| // Copyright 2013 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "chrome/browser/prefs/pref_hash_filter.h" |
| |
| #include <algorithm> |
| |
| #include "base/logging.h" |
| #include "base/metrics/histogram.h" |
| #include "base/prefs/persistent_pref_store.h" |
| #include "base/prefs/pref_service.h" |
| #include "base/prefs/pref_store.h" |
| #include "base/strings/string_number_conversions.h" |
| #include "base/time/time.h" |
| #include "base/values.h" |
| #include "chrome/browser/prefs/pref_hash_store_transaction.h" |
| #include "chrome/browser/prefs/tracked/tracked_atomic_preference.h" |
| #include "chrome/browser/prefs/tracked/tracked_split_preference.h" |
| #include "chrome/common/pref_names.h" |
| #include "components/user_prefs/pref_registry_syncable.h" |
| |
| PrefHashFilter::PrefHashFilter( |
| scoped_ptr<PrefHashStore> pref_hash_store, |
| const std::vector<TrackedPreferenceMetadata>& tracked_preferences, |
| size_t reporting_ids_count) |
| : pref_hash_store_(pref_hash_store.Pass()) { |
| DCHECK(pref_hash_store_); |
| DCHECK_GE(reporting_ids_count, tracked_preferences.size()); |
| |
| for (size_t i = 0; i < tracked_preferences.size(); ++i) { |
| const TrackedPreferenceMetadata& metadata = tracked_preferences[i]; |
| |
| scoped_ptr<TrackedPreference> tracked_preference; |
| switch (metadata.strategy) { |
| case TRACKING_STRATEGY_ATOMIC: |
| tracked_preference.reset( |
| new TrackedAtomicPreference(metadata.name, metadata.reporting_id, |
| reporting_ids_count, |
| metadata.enforcement_level)); |
| break; |
| case TRACKING_STRATEGY_SPLIT: |
| tracked_preference.reset( |
| new TrackedSplitPreference(metadata.name, metadata.reporting_id, |
| reporting_ids_count, |
| metadata.enforcement_level)); |
| break; |
| } |
| DCHECK(tracked_preference); |
| |
| bool is_new = tracked_paths_.add(metadata.name, |
| tracked_preference.Pass()).second; |
| DCHECK(is_new); |
| } |
| } |
| |
| PrefHashFilter::~PrefHashFilter() { |
| // Ensure new values for all |changed_paths_| have been flushed to |
| // |pref_hash_store_| already. |
| DCHECK(changed_paths_.empty()); |
| } |
| |
| // static |
| void PrefHashFilter::RegisterProfilePrefs( |
| user_prefs::PrefRegistrySyncable* registry) { |
| // See GetResetTime for why this is a StringPref and not Int64Pref. |
| registry->RegisterStringPref( |
| prefs::kPreferenceResetTime, |
| base::Int64ToString(base::Time().ToInternalValue()), |
| user_prefs::PrefRegistrySyncable::UNSYNCABLE_PREF); |
| } |
| |
| // static |
| base::Time PrefHashFilter::GetResetTime(PrefService* user_prefs) { |
| // Provide our own implementation (identical to the PrefService::GetInt64) in |
| // order to ensure it remains consistent with the way we store this value |
| // (which we do via a PrefStore, preventing us from reusing |
| // PrefService::SetInt64). |
| int64 internal_value = base::Time().ToInternalValue(); |
| if (!base::StringToInt64( |
| user_prefs->GetString(prefs::kPreferenceResetTime), |
| &internal_value)) { |
| // Somehow the value stored on disk is not a valid int64. |
| NOTREACHED(); |
| return base::Time(); |
| } |
| return base::Time::FromInternalValue(internal_value); |
| } |
| |
| // static |
| void PrefHashFilter::ClearResetTime(PrefService* user_prefs) { |
| user_prefs->ClearPref(prefs::kPreferenceResetTime); |
| } |
| |
| void PrefHashFilter::MigrateValues(PersistentPrefStore* source, |
| PersistentPrefStore* destination) { |
| bool commit_source = false; |
| bool commit_destination = false; |
| |
| scoped_ptr<PrefHashStoreTransaction> transaction = |
| pref_hash_store_->BeginTransaction(); |
| for (TrackedPreferencesMap::const_iterator it = tracked_paths_.begin(); |
| it != tracked_paths_.end(); |
| ++it) { |
| const base::Value* source_value = NULL; |
| if (source->GetValue(it->first, &source_value)) { |
| if (!destination->GetValue(it->first, NULL)) { |
| base::DictionaryValue temp_dictionary; |
| // Copy the value from |source| into a suitable place for a |
| // TrackedPreference to act on it. |
| temp_dictionary.Set(it->first, source_value->DeepCopy()); |
| // Check whether the value is correct according to our MAC. May remove |
| // the value from |temp_dictionary|. |
| it->second->EnforceAndReport(&temp_dictionary, transaction.get()); |
| // Now take the value as it appears in |temp_dictionary| and put it in |
| // |destination|. |
| scoped_ptr<base::Value> checked_value; |
| if (temp_dictionary.Remove(it->first, &checked_value)) { |
| destination->SetValue(it->first, checked_value.release()); |
| commit_destination = true; |
| } |
| } |
| source->RemoveValue(it->first); |
| commit_source = true; |
| } |
| } |
| |
| // Order these such that a crash at any point is still recoverable. We assume |
| // that they are configured such that the writes will occur on worker threads |
| // in the order that we asked for them. |
| if (commit_destination) |
| destination->CommitPendingWrite(); |
| transaction.reset(); |
| // If we crash here, we will just delete the values from |source| in a future |
| // invocation of MigrateValues. |
| if (commit_source) |
| source->CommitPendingWrite(); |
| } |
| |
| void PrefHashFilter::Initialize(const PrefStore& pref_store) { |
| scoped_ptr<PrefHashStoreTransaction> hash_store_transaction( |
| pref_hash_store_->BeginTransaction()); |
| for (TrackedPreferencesMap::const_iterator it = tracked_paths_.begin(); |
| it != tracked_paths_.end(); ++it) { |
| const std::string& initialized_path = it->first; |
| const TrackedPreference* initialized_preference = it->second; |
| const base::Value* value = NULL; |
| pref_store.GetValue(initialized_path, &value); |
| initialized_preference->OnNewValue(value, hash_store_transaction.get()); |
| } |
| } |
| |
| // Validates loaded preference values according to stored hashes, reports |
| // validation results via UMA, and updates hashes in case of mismatch. |
| bool PrefHashFilter::FilterOnLoad(base::DictionaryValue* pref_store_contents) { |
| DCHECK(pref_store_contents); |
| base::TimeTicks checkpoint = base::TimeTicks::Now(); |
| |
| bool did_reset = false; |
| { |
| scoped_ptr<PrefHashStoreTransaction> hash_store_transaction( |
| pref_hash_store_->BeginTransaction()); |
| for (TrackedPreferencesMap::const_iterator it = tracked_paths_.begin(); |
| it != tracked_paths_.end(); ++it) { |
| if (it->second->EnforceAndReport(pref_store_contents, |
| hash_store_transaction.get())) { |
| did_reset = true; |
| } |
| } |
| } |
| |
| if (did_reset) { |
| pref_store_contents->Set(prefs::kPreferenceResetTime, |
| new base::StringValue(base::Int64ToString( |
| base::Time::Now().ToInternalValue()))); |
| } |
| |
| // TODO(gab): Remove this histogram by Feb 21 2014; after sufficient timing |
| // data has been gathered from the wild to be confident this doesn't |
| // significantly affect startup. |
| UMA_HISTOGRAM_TIMES("Settings.FilterOnLoadTime", |
| base::TimeTicks::Now() - checkpoint); |
| |
| return did_reset; |
| } |
| |
| // Marks |path| has having changed if it is part of |tracked_paths_|. A new hash |
| // will be stored for it the next time FilterSerializeData() is invoked. |
| void PrefHashFilter::FilterUpdate(const std::string& path) { |
| TrackedPreferencesMap::const_iterator it = tracked_paths_.find(path); |
| if (it != tracked_paths_.end()) |
| changed_paths_.insert(std::make_pair(path, it->second)); |
| } |
| |
| // Updates the stored hashes for |changed_paths_| before serializing data to |
| // disk. This is required as storing the hash everytime a pref's value changes |
| // is too expensive (see perf regression @ http://crbug.com/331273). |
| void PrefHashFilter::FilterSerializeData( |
| const base::DictionaryValue* pref_store_contents) { |
| if (!changed_paths_.empty()) { |
| base::TimeTicks checkpoint = base::TimeTicks::Now(); |
| { |
| scoped_ptr<PrefHashStoreTransaction> hash_store_transaction( |
| pref_hash_store_->BeginTransaction()); |
| for (ChangedPathsMap::const_iterator it = changed_paths_.begin(); |
| it != changed_paths_.end(); ++it) { |
| const std::string& changed_path = it->first; |
| const TrackedPreference* changed_preference = it->second; |
| const base::Value* value = NULL; |
| pref_store_contents->Get(changed_path, &value); |
| changed_preference->OnNewValue(value, hash_store_transaction.get()); |
| } |
| changed_paths_.clear(); |
| } |
| // TODO(gab): Remove this histogram by Feb 21 2014; after sufficient timing |
| // data has been gathered from the wild to be confident this doesn't |
| // significantly affect performance on the UI thread. |
| UMA_HISTOGRAM_TIMES("Settings.FilterSerializeDataTime", |
| base::TimeTicks::Now() - checkpoint); |
| } |
| |
| // Flush the |pref_hash_store_| to disk if it has pending writes. This is done |
| // here in an effort to flush the hash store to disk as close as possible to |
| // its matching value store (currently being flushed) to reduce the likelihood |
| // of MAC corruption in race condition scenarios where a crash occurs in the |
| // 10 seconds window where it would typically be possible that only one |
| // of the two stores has been flushed to disk (this now explicitly makes this |
| // race window as small as possible). |
| // Note that, if the |pref_hash_store_| has pending writes, this call will |
| // force serialization of its store to disk. As FilterSerializeData is already |
| // intercepting the serialization of its value store this would result in an |
| // infinite loop should the hash store also be the value store -- thus this |
| // should be removed when we move to such a model (where it will no longer be |
| // necessary anyways). |
| pref_hash_store_->CommitPendingWrite(); |
| } |
