Changeset 262985 in webkit

Timestamp:

Jun 12, 2020, 4:32:15 PM (4 years ago)

Author:

achristensen@apple.com

Message:

Make API tests tolerant of our relatively new use of WebPageProxy::preconnectTo
​https://bugs.webkit.org/show_bug.cgi?id=213144

Reviewed by Geofferey Garen.

Source/WebKit:

• NetworkProcess/cocoa/NetworkSessionCocoa.h:
• NetworkProcess/cocoa/NetworkSessionCocoa.mm:

(-[WKNetworkSessionDelegate URLSession:task:willPerformHTTPRedirection:newRequest:completionHandler:]):
(-[WKNetworkSessionDelegate URLSession:task:didCompleteWithError:]):
(-[WKNetworkSessionDelegate URLSession:dataTask:didReceiveResponse:completionHandler:]):
(WebKit::NetworkSessionCocoa::taskServerConnectionSucceeded):
(WebKit::NetworkSessionCocoa::taskReceivedBytes): Deleted.
Fix our logic that remembers successful client certificate connections.
If a task completes with no error (like a preconnect task does), consider that a successful connection.

• UIProcess/Network/NetworkProcessProxy.cpp:

(WebKit::NetworkProcessProxy::preconnectTo):
Remove the check to not preconnect to loopback addresses.
This was making our tests different than the real internet and prevented me from landing a perfectly good test
in ​https://bugs.webkit.org/show_bug.cgi?id=213109

Tools:

Most changes are straightforward moving to HTTPServer, which is more tolerant of different numbers of connections except these two:

The ResourceLoadDelegate.Challenge API test was checking the output of _WKResourceLoadDelegate.didReceiveChallenge
by using a server trust challenge. Now that preconnecting happens, the server trust evaluation would happen with a
PreconnectTask, not the main resource load. The WKNavigationDelegate still gets the challenge and there is no problem
here, but in order to continue to test _WKResourceLoadDelegate.didReceiveChallenge I use a basic authentication challenge
instead of a server trust evaluation.

The WebKit.FastServerTrust API test now has two failed attempts (one from the preconnect attempt, one from the main resource load attempt),
but only when _strictTrustEvaluate is not available.

• TestWebKitAPI/TCPServer.cpp:

(TestWebKitAPI::TCPServer::TCPServer):

• TestWebKitAPI/TCPServer.h:
• TestWebKitAPI/Tests/WebKitCocoa/Challenge.mm:

(TEST):
(TestWebKitAPI::TEST):

• TestWebKitAPI/Tests/WebKitCocoa/ResourceLoadDelegate.mm:
• TestWebKitAPI/Tests/WebKitCocoa/ServiceWorkerBasic.mm:
• TestWebKitAPI/cocoa/HTTPServer.h:
• TestWebKitAPI/cocoa/HTTPServer.mm:

(TestWebKitAPI::HTTPServer::respondWithChallengeThenOK):

Location:

trunk

Files:

• Source/WebKit/ChangeLog (modified) (1 diff)
• Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.h (modified) (1 diff)
• Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.mm (modified) (4 diffs)
• Source/WebKit/UIProcess/Network/NetworkProcessProxy.cpp (modified) (1 diff)
• Tools/ChangeLog (modified) (1 diff)
• Tools/TestWebKitAPI/TCPServer.cpp (modified) (2 diffs)
• Tools/TestWebKitAPI/TCPServer.h (modified) (1 diff)
• Tools/TestWebKitAPI/Tests/WebKitCocoa/Challenge.mm (modified) (5 diffs)
• Tools/TestWebKitAPI/Tests/WebKitCocoa/ResourceLoadDelegate.mm (modified) (3 diffs)
• Tools/TestWebKitAPI/Tests/WebKitCocoa/ServiceWorkerBasic.mm (modified) (3 diffs)
• Tools/TestWebKitAPI/cocoa/HTTPServer.h (modified) (1 diff)
• Tools/TestWebKitAPI/cocoa/HTTPServer.mm (modified) (1 diff)

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2020-06-12  Alex Christensen  <achristensen@webkit.org>
+
+        Make API tests tolerant of our relatively new use of WebPageProxy::preconnectTo
+        https://bugs.webkit.org/show_bug.cgi?id=213144
+
+        Reviewed by Geofferey Garen.
+
+        * NetworkProcess/cocoa/NetworkSessionCocoa.h:
+        * NetworkProcess/cocoa/NetworkSessionCocoa.mm:
+        (-[WKNetworkSessionDelegate URLSession:task:willPerformHTTPRedirection:newRequest:completionHandler:]):
+        (-[WKNetworkSessionDelegate URLSession:task:didCompleteWithError:]):
+        (-[WKNetworkSessionDelegate URLSession:dataTask:didReceiveResponse:completionHandler:]):
+        (WebKit::NetworkSessionCocoa::taskServerConnectionSucceeded):
+        (WebKit::NetworkSessionCocoa::taskReceivedBytes): Deleted.
+        Fix our logic that remembers successful client certificate connections.
+        If a task completes with no error (like a preconnect task does), consider that a successful connection.
+
+        * UIProcess/Network/NetworkProcessProxy.cpp:
+        (WebKit::NetworkProcessProxy::preconnectTo):
+        Remove the check to not preconnect to loopback addresses.
+        This was making our tests different than the real internet and prevented me from landing a perfectly good test
+        in https://bugs.webkit.org/show_bug.cgi?id=213109
+
 2020-06-12  Per Arne Vollan  <pvollan@apple.com>
 

trunk/Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.h

@@ -103 +103 @@
     
     void clientCertificateSuggestedForHost(NetworkDataTaskCocoa::TaskIdentifier, NSURLCredential *, const String& host, uint16_t port);
-    void taskReceivedBytes(NetworkDataTaskCocoa::TaskIdentifier);
+    void taskServerConnectionSucceeded(NetworkDataTaskCocoa::TaskIdentifier);
     void taskFailed(NetworkDataTaskCocoa::TaskIdentifier);
     NSURLCredential *successfulClientCertificateForHost(const String& host, uint16_t port) const;

trunk/Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.mm

@@ -533 +533 @@
 
         if (auto* sessionCocoa = [self sessionFromTask:task])
-            sessionCocoa->taskReceivedBytes(taskIdentifier);
+            sessionCocoa->taskServerConnectionSucceeded(taskIdentifier);
 
         bool shouldIgnoreHSTS = false;
@@ -731 +731 @@
 
     if (auto* networkDataTask = [self existingTask:task]) {
-        if (auto* sessionCocoa = [self sessionFromTask:task])
-            sessionCocoa->taskFailed(task.taskIdentifier);
+        if (auto* sessionCocoa = [self sessionFromTask:task]) {
+            if (error)
+                sessionCocoa->taskFailed(task.taskIdentifier);
+            else
+                sessionCocoa->taskServerConnectionSucceeded(task.taskIdentifier);
+        }
         networkDataTask->didCompleteWithError(error, networkDataTask->networkLoadMetrics());
     } else if (error) {
@@ -873 +877 @@
 
         if (auto* sessionCocoa = [self sessionFromTask:dataTask])
-            sessionCocoa->taskReceivedBytes(taskIdentifier);
+            sessionCocoa->taskServerConnectionSucceeded(taskIdentifier);
 
         NegotiatedLegacyTLS negotiatedLegacyTLS = NegotiatedLegacyTLS::No;
@@ -1062 +1066 @@
 }
 
-void NetworkSessionCocoa::taskReceivedBytes(NetworkDataTaskCocoa::TaskIdentifier identifier)
+void NetworkSessionCocoa::taskServerConnectionSucceeded(NetworkDataTaskCocoa::TaskIdentifier identifier)
 {
     if (LIKELY(m_suggestedClientCertificates.isEmpty()))

trunk/Source/WebKit/UIProcess/Network/NetworkProcessProxy.cpp

@@ -1473 +1473 @@
 void NetworkProcessProxy::preconnectTo(PAL::SessionID sessionID, WebPageProxyIdentifier webPageProxyID, WebCore::PageIdentifier webPageID, const URL& url, const String& userAgent, WebCore::StoredCredentialsPolicy storedCredentialsPolicy, Optional<NavigatingToAppBoundDomain> isNavigatingToAppBoundDomain)
 {
-    if (!url.isValid() || !url.protocolIsInHTTPFamily() || SecurityOrigin::isLocalHostOrLoopbackIPAddress(url.host()))
+    if (!url.isValid() || !url.protocolIsInHTTPFamily())
         return;
     send(Messages::NetworkProcess::PreconnectTo(sessionID, webPageProxyID, webPageID, url, userAgent, storedCredentialsPolicy, isNavigatingToAppBoundDomain), 0);

trunk/Tools/ChangeLog

@@ +1 @@
+2020-06-12  Alex Christensen  <achristensen@webkit.org>
+
+        Make API tests tolerant of our relatively new use of WebPageProxy::preconnectTo
+        https://bugs.webkit.org/show_bug.cgi?id=213144
+
+        Reviewed by Geofferey Garen.
+
+        Most changes are straightforward moving to HTTPServer, which is more tolerant of different numbers of connections except these two:
+
+        The ResourceLoadDelegate.Challenge API test was checking the output of _WKResourceLoadDelegate.didReceiveChallenge
+        by using a server trust challenge.  Now that preconnecting happens, the server trust evaluation would happen with a
+        PreconnectTask, not the main resource load.  The WKNavigationDelegate still gets the challenge and there is no problem
+        here, but in order to continue to test _WKResourceLoadDelegate.didReceiveChallenge I use a basic authentication challenge
+        instead of a server trust evaluation.
+
+        The WebKit.FastServerTrust API test now has two failed attempts (one from the preconnect attempt, one from the main resource load attempt),
+        but only when _strictTrustEvaluate is not available.
+
+        * TestWebKitAPI/TCPServer.cpp:
+        (TestWebKitAPI::TCPServer::TCPServer):
+        * TestWebKitAPI/TCPServer.h:
+        * TestWebKitAPI/Tests/WebKitCocoa/Challenge.mm:
+        (TEST):
+        (TestWebKitAPI::TEST):
+        * TestWebKitAPI/Tests/WebKitCocoa/ResourceLoadDelegate.mm:
+        * TestWebKitAPI/Tests/WebKitCocoa/ServiceWorkerBasic.mm:
+        * TestWebKitAPI/cocoa/HTTPServer.h:
+        * TestWebKitAPI/cocoa/HTTPServer.mm:
+        (TestWebKitAPI::HTTPServer::respondWithChallengeThenOK):
+
 2020-06-12  Diego Pino Garcia  <dpino@igalia.com>
 

trunk/Tools/TestWebKitAPI/TCPServer.cpp

@@ -208 +208 @@
 };
 
-TCPServer::TCPServer(Protocol protocol, Function<void(SSL*)>&& secureConnectionHandler, Optional<uint16_t> maxTLSVersion)
+TCPServer::TCPServer(Protocol protocol, Function<void(SSL*)>&& secureConnectionHandler, Optional<uint16_t> maxTLSVersion, size_t connections)
 {
     switch (protocol) {
@@ -233 +233 @@
         break;
     }
-    listenForConnections(1);
+    listenForConnections(connections);
 }
 #endif // HAVE(SSL)

trunk/Tools/TestWebKitAPI/TCPServer.h

@@ -48 +48 @@
         HTTPS, HTTPSProxy, HTTPSWithClientCertificateRequest
     };
-    TCPServer(Protocol, Function<void(SSL*)>&&, Optional<uint16_t> maxTLSVersion = WTF::nullopt);
+    TCPServer(Protocol, Function<void(SSL*)>&&, Optional<uint16_t> maxTLSVersion = WTF::nullopt, size_t connections = 1);
 #endif // HAVE(SSL)
     ~TCPServer();

trunk/Tools/TestWebKitAPI/Tests/WebKitCocoa/Challenge.mm

@@ -204 +204 @@
 @end
 
+#if HAVE(NETWORK_FRAMEWORK)
+
 TEST(Challenge, BasicProposedCredential)
 {
     using namespace TestWebKitAPI;
-    TCPServer server(TCPServer::respondWithChallengeThenOK, 2);
+    HTTPServer server(HTTPServer::respondWithChallengeThenOK);
     auto configuration = retainPtr([WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"BasicProposedCredentialPlugIn"]);
     auto webView = adoptNS([[WKWebView alloc] initWithFrame:CGRectZero configuration:configuration.get()]);
@@ -217 +219 @@
     [[webView configuration].processPool _clearPermanentCredentialsForProtectionSpace:protectionSpace];
 
-    RetainPtr<NSURLRequest> request = [NSURLRequest requestWithURL:[NSURL URLWithString:[NSString stringWithFormat:@"http://127.0.0.1:%d/", server.port()]]];
+    RetainPtr<NSURLRequest> request = server.request();
     [webView loadRequest:request.get()];
     Util::run(&navigationFinished);
@@ -228 +230 @@
     [[webView configuration].processPool _clearPermanentCredentialsForProtectionSpace:protectionSpace];
 }
+
+#endif // HAVE(NETWORK_FRAMEWORK)
 
 #if HAVE(SSL)
@@ -380 +384 @@
     TCPServer server(TCPServer::Protocol::HTTPS, [](SSL* ssl) {
         EXPECT_FALSE(ssl);
-    });
+    }, WTF::nullopt, 2);
 #endif
     WKWebViewConfiguration *configuration = [[[WKWebViewConfiguration alloc] init] autorelease];
@@ -493 +497 @@
     [webView loadRequest:server.request()];
     [delegate waitForDidFinishNavigation];
-    EXPECT_EQ(countClientCertChallenges(methods), certChallengesAfterInitialFailure + 1);
+    EXPECT_EQ(countClientCertChallenges(methods), certChallengesAfterInitialFailure);
 }
 

trunk/Tools/TestWebKitAPI/Tests/WebKitCocoa/ResourceLoadDelegate.mm

@@ -391 +391 @@
 // FIXME: Add a test for loadedFromCache.
 
-#endif // HAVE(NETWORK_FRAMEWORK)
-
-#if HAVE(SSL)
-
 TEST(ResourceLoadDelegate, Challenge)
 {
     using namespace TestWebKitAPI;
-    TCPServer server(TCPServer::Protocol::HTTPS, [] (SSL* ssl) {
-        EXPECT_TRUE(!!ssl); // Connection should succeed after a server trust challenge.
-        // Send nothing to make the resource load fail.
-    });
+    HTTPServer server(HTTPServer::respondWithChallengeThenOK);
 
     auto navigationDelegate = adoptNS([TestNavigationDelegate new]);
     [navigationDelegate setDidReceiveAuthenticationChallenge:^(WKWebView *, NSURLAuthenticationChallenge *challenge, void (^completionHandler)(NSURLSessionAuthChallengeDisposition, NSURLCredential *)) {
-        EXPECT_WK_STREQ(challenge.protectionSpace.authenticationMethod, NSURLAuthenticationMethodServerTrust);
-        completionHandler(NSURLSessionAuthChallengeUseCredential, [NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust]);
+        EXPECT_WK_STREQ(challenge.protectionSpace.authenticationMethod, NSURLAuthenticationMethodHTTPBasic);
+        completionHandler(NSURLSessionAuthChallengeUseCredential, [NSURLCredential credentialWithUser:@"testuser" password:@"testpassword" persistence:NSURLCredentialPersistenceNone]);
     }];
 
@@ -413 +406 @@
     auto resourceLoadDelegate = adoptNS([TestResourceLoadDelegate new]);
     [resourceLoadDelegate setDidReceiveChallenge:^(WKWebView *, _WKResourceLoadInfo *, NSURLAuthenticationChallenge *challenge) {
-        EXPECT_WK_STREQ(challenge.protectionSpace.authenticationMethod, NSURLAuthenticationMethodServerTrust);
+        EXPECT_WK_STREQ(challenge.protectionSpace.authenticationMethod, NSURLAuthenticationMethodHTTPBasic);
         receivedChallengeNotificiation = true;
     }];
     [resourceLoadDelegate setDidCompleteWithError:^(WKWebView *, _WKResourceLoadInfo *, NSError *error, NSURLResponse *) {
-        EXPECT_EQ(error.code, kCFURLErrorCannotConnectToHost);
-        EXPECT_WK_STREQ(error.domain, NSURLErrorDomain);
+        EXPECT_FALSE(error);
         receivedErrorNotification = true;
     }];
@@ -425 +417 @@
     [webView setNavigationDelegate:navigationDelegate.get()];
     [webView _setResourceLoadDelegate:resourceLoadDelegate.get()];
-    [webView loadRequest:[NSURLRequest requestWithURL:[NSURL URLWithString:[NSString stringWithFormat:@"https://127.0.0.1:%d/", server.port()]]]];
+    [webView loadRequest:server.request()];
     TestWebKitAPI::Util::run(&receivedErrorNotification);
     EXPECT_TRUE(receivedChallengeNotificiation);
 }
 
-#endif // HAVE(SSL)
+#endif // HAVE(NETWORK_FRAMEWORK)

trunk/Tools/TestWebKitAPI/Tests/WebKitCocoa/ServiceWorkerBasic.mm

@@ -1574 +1574 @@
 }
 
+#if HAVE(NETWORK_FRAMEWORK)
+
 static size_t launchServiceWorkerProcess(bool useSeparateServiceWorkerProcess, bool loadAboutBlankBeforePage)
 {
@@ -1590 +1592 @@
     [[configuration userContentController] addScriptMessageHandler:messageHandler.get() name:@"sw"];
 
-    ServiceWorkerTCPServer server({
-        { "text/html", mainBytes },
-        { "application/javascript", scriptBytes },
+    TestWebKitAPI::HTTPServer server({
+        { "/", { mainBytes } },
+        { "/sw.js", { {{ "Content-Type", "application/javascript" }}, scriptBytes } }
     });
 
@@ -1635 +1637 @@
     EXPECT_EQ(2u, launchServiceWorkerProcess(useSeparateServiceWorkerProcess, firstLoadAboutBlank));
 }
+
+#endif // HAVE(NETWORK_FRAMEWORK)
 
 void waitUntilServiceWorkerProcessForegroundActivityState(WKWebView *page, bool shouldHaveActivity)

trunk/Tools/TestWebKitAPI/cocoa/HTTPServer.h

@@ -54 +54 @@
     size_t totalRequests() const;
 
+    static void respondWithChallengeThenOK(Connection);
+    
 private:
     static RetainPtr<nw_parameters_t> listenerParameters(Protocol, CertificateVerifier&&);

trunk/Tools/TestWebKitAPI/cocoa/HTTPServer.mm

@@ -116 +116 @@
 HTTPServer::~HTTPServer() = default;
 
+void HTTPServer::respondWithChallengeThenOK(Connection connection)
+{
+    connection.receiveHTTPRequest([connection] (Vector<char>&&) {
+        const char* challengeHeader =
+        "HTTP/1.1 401 Unauthorized\r\n"
+        "Date: Sat, 23 Mar 2019 06:29:01 GMT\r\n"
+        "Content-Length: 0\r\n"
+        "WWW-Authenticate: Basic realm=\"testrealm\"\r\n\r\n";
+        connection.send(challengeHeader, [connection] {
+            connection.receiveHTTPRequest([connection] (Vector<char>&&) {
+                connection.send(
+                    "HTTP/1.1 200 OK\r\n"
+                    "Content-Length: 13\r\n\r\n"
+                    "Hello, World!"
+                );
+            });
+        });
+    });
+}
+
 size_t HTTPServer::totalRequests() const
 {