Add code to allocate agent clusters. #4617
Conversation
|
@annevk @domenic Here is a crack at the allocating agent clusters. It closely matches the allocation that we have planned for Chrome. I've made a change to what Anne provided as a rough sketch around naming the items shared agent clusters. Because I presume there will be agent clusters that will exist but not be shared, and they wouldn't be in this list. For example I'd expect that we could implement the feature policy in these steps and just return early providing a new agent cluster for everyone that has the policy set. |
source
Outdated
| @@ -89103,6 +89115,66 @@ import "https://example.com/foo/../module2.mjs";</code></pre> | |||
| in particular among which <span data-x="agent">agents</span> the backing data of | |||
| <code>SharedArrayBuffer</code> objects can be shared.</p> | |||
|
|
|||
| <p>A <span>browsing context group</span> has associated <dfn data-export="">shared agent | |||
| clusters</dfn> (a <span data-x="ordered map">map</span> of <span>agent cluster key</span> to | |||
| <span>agent cluster</span>).</p> | |||
There was a problem hiding this comment.
Do we need to export "shared agent clusters"? Also, if you have a different strategy in mind, it seems we don't need the agent cluster key abstraction?
There was a problem hiding this comment.
Removed the export. I do think the definition of the agent cluser key makes it clear it is based on the registrable domain.
|
Does it seem feasible to do this incrementally, by first fixing agent clusters, then fixing the ordering of Document allocation? Tying them together seems to increase the likelihood that only you will be able to ultimately take this on... |
|
It's great to see this logic written out explicitly. Such an approach might also help us to be more explicit on the JS side, so cc @syg @lars-t-hansen who wrote much of that spec text. |
|
I think I can live with document being created first and letting the bugs around that stay with us a little longer. However, we should get this to a stage whereby we no longer have to define the declarative setup around similar-origin window agents (i.e., can remove "same-agent Window objects") and whereby allocation of a new realm happens in the context of a particular agent such that it's appended to the agent's set of realms. (The current PR appears to do this in the wrong order, too.) If we mark #4361 as fixed we should also file a follow-up for workers, though maybe there's something similar already tracking that. |
|
@annevk Ok, I've adjusted my approach. I've pulled the determination of the sandbox flags and the origin before the document is created. This allows me to create the agent before the realm is created and pass the agent into that. Make sense? |
|
Unfortunately, I'm having a hard time trying to understand this patch. E.g., determining the origin only really works when you're creating a popup or some such. Otherwise, when there's no creator origin, you're still highly dependent on existing infrastructure, right? I also miss the aspects I hinted at in my previous comment, i.e., why do we now have both new imperative-style and old declarative-style allocation of agents and agent clusters? We should be able to remove some of that, no? (Not the worker parts yet, but some of the window parts.) |
dtapuska
force-pushed
the
agent_cluster
branch
2 times, most recently
from
d3bf0a4
to
fde5072
Compare
|
@annevk I've rebased this on the navigation algorithm now. Can you take a look at it now? |
|
I think you forgot to push. |
It wasn't quite ready when I left Friday. I perhaps am using git incorrectly because I'd really like to respond to comments all at once. I've been able to do that on a review but not responding to individual feedback. Anyways I've pushed the latest changes now. |
|
It's a bit unintuitive, but you can submit your own "review" of type "comment" (as opposed to "approved" or "changes requested" types) and that allows drafting and batch-submission of replies. |
source
Outdated
| false.</p></li> | ||
| <p class="note">Two <code>Window</code> objects that have the same <span>agent</span> does | ||
| not indicate they can share data with each other, only that it is possible. Two windows | ||
| might only share data if they are <span>same origin-domain</span>.</p> |
There was a problem hiding this comment.
I think this sentence is wrong on multiple grounds due to postMessage(). And if you make it synchronous access it's still somewhat suspect due to SharedArrayBuffer I think?
Maybe say something about not necessarily being able to directly access all objects created in such a Window object's realm?
There was a problem hiding this comment.
I've adjusted this and put a link to IsPlatformObjectSameOrigin
| @@ -90393,6 +90357,68 @@ import "https://example.com/foo/../module2.mjs";</code></pre> | |||
| in particular among which <span data-x="agent">agents</span> the backing data of | |||
| <code>SharedArrayBuffer</code> objects can be shared.</p> | |||
|
|
|||
| <p>A <span>browsing context group</span> has associated <dfn>agent cluster map</dfn> (a <span | |||
| data-x="ordered map">map</span> of <span>agent cluster key</span> to <span>agent | |||
| cluster</span>).</p> | |||
There was a problem hiding this comment.
We need to clarify here that we only hold these agent clusters weakly, i.e., user agents are responsible for collecting them when it is deemed that nothing can access them anymore.
source
Outdated
| <li> | ||
| <p>Let <var>realm execution context</var> be the result of <span>creating a new JavaScript | ||
| realm</span> with the following customizations:</p> | ||
| realm</span> in <var>agent</var> with the following customizations:</p> |
There was a problem hiding this comment.
It seems you haven't modified this similarly to how @domenic suggested above.
source
Outdated
| <li> | ||
| <p>Let <var>realm execution context</var> be the result of <span>creating a new JavaScript | ||
| realm</span> with the following customizations:</p> | ||
| realm</span> in <var>agent</var> with the following customizations:</p> |
source
Outdated
| <span>relevant settings object</span>'s <span | ||
| data-x="concept-settings-object-origin">origin</span>.</p></li> | ||
| <p class="note">Two <code>Window</code> objects that have the same <span>agent</span> does not | ||
| indicate they can directly access all objects created in each others realms. Two windows might be |
There was a problem hiding this comment.
Should there not be an apostrophe after "others"?
There was a problem hiding this comment.
I believe it should be "each other's". Changed.
source
Outdated
| <span>relevant settings object</span>'s <span | ||
| data-x="concept-settings-object-origin">origin</span>.</p></li> | ||
| <p class="note">Two <code>Window</code> objects that have the same <span>agent</span> does not | ||
| indicate they can directly access all objects created in each others realms. Two windows might be |
There was a problem hiding this comment.
Instead of "Two windows" maybe use "They" as otherwise it's rather informal and not directly clear objects are meant.
source
Outdated
| data-x="concept-settings-object-origin">origin</span>.</p></li> | ||
| <p class="note">Two <code>Window</code> objects that have the same <span>agent</span> does not | ||
| indicate they can directly access all objects created in each others realms. Two windows might be | ||
| required to be in <span>same origin-domain</span>, see <span>IsPlatformObjectSameOrigin</span>.</p> |
There was a problem hiding this comment.
We cannot use "required" in a note. Maybe say "They would have to be same origin-domain, see ..."
dtapuska
force-pushed
the
agent_cluster
branch
from
7d683e7
to
73622c5
Compare
There was a problem hiding this comment.
I got really confused before I realized that yes, there is only one similar-origin window agent per agent cluster. There can be more stuff, but it's all non-window agents. So I added one commit, on top of my editorial ones, that tries to make the situation clearer. Please take a look and let me know if I'm on the right track.
Otherwise, I have one TODO about allocating the agent and defining "similar-origin window agent" more correctly.
| @@ -90397,6 +90374,70 @@ import "https://example.com/foo/../module2.mjs";</code></pre> | |||
| in particular among which <span data-x="agent">agents</span> the backing data of | |||
| <code>SharedArrayBuffer</code> objects can be shared.</p> | |||
|
|
|||
| <p>A <dfn data-export="">scheme-and-site</dfn> is a <span>tuple</span> of a <span | |||
There was a problem hiding this comment.
Is it just me, or would it make more sense to call it scheme-and-domain??
There was a problem hiding this comment.
I called it site due to https://url.spec.whatwg.org/#host-same-site. "scheme-and-registrable-domain" might work, but "domain" seems too ambiguous.
source
Outdated
| data-x="obtain-browsing-agent-cluster">obtaining a browsing context agent cluster</span> with | ||
| <var>group</var> and <var>clusterKey</var>.</p></li> | ||
|
|
||
| <li><p>Return <var>agentCluster</var>'s <span>similar-origin window agent</span>.</p></li> |
There was a problem hiding this comment.
This links to the definition of the concept of similar-origin window agent. But it's used as a field on agentCluster.
I think the intention here is something like "return the single agent contained in agentCluster". (The ES spec seems to define agent clusters to be be "sets of agents".) Similarly below, in "obtain a browsing context agent cluster".
There was a problem hiding this comment.
agentCluster would have multiple agents. It would only have a single window agent though, the other agents will be for workers or worklets. I was trying to phrase something like "return agentCluster's single window agent".
| </ol> | ||
|
|
||
| <p>A <dfn data-export="">similar-origin window agent</dfn> is an <span>agent</span> whose | ||
| [[CanBlock]] is false. </p> |
There was a problem hiding this comment.
This doesn't seem like a sufficient definition; in particular there are others with [[CanBlock]] of false. I think instead you want something like "A similar-origin window agent is an agent created during the course of the following algorithm:" and then inside the algorithm you create a new "agent".
That new agent should get all its fields set. In particular:
- [[CanBlock]] to false
- [[Signifier]] to ... a new unique value?
- [[CandidateExecution]] to a new empty candidate execution
- [[LittleEndian]], [[IsLockFree1]], and [[IsLockFree2]] at the implement's discretion.
There was a problem hiding this comment.
Thus far we only defined values that are different given that ECMAScript doesn't define concrete agent allocation. So I think continuing with only specifying [[CanBlock]] is fine, but we should probably use "new" in there.
There was a problem hiding this comment.
I'm not sure what ECMAScript really needs to define. It's just a record with a bunch of fields; you can create those pretty easily.
There was a problem hiding this comment.
Domenic I've written what you suggested. Anne I tried to add "new" in there and it felt that Domenic's proposal was more natural.
| </ol> | ||
|
|
||
| <p>A <dfn data-export="">similar-origin window agent</dfn> is an <span>agent</span> whose | ||
| [[CanBlock]] is false. </p> |
There was a problem hiding this comment.
Thus far we only defined values that are different given that ECMAScript doesn't define concrete agent allocation. So I think continuing with only specifying [[CanBlock]] is fine, but we should probably use "new" in there.
Store shared agent clusters in the browsing context group via a map of scheme & registrable domain. Hook the document initialization methods to obtain a similar-orgin window agent. Fixes whatwg#4361
- Remove extra comments - Add period - Remove useless text - Add formalism around creation of Window Agent
- Remove window agent definition - shared agent clusters -> agent cluster map
dtapuska
force-pushed
the
agent_cluster
branch
from
9aeb482
to
5932a85
Compare
Biggest thing is relocating the definition of "similar-origin window agent" to the agents section instead of agent cluster section
domenic
added
the
topic: agent
Store shared agent clusters in the browsing context group via a map of
scheme & registrable domain.
Hook the document initialization methods to obtain a similar-orgin
window agent.
Fixes #4361
/browsers.html ( diff )
/browsing-the-web.html ( diff )
/infrastructure.html ( diff )
/webappapis.html ( diff )