1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
|
// Copyright 2013 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_EXTENSIONS_ACTIVITY_LOG_ACTIVITY_LOG_POLICY_H_
#define CHROME_BROWSER_EXTENSIONS_ACTIVITY_LOG_ACTIVITY_LOG_POLICY_H_
#include <stdint.h>
#include <map>
#include <memory>
#include <set>
#include <string>
#include <vector>
#include "base/functional/bind.h"
#include "base/functional/callback.h"
#include "base/functional/callback_helpers.h"
#include "base/memory/raw_ptr.h"
#include "base/values.h"
#include "chrome/browser/extensions/activity_log/activity_actions.h"
#include "chrome/browser/extensions/activity_log/activity_database.h"
#include "chrome/browser/extensions/activity_log/activity_log_task_runner.h"
#include "chrome/common/extensions/api/activity_log_private.h"
#include "content/public/browser/browser_thread.h"
#include "extensions/buildflags/buildflags.h"
#include "url/gurl.h"
static_assert(BUILDFLAG(ENABLE_EXTENSIONS_CORE));
class Profile;
class GURL;
namespace base {
class Clock;
class FilePath;
}
namespace extensions {
// An abstract class for processing and summarizing activity log data.
// Subclasses will generally store data in an SQLite database (the
// ActivityLogDatabasePolicy subclass includes some helper methods to assist
// with this case), but this is not absolutely required.
//
// Implementations should support:
// (1) Receiving Actions to process, and summarizing, compression, and storing
// these as appropriate.
// (2) Reading Actions back from storage.
// (3) Cleaning of URLs
//
// Implementations based on a database should likely implement
// ActivityDatabase::Delegate, which provides hooks on database events and
// allows the database to periodically request that actions (which the policy
// is responsible for queueing) be flushed to storage.
//
// Since every policy implementation might summarize data differently, the
// database implementation is policy-specific and therefore completely
// encapsulated in the policy class. All the member functions can be called
// on the UI thread.
class ActivityLogPolicy {
public:
enum PolicyType {
POLICY_FULLSTREAM,
POLICY_COUNTS,
POLICY_INVALID,
};
// Parameters are the profile and the thread that will be used to execute
// the callback when ReadData is called.
// TODO(felt,dbabic) Since only ReadData uses thread_id, it would be
// cleaner to pass thread_id as a param of ReadData directly.
explicit ActivityLogPolicy(Profile* profile);
ActivityLogPolicy(const ActivityLogPolicy&) = delete;
ActivityLogPolicy& operator=(const ActivityLogPolicy&) = delete;
// Instead of a public destructor, ActivityLogPolicy objects have a Close()
// method which will cause the object to be deleted (but may do so on another
// thread or in a deferred fashion).
virtual void Close() = 0;
// Updates the internal state of the model summarizing actions and possibly
// writes to the database. Implements the default policy storing internal
// state to memory every 5 min.
virtual void ProcessAction(scoped_refptr<Action> action) = 0;
// For unit testing only.
void SetClockForTesting(base::Clock* clock);
// A collection of methods that are useful for implementing policies. These
// are all static methods; the ActivityLogPolicy::Util class cannot be
// instantiated. This is nested within ActivityLogPolicy to make calling
// these methods more convenient from within a policy, but they are public.
class Util {
public:
Util() = delete;
Util(const Util&) = delete;
Util& operator=(const Util&) = delete;
// A collection of API calls, used to specify allowlists for argument
// filtering.
typedef std::set<std::pair<Action::ActionType, std::string> > ApiSet;
// Serialize a Value as a JSON string. Returns an empty string if value is
// null.
static std::string Serialize(std::optional<base::ValueView> value);
// Removes potentially privacy-sensitive data that should not be logged.
// This should generally be called on an Action before logging, unless
// debugging flags are enabled. Modifies the Action object in place; if
// the action might be shared with other users, it is up to the caller to
// call ->Clone() first.
static void StripPrivacySensitiveFields(scoped_refptr<Action> action);
// Strip arguments from most API actions, preserving actions only for an
// allowlisted set. Modifies the Action object in-place.
static void StripArguments(const ApiSet& api_allowlist,
scoped_refptr<Action> action);
// Given a base day (timestamp at local midnight), computes the timestamp
// at midnight the given number of days before or after.
static base::Time AddDays(const base::Time& base_date, int days);
// Compute the time bounds that should be used for a database query to
// cover a time range days_ago days in the past, relative to the specified
// time.
static void ComputeDatabaseTimeBounds(const base::Time& now,
int days_ago,
int64_t* early_bound,
int64_t* late_bound);
};
protected:
// An ActivityLogPolicy is not directly destroyed. Instead, call Close()
// which will cause the object to be deleted when it is safe.
virtual ~ActivityLogPolicy();
// Returns Time::Now() unless a mock clock has been installed with
// SetClockForTesting, in which case the time according to that clock is used
// instead.
base::Time Now() const;
private:
// Support for a mock clock for testing purposes. This is used by ReadData
// to determine the date for "today" when when interpreting date ranges to
// fetch. This has no effect on batching of writes to the database.
raw_ptr<base::Clock> testing_clock_ = nullptr;
};
// A subclass of ActivityLogPolicy which is designed for policies that use
// database storage; it contains several useful helper methods.
class ActivityLogDatabasePolicy : public ActivityLogPolicy,
public ActivityDatabase::Delegate {
public:
ActivityLogDatabasePolicy(Profile* profile,
const base::FilePath& database_name);
// Initializes an activity log policy database. This needs to be called after
// constructing ActivityLogDatabasePolicy.
void Init();
// Requests that in-memory state be written to the database. This method can
// be called from any thread, but the database writes happen asynchronously
// on the database thread.
virtual void Flush();
// Gets all actions that match the specified fields. URLs are treated like
// prefixes; other fields are exact matches. Empty strings are not matched to
// anything. For the date: 0 = today, 1 = yesterday, etc.; if the data is
// negative, it will be treated as missing.
virtual void ReadFilteredData(
const std::string& extension_id,
const Action::ActionType type,
const std::string& api_name,
const std::string& page_url,
const std::string& arg_url,
const int days_ago,
base::OnceCallback<void(std::unique_ptr<Action::ActionVector>)>
callback) = 0;
// Remove actions (rows) which IDs are in the action_ids array.
virtual void RemoveActions(const std::vector<int64_t>& action_ids) = 0;
// Clean the relevant URL data. The cleaning may need to be different for
// different policies. If restrict_urls is empty then all URLs are removed.
virtual void RemoveURLs(const std::vector<GURL>& restrict_urls) = 0;
// Remove all rows relating to a given extension.
virtual void RemoveExtensionData(const std::string& extension_id) = 0;
// Deletes everything in the database.
virtual void DeleteDatabase() = 0;
protected:
// The Schedule methods dispatch the calls to the database on a
// separate thread.
template<typename DatabaseType, typename DatabaseFunc>
void ScheduleAndForget(DatabaseType db, DatabaseFunc func) {
GetActivityLogTaskRunner()->PostTask(
FROM_HERE, base::BindOnce(func, base::Unretained(db)));
}
template<typename DatabaseType, typename DatabaseFunc, typename ArgA>
void ScheduleAndForget(DatabaseType db, DatabaseFunc func, ArgA a) {
GetActivityLogTaskRunner()->PostTask(
FROM_HERE, base::BindOnce(func, base::Unretained(db), a));
}
template<typename DatabaseType, typename DatabaseFunc,
typename ArgA, typename ArgB>
void ScheduleAndForget(DatabaseType db, DatabaseFunc func, ArgA a, ArgB b) {
GetActivityLogTaskRunner()->PostTask(
FROM_HERE, base::BindOnce(func, base::Unretained(db), a, b));
}
// Access to the underlying ActivityDatabase.
ActivityDatabase* activity_database() const { return db_; }
// Access to the SQL connection in the ActivityDatabase. This should only be
// called from the database thread. May return NULL if the database is not
// valid.
sql::Database* GetDatabaseConnection() const;
private:
// See the comments for the ActivityDatabase class for a discussion of how
// database cleanup runs.
raw_ptr<ActivityDatabase> db_;
base::FilePath database_path_;
};
} // namespace extensions
#endif // CHROME_BROWSER_EXTENSIONS_ACTIVITY_LOG_ACTIVITY_LOG_POLICY_H_
|
