1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
|
// Copyright 2018 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "content/browser/renderer_host/code_cache_host_impl.h"
#include "base/bind.h"
#include "base/bind_helpers.h"
#include "base/task/post_task.h"
#include "base/threading/thread.h"
#include "build/build_config.h"
#include "content/browser/cache_storage/cache_storage.h"
#include "content/browser/cache_storage/cache_storage_cache.h"
#include "content/browser/cache_storage/cache_storage_cache_handle.h"
#include "content/browser/cache_storage/cache_storage_context_impl.h"
#include "content/browser/cache_storage/cache_storage_manager.h"
#include "content/browser/child_process_security_policy_impl.h"
#include "content/browser/code_cache/generated_code_cache.h"
#include "content/browser/code_cache/generated_code_cache_context.h"
#include "content/browser/renderer_host/render_process_host_impl.h"
#include "content/browser/storage_partition_impl.h"
#include "content/public/browser/resource_context.h"
#include "content/public/browser/storage_partition.h"
#include "content/public/common/content_features.h"
#include "content/public/common/url_constants.h"
#include "mojo/public/cpp/bindings/strong_binding.h"
#include "net/base/io_buffer.h"
#include "third_party/blink/public/common/cache_storage/cache_storage_utils.h"
#include "url/gurl.h"
#include "url/origin.h"
using blink::mojom::CacheStorageError;
namespace content {
namespace {
void NoOpCacheStorageErrorCallback(CacheStorageCacheHandle cache_handle,
CacheStorageError error) {}
// Code caches use two keys: the URL of requested resource |resource_url|
// as the primary key and the origin lock of the renderer that requested this
// resource as secondary key. This function returns the origin lock of the
// renderer that will be used as the secondary key for the code cache.
// The secondary key is:
// Case 1. an empty GURL if the render process is not locked to an origin. In
// this case, code cache uses |resource_url| as the key.
// Case 2. a base::nullopt, if the origin lock is opaque (for ex: browser
// initiated navigation to a data: URL). In these cases, the code should not be
// cached since the serialized value of opaque origins should not be used as a
// key.
// Case 3: origin_lock if the scheme of origin_lock is Http/Https/chrome.
// Case 4. base::nullopt otherwise.
base::Optional<GURL> GetSecondaryKeyForCodeCache(const GURL& resource_url,
int render_process_id) {
if (!resource_url.is_valid() || !resource_url.SchemeIsHTTPOrHTTPS())
return base::nullopt;
GURL origin_lock =
ChildProcessSecurityPolicyImpl::GetInstance()->GetOriginLock(
render_process_id);
// Case 1: If origin lock is empty, it means the render process is not locked
// to any origin. It is safe to just use the |resource_url| of the requested
// resource as the key. Return an empty GURL as the second key.
if (origin_lock.is_empty())
return GURL::EmptyGURL();
// Case 2: Don't use invalid origin_lock as a key.
if (!origin_lock.is_valid())
return base::nullopt;
// Case 2: Don't cache the code corresponding to opaque origins. The same
// origin checks should always fail for opaque origins but the serialized
// value of opaque origins does not ensure this.
if (url::Origin::Create(origin_lock).opaque())
return base::nullopt;
// Case 3: origin_lock is used to enfore site-isolation in code caches.
// Http/https/chrome schemes are safe to be used as a secondary key. Other
// schemes could be enabled if they are known to be safe and if it is
// required to cache code from those origins.
//
// file:// URLs will have a "file:" origin lock and would thus share a
// cache across all file:// URLs. That would likely be ok for security, but
// since this case is not performance sensitive we will keep things simple and
// limit the cache to http/https/chrome processes.
if (origin_lock.SchemeIsHTTPOrHTTPS() ||
origin_lock.SchemeIs(content::kChromeUIScheme)) {
return origin_lock;
}
return base::nullopt;
}
} // namespace
CodeCacheHostImpl::CodeCacheHostImpl(
int render_process_id,
scoped_refptr<CacheStorageContextImpl> cache_storage_context,
scoped_refptr<GeneratedCodeCacheContext> generated_code_cache_context)
: render_process_id_(render_process_id),
cache_storage_context_(std::move(cache_storage_context)),
generated_code_cache_context_(std::move(generated_code_cache_context)) {}
CodeCacheHostImpl::~CodeCacheHostImpl() {
DCHECK_CURRENTLY_ON(BrowserThread::UI);
}
// static
void CodeCacheHostImpl::Create(
int render_process_id,
scoped_refptr<CacheStorageContextImpl> cache_storage_context,
scoped_refptr<GeneratedCodeCacheContext> generated_code_cache_context,
blink::mojom::CodeCacheHostRequest request) {
DCHECK_CURRENTLY_ON(BrowserThread::IO);
mojo::MakeStrongBinding(
std::make_unique<CodeCacheHostImpl>(
render_process_id, std::move(cache_storage_context),
std::move(generated_code_cache_context)),
std::move(request));
}
void CodeCacheHostImpl::DidGenerateCacheableMetadata(
blink::mojom::CodeCacheType cache_type,
const GURL& url,
base::Time expected_response_time,
mojo_base::BigBuffer data) {
if (!url.SchemeIsHTTPOrHTTPS()) {
mojo::ReportBadMessage("Invalid URL scheme for code cache.");
return;
}
DCHECK_CURRENTLY_ON(BrowserThread::UI);
GeneratedCodeCache* code_cache = GetCodeCache(cache_type);
if (!code_cache)
return;
base::Optional<GURL> origin_lock =
GetSecondaryKeyForCodeCache(url, render_process_id_);
if (!origin_lock)
return;
code_cache->WriteData(url, *origin_lock, expected_response_time, data);
}
void CodeCacheHostImpl::FetchCachedCode(blink::mojom::CodeCacheType cache_type,
const GURL& url,
FetchCachedCodeCallback callback) {
GeneratedCodeCache* code_cache = GetCodeCache(cache_type);
if (!code_cache) {
std::move(callback).Run(base::Time(), std::vector<uint8_t>());
return;
}
base::Optional<GURL> origin_lock =
GetSecondaryKeyForCodeCache(url, render_process_id_);
if (!origin_lock) {
std::move(callback).Run(base::Time(), std::vector<uint8_t>());
return;
}
auto read_callback = base::BindRepeating(
&CodeCacheHostImpl::OnReceiveCachedCode, weak_ptr_factory_.GetWeakPtr(),
base::Passed(&callback));
code_cache->FetchEntry(url, *origin_lock, read_callback);
}
void CodeCacheHostImpl::ClearCodeCacheEntry(
blink::mojom::CodeCacheType cache_type,
const GURL& url) {
GeneratedCodeCache* code_cache = GetCodeCache(cache_type);
if (!code_cache)
return;
base::Optional<GURL> origin_lock =
GetSecondaryKeyForCodeCache(url, render_process_id_);
if (!origin_lock)
return;
code_cache->DeleteEntry(url, *origin_lock);
}
void CodeCacheHostImpl::DidGenerateCacheableMetadataInCacheStorage(
const GURL& url,
base::Time expected_response_time,
mojo_base::BigBuffer data,
const url::Origin& cache_storage_origin,
const std::string& cache_storage_cache_name) {
int64_t trace_id = blink::cache_storage::CreateTraceId();
TRACE_EVENT_WITH_FLOW1(
"CacheStorage",
"CodeCacheHostImpl::DidGenerateCacheableMetadataInCacheStorage",
TRACE_ID_GLOBAL(trace_id), TRACE_EVENT_FLAG_FLOW_OUT, "url", url.spec());
if (!cache_storage_context_->CacheManager())
return;
scoped_refptr<net::IOBuffer> buf =
base::MakeRefCounted<net::IOBuffer>(data.size());
if (data.size())
memcpy(buf->data(), data.data(), data.size());
CacheStorageHandle cache_storage =
cache_storage_context_->CacheManager()->OpenCacheStorage(
cache_storage_origin, CacheStorageOwner::kCacheAPI);
cache_storage.value()->OpenCache(
cache_storage_cache_name, trace_id,
base::BindOnce(&CodeCacheHostImpl::OnCacheStorageOpenCallback,
weak_ptr_factory_.GetWeakPtr(), url,
expected_response_time, trace_id, buf, data.size()));
}
GeneratedCodeCache* CodeCacheHostImpl::GetCodeCache(
blink::mojom::CodeCacheType cache_type) {
if (!generated_code_cache_context_)
return nullptr;
if (cache_type == blink::mojom::CodeCacheType::kJavascript)
return generated_code_cache_context_->generated_js_code_cache();
DCHECK_EQ(blink::mojom::CodeCacheType::kWebAssembly, cache_type);
return generated_code_cache_context_->generated_wasm_code_cache();
}
void CodeCacheHostImpl::OnReceiveCachedCode(FetchCachedCodeCallback callback,
const base::Time& response_time,
const std::vector<uint8_t>& data) {
// TODO(crbug.com/867848): Pass the data as a mojo data pipe instead
// of vector<uint8>
std::move(callback).Run(response_time, data);
}
void CodeCacheHostImpl::OnCacheStorageOpenCallback(
const GURL& url,
base::Time expected_response_time,
int64_t trace_id,
scoped_refptr<net::IOBuffer> buf,
int buf_len,
CacheStorageCacheHandle cache_handle,
CacheStorageError error) {
TRACE_EVENT_WITH_FLOW1(
"CacheStorage", "CodeCacheHostImpl::OnCacheStorageOpenCallback",
TRACE_ID_GLOBAL(trace_id),
TRACE_EVENT_FLAG_FLOW_IN | TRACE_EVENT_FLAG_FLOW_OUT, "url", url.spec());
if (error != CacheStorageError::kSuccess || !cache_handle.value())
return;
CacheStorageCache* cache = cache_handle.value();
cache->WriteSideData(
base::BindOnce(&NoOpCacheStorageErrorCallback, std::move(cache_handle)),
url, expected_response_time, trace_id, buf, buf_len);
}
} // namespace content
|
