Changeset 268155 in webkit

Timestamp:

Oct 7, 2020 3:27:58 PM (4 years ago)

Author:

jiewen_tan@apple.com

Message:

[WebAuthn] Implement a dummy WebAuthenticationAgent
​https://bugs.webkit.org/show_bug.cgi?id=217401
<rdar://problem/70012011>

Reviewed by Darin Adler.

Part 1.

This patch introduces a new dummy WebAuthenticationAgent where in the future it will take over all WebAuthn operations
from the UI Process such that we can isolate high privileged entitlements to this standalone daemon and therefore are able
offer WebAuthn to third party WKWebView clients. One of the future feautres will require this new process to listen to
LaunchEvents, which only daemons can do. That's why it is implemented as a user agent instead of a XPC service.

This is the first part of establishing such a dummy daemon. What it does is to set up a new build target for the daemon and
hook it up with WebKit's build system. One can manually load the launchd plist and load the daemon to verify this change.

Commands are:
launchctl load /to/your/path/com.apple.webkit.WebAuthenticationAgent.plist
launchctl start com.apple.webkit.WebAuthenticationAgent.Development

Covered by manual tests.

• Configurations/WebAuthenticationAgent.xcconfig: Added.

Somehow the executable has a suffix .Development for debug/release builds. Will fix that in the later part.

• Daemons/WebAuthenticationAgent/Info.plist: Added.
• Daemons/WebAuthenticationAgent/WebAuthenticationAgent.entitlements: Added.
• Daemons/WebAuthenticationAgent/com.apple.webkit.WebAuthenticationAgent.plist: Added.

The executable location is hardcoded for now. It will be fixed in Part 2 to dynamically point to the right binary.

• Daemons/WebAuthenticationAgent/main.mm: Added.

(main):

• WebKit.xcodeproj/project.pbxproj:

Not sure why libWTF.a is needed. Will fix that in the later part.

Location:

trunk/Source/WebKit

Files:

• ChangeLog (modified) (1 diff)
• Configurations/WebAuthenticationAgent.xcconfig (added)
• Daemons (added)
• Daemons/WebAuthenticationAgent (added)
• Daemons/WebAuthenticationAgent/Info.plist (added)
• Daemons/WebAuthenticationAgent/WebAuthenticationAgent.entitlements (added)
• Daemons/WebAuthenticationAgent/com.apple.webkit.WebAuthenticationAgent.plist (added)
• Daemons/WebAuthenticationAgent/main.mm (added)
• WebKit.xcodeproj/project.pbxproj (modified) (18 diffs)

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2020-10-07  Jiewen Tan  <jiewen_tan@apple.com>
+
+        [WebAuthn] Implement a dummy WebAuthenticationAgent
+        https://bugs.webkit.org/show_bug.cgi?id=217401
+        <rdar://problem/70012011>
+
+        Reviewed by Darin Adler.
+
+        Part 1.
+
+        This patch introduces a new dummy WebAuthenticationAgent where in the future it will take over all WebAuthn operations
+        from the UI Process such that we can isolate high privileged entitlements to this standalone daemon and therefore are able
+        offer WebAuthn to third party WKWebView clients. One of the future feautres will require this new process to listen to
+        LaunchEvents, which only daemons can do. That's why it is implemented as a user agent instead of a XPC service.
+
+        This is the first part of establishing such a dummy daemon. What it does is to set up a new build target for the daemon and
+        hook it up with WebKit's build system. One can manually load the launchd plist and load the daemon to verify this change.
+
+        Commands are:
+        launchctl load /to/your/path/com.apple.webkit.WebAuthenticationAgent.plist
+        launchctl start com.apple.webkit.WebAuthenticationAgent.Development
+
+        Covered by manual tests.
+
+        * Configurations/WebAuthenticationAgent.xcconfig: Added.
+        Somehow the executable has a suffix .Development for debug/release builds. Will fix that in the later part.
+        * Daemons/WebAuthenticationAgent/Info.plist: Added.
+        * Daemons/WebAuthenticationAgent/WebAuthenticationAgent.entitlements: Added.
+        * Daemons/WebAuthenticationAgent/com.apple.webkit.WebAuthenticationAgent.plist: Added.
+        The executable location is hardcoded for now. It will be fixed in Part 2 to dynamically point to the right binary.
+        * Daemons/WebAuthenticationAgent/main.mm: Added.
+        (main):
+        * WebKit.xcodeproj/project.pbxproj:
+        Not sure why libWTF.a is needed. Will fix that in the later part.
+
 2020-10-07  Devin Rousso  <drousso@apple.com>
 

trunk/Source/WebKit/WebKit.xcodeproj/project.pbxproj

@@ -15 +15 @@
                         );
                         dependencies = (
+                                57A9FF0C252C31D6006A2040 /* PBXTargetDependency */,
                                 BCA8D46815BCE0D6009DC1F1 /* PBXTargetDependency */,
                                 372EBB492017E6CF00085064 /* PBXTargetDependency */,
@@ -1113 +1114 @@
                 579F1BF923C80EC600C7D4B4 /* _WKWebAuthenticationAssertionResponseInternal.h in Headers */ = {isa = PBXBuildFile; fileRef = 579F1BF823C80EC600C7D4B4 /* _WKWebAuthenticationAssertionResponseInternal.h */; };
                 579F1BFC23C811CF00C7D4B4 /* APIWebAuthenticationAssertionResponse.h in Headers */ = {isa = PBXBuildFile; fileRef = 579F1BFA23C811CF00C7D4B4 /* APIWebAuthenticationAssertionResponse.h */; };
+                57A9FF09252BEAF0006A2040 /* main.mm in Sources */ = {isa = PBXBuildFile; fileRef = 57A9FF08252BEAF0006A2040 /* main.mm */; };
+                57A9FF1D252C6CE6006A2040 /* libWTF.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 57A9FF15252C6AEF006A2040 /* libWTF.a */; };
                 57AC8F50217FEED90055438C /* HidConnection.h in Headers */ = {isa = PBXBuildFile; fileRef = 57AC8F4E217FEED90055438C /* HidConnection.h */; };
                 57B4B46020B504AC00D4AD79 /* ClientCertificateAuthenticationXPCConstants.h in Headers */ = {isa = PBXBuildFile; fileRef = 57B4B45E20B504AB00D4AD79 /* ClientCertificateAuthenticationXPCConstants.h */; };
@@ -1966 +1969 @@
                         remoteInfo = "Derived Sources";
                 };
+                57A9FF0B252C31D6006A2040 /* PBXContainerItemProxy */ = {
+                        isa = PBXContainerItemProxy;
+                        containerPortal = 0867D690FE84028FC02AAC07 /* Project object */;
+                        proxyType = 1;
+                        remoteGlobalIDString = 57A9FEFB252BD8AA006A2040;
+                        remoteInfo = WebAuthenticationAgent;
+                };
                 BC8283D416B4C01F00A278FE /* PBXContainerItemProxy */ = {
                         isa = PBXContainerItemProxy;
@@ -2077 +2087 @@
                         name = "Copy Shims";
                         runOnlyForDeploymentPostprocessing = 0;
+                };
+                57A9FEFA252BD8AA006A2040 /* CopyFiles */ = {
+                        isa = PBXCopyFilesBuildPhase;
+                        buildActionMask = 2147483647;
+                        dstPath = /usr/share/man/man1/;
+                        dstSubfolderSpec = 0;
+                        files = (
+                        );
+                        runOnlyForDeploymentPostprocessing = 1;
                 };
                 7CB16FEE1724BA05007A0A95 /* Copy Plug-in Sandbox Profiles */ = {
@@ -3913 +3932 @@
                 579F1BFA23C811CF00C7D4B4 /* APIWebAuthenticationAssertionResponse.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = APIWebAuthenticationAssertionResponse.h; sourceTree = "<group>"; };
                 579F1BFB23C811CF00C7D4B4 /* APIWebAuthenticationAssertionResponse.cpp */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.cpp.cpp; path = APIWebAuthenticationAssertionResponse.cpp; sourceTree = "<group>"; };
+                57A9FEFC252BD8AA006A2040 /* com.apple.WebKit.WebAuthenticationAgent.Development */ = {isa = PBXFileReference; explicitFileType = "compiled.mach-o.executable"; includeInIndex = 0; path = com.apple.WebKit.WebAuthenticationAgent.Development; sourceTree = BUILT_PRODUCTS_DIR; };
+                57A9FF07252BE6E0006A2040 /* WebAuthenticationAgent.xcconfig */ = {isa = PBXFileReference; lastKnownFileType = text.xcconfig; path = WebAuthenticationAgent.xcconfig; sourceTree = "<group>"; };
+                57A9FF08252BEAF0006A2040 /* main.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; name = main.mm; path = Daemons/WebAuthenticationAgent/main.mm; sourceTree = SOURCE_ROOT; };
+                57A9FF0A252BF5C3006A2040 /* Info.plist */ = {isa = PBXFileReference; lastKnownFileType = text.plist.xml; path = Info.plist; sourceTree = "<group>"; };
+                57A9FF0D252C397A006A2040 /* com.apple.webkit.WebAuthenticationAgent.plist */ = {isa = PBXFileReference; lastKnownFileType = text.plist.xml; path = com.apple.webkit.WebAuthenticationAgent.plist; sourceTree = "<group>"; };
+                57A9FF0F252C5D9D006A2040 /* WebAuthenticationAgent.entitlements */ = {isa = PBXFileReference; lastKnownFileType = text.plist.entitlements; path = WebAuthenticationAgent.entitlements; sourceTree = "<group>"; };
+                57A9FF15252C6AEF006A2040 /* libWTF.a */ = {isa = PBXFileReference; explicitFileType = archive.ar; path = libWTF.a; sourceTree = BUILT_PRODUCTS_DIR; };
                 57AC8F4E217FEED90055438C /* HidConnection.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = HidConnection.h; sourceTree = "<group>"; };
                 57AC8F4F217FEED90055438C /* HidConnection.mm */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.cpp.objcpp; path = HidConnection.mm; sourceTree = "<group>"; };
@@ -5437 +5463 @@
                         runOnlyForDeploymentPostprocessing = 0;
                 };
+                57A9FEF9252BD8AA006A2040 /* Frameworks */ = {
+                        isa = PBXFrameworksBuildPhase;
+                        buildActionMask = 2147483647;
+                        files = (
+                                57A9FF1D252C6CE6006A2040 /* libWTF.a in Frameworks */,
+                        );
+                        runOnlyForDeploymentPostprocessing = 0;
+                };
                 8DC2EF560486A6940098B216 /* Frameworks */ = {
                         isa = PBXFrameworksBuildPhase;
@@ -5485 +5519 @@
                                 BC8283B116B4BF7700A278FE /* com.apple.WebKit.Networking.xpc */,
                                 BC82841F16B4FDF600A278FE /* com.apple.WebKit.Plugin.64.xpc */,
+                                57A9FEFC252BD8AA006A2040 /* com.apple.WebKit.WebAuthenticationAgent.Development */,
                                 372EBB462017E64300085064 /* com.apple.WebKit.WebContent.Development.xpc */,
                                 BC3DE46615A91763008D26FC /* com.apple.WebKit.WebContent.xpc */,
@@ -5629 +5664 @@
                                 1A1D2117191D996C0001619F /* MigrateHeadersFromWebKitLegacy.make */,
                                 1A1D2116191D995C0001619F /* postprocess-framework-headers.sh */,
+                                57A9FEEF252BB70C006A2040 /* Daemons */,
                                 BC2E6E74114196F000A63B1E /* Platform */,
                                 1AADDF4B10D82AF000D3D63D /* Shared */,
@@ -5837 +5873 @@
                                 5183B3931379F85C00E8754E /* Shim.xcconfig */,
                                 1A4F976E100E7B6600637A18 /* Version.xcconfig */,
+                                57A9FF07252BE6E0006A2040 /* WebAuthenticationAgent.xcconfig */,
                                 372EBB4A2017E76000085064 /* WebContentService.Development.xcconfig */,
                                 BCACC40E16B0B8A800B6E092 /* WebContentService.xcconfig */,
@@ -8078 +8115 @@
                         isa = PBXGroup;
                         children = (
+                                57A9FF15252C6AEF006A2040 /* libWTF.a */,
                                 5750F32A2032D4E500389347 /* LocalAuthentication.framework */,
                                 570DAAB0230273D200E8FC04 /* NearField.framework */,
@@ -8133 +8171 @@
                         );
                         path = WebAuthentication;
+                        sourceTree = "<group>";
+                };
+                57A9FEEF252BB70C006A2040 /* Daemons */ = {
+                        isa = PBXGroup;
+                        children = (
+                                57A9FEF0252BB740006A2040 /* WebAuthenticationAgent */,
+                        );
+                        path = Daemons;
+                        sourceTree = "<group>";
+                };
+                57A9FEF0252BB740006A2040 /* WebAuthenticationAgent */ = {
+                        isa = PBXGroup;
+                        children = (
+                                57A9FF0D252C397A006A2040 /* com.apple.webkit.WebAuthenticationAgent.plist */,
+                                57A9FF0A252BF5C3006A2040 /* Info.plist */,
+                                57A9FF08252BEAF0006A2040 /* main.mm */,
+                                57A9FF0F252C5D9D006A2040 /* WebAuthenticationAgent.entitlements */,
+                        );
+                        path = WebAuthenticationAgent;
                         sourceTree = "<group>";
                 };
@@ -11927 +11984 @@
                         productType = "com.apple.product-type.library.dynamic";
                 };
+                57A9FEFB252BD8AA006A2040 /* WebAuthenticationAgent */ = {
+                        isa = PBXNativeTarget;
+                        buildConfigurationList = 57A9FF00252BD8AB006A2040 /* Build configuration list for PBXNativeTarget "WebAuthenticationAgent" */;
+                        buildPhases = (
+                                57A9FEF8252BD8AA006A2040 /* Sources */,
+                                57A9FEF9252BD8AA006A2040 /* Frameworks */,
+                                57A9FEFA252BD8AA006A2040 /* CopyFiles */,
+                        );
+                        buildRules = (
+                        );
+                        dependencies = (
+                        );
+                        name = WebAuthenticationAgent;
+                        productName = WebAuthenticationAgent;
+                        productReference = 57A9FEFC252BD8AA006A2040 /* com.apple.WebKit.WebAuthenticationAgent.Development */;
+                        productType = "com.apple.product-type.tool";
+                };
                 8DC2EF4F0486A6940098B216 /* WebKit */ = {
                         isa = PBXNativeTarget;
@@ -12051 +12125 @@
                                                 ProvisioningStyle = Automatic;
                                         };
+                                        57A9FEFB252BD8AA006A2040 = {
+                                                CreatedOnToolsVersion = 12.0;
+                                        };
                                         E1AC2E2720F7B94C00B0897D = {
                                                 CreatedOnToolsVersion = 9.3;
@@ -12084 +12161 @@
                                 E1AC2E2720F7B94C00B0897D /* Unlock Keychain */,
                                 5325BDCD21DFF47700A0DEE1 /* Apply Configuration to XCFileLists */,
+                                57A9FEFB252BD8AA006A2040 /* WebAuthenticationAgent */,
                         );
                 };
@@ -12690 +12768 @@
                         files = (
                                 511F8A81138B485D00A95F44 /* SecItemShimLibrary.mm in Sources */,
+                        );
+                        runOnlyForDeploymentPostprocessing = 0;
+                };
+                57A9FEF8252BD8AA006A2040 /* Sources */ = {
+                        isa = PBXSourcesBuildPhase;
+                        buildActionMask = 2147483647;
+                        files = (
+                                57A9FF09252BEAF0006A2040 /* main.mm in Sources */,
                         );
                         runOnlyForDeploymentPostprocessing = 0;
@@ -13192 +13278 @@
                         targetProxy = 37F7407812721F740093869B /* PBXContainerItemProxy */;
                 };
+                57A9FF0C252C31D6006A2040 /* PBXTargetDependency */ = {
+                        isa = PBXTargetDependency;
+                        target = 57A9FEFB252BD8AA006A2040 /* WebAuthenticationAgent */;
+                        targetProxy = 57A9FF0B252C31D6006A2040 /* PBXContainerItemProxy */;
+                };
                 BC8283D516B4C01F00A278FE /* PBXTargetDependency */ = {
                         isa = PBXTargetDependency;
@@ -13448 +13539 @@
                         name = Production;
                 };
+                57A9FF01252BD8AB006A2040 /* Debug */ = {
+                        isa = XCBuildConfiguration;
+                        baseConfigurationReference = 57A9FF07252BE6E0006A2040 /* WebAuthenticationAgent.xcconfig */;
+                        buildSettings = {
+                        };
+                        name = Debug;
+                };
+                57A9FF02252BD8AB006A2040 /* Release */ = {
+                        isa = XCBuildConfiguration;
+                        baseConfigurationReference = 57A9FF07252BE6E0006A2040 /* WebAuthenticationAgent.xcconfig */;
+                        buildSettings = {
+                        };
+                        name = Release;
+                };
+                57A9FF03252BD8AB006A2040 /* Production */ = {
+                        isa = XCBuildConfiguration;
+                        baseConfigurationReference = 57A9FF07252BE6E0006A2040 /* WebAuthenticationAgent.xcconfig */;
+                        buildSettings = {
+                        };
+                        name = Production;
+                };
                 5D22D69B11A7534600BF30E5 /* Production */ = {
                         isa = XCBuildConfiguration;
@@ -13704 +13816 @@
                         defaultConfigurationName = Production;
                 };
+                57A9FF00252BD8AB006A2040 /* Build configuration list for PBXNativeTarget "WebAuthenticationAgent" */ = {
+                        isa = XCConfigurationList;
+                        buildConfigurations = (
+                                57A9FF01252BD8AB006A2040 /* Debug */,
+                                57A9FF02252BD8AB006A2040 /* Release */,
+                                57A9FF03252BD8AB006A2040 /* Production */,
+                        );
+                        defaultConfigurationIsVisible = 0;
+                        defaultConfigurationName = Production;
+                };
                 A7AADA1419395CA9003EA1C7 /* Build configuration list for PBXAggregateTarget "Sandbox Profiles" */ = {
                         isa = XCConfigurationList;