Description
Problem
Our current design allows a request to be cancelled. It was argued that there was no need for
- atomic update of a request
- a
sendNowmethod
as these could both be implemented in JS. While it's true that they can be implemented, they are vulnerable to data loss if a crash occurs. E.g. the sample code to update a beacon is
let beaconResult = null;
let beaconAbort = null;
function updateBeacon(data) {
const pending = !beaconResult || !beaconResult.sent;
if (pending && beaconAbort) {
beaconAbort.abort();
}
createBeacon(data);
}
function createBeacon(data) {
if (beaconResult && beaconResult.sent) {
// Avoid creating duplicated beacon if the previous one is still pending.
return;
}
beaconAbort = new AbortController();
beaconResult = fetchLater({
url: data
signal: beaconAbort.signal
});
}If the process running JS dies between abort and createBeacon then it's possible that the old request will be aborted but no new request will be created.
A similar problem exists when devs abort a fetchLater and do an immediate fetch. If a death occurs, between these then it's possible that neither request will actually be sent.
Severity
Using Chrome (and I believe WebKit) terminology, JS is running in the renderer, fetchLater requests are managed by the browser.
The window in which the death must occur is varies by case
- replace request: the death must occur after the message to abort has been received by the browser but before the message to create a new fetch has been received by the browser
- immediate send: the death must occur after the message to abort has been received by the browser but before all of the data for the
fetchhas been received by whatever process handles network data
The immediate send case may be considerably longer but given that deaths are fairly rare (if JS is running then we are likely not in the background etc).