Implement cosmetic filtering

[antonok-edm]

Submitter Checklist:

Closes brave/brave-browser#5381
Depends on brave/adblock-rust-ffi#3

• Submitted a ticket for my issue if one did not already exist.
• Used Github auto-closing keywords in the commit message.
• Added/updated tests for this change (for new code or code which already has tests).
• Verified that these changes build without errors on
  • Android
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that these changes pass automated tests (unit, browser, security tests) on
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that all lint errors/warnings are resolved (npm run lint)
• Ran git rebase master (if needed).
• Ran git rebase -i to squash commits (if needed).
• Tagged reviewers and labelled the pull request as needed.
• Request a security/privacy review as needed.
• Add appropriate QA labels (QA/Yes or QA/No) to include the closed issue in milestone
• Public documentation has been updated as necessary. For instance:
  • https://github.com/brave/brave-browser/wiki/Deviations-from-Chromium-(features-we-disable-or-remove)
  • https://github.com/brave/brave-browser/wiki/Proxy-redirected-URLs
  • https://github.com/brave/brave-browser/wiki/Fingerprinting-Protection-Mode
  • https://github.com/brave/brave-browser/wiki/Brave%E2%80%99s-Use-of-Referral-Codes
  • https://github.com/brave/brave-browser/wiki/Custom-Headers
  • https://github.com/brave/brave-browser/wiki/Web-compatibility-issues-with-tracking-protection
  • https://github.com/brave/brave-browser/wiki/QA-Guide

Test Plan:

Majority of tests, covering fine-grained API behavior, are implemented in unit tests within https://github.com/brave/adblock-rust.

FFI behavior is validated by tests in https://github.com/brave/adblock-rust-ffi.

End-to-end browser behavior is verified by preloading custom cosmetic rules into the adblock-rust engine, loading a test page, and verifying that DOM elements show as expected using getComputedStyle.

Reviewer Checklist:

• New files have MPL-2.0 license header.
• Request a security/privacy review as needed.
• Adequate test coverage exists to prevent regressions
• Verify test plan is specified in PR before merging to source

After-merge Checklist:

• The associated issue milestone is set to the smallest version that the
  changes has landed on.
• All relevant documentation has been updated.

[petemill]

This is great. On my first review pass, I was attempting to understand the code architecture via the method / API naming and calls. I couldn't do that so I had to read each function implementation to get a basic understanding. I recommend changing the naming to become more understandable. The API method descriptions in the JSON are clearer and could be a good starting point. Here's some suggestions:

• chrome.braveShields.{get,set}CosmeticFilteredElementsAsync ⟶ {get,set}CosmeticFilteringControlTypeAsync

• chrome.braveShields.hostnameCosmeticResources ⟶ getCosemeticStylesheetForHostname
  Though perhaps ...StyleRules... is less confusing since it returns a string and not a javascript StyleSheet object. Also perhaps create / generate is clearer than get? Behind the scenes is it fetching something or doing some heavy generation work?

• chrome.braveShields.classIdStylesheet ⟶ getCosmeticStyleSheetForElements
  Same considerations as for hostnameCosmeticResources, perhaps ...ForElementSelectors is clearer as it doesn't accept actual DOM Elements, but that's quite long.

[petemill]

) should be on separate line since { is separate line to (

[antonok-edm]

Hmm, not sure what you mean? The first }) matches to ...insertCSS({, the second matches to ...Stylesheet(... => {.

[antonok-edm]

• chrome.braveShields.hostnameCosmeticResources ⟶ getCosemeticStylesheetForHostname
  Though perhaps ...StyleRules... is less confusing since it returns a string and not a javascript StyleSheet object. Also perhaps create / generate is clearer than get? Behind the scenes is it fetching something or doing some heavy generation work?

This actually returns 3 distinct things dependent on the hostname: the stylesheet in string format, a list of exceptions to generic cosmetic rules, and a script to be injected in the page. I figured just calling it a stylesheet might be confusing. I'd lean towards ...StyleRules..., I guess. It is querying saved rules from hashmaps according to the domain and assembling them behind the scenes.

By the way, do you know if there is a convenient way to build a Javascript StyleSheet object as part of the API? That sounds like it would make more sense, although it seems like it would be hard to do on the C++ side / without another layer of wrapping functions.

• chrome.braveShields.classIdStylesheet ⟶ getCosmeticStyleSheetForElements
  Same considerations as for hostnameCosmeticResources, perhaps ...ForElementSelectors is clearer as it doesn't accept actual DOM Elements, but that's quite long.

Perhaps getCosmeticStylesheetForSelectors? Although, again this is "generated/created" in a similar way.

[antonok-edm]

Also just added a toggle in settings corresponding to the new shields panel option.

[szaimen]

Any update here?

[antonok-edm]

@szaimen Still blocked on code reviews for brave/adblock-rust#50 unfortunately

[szaimen]

@antonok-edm any update here now that brave/adblock-rust#50 is merged?

[antonok-edm]

@szaimen #3419 and brave/brave-core-crx-packager#74 are required to fully support brave/adblock-rust#50 in the browser. Cosmetic filtering will be unblocked once that's sorted.

[bbondy]

Can we call this only when injectedScript is empty.
Also checking with @diracdeltas about if we can do this and trust the different lists we use. Are these generic scripts or only in a certain guaranteed format to hide things? Could you give an example of an ABP filter syntax rule that uses it?

[antonok-edm]

The scripts come from the same set of resources as for network redirects.
There are a few extra parameterized templated scriptlets, which were included in the same security review.

Here's an example of a scriptlet injection rule with 1 argument, directly from uBlock's filters:

computerbild.de##+js(abort-on-property-read.js, Date.prototype.toUTCString)

The argument (Date.prototype.toUTCString) is interpolated into this function at the location of the first occurrence of {{1}}, and the resulting function would be used in this executeScript call.

[bbondy]

cc @bridiver is there an observer you know of that we can use in c++ to get the list of IDs and class names on all elements instead of getting them here? It seems a little expensive to do on each page load.

How the API works, is you pass in any class names or IDs that might be used, and then the adblock engine determines the stylesheet to use for blocking.

[antonok-edm]

This is what uBlock Origin does and I haven't found the performance hit to be noticeable in practice, but it would be nice to take advantage of native APIs if possible.

[bbondy]

In practice, do you know how often classIdStylesheet gets hit for pages? Just making sure we're not inserting like 1000 stylesheets. I think maybe we should be debouncing these calls.

[antonok-edm]

It depends entirely on how often the site makes mutations to the page. I can try on a few different ones if you'd like specific examples.
Note that this is already batched on a per-mutation basis - i.e. if a node tree is added, it's only called once for all the classes and ids in the entire tree.

[petemill]

LGTM apart from the small redux point I raised. Let's get CI passing or investigate the issue. Great work!

[bbondy]

Before this gets merged please merge this:
brave/adblock-rust-ffi#7

And then update this changeset ref. As I only want to commit the ref here for things in master on the ffi repo.

[bbondy]

Approved, just one blocking note about the changeset 👍

[antonok-edm]

@petemill

As an aside, is there anywhere documented as to what the various cosmetic filter properties are? In other words, what 'exceptions' are, as opposed to either selectors for hiding, custom CSS rules, custom JS script and whatever else is contained.

Most of how this works is explained in doc comments from adblock-rust. I just double checked and there are a few important data structures that could use some additional explanation, so I'll follow up there as well.

edit: brave/adblock-rust#61

[bridiver]

Jenkins is failing because of some glibc error that does not appear to be related to this PR

[bridiver]

I'm approving this as ok to merge because @antonok-edm has verified the build on linux

[bsclifton]

Reverted with #4255

Note: when this was merged, milestone should have been set @antonok-edm (ex: set milestone to 1.4, set milestone for issue also). I re-opened the issue and left it without a milestone