Attached patch policycache (obsolete) — Splinter Review 
Updated with review comments.  Carrying over r=grobinson,ckerschb.  This should be ready to land after the dependencies do.
Attachment #8418681 - Attachment is obsolete: true
Attachment #8421380 - Flags: review+
Attached patch policycacheSplinter Review 
Had a little bitrot.
Attachment #8421380 - Attachment is obsolete: true
Attachment #8424019 - Flags: review+
the patch for bug 994320 was the culprit.  Fixed that and relanded:
https://hg.mozilla.org/integration/mozilla-inbound/rev/7bd21ae215a2
https://hg.mozilla.org/mozilla-central/rev/7bd21ae215a2
Status: ASSIGNED → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: