1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. 2 // Use of this source code is governed by a BSD-style license that can be 3 // found in the LICENSE file. 4 5 // Brought to you by the letter D and the number 2. 6 7 #ifndef NET_COOKIES_COOKIE_MONSTER_H_ 8 #define NET_COOKIES_COOKIE_MONSTER_H_ 9 10 #include <deque> 11 #include <map> 12 #include <queue> 13 #include <set> 14 #include <string> 15 #include <utility> 16 #include <vector> 17 18 #include "base/basictypes.h" 19 #include "base/callback_forward.h" 20 #include "base/gtest_prod_util.h" 21 #include "base/memory/ref_counted.h" 22 #include "base/memory/scoped_ptr.h" 23 #include "base/synchronization/lock.h" 24 #include "base/time/time.h" 25 #include "net/base/net_export.h" 26 #include "net/cookies/canonical_cookie.h" 27 #include "net/cookies/cookie_constants.h" 28 #include "net/cookies/cookie_store.h" 29 30 class GURL; 31 32 namespace base { 33 class Histogram; 34 class HistogramBase; 35 class TimeTicks; 36 } // namespace base 37 38 namespace net { 39 40 class CookieMonsterDelegate; 41 class ParsedCookie; 42 43 // The cookie monster is the system for storing and retrieving cookies. It has 44 // an in-memory list of all cookies, and synchronizes non-session cookies to an 45 // optional permanent storage that implements the PersistentCookieStore 46 // interface. 47 // 48 // This class IS thread-safe. Normally, it is only used on the I/O thread, but 49 // is also accessed directly through Automation for UI testing. 50 // 51 // All cookie tasks are handled asynchronously. Tasks may be deferred if 52 // all affected cookies are not yet loaded from the backing store. Otherwise, 53 // the callback may be invoked immediately (prior to return of the asynchronous 54 // function). 55 // 56 // A cookie task is either pending loading of the entire cookie store, or 57 // loading of cookies for a specfic domain key(eTLD+1). In the former case, the 58 // cookie task will be queued in tasks_pending_ while PersistentCookieStore 59 // chain loads the cookie store on DB thread. In the latter case, the cookie 60 // task will be queued in tasks_pending_for_key_ while PermanentCookieStore 61 // loads cookies for the specified domain key(eTLD+1) on DB thread. 62 // 63 // Callbacks are guaranteed to be invoked on the calling thread. 64 // 65 // TODO(deanm) Implement CookieMonster, the cookie database. 66 // - Verify that our domain enforcement and non-dotted handling is correct 67 class NET_EXPORT CookieMonster : public CookieStore { 68 public: 69 class PersistentCookieStore; 70 typedef CookieMonsterDelegate Delegate; 71 72 // Terminology: 73 // * The 'top level domain' (TLD) of an internet domain name is 74 // the terminal "." free substring (e.g. "com" for google.com 75 // or world.std.com). 76 // * The 'effective top level domain' (eTLD) is the longest 77 // "." initiated terminal substring of an internet domain name 78 // that is controlled by a general domain registrar. 79 // (e.g. "co.uk" for news.bbc.co.uk). 80 // * The 'effective top level domain plus one' (eTLD+1) is the 81 // shortest "." delimited terminal substring of an internet 82 // domain name that is not controlled by a general domain 83 // registrar (e.g. "bbc.co.uk" for news.bbc.co.uk, or 84 // "google.com" for news.google.com). The general assumption 85 // is that all hosts and domains under an eTLD+1 share some 86 // administrative control. 87 88 // CookieMap is the central data structure of the CookieMonster. It 89 // is a map whose values are pointers to CanonicalCookie data 90 // structures (the data structures are owned by the CookieMonster 91 // and must be destroyed when removed from the map). The key is based on the 92 // effective domain of the cookies. If the domain of the cookie has an 93 // eTLD+1, that is the key for the map. If the domain of the cookie does not 94 // have an eTLD+1, the key of the map is the host the cookie applies to (it is 95 // not legal to have domain cookies without an eTLD+1). This rule 96 // excludes cookies for, e.g, ".com", ".co.uk", or ".internalnetwork". 97 // This behavior is the same as the behavior in Firefox v 3.6.10. 98 99 // NOTE(deanm): 100 // I benchmarked hash_multimap vs multimap. We're going to be query-heavy 101 // so it would seem like hashing would help. However they were very 102 // close, with multimap being a tiny bit faster. I think this is because 103 // our map is at max around 1000 entries, and the additional complexity 104 // for the hashing might not overcome the O(log(1000)) for querying 105 // a multimap. Also, multimap is standard, another reason to use it. 106 // TODO(rdsmith): This benchmark should be re-done now that we're allowing 107 // subtantially more entries in the map. 108 typedef std::multimap<std::string, CanonicalCookie*> CookieMap; 109 typedef std::pair<CookieMap::iterator, CookieMap::iterator> CookieMapItPair; 110 typedef std::vector<CookieMap::iterator> CookieItVector; 111 112 // Cookie garbage collection thresholds. Based off of the Mozilla defaults. 113 // When the number of cookies gets to k{Domain,}MaxCookies 114 // purge down to k{Domain,}MaxCookies - k{Domain,}PurgeCookies. 115 // It might seem scary to have a high purge value, but really it's not. 116 // You just make sure that you increase the max to cover the increase 117 // in purge, and we would have been purging the same number of cookies. 118 // We're just going through the garbage collection process less often. 119 // Note that the DOMAIN values are per eTLD+1; see comment for the 120 // CookieMap typedef. So, e.g., the maximum number of cookies allowed for 121 // google.com and all of its subdomains will be 150-180. 122 // 123 // Any cookies accessed more recently than kSafeFromGlobalPurgeDays will not 124 // be evicted by global garbage collection, even if we have more than 125 // kMaxCookies. This does not affect domain garbage collection. 126 static const size_t kDomainMaxCookies; 127 static const size_t kDomainPurgeCookies; 128 static const size_t kMaxCookies; 129 static const size_t kPurgeCookies; 130 131 // Quota for cookies with {low, medium, high} priorities within a domain. 132 static const size_t kDomainCookiesQuotaLow; 133 static const size_t kDomainCookiesQuotaMedium; 134 static const size_t kDomainCookiesQuotaHigh; 135 136 // The store passed in should not have had Init() called on it yet. This 137 // class will take care of initializing it. The backing store is NOT owned by 138 // this class, but it must remain valid for the duration of the cookie 139 // monster's existence. If |store| is NULL, then no backing store will be 140 // updated. If |delegate| is non-NULL, it will be notified on 141 // creation/deletion of cookies. 142 CookieMonster(PersistentCookieStore* store, CookieMonsterDelegate* delegate); 143 144 // Only used during unit testing. 145 CookieMonster(PersistentCookieStore* store, 146 CookieMonsterDelegate* delegate, 147 int last_access_threshold_milliseconds); 148 149 // Helper function that adds all cookies from |list| into this instance. 150 bool InitializeFrom(const CookieList& list); 151 152 typedef base::Callback<void(const CookieList& cookies)> GetCookieListCallback; 153 typedef base::Callback<void(bool success)> DeleteCookieCallback; 154 typedef base::Callback<void(bool cookies_exist)> HasCookiesForETLDP1Callback; 155 156 // Sets a cookie given explicit user-provided cookie attributes. The cookie 157 // name, value, domain, etc. are each provided as separate strings. This 158 // function expects each attribute to be well-formed. It will check for 159 // disallowed characters (e.g. the ';' character is disallowed within the 160 // cookie value attribute) and will return false without setting the cookie 161 // if such characters are found. 162 void SetCookieWithDetailsAsync(const GURL& url, 163 const std::string& name, 164 const std::string& value, 165 const std::string& domain, 166 const std::string& path, 167 const base::Time& expiration_time, 168 bool secure, 169 bool http_only, 170 CookiePriority priority, 171 const SetCookiesCallback& callback); 172 173 174 // Returns all the cookies, for use in management UI, etc. This does not mark 175 // the cookies as having been accessed. 176 // The returned cookies are ordered by longest path, then by earliest 177 // creation date. 178 void GetAllCookiesAsync(const GetCookieListCallback& callback); 179 180 // Returns all the cookies, for use in management UI, etc. Filters results 181 // using given url scheme, host / domain and path and options. This does not 182 // mark the cookies as having been accessed. 183 // The returned cookies are ordered by longest path, then earliest 184 // creation date. 185 void GetAllCookiesForURLWithOptionsAsync( 186 const GURL& url, 187 const CookieOptions& options, 188 const GetCookieListCallback& callback); 189 190 // Deletes all of the cookies. 191 void DeleteAllAsync(const DeleteCallback& callback); 192 193 // Deletes all cookies that match the host of the given URL 194 // regardless of path. This includes all http_only and secure cookies, 195 // but does not include any domain cookies that may apply to this host. 196 // Returns the number of cookies deleted. 197 void DeleteAllForHostAsync(const GURL& url, 198 const DeleteCallback& callback); 199 200 // Deletes one specific cookie. 201 void DeleteCanonicalCookieAsync(const CanonicalCookie& cookie, 202 const DeleteCookieCallback& callback); 203 204 // Checks whether for a given ETLD+1, there currently exist any cookies. 205 void HasCookiesForETLDP1Async(const std::string& etldp1, 206 const HasCookiesForETLDP1Callback& callback); 207 208 // Resets the list of cookieable schemes to the supplied schemes. 209 // If this this method is called, it must be called before first use of 210 // the instance (i.e. as part of the instance initialization process). 211 void SetCookieableSchemes(const char* schemes[], size_t num_schemes); 212 213 // Resets the list of cookieable schemes to kDefaultCookieableSchemes with or 214 // without 'file' being included. 215 // 216 // There are some unknowns about how to correctly handle file:// cookies, 217 // and our implementation for this is not robust enough. This allows you 218 // to enable support, but it should only be used for testing. Bug 1157243. 219 void SetEnableFileScheme(bool accept); 220 221 // Instructs the cookie monster to not delete expired cookies. This is used 222 // in cases where the cookie monster is used as a data structure to keep 223 // arbitrary cookies. 224 void SetKeepExpiredCookies(); 225 226 // Protects session cookies from deletion on shutdown. 227 void SetForceKeepSessionState(); 228 229 // Flush the backing store (if any) to disk and post the given callback when 230 // done. 231 // WARNING: THE CALLBACK WILL RUN ON A RANDOM THREAD. IT MUST BE THREAD SAFE. 232 // It may be posted to the current thread, or it may run on the thread that 233 // actually does the flushing. Your Task should generally post a notification 234 // to the thread you actually want to be notified on. 235 void FlushStore(const base::Closure& callback); 236 237 // CookieStore implementation. 238 239 // Sets the cookies specified by |cookie_list| returned from |url| 240 // with options |options| in effect. 241 virtual void SetCookieWithOptionsAsync( 242 const GURL& url, 243 const std::string& cookie_line, 244 const CookieOptions& options, 245 const SetCookiesCallback& callback) OVERRIDE; 246 247 // Gets all cookies that apply to |url| given |options|. 248 // The returned cookies are ordered by longest path, then earliest 249 // creation date. 250 virtual void GetCookiesWithOptionsAsync( 251 const GURL& url, 252 const CookieOptions& options, 253 const GetCookiesCallback& callback) OVERRIDE; 254 255 // Invokes GetAllCookiesForURLWithOptions with options set to include HTTP 256 // only cookies. 257 virtual void GetAllCookiesForURLAsync( 258 const GURL& url, 259 const GetCookieListCallback& callback) OVERRIDE; 260 261 // Deletes all cookies with that might apply to |url| that has |cookie_name|. 262 virtual void DeleteCookieAsync( 263 const GURL& url, const std::string& cookie_name, 264 const base::Closure& callback) OVERRIDE; 265 266 // Deletes all of the cookies that have a creation_date greater than or equal 267 // to |delete_begin| and less than |delete_end|. 268 // Returns the number of cookies that have been deleted. 269 virtual void DeleteAllCreatedBetweenAsync( 270 const base::Time& delete_begin, 271 const base::Time& delete_end, 272 const DeleteCallback& callback) OVERRIDE; 273 274 // Deletes all of the cookies that match the host of the given URL 275 // regardless of path and that have a creation_date greater than or 276 // equal to |delete_begin| and less then |delete_end|. This includes 277 // all http_only and secure cookies, but does not include any domain 278 // cookies that may apply to this host. 279 // Returns the number of cookies deleted. 280 virtual void DeleteAllCreatedBetweenForHostAsync( 281 const base::Time delete_begin, 282 const base::Time delete_end, 283 const GURL& url, 284 const DeleteCallback& callback) OVERRIDE; 285 286 virtual void DeleteSessionCookiesAsync(const DeleteCallback&) OVERRIDE; 287 288 virtual CookieMonster* GetCookieMonster() OVERRIDE; 289 290 // Enables writing session cookies into the cookie database. If this this 291 // method is called, it must be called before first use of the instance 292 // (i.e. as part of the instance initialization process). 293 void SetPersistSessionCookies(bool persist_session_cookies); 294 295 // Debugging method to perform various validation checks on the map. 296 // Currently just checking that there are no null CanonicalCookie pointers 297 // in the map. 298 // Argument |arg| is to allow retaining of arbitrary data if the CHECKs 299 // in the function trip. TODO(rdsmith):Remove hack. 300 void ValidateMap(int arg); 301 302 // Determines if the scheme of the URL is a scheme that cookies will be 303 // stored for. 304 bool IsCookieableScheme(const std::string& scheme); 305 306 // The default list of schemes the cookie monster can handle. 307 static const char* kDefaultCookieableSchemes[]; 308 static const int kDefaultCookieableSchemesCount; 309 310 // Copies all keys for the given |key| to another cookie monster |other|. 311 // Both |other| and |this| must be loaded for this operation to succeed. 312 // Furthermore, there may not be any cookies stored in |other| for |key|. 313 // Returns false if any of these conditions is not met. 314 bool CopyCookiesForKeyToOtherCookieMonster(std::string key, 315 CookieMonster* other); 316 317 // Find the key (for lookup in cookies_) based on the given domain. 318 // See comment on keys before the CookieMap typedef. 319 std::string GetKey(const std::string& domain) const; 320 321 bool loaded(); 322 323 private: 324 // For queueing the cookie monster calls. 325 class CookieMonsterTask; 326 template <typename Result> class DeleteTask; 327 class DeleteAllCreatedBetweenTask; 328 class DeleteAllCreatedBetweenForHostTask; 329 class DeleteAllForHostTask; 330 class DeleteAllTask; 331 class DeleteCookieTask; 332 class DeleteCanonicalCookieTask; 333 class GetAllCookiesForURLWithOptionsTask; 334 class GetAllCookiesTask; 335 class GetCookiesWithOptionsTask; 336 class SetCookieWithDetailsTask; 337 class SetCookieWithOptionsTask; 338 class DeleteSessionCookiesTask; 339 class HasCookiesForETLDP1Task; 340 341 // Testing support. 342 // For SetCookieWithCreationTime. 343 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, 344 TestCookieDeleteAllCreatedBetweenTimestamps); 345 // For SetCookieWithCreationTime. 346 FRIEND_TEST_ALL_PREFIXES(MultiThreadedCookieMonsterTest, 347 ThreadCheckDeleteAllCreatedBetweenForHost); 348 349 // For gargage collection constants. 350 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestHostGarbageCollection); 351 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestTotalGarbageCollection); 352 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, GarbageCollectionTriggers); 353 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestGCTimes); 354 355 // For validation of key values. 356 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestDomainTree); 357 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestImport); 358 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, GetKey); 359 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, TestGetKey); 360 361 // For FindCookiesForKey. 362 FRIEND_TEST_ALL_PREFIXES(CookieMonsterTest, ShortLivedSessionCookies); 363 364 // Internal reasons for deletion, used to populate informative histograms 365 // and to provide a public cause for onCookieChange notifications. 366 // 367 // If you add or remove causes from this list, please be sure to also update 368 // the CookieMonsterDelegate::ChangeCause mapping inside ChangeCauseMapping. 369 // Moreover, these are used as array indexes, so avoid reordering to keep the 370 // histogram buckets consistent. New items (if necessary) should be added 371 // at the end of the list, just before DELETE_COOKIE_LAST_ENTRY. 372 enum DeletionCause { 373 DELETE_COOKIE_EXPLICIT = 0, 374 DELETE_COOKIE_OVERWRITE, 375 DELETE_COOKIE_EXPIRED, 376 DELETE_COOKIE_EVICTED, 377 DELETE_COOKIE_DUPLICATE_IN_BACKING_STORE, 378 DELETE_COOKIE_DONT_RECORD, // e.g. For final cleanup after flush to store. 379 DELETE_COOKIE_EVICTED_DOMAIN, 380 DELETE_COOKIE_EVICTED_GLOBAL, 381 382 // Cookies evicted during domain level garbage collection that 383 // were accessed longer ago than kSafeFromGlobalPurgeDays 384 DELETE_COOKIE_EVICTED_DOMAIN_PRE_SAFE, 385 386 // Cookies evicted during domain level garbage collection that 387 // were accessed more recently than kSafeFromGlobalPurgeDays 388 // (and thus would have been preserved by global garbage collection). 389 DELETE_COOKIE_EVICTED_DOMAIN_POST_SAFE, 390 391 // A common idiom is to remove a cookie by overwriting it with an 392 // already-expired expiration date. This captures that case. 393 DELETE_COOKIE_EXPIRED_OVERWRITE, 394 395 // Cookies are not allowed to contain control characters in the name or 396 // value. However, we used to allow them, so we are now evicting any such 397 // cookies as we load them. See http://crbug.com/238041. 398 DELETE_COOKIE_CONTROL_CHAR, 399 400 DELETE_COOKIE_LAST_ENTRY 401 }; 402 403 // The number of days since last access that cookies will not be subject 404 // to global garbage collection. 405 static const int kSafeFromGlobalPurgeDays; 406 407 // Record statistics every kRecordStatisticsIntervalSeconds of uptime. 408 static const int kRecordStatisticsIntervalSeconds = 10 * 60; 409 410 virtual ~CookieMonster(); 411 412 // The following are synchronous calls to which the asynchronous methods 413 // delegate either immediately (if the store is loaded) or through a deferred 414 // task (if the store is not yet loaded). 415 bool SetCookieWithDetails(const GURL& url, 416 const std::string& name, 417 const std::string& value, 418 const std::string& domain, 419 const std::string& path, 420 const base::Time& expiration_time, 421 bool secure, 422 bool http_only, 423 CookiePriority priority); 424 425 CookieList GetAllCookies(); 426 427 CookieList GetAllCookiesForURLWithOptions(const GURL& url, 428 const CookieOptions& options); 429 430 CookieList GetAllCookiesForURL(const GURL& url); 431 432 int DeleteAll(bool sync_to_store); 433 434 int DeleteAllCreatedBetween(const base::Time& delete_begin, 435 const base::Time& delete_end); 436 437 int DeleteAllForHost(const GURL& url); 438 int DeleteAllCreatedBetweenForHost(const base::Time delete_begin, 439 const base::Time delete_end, 440 const GURL& url); 441 442 bool DeleteCanonicalCookie(const CanonicalCookie& cookie); 443 444 bool SetCookieWithOptions(const GURL& url, 445 const std::string& cookie_line, 446 const CookieOptions& options); 447 448 std::string GetCookiesWithOptions(const GURL& url, 449 const CookieOptions& options); 450 451 void DeleteCookie(const GURL& url, const std::string& cookie_name); 452 453 bool SetCookieWithCreationTime(const GURL& url, 454 const std::string& cookie_line, 455 const base::Time& creation_time); 456 457 int DeleteSessionCookies(); 458 459 bool HasCookiesForETLDP1(const std::string& etldp1); 460 461 // Called by all non-static functions to ensure that the cookies store has 462 // been initialized. This is not done during creating so it doesn't block 463 // the window showing. 464 // Note: this method should always be called with lock_ held. InitIfNecessary()465 void InitIfNecessary() { 466 if (!initialized_) { 467 if (store_.get()) { 468 InitStore(); 469 } else { 470 loaded_ = true; 471 ReportLoaded(); 472 } 473 initialized_ = true; 474 } 475 } 476 477 // Initializes the backing store and reads existing cookies from it. 478 // Should only be called by InitIfNecessary(). 479 void InitStore(); 480 481 // Reports to the delegate that the cookie monster was loaded. 482 void ReportLoaded(); 483 484 // Stores cookies loaded from the backing store and invokes any deferred 485 // calls. |beginning_time| should be the moment PersistentCookieStore::Load 486 // was invoked and is used for reporting histogram_time_blocked_on_load_. 487 // See PersistentCookieStore::Load for details on the contents of cookies. 488 void OnLoaded(base::TimeTicks beginning_time, 489 const std::vector<CanonicalCookie*>& cookies); 490 491 // Stores cookies loaded from the backing store and invokes the deferred 492 // task(s) pending loading of cookies associated with the domain key 493 // (eTLD+1). Called when all cookies for the domain key(eTLD+1) have been 494 // loaded from DB. See PersistentCookieStore::Load for details on the contents 495 // of cookies. 496 void OnKeyLoaded( 497 const std::string& key, 498 const std::vector<CanonicalCookie*>& cookies); 499 500 // Stores the loaded cookies. 501 void StoreLoadedCookies(const std::vector<CanonicalCookie*>& cookies); 502 503 // Invokes deferred calls. 504 void InvokeQueue(); 505 506 // Checks that |cookies_| matches our invariants, and tries to repair any 507 // inconsistencies. (In other words, it does not have duplicate cookies). 508 void EnsureCookiesMapIsValid(); 509 510 // Checks for any duplicate cookies for CookieMap key |key| which lie between 511 // |begin| and |end|. If any are found, all but the most recent are deleted. 512 // Returns the number of duplicate cookies that were deleted. 513 int TrimDuplicateCookiesForKey(const std::string& key, 514 CookieMap::iterator begin, 515 CookieMap::iterator end); 516 517 void SetDefaultCookieableSchemes(); 518 519 void FindCookiesForHostAndDomain(const GURL& url, 520 const CookieOptions& options, 521 bool update_access_time, 522 std::vector<CanonicalCookie*>* cookies); 523 524 void FindCookiesForKey(const std::string& key, 525 const GURL& url, 526 const CookieOptions& options, 527 const base::Time& current, 528 bool update_access_time, 529 std::vector<CanonicalCookie*>* cookies); 530 531 // Delete any cookies that are equivalent to |ecc| (same path, domain, etc). 532 // If |skip_httponly| is true, httponly cookies will not be deleted. The 533 // return value with be true if |skip_httponly| skipped an httponly cookie. 534 // |key| is the key to find the cookie in cookies_; see the comment before 535 // the CookieMap typedef for details. 536 // NOTE: There should never be more than a single matching equivalent cookie. 537 bool DeleteAnyEquivalentCookie(const std::string& key, 538 const CanonicalCookie& ecc, 539 bool skip_httponly, 540 bool already_expired); 541 542 // Takes ownership of *cc. Returns an iterator that points to the inserted 543 // cookie in cookies_. Guarantee: all iterators to cookies_ remain valid. 544 CookieMap::iterator InternalInsertCookie(const std::string& key, 545 CanonicalCookie* cc, 546 bool sync_to_store); 547 548 // Helper function that sets cookies with more control. 549 // Not exposed as we don't want callers to have the ability 550 // to specify (potentially duplicate) creation times. 551 bool SetCookieWithCreationTimeAndOptions(const GURL& url, 552 const std::string& cookie_line, 553 const base::Time& creation_time, 554 const CookieOptions& options); 555 556 // Helper function that sets a canonical cookie, deleting equivalents and 557 // performing garbage collection. 558 bool SetCanonicalCookie(scoped_ptr<CanonicalCookie>* cc, 559 const base::Time& creation_time, 560 const CookieOptions& options); 561 562 void InternalUpdateCookieAccessTime(CanonicalCookie* cc, 563 const base::Time& current_time); 564 565 // |deletion_cause| argument is used for collecting statistics and choosing 566 // the correct CookieMonsterDelegate::ChangeCause for OnCookieChanged 567 // notifications. Guarantee: All iterators to cookies_ except to the 568 // deleted entry remain vaild. 569 void InternalDeleteCookie(CookieMap::iterator it, bool sync_to_store, 570 DeletionCause deletion_cause); 571 572 // If the number of cookies for CookieMap key |key|, or globally, are 573 // over the preset maximums above, garbage collect, first for the host and 574 // then globally. See comments above garbage collection threshold 575 // constants for details. 576 // 577 // Returns the number of cookies deleted (useful for debugging). 578 int GarbageCollect(const base::Time& current, const std::string& key); 579 580 // Helper for GarbageCollect(); can be called directly as well. Deletes 581 // all expired cookies in |itpair|. If |cookie_its| is non-NULL, it is 582 // populated with all the non-expired cookies from |itpair|. 583 // 584 // Returns the number of cookies deleted. 585 int GarbageCollectExpired(const base::Time& current, 586 const CookieMapItPair& itpair, 587 std::vector<CookieMap::iterator>* cookie_its); 588 589 // Helper for GarbageCollect(). Deletes all cookies in the range specified by 590 // [|it_begin|, |it_end|). Returns the number of cookies deleted. 591 int GarbageCollectDeleteRange(const base::Time& current, 592 DeletionCause cause, 593 CookieItVector::iterator cookie_its_begin, 594 CookieItVector::iterator cookie_its_end); 595 596 bool HasCookieableScheme(const GURL& url); 597 598 // Statistics support 599 600 // This function should be called repeatedly, and will record 601 // statistics if a sufficient time period has passed. 602 void RecordPeriodicStats(const base::Time& current_time); 603 604 // Initialize the above variables; should only be called from 605 // the constructor. 606 void InitializeHistograms(); 607 608 // The resolution of our time isn't enough, so we do something 609 // ugly and increment when we've seen the same time twice. 610 base::Time CurrentTime(); 611 612 // Runs the task if, or defers the task until, the full cookie database is 613 // loaded. 614 void DoCookieTask(const scoped_refptr<CookieMonsterTask>& task_item); 615 616 // Runs the task if, or defers the task until, the cookies for the given URL 617 // are loaded. 618 void DoCookieTaskForURL(const scoped_refptr<CookieMonsterTask>& task_item, 619 const GURL& url); 620 621 // Histogram variables; see CookieMonster::InitializeHistograms() in 622 // cookie_monster.cc for details. 623 base::HistogramBase* histogram_expiration_duration_minutes_; 624 base::HistogramBase* histogram_between_access_interval_minutes_; 625 base::HistogramBase* histogram_evicted_last_access_minutes_; 626 base::HistogramBase* histogram_count_; 627 base::HistogramBase* histogram_domain_count_; 628 base::HistogramBase* histogram_etldp1_count_; 629 base::HistogramBase* histogram_domain_per_etldp1_count_; 630 base::HistogramBase* histogram_number_duplicate_db_cookies_; 631 base::HistogramBase* histogram_cookie_deletion_cause_; 632 base::HistogramBase* histogram_time_get_; 633 base::HistogramBase* histogram_time_mac_; 634 base::HistogramBase* histogram_time_blocked_on_load_; 635 636 CookieMap cookies_; 637 638 // Indicates whether the cookie store has been initialized. This happens 639 // lazily in InitStoreIfNecessary(). 640 bool initialized_; 641 642 // Indicates whether loading from the backend store is completed and 643 // calls may be immediately processed. 644 bool loaded_; 645 646 // List of domain keys that have been loaded from the DB. 647 std::set<std::string> keys_loaded_; 648 649 // Map of domain keys to their associated task queues. These tasks are blocked 650 // until all cookies for the associated domain key eTLD+1 are loaded from the 651 // backend store. 652 std::map<std::string, std::deque<scoped_refptr<CookieMonsterTask> > > 653 tasks_pending_for_key_; 654 655 // Queues tasks that are blocked until all cookies are loaded from the backend 656 // store. 657 std::queue<scoped_refptr<CookieMonsterTask> > tasks_pending_; 658 659 scoped_refptr<PersistentCookieStore> store_; 660 661 base::Time last_time_seen_; 662 663 // Minimum delay after updating a cookie's LastAccessDate before we will 664 // update it again. 665 const base::TimeDelta last_access_threshold_; 666 667 // Approximate date of access time of least recently accessed cookie 668 // in |cookies_|. Note that this is not guaranteed to be accurate, only a) 669 // to be before or equal to the actual time, and b) to be accurate 670 // immediately after a garbage collection that scans through all the cookies. 671 // This value is used to determine whether global garbage collection might 672 // find cookies to purge. 673 // Note: The default Time() constructor will create a value that compares 674 // earlier than any other time value, which is wanted. Thus this 675 // value is not initialized. 676 base::Time earliest_access_time_; 677 678 // During loading, holds the set of all loaded cookie creation times. Used to 679 // avoid ever letting cookies with duplicate creation times into the store; 680 // that way we don't have to worry about what sections of code are safe 681 // to call while it's in that state. 682 std::set<int64> creation_times_; 683 684 std::vector<std::string> cookieable_schemes_; 685 686 scoped_refptr<CookieMonsterDelegate> delegate_; 687 688 // Lock for thread-safety 689 base::Lock lock_; 690 691 base::Time last_statistic_record_time_; 692 693 bool keep_expired_cookies_; 694 bool persist_session_cookies_; 695 696 // Static setting for whether or not file scheme cookies are allows when 697 // a new CookieMonster is created, or the accepted schemes on a CookieMonster 698 // instance are reset back to defaults. 699 static bool default_enable_file_scheme_; 700 701 DISALLOW_COPY_AND_ASSIGN(CookieMonster); 702 }; 703 704 class NET_EXPORT CookieMonsterDelegate 705 : public base::RefCountedThreadSafe<CookieMonsterDelegate> { 706 public: 707 // The publicly relevant reasons a cookie might be changed. 708 enum ChangeCause { 709 // The cookie was changed directly by a consumer's action. 710 CHANGE_COOKIE_EXPLICIT, 711 // The cookie was automatically removed due to an insert operation that 712 // overwrote it. 713 CHANGE_COOKIE_OVERWRITE, 714 // The cookie was automatically removed as it expired. 715 CHANGE_COOKIE_EXPIRED, 716 // The cookie was automatically evicted during garbage collection. 717 CHANGE_COOKIE_EVICTED, 718 // The cookie was overwritten with an already-expired expiration date. 719 CHANGE_COOKIE_EXPIRED_OVERWRITE 720 }; 721 722 // Will be called when a cookie is added or removed. The function is passed 723 // the respective |cookie| which was added to or removed from the cookies. 724 // If |removed| is true, the cookie was deleted, and |cause| will be set 725 // to the reason for its removal. If |removed| is false, the cookie was 726 // added, and |cause| will be set to CHANGE_COOKIE_EXPLICIT. 727 // 728 // As a special case, note that updating a cookie's properties is implemented 729 // as a two step process: the cookie to be updated is first removed entirely, 730 // generating a notification with cause CHANGE_COOKIE_OVERWRITE. Afterwards, 731 // a new cookie is written with the updated values, generating a notification 732 // with cause CHANGE_COOKIE_EXPLICIT. 733 virtual void OnCookieChanged(const CanonicalCookie& cookie, 734 bool removed, 735 ChangeCause cause) = 0; 736 // Indicates that the cookie store has fully loaded. 737 virtual void OnLoaded() = 0; 738 739 protected: 740 friend class base::RefCountedThreadSafe<CookieMonsterDelegate>; ~CookieMonsterDelegate()741 virtual ~CookieMonsterDelegate() {} 742 }; 743 744 typedef base::RefCountedThreadSafe<CookieMonster::PersistentCookieStore> 745 RefcountedPersistentCookieStore; 746 747 class NET_EXPORT CookieMonster::PersistentCookieStore 748 : public RefcountedPersistentCookieStore { 749 public: 750 typedef base::Callback<void(const std::vector<CanonicalCookie*>&)> 751 LoadedCallback; 752 753 // Initializes the store and retrieves the existing cookies. This will be 754 // called only once at startup. The callback will return all the cookies 755 // that are not yet returned to CookieMonster by previous priority loads. 756 virtual void Load(const LoadedCallback& loaded_callback) = 0; 757 758 // Does a priority load of all cookies for the domain key (eTLD+1). The 759 // callback will return all the cookies that are not yet returned by previous 760 // loads, which includes cookies for the requested domain key if they are not 761 // already returned, plus all cookies that are chain-loaded and not yet 762 // returned to CookieMonster. 763 virtual void LoadCookiesForKey(const std::string& key, 764 const LoadedCallback& loaded_callback) = 0; 765 766 virtual void AddCookie(const CanonicalCookie& cc) = 0; 767 virtual void UpdateCookieAccessTime(const CanonicalCookie& cc) = 0; 768 virtual void DeleteCookie(const CanonicalCookie& cc) = 0; 769 770 // Instructs the store to not discard session only cookies on shutdown. 771 virtual void SetForceKeepSessionState() = 0; 772 773 // Flushes the store and posts |callback| when complete. 774 virtual void Flush(const base::Closure& callback) = 0; 775 776 protected: PersistentCookieStore()777 PersistentCookieStore() {} ~PersistentCookieStore()778 virtual ~PersistentCookieStore() {} 779 780 private: 781 friend class base::RefCountedThreadSafe<PersistentCookieStore>; 782 DISALLOW_COPY_AND_ASSIGN(PersistentCookieStore); 783 }; 784 785 } // namespace net 786 787 #endif // NET_COOKIES_COOKIE_MONSTER_H_ 788