Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Crash under NetworkProcess::addAllowedFirstPartyForCookies() #11506

Merged
merged 1 commit into from
Mar 14, 2023
Merged

Crash under NetworkProcess::addAllowedFirstPartyForCookies() #11506

merged 1 commit into from
Mar 14, 2023

Conversation

cdumez
Copy link
Contributor

@cdumez cdumez commented Mar 14, 2023
edited by webkit-early-warning-system

e2b561a

Crash under NetworkProcess::addAllowedFirstPartyForCookies()
https://bugs.webkit.org/show_bug.cgi?id=253895
rdar://104526219

Reviewed by Alex Christensen.

Make sure the registrable domain is valid before we try inserting it into the
HashSet.

* Source/WebKit/NetworkProcess/NetworkProcess.cpp:
(WebKit::NetworkProcess::addAllowedFirstPartyForCookies):

Canonical link: https://commits.webkit.org/261656@main

6d2fe4a

Misc iOS, tvOS & watchOS macOS Linux Windows
βœ… πŸ§ͺ style βœ… πŸ›  ios βœ… πŸ›  mac βœ… πŸ›  wpe   πŸ›  wincairo
βœ… πŸ›  ios-sim βœ… πŸ›  mac-AS-debug   πŸ§ͺ wpe-wk2
βœ… πŸ§ͺ webkitperl   πŸ§ͺ ios-wk2 βœ… πŸ§ͺ api-mac βœ… πŸ›  gtk
  πŸ§ͺ api-ios   πŸ§ͺ mac-wk1   πŸ§ͺ gtk-wk2
βœ… πŸ›  tv βœ… πŸ§ͺ mac-wk2   πŸ§ͺ api-gtk
βœ… πŸ›  tv-sim   πŸ§ͺ mac-AS-debug-wk2
  πŸ›  watch βœ… πŸ§ͺ mac-wk2-stress
βœ… πŸ›  πŸ§ͺ merge βœ… πŸ›  watch-sim

@cdumez cdumez self-assigned this Mar 14, 2023
@cdumez cdumez added the WebKit2 Bugs relating to the WebKit2 API layer label Mar 14, 2023
@webkit-early-warning-system
Copy link
Collaborator

EWS run on previous version of this PR (hash eb6e9f3)

Misc iOS, tvOS & watchOS macOS Linux Windows
βœ… πŸ§ͺ style ❌ πŸ›  ios ❌ πŸ›  mac   πŸ›  wpe ⏳ πŸ›  wincairo
❌ πŸ›  ios-sim   πŸ›  mac-AS-debug   πŸ§ͺ wpe-wk2
βœ… πŸ§ͺ webkitperl ❌ πŸ§ͺ ios-wk2 ❌ πŸ§ͺ api-mac ❌ πŸ›  gtk
❌ πŸ§ͺ api-ios ❌ πŸ§ͺ mac-wk1 ❌ πŸ§ͺ gtk-wk2
⏳ πŸ›  πŸ§ͺ jsc ⏳ πŸ›  tv ❌ πŸ§ͺ mac-wk2 ❌ πŸ§ͺ api-gtk
⏳ πŸ›  πŸ§ͺ jsc-arm64 ⏳ πŸ›  tv-sim   πŸ§ͺ mac-AS-debug-wk2
⏳ πŸ›  watch ❌ πŸ§ͺ mac-wk2-stress
  πŸ›  watch-sim

@webkit-ews-buildbot webkit-ews-buildbot added the merging-blocked Applied to prevent a change from being merged label Mar 14, 2023
@cdumez cdumez removed the merging-blocked Applied to prevent a change from being merged label Mar 14, 2023
@cdumez cdumez force-pushed the 253895_addAllowedFirstPartyForCookies_crash branch from eb6e9f3 to 514fd82 Compare March 14, 2023 19:10
@webkit-early-warning-system
Copy link
Collaborator

EWS run on previous version of this PR (hash 514fd82)

Misc iOS, tvOS & watchOS macOS Linux Windows
βœ… πŸ§ͺ style ❌ πŸ›  ios ❌ πŸ›  mac   πŸ›  wpe ⏳ πŸ›  wincairo
❌ πŸ›  ios-sim ⏳ πŸ›  mac-AS-debug   πŸ§ͺ wpe-wk2
βœ… πŸ§ͺ webkitperl ❌ πŸ§ͺ ios-wk2 ❌ πŸ§ͺ api-mac ❌ πŸ›  gtk
❌ πŸ§ͺ api-ios ❌ πŸ§ͺ mac-wk1 ❌ πŸ§ͺ gtk-wk2
⏳ πŸ›  πŸ§ͺ jsc ⏳ πŸ›  tv ❌ πŸ§ͺ mac-wk2 ❌ πŸ§ͺ api-gtk
⏳ πŸ›  πŸ§ͺ jsc-arm64 ⏳ πŸ›  tv-sim ⏳ πŸ§ͺ mac-AS-debug-wk2
⏳ πŸ›  watch ❌ πŸ§ͺ mac-wk2-stress
  πŸ›  watch-sim

@webkit-ews-buildbot webkit-ews-buildbot added the merging-blocked Applied to prevent a change from being merged label Mar 14, 2023
@cdumez cdumez removed the merging-blocked Applied to prevent a change from being merged label Mar 14, 2023
@cdumez cdumez force-pushed the 253895_addAllowedFirstPartyForCookies_crash branch from 514fd82 to 6d2fe4a Compare March 14, 2023 19:16
@webkit-early-warning-system
Copy link
Collaborator

EWS run on current version of this PR (hash 6d2fe4a)

Misc iOS, tvOS & watchOS macOS Linux Windows
βœ… πŸ§ͺ style βœ… πŸ›  ios βœ… πŸ›  mac βœ… πŸ›  wpe   πŸ›  wincairo
βœ… πŸ›  ios-sim βœ… πŸ›  mac-AS-debug   πŸ§ͺ wpe-wk2
βœ… πŸ§ͺ webkitperl   πŸ§ͺ ios-wk2 βœ… πŸ§ͺ api-mac βœ… πŸ›  gtk
  πŸ§ͺ api-ios   πŸ§ͺ mac-wk1   πŸ§ͺ gtk-wk2
βœ… πŸ›  tv βœ… πŸ§ͺ mac-wk2   πŸ§ͺ api-gtk
βœ… πŸ›  tv-sim   πŸ§ͺ mac-AS-debug-wk2
  πŸ›  watch βœ… πŸ§ͺ mac-wk2-stress
βœ… πŸ›  πŸ§ͺ merge βœ… πŸ›  watch-sim

achristensen07
achristensen07 approved these changes Mar 14, 2023
View reviewed changes
Source/WebKit/NetworkProcess/NetworkProcess.cpp
@@ -395,6 +395,9 @@ void NetworkProcess::createNetworkConnectionToWebProcess(ProcessIdentifier ident

void NetworkProcess::addAllowedFirstPartyForCookies(WebCore::ProcessIdentifier processIdentifier, WebCore::RegistrableDomain&& firstPartyForCookies, LoadedWebArchive loadedWebArchive, CompletionHandler<void()>&& completionHandler)
{
if (!HashSet<WebCore::RegistrableDomain>::isValidValue(firstPartyForCookies))
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Add this to NetworkProcess::webProcessWillLoadWebArchive too

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

decltype(m_allowedFirstPartiesForCookies)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is a little more complicated than this, here is the type:
HashMap<WebCore::ProcessIdentifier, std::pair<LoadedWebArchive, HashSet<WebCore::RegistrableDomain>>>

I only care about the inner HashSet.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

webProcessWillLoadWebArchive

webProcessWillLoadWebArchive doesn't modify the HashSet containing RegistrableDomains, only the top-level HashMap.

achristensen07
achristensen07 approved these changes Mar 14, 2023
View reviewed changes
Source/WebKit/NetworkProcess/NetworkProcess.cpp
@@ -395,6 +395,9 @@ void NetworkProcess::createNetworkConnectionToWebProcess(ProcessIdentifier ident

void NetworkProcess::addAllowedFirstPartyForCookies(WebCore::ProcessIdentifier processIdentifier, WebCore::RegistrableDomain&& firstPartyForCookies, LoadedWebArchive loadedWebArchive, CompletionHandler<void()>&& completionHandler)
{
if (!HashSet<WebCore::RegistrableDomain>::isValidValue(firstPartyForCookies))
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

decltype(m_allowedFirstPartiesForCookies)

@cdumez cdumez added the merge-queue Applied to send a pull request to merge-queue label Mar 14, 2023
@cdumez
Crash under NetworkProcess::addAllowedFirstPartyForCookies()
e2b561a 
https://bugs.webkit.org/show_bug.cgi?id=253895
rdar://104526219

Reviewed by Alex Christensen.

Make sure the registrable domain is valid before we try inserting it into the
HashSet.

* Source/WebKit/NetworkProcess/NetworkProcess.cpp:
(WebKit::NetworkProcess::addAllowedFirstPartyForCookies):

Canonical link: https://commits.webkit.org/261656@main
@webkit-commit-queue webkit-commit-queue force-pushed the 253895_addAllowedFirstPartyForCookies_crash branch from 6d2fe4a to e2b561a Compare March 14, 2023 22:35
@webkit-commit-queue
Copy link
Collaborator

Committed 261656@main (e2b561a): https://commits.webkit.org/261656@main

Reviewed commits have been landed. Closing PR #11506 and removing active labels.

@webkit-commit-queue webkit-commit-queue merged commit e2b561a into WebKit:main Mar 14, 2023
@webkit-commit-queue webkit-commit-queue removed the merge-queue Applied to send a pull request to merge-queue label Mar 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@achristensen07 achristensen07 achristensen07 approved these changes

@youennf youennf Awaiting requested review from youennf

@geoffreygaren geoffreygaren Awaiting requested review from geoffreygaren

Assignees

@cdumez cdumez

Labels
WebKit2 Bugs relating to the WebKit2 API layer
Projects
None yet
Milestone
No milestone
5 participants
@cdumez @webkit-early-warning-system @webkit-commit-queue @achristensen07 @webkit-ews-buildbot