nw requests to google servers

[VoidVolker]

nwjs 0.13.x

• Switch firewall to learning mode
• Run nwjs and wait few minutes or more
• Firewall will show message about requests from nwjs to google servers

Known IPs:

173.194.122.255
173.194.122.247
173.194.122.248
173.194.122.239

173.194.32.130
173.194.32.143
173.194.32.151
173.194.32.152
173.194.32.159
173.194.32.160
173.194.32.161
173.194.32.163
173.194.32.164
173.194.32.166
173.194.32.167
173.194.32.168
173.194.32.174
173.194.32.175
173.194.32.178
173.194.32.183
173.194.32.184
173.194.32.191

https://groups.google.com/d/msg/nwjs-general/HF7InrhFxqw/FxQGrIcGCAAJ
https://developer.chrome.com/apps/gcm

[orgaralf]

Anyone knows the content of these requests? Usage details, visited sites?

[VoidVolker]

This requests are sends via https to 443 port.

[rogerwang]

@VoidVolker could you please turn log on and set command line argument '--v=1' so it might show what it is doing? See https://www.chromium.org/for-testers/enable-logging on how to enable logging.

And please make sure to clear the user data directory of 'nwjs' app first.

[rogerwang]

GCM is disable now by default. So the requests may not be for GCM.

[VoidVolker]

I need use this command as nw.exe --v=1 or it must me included in package.json?

[rogerwang]

As I said previously, it's a command line argument.

[VoidVolker]

Not reproducing :( Can't catch again - it happens in some random times...

[rogerwang]

I guess removing user data dir would help.

[VoidVolker]

Yes! Thanks - this helps. Logic is next:

• Send request
• If server unavailable (I blocked in firewall) - try again, then go to next IP

In this case here was 2 attempts:

173.194.122.207
173.194.122.223

[rogerwang]

Have you got the log?

[VoidVolker]

Here the log:

[0402/193937:INFO:nw_package.cc(175)] t3.exe --v=1
[0402/193937:ERROR:image_metadata_extractor.cc(114)] Couldn't load libexif. 126
[0402/194007:ERROR:image_metadata_extractor.cc(114)] Couldn't load libexif. 126

Ip lists - in this time there was 4 attempts:

173.194.32.175
173.194.32.191
173.194.32.183
173.194.32.184

[rogerwang]

Your log is very incomplete, it should looks like:

'''
[138914:138914:0403/004455:VERBOSE1:proxy_config_service_linux.cc(1648)] Obtained proxy settings from environment variables
[138914:138914:0403/004455:VERBOSE1:pref_proxy_config_tracker_impl.cc(218)] 0x2cc72f1d3700: set chrome proxy config service to 0x2cc72f0f1580
[138914:138914:0403/004455:VERBOSE1:pref_proxy_config_tracker_impl.cc(355)] 0x2cc72f1d3700: Done pushing proxy to UpdateProxyConfig
[138914:138914:0403/004455:VERBOSE1:app_list_syncable_service_factory.cc(57)] AppListSyncableServiceFactory()
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Pilot' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Aviator' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: DigiCert Log Server
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Rocketeer' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Certly.IO log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Izenpe log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Symantec log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Venafi log
[138914:138914:0403/004455:VERBOSE1:mutable_profile_oauth2_token_service_delegate.cc(137)] MutablePO2TS::MutablePO2TS
[138914:138914:0403/004455:VERBOSE1:bluetooth_low_energy_event_router.cc(194)] Initializing BluetoothLowEnergyEventRouter.
[138914:138914:0403/004455:VERBOSE1:bluetooth_low_energy_event_router.cc(197)] Bluetooth not supported on the current platform.
[138914:138914:0403/004455:VERBOSE1:app_list_syncable_service_factory.cc(47)] BuildInstanceFor: Default (0x2cc72f091d40)
[138914:138914:0403/004455:VERBOSE1:proxy_config_service_linux.cc(1648)] Obtained proxy settings from environment variables
[138914:138914:0403/004455:VERBOSE1:pref_proxy_config_tracker_impl.cc(218)] 0x2cc72f3a4700: set chrome proxy config service to 0x2cc72f403b00
[138914:138914:0403/004455:VERBOSE1:pref_proxy_config_tracker_impl.cc(355)] 0x2cc72f3a4700: Done pushing proxy to UpdateProxyConfig
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Pilot' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Aviator' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: DigiCert Log Server
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Google 'Rocketeer' log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Certly.IO log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Izenpe log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Symantec log
[138914:138930:0403/004455:VERBOSE1:multi_log_ct_verifier.cc(67)] Adding CT log: Venafi log
[139005:139005:0403/004455:VERBOSE1:breakpad_linux.cc(1833)] Non Browser crash dumping enabled for: gpu-process
[139005:139005:0403/004455:VERBOSE1:device_data_manager_x11.cc(179)] X Input extension not available: error=0
Xlib: extension "XInputExtension" missing on display ":1".
[138914:138914:0403/004455:VERBOSE1:extension_service.cc(1535)] AddComponentExtension Chromium PDF Viewer
[138914:138914:0403/004455:VERBOSE1:extension_service.cc(1535)] AddComponentExtension NWJS Default
[138914:138914:0403/004455:VERBOSE1:password_store_factory.cc(203)] Password storage detected desktop environment: (unknown)
[138914:138914:0403/004455:WARNING:password_store_factory.cc(250)] Using basic (unencrypted) store for password storage. See http://code.google.com/p/chromium/wiki/LinuxPasswordStorage for more information about password storage options.
[138914:138914:0403/004455:VERBOSE1:account_reconcilor.cc(70)] AccountReconcilor::AccountReconcilor
[138914:138914:0403/004455:VERBOSE1:account_reconcilor.cc(81)] AccountReconcilor::Initialize
[138914:138914:0403/004455:INFO:startup_browser_creator.cc(790)] loading default app: aafddpmiffkameplnjkglahmbnbgidce
'''

[VoidVolker]

This all, what I have in log.

[rogerwang]

I have to get the full log to know what's happening there. Did you follow the instructions in https://www.chromium.org/for-testers/enable-logging ?

[VoidVolker]

Yes. You can see in log:
[0402/193937:INFO:nw_package.cc(175)] t3.exe --v=1
Cmd log:

nw.exe --enable-logging

[0402/195431:ERROR:image_metadata_extractor.cc(114)] Couldn't load libexif. 126
[0402/195501:ERROR:image_metadata_extractor.cc(114)] Couldn't load libexif. 126
[6396:8404:0402/195513:ERROR:ipc_channel_win.cc(217)] pipe error: 109

[rogerwang]

It's obviously not the full log. So something wrong is obviously happening in either your steps of acquiring log, or a bug in NW logging code.

[VoidVolker]

What else I can do? My actions:

• Delete appdata/nwjs folder
• open cmd in nw.exe home folder
• run command nw.exe --enable-logging or nw.exe --v=1

[rogerwang]

Where did you get the log?

[VoidVolker]

In same dir with nw.exe, file is debug.log

[rogerwang]

If you read the link carefully, you would know it should be 'chrome_debug.log' in the user data directory.

And you need to use both '--enable-logging' and '--v=1'.

[VoidVolker]

Ah... Ok. Here the log - but there nothing information about this requests, if requests is blocked. But, if allow connections:

[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:method, GET)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:authority, www.gstatic.com)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:scheme, https)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:path, /chrome/config/plugins_2/plugins_win.json)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (user-agent, Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.110 Safari/537.36)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (accept-encoding, gzip, deflate)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:authority, www.gstatic.com)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:method, GET)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:path, /chrome/config/plugins_2/plugins_win.json)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:scheme, https)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (accept-encoding, gzip, deflate)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (user-agent, Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.110 Safari/537.36)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:status, 200)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (vary, Accept-Encoding)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-encoding, gzip)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-type, application/json)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (date, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (expires, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (last-modified, Wed, 15 Jul 2015 14:45:00 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (x-content-type-options, nosniff)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (server, sffe)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-length, 1967)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (x-xss-protection, 1; mode=block)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (cache-control, public, max-age=0)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (age, 0)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (:status, 200)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (vary, Accept-Encoding)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-encoding, gzip)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-type, application/json)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (date, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (expires, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (last-modified, Wed, 15 Jul 2015 14:45:00 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (x-content-type-options, nosniff)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (server, sffe)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (content-length, 1967)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (x-xss-protection, 1; mode=block)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (cache-control, public, max-age=0)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(122)] Inserting: (age, 0)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (:status, 200)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (vary, Accept-Encoding)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (content-encoding, gzip)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (content-type, application/json)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (date, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (expires, Sat, 02 Apr 2016 18:20:10 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (last-modified, Wed, 15 Jul 2015 14:45:00 GMT)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (x-content-type-options, nosniff)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (server, sffe)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (content-length, 1967)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (x-xss-protection, 1; mode=block)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (cache-control, public, max-age=0)
[7224:6616:0402/212016:VERBOSE1:spdy_header_block.cc(215)] Inserting: (age, 0)

[rogerwang]

This is fixed in git and will be available in the next nightly build.

[VoidVolker]

Cool! Thanks, Roger.

[rogerwang]

http://dl.nwjs.io/live-build/04-03-2016/a0c1731-06e7d8c-f039027-404e0c2

[VoidVolker]

No more this strange requests. What was this? Requesting plugins list? I'm cheked file http://www.gstatic.com/chrome/config/plugins_2/plugins_win.json - there plugins list, links and mime types.

[rogerwang]

It's plugin metadata used for showing 'chrome://plugins'.

The request is sent to update the local metadata which is builtin in the
release.

On Mon, Apr 4, 2016 at 12:38 AM VoidVolker [email protected] wrote:

No more this strange requests. What was this? Requesting plugins list? I'm
cheked file
http://www.gstatic.com/chrome/config/plugins_2/plugins_win.json - there
plugins list, links and mime types.

—
You are receiving this because you modified the open/close state.
Reply to this email directly or view it on GitHub
#4669 (comment)