Initial support for partitioning cookies for isolated apps.

chrome/browser/net/chrome_url_request_context.cc

 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/net/chrome_url_request_context.h"
 
 #include "base/command_line.h"
 #include "base/message_loop.h"
 #include "base/message_loop_proxy.h"
 #include "base/string_number_conversions.h"
@@ skipping 357 matching lines @@
                            chrome::kExtensionScheme};
   cookie_monster->SetCookieableSchemes(schemes, 2);
   context->set_cookie_store(cookie_monster);
   // TODO(cbentzel): How should extensions handle HTTP Authentication?
   context->set_http_auth_handler_factory(
       io_thread_globals->http_auth_handler_factory.get());
 
   return context;
 }
 
+// Factory that creates the ChromeURLRequestContext for a given isolated app.
+class FactoryForIsolatedApp : public ChromeURLRequestContextFactory {
+ public:
+  FactoryForIsolatedApp(Profile* profile, const Extension* app,
+                        const FilePath& cookie_store_path, bool incognito)
+      : ChromeURLRequestContextFactory(profile),
+        cookie_store_path_(cookie_store_path),
+        incognito_(incognito),
+        original_context_getter_(
+            static_cast<ChromeURLRequestContextGetter*>(
+                profile->GetOriginalProfile()->GetRequestContext())) {
+  }
+
+  virtual ChromeURLRequestContext* Create();
+
+ private:
+  scoped_refptr<const Extension> app_;
+  FilePath cookie_store_path_;
+  bool incognito_;
+  scoped_refptr<ChromeURLRequestContextGetter> original_context_getter_;
+};
+
+ChromeURLRequestContext* FactoryForIsolatedApp::Create() {

[Matt Perry, 2011/01/26 20:09:23]

Any way we could unify this factory with the FactoryForOriginal? From a high
level, the difference seems only to be that the cookie store path is different,
which is already a parameter.

[Charlie Reis, 2011/03/01 21:33:11]

I've refactored this to work with the new ProfileIOData classes.  There's a fair
number of differences between the two initialization paths now, but we could
still consider abstracting out the similarities if you want.

+  ChromeURLRequestContext* context = new ChromeURLRequestContext;
+  ApplyProfileParametersToContext(context);
+
+  ChromeURLRequestContext* original_context =
+      original_context_getter_->GetIOContext();
+
+  IOThread::Globals* io_thread_globals = io_thread()->globals();
+
+  // Share the same proxy service, host resolver, cert verifier,
+  // and http_auth_handler_factory as the original profile.
+  context->set_host_resolver(original_context->host_resolver());
+  context->set_cert_verifier(original_context->cert_verifier());
+  context->set_proxy_service(original_context->proxy_service());
+  context->set_http_auth_handler_factory(
+      original_context->http_auth_handler_factory());
+
+  net::HttpCache::BackendFactory* backend =
+      net::HttpCache::DefaultBackend::InMemory(0);

[willchan no longer on Chromium, 2011/01/26 23:21:52]

For an isolated app, we don't use a disk cache? Only in-memory?

Note that in creating a new HttpCache with this constructor, you aren't sharing
the socket pool with the main ChromeURLRequestContext. The implication is that
you cannot reuse sockets used by the main ChromeURLRequestContext, and your
isolated app will have a separate connections per host (6) limit from the main
ChromeURLRequestContext. Is this by design?

Note that FactoryForMedia tries to share this stuff with the main context by
getting the HttpNetworkLayer from the HttpCache and sharing it.

[Charlie Reis, 2011/03/01 21:33:11]

Oops, that was incorrectly copied from FactoryForOffTheRecord.  I've changed it
to use its own disk cache.
Hmm, no, I don't think there's a benefit to isolating the socket pool.  I'm now
using the existing network session.  Sound right?

Also, I found main_http_factory_ useful for this, but I'm unsure why we're
keeping it around if no one else is using it.  Do I need to keep each isolated
app's cache around like this as well?
Thanks for pointing it out.

+
+  net::HttpCache* cache =
+      new net::HttpCache(context->host_resolver(),
+                         context->cert_verifier(),
+                         context->dnsrr_resolver(),
+                         NULL /* dns_cert_checker */,
+                         context->proxy_service(),
+                         context->ssl_config_service(),
+                         context->http_auth_handler_factory(),
+                         &io_thread_globals->network_delegate,
+                         io_thread()->net_log(),
+                         backend);
+
+  // TODO(creis): We care about the rest of storage as well, not just cookies.
+  scoped_refptr<SQLitePersistentCookieStore> cookie_db = NULL;
+  if (!incognito_) {
+    DCHECK(!cookie_store_path_.empty());
+    cookie_db = new SQLitePersistentCookieStore(cookie_store_path_);
+  }
+  net::CookieMonster* cookie_monster =
+      new net::CookieMonster(cookie_db.get(), cookie_monster_delegate_);
+  context->set_cookie_store(cookie_monster);
+  context->set_cookie_policy(
+      new ChromeCookiePolicy(host_content_settings_map_));
+
+  context->set_http_transaction_factory(cache);
+
+  context->set_ftp_transaction_factory(
+      new net::FtpNetworkLayer(context->host_resolver()));
+
+  appcache_service_->set_request_context(context);

[willchan no longer on Chromium, 2011/01/26 23:21:52]

Why are we hijacking the request context used for appcache?

[Charlie Reis, 2011/03/01 21:33:11]

Sorry, just incorrectly copied that from FactoryForOffTheRecord.

+
+  context->set_net_log(io_thread()->net_log());
+  return context;
+}
+
 // Factory that creates the ChromeURLRequestContext for incognito profile.
 class FactoryForOffTheRecord : public ChromeURLRequestContextFactory {
  public:
   explicit FactoryForOffTheRecord(Profile* profile)
       : ChromeURLRequestContextFactory(profile),
         original_context_getter_(
             static_cast<ChromeURLRequestContextGetter*>(
                 profile->GetOriginalProfile()->GetRequestContext())) {
   }
 
@@ skipping 256 matching lines @@
 ChromeURLRequestContextGetter::CreateOriginalForExtensions(
     Profile* profile, const FilePath& cookie_store_path) {
   DCHECK(!profile->IsOffTheRecord());
   return new ChromeURLRequestContextGetter(
       profile,
       new FactoryForExtensions(profile, cookie_store_path, false));
 }
 
 // static
 ChromeURLRequestContextGetter*
+ChromeURLRequestContextGetter::CreateOriginalForIsolatedApp(Profile* profile,
+    const Extension* app, const FilePath& cookie_store_path) {
+  DCHECK(!profile->IsOffTheRecord());
+  return new ChromeURLRequestContextGetter(
+      profile,
+      new FactoryForIsolatedApp(profile, app, cookie_store_path, false));
+}
+
+// static
+ChromeURLRequestContextGetter*
 ChromeURLRequestContextGetter::CreateOffTheRecord(Profile* profile) {
   DCHECK(profile->IsOffTheRecord());
   return new ChromeURLRequestContextGetter(
       profile, new FactoryForOffTheRecord(profile));
 }
 
 // static
 ChromeURLRequestContextGetter*
 ChromeURLRequestContextGetter::CreateOffTheRecordForExtensions(
     Profile* profile) {
   DCHECK(profile->IsOffTheRecord());
   return new ChromeURLRequestContextGetter(
       profile, new FactoryForExtensions(profile, FilePath(), true));
 }
 
+// static
+ChromeURLRequestContextGetter*
+ChromeURLRequestContextGetter::CreateOffTheRecordForIsolatedApp(
+    Profile* profile, const Extension* app) {
+  DCHECK(profile->IsOffTheRecord());
+  return new ChromeURLRequestContextGetter(
+      profile, new FactoryForIsolatedApp(profile, app, FilePath(), true));
+}
+
 void ChromeURLRequestContextGetter::CleanupOnUIThread() {
   CheckCurrentlyOnMainThread();
   // Unregister for pref notifications.
   registrar_.RemoveAll();
 }
 
 // NotificationObserver implementation.
 void ChromeURLRequestContextGetter::Observe(
     NotificationType type,
     const NotificationSource& source,
@@ skipping 229 matching lines @@
   context->set_transport_security_state(
       transport_security_state_);
   context->set_ssl_config_service(ssl_config_service_);
   context->set_appcache_service(appcache_service_);
   context->set_database_tracker(database_tracker_);
   context->set_blob_storage_context(blob_storage_context_);
   context->set_file_system_context(file_system_context_);
   context->set_extension_info_map(extension_info_map_);
   context->set_prerender_manager(prerender_manager_);
 }