Changeset 252840 in webkit

Timestamp:

Nov 23, 2019 7:05:49 PM (4 years ago)

Author:

wilander@apple.com

Message:

Resource Load Statistics: Allow multiple third-party cookie blocking settings
​https://bugs.webkit.org/show_bug.cgi?id=204389
<rdar://problem/57344054>

Reviewed by Brent Fulgham.

Source/WebCore:

This change introduces an enum ThirdPartyCookieBlockingMode for how third-party
cookie blocking should be carried out. It then uses the set mode in
NetworkStorageSession::shouldBlockCookies().

The reason for supporting three different modes is that what is now named
OnlyAccordingToPerDomainPolicy is shipping, AllOnSitesWithoutUserInteraction is
in beta, and All is behind an experimental flag.

Tests: http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database.html

http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction.html

• page/Settings.yaml:

Flipped the isThirdPartyCookieBlockingEnabled flag to on by default.

• platform/network/NetworkStorageSession.cpp:

(WebCore::NetworkStorageSession::shouldBlockCookies const):
(WebCore::NetworkStorageSession::setThirdPartyCookieBlockingMode):

• platform/network/NetworkStorageSession.h:

(WebCore::NetworkStorageSession::setIsThirdPartyCookieBlockingEnabled): Deleted.

Source/WebKit:

This change make the third-party cookie blocking setting go from a boolean to
the new enum WebCore::ThirdPartyCookieBlockingMode with three different settings.
Functions and member variables are renamed accordingly.

The reason for supporting three different modes is that what is now named
OnlyAccordingToPerDomainPolicy is shipping, AllOnSitesWithoutUserInteraction is
in beta, and All is behind an experimental flag.

The change also updates the test API to map the TestRunner call to the enum.

• NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.cpp:

(WebKit::ResourceLoadStatisticsDatabaseStore::hasStorageAccess):
(WebKit::ResourceLoadStatisticsDatabaseStore::requestStorageAccess):
(WebKit::ResourceLoadStatisticsDatabaseStore::clearUserInteraction):

Now makes use of a completion handler and updates the cookie blocking state.

(WebKit::ResourceLoadStatisticsDatabaseStore::hasHadUserInteraction):
(WebKit::ResourceLoadStatisticsDatabaseStore::areAllThirdPartyCookiesBlockedUnder):

New convenience function to check the cookie blocking status per first-party domain.

(WebKit::ResourceLoadStatisticsDatabaseStore::cookieAccess):

Restructured the code to make it very clear that the logic is the same as the
corresponding function in ResourceLoadStatisticsMemoryStore.
Can no longer be const since it calls areAllThirdPartyCookiesBlockedUnder() which
in turn calls hasHadUserInteraction() and that function may clear user interaction data.

(WebKit::ResourceLoadStatisticsDatabaseStore::hasHadUnexpiredRecentUserInteraction):
(WebKit::ResourceLoadStatisticsDatabaseStore::cookieAccess const): Deleted.

See comment above on the non-const version of this function.

• NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.h:
• NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.cpp:

(WebKit::ResourceLoadStatisticsMemoryStore::areAllThirdPartyCookiesBlockedUnder):

New convenience function to check the cookie blocking status per first-party domain.

(WebKit::ResourceLoadStatisticsMemoryStore::cookieAccess):

Restructured the code to make it very clear that the logic is the same as the
corresponding function in ResourceLoadStatisticsDatabaseStore.
Can no longer be const since it calls areAllThirdPartyCookiesBlockedUnder() which
in turn calls hasHadUserInteraction() and that function may clear user interaction data.

(WebKit::ResourceLoadStatisticsMemoryStore::hasStorageAccess):
(WebKit::ResourceLoadStatisticsMemoryStore::requestStorageAccess):
(WebKit::ResourceLoadStatisticsMemoryStore::clearUserInteraction):

Now makes use of a completion handler and updates the cookie blocking state.

(WebKit::ResourceLoadStatisticsMemoryStore::cookieAccess const): Deleted.

See comment above on the non-const version of this function.

• NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.h:
• NetworkProcess/Classifier/ResourceLoadStatisticsStore.h:

(WebKit::ResourceLoadStatisticsStore::setThirdPartyCookieBlockingMode):
(WebKit::ResourceLoadStatisticsStore::thirdPartyCookieBlockingMode const):
(WebKit::ResourceLoadStatisticsStore::setIsThirdPartyCookieBlockingEnabled): Deleted.
(WebKit::ResourceLoadStatisticsStore::isThirdPartyCookieBlockingEnabled const): Deleted.

• NetworkProcess/Classifier/WebResourceLoadStatisticsStore.cpp:

(WebKit::WebResourceLoadStatisticsStore::setThirdPartyCookieBlockingMode):
(WebKit::WebResourceLoadStatisticsStore::clearUserInteraction):

Now forwards the completion handler.

(WebKit::WebResourceLoadStatisticsStore::setIsThirdPartyCookieBlockingEnabled): Deleted.

• NetworkProcess/Classifier/WebResourceLoadStatisticsStore.h:
• NetworkProcess/NetworkProcess.cpp:

(WebKit::NetworkProcess::setShouldBlockThirdPartyCookiesForTesting):

• NetworkProcess/NetworkProcess.h:
• NetworkProcess/NetworkProcess.messages.in:

The SetShouldBlockThirdPartyCookiesForTesting message now uses an enum instead of a
boolean.

• NetworkProcess/NetworkSession.cpp:

(WebKit::NetworkSession::setResourceLoadStatisticsEnabled):

Now forwards the enum value instead of a boolean.

(WebKit::NetworkSession::recreateResourceLoadStatisticStore):

Now makes sure the cookie blocking setting is forwarded to the recreated store.

(WebKit::NetworkSession::setThirdPartyCookieBlockingMode):
(WebKit::NetworkSession::setIsThirdPartyCookieBlockingEnabled): Deleted.

• NetworkProcess/NetworkSession.h:
• NetworkProcess/NetworkSessionCreationParameters.cpp:

(WebKit::NetworkSessionCreationParameters::encode const):
(WebKit::NetworkSessionCreationParameters::decode):

Support for the new enum.

• NetworkProcess/NetworkSessionCreationParameters.h:
• NetworkProcess/cocoa/NetworkSessionCocoa.mm:

(WebKit::NetworkSessionCocoa::NetworkSessionCocoa):

• Scripts/webkit/messages.py:

Tells the IPC code generator where to find WebCore::ThirdPartyCookieBlockingMode.

• Shared/WebPreferences.yaml:

Flipped the IsThirdPartyCookieBlockingEnabled flag to on by default.

• UIProcess/API/C/WKWebsiteDataStoreRef.cpp:

(WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting):
(WKWebsiteDataStoreStatisticsResetToConsistentState):

• UIProcess/API/C/WKWebsiteDataStoreRef.h:
• UIProcess/Network/NetworkProcessProxy.cpp:

(WebKit::NetworkProcessProxy::setShouldBlockThirdPartyCookiesForTesting):

• UIProcess/Network/NetworkProcessProxy.h:
• UIProcess/WebProcessPool.cpp:

(WebKit::WebProcessPool::ensureNetworkProcess):

Makes use of the enum in the NetworkSessionCreationParameters.

• UIProcess/WebsiteData/Cocoa/WebsiteDataStoreCocoa.mm:

(WebKit::WebsiteDataStore::parameters):

• UIProcess/WebsiteData/WebsiteDataStore.cpp:

(WebKit::WebsiteDataStore::setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting):

• UIProcess/WebsiteData/WebsiteDataStore.h:

Tools:

This change allows the existing TestRunner function
setStatisticsShouldBlockThirdPartyCookies() to set an optional boolean
parameter onlyOnSitesWithoutUserInteraction to opt in to that behavior.

• WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl:
• WebKitTestRunner/InjectedBundle/TestRunner.cpp:

(WTR::TestRunner::setStatisticsShouldBlockThirdPartyCookies):

• WebKitTestRunner/InjectedBundle/TestRunner.h:
• WebKitTestRunner/TestController.cpp:

(WTR::TestController::setStatisticsShouldBlockThirdPartyCookies):

• WebKitTestRunner/TestController.h:
• WebKitTestRunner/TestInvocation.cpp:

(WTR::TestInvocation::didReceiveSynchronousMessageFromInjectedBundle):

LayoutTests:

The added tests existed before and are not re-introduced to test their dedicated setting.

The changed tests have been expanded to cover the new code paths.

• http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database-expected.txt: Added.
• http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database.html: Added.
• http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-expected.txt: Added.
• http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction.html: Added.
• http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database-expected.txt:
• http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html:
• http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-expected.txt:
• http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html:
• http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database-expected.txt:
• http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database.html:
• http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-expected.txt:
• http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie.html:

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database-expected.txt (added)
• LayoutTests/http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database.html (added)
• LayoutTests/http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-expected.txt (added)
• LayoutTests/http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction.html (added)
• LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html (modified) (3 diffs)
• LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html (modified) (3 diffs)
• LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database.html (modified) (6 diffs)
• LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-expected.txt (modified) (1 diff)
• LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie.html (modified) (6 diffs)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/page/Settings.yaml (modified) (1 diff)
• Source/WebCore/platform/network/NetworkStorageSession.cpp (modified) (2 diffs)
• Source/WebCore/platform/network/NetworkStorageSession.h (modified) (4 diffs)
• Source/WebKit/ChangeLog (modified) (1 diff)
• Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.cpp (modified) (8 diffs)
• Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.h (modified) (2 diffs)
• Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.cpp (modified) (4 diffs)
• Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.h (modified) (2 diffs)
• Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsStore.h (modified) (4 diffs)
• Source/WebKit/NetworkProcess/Classifier/WebResourceLoadStatisticsStore.cpp (modified) (3 diffs)
• Source/WebKit/NetworkProcess/Classifier/WebResourceLoadStatisticsStore.h (modified) (2 diffs)
• Source/WebKit/NetworkProcess/NetworkProcess.cpp (modified) (1 diff)
• Source/WebKit/NetworkProcess/NetworkProcess.h (modified) (1 diff)
• Source/WebKit/NetworkProcess/NetworkProcess.messages.in (modified) (1 diff)
• Source/WebKit/NetworkProcess/NetworkSession.cpp (modified) (4 diffs)
• Source/WebKit/NetworkProcess/NetworkSession.h (modified) (3 diffs)
• Source/WebKit/NetworkProcess/NetworkSessionCreationParameters.cpp (modified) (3 diffs)
• Source/WebKit/NetworkProcess/NetworkSessionCreationParameters.h (modified) (2 diffs)
• Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.mm (modified) (1 diff)
• Source/WebKit/Scripts/webkit/messages.py (modified) (1 diff)
• Source/WebKit/Shared/WebPreferences.yaml (modified) (1 diff)
• Source/WebKit/UIProcess/API/C/WKWebsiteDataStoreRef.cpp (modified) (2 diffs)
• Source/WebKit/UIProcess/API/C/WKWebsiteDataStoreRef.h (modified) (1 diff)
• Source/WebKit/UIProcess/Network/NetworkProcessProxy.cpp (modified) (1 diff)
• Source/WebKit/UIProcess/Network/NetworkProcessProxy.h (modified) (1 diff)
• Source/WebKit/UIProcess/WebProcessPool.cpp (modified) (4 diffs)
• Source/WebKit/UIProcess/WebsiteData/Cocoa/WebsiteDataStoreCocoa.mm (modified) (4 diffs)
• Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.cpp (modified) (2 diffs)
• Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.h (modified) (1 diff)
• Tools/ChangeLog (modified) (1 diff)
• Tools/WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl (modified) (1 diff)
• Tools/WebKitTestRunner/InjectedBundle/TestRunner.cpp (modified) (2 diffs)
• Tools/WebKitTestRunner/InjectedBundle/TestRunner.h (modified) (1 diff)
• Tools/WebKitTestRunner/TestController.cpp (modified) (1 diff)
• Tools/WebKitTestRunner/TestController.h (modified) (1 diff)
• Tools/WebKitTestRunner/TestInvocation.cpp (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2019-11-23  John Wilander  <wilander@apple.com>
+
+        Resource Load Statistics: Allow multiple third-party cookie blocking settings
+        https://bugs.webkit.org/show_bug.cgi?id=204389
+        <rdar://problem/57344054>
+
+        Reviewed by Brent Fulgham.
+
+        The added tests existed before and are not re-introduced to test their dedicated setting.
+
+        The changed tests have been expanded to cover the new code paths.
+
+        * http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database-expected.txt: Added.
+        * http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database.html: Added.
+        * http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-expected.txt: Added.
+        * http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction.html: Added.
+        * http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database-expected.txt:
+        * http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html:
+        * http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-expected.txt:
+        * http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html:
+        * http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database-expected.txt:
+        * http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database.html:
+        * http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-expected.txt:
+        * http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie.html:
+
 2019-11-23  Jonathan Bedard  <jbedard@apple.com>
 

trunk/LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database-expected.txt

@@ -5 +5 @@
 
 PASS Storage access was granted. document.cookie == firstPartyCookie=value, cookies seen server-side == {"firstPartyCookie":"value"}
+PASS Storage access was granted. document.cookie == firstPartyCookie=value, cookies seen server-side == {"firstPartyCookie":"value"}
 PASS successfullyParsed is true
 

trunk/LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html

@@ -21 +21 @@
             } else
                 testFailed("Received a message from an unexpected origin: " + event.origin);
-            testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
-                setEnableFeature(false, finishJSTest);
-            });
+
+            switch (document.location.hash) {
+                case "#firstTest":
+                    document.location.hash = "secondTest";
+                    // Clear all data so that the previous grant doesn't count toward the next test.
+                    testRunner.statisticsClearInMemoryAndPersistentStore(runTest);
+                    break;
+                case "#secondTest":
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
+                        setEnableFeature(false, finishJSTest);
+                    });
+                    break;
+                default:
+                    testFailed("Message handler called under unknown circumstances.");
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
+                        setEnableFeature(false, finishJSTest);
+                    });
+            }
         }
 
@@ -53 +68 @@
 
         function runTest() {
-            if (document.location.hash !== "#cookieSet") {
-                setEnableFeature(true, function() {
-                    document.location.href = thirdPartyUrl + "/storageAccess/resources/set-cookie.php?name=firstPartyCookie&value=value#" + firstPartyUrl + "/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html#cookieSet";
-                });
-            } else {
-                testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
-                    if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
-                        testFailed("Third-party set as prevalent resource.");
-                    testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, true, function() {
-                        if (!testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
-                            testFailed("First-party did not get logged for user interaction.");
+            switch (document.location.hash) {
+                case "":
+                    setEnableFeature(true, function() {
+                        document.location.href = thirdPartyUrl + "/storageAccess/resources/set-cookie.php?dummy=" + Math.random() + "&name=firstPartyCookie&value=value#" + firstPartyUrl + "/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-database.html#firstTest";
+                    });
+                    break;
+                case "#firstTest":
+                    // Test that the request is granted if third-party cookies are blocked under first-parties without
+                    // user interaction.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
+                            testFailed("Third-party set as prevalent resource.");
+                        if (testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                            testFailed("First-party was logged for user interaction.");
                         testRunner.setStatisticsHasHadUserInteraction(thirdPartyUrl, true, function() {
                             if (!testRunner.isStatisticsHasHadUserInteraction(thirdPartyUrl))
@@ -69 +87 @@
                             let iframeElement = document.createElement("iframe");
                             iframeElement.onload = function() {
-                                activateElement("TheIframeThatRequestsStorageAccess");
+                                activateElement("TheFirstIframeThatRequestsStorageAccess");
                             };
-                            iframeElement.id = "TheIframeThatRequestsStorageAccess";
-                            iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
+                            iframeElement.id = "TheFirstIframeThatRequestsStorageAccess";
+                            iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html?dummy=" + Math.random() + "#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
                             document.body.appendChild(iframeElement);
                         });
-                    });
-                });
+                    }, true);
+                    break;
+                case "#secondTest":
+                    // Test that the request is granted if third-party cookies are blocked unconditionally.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
+                            testFailed("Third-party set as prevalent resource.");
+                        testRunner.setStatisticsHasHadUserInteraction(thirdPartyUrl, true, function() {
+                            if (!testRunner.isStatisticsHasHadUserInteraction(thirdPartyUrl))
+                                testFailed("Third-party did not get logged for user interaction.");
+                            let iframeElement = document.createElement("iframe");
+                            iframeElement.onload = function() {
+                                activateElement("TheSecondIframeThatRequestsStorageAccess");
+                            };
+                            iframeElement.id = "TheSecondIframeThatRequestsStorageAccess";
+                            iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html?dummy=" + Math.random() + "#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
+                            document.body.appendChild(iframeElement);
+                        });
+                    }, false);
+                    break;
             }
         }

trunk/LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking-expected.txt

@@ -5 +5 @@
 
 PASS Storage access was granted. document.cookie == firstPartyCookie=value, cookies seen server-side == {"firstPartyCookie":"value"}
+PASS Storage access was granted. document.cookie == firstPartyCookie=value, cookies seen server-side == {"firstPartyCookie":"value"}
 PASS successfullyParsed is true
 

trunk/LayoutTests/http/tests/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html

@@ -20 +20 @@
             } else
                 testFailed("Received a message from an unexpected origin: " + event.origin);
-            testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
-                setEnableFeature(false, finishJSTest);
-            });
+
+            switch (document.location.hash) {
+                case "#firstTest":
+                    document.location.hash = "secondTest";
+                    // Clear all data so that the previous grant doesn't count toward the next test.
+                    testRunner.statisticsClearInMemoryAndPersistentStore(runTest);
+                    break;
+                case "#secondTest":
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
+                        setEnableFeature(false, finishJSTest);
+                    });
+                    break;
+                default:
+                    testFailed("Message handler called under unknown circumstances.");
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
+                        setEnableFeature(false, finishJSTest);
+                    });
+            }
         }
 
@@ -52 +67 @@
 
         function runTest() {
-            if (document.location.hash !== "#cookieSet") {
-                setEnableFeature(true, function() {
-                    document.location.href = thirdPartyUrl + "/storageAccess/resources/set-cookie.php?name=firstPartyCookie&value=value#" + firstPartyUrl + "/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html#cookieSet";
-                });
-            } else {
-                testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
-                    if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
-                        testFailed("Third-party set as prevalent resource.");
-                    testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, true, function() {
-                        if (!testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
-                            testFailed("First-party did not get logged for user interaction.");
+            switch (document.location.hash) {
+                case "":
+                    setEnableFeature(true, function() {
+                        document.location.href = thirdPartyUrl + "/storageAccess/resources/set-cookie.php?dummy=" + Math.random() + "&name=firstPartyCookie&value=value#" + firstPartyUrl + "/storageAccess/grant-with-prompt-under-general-third-party-cookie-blocking.html#firstTest";
+                    });
+                    break;
+                case "#firstTest":
+                    // Test that the request is granted if third-party cookies are blocked under first-parties without
+                    // user interaction.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
+                            testFailed("Third-party set as prevalent resource.");
+                            if (testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                                testFailed("First-party was logged for user interaction.");
+                            testRunner.setStatisticsHasHadUserInteraction(thirdPartyUrl, true, function() {
+                                if (!testRunner.isStatisticsHasHadUserInteraction(thirdPartyUrl))
+                                    testFailed("Third-party did not get logged for user interaction.");
+                                let iframeElement = document.createElement("iframe");
+                                iframeElement.onload = function() {
+                                    activateElement("TheFirstIframeThatRequestsStorageAccess");
+                                };
+                                iframeElement.id = "TheFirstIframeThatRequestsStorageAccess";
+                                iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html?dummy=" + Math.random() + "#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
+                                document.body.appendChild(iframeElement);
+                            });
+                    }, true);
+                    break;
+                case "#secondTest":
+                    // Test that the request is granted if third-party cookies are blocked unconditionally.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        if (testRunner.isStatisticsPrevalentResource(thirdPartyUrl))
+                            testFailed("Third-party set as prevalent resource.");
                         testRunner.setStatisticsHasHadUserInteraction(thirdPartyUrl, true, function() {
                             if (!testRunner.isStatisticsHasHadUserInteraction(thirdPartyUrl))
@@ -68 +104 @@
                             let iframeElement = document.createElement("iframe");
                             iframeElement.onload = function() {
-                                activateElement("TheIframeThatRequestsStorageAccess");
+                                activateElement("TheSecondIframeThatRequestsStorageAccess");
                             };
-                            iframeElement.id = "TheIframeThatRequestsStorageAccess";
-                            iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
+                            iframeElement.id = "TheSecondIframeThatRequestsStorageAccess";
+                            iframeElement.src = "http://localhost:8000/storageAccess/resources/request-storage-access-iframe.html?dummy=" + Math.random() + "#userShouldGrantAccess,userShouldBeConsulted,policyShouldGrantAccess,isNotSameOriginIframe";
                             document.body.appendChild(iframeElement);
                         });
-                    });
-                });
+                    }, false);
+                    break;
             }
         }

trunk/LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database-expected.txt

@@ -9 +9 @@
 PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
 PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
+PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
 PASS successfullyParsed is true
 

trunk/LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-database.html

@@ -22 +22 @@
             } else
                 testFailed("Received a message from an unexpected origin: " + event.origin);
+
             if (document.location.hash === "#lastStep") {
                 testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
@@ -51 +52 @@
                     // No general third-party cookie blocking, no user interaction, not prevalent.
                     let iframeElement = document.createElement("iframe");
-                    iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                    iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                     document.body.appendChild(iframeElement);
                     break;
@@ -61 +62 @@
                             testFailed("Third-party did not get logged for user interaction.");
                         let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                         document.body.appendChild(iframeElement);
                     });
@@ -72 +73 @@
                             testFailed("First-party did not get logged for user interaction.");
                         let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                         document.body.appendChild(iframeElement);
                     });
@@ -78 +79 @@
                 case "#step4":
                     document.location.hash = "step5";
+                    // Third-party cookie blocking under first-parties without user interaction, only third-party user interaction, not prevalent.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, false, function() {
+                            if (testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                                testFailed("First-party got logged for user interaction.");
+                            let iframeElement = document.createElement("iframe");
+                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
+                            document.body.appendChild(iframeElement);
+                        });
+                    }, true);
+                    break;
+                case "#step5":
+                    document.location.hash = "step6";
                     // General third-party cookie blocking, first- and third-party user interaction, not prevalent.
                     testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
-                        let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldNotGrantAccess";
-                        document.body.appendChild(iframeElement);
-                    });
+                        testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, true, function() {
+                            if (!testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                                testFailed("First-party did not get logged for user interaction.");
+                            let iframeElement = document.createElement("iframe");
+                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
+                            document.body.appendChild(iframeElement);
+                        });
+                    }, false);
                     break;
-                case "#step5":
+                case "#step6":
                     document.location.hash = "lastStep";
                     // General third-party cookie blocking, first- and third-party user interaction, prevalent.
@@ -93 +111 @@
                         testRunner.statisticsUpdateCookieBlocking(function() {
                             let iframeElement = document.createElement("iframe");
-                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldNotGrantAccess";
+                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
                             document.body.appendChild(iframeElement);
                         });

trunk/LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie-expected.txt

@@ -9 +9 @@
 PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
 PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
+PASS No storage access. document.cookie == , cookies seen server-side == "No cookies"
 PASS successfullyParsed is true
 

trunk/LayoutTests/http/tests/storageAccess/has-storage-access-under-general-third-party-cookie-blocking-with-cookie.html

@@ -21 +21 @@
             } else
                 testFailed("Received a message from an unexpected origin: " + event.origin);
+
             if (document.location.hash === "#lastStep") {
                 testRunner.setStatisticsShouldBlockThirdPartyCookies(false, function() {
@@ -50 +51 @@
                     // No general third-party cookie blocking, no user interaction, not prevalent.
                     let iframeElement = document.createElement("iframe");
-                    iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                    iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                     document.body.appendChild(iframeElement);
                     break;
@@ -60 +61 @@
                             testFailed("Third-party did not get logged for user interaction.");
                         let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                         document.body.appendChild(iframeElement);
                     });
@@ -71 +72 @@
                             testFailed("First-party did not get logged for user interaction.");
                         let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldGrantAccess";
+                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldGrantAccess";
                         document.body.appendChild(iframeElement);
                     });
@@ -77 +78 @@
                 case "#step4":
                     document.location.hash = "step5";
+                    // Third-party cookie blocking under first-parties without user interaction, only third-party user interaction, not prevalent.
+                    testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, false, function() {
+                            if (testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                                testFailed("First-party got logged for user interaction.");
+                            let iframeElement = document.createElement("iframe");
+                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
+                            document.body.appendChild(iframeElement);
+                        });
+                    }, true);
+                    break;
+                case "#step5":
+                    document.location.hash = "step6";
                     // General third-party cookie blocking, first- and third-party user interaction, not prevalent.
                     testRunner.setStatisticsShouldBlockThirdPartyCookies(true, function() {
+                        testRunner.setStatisticsHasHadUserInteraction(firstPartyUrl, true, function() {
+                            if (!testRunner.isStatisticsHasHadUserInteraction(firstPartyUrl))
+                                testFailed("First-party did not get logged for user interaction.");
                         let iframeElement = document.createElement("iframe");
-                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldNotGrantAccess";
+                        iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
                         document.body.appendChild(iframeElement);
-                    });
+                        });
+                    }, false);
                     break;
-                case "#step5":
+                case "#step6":
                     document.location.hash = "lastStep";
                     // General third-party cookie blocking, first- and third-party user interaction, prevalent.
@@ -92 +110 @@
                         testRunner.statisticsUpdateCookieBlocking(function() {
                             let iframeElement = document.createElement("iframe");
-                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html#policyShouldNotGrantAccess";
+                            iframeElement.src = thirdPartyUrl + "/storageAccess/resources/has-storage-access-iframe.html?dummy=" + Math.random() + "#policyShouldNotGrantAccess";
                             document.body.appendChild(iframeElement);
                         });

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2019-11-23  John Wilander  <wilander@apple.com>
+
+        Resource Load Statistics: Allow multiple third-party cookie blocking settings
+        https://bugs.webkit.org/show_bug.cgi?id=204389
+        <rdar://problem/57344054>
+
+        Reviewed by Brent Fulgham.
+
+        This change introduces an enum ThirdPartyCookieBlockingMode for how third-party
+        cookie blocking should be carried out. It then uses the set mode in 
+        NetworkStorageSession::shouldBlockCookies().
+
+        The reason for supporting three different modes is that what is now named
+        OnlyAccordingToPerDomainPolicy is shipping, AllOnSitesWithoutUserInteraction is
+        in beta, and All is behind an experimental flag.
+
+        Tests: http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction-database.html
+               http/tests/resourceLoadStatistics/third-party-cookie-blocking-on-sites-without-user-interaction.html
+
+        * page/Settings.yaml:
+            Flipped the isThirdPartyCookieBlockingEnabled flag to on by default.
+        * platform/network/NetworkStorageSession.cpp:
+        (WebCore::NetworkStorageSession::shouldBlockCookies const):
+        (WebCore::NetworkStorageSession::setThirdPartyCookieBlockingMode):
+        * platform/network/NetworkStorageSession.h:
+        (WebCore::NetworkStorageSession::setIsThirdPartyCookieBlockingEnabled): Deleted.
+
 2019-11-23  Commit Queue  <commit-queue@webkit.org>
 

trunk/Source/WebCore/page/Settings.yaml

@@ -882 +882 @@
 
 isThirdPartyCookieBlockingEnabled:
-  initial: false
+  initial: true
 
 isLoggedInAPIEnabled:

trunk/Source/WebCore/platform/network/NetworkStorageSession.cpp

@@ -114 +114 @@
         return false;
 
-    if (m_isThirdPartyCookieBlockingEnabled)
+    switch (m_thirdPartyCookieBlockingMode) {
+    case ThirdPartyCookieBlockingMode::All:
         return true;
-
-    return shouldBlockThirdPartyCookies(resourceDomain);
+    case ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction:
+        if (!hasHadUserInteractionAsFirstParty(firstPartyDomain))
+            return true;
+        FALLTHROUGH;
+    case ThirdPartyCookieBlockingMode::OnlyAccordingToPerDomainPolicy:
+        return shouldBlockThirdPartyCookies(resourceDomain);
+    }
 }
 
@@ -270 +276 @@
 }
 
+void NetworkStorageSession::setThirdPartyCookieBlockingMode(ThirdPartyCookieBlockingMode blockingMode)
+{
+    m_thirdPartyCookieBlockingMode = blockingMode;
+}
+
 Optional<Seconds> NetworkStorageSession::clientSideCookieCap(const RegistrableDomain& firstParty, Optional<PageIdentifier> pageID) const
 {

trunk/Source/WebCore/platform/network/NetworkStorageSession.h

@@ -75 +75 @@
 enum class IncludeSecureCookies : bool;
 enum class IncludeHttpOnlyCookies : bool;
+enum class ThirdPartyCookieBlockingMode : uint8_t { All, AllOnSitesWithoutUserInteraction, OnlyAccordingToPerDomainPolicy };
 
 class NetworkStorageSession {
@@ -166 +167 @@
     WEBCORE_EXPORT void didCommitCrossSiteLoadWithDataTransferFromPrevalentResource(const RegistrableDomain& toDomain, PageIdentifier);
     WEBCORE_EXPORT void resetCrossSiteLoadsWithLinkDecorationForTesting();
-    void setIsThirdPartyCookieBlockingEnabled(bool enabled) { m_isThirdPartyCookieBlockingEnabled = enabled; }
+    WEBCORE_EXPORT void setThirdPartyCookieBlockingMode(ThirdPartyCookieBlockingMode);
 #endif
 
@@ -202 +203 @@
     HashMap<WebCore::PageIdentifier, RegistrableDomain> m_navigatedToWithLinkDecorationByPrevalentResource;
     bool m_navigationWithLinkDecorationTestMode = false;
-    bool m_isThirdPartyCookieBlockingEnabled = false;
+    ThirdPartyCookieBlockingMode m_thirdPartyCookieBlockingMode { ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction };
 #endif
 
@@ -220 +221 @@
 
 }
+
+namespace WTF {
+
+template<> struct EnumTraits<WebCore::ThirdPartyCookieBlockingMode> {
+    using values = EnumValues<
+        WebCore::ThirdPartyCookieBlockingMode,
+        WebCore::ThirdPartyCookieBlockingMode::All,
+        WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction,
+        WebCore::ThirdPartyCookieBlockingMode::OnlyAccordingToPerDomainPolicy
+    >;
+};
+
+}

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2019-11-23  John Wilander  <wilander@apple.com>
+
+        Resource Load Statistics: Allow multiple third-party cookie blocking settings
+        https://bugs.webkit.org/show_bug.cgi?id=204389
+        <rdar://problem/57344054>
+
+        Reviewed by Brent Fulgham.
+
+        This change make the third-party cookie blocking setting go from a boolean to
+        the new enum WebCore::ThirdPartyCookieBlockingMode with three different settings.
+        Functions and member variables are renamed accordingly.
+
+        The reason for supporting three different modes is that what is now named
+        OnlyAccordingToPerDomainPolicy is shipping, AllOnSitesWithoutUserInteraction is
+        in beta, and All is behind an experimental flag.
+
+        The change also updates the test API to map the TestRunner call to the enum.
+
+        * NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.cpp:
+        (WebKit::ResourceLoadStatisticsDatabaseStore::hasStorageAccess):
+        (WebKit::ResourceLoadStatisticsDatabaseStore::requestStorageAccess):
+        (WebKit::ResourceLoadStatisticsDatabaseStore::clearUserInteraction):
+            Now makes use of a completion handler and updates the cookie blocking state.
+        (WebKit::ResourceLoadStatisticsDatabaseStore::hasHadUserInteraction):
+        (WebKit::ResourceLoadStatisticsDatabaseStore::areAllThirdPartyCookiesBlockedUnder):
+            New convenience function to check the cookie blocking status per first-party domain.
+        (WebKit::ResourceLoadStatisticsDatabaseStore::cookieAccess):
+            Restructured the code to make it very clear that the logic is the same as the
+            corresponding function in ResourceLoadStatisticsMemoryStore.
+            Can no longer be const since it calls areAllThirdPartyCookiesBlockedUnder() which
+            in turn calls hasHadUserInteraction() and that function may clear user interaction data.
+        (WebKit::ResourceLoadStatisticsDatabaseStore::hasHadUnexpiredRecentUserInteraction):
+        (WebKit::ResourceLoadStatisticsDatabaseStore::cookieAccess const): Deleted.
+            See comment above on the non-const version of this function.
+        * NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.h:
+        * NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.cpp:
+        (WebKit::ResourceLoadStatisticsMemoryStore::areAllThirdPartyCookiesBlockedUnder):
+            New convenience function to check the cookie blocking status per first-party domain.
+        (WebKit::ResourceLoadStatisticsMemoryStore::cookieAccess):
+            Restructured the code to make it very clear that the logic is the same as the
+            corresponding function in ResourceLoadStatisticsDatabaseStore.
+            Can no longer be const since it calls areAllThirdPartyCookiesBlockedUnder() which
+            in turn calls hasHadUserInteraction() and that function may clear user interaction data.
+        (WebKit::ResourceLoadStatisticsMemoryStore::hasStorageAccess):
+        (WebKit::ResourceLoadStatisticsMemoryStore::requestStorageAccess):
+        (WebKit::ResourceLoadStatisticsMemoryStore::clearUserInteraction):
+            Now makes use of a completion handler and updates the cookie blocking state.
+        (WebKit::ResourceLoadStatisticsMemoryStore::cookieAccess const): Deleted.
+            See comment above on the non-const version of this function.
+        * NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.h:
+        * NetworkProcess/Classifier/ResourceLoadStatisticsStore.h:
+        (WebKit::ResourceLoadStatisticsStore::setThirdPartyCookieBlockingMode):
+        (WebKit::ResourceLoadStatisticsStore::thirdPartyCookieBlockingMode const):
+        (WebKit::ResourceLoadStatisticsStore::setIsThirdPartyCookieBlockingEnabled): Deleted.
+        (WebKit::ResourceLoadStatisticsStore::isThirdPartyCookieBlockingEnabled const): Deleted.
+        * NetworkProcess/Classifier/WebResourceLoadStatisticsStore.cpp:
+        (WebKit::WebResourceLoadStatisticsStore::setThirdPartyCookieBlockingMode):
+        (WebKit::WebResourceLoadStatisticsStore::clearUserInteraction):
+            Now forwards the completion handler.
+        (WebKit::WebResourceLoadStatisticsStore::setIsThirdPartyCookieBlockingEnabled): Deleted.
+        * NetworkProcess/Classifier/WebResourceLoadStatisticsStore.h:
+        * NetworkProcess/NetworkProcess.cpp:
+        (WebKit::NetworkProcess::setShouldBlockThirdPartyCookiesForTesting):
+        * NetworkProcess/NetworkProcess.h:
+        * NetworkProcess/NetworkProcess.messages.in:
+            The SetShouldBlockThirdPartyCookiesForTesting message now uses an enum instead of a
+            boolean.
+        * NetworkProcess/NetworkSession.cpp:
+        (WebKit::NetworkSession::setResourceLoadStatisticsEnabled):
+            Now forwards the enum value instead of a boolean.
+        (WebKit::NetworkSession::recreateResourceLoadStatisticStore):
+            Now makes sure the cookie blocking setting is forwarded to the recreated store.
+        (WebKit::NetworkSession::setThirdPartyCookieBlockingMode):
+        (WebKit::NetworkSession::setIsThirdPartyCookieBlockingEnabled): Deleted.
+        * NetworkProcess/NetworkSession.h:
+        * NetworkProcess/NetworkSessionCreationParameters.cpp:
+        (WebKit::NetworkSessionCreationParameters::encode const):
+        (WebKit::NetworkSessionCreationParameters::decode):
+            Support for the new enum.
+        * NetworkProcess/NetworkSessionCreationParameters.h:
+        * NetworkProcess/cocoa/NetworkSessionCocoa.mm:
+        (WebKit::NetworkSessionCocoa::NetworkSessionCocoa):
+        * Scripts/webkit/messages.py:
+            Tells the IPC code generator where to find WebCore::ThirdPartyCookieBlockingMode.
+        * Shared/WebPreferences.yaml:
+            Flipped the IsThirdPartyCookieBlockingEnabled flag to on by default.
+        * UIProcess/API/C/WKWebsiteDataStoreRef.cpp:
+        (WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting):
+        (WKWebsiteDataStoreStatisticsResetToConsistentState):
+        * UIProcess/API/C/WKWebsiteDataStoreRef.h:
+        * UIProcess/Network/NetworkProcessProxy.cpp:
+        (WebKit::NetworkProcessProxy::setShouldBlockThirdPartyCookiesForTesting):
+        * UIProcess/Network/NetworkProcessProxy.h:
+        * UIProcess/WebProcessPool.cpp:
+        (WebKit::WebProcessPool::ensureNetworkProcess):
+            Makes use of the enum in the NetworkSessionCreationParameters.
+        * UIProcess/WebsiteData/Cocoa/WebsiteDataStoreCocoa.mm:
+        (WebKit::WebsiteDataStore::parameters):
+        * UIProcess/WebsiteData/WebsiteDataStore.cpp:
+        (WebKit::WebsiteDataStore::setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting):
+        * UIProcess/WebsiteData/WebsiteDataStore.h:
+
 2019-11-23  Commit Queue  <commit-queue@webkit.org>
 

trunk/Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.cpp

@@ -1258 +1258 @@
     ensureResourceStatisticsForRegistrableDomain(subFrameDomain);
 
-    switch (cookieAccess(subFrameDomain)) {
+    switch (cookieAccess(subFrameDomain, topFrameDomain)) {
     case CookieAccess::CannotRequest:
         completionHandler(false);
@@ -1291 +1291 @@
     auto subFrameStatus = ensureResourceStatisticsForRegistrableDomain(subFrameDomain);
     
-    switch (cookieAccess(subFrameDomain)) {
+    switch (cookieAccess(subFrameDomain, topFrameDomain)) {
     case CookieAccess::CannotRequest:
         RELEASE_LOG_INFO_IF(debugLoggingEnabled(), ITPDebug, "Cannot grant storage access to %{private}s since its cookies are blocked in third-party contexts and it has not received user interaction as first-party.", subFrameDomain.string().utf8().data());
@@ -1500 +1500 @@
 }
 
-void ResourceLoadStatisticsDatabaseStore::clearUserInteraction(const RegistrableDomain& domain)
+void ResourceLoadStatisticsDatabaseStore::clearUserInteraction(const RegistrableDomain& domain, CompletionHandler<void()>&& completionHandler)
 {
     ASSERT(!RunLoop::isMain());
@@ -1514 +1514 @@
         ASSERT_NOT_REACHED();
     }
+
+    // Update cookie blocking unconditionally since a call to hasHadUserInteraction()
+    // to check the previous user interaction status could call clearUserInteraction(),
+    // blowing the call stack.
+    updateCookieBlocking(WTFMove(completionHandler));
 }
 
@@ -1542 +1547 @@
         // Set timestamp to 0 so that statistics merge will know
         // it has been reset as opposed to its default -1.
-        clearUserInteraction(domain);
+        clearUserInteraction(domain, [] { });
         hadUserInteraction = false;
     }
@@ -1853 +1858 @@
 }
 
-CookieAccess ResourceLoadStatisticsDatabaseStore::cookieAccess(const RegistrableDomain& domain) const
+bool ResourceLoadStatisticsDatabaseStore::areAllThirdPartyCookiesBlockedUnder(const TopFrameDomain& topFrameDomain)
+{
+    if (thirdPartyCookieBlockingMode() == ThirdPartyCookieBlockingMode::All)
+        return true;
+
+    if (thirdPartyCookieBlockingMode() == ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction && !hasHadUserInteraction(topFrameDomain, OperatingDatesWindow::Long))
+        return true;
+
+    return false;
+}
+
+CookieAccess ResourceLoadStatisticsDatabaseStore::cookieAccess(const SubResourceDomain& subresourceDomain, const TopFrameDomain& topFrameDomain)
 {
     ASSERT(!RunLoop::isMain());
@@ -1859 +1875 @@
     SQLiteStatement statement(m_database, "SELECT isPrevalent, hadUserInteraction FROM ObservedDomains WHERE registrableDomain = ?");
     if (statement.prepare() != SQLITE_OK
-        || statement.bindText(1, domain.string()) != SQLITE_OK) {
+        || statement.bindText(1, subresourceDomain.string()) != SQLITE_OK) {
         RELEASE_LOG_ERROR_IF_ALLOWED(m_sessionID, "%p - ResourceLoadStatisticsDatabaseStore::cookieAccess failed to bind, error message: %{private}s", this, m_database.lastErrorMsg());
         ASSERT_NOT_REACHED();
     }
-    
+
     bool hasNoEntry = statement.step() != SQLITE_ROW;
-    if (hasNoEntry) {
-        if (isThirdPartyCookieBlockingEnabled())
-            return CookieAccess::OnlyIfGranted;
+    bool isPrevalent = !hasNoEntry && !!statement.getColumnInt(0);
+    bool hadUserInteraction = !hasNoEntry && statement.getColumnInt(1) ? true : false;
+
+    if (!areAllThirdPartyCookiesBlockedUnder(topFrameDomain) && !isPrevalent)
         return CookieAccess::BasedOnCookiePolicy;
-    }
-
-    bool isPrevalent = !!statement.getColumnInt(0);
-    if (!isPrevalent && !isThirdPartyCookieBlockingEnabled())
-        return CookieAccess::BasedOnCookiePolicy;
-
-    bool hadUserInteraction = statement.getColumnInt(1) ? true : false;
+
     if (!hadUserInteraction)
         return CookieAccess::CannotRequest;
@@ -2063 +2074 @@
 {
     if (resourceStatistic.hadUserInteraction && hasStatisticsExpired(resourceStatistic.mostRecentUserInteractionTime, operatingDatesWindow)) {
-        clearUserInteraction(resourceStatistic.registrableDomain);
+        clearUserInteraction(resourceStatistic.registrableDomain, [] { });
         return false;
     }

trunk/Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsDatabaseStore.h

@@ -128 +128 @@
     void logCrossSiteLoadWithLinkDecoration(const NavigatedFromDomain&, const NavigatedToDomain&) override;
 
-    void clearUserInteraction(const RegistrableDomain&) override;
+    void clearUserInteraction(const RegistrableDomain&, CompletionHandler<void()>&&) override;
     bool hasHadUserInteraction(const RegistrableDomain&, OperatingDatesWindow) override;
 
@@ -195 +195 @@
     bool predicateValueForDomain(WebCore::SQLiteStatement&, const RegistrableDomain&) const;
 
-    CookieAccess cookieAccess(const RegistrableDomain&) const;
-    
+    bool areAllThirdPartyCookiesBlockedUnder(const TopFrameDomain&) override;
+    CookieAccess cookieAccess(const SubResourceDomain&, const TopFrameDomain&);
+
     void setPrevalentResource(const RegistrableDomain&, ResourceLoadPrevalence);
     unsigned recursivelyFindNonPrevalentDomainsThatRedirectedToThisDomain(unsigned primaryDomainID, StdSet<unsigned>& nonPrevalentRedirectionSources, unsigned numberOfRecursiveCalls);

trunk/Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.cpp

@@ -213 +213 @@
 }
 
-CookieAccess ResourceLoadStatisticsMemoryStore::cookieAccess(const ResourceLoadStatistics& resourceStatistic) const
-{
-    if (!isThirdPartyCookieBlockingEnabled() && !resourceStatistic.isPrevalentResource)
+bool ResourceLoadStatisticsMemoryStore::areAllThirdPartyCookiesBlockedUnder(const TopFrameDomain& topFrameDomain)
+{
+    if (thirdPartyCookieBlockingMode() == ThirdPartyCookieBlockingMode::All)
+        return true;
+
+    if (thirdPartyCookieBlockingMode() == ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction && !hasHadUserInteraction(topFrameDomain, OperatingDatesWindow::Long))
+        return true;
+
+    return false;
+}
+
+CookieAccess ResourceLoadStatisticsMemoryStore::cookieAccess(const ResourceLoadStatistics& resourceStatistic, const TopFrameDomain& topFrameDomain)
+{
+    bool isPrevalent = resourceStatistic.isPrevalentResource;
+    bool hadUserInteraction = resourceStatistic.hadUserInteraction;
+
+    if (!areAllThirdPartyCookiesBlockedUnder(topFrameDomain) && !isPrevalent)
         return CookieAccess::BasedOnCookiePolicy;
 
-    if (!resourceStatistic.hadUserInteraction)
+    if (!hadUserInteraction)
         return CookieAccess::CannotRequest;
     
@@ -229 +243 @@
 
     auto& subFrameStatistic = ensureResourceStatisticsForRegistrableDomain(subFrameDomain);
-    switch (cookieAccess(subFrameStatistic)) {
+    switch (cookieAccess(subFrameStatistic, topFrameDomain)) {
     case CookieAccess::CannotRequest:
         completionHandler(false);
@@ -261 +275 @@
 
     auto& subFrameStatistic = ensureResourceStatisticsForRegistrableDomain(subFrameDomain);
-    switch (cookieAccess(subFrameStatistic)) {
+    switch (cookieAccess(subFrameStatistic, topFrameDomain)) {
     case CookieAccess::CannotRequest:
         RELEASE_LOG_INFO_IF(debugLoggingEnabled(), ITPDebug, "Cannot grant storage access to %{public}s since its cookies are blocked in third-party contexts and it has not received user interaction as first-party.", subFrameDomain.string().utf8().data());
@@ -440 +454 @@
 }
 
-void ResourceLoadStatisticsMemoryStore::clearUserInteraction(const RegistrableDomain& domain)
+void ResourceLoadStatisticsMemoryStore::clearUserInteraction(const RegistrableDomain& domain, CompletionHandler<void()>&& completionHandler)
 {
     ASSERT(!RunLoop::isMain());
 
     auto& statistics = ensureResourceStatisticsForRegistrableDomain(domain);
+    bool didHavePreviousUserInteraction = statistics.hadUserInteraction;
     statistics.hadUserInteraction = false;
     statistics.mostRecentUserInteractionTime = { };
+    if (!didHavePreviousUserInteraction) {
+        completionHandler();
+        return;
+    }
+    updateCookieBlocking(WTFMove(completionHandler));
 }
 

trunk/Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsMemoryStore.h

@@ -98 +98 @@
     void calculateAndSubmitTelemetry() const override;
 
-    CookieAccess cookieAccess(const ResourceLoadStatistics&) const;
+    bool areAllThirdPartyCookiesBlockedUnder(const TopFrameDomain&) override;
+    CookieAccess cookieAccess(const ResourceLoadStatistics&, const TopFrameDomain&);
     void hasStorageAccess(const SubFrameDomain&, const TopFrameDomain&, Optional<WebCore::FrameIdentifier>, WebCore::PageIdentifier, CompletionHandler<void(bool)>&&) override;
     void requestStorageAccess(SubFrameDomain&&, TopFrameDomain&&, WebCore::FrameIdentifier, WebCore::PageIdentifier, CompletionHandler<void(StorageAccessStatus)>&&) override;
@@ -107 +108 @@
     void logCrossSiteLoadWithLinkDecoration(const NavigatedFromDomain&, const NavigatedToDomain&) override;
 
-    void clearUserInteraction(const RegistrableDomain&) override;
+    void clearUserInteraction(const RegistrableDomain&, CompletionHandler<void()>&&) override;
     bool hasHadUserInteraction(const RegistrableDomain&, OperatingDatesWindow) override;
 

trunk/Source/WebKit/NetworkProcess/Classifier/ResourceLoadStatisticsStore.h

@@ -31 +31 @@
 #include "WebResourceLoadStatisticsStore.h"
 #include <WebCore/FrameIdentifier.h>
+#include <WebCore/NetworkStorageSession.h>
 #include <wtf/CompletionHandler.h>
 #include <wtf/Vector.h>
@@ -162 +163 @@
     bool isDebugModeEnabled() const { return m_debugModeEnabled; };
     void setPrevalentResourceForDebugMode(const RegistrableDomain&);
-    void setIsThirdPartyCookieBlockingEnabled(bool enabled) { m_thirdPartyCookieBlockingEnabled = enabled; };
-    bool isThirdPartyCookieBlockingEnabled() const { return m_thirdPartyCookieBlockingEnabled; };
-
+    void setThirdPartyCookieBlockingMode(WebCore::ThirdPartyCookieBlockingMode mode) { m_thirdPartyCookieBlockingMode = mode; };
+    WebCore::ThirdPartyCookieBlockingMode thirdPartyCookieBlockingMode() const { return m_thirdPartyCookieBlockingMode; };
+
+    virtual bool areAllThirdPartyCookiesBlockedUnder(const TopFrameDomain&) = 0;
     virtual void hasStorageAccess(const SubFrameDomain&, const TopFrameDomain&, Optional<WebCore::FrameIdentifier>, WebCore::PageIdentifier, CompletionHandler<void(bool)>&&) = 0;
     virtual void requestStorageAccess(SubFrameDomain&&, TopFrameDomain&&, WebCore::FrameIdentifier, WebCore::PageIdentifier, CompletionHandler<void(StorageAccessStatus)>&&) = 0;
@@ -173 +175 @@
     virtual void logCrossSiteLoadWithLinkDecoration(const NavigatedFromDomain&, const NavigatedToDomain&) = 0;
 
-    virtual void clearUserInteraction(const RegistrableDomain&) = 0;
+    virtual void clearUserInteraction(const RegistrableDomain&, CompletionHandler<void()>&&) = 0;
     virtual bool hasHadUserInteraction(const RegistrableDomain&, OperatingDatesWindow) = 0;
 
@@ -271 +273 @@
     bool m_debugLoggingEnabled { false };
     bool m_debugModeEnabled { false };
-    bool m_thirdPartyCookieBlockingEnabled { false };
+    WebCore::ThirdPartyCookieBlockingMode m_thirdPartyCookieBlockingMode { WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction };
     bool m_dataRecordsBeingRemoved { false };
     ShouldIncludeLocalhost m_shouldIncludeLocalhost { ShouldIncludeLocalhost::Yes };

trunk/Source/WebKit/NetworkProcess/Classifier/WebResourceLoadStatisticsStore.cpp

@@ -463 +463 @@
 }
 
-void WebResourceLoadStatisticsStore::setIsThirdPartyCookieBlockingEnabled(bool enabled)
+void WebResourceLoadStatisticsStore::setThirdPartyCookieBlockingMode(ThirdPartyCookieBlockingMode blockingMode)
 {
     ASSERT(RunLoop::isMain());
@@ -469 +469 @@
     if (m_networkSession) {
         if (auto* storageSession = m_networkSession->networkStorageSession())
-            storageSession->setIsThirdPartyCookieBlockingEnabled(enabled);
+            storageSession->setThirdPartyCookieBlockingMode(blockingMode);
         else
             ASSERT_NOT_REACHED();
     }
 
-    postTask([this, enabled]() {
+    postTask([this, blockingMode]() {
         if (!m_statisticsStore)
             return;
 
-        m_statisticsStore->setIsThirdPartyCookieBlockingEnabled(enabled);
+        m_statisticsStore->setThirdPartyCookieBlockingMode(blockingMode);
     });
 }
@@ -612 +612 @@
     
     postTask([this, domain = domain.isolatedCopy(), completionHandler = WTFMove(completionHandler)]() mutable {
-        if (m_statisticsStore)
-            m_statisticsStore->clearUserInteraction(domain);
-        postTaskReply(WTFMove(completionHandler));
+        auto innerCompletionHandler = [completionHandler = WTFMove(completionHandler)]() mutable {
+            postTaskReply(WTFMove(completionHandler));
+        };
+        if (m_statisticsStore) {
+            m_statisticsStore->clearUserInteraction(domain, WTFMove(innerCompletionHandler));
+            return;
+        }
+        innerCompletionHandler();
     });
 }

trunk/Source/WebKit/NetworkProcess/Classifier/WebResourceLoadStatisticsStore.h

@@ -53 +53 @@
 enum class StorageAccessPromptWasShown : bool;
 enum class StorageAccessWasGranted : bool;
+enum class ThirdPartyCookieBlockingMode : uint8_t;
 }
 
@@ -180 +181 @@
 
     void hasCookies(const RegistrableDomain&, CompletionHandler<void(bool)>&&);
-    void setIsThirdPartyCookieBlockingEnabled(bool);
+    void setThirdPartyCookieBlockingMode(WebCore::ThirdPartyCookieBlockingMode);
     void didCreateNetworkProcess();
 

trunk/Source/WebKit/NetworkProcess/NetworkProcess.cpp

@@ -1254 +1254 @@
 }
 
-void NetworkProcess::setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, bool enabled, CompletionHandler<void()>&& completionHandler)
+void NetworkProcess::setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, WebCore::ThirdPartyCookieBlockingMode blockingMode, CompletionHandler<void()>&& completionHandler)
 {
     if (auto* networkSession = this->networkSession(sessionID))
-        networkSession->setIsThirdPartyCookieBlockingEnabled(enabled);
+        networkSession->setThirdPartyCookieBlockingMode(blockingMode);
     else
         ASSERT_NOT_REACHED();

trunk/Source/WebKit/NetworkProcess/NetworkProcess.h

@@ -261 +261 @@
     bool isITPDatabaseEnabled() const { return m_isITPDatabaseEnabled; }
     void setShouldDowngradeReferrerForTesting(bool, CompletionHandler<void()>&&);
-    void setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID, bool, CompletionHandler<void()>&&);
+    void setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID, WebCore::ThirdPartyCookieBlockingMode, CompletionHandler<void()>&&);
 #endif
 

trunk/Source/WebKit/NetworkProcess/NetworkProcess.messages.in

@@ -137 +137 @@
     HasIsolatedSession(PAL::SessionID sessionID, WebCore::RegistrableDomain domain) -> (bool hasIsolatedSession) Async
     SetShouldDowngradeReferrerForTesting(bool enabled) -> () Async
-    SetShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, bool enabled) -> () Async
+    SetShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, enum:uint8_t WebCore::ThirdPartyCookieBlockingMode blockingMode) -> () Async
 #endif
 

trunk/Source/WebKit/NetworkProcess/NetworkSession.cpp

@@ -40 +40 @@
 #include <WebCore/AdClickAttribution.h>
 #include <WebCore/CookieJar.h>
-#include <WebCore/NetworkStorageSession.h>
 #include <WebCore/ResourceRequest.h>
 
@@ -176 +175 @@
     if (!m_resourceLoadStatisticsManualPrevalentResource.isEmpty())
         m_resourceLoadStatistics->setPrevalentResourceForDebugMode(m_resourceLoadStatisticsManualPrevalentResource, [] { });
-    m_resourceLoadStatistics->setIsThirdPartyCookieBlockingEnabled(m_thirdPartyCookieBlockingEnabled);
+    m_resourceLoadStatistics->setThirdPartyCookieBlockingMode(m_thirdPartyCookieBlockingMode);
 }
 
@@ -184 +183 @@
     m_resourceLoadStatistics = WebResourceLoadStatisticsStore::create(*this, m_resourceLoadStatisticsDirectory, m_shouldIncludeLocalhostInResourceLoadStatistics);
     m_resourceLoadStatistics->populateMemoryStoreFromDisk(WTFMove(completionHandler));
+    m_resourceLoadStatistics->setThirdPartyCookieBlockingMode(m_thirdPartyCookieBlockingMode);
 }
 
@@ -226 +226 @@
 }
 
-void NetworkSession::setIsThirdPartyCookieBlockingEnabled(bool enabled)
+void NetworkSession::setThirdPartyCookieBlockingMode(ThirdPartyCookieBlockingMode blockingMode)
 {
     ASSERT(m_resourceLoadStatistics);
-    m_thirdPartyCookieBlockingEnabled = enabled;
+    m_thirdPartyCookieBlockingMode = blockingMode;
     if (m_resourceLoadStatistics)
-        m_resourceLoadStatistics->setIsThirdPartyCookieBlockingEnabled(m_thirdPartyCookieBlockingEnabled);
+        m_resourceLoadStatistics->setThirdPartyCookieBlockingMode(blockingMode);
 }
 #endif // ENABLE(RESOURCE_LOAD_STATISTICS)

trunk/Source/WebKit/NetworkProcess/NetworkSession.h

@@ -31 +31 @@
 #include <WebCore/AdClickAttribution.h>
 #include <WebCore/BlobRegistryImpl.h>
+#include <WebCore/NetworkStorageSession.h>
 #include <WebCore/RegistrableDomain.h>
 #include <pal/SessionID.h>
@@ -98 +99 @@
     void setShouldDowngradeReferrerForTesting(bool);
     bool shouldDowngradeReferrer() const;
-    void setIsThirdPartyCookieBlockingEnabled(bool);
+    void setThirdPartyCookieBlockingMode(WebCore::ThirdPartyCookieBlockingMode);
 #endif
     void storeAdClickAttribution(WebCore::AdClickAttribution&&);
@@ -145 +146 @@
     bool m_enableResourceLoadStatisticsLogTestingEvent;
     bool m_downgradeReferrer { true };
-    bool m_thirdPartyCookieBlockingEnabled { false };
+    WebCore::ThirdPartyCookieBlockingMode m_thirdPartyCookieBlockingMode { WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction };
 #endif
     bool m_isStaleWhileRevalidateEnabled { false };

trunk/Source/WebKit/NetworkProcess/NetworkSessionCreationParameters.cpp

@@ -69 +69 @@
     encoder << enableResourceLoadStatisticsDebugMode;
     encoder << resourceLoadStatisticsManualPrevalentResource;
-    encoder << enableThirdPartyCookieBlocking;
+    encoder << thirdPartyCookieBlockingMode;
 
     encoder << networkCacheDirectory << networkCacheDirectoryExtensionHandle;
@@ -201 +201 @@
         return WTF::nullopt;
 
-    Optional<bool> enableThirdPartyCookieBlocking;
-    decoder >> enableThirdPartyCookieBlocking;
-    if (!enableThirdPartyCookieBlocking)
+    Optional<WebCore::ThirdPartyCookieBlockingMode> thirdPartyCookieBlockingMode;
+    decoder >> thirdPartyCookieBlockingMode;
+    if (!thirdPartyCookieBlockingMode)
         return WTF::nullopt;
 
@@ -289 +289 @@
         , WTFMove(*shouldIncludeLocalhostInResourceLoadStatistics)
         , WTFMove(*enableResourceLoadStatisticsDebugMode)
-        , WTFMove(*enableThirdPartyCookieBlocking)
+        , WTFMove(*thirdPartyCookieBlockingMode)
         , WTFMove(*deviceManagementRestrictionsEnabled)
         , WTFMove(*allLoadsBlockedByDeviceManagementRestrictionsForTesting)

trunk/Source/WebKit/NetworkProcess/NetworkSessionCreationParameters.h

@@ -27 +27 @@
 
 #include "SandboxExtension.h"
+#include <WebCore/NetworkStorageSession.h>
 #include <WebCore/RegistrableDomain.h>
 #include <pal/SessionID.h>
@@ -86 +87 @@
     bool shouldIncludeLocalhostInResourceLoadStatistics { true };
     bool enableResourceLoadStatisticsDebugMode { false };
-    bool enableThirdPartyCookieBlocking { false };
+    WebCore::ThirdPartyCookieBlockingMode thirdPartyCookieBlockingMode { WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction };
     bool deviceManagementRestrictionsEnabled { false };
     bool allLoadsBlockedByDeviceManagementRestrictionsForTesting { false };

trunk/Source/WebKit/NetworkProcess/cocoa/NetworkSessionCocoa.mm

@@ -1136 +1136 @@
     m_enableResourceLoadStatisticsDebugMode = parameters.enableResourceLoadStatisticsDebugMode ? EnableResourceLoadStatisticsDebugMode::Yes : EnableResourceLoadStatisticsDebugMode::No;
     m_resourceLoadStatisticsManualPrevalentResource = parameters.resourceLoadStatisticsManualPrevalentResource;
-    m_thirdPartyCookieBlockingEnabled = parameters.enableThirdPartyCookieBlocking;
+    m_thirdPartyCookieBlockingMode = parameters.thirdPartyCookieBlockingMode;
     setResourceLoadStatisticsEnabled(parameters.enableResourceLoadStatistics);
 #endif

trunk/Source/WebKit/Scripts/webkit/messages.py

@@ -589 +589 @@
         'WebCore::TextCheckingType': ['<WebCore/TextChecking.h>'],
         'WebCore::TextIndicatorData': ['<WebCore/TextIndicator.h>'],
+        'WebCore::ThirdPartyCookieBlockingMode': ['<WebCore/NetworkStorageSession.h>'],
         'WebCore::ViewportAttributes': ['<WebCore/ViewportArguments.h>'],
         'WebCore::WillContinueLoading': ['<WebCore/FrameLoaderTypes.h>'],

trunk/Source/WebKit/Shared/WebPreferences.yaml

@@ -1796 +1796 @@
 IsThirdPartyCookieBlockingEnabled:
   type: bool
-  defaultValue: false
+  defaultValue: true
   humanReadableName: "Block All 3rd-Party Cookies (ITP)"
   humanReadableDescription: "Block all third-party cookies when Intelligent Tracking Prevention is enabled"

trunk/Source/WebKit/UIProcess/API/C/WKWebsiteDataStoreRef.cpp

@@ -539 +539 @@
 }
 
-void WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(WKWebsiteDataStoreRef dataStoreRef, bool enabled, void* context, WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTestingFunction completionHandler)
-{
-#if ENABLE(RESOURCE_LOAD_STATISTICS)
-    WebKit::toImpl(dataStoreRef)->setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(enabled, [context, completionHandler] {
+void WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(WKWebsiteDataStoreRef dataStoreRef, bool enabled, bool onlyOnSitesWithoutUserInteraction, void* context, WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTestingFunction completionHandler)
+{
+#if ENABLE(RESOURCE_LOAD_STATISTICS)
+    WebKit::toImpl(dataStoreRef)->setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(enabled, onlyOnSitesWithoutUserInteraction, [context, completionHandler] {
         completionHandler(context);
     });
@@ -562 +562 @@
     store.resetCrossSiteLoadsWithLinkDecorationForTesting([callbackAggregator = callbackAggregator.copyRef()] { });
     store.setResourceLoadStatisticsShouldDowngradeReferrerForTesting(true, [callbackAggregator = callbackAggregator.copyRef()] { });
-    store.setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(false, [callbackAggregator = callbackAggregator.copyRef()] { });
+    store.setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(false, false, [callbackAggregator = callbackAggregator.copyRef()] { });
     store.resetParametersToDefaultValues([callbackAggregator = callbackAggregator.copyRef()] { });
     store.scheduleClearInMemoryAndPersistent(WebKit::ShouldGrandfatherStatistics::No, [callbackAggregator = callbackAggregator.copyRef()] { });

trunk/Source/WebKit/UIProcess/API/C/WKWebsiteDataStoreRef.h

@@ -121 +121 @@
 WK_EXPORT void WKWebsiteDataStoreSetResourceLoadStatisticsShouldDowngradeReferrerForTesting(WKWebsiteDataStoreRef dataStoreRef, bool enabled, void* context, WKWebsiteDataStoreSetResourceLoadStatisticsShouldDowngradeReferrerForTestingFunction completionHandler);
 typedef void (*WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTestingFunction)(void* functionContext);
-WK_EXPORT void WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(WKWebsiteDataStoreRef dataStoreRef, bool enabled, void* context, WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTestingFunction completionHandler);
+WK_EXPORT void WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(WKWebsiteDataStoreRef dataStoreRef, bool enabled, bool onlyOnSitesWithoutUserInteraction, void* context, WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTestingFunction completionHandler);
 typedef void (*WKWebsiteDataStoreStatisticsResetToConsistentStateFunction)(void* functionContext);
 WK_EXPORT void WKWebsiteDataStoreStatisticsResetToConsistentState(WKWebsiteDataStoreRef dataStoreRef, void* context, WKWebsiteDataStoreStatisticsResetToConsistentStateFunction completionHandler);

trunk/Source/WebKit/UIProcess/Network/NetworkProcessProxy.cpp

@@ -1058 +1058 @@
 }
 
-void NetworkProcessProxy::setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, bool enabled, CompletionHandler<void()>&& completionHandler)
-{
-    if (!canSendMessage()) {
-        completionHandler();
-        return;
-    }
-    
-    sendWithAsyncReply(Messages::NetworkProcess::SetShouldBlockThirdPartyCookiesForTesting(sessionID, enabled), WTFMove(completionHandler));
+void NetworkProcessProxy::setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID sessionID, ThirdPartyCookieBlockingMode blockingMode, CompletionHandler<void()>&& completionHandler)
+{
+    if (!canSendMessage()) {
+        completionHandler();
+        return;
+    }
+    
+    sendWithAsyncReply(Messages::NetworkProcess::SetShouldBlockThirdPartyCookiesForTesting(sessionID, blockingMode), WTFMove(completionHandler));
 }
 #endif // ENABLE(RESOURCE_LOAD_STATISTICS)

trunk/Source/WebKit/UIProcess/Network/NetworkProcessProxy.h

@@ -158 +158 @@
     void hasIsolatedSession(PAL::SessionID, const RegistrableDomain&, CompletionHandler<void(bool)>&&);
     void setShouldDowngradeReferrerForTesting(bool, CompletionHandler<void()>&&);
-    void setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID, bool, CompletionHandler<void()>&&);
+    void setShouldBlockThirdPartyCookiesForTesting(PAL::SessionID, WebCore::ThirdPartyCookieBlockingMode, CompletionHandler<void()>&&);
 #endif
     

trunk/Source/WebKit/UIProcess/WebProcessPool.cpp

@@ -563 +563 @@
     bool shouldIncludeLocalhost = true;
     bool enableResourceLoadStatisticsDebugMode = false;
-    bool enableThirdPartyCookieBlocking = false;
+    WebCore::ThirdPartyCookieBlockingMode thirdPartyCookieBlockingMode = WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction;
     WebCore::RegistrableDomain manualPrevalentResource { };
     if (withWebsiteDataStore) {
@@ -574 +574 @@
             shouldIncludeLocalhost = networkSessionParameters.shouldIncludeLocalhostInResourceLoadStatistics;
             enableResourceLoadStatisticsDebugMode = networkSessionParameters.enableResourceLoadStatisticsDebugMode;
-            enableThirdPartyCookieBlocking = networkSessionParameters.enableThirdPartyCookieBlocking;
+            thirdPartyCookieBlockingMode = networkSessionParameters.thirdPartyCookieBlockingMode;
             manualPrevalentResource = networkSessionParameters.resourceLoadStatisticsManualPrevalentResource;
         }
@@ -595 +595 @@
             shouldIncludeLocalhost = networkSessionParameters.shouldIncludeLocalhostInResourceLoadStatistics;
             enableResourceLoadStatisticsDebugMode = networkSessionParameters.enableResourceLoadStatisticsDebugMode;
-            enableThirdPartyCookieBlocking = networkSessionParameters.enableThirdPartyCookieBlocking;
+            thirdPartyCookieBlockingMode = networkSessionParameters.thirdPartyCookieBlockingMode;
             manualPrevalentResource = networkSessionParameters.resourceLoadStatisticsManualPrevalentResource;
         }
@@ -619 +619 @@
     parameters.defaultDataStoreParameters.networkSessionParameters.shouldIncludeLocalhostInResourceLoadStatistics = shouldIncludeLocalhost;
     parameters.defaultDataStoreParameters.networkSessionParameters.enableResourceLoadStatisticsDebugMode = enableResourceLoadStatisticsDebugMode;
-    parameters.defaultDataStoreParameters.networkSessionParameters.enableThirdPartyCookieBlocking = enableThirdPartyCookieBlocking;
+    parameters.defaultDataStoreParameters.networkSessionParameters.thirdPartyCookieBlockingMode = thirdPartyCookieBlockingMode;
     parameters.defaultDataStoreParameters.networkSessionParameters.resourceLoadStatisticsManualPrevalentResource = manualPrevalentResource;
 

trunk/Source/WebKit/UIProcess/WebsiteData/Cocoa/WebsiteDataStoreCocoa.mm

@@ -33 +33 @@
 #import "WebResourceLoadStatisticsStore.h"
 #import "WebsiteDataStoreParameters.h"
+#import <WebCore/NetworkStorageSession.h>
 #import <WebCore/RegistrableDomain.h>
 #import <WebCore/RuntimeApplicationChecks.h>
@@ -70 +71 @@
     bool shouldLogCookieInformation = false;
     bool enableResourceLoadStatisticsDebugMode = false;
-    bool enableThirdPartyCookieBlocking = false;
+    auto thirdPartyCookieBlockingMode = WebCore::ThirdPartyCookieBlockingMode::OnlyAccordingToPerDomainPolicy;
     bool enableLegacyTLS = true;
     if (id value = [defaults objectForKey:@"WebKitEnableLegacyTLS"])
@@ -77 +78 @@
 #if ENABLE(RESOURCE_LOAD_STATISTICS)
     enableResourceLoadStatisticsDebugMode = [defaults boolForKey:@"ITPDebugMode"];
-    enableThirdPartyCookieBlocking = [defaults boolForKey:[NSString stringWithFormat:@"Experimental%@", WebPreferencesKey::isThirdPartyCookieBlockingEnabledKey().createCFString().get()]];
+    if ([defaults boolForKey:[NSString stringWithFormat:@"Experimental%@", WebPreferencesKey::isThirdPartyCookieBlockingEnabledKey().createCFString().get()]])
+        thirdPartyCookieBlockingMode = WebCore::ThirdPartyCookieBlockingMode::All;
+    else
+        thirdPartyCookieBlockingMode = WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction;
     auto* manualPrevalentResource = [defaults stringForKey:@"ITPManualPrevalentResource"];
     if (manualPrevalentResource) {
@@ -141 +145 @@
         shouldIncludeLocalhostInResourceLoadStatistics,
         enableResourceLoadStatisticsDebugMode,
-        enableThirdPartyCookieBlocking,
+        thirdPartyCookieBlockingMode,
         m_configuration->deviceManagementRestrictionsEnabled(),
         m_configuration->allLoadsBlockedByDeviceManagementRestrictionsForTesting(),

trunk/Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.cpp

@@ -50 +50 @@
 #include <WebCore/DatabaseTracker.h>
 #include <WebCore/HTMLMediaElement.h>
+#include <WebCore/NetworkStorageSession.h>
 #include <WebCore/OriginLock.h>
 #include <WebCore/RegistrableDomain.h>
@@ -1788 +1789 @@
 }
 
-void WebsiteDataStore::setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(bool enabled, CompletionHandler<void()>&& completionHandler)
-{
-    auto callbackAggregator = CallbackAggregator::create(WTFMove(completionHandler));
-    
+void WebsiteDataStore::setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(bool enabled, bool onlyOnSitesWithoutUserInteraction, CompletionHandler<void()>&& completionHandler)
+{
+    auto callbackAggregator = CallbackAggregator::create(WTFMove(completionHandler));
+    WebCore::ThirdPartyCookieBlockingMode blockingMode = WebCore::ThirdPartyCookieBlockingMode::OnlyAccordingToPerDomainPolicy;
+    if (enabled)
+        blockingMode = onlyOnSitesWithoutUserInteraction ? WebCore::ThirdPartyCookieBlockingMode::AllOnSitesWithoutUserInteraction : WebCore::ThirdPartyCookieBlockingMode::All;
+
     for (auto& processPool : processPools()) {
         if (auto* networkProcess = processPool->networkProcess()) {
-            networkProcess->setShouldBlockThirdPartyCookiesForTesting(m_sessionID, enabled, [callbackAggregator = callbackAggregator.copyRef()] { });
+            networkProcess->setShouldBlockThirdPartyCookiesForTesting(m_sessionID, blockingMode, [callbackAggregator = callbackAggregator.copyRef()] { });
             ASSERT(processPools().size() == 1);
             break;

trunk/Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.h

@@ -195 +195 @@
     void hasIsolatedSessionForTesting(const URL&, CompletionHandler<void(bool)>&&) const;
     void setResourceLoadStatisticsShouldDowngradeReferrerForTesting(bool, CompletionHandler<void()>&&);
-    void setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(bool, CompletionHandler<void()>&&);
+    void setResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(bool enabled, bool onlyOnSitesWithoutUserInteraction, CompletionHandler<void()>&&);
 #endif
     void setCacheMaxAgeCapForPrevalentResources(Seconds, CompletionHandler<void()>&&);

trunk/Tools/ChangeLog

@@ +1 @@
+2019-11-23  John Wilander  <wilander@apple.com>
+
+        Resource Load Statistics: Allow multiple third-party cookie blocking settings
+        https://bugs.webkit.org/show_bug.cgi?id=204389
+        <rdar://problem/57344054>
+
+        Reviewed by Brent Fulgham.
+
+        This change allows the existing TestRunner function
+        setStatisticsShouldBlockThirdPartyCookies() to set an optional boolean
+        parameter onlyOnSitesWithoutUserInteraction to opt in to that behavior.
+
+        * WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl:
+        * WebKitTestRunner/InjectedBundle/TestRunner.cpp:
+        (WTR::TestRunner::setStatisticsShouldBlockThirdPartyCookies):
+        * WebKitTestRunner/InjectedBundle/TestRunner.h:
+        * WebKitTestRunner/TestController.cpp:
+        (WTR::TestController::setStatisticsShouldBlockThirdPartyCookies):
+        * WebKitTestRunner/TestController.h:
+        * WebKitTestRunner/TestInvocation.cpp:
+        (WTR::TestInvocation::didReceiveSynchronousMessageFromInjectedBundle):
+
 2019-11-23  Commit Queue  <commit-queue@webkit.org>
 

trunk/Tools/WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl

@@ -343 +343 @@
     boolean hasStatisticsIsolatedSession(DOMString hostName);
     void setStatisticsShouldDowngradeReferrer(boolean value, object callback);
-    void setStatisticsShouldBlockThirdPartyCookies(boolean value, object callback);
+    void setStatisticsShouldBlockThirdPartyCookies(boolean value, object callback, optional boolean onlyOnSitesWithoutUserInteraction);
 
     // Injected bundle form client.

trunk/Tools/WebKitTestRunner/InjectedBundle/TestRunner.cpp

@@ -34 +34 @@
 #include "TestController.h"
 #include <JavaScriptCore/JSCTestRunnerUtils.h>
+#include <WebCore/NetworkStorageSession.h>
 #include <WebCore/ResourceLoadObserver.h>
 #include <WebKit/WKBundle.h>
@@ -2224 +2225 @@
 }
 
-void TestRunner::setStatisticsShouldBlockThirdPartyCookies(bool value, JSValueRef completionHandler)
+void TestRunner::setStatisticsShouldBlockThirdPartyCookies(bool value, JSValueRef completionHandler, bool onlyOnSitesWithoutUserInteraction)
 {
     if (m_hasSetBlockThirdPartyCookiesCallback)
         return;
-    
+
     cacheTestRunnerCallback(StatisticsDidSetShouldBlockThirdPartyCookiesCallbackID, completionHandler);
     WKRetainPtr<WKStringRef> messageName = adoptWK(WKStringCreateWithUTF8CString("SetStatisticsShouldBlockThirdPartyCookies"));
+    if (onlyOnSitesWithoutUserInteraction)
+        messageName = adoptWK(WKStringCreateWithUTF8CString("SetStatisticsShouldBlockThirdPartyCookiesOnSitesWithoutUserInteraction"));
     WKRetainPtr<WKBooleanRef> messageBody = adoptWK(WKBooleanCreate(value));
     WKBundlePostSynchronousMessage(InjectedBundle::singleton().bundle(), messageName.get(), messageBody.get(), nullptr);

trunk/Tools/WebKitTestRunner/InjectedBundle/TestRunner.h

@@ -443 +443 @@
     void setStatisticsShouldDowngradeReferrer(bool, JSValueRef callback);
     void statisticsCallDidSetShouldDowngradeReferrerCallback();
-    void setStatisticsShouldBlockThirdPartyCookies(bool, JSValueRef callback);
+    void setStatisticsShouldBlockThirdPartyCookies(bool value, JSValueRef callback, bool onlyOnSitesWithoutUserInteraction);
     void statisticsCallDidSetShouldBlockThirdPartyCookiesCallback();
     void statisticsResetToConsistentState(JSValueRef completionHandler);

trunk/Tools/WebKitTestRunner/TestController.cpp

@@ -3568 +3568 @@
 }
 
-void TestController::setStatisticsShouldBlockThirdPartyCookies(bool value)
+void TestController::setStatisticsShouldBlockThirdPartyCookies(bool value, bool onlyOnSitesWithoutUserInteraction)
 {
     ResourceStatisticsCallbackContext context(*this);
-    WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(TestController::websiteDataStore(), value, &context, resourceStatisticsVoidResultCallback);
+    WKWebsiteDataStoreSetResourceLoadStatisticsShouldBlockThirdPartyCookiesForTesting(TestController::websiteDataStore(), value, onlyOnSitesWithoutUserInteraction, &context, resourceStatisticsVoidResultCallback);
     runUntil(context.done, noTimeout);
     m_currentInvocation->didSetShouldBlockThirdPartyCookies();

trunk/Tools/WebKitTestRunner/TestController.h

@@ -254 +254 @@
     bool hasStatisticsIsolatedSession(WKStringRef hostName);
     void setStatisticsShouldDowngradeReferrer(bool value);
-    void setStatisticsShouldBlockThirdPartyCookies(bool value);
+    void setStatisticsShouldBlockThirdPartyCookies(bool value, bool onlyOnSitesWithoutUserInteraction);
     void statisticsResetToConsistentState();
 

trunk/Tools/WebKitTestRunner/TestInvocation.cpp

@@ -1550 +1550 @@
     }
     
+    if (WKStringIsEqualToUTF8CString(messageName, "SetStatisticsShouldBlockThirdPartyCookiesOnSitesWithoutUserInteraction")) {
+        ASSERT(WKGetTypeID(messageBody) == WKBooleanGetTypeID());
+        WKBooleanRef value = static_cast<WKBooleanRef>(messageBody);
+        TestController::singleton().setStatisticsShouldBlockThirdPartyCookies(WKBooleanGetValue(value), true);
+        return nullptr;
+    }
+    
     if (WKStringIsEqualToUTF8CString(messageName, "SetStatisticsShouldBlockThirdPartyCookies")) {
         ASSERT(WKGetTypeID(messageBody) == WKBooleanGetTypeID());
         WKBooleanRef value = static_cast<WKBooleanRef>(messageBody);
-        TestController::singleton().setStatisticsShouldBlockThirdPartyCookies(WKBooleanGetValue(value));
+        TestController::singleton().setStatisticsShouldBlockThirdPartyCookies(WKBooleanGetValue(value), false);
         return nullptr;
     }