Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(589)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/browsing_data/browsing_data_remover_impl.cc

Issue 2781083002: Fix the multi-threaded access to WeakPtr<BrowsingDataRemoverImpl> (Closed)
Patch Set: Changed the class to a static method. Created 3 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« chrome/browser/browsing_data/browsing_data_remover_delegate.h ('K') | « chrome/browser/browsing_data/browsing_data_remover_impl.h ('k') | chrome/browser/browsing_data/chrome_browsing_data_remover_delegate.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/browsing_data/browsing_data_remover_impl.cc
diff --git a/chrome/browser/browsing_data/browsing_data_remover_impl.cc b/chrome/browser/browsing_data/browsing_data_remover_impl.cc
index b157897e73a9e8c3a7e57764097d673c1f18a5c0..7a07971f0ff69a042362772e43a9a78748a0f3ca 100644
--- a/chrome/browser/browsing_data/browsing_data_remover_impl.cc
+++ b/chrome/browser/browsing_data/browsing_data_remover_impl.cc
@@ -53,30 +53,57 @@ void IgnoreArgumentHelper(const base::Closure& callback, T unused_argument) {
callback.Run();
}
-// Another convenience method to turn a callback without arguments into one that
-// accepts (and ignores) a single argument.
-template <typename T>
-base::Callback<void(T)> IgnoreArgument(const base::Closure& callback) {
- return base::Bind(&IgnoreArgumentHelper<T>, callback);
-}
-
-bool DoesOriginMatchMaskAndUrls(
- const base::WeakPtr<BrowsingDataRemoverImpl>& remover_weak_ptr,
+// Returns whether |origin| matches |origin_type_mask| given the special
+// storage |policy|; and if |predicate| is not null, then also whether
+// it matches |predicate|. If |origin_type_mask| contains embedder-specific
+// datatypes, |embedder_matcher| must not be null; the decision for those
+// datatypes will be delegated to it.
+bool DoesOriginMatchMaskAndURLs(
int origin_type_mask,
const base::Callback<bool(const GURL&)>& predicate,
+ const BrowsingDataRemoverDelegate::EmbedderOriginTypeMatcher&
+ embedder_matcher,
const GURL& origin,
- storage::SpecialStoragePolicy* special_storage_policy) {
- // If BrowsingDataRemoverImpl is null, it is not possible to determine which
- // origins should have their data deleted, and so we do not delete
- // anything. This is not a problem, because this can only happen shortly
- // before shutdown and thus the deletion would likely not be able to
- // finish anyway.
- if (!remover_weak_ptr)
+ storage::SpecialStoragePolicy* policy) {
+ if (!predicate.is_null() && !predicate.Run(origin))
return false;
- return predicate.Run(origin) &&
- remover_weak_ptr->DoesOriginMatchMask(origin_type_mask, origin,
- special_storage_policy);
+ const std::vector<std::string>& schemes = url::GetWebStorageSchemes();
+ bool is_web_scheme =
+ (std::find(schemes.begin(), schemes.end(), origin.GetOrigin().scheme()) !=
+ schemes.end());
+
+ // If a websafe origin is unprotected, it matches iff UNPROTECTED_WEB.
+ if ((!policy || !policy->IsStorageProtected(origin.GetOrigin())) &&
+ is_web_scheme &&
+ (origin_type_mask & BrowsingDataRemover::ORIGIN_TYPE_UNPROTECTED_WEB)) {
+ return true;
+ }
+ origin_type_mask &= ~BrowsingDataRemover::ORIGIN_TYPE_UNPROTECTED_WEB;
+
+ // Hosted applications (protected and websafe origins) iff PROTECTED_WEB.
+ if (policy && policy->IsStorageProtected(origin.GetOrigin()) &&
+ is_web_scheme &&
+ (origin_type_mask & BrowsingDataRemover::ORIGIN_TYPE_PROTECTED_WEB)) {
+ return true;
+ }
+ origin_type_mask &= ~BrowsingDataRemover::ORIGIN_TYPE_PROTECTED_WEB;
+
+ DCHECK(embedder_matcher || !origin_type_mask)
+ << "The mask contains embedder-defined origin types, but there is no "
+ << "embedder delegate matcher to process them.";
+
+ if (!embedder_matcher.is_null())
+ return embedder_matcher.Run(origin_type_mask, origin, policy);
+
+ return false;
+}
+
+// Another convenience method to turn a callback without arguments into one that
+// accepts (and ignores) a single argument.
+template <typename T>
+base::Callback<void(T)> IgnoreArgument(const base::Closure& callback) {
+ return base::Bind(&IgnoreArgumentHelper<T>, callback);
}
void ClearHttpAuthCacheOnIOThread(
@@ -213,35 +240,13 @@ bool BrowsingDataRemoverImpl::DoesOriginMatchMask(
int origin_type_mask,
const GURL& origin,
storage::SpecialStoragePolicy* policy) const {
- const std::vector<std::string>& schemes = url::GetWebStorageSchemes();
- bool is_web_scheme =
- (std::find(schemes.begin(), schemes.end(), origin.GetOrigin().scheme()) !=
- schemes.end());
+ BrowsingDataRemoverDelegate::EmbedderOriginTypeMatcher embedder_matcher;
+ if (embedder_delegate_)
+ embedder_matcher = embedder_delegate_->GetOriginTypeMatcher();
- // If a websafe origin is unprotected, it matches iff UNPROTECTED_WEB.
- if ((!policy || !policy->IsStorageProtected(origin.GetOrigin())) &&
- is_web_scheme && (origin_type_mask & ORIGIN_TYPE_UNPROTECTED_WEB)) {
- return true;
- }
- origin_type_mask &= ~ORIGIN_TYPE_UNPROTECTED_WEB;
-
- // Hosted applications (protected and websafe origins) iff PROTECTED_WEB.
- if (policy && policy->IsStorageProtected(origin.GetOrigin()) &&
- is_web_scheme && (origin_type_mask & ORIGIN_TYPE_PROTECTED_WEB)) {
- return true;
- }
- origin_type_mask &= ~ORIGIN_TYPE_PROTECTED_WEB;
-
- DCHECK(embedder_delegate_ || !origin_type_mask)
- << "The mask contains embedder-defined origin types, but there is no "
- << "embedder delegate to process them.";
-
- if (embedder_delegate_) {
- return embedder_delegate_->DoesOriginMatchEmbedderMask(origin_type_mask,
- origin, policy);
- }
-
- return false;
+ return DoesOriginMatchMaskAndURLs(origin_type_mask,
+ base::Callback<bool(const GURL&)>(),
+ embedder_matcher, origin, policy);
}
void BrowsingDataRemoverImpl::Remove(const base::Time& delete_begin,
@@ -501,10 +506,14 @@ void BrowsingDataRemoverImpl::RemoveImpl(
cookie_matcher = filter_builder.BuildCookieFilter();
}
+ BrowsingDataRemoverDelegate::EmbedderOriginTypeMatcher embedder_matcher;
+ if (embedder_delegate_)
+ embedder_matcher = embedder_delegate_->GetOriginTypeMatcher();
+
storage_partition->ClearData(
storage_partition_remove_mask, quota_storage_remove_mask,
- base::Bind(&DoesOriginMatchMaskAndUrls, weak_ptr_factory_.GetWeakPtr(),
- origin_type_mask_, filter),
+ base::Bind(&DoesOriginMatchMaskAndURLs, origin_type_mask_, filter,
+ embedder_matcher),
cookie_matcher, delete_begin_, delete_end_,
clear_storage_partition_data_.GetCompletionCallback());
}
@@ -647,8 +656,7 @@ void BrowsingDataRemoverImpl::Notify() {
// are scheduled.
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
- base::Bind(&BrowsingDataRemoverImpl::RunNextTask,
- weak_ptr_factory_.GetWeakPtr()));
+ base::Bind(&BrowsingDataRemoverImpl::RunNextTask, GetWeakPtr()));
}
void BrowsingDataRemoverImpl::NotifyIfDone() {
@@ -661,10 +669,21 @@ void BrowsingDataRemoverImpl::NotifyIfDone() {
if (completion_inhibitor_) {
completion_inhibitor_->OnBrowsingDataRemoverWouldComplete(
- this, base::Bind(&BrowsingDataRemoverImpl::Notify,
- weak_ptr_factory_.GetWeakPtr()));
+ this, base::Bind(&BrowsingDataRemoverImpl::Notify, GetWeakPtr()));
return;
}
Notify();
}
+
+base::WeakPtr<BrowsingDataRemoverImpl> BrowsingDataRemoverImpl::GetWeakPtr() {
+ DCHECK_CURRENTLY_ON(BrowserThread::UI);
+ base::WeakPtr<BrowsingDataRemoverImpl> weak_ptr =
+ weak_ptr_factory_.GetWeakPtr();
+
+ // Immediately bind the weak pointer to the UI thread. This makes it easier
+ // to discover potential misuse on the IO thread.
+ weak_ptr.get();
msramek 2017/04/06 12:06:39 I added the proactive UI thread binding here.
+
+ return weak_ptr;
+}
« chrome/browser/browsing_data/browsing_data_remover_delegate.h ('K') | « chrome/browser/browsing_data/browsing_data_remover_impl.h ('k') | chrome/browser/browsing_data/chrome_browsing_data_remover_delegate.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698