feat: support getSetCookie on new StarlingMonkey headers implementation (#844)

Author: Guy Bedford

integration-tests/js-compute/compare-headers.js

@@ -61,7 +61,7 @@ const compareHeaders = (configHeaders, wasmModuleHeaders) => {
     }
     else if (wasmModuleHeaderValue !== configHeaderValue) {
       throw new Error(
-        `[Header Value mismatch] Expected: '${configHeaderKey}: ${configHeaderValue}' (${configHeaderValue.length}), got '${configHeaderKey}: ${wasmModuleHeaderValue}' (${wasmModuleHeaderValue.length})`
+        `[Header Value mismatch] Expected: '${configHeaderKey}: ${configHeaderValue}' (${configHeaderValue.length}), got '${configHeaderKey}: ${wasmModuleHeaderValue}' (${wasmModuleHeaderValue?.length})`
       );
     }
   }

integration-tests/js-compute/fixtures/app/src/headers.js

@@ -2,6 +2,13 @@
 
 import { routes } from "./routes.js";
 import { pass, assert } from "./assertions.js";
+import { CacheOverride } from "fastly:cache-override";
+
+routes.set("/headers/construct", async () => {
+    const headers = new Headers()
+    headers.set('foo', 'bar')
+    return new Response("check headers", { headers })
+})
 
 routes.set("/headers/non-ascii-latin1-field-value", async () => {
     let response = await fetch("https://http-me.glitch.me/meow?header=cat:é", {
@@ -15,3 +22,32 @@ routes.set("/headers/non-ascii-latin1-field-value", async () => {
     if (error) { return error }
     return pass("ok")
 })
+
+routes.set("/headers/from-response/set", async () => {
+    const response = await fetch("https://httpbin.org/stream-bytes/11", {
+        backend: "httpbin",
+        cacheOverride: new CacheOverride('pass')
+    });
+    response.headers.set("cuStom", "test")
+    return response;
+})
+
+routes.set("/headers/from-response/delete-invalid", async () => {
+    const response = await fetch("https://httpbin.org/stream-bytes/11", {
+        backend: "httpbin",
+        cacheOverride: new CacheOverride('pass')
+    });
+    response.headers.delete("none")
+    return response;
+})
+
+
+routes.set("/headers/from-response/set-delete", async () => {
+    const response = await fetch("https://httpbin.org/stream-bytes/11", {
+        backend: "httpbin",
+        cacheOverride: new CacheOverride('pass')
+    });
+    response.headers.set("custom", "test")
+    response.headers.delete("access-control-allow-origin")
+    return response;
+})

integration-tests/js-compute/fixtures/app/tests.json

@@ -4301,15 +4301,7 @@
       "headers": [
         [
           "Set-Cookie",
-          "test=1; expires=Tue, 06-Dec-2022 12:34:56 GMT; Max-Age=60; Path=/; HttpOnly; Secure"
-        ],
-        [
-          "Set-Cookie",
-          "test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
-        ],
-        [
-          "Set-Cookie",
-          "test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
+          "test=1; expires=Tue, 06-Dec-2022 12:34:56 GMT; Max-Age=60; Path=/; HttpOnly; Secure, test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT, test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
         ],
         ["Set-Cookie", "test2=2"],
         ["Set-Cookie", "test3=3"],
@@ -4335,15 +4327,7 @@
       "headers": [
         [
           "Set-Cookie",
-          "test=1; expires=Tue, 06-Dec-2022 12:34:56 GMT; Max-Age=60; Path=/; HttpOnly; Secure"
-        ],
-        [
-          "Set-Cookie",
-          "test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
-        ],
-        [
-          "Set-Cookie",
-          "test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
+          "test=1; expires=Tue, 06-Dec-2022 12:34:56 GMT; Max-Age=60; Path=/; HttpOnly; Secure, test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT, test_id=1; Max-Age=60; Path=/; expires=Tue, 06-Dec-2022 12:34:56 GMT"
         ],
         ["Set-Cookie", "test2=2"],
         ["Set-Cookie", "test3=3"],
@@ -5290,6 +5274,55 @@
       "body": "ok"
     }
   },
+  "GET /headers/construct": {
+    "environments": ["compute", "viceroy"],
+    "downstream_request": {
+      "method": "GET",
+      "pathname": "/headers/construct"
+    },
+    "downstream_response": {
+      "status": 200,
+      "headers": {
+        "foo": "bar"
+      }
+    }
+  },
+  "GET /headers/from-response/set": {
+    "environments": ["compute", "viceroy"],
+    "downstream_request": {
+      "method": "GET",
+      "pathname": "/headers/from-response/set"
+    },
+    "downstream_response": {
+      "status": 200,
+      "headers": [
+        ["cuStom", "test"]
+      ]
+    }
+  },
+  "GET /headers/from-response/delete-invalid": {
+    "environments": ["compute", "viceroy"],
+    "downstream_request": {
+      "method": "GET",
+      "pathname": "/headers/from-response/delete-invalid"
+    },
+    "downstream_response": {
+      "status": 200
+    }
+  },
+  "GET /headers/from-response/set-delete": {
+    "environments": ["compute", "viceroy"],
+    "downstream_request": {
+      "method": "GET",
+      "pathname": "/headers/from-response/set-delete"
+    },
+    "downstream_response": {
+      "status": 200,
+      "headers": [
+        ["cuStom", "test"]
+      ]
+    }
+  },
 
   "GET /FastlyBody/interface": {
     "environments": ["compute"],

runtime/fastly/CMakeLists.txt

@@ -15,7 +15,7 @@ add_builtin(fastly::dictionary SRC builtins/dictionary.cpp)
 add_builtin(fastly::edge_rate_limiter SRC builtins/edge-rate-limiter.cpp)
 add_builtin(fastly::config_store SRC builtins/config-store.cpp)
 add_builtin(fastly::secret_store SRC builtins/secret-store.cpp)
-add_builtin(fastly::fetch SRC builtins/fetch/fetch.cpp builtins/fetch/request-response.cpp builtins/fetch/headers.cpp)
+add_builtin(fastly::fetch SRC builtins/fetch/fetch.cpp builtins/fetch/request-response.cpp builtins/fetch/request-response.cpp ../StarlingMonkey/builtins/web/fetch/headers.cpp)
 add_builtin(fastly::cache_override SRC builtins/cache-override.cpp)
 add_builtin(fastly::fetch_event SRC builtins/fetch-event.cpp DEPENDENCIES OpenSSL)
 

runtime/fastly/builtins/cache-core.cpp

@@ -1,22 +1,24 @@
 #include "cache-core.h"
+#include "../../../StarlingMonkey/builtins/web/fetch/headers.h"
 #include "../../../StarlingMonkey/builtins/web/streams/native-stream-source.h"
 #include "../../../StarlingMonkey/runtime/encode.h"
 #include "../host-api/host_api_fastly.h"
-#include "./fetch/headers.h"
 #include "body.h"
 #include "builtin.h"
 #include "fastly.h"
 #include "host_api.h"
 #include "js/Stream.h"
 #include <iostream>
 
+using builtins::web::fetch::Headers;
 using builtins::web::streams::NativeStreamSource;
 using fastly::body::FastlyBody;
 using fastly::fastly::convertBodyInit;
-using fastly::fetch::Headers;
 using fastly::fetch::Request;
 using fastly::fetch::RequestOrResponse;
 
+using builtins::web::fetch::Headers;
+
 namespace fastly::cache_core {
 
 namespace {
@@ -52,24 +54,30 @@ JS::Result<host_api::CacheLookupOptions> parseLookupOptions(JSContext *cx,
                 "a [ ['name', 'value'], ... ] sequence, or a { 'name' : 'value', ... } record.");
         return JS::Result<host_api::CacheLookupOptions>(JS::Error());
       }
-      JS::RootedObject request_opts(cx, JS_NewPlainObject(cx));
-      if (!JS_SetProperty(cx, request_opts, "headers", headers_val)) {
+
+      auto request_handle_res = host_api::HttpReq::make();
+      if (auto *err = request_handle_res.to_err()) {
+        HANDLE_ERROR(cx, *err);
         return JS::Result<host_api::CacheLookupOptions>(JS::Error());
       }
-      JS::RootedObject requestInstance(cx, Request::create_instance(cx));
-      if (!requestInstance) {
+      auto request_handle = request_handle_res.unwrap();
+
+      JS::RootedObject headers(cx,
+                               Headers::create(cx, headers_val, Headers::HeadersGuard::Request));
+      if (!headers) {
         return JS::Result<host_api::CacheLookupOptions>(JS::Error());
       }
-
-      JS::RootedValue request_opts_val(cx, ObjectValue(*request_opts));
-
-      // We need to convert the supplied HeadersInit in the `headers` property into a host-backed
-      // Request which contains the same headers Request::create does exactly that
-      // however, it also expects a fully valid URL for the Request. We don't ever use the Request
-      // URL, so we hard-code a valid URL
-      JS::RootedValue input(cx, JS::StringValue(JS_NewStringCopyZ(cx, "http://example.com")));
-      JS::RootedObject request(cx, Request::create(cx, requestInstance, input, request_opts_val));
-      options.request_headers = host_api::HttpReq(Request::request_handle(request));
+      if (Headers::mode(headers) == Headers::Mode::Uninitialized) {
+        return options;
+      }
+      MOZ_ASSERT(Headers::mode(headers) == Headers::Mode::ContentOnly);
+      Headers::HeadersList *headers_list = Headers::get_list(cx, headers);
+      MOZ_ASSERT(headers_list);
+      auto res = host_api::write_headers(request_handle.headers_writable(), *headers_list);
+      if (auto *err = res.to_err()) {
+        return JS::Result<host_api::CacheLookupOptions>(JS::Error());
+      }
+      options.request_headers = host_api::HttpReq(request_handle);
     }
   }
   return options;
@@ -337,23 +345,29 @@ JS::Result<host_api::CacheWriteOptions> parseInsertOptions(JSContext *cx,
               "a [ ['name', 'value'], ... ] sequence, or a { 'name' : 'value', ... } record.");
       return JS::Result<host_api::CacheWriteOptions>(JS::Error());
     }
-    JS::RootedObject request_opts(cx, JS_NewPlainObject(cx));
-    if (!JS_SetProperty(cx, request_opts, "headers", headers_val)) {
+
+    auto request_handle_res = host_api::HttpReq::make();
+    if (auto *err = request_handle_res.to_err()) {
+      HANDLE_ERROR(cx, *err);
+      return JS::Result<host_api::CacheWriteOptions>(JS::Error());
+    }
+    auto request_handle = request_handle_res.unwrap();
+
+    JS::RootedObject headers(cx, Headers::create(cx, headers_val, Headers::HeadersGuard::Request));
+    if (!headers) {
       return JS::Result<host_api::CacheWriteOptions>(JS::Error());
     }
-    JS::RootedObject requestInstance(cx, Request::create_instance(cx));
-    if (!requestInstance) {
+    if (Headers::mode(headers) == Headers::Mode::Uninitialized) {
+      return options;
+    }
+    MOZ_ASSERT(Headers::mode(headers) == Headers::Mode::ContentOnly);
+    Headers::HeadersList *headers_list = Headers::get_list(cx, headers);
+    MOZ_ASSERT(headers_list);
+    auto res = host_api::write_headers(request_handle.headers_writable(), *headers_list);
+    if (auto *err = res.to_err()) {
       return JS::Result<host_api::CacheWriteOptions>(JS::Error());
     }
-    JS::RootedValue request_opts_val(cx, ObjectValue(*request_opts));
-
-    // We need to convert the supplied HeadersInit in the `headers` property into a host-backed
-    // Request which contains the same headers Request::create does exactly that however,
-    // it also expects a fully valid URL for the Request. We don't ever use the Request URL, so we
-    // hard-code a valid URL
-    JS::RootedValue input(cx, JS::StringValue(JS_NewStringCopyZ(cx, "http://example.com")));
-    JS::RootedObject request(cx, Request::create(cx, requestInstance, input, request_opts_val));
-    options.request_headers = host_api::HttpReq(Request::request_handle(request));
+    options.request_headers = host_api::HttpReq(request_handle);
   }
   return options;
 }

runtime/fastly/builtins/fetch-event.cpp

@@ -19,10 +19,10 @@
 using std::chrono::microseconds;
 using std::chrono::system_clock;
 using namespace std::literals::string_view_literals;
+using builtins::web::fetch::Headers;
 using builtins::web::url::URL;
 using builtins::web::worker_location::WorkerLocation;
 using fastly::fastly::Fastly;
-using fastly::fetch::Headers;
 using fastly::fetch::RequestOrResponse;
 using fastly::fetch::Response;
 
@@ -568,6 +568,10 @@ bool start_response(JSContext *cx, JS::HandleObject response_obj, bool streaming
   auto response = Response::response_handle(response_obj);
   auto body = RequestOrResponse::body_handle(response_obj);
 
+  // write all the headers
+  if (!RequestOrResponse::commit_headers(cx, response_obj))
+    return false;
+
   auto res = response.send_downstream(body, streaming);
   if (auto *err = res.to_err()) {
     HANDLE_ERROR(cx, *err);
@@ -601,12 +605,10 @@ bool response_promise_then_handler(JSContext *cx, JS::HandleObject event, JS::Ha
   // very different.)
   JS::RootedObject response_obj(cx, &args[0].toObject());
 
-  // Ensure that all headers are stored client-side, so we retain access to them
-  // after sending the response off.
   if (Response::is_upstream(response_obj)) {
-    JS::RootedObject headers(cx);
-    headers = RequestOrResponse::headers<Headers::Mode::ProxyToResponse>(cx, response_obj);
-    if (!Headers::delazify(cx, headers))
+    JS::RootedObject headers(cx, Response::headers(cx, response_obj));
+    // Calling get_list() transitions to Mode::ContentOnly or Mode::CachedInContent.
+    if (!Headers::get_list(cx, headers))
       return false;
   }
 

runtime/fastly/builtins/fetch/fetch.cpp

@@ -1,8 +1,8 @@
 #include "fetch.h"
+#include "../../../StarlingMonkey/builtins/web/fetch/headers.h"
 #include "../backend.h"
 #include "../fastly.h"
 #include "../fetch-event.h"
-#include "./headers.h"
 #include "./request-response.h"
 #include "encode.h"
 #include "extension-api.h"
@@ -73,6 +73,10 @@ bool fetch(JSContext *cx, unsigned argc, Value *vp) {
     return ReturnPromiseRejectedWithPendingError(cx, args);
   }
 
+  if (!RequestOrResponse::commit_headers(cx, request)) {
+    return false;
+  }
+
   RootedString backend(cx, Request::backend(request));
   if (!backend) {
     if (Fastly::allowDynamicBackends) {
@@ -171,7 +175,7 @@ bool install(api::Engine *engine) {
   if (!Response::init_class(ENGINE->cx(), ENGINE->global())) {
     return false;
   }
-  if (!Headers::init_class(ENGINE->cx(), ENGINE->global())) {
+  if (!builtins::web::fetch::Headers::init_class(ENGINE->cx(), ENGINE->global())) {
     return false;
   }
   return true;

runtime/fastly/builtins/fetch/fetch.h

@@ -1,4 +1,4 @@
-#include "headers.h"
+#include "../../../StarlingMonkey/builtins/web/fetch/headers.h"
 #include "request-response.h"
 
 namespace fastly::fetch {