Etienne Pierre-Doray (Gerrit)

unread,

Sep 12, 2025, 11:39:10 AM9/12/25

to Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Mikhail Khokhlov

Etienne Pierre-Doray added 1 comment

Patchset-level comments

File-level comment, Patchset 5 (Latest):

Etienne Pierre-Doray . resolved

PTAL

Open in Gerrit

Related details

Attention is currently required from:

Mikhail Khokhlov

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Mikhail Khokhlov (Gerrit)

unread,

Sep 12, 2025, 12:13:41 PM9/12/25

to Etienne Pierre-Doray, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Etienne Pierre-Doray

Mikhail Khokhlov voted Code-Review+1

Code-Review

+1

Open in Gerrit

Related details

Attention is currently required from:

Etienne Pierre-Doray

Submit Requirements:

Code-Coverage
Code-Owners

Code-Review

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Etienne Pierre-Doray (Gerrit)

unread,

Sep 12, 2025, 12:59:26 PM9/12/25

to Nate Fischer, Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Nate Fischer

Etienne Pierre-Doray added 1 comment

Patchset-level comments

File-level comment, Patchset 5 (Latest):

Etienne Pierre-Doray . resolved

+ntf...@chromium.org for android_webview/

Open in Gerrit

Related details

Attention is currently required from:

Nate Fischer

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Nate Fischer (Gerrit)

unread,

Sep 12, 2025, 2:27:16 PM9/12/25

to Etienne Pierre-Doray, Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Etienne Pierre-Doray

Nate Fischer voted and added 1 comment

Votes added by Nate Fischer

Code-Review

+1

1 comment

File android_webview/lib/aw_main_delegate.cc

Line 219, Patchset 5 (Parent): // as is the case by default in aw_tracing_controller.cc

Nate Fischer . unresolved

Does this require changes to aw_tracing_controller.cc? Is this related to https://source.chromium.org/chromium/chromium/src/+/main:android_webview/browser/tracing/aw_tracing_controller.cc;l=88;drc=1df1c1323290afd34f4e594be0f54beb2ee5968d or is this referring to a different filter?

Open in Gerrit

Related details

Attention is currently required from:

Etienne Pierre-Doray

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review
No-Unresolved-Comments

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Etienne Pierre-Doray (Gerrit)

unread,

Nov 27, 2025, 10:10:32 AM11/27/25

to Nate Fischer, Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Nate Fischer

Etienne Pierre-Doray added 1 comment

File android_webview/lib/aw_main_delegate.cc

Line 219, Patchset 5 (Parent): // as is the case by default in aw_tracing_controller.cc

Nate Fischer . unresolved

Does this require changes to aw_tracing_controller.cc? Is this related to https://source.chromium.org/chromium/chromium/src/+/main:android_webview/browser/tracing/aw_tracing_controller.cc;l=88;drc=1df1c1323290afd34f4e594be0f54beb2ee5968d or is this referring to a different filter?

Etienne Pierre-Doray

So apparently TracingController is a public API on webview:
https://developer.android.com/reference/android/webkit/TracingController#start(android.webkit.TracingConfig)
This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).
Removing this would expose a lot more things - I don't know if it makes sense to do so, but the current allowlist doesn't make a lot of sense either. Thoughts?

Open in Gerrit

Related details

Attention is currently required from:

Nate Fischer

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review
No-Unresolved-Comments

Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Nate Fischer (Gerrit)

unread,

Dec 2, 2025, 1:20:15 AM12/2/25

to Etienne Pierre-Doray, Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Etienne Pierre-Doray and Mikhail Khokhlov

Nate Fischer added 1 comment

File android_webview/lib/aw_main_delegate.cc

Line 219, Patchset 5 (Parent): // as is the case by default in aw_tracing_controller.cc

Nate Fischer . unresolved

Does this require changes to aw_tracing_controller.cc? Is this related to https://source.chromium.org/chromium/chromium/src/+/main:android_webview/browser/tracing/aw_tracing_controller.cc;l=88;drc=1df1c1323290afd34f4e594be0f54beb2ee5968d or is this referring to a different filter?

Etienne Pierre-Doray

So apparently TracingController is a public API on webview:
https://developer.android.com/reference/android/webkit/TracingController#start(android.webkit.TracingConfig)
This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).
Removing this would expose a lot more things - I don't know if it makes sense to do so, but the current allowlist doesn't make a lot of sense either. Thoughts?

Nate Fischer

We discussed offline, but is it possible to separate out the chrome change from the WebView change? If so, then I'd like to see if we can put the WebView behavior behind a base::Feature flag to allow us a more cautious rollout.

Open in Gerrit

Related details

Attention is currently required from:

Etienne Pierre-Doray
Mikhail Khokhlov

Submit Requirements:

Code-Coverage
Code-Owners

Code-Review

No-Unresolved-Comments

Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Etienne Pierre-Doray (Gerrit)

unread,

Feb 20, 2026, 1:07:52 PM (7 days ago) Feb 20

to Code Review Nudger, Nate Fischer, Mikhail Khokhlov, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Mikhail Khokhlov and Nate Fischer

Etienne Pierre-Doray added 2 comments

Patchset-level comments

File-level comment, Patchset 11 (Latest):

Etienne Pierre-Doray . resolved

PTAnL?

File android_webview/lib/aw_main_delegate.cc

Line 219, Patchset 5 (Parent): // as is the case by default in aw_tracing_controller.cc

Nate Fischer . unresolved

Does this require changes to aw_tracing_controller.cc? Is this related to https://source.chromium.org/chromium/chromium/src/+/main:android_webview/browser/tracing/aw_tracing_controller.cc;l=88;drc=1df1c1323290afd34f4e594be0f54beb2ee5968d or is this referring to a different filter?

Etienne Pierre-Doray

So apparently TracingController is a public API on webview:
https://developer.android.com/reference/android/webkit/TracingController#start(android.webkit.TracingConfig)
This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).
Removing this would expose a lot more things - I don't know if it makes sense to do so, but the current allowlist doesn't make a lot of sense either. Thoughts?

Nate Fischer

We discussed offline, but is it possible to separate out the chrome change from the WebView change? If so, then I'd like to see if we can put the WebView behavior behind a base::Feature flag to allow us a more cautious rollout.

Etienne Pierre-Doray

This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).

This wasn't quite true, trace events are still emitted, but with no arguments.
Still, doing this will now expose all protos that are privacy reviewed - the same one could get through devtools API.
I added Android.WebView.ApiCall.TracingController which shows this API is mostly unused - O(10) API calls - probably only for local debuging.

Open in Gerrit

Related details

Attention is currently required from:

Mikhail Khokhlov
Nate Fischer

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review
No-Unresolved-Comments
Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Mikhail Khokhlov (Gerrit)

unread,

Feb 23, 2026, 5:18:23 AM (5 days ago) Feb 23

to Etienne Pierre-Doray, Code Review Nudger, Nate Fischer, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Etienne Pierre-Doray and Nate Fischer

Mikhail Khokhlov voted Code-Review+1

Code-Review

+1

Open in Gerrit

Related details

Attention is currently required from:

Etienne Pierre-Doray
Nate Fischer

Submit Requirements:

Code-Coverage
Code-Owners

Code-Review

No-Unresolved-Comments

Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

unsatisfied_requirement

open

diffy

Nate Fischer (Gerrit)

unread,

Feb 25, 2026, 12:59:15 AM (3 days ago) Feb 25

to Etienne Pierre-Doray, Mikhail Khokhlov, Code Review Nudger, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Attention needed from Etienne Pierre-Doray

Nate Fischer voted and added 1 comment

Votes added by Nate Fischer

Code-Review

+1

1 comment

File android_webview/lib/aw_main_delegate.cc

Line 219, Patchset 5 (Parent): // as is the case by default in aw_tracing_controller.cc

Nate Fischer . resolved

Does this require changes to aw_tracing_controller.cc? Is this related to https://source.chromium.org/chromium/chromium/src/+/main:android_webview/browser/tracing/aw_tracing_controller.cc;l=88;drc=1df1c1323290afd34f4e594be0f54beb2ee5968d or is this referring to a different filter?

Etienne Pierre-Doray

So apparently TracingController is a public API on webview:
https://developer.android.com/reference/android/webkit/TracingController#start(android.webkit.TracingConfig)
This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).
Removing this would expose a lot more things - I don't know if it makes sense to do so, but the current allowlist doesn't make a lot of sense either. Thoughts?

Nate Fischer

We discussed offline, but is it possible to separate out the chrome change from the WebView change? If so, then I'd like to see if we can put the WebView behavior behind a base::Feature flag to allow us a more cautious rollout.

Etienne Pierre-Doray

This is a bit silly though, because the allowlist as-is only allows collecting memory-infra (heap dumps).
This wasn't quite true, trace events are still emitted, but with no arguments.
Still, doing this will now expose all protos that are privacy reviewed - the same one could get through devtools API.
I added Android.WebView.ApiCall.TracingController which shows this API is mostly unused - O(10) API calls - probably only for local debuging.

Nate Fischer

Acknowledged

Open in Gerrit

Related details

Attention is currently required from:

Etienne Pierre-Doray

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review

Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

open

diffy

Etienne Pierre-Doray (Gerrit)

unread,

Feb 27, 2026, 8:00:56 AM (16 hours ago) Feb 27

to Nate Fischer, Mikhail Khokhlov, Code Review Nudger, Chromium LUCI CQ, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Etienne Pierre-Doray voted Commit-Queue+2

Commit-Queue

+2

Open in Gerrit

Related details

Attention set is empty

Submit Requirements:

Code-Coverage
Code-Owners
Code-Review
Review-Enforcement

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

satisfied_requirement

open

diffy

Chromium LUCI CQ (Gerrit)

unread,

Feb 27, 2026, 9:14:13 AM (15 hours ago) Feb 27

to Etienne Pierre-Doray, Nate Fischer, Mikhail Khokhlov, Code Review Nudger, chromium...@chromium.org, android-web...@chromium.org, spang...@chromium.org, tracing...@chromium.org, wfh+...@chromium.org

Chromium LUCI CQ submitted the change

Change information

Commit message:

[tracing] Remove json allowlist

This CL removes json args allow list.
The allowlist is unnecessary because privacy filters
are now always run before JSON conversion when requested.

Change-Id: I5707278b6b6d876a435e9dc285b5c0bcb79cf15d

Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/6941309

Reviewed-by: Mikhail Khokhlov <khok...@google.com>

Commit-Queue: Etienne Pierre-Doray <etie...@chromium.org>

Reviewed-by: Nate Fischer <ntf...@chromium.org>

Cr-Commit-Position: refs/heads/main@{#1591517}

Files:

M android_webview/browser/BUILD.gn
D android_webview/browser/tracing/aw_trace_event_args_allowlist.cc
D android_webview/browser/tracing/aw_trace_event_args_allowlist.h
M android_webview/lib/aw_main_delegate.cc
M base/trace_event/trace_log.cc
M base/trace_event/trace_log.h
M services/tracing/perfetto/consumer_host.cc
M services/tracing/perfetto/consumer_host_unittest.cc
M services/tracing/public/cpp/BUILD.gn
D services/tracing/public/cpp/trace_event_args_allowlist.cc
D services/tracing/public/cpp/trace_event_args_allowlist.h
M services/tracing/public/cpp/trace_startup.cc

Change size: L

Delta: 12 files changed, 1 insertion(+), 442 deletions(-)

Branch: refs/heads/main

Submit Requirements:

Code-Review: +1 by Nate Fischer, +1 by Mikhail Khokhlov

Open in Gerrit

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

open

diffy

satisfied_requirement

Reply all

Reply to author

Forward

[tracing] Remove json allowlist [chromium/src : main]

Etienne Pierre-Doray (Gerrit)

Etienne Pierre-Doray added 1 comment

Related details

Mikhail Khokhlov (Gerrit)

Mikhail Khokhlov voted Code-Review+1

Related details

Etienne Pierre-Doray (Gerrit)

Etienne Pierre-Doray added 1 comment

Related details

Nate Fischer (Gerrit)

Nate Fischer voted and added 1 comment

Votes added by Nate Fischer

1 comment

Related details

Etienne Pierre-Doray (Gerrit)

Etienne Pierre-Doray added 1 comment

Related details

Nate Fischer (Gerrit)

Nate Fischer added 1 comment

Related details

Etienne Pierre-Doray (Gerrit)

Etienne Pierre-Doray added 2 comments

Related details

Mikhail Khokhlov (Gerrit)

Mikhail Khokhlov voted Code-Review+1

Related details

Nate Fischer (Gerrit)

Nate Fischer voted and added 1 comment

Votes added by Nate Fischer

1 comment

Related details

Etienne Pierre-Doray (Gerrit)

Etienne Pierre-Doray voted Commit-Queue+2

Related details

Chromium LUCI CQ (Gerrit)

Chromium LUCI CQ submitted the change

Change information