search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Adding instrumentation to locate the source of jankiness
[chromium-blink-merge.git] / chrome / browser / safe_browsing / safe_browsing_service.cc
bloba01305c46a0aef1277ecc3c05270b0abb1341e75
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "chrome/browser/safe_browsing/safe_browsing_service.h"
6
7 #include <vector>
8
9 #include "base/bind.h"
10 #include "base/bind_helpers.h"
11 #include "base/callback.h"
12 #include "base/command_line.h"
13 #include "base/debug/leak_tracker.h"
14 #include "base/lazy_instance.h"
15 #include "base/path_service.h"
16 #include "base/prefs/pref_change_registrar.h"
17 #include "base/prefs/pref_service.h"
18 #include "base/stl_util.h"
19 #include "base/strings/string_util.h"
20 #include "base/threading/thread.h"
21 #include "base/threading/thread_restrictions.h"
22 #include "chrome/browser/browser_process.h"
23 #include "chrome/browser/chrome_notification_types.h"
24 #include "chrome/browser/prefs/tracked/tracked_preference_validation_delegate.h"
25 #include "chrome/browser/profiles/profile.h"
26 #include "chrome/browser/profiles/profile_manager.h"
27 #include "chrome/browser/safe_browsing/client_side_detection_service.h"
28 #include "chrome/browser/safe_browsing/database_manager.h"
29 #include "chrome/browser/safe_browsing/download_protection_service.h"
30 #include "chrome/browser/safe_browsing/incident_reporting/binary_integrity_analyzer.h"
31 #include "chrome/browser/safe_browsing/incident_reporting/blacklist_load_analyzer.h"
32 #include "chrome/browser/safe_browsing/incident_reporting/incident_reporting_service.h"
33 #include "chrome/browser/safe_browsing/incident_reporting/variations_seed_signature_analyzer.h"
34 #include "chrome/browser/safe_browsing/malware_details.h"
35 #include "chrome/browser/safe_browsing/ping_manager.h"
36 #include "chrome/browser/safe_browsing/protocol_manager.h"
37 #include "chrome/browser/safe_browsing/safe_browsing_database.h"
38 #include "chrome/browser/safe_browsing/ui_manager.h"
39 #include "chrome/common/chrome_constants.h"
40 #include "chrome/common/chrome_paths.h"
41 #include "chrome/common/chrome_switches.h"
42 #include "chrome/common/pref_names.h"
43 #include "chrome/common/url_constants.h"
44 #include "components/metrics/metrics_service.h"
45 #include "components/startup_metric_utils/startup_metric_utils.h"
46 #include "content/public/browser/browser_thread.h"
47 #include "content/public/browser/cookie_crypto_delegate.h"
48 #include "content/public/browser/cookie_store_factory.h"
49 #include "content/public/browser/notification_service.h"
50 #include "net/cookies/cookie_monster.h"
51 #include "net/url_request/url_request_context.h"
52 #include "net/url_request/url_request_context_getter.h"
53
54 #if defined(OS_WIN)
55 #include "chrome/installer/util/browser_distribution.h"
56 #endif
57
58 #if defined(OS_ANDROID)
59 #include <string>
60 #include "base/metrics/field_trial.h"
61 #endif
62
63 using content::BrowserThread;
64
65 namespace {
66
67 // Filename suffix for the cookie database.
68 const base::FilePath::CharType kCookiesFile[] = FILE_PATH_LITERAL(" Cookies");
69
70 // The default URL prefix where browser fetches chunk updates, hashes,
71 // and reports safe browsing hits and malware details.
72 const char* const kSbDefaultURLPrefix =
73 "https://safebrowsing.google.com/safebrowsing";
74
75 // The backup URL prefix used when there are issues establishing a connection
76 // with the server at the primary URL.
77 const char* const kSbBackupConnectErrorURLPrefix =
78 "https://alt1-safebrowsing.google.com/safebrowsing";
79
80 // The backup URL prefix used when there are HTTP-specific issues with the
81 // server at the primary URL.
82 const char* const kSbBackupHttpErrorURLPrefix =
83 "https://alt2-safebrowsing.google.com/safebrowsing";
84
85 // The backup URL prefix used when there are local network specific issues.
86 const char* const kSbBackupNetworkErrorURLPrefix =
87 "https://alt3-safebrowsing.google.com/safebrowsing";
88
89 base::FilePath CookieFilePath() {
90 return base::FilePath(
91 SafeBrowsingService::GetBaseFilename().value() + kCookiesFile);
92 }
93
94 #if defined(FULL_SAFE_BROWSING)
95 // Returns true if the incident reporting service is enabled via a field trial.
96 bool IsIncidentReportingServiceEnabled() {
97 const std::string group_name = base::FieldTrialList::FindFullName(
98 "SafeBrowsingIncidentReportingService");
99 return group_name == "Enabled";
100 }
101 #endif // defined(FULL_SAFE_BROWSING)
102
103 } // namespace
104
105 class SafeBrowsingURLRequestContextGetter
106 : public net::URLRequestContextGetter {
107 public:
108 explicit SafeBrowsingURLRequestContextGetter(
109 SafeBrowsingService* sb_service_);
110
111 // Implementation for net::UrlRequestContextGetter.
112 virtual net::URLRequestContext* GetURLRequestContext() override;
113 virtual scoped_refptr<base::SingleThreadTaskRunner>
114 GetNetworkTaskRunner() const override;
115
116 protected:
117 virtual ~SafeBrowsingURLRequestContextGetter();
118
119 private:
120 SafeBrowsingService* const sb_service_; // Owned by BrowserProcess.
121 scoped_refptr<base::SingleThreadTaskRunner> network_task_runner_;
122
123 base::debug::LeakTracker<SafeBrowsingURLRequestContextGetter> leak_tracker_;
124 };
125
126 SafeBrowsingURLRequestContextGetter::SafeBrowsingURLRequestContextGetter(
127 SafeBrowsingService* sb_service)
128 : sb_service_(sb_service),
129 network_task_runner_(
130 BrowserThread::GetMessageLoopProxyForThread(BrowserThread::IO)) {
131 }
132
133 SafeBrowsingURLRequestContextGetter::~SafeBrowsingURLRequestContextGetter() {}
134
135 net::URLRequestContext*
136 SafeBrowsingURLRequestContextGetter::GetURLRequestContext() {
137 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
138 DCHECK(sb_service_->url_request_context_.get());
139
140 return sb_service_->url_request_context_.get();
141 }
142
143 scoped_refptr<base::SingleThreadTaskRunner>
144 SafeBrowsingURLRequestContextGetter::GetNetworkTaskRunner() const {
145 return network_task_runner_;
146 }
147
148 // static
149 SafeBrowsingServiceFactory* SafeBrowsingService::factory_ = NULL;
150
151 // The default SafeBrowsingServiceFactory. Global, made a singleton so we
152 // don't leak it.
153 class SafeBrowsingServiceFactoryImpl : public SafeBrowsingServiceFactory {
154 public:
155 virtual SafeBrowsingService* CreateSafeBrowsingService() override {
156 return new SafeBrowsingService();
157 }
158
159 private:
160 friend struct base::DefaultLazyInstanceTraits<SafeBrowsingServiceFactoryImpl>;
161
162 SafeBrowsingServiceFactoryImpl() { }
163
164 DISALLOW_COPY_AND_ASSIGN(SafeBrowsingServiceFactoryImpl);
165 };
166
167 static base::LazyInstance<SafeBrowsingServiceFactoryImpl>::Leaky
168 g_safe_browsing_service_factory_impl = LAZY_INSTANCE_INITIALIZER;
169
170 // static
171 base::FilePath SafeBrowsingService::GetCookieFilePathForTesting() {
172 return CookieFilePath();
173 }
174
175 // static
176 base::FilePath SafeBrowsingService::GetBaseFilename() {
177 base::FilePath path;
178 bool result = PathService::Get(chrome::DIR_USER_DATA, &path);
179 DCHECK(result);
180 return path.Append(chrome::kSafeBrowsingBaseFilename);
181 }
182
183
184 // static
185 SafeBrowsingService* SafeBrowsingService::CreateSafeBrowsingService() {
186 if (!factory_)
187 factory_ = g_safe_browsing_service_factory_impl.Pointer();
188 return factory_->CreateSafeBrowsingService();
189 }
190
191 #if defined(OS_ANDROID) && defined(FULL_SAFE_BROWSING)
192 // static
193 bool SafeBrowsingService::IsEnabledByFieldTrial() {
194 const std::string experiment_name =
195 base::FieldTrialList::FindFullName("SafeBrowsingAndroid");
196 return experiment_name == "Enabled";
197 }
198 #endif
199
200 SafeBrowsingService::SafeBrowsingService()
201 : protocol_manager_(NULL),
202 ping_manager_(NULL),
203 enabled_(false) {
204 }
205
206 SafeBrowsingService::~SafeBrowsingService() {
207 // We should have already been shut down. If we're still enabled, then the
208 // database isn't going to be closed properly, which could lead to corruption.
209 DCHECK(!enabled_);
210 }
211
212 void SafeBrowsingService::Initialize() {
213 startup_metric_utils::ScopedSlowStartupUMA
214 scoped_timer("Startup.SlowStartupSafeBrowsingServiceInitialize");
215
216 url_request_context_getter_ =
217 new SafeBrowsingURLRequestContextGetter(this);
218
219 ui_manager_ = CreateUIManager();
220
221 database_manager_ = CreateDatabaseManager();
222
223 BrowserThread::PostTask(
224 BrowserThread::IO, FROM_HERE,
225 base::Bind(
226 &SafeBrowsingService::InitURLRequestContextOnIOThread, this,
227 make_scoped_refptr(g_browser_process->system_request_context())));
228
229 #if defined(FULL_SAFE_BROWSING)
230 #if !defined(OS_ANDROID)
231 if (!CommandLine::ForCurrentProcess()->HasSwitch(
232 switches::kDisableClientSidePhishingDetection)) {
233 csd_service_.reset(safe_browsing::ClientSideDetectionService::Create(
234 url_request_context_getter_.get()));
235 }
236 download_service_.reset(new safe_browsing::DownloadProtectionService(
237 this, url_request_context_getter_.get()));
238 #endif
239
240 if (IsIncidentReportingServiceEnabled()) {
241 incident_service_.reset(new safe_browsing::IncidentReportingService(
242 this, url_request_context_getter_));
243 }
244 #endif
245
246 // Track the safe browsing preference of existing profiles.
247 // The SafeBrowsingService will be started if any existing profile has the
248 // preference enabled. It will also listen for updates to the preferences.
249 ProfileManager* profile_manager = g_browser_process->profile_manager();
250 if (profile_manager) {
251 std::vector<Profile*> profiles = profile_manager->GetLoadedProfiles();
252 for (size_t i = 0; i < profiles.size(); ++i) {
253 if (profiles[i]->IsOffTheRecord())
254 continue;
255 AddPrefService(profiles[i]->GetPrefs());
256 }
257 }
258
259 // Track profile creation and destruction.
260 prefs_registrar_.Add(this, chrome::NOTIFICATION_PROFILE_CREATED,
261 content::NotificationService::AllSources());
262 prefs_registrar_.Add(this, chrome::NOTIFICATION_PROFILE_DESTROYED,
263 content::NotificationService::AllSources());
264
265 #if defined(FULL_SAFE_BROWSING)
266 // Register all the delayed analysis to the incident reporting service.
267 RegisterAllDelayedAnalysis();
268 #endif
269 }
270
271 void SafeBrowsingService::ShutDown() {
272 // Deletes the PrefChangeRegistrars, whose dtors also unregister |this| as an
273 // observer of the preferences.
274 STLDeleteValues(&prefs_map_);
275
276 // Remove Profile creation/destruction observers.
277 prefs_registrar_.RemoveAll();
278
279 Stop(true);
280 // The IO thread is going away, so make sure the ClientSideDetectionService
281 // dtor executes now since it may call the dtor of URLFetcher which relies
282 // on it.
283 csd_service_.reset();
284 download_service_.reset();
285 incident_service_.reset();
286
287 url_request_context_getter_ = NULL;
288 BrowserThread::PostNonNestableTask(
289 BrowserThread::IO, FROM_HERE,
290 base::Bind(&SafeBrowsingService::DestroyURLRequestContextOnIOThread,
291 this));
292 }
293
294 // Binhash verification is only enabled for UMA users for now.
295 bool SafeBrowsingService::DownloadBinHashNeeded() const {
296 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
297
298 #if defined(FULL_SAFE_BROWSING)
299 return (database_manager_->download_protection_enabled() &&
300 ui_manager_->CanReportStats()) ||
301 (download_protection_service() &&
302 download_protection_service()->enabled());
303 #else
304 return false;
305 #endif
306 }
307
308 net::URLRequestContextGetter* SafeBrowsingService::url_request_context() {
309 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
310 return url_request_context_getter_.get();
311 }
312
313 const scoped_refptr<SafeBrowsingUIManager>&
314 SafeBrowsingService::ui_manager() const {
315 return ui_manager_;
316 }
317
318 const scoped_refptr<SafeBrowsingDatabaseManager>&
319 SafeBrowsingService::database_manager() const {
320 return database_manager_;
321 }
322
323 SafeBrowsingProtocolManager* SafeBrowsingService::protocol_manager() const {
324 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
325 return protocol_manager_;
326 }
327
328 SafeBrowsingPingManager* SafeBrowsingService::ping_manager() const {
329 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
330 return ping_manager_;
331 }
332
333 scoped_ptr<TrackedPreferenceValidationDelegate>
334 SafeBrowsingService::CreatePreferenceValidationDelegate(
335 Profile* profile) const {
336 #if defined(FULL_SAFE_BROWSING)
337 if (incident_service_)
338 return incident_service_->CreatePreferenceValidationDelegate(profile);
339 #endif
340 return scoped_ptr<TrackedPreferenceValidationDelegate>();
341 }
342
343 void SafeBrowsingService::RegisterDelayedAnalysisCallback(
344 const safe_browsing::DelayedAnalysisCallback& callback) {
345 #if defined(FULL_SAFE_BROWSING)
346 if (incident_service_)
347 incident_service_->RegisterDelayedAnalysisCallback(callback);
348 #endif
349 }
350
351 SafeBrowsingUIManager* SafeBrowsingService::CreateUIManager() {
352 return new SafeBrowsingUIManager(this);
353 }
354
355 SafeBrowsingDatabaseManager* SafeBrowsingService::CreateDatabaseManager() {
356 #if defined(FULL_SAFE_BROWSING)
357 return new SafeBrowsingDatabaseManager(this);
358 #else
359 return NULL;
360 #endif
361 }
362
363 void SafeBrowsingService::RegisterAllDelayedAnalysis() {
364 safe_browsing::RegisterBinaryIntegrityAnalysis();
365 safe_browsing::RegisterBlacklistLoadAnalysis();
366 safe_browsing::RegisterVariationsSeedSignatureAnalysis();
367 }
368
369 void SafeBrowsingService::InitURLRequestContextOnIOThread(
370 net::URLRequestContextGetter* system_url_request_context_getter) {
371 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
372 DCHECK(!url_request_context_.get());
373
374 scoped_refptr<net::CookieStore> cookie_store(
375 content::CreateCookieStore(
376 content::CookieStoreConfig(
377 CookieFilePath(),
378 content::CookieStoreConfig::EPHEMERAL_SESSION_COOKIES,
379 NULL,
380 NULL)));
381
382 url_request_context_.reset(new net::URLRequestContext);
383 // |system_url_request_context_getter| may be NULL during tests.
384 if (system_url_request_context_getter) {
385 url_request_context_->CopyFrom(
386 system_url_request_context_getter->GetURLRequestContext());
387 }
388 url_request_context_->set_cookie_store(cookie_store.get());
389 }
390
391 void SafeBrowsingService::DestroyURLRequestContextOnIOThread() {
392 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
393
394 url_request_context_->AssertNoURLRequests();
395
396 // Need to do the CheckForLeaks on IOThread instead of in ShutDown where
397 // url_request_context_getter_ is cleared, since the URLRequestContextGetter
398 // will PostTask to IOTread to delete itself.
399 using base::debug::LeakTracker;
400 LeakTracker<SafeBrowsingURLRequestContextGetter>::CheckForLeaks();
401
402 url_request_context_.reset();
403 }
404
405 SafeBrowsingProtocolConfig SafeBrowsingService::GetProtocolConfig() const {
406 SafeBrowsingProtocolConfig config;
407 // On Windows, get the safe browsing client name from the browser
408 // distribution classes in installer util. These classes don't yet have
409 // an analog on non-Windows builds so just keep the name specified here.
410 #if defined(OS_WIN)
411 BrowserDistribution* dist = BrowserDistribution::GetDistribution();
412 config.client_name = dist->GetSafeBrowsingName();
413 #else
414 #if defined(GOOGLE_CHROME_BUILD)
415 config.client_name = "googlechrome";
416 #else
417 config.client_name = "chromium";
418 #endif
419
420 // Mark client string to allow server to differentiate mobile.
421 #if defined(OS_ANDROID)
422 config.client_name.append("-a");
423 #elif defined(OS_IOS)
424 config.client_name.append("-i");
425 #endif
426
427 #endif // defined(OS_WIN)
428 CommandLine* cmdline = CommandLine::ForCurrentProcess();
429 config.disable_auto_update =
430 cmdline->HasSwitch(switches::kSbDisableAutoUpdate) ||
431 cmdline->HasSwitch(switches::kDisableBackgroundNetworking);
432 config.url_prefix = kSbDefaultURLPrefix;
433 config.backup_connect_error_url_prefix = kSbBackupConnectErrorURLPrefix;
434 config.backup_http_error_url_prefix = kSbBackupHttpErrorURLPrefix;
435 config.backup_network_error_url_prefix = kSbBackupNetworkErrorURLPrefix;
436
437 return config;
438 }
439
440 void SafeBrowsingService::StartOnIOThread(
441 net::URLRequestContextGetter* url_request_context_getter) {
442 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
443 if (enabled_)
444 return;
445 enabled_ = true;
446
447 SafeBrowsingProtocolConfig config = GetProtocolConfig();
448
449 #if defined(FULL_SAFE_BROWSING)
450 DCHECK(database_manager_.get());
451 database_manager_->StartOnIOThread();
452
453 DCHECK(!protocol_manager_);
454 protocol_manager_ = SafeBrowsingProtocolManager::Create(
455 database_manager_.get(), url_request_context_getter, config);
456 protocol_manager_->Initialize();
457 #endif
458
459 DCHECK(!ping_manager_);
460 ping_manager_ = SafeBrowsingPingManager::Create(
461 url_request_context_getter, config);
462 }
463
464 void SafeBrowsingService::StopOnIOThread(bool shutdown) {
465 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
466
467 #if defined(FULL_SAFE_BROWSING)
468 database_manager_->StopOnIOThread(shutdown);
469 #endif
470 ui_manager_->StopOnIOThread(shutdown);
471
472 if (enabled_) {
473 enabled_ = false;
474
475 #if defined(FULL_SAFE_BROWSING)
476 // This cancels all in-flight GetHash requests. Note that database_manager_
477 // relies on the protocol_manager_ so if the latter is destroyed, the
478 // former must be stopped.
479 delete protocol_manager_;
480 protocol_manager_ = NULL;
481 #endif
482 delete ping_manager_;
483 ping_manager_ = NULL;
484 }
485 }
486
487 void SafeBrowsingService::Start() {
488 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
489
490 BrowserThread::PostTask(
491 BrowserThread::IO, FROM_HERE,
492 base::Bind(&SafeBrowsingService::StartOnIOThread, this,
493 url_request_context_getter_));
494 }
495
496 void SafeBrowsingService::Stop(bool shutdown) {
497 BrowserThread::PostTask(
498 BrowserThread::IO, FROM_HERE,
499 base::Bind(&SafeBrowsingService::StopOnIOThread, this, shutdown));
500 }
501
502 void SafeBrowsingService::Observe(int type,
503 const content::NotificationSource& source,
504 const content::NotificationDetails& details) {
505 switch (type) {
506 case chrome::NOTIFICATION_PROFILE_CREATED: {
507 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
508 Profile* profile = content::Source<Profile>(source).ptr();
509 if (!profile->IsOffTheRecord())
510 AddPrefService(profile->GetPrefs());
511 break;
512 }
513 case chrome::NOTIFICATION_PROFILE_DESTROYED: {
514 DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
515 Profile* profile = content::Source<Profile>(source).ptr();
516 if (!profile->IsOffTheRecord())
517 RemovePrefService(profile->GetPrefs());
518 break;
519 }
520 default:
521 NOTREACHED();
522 }
523 }
524
525 void SafeBrowsingService::AddPrefService(PrefService* pref_service) {
526 DCHECK(prefs_map_.find(pref_service) == prefs_map_.end());
527 PrefChangeRegistrar* registrar = new PrefChangeRegistrar();
528 registrar->Init(pref_service);
529 registrar->Add(prefs::kSafeBrowsingEnabled,
530 base::Bind(&SafeBrowsingService::RefreshState,
531 base::Unretained(this)));
532 prefs_map_[pref_service] = registrar;
533 RefreshState();
534 }
535
536 void SafeBrowsingService::RemovePrefService(PrefService* pref_service) {
537 if (prefs_map_.find(pref_service) != prefs_map_.end()) {
538 delete prefs_map_[pref_service];
539 prefs_map_.erase(pref_service);
540 RefreshState();
541 } else {
542 NOTREACHED();
543 }
544 }
545
546 void SafeBrowsingService::RefreshState() {
547 // Check if any profile requires the service to be active.
548 bool enable = false;
549 std::map<PrefService*, PrefChangeRegistrar*>::iterator iter;
550 for (iter = prefs_map_.begin(); iter != prefs_map_.end(); ++iter) {
551 if (iter->first->GetBoolean(prefs::kSafeBrowsingEnabled)) {
552 enable = true;
553 break;
554 }
555 }
556
557 if (enable)
558 Start();
559 else
560 Stop(false);
561
562 #if defined(FULL_SAFE_BROWSING)
563 if (csd_service_)
564 csd_service_->SetEnabledAndRefreshState(enable);
565 if (download_service_)
566 download_service_->SetEnabled(enable);
567 #endif
568 }