// Copyright (c) 2011 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/browsing_data_remover.h"
#include <map>
#include <set>
#include "base/bind.h"
#include "base/callback.h"
#include "base/file_util.h"
#include "base/logging.h"
#include "base/platform_file.h"
#include "chrome/browser/autofill/personal_data_manager.h"
#include "chrome/browser/autofill/personal_data_manager_factory.h"
#include "chrome/browser/browser_process.h"
#include "chrome/browser/extensions/extension_service.h"
#include "chrome/browser/extensions/extension_special_storage_policy.h"
#include "chrome/browser/history/history.h"
#include "chrome/browser/io_thread.h"
#include "chrome/browser/net/chrome_net_log.h"
#include "chrome/browser/net/chrome_url_request_context.h"
#include "chrome/browser/net/predictor.h"
#include "chrome/browser/password_manager/password_store.h"
#include "chrome/browser/plugin_data_remover.h"
#include "chrome/browser/prefs/pref_member.h"
#include "chrome/browser/prerender/prerender_manager.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/renderer_host/web_cache_manager.h"
#include "chrome/browser/search_engines/template_url_service.h"
#include "chrome/browser/search_engines/template_url_service_factory.h"
#include "chrome/browser/sessions/session_service.h"
#include "chrome/browser/sessions/session_service_factory.h"
#include "chrome/browser/sessions/tab_restore_service.h"
#include "chrome/browser/sessions/tab_restore_service_factory.h"
#include "chrome/browser/webdata/web_data_service.h"
#include "chrome/common/chrome_notification_types.h"
#include "chrome/common/pref_names.h"
#include "chrome/common/url_constants.h"
#include "content/browser/browser_thread.h"
#include "content/browser/download/download_manager.h"
#include "content/browser/in_process_webkit/webkit_context.h"
#include "content/browser/user_metrics.h"
#include "content/common/notification_source.h"
#include "net/base/cookie_monster.h"
#include "net/base/net_errors.h"
#include "net/base/transport_security_state.h"
#include "net/disk_cache/disk_cache.h"
#include "net/http/http_cache.h"
#include "net/url_request/url_request_context.h"
#include "net/url_request/url_request_context_getter.h"
#include "webkit/quota/quota_manager.h"
#include "webkit/quota/quota_types.h"
// Done so that we can use PostTask on BrowsingDataRemovers and not have
// BrowsingDataRemover implement RefCounted.
DISABLE_RUNNABLE_METHOD_REFCOUNT(BrowsingDataRemover);
bool BrowsingDataRemover::removing_ = false;
BrowsingDataRemover::BrowsingDataRemover(Profile* profile,
base::Time delete_begin,
base::Time delete_end)
: profile_(profile),
quota_manager_(NULL),
special_storage_policy_(profile->GetExtensionSpecialStoragePolicy()),
delete_begin_(delete_begin),
delete_end_(delete_end),
ALLOW_THIS_IN_INITIALIZER_LIST(cache_callback_(
this, &BrowsingDataRemover::DoClearCache)),
next_cache_state_(STATE_NONE),
cache_(NULL),
main_context_getter_(profile->GetRequestContext()),
media_context_getter_(profile->GetRequestContextForMedia()),
waiting_for_clear_history_(false),
waiting_for_clear_quota_managed_data_(false),
waiting_for_clear_networking_history_(false),
waiting_for_clear_cookies_(false),
waiting_for_clear_cache_(false),
waiting_for_clear_lso_data_(false) {
DCHECK(profile);
clear_plugin_lso_data_enabled_.Init(prefs::kClearPluginLSODataEnabled,
profile_->GetPrefs(),
NULL);
}
BrowsingDataRemover::BrowsingDataRemover(Profile* profile,
TimePeriod time_period,
base::Time delete_end)
: profile_(profile),
quota_manager_(NULL),
special_storage_policy_(profile->GetExtensionSpecialStoragePolicy()),
delete_begin_(CalculateBeginDeleteTime(time_period)),
delete_end_(delete_end),
ALLOW_THIS_IN_INITIALIZER_LIST(cache_callback_(
this, &BrowsingDataRemover::DoClearCache)),
next_cache_state_(STATE_NONE),
cache_(NULL),
main_context_getter_(profile->GetRequestContext()),
media_context_getter_(profile->GetRequestContextForMedia()),
waiting_for_clear_history_(false),
waiting_for_clear_quota_managed_data_(false),
waiting_for_clear_networking_history_(false),
waiting_for_clear_cookies_(false),
waiting_for_clear_cache_(false),
waiting_for_clear_lso_data_(false) {
DCHECK(profile);
clear_plugin_lso_data_enabled_.Init(prefs::kClearPluginLSODataEnabled,
profile_->GetPrefs(),
NULL);
}
BrowsingDataRemover::~BrowsingDataRemover() {
DCHECK(all_done());
}
// Static.
void BrowsingDataRemover::set_removing(bool removing) {
DCHECK(removing_ != removing);
removing_ = removing;
}
void BrowsingDataRemover::Remove(int remove_mask) {
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
set_removing(true);
if (remove_mask & REMOVE_HISTORY) {
HistoryService* history_service =
profile_->GetHistoryService(Profile::EXPLICIT_ACCESS);
if (history_service) {
std::set<GURL> restrict_urls;
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_History"));
waiting_for_clear_history_ = true;
history_service->ExpireHistoryBetween(restrict_urls,
delete_begin_, delete_end_,
&request_consumer_,
NewCallback(this, &BrowsingDataRemover::OnHistoryDeletionDone));
}
// Need to clear the host cache and accumulated speculative data, as it also
// reveals some history.
if (g_browser_process->io_thread()) {
waiting_for_clear_networking_history_ = true;
BrowserThread::PostTask(
BrowserThread::IO, FROM_HERE,
NewRunnableMethod(
this,
&BrowsingDataRemover::ClearNetworkingHistory,
g_browser_process->io_thread()));
}
// As part of history deletion we also delete the auto-generated keywords.
TemplateURLService* keywords_model =
TemplateURLServiceFactory::GetForProfile(profile_);
if (keywords_model && !keywords_model->loaded()) {
registrar_.Add(this, chrome::NOTIFICATION_TEMPLATE_URL_SERVICE_LOADED,
Source<TemplateURLService>(keywords_model));
keywords_model->Load();
} else if (keywords_model) {
keywords_model->RemoveAutoGeneratedBetween(delete_begin_, delete_end_);
}
// We also delete the list of recently closed tabs. Since these expire,
// they can't be more than a day old, so we can simply clear them all.
TabRestoreService* tab_service =
TabRestoreServiceFactory::GetForProfile(profile_);
if (tab_service) {
tab_service->ClearEntries();
tab_service->DeleteLastSession();
}
// We also delete the last session when we delete the history.
SessionService* session_service =
SessionServiceFactory::GetForProfile(profile_);
if (session_service)
session_service->DeleteLastSession();
// The PrerenderManager keeps history of prerendered pages, so clear that.
// It also may have a prerendered page. If so, the page could be considered
// to have a small amount of historical information, so delete it, too.
prerender::PrerenderManager* prerender_manager =
profile_->GetPrerenderManager();
if (prerender_manager) {
prerender_manager->ClearData(
prerender::PrerenderManager::CLEAR_PRERENDER_CONTENTS |
prerender::PrerenderManager::CLEAR_PRERENDER_HISTORY);
}
}
if (remove_mask & REMOVE_DOWNLOADS) {
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_Downloads"));
DownloadManager* download_manager = profile_->GetDownloadManager();
download_manager->RemoveDownloadsBetween(delete_begin_, delete_end_);
download_manager->ClearLastDownloadPath();
}
if (remove_mask & REMOVE_COOKIES) {
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_Cookies"));
// Since we are running on the UI thread don't call GetURLRequestContext().
net::URLRequestContextGetter* rq_context = profile_->GetRequestContext();
if (rq_context) {
waiting_for_clear_cookies_ = true;
BrowserThread::PostTask(
BrowserThread::IO, FROM_HERE,
base::Bind(&BrowsingDataRemover::ClearCookiesOnIOThread,
base::Unretained(this), base::Unretained(rq_context)));
}
}
if (remove_mask & REMOVE_LOCAL_STORAGE) {
// Remove data such as local databases, STS state, etc. These only can
// be removed if a WEBKIT thread exists, so check that first:
if (BrowserThread::IsMessageLoopValid(BrowserThread::WEBKIT)) {
// We assume the end time is now.
profile_->GetWebKitContext()->DeleteDataModifiedSince(delete_begin_);
}
}
if (remove_mask & REMOVE_INDEXEDDB || remove_mask & REMOVE_WEBSQL ||
remove_mask & REMOVE_APPCACHE || remove_mask & REMOVE_FILE_SYSTEMS) {
// TODO(mkwst): At the moment, we don't have the ability to pass a mask into
// QuotaManager. Until then, we'll clear all quota-managed data types if any
// ought to be cleared.
quota_manager_ = profile_->GetQuotaManager();
if (quota_manager_) {
waiting_for_clear_quota_managed_data_ = true;
BrowserThread::PostTask(
BrowserThread::IO, FROM_HERE,
NewRunnableMethod(
this,
&BrowsingDataRemover::ClearQuotaManagedDataOnIOThread));
}
}
if (remove_mask & REMOVE_LSO_DATA && *clear_plugin_lso_data_enabled_) {
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_LSOData"));
waiting_for_clear_lso_data_ = true;
if (!plugin_data_remover_.get())
plugin_data_remover_ = new PluginDataRemover(profile_);
base::WaitableEvent* event =
plugin_data_remover_->StartRemoving(delete_begin_);
watcher_.StartWatching(event, this);
}
if (remove_mask & REMOVE_PASSWORDS) {
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_Passwords"));
PasswordStore* password_store =
profile_->GetPasswordStore(Profile::EXPLICIT_ACCESS);
if (password_store)
password_store->RemoveLoginsCreatedBetween(delete_begin_, delete_end_);
}
if (remove_mask & REMOVE_FORM_DATA) {
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_Autofill"));
WebDataService* web_data_service =
profile_->GetWebDataService(Profile::EXPLICIT_ACCESS);
if (web_data_service) {
web_data_service->RemoveFormElementsAddedBetween(delete_begin_,
delete_end_);
web_data_service->RemoveAutofillProfilesAndCreditCardsModifiedBetween(
delete_begin_, delete_end_);
PersonalDataManager* data_manager =
PersonalDataManagerFactory::GetForProfile(profile_);
if (data_manager) {
data_manager->Refresh();
}
}
}
if (remove_mask & REMOVE_CACHE) {
// Tell the renderers to clear their cache.
WebCacheManager::GetInstance()->ClearCache();
// Invoke DoClearCache on the IO thread.
waiting_for_clear_cache_ = true;
UserMetrics::RecordAction(UserMetricsAction("ClearBrowsingData_Cache"));
BrowserThread::PostTask(
BrowserThread::IO, FROM_HERE,
NewRunnableMethod(this, &BrowsingDataRemover::ClearCacheOnIOThread));
// The PrerenderManager may have a page actively being prerendered, which
// is essentially a preemptively cached page.
prerender::PrerenderManager* prerender_manager =
profile_->GetPrerenderManager();
if (prerender_manager) {
prerender_manager->ClearData(
prerender::PrerenderManager::CLEAR_PRERENDER_CONTENTS);
}
}
// Also delete cached TransportSecurityState data.
profile_->DeleteTransportSecurityStateSince(delete_begin_);
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::AddObserver(Observer* observer) {
observer_list_.AddObserver(observer);
}
void BrowsingDataRemover::RemoveObserver(Observer* observer) {
observer_list_.RemoveObserver(observer);
}
void BrowsingDataRemover::OnHistoryDeletionDone() {
waiting_for_clear_history_ = false;
NotifyAndDeleteIfDone();
}
base::Time BrowsingDataRemover::CalculateBeginDeleteTime(
TimePeriod time_period) {
base::TimeDelta diff;
base::Time delete_begin_time = base::Time::Now();
switch (time_period) {
case LAST_HOUR:
diff = base::TimeDelta::FromHours(1);
break;
case LAST_DAY:
diff = base::TimeDelta::FromHours(24);
break;
case LAST_WEEK:
diff = base::TimeDelta::FromHours(7*24);
break;
case FOUR_WEEKS:
diff = base::TimeDelta::FromHours(4*7*24);
break;
case EVERYTHING:
delete_begin_time = base::Time();
break;
default:
NOTREACHED() << L"Missing item";
break;
}
return delete_begin_time - diff;
}
void BrowsingDataRemover::Observe(int type,
const NotificationSource& source,
const NotificationDetails& details) {
// TODO(brettw) bug 1139736: This should also observe session
// clearing (what about other things such as passwords, etc.?) and wait for
// them to complete before continuing.
DCHECK(type == chrome::NOTIFICATION_TEMPLATE_URL_SERVICE_LOADED);
TemplateURLService* model = Source<TemplateURLService>(source).ptr();
if (model->profile() == profile_->GetOriginalProfile()) {
registrar_.RemoveAll();
model->RemoveAutoGeneratedBetween(delete_begin_, delete_end_);
NotifyAndDeleteIfDone();
}
}
void BrowsingDataRemover::NotifyAndDeleteIfDone() {
// TODO(brettw) bug 1139736: see TODO in Observe() above.
if (!all_done())
return;
// The NetLog contains download history, but may also contain form data,
// cookies and passwords. Simplest just to always clear it. Must be cleared
// after the cache, as cleaning up the disk cache exposes some of the history
// in the NetLog.
if (g_browser_process->net_log())
g_browser_process->net_log()->ClearAllPassivelyCapturedEvents();
set_removing(false);
FOR_EACH_OBSERVER(Observer, observer_list_, OnBrowsingDataRemoverDone());
// History requests aren't happy if you delete yourself from the callback.
// As such, we do a delete later.
MessageLoop::current()->DeleteSoon(FROM_HERE, this);
}
void BrowsingDataRemover::ClearedNetworkHistory() {
waiting_for_clear_networking_history_ = false;
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::ClearNetworkingHistory(IOThread* io_thread) {
// This function should be called on the IO thread.
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
io_thread->ClearHostCache();
chrome_browser_net::Predictor* predictor = profile_->GetNetworkPredictor();
if (predictor) {
predictor->DiscardInitialNavigationHistory();
predictor->DiscardAllResults();
}
// Notify the UI thread that we are done.
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
NewRunnableMethod(this, &BrowsingDataRemover::ClearedNetworkHistory));
}
void BrowsingDataRemover::ClearedCache() {
waiting_for_clear_cache_ = false;
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::ClearCacheOnIOThread() {
// This function should be called on the IO thread.
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
DCHECK_EQ(STATE_NONE, next_cache_state_);
DCHECK(main_context_getter_);
DCHECK(media_context_getter_);
next_cache_state_ = STATE_CREATE_MAIN;
DoClearCache(net::OK);
}
// The expected state sequence is STATE_NONE --> STATE_CREATE_MAIN -->
// STATE_DELETE_MAIN --> STATE_CREATE_MEDIA --> STATE_DELETE_MEDIA -->
// STATE_DONE, and any errors are ignored.
void BrowsingDataRemover::DoClearCache(int rv) {
DCHECK_NE(STATE_NONE, next_cache_state_);
while (rv != net::ERR_IO_PENDING && next_cache_state_ != STATE_NONE) {
switch (next_cache_state_) {
case STATE_CREATE_MAIN:
case STATE_CREATE_MEDIA: {
// Get a pointer to the cache.
net::URLRequestContextGetter* getter =
(next_cache_state_ == STATE_CREATE_MAIN) ?
main_context_getter_ : media_context_getter_;
net::HttpTransactionFactory* factory =
getter->GetURLRequestContext()->http_transaction_factory();
rv = factory->GetCache()->GetBackend(&cache_, &cache_callback_);
next_cache_state_ = (next_cache_state_ == STATE_CREATE_MAIN) ?
STATE_DELETE_MAIN : STATE_DELETE_MEDIA;
break;
}
case STATE_DELETE_MAIN:
case STATE_DELETE_MEDIA: {
// |cache_| can be null if it cannot be initialized.
if (cache_) {
if (delete_begin_.is_null()) {
rv = cache_->DoomAllEntries(&cache_callback_);
} else {
rv = cache_->DoomEntriesBetween(delete_begin_, delete_end_,
&cache_callback_);
}
cache_ = NULL;
}
next_cache_state_ = (next_cache_state_ == STATE_DELETE_MAIN) ?
STATE_CREATE_MEDIA : STATE_DONE;
break;
}
case STATE_DONE: {
cache_ = NULL;
// Notify the UI thread that we are done.
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
NewRunnableMethod(this, &BrowsingDataRemover::ClearedCache));
next_cache_state_ = STATE_NONE;
break;
}
default: {
NOTREACHED() << "bad state";
next_cache_state_ = STATE_NONE; // Stop looping.
break;
}
}
}
}
void BrowsingDataRemover::ClearQuotaManagedDataOnIOThread() {
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
// Ask the QuotaManager for all origins with temporary quota modified within
// the user-specified timeframe, and deal with the resulting set in
// OnGotQuotaManagedOrigins().
quota_managed_origins_to_delete_count_ = 0;
quota_managed_storage_types_to_delete_count_ = 2;
if (delete_begin_ == base::Time()) {
// If we're deleting since the beginning of time, ask the QuotaManager for
// all origins with persistent quota modified within the user-specified
// timeframe, and deal with the resulting set in
// OnGotPersistentQuotaManagedOrigins.
profile_->GetQuotaManager()->GetOriginsModifiedSince(
quota::kStorageTypePersistent, delete_begin_, NewCallback(this,
&BrowsingDataRemover::OnGotQuotaManagedOrigins));
} else {
// Otherwise, we don't need to deal with persistent storage.
--quota_managed_storage_types_to_delete_count_;
}
// Do the same for temporary quota, regardless, passing the resulting set into
// OnGotTemporaryQuotaManagedOrigins.
profile_->GetQuotaManager()->GetOriginsModifiedSince(
quota::kStorageTypeTemporary, delete_begin_, NewCallback(this,
&BrowsingDataRemover::OnGotQuotaManagedOrigins));
}
void BrowsingDataRemover::OnGotQuotaManagedOrigins(
const std::set<GURL>& origins, quota::StorageType type) {
DCHECK_GT(quota_managed_storage_types_to_delete_count_, 0);
// Walk through the origins passed in, delete quota of |type| from each that
// isn't protected.
std::set<GURL>::const_iterator origin;
for (origin = origins.begin(); origin != origins.end(); ++origin) {
if (special_storage_policy_->IsStorageProtected(origin->GetOrigin()))
continue;
++quota_managed_origins_to_delete_count_;
quota_manager_->DeleteOriginData(origin->GetOrigin(),
type, NewCallback(this,
&BrowsingDataRemover::OnQuotaManagedOriginDeletion));
}
--quota_managed_storage_types_to_delete_count_;
CheckQuotaManagedDataDeletionStatus();
}
void BrowsingDataRemover::OnQuotaManagedOriginDeletion(
quota::QuotaStatusCode status) {
DCHECK_GT(quota_managed_origins_to_delete_count_, 0);
if (status != quota::kQuotaStatusOk) {
// TODO(mkwst): We should add the GURL to StatusCallback; this is a pretty
// worthless error message otherwise.
DLOG(ERROR) << "Couldn't remove origin. Status: " << status;
}
--quota_managed_origins_to_delete_count_;
CheckQuotaManagedDataDeletionStatus();
}
void BrowsingDataRemover::CheckQuotaManagedDataDeletionStatus() {
if (quota_managed_storage_types_to_delete_count_ != 0 ||
quota_managed_origins_to_delete_count_ != 0) {
return;
}
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
NewRunnableMethod(
this,
&BrowsingDataRemover::OnQuotaManagedDataDeleted));
}
void BrowsingDataRemover::OnQuotaManagedDataDeleted() {
DCHECK(waiting_for_clear_quota_managed_data_);
waiting_for_clear_quota_managed_data_ = false;
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::OnWaitableEventSignaled(
base::WaitableEvent* waitable_event) {
waiting_for_clear_lso_data_ = false;
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::OnClearedCookies(int num_deleted) {
if (!BrowserThread::CurrentlyOn(BrowserThread::UI)) {
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(&BrowsingDataRemover::OnClearedCookies,
base::Unretained(this), num_deleted));
return;
}
waiting_for_clear_cookies_ = false;
NotifyAndDeleteIfDone();
}
void BrowsingDataRemover::ClearCookiesOnIOThread(
net::URLRequestContextGetter* rq_context) {
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
net::CookieMonster* cookie_monster = rq_context->
GetURLRequestContext()->cookie_store()->GetCookieMonster();
if (cookie_monster) {
cookie_monster->DeleteAllCreatedBetweenAsync(
delete_begin_, delete_end_,
base::Bind(&BrowsingDataRemover::OnClearedCookies,
base::Unretained(this)));
} else {
OnClearedCookies(0);
}
}