Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable COI for desktop with credentialless #186614

Open
jrieken opened this issue Jun 29, 2023 · 7 comments · Fixed by #186720 or #231665
Open

Enable COI for desktop with credentialless #186614

jrieken opened this issue Jun 29, 2023 · 7 comments · Fixed by #186720 or #231665
Assignees
@deepak1556 @jrieken
Labels
electron Issues and items related to Electron engineering VS Code - Build / issue tracking / etc. feature-request Request for new features or functionality workbench-electron Electron-VS Code issues
Milestone
On Deck

Comments

@jrieken
Copy link
Member

jrieken commented Jun 29, 2023

For desktop we can enable COI with COEP: credentialless. That's possible because chromium supports this new/proposed header value which relaxed loading cross-origin resources lacking the CORP header.
@jrieken jrieken self-assigned this Jun 29, 2023
@jrieken jrieken added the engineering VS Code - Build / issue tracking / etc. label Jun 29, 2023
@jrieken jrieken added this to the July 2023 milestone Jun 29, 2023
@jrieken jrieken added debt Code quality issues feature-request Request for new features or functionality electron Issues and items related to Electron web Issues related to running VSCode in the web workbench-electron Electron-VS Code issues and removed web Issues related to running VSCode in the web labels Jun 29, 2023
jrieken added a commit that referenced this issue Jun 30, 2023
@jrieken
enable COI for desktop via coep: credentialless, change command lin…
4de1350 
…e flag from "enable-coi" to "disable-coi"

fixes #186614
@jrieken jrieken mentioned this issue Jun 30, 2023
Merged
jrieken added a commit that referenced this issue Jun 30, 2023
@jrieken
enable COI for desktop via coep: credentialless, change command lin…
eafde5a 
…e flag from "enable-coi" to "disable-coi" (#186720)

fixes #186614
@vscodenpa vscodenpa added the unreleased Patch has not yet been released in VS Code Insiders label Jun 30, 2023
@jrieken jrieken reopened this Jul 5, 2023
@jrieken
Copy link
Member Author

jrieken commented Jul 5, 2023

Reverted, reopened because this has very likely caused #187030

@vscodenpa vscodenpa removed the unreleased Patch has not yet been released in VS Code Insiders label Jul 5, 2023
@jrieken
Copy link
Member Author

jrieken commented Jul 10, 2023

Enabling COI caused a perf regression (#187030) and therefore we are holding back. @deepak1556 Any idea why enabling COI would cause this?

@jrieken jrieken modified the milestones: July 2023, August 2023 Jul 18, 2023
@jrieken jrieken modified the milestones: August 2023, September 2023 Aug 18, 2023
deepak1556 pushed a commit that referenced this issue Sep 6, 2023
@jrieken @deepak1556
enable COI for desktop via coep: credentialless, change command lin…
9553de0 
…e flag from "enable-coi" to "disable-coi" (#186720)

fixes #186614
@deepak1556
Copy link
Collaborator

Looked into this today and I have an answer for the slowdown,

In all cases, the first navigation to an origin happens from about:blank. So chromium creates a render process for the null origin and if the destination origin in our case vscode-file://vscode-app can commit in this process (always the case for first navigation) then the process will be reused without any browserinstance swap. This is what we see when coi is disabled,

BrowserInstance Swap result with COI disabled:
COI_disabled_swap_result

Process list result with COI disabled:
Process_list_with_COI_disabled

When coi is enabled on an origin, chromium has logic (added in https://chromium-review.googlesource.com/c/chromium/src/+/3945190) to always force swap the browserinstance which leads to creation of new render process. This seems to apply to even when navigating from the null origin. Following screenshots show that there is a force swap on the browserinstance and there are two renderer process, pid 17824 from the null origin and pid 14756 for the vscode-file://vscode-app origin.

BrowserInstance Swap result with COI enabled:
swap_result_coi_enabled

Process list result with COI enabled:
process_list_coi_enabled

RenderFrameHostImpl::DidCommitProvisionalLoad for COI enabled
didcommit_coi_enabled

It looks like the site instances now have a new lock attribute called process_lock which is {} for normal navigations, but ends up being { vscode-file://vscode-app/ cross-origin-isolated coi-origin='vscode-file://vscode-app' } in the case of coi origin, so a coi origin does not get committed to a process that previously loaded a non coi origin.

tl:dr; there is a restart of the render process when coi is enabled and this is a penalty we will have to pay with coi origins for the initial navigation. Maybe chromium can adjust if first navigation on the app launch is to a coi origin then the process lock on null origin can be retagged and reused ? This needs discussion in upstream.

@jrieken jrieken removed this from the September 2023 milestone Sep 22, 2023
@DanTup DanTup mentioned this issue Jun 4, 2024
Closed
13 tasks
@kieferrm kieferrm mentioned this issue Oct 7, 2024
Closed
34 tasks
@deepak1556 deepak1556 mentioned this issue Oct 18, 2024
Merged
@vs-code-engineering vs-code-engineering bot added the unreleased Patch has not yet been released in VS Code Insiders label Oct 21, 2024
@vs-code-engineering vs-code-engineering bot added this to the October 2024 milestone Oct 21, 2024
@vs-code-engineering vs-code-engineering bot added insiders-released Patch has been released in VS Code Insiders and removed unreleased Patch has not yet been released in VS Code Insiders labels Oct 21, 2024
@digitarald digitarald mentioned this issue Oct 22, 2024
Closed
@deepak1556 deepak1556 reopened this Oct 22, 2024
@deepak1556 deepak1556 removed the insiders-released Patch has been released in VS Code Insiders label Oct 22, 2024
@deepak1556
Copy link
Collaborator

deepak1556 commented Oct 24, 2024
edited
Loading

Upstream issue filed as next step https://issues.chromium.org/issues/375314974

@kieferrm kieferrm mentioned this issue Nov 3, 2024
Closed
57 tasks
@deepak1556 deepak1556 modified the milestones: November 2024, On Deck Dec 3, 2024
@DanTup
Copy link
Contributor

DanTup commented Dec 11, 2024

@deepak1556 is this enabled now? I'm seeing wasm load in some Dart DevTools views where it didn't before (which I believe was because of no COI) and #231665 looks like it enables this, but since this issue is still open and you linked a new Chromium issue that says "we are looking to enable coi", it's not clear to me what the current status is expected to be.

@DanTup DanTup mentioned this issue Dec 11, 2024
Draft
6 tasks
@deepak1556
Copy link
Collaborator

Hi @DanTup , nope it is not enabled yet (it was reverted in #231899). The chromium issue to improve startup performance needs to be resolved first before we can adopt COI again. Upstream is working on it.

@eyebrowsoffire
Copy link

I mentioned this in the other bug, but this is because on the flutter engine side we added a single-threaded version of the wasm build that works in a non-COI context.

@kieferrm kieferrm mentioned this issue Jan 5, 2025
Open
42 tasks
@jrieken jrieken removed the debt Code quality issues label Jan 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@deepak1556 deepak1556

@jrieken jrieken

Labels
electron Issues and items related to Electron engineering VS Code - Build / issue tracking / etc. feature-request Request for new features or functionality workbench-electron Electron-VS Code issues
Projects
None yet
Milestone
On Deck
5 participants
@deepak1556 @DanTup @jrieken @eyebrowsoffire @vscodenpa