// Copyright 2012 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #ifdef UNSAFE_BUFFERS_BUILD // TODO(crbug.com/40285824): Remove this and convert code to safer constructs. #pragma allow_unsafe_buffers #endif #include <stddef.h> #include <memory> #include <string> #include "base/feature_list.h" #include "base/functional/bind.h" #include "base/functional/callback.h" #include "base/metrics/histogram_samples.h" #include "base/path_service.h" #include "base/run_loop.h" #include "base/strings/stringprintf.h" #include "base/task/sequenced_task_runner.h" #include "base/test/bind.h" #include "base/test/metrics/histogram_tester.h" #include "base/test/scoped_feature_list.h" #include "base/test/simple_test_clock.h" #include "base/test/test_future.h" #include "base/time/time.h" #include "build/build_config.h" #include "build/chromeos_buildflags.h" #include "chrome/browser/browsing_data/browsing_data_remover_browsertest_base.h" #include "chrome/browser/browsing_data/chrome_browsing_data_remover_constants.h" #include "chrome/browser/browsing_data/counters/cache_counter.h" #include "chrome/browser/browsing_data/counters/site_data_counting_helper.h" #include "chrome/browser/content_settings/host_content_settings_map_factory.h" #include "chrome/browser/external_protocol/external_protocol_handler.h" #include "chrome/browser/media/clear_key_cdm_test_helper.h" #include "chrome/browser/prefs/session_startup_pref.h" #include "chrome/browser/profiles/profile.h" #include "chrome/browser/signin/account_reconcilor_factory.h" #include "chrome/browser/signin/identity_manager_factory.h" #include "chrome/browser/sync/sync_service_factory.h" #include "chrome/browser/ui/browser.h" #include "chrome/common/pref_names.h" #include "chrome/test/base/in_process_browser_test.h" #include "chrome/test/base/ui_test_utils.h" #include "components/browsing_data/content/browsing_data_model.h" #include "components/content_settings/core/browser/host_content_settings_map.h" #include "components/content_settings/core/common/content_settings_utils.h" #include "components/history/core/common/pref_names.h" #include "components/metrics/content/subprocess_metrics_provider.h" #include "components/nacl/common/buildflags.h" #include "components/password_manager/core/browser/features/password_features.h" #include "components/password_manager/core/browser/features/password_manager_features_util.h" #include "components/prefs/pref_service.h" #include "components/signin/core/browser/account_reconcilor.h" #include "components/signin/public/base/signin_switches.h" #include "components/signin/public/identity_manager/identity_manager.h" #include "components/signin/public/identity_manager/identity_test_utils.h" #include "components/sync/test/test_sync_service.h" #include "content/public/browser/browsing_data_filter_builder.h" #include "content/public/browser/clear_site_data_utils.h" #include "content/public/browser/network_service_util.h" #include "content/public/browser/storage_partition.h" #include "content/public/browser/storage_usage_info.h" #include "content/public/common/content_client.h" #include "content/public/common/content_features.h" #include "content/public/common/content_paths.h" #include "content/public/common/content_switches.h" #include "content/public/test/browser_test.h" #include "content/public/test/browser_test_utils.h" #include "content/public/test/browsing_data_remover_test_util.h" #include "google_apis/gaia/google_service_auth_error.h" #include "media/base/media_switches.h" #include "media/mojo/mojom/media_types.mojom.h" #include "media/mojo/services/video_decode_perf_history.h" #include "media/mojo/services/webrtc_video_perf_history.h" #include "net/cookies/cookie_partition_key.h" #include "net/dns/mock_host_resolver.h" #include "net/test/embedded_test_server/embedded_test_server.h" #include "net/traffic_annotation/network_traffic_annotation_test_helper.h" #include "storage/browser/quota/quota_manager.h" #include "storage/browser/quota/quota_manager_proxy.h" #include "testing/gtest/include/gtest/gtest.h" #include "third_party/blink/public/common/features.h" #include "third_party/blink/public/common/features_generated.h" #include "url/gurl.h" #include "url/origin.h" #if BUILDFLAG(ENABLE_LIBRARY_CDMS) #if BUILDFLAG(IS_MAC) #include "base/threading/platform_thread.h" #endif #include "base/memory/scoped_refptr.h" #endif // BUILDFLAG(ENABLE_LIBRARY_CDMS) #if BUILDFLAG(IS_CHROMEOS_ASH) #include "chrome/browser/ash/net/system_proxy_manager.h" #include "chrome/browser/browser_process.h" #include "chrome/browser/browser_process_platform_part.h" #include "chromeos/ash/components/dbus/system_proxy/system_proxy_client.h" #endif // BUILDFLAG(IS_CHROMEOS_ASH) #if BUILDFLAG(IS_CHROMEOS_LACROS) #include "chromeos/startup/browser_init_params.h" #include "components/account_manager_core/account.h" #include "components/account_manager_core/account_manager_util.h" #endif BrowserThread; BrowsingDataFilterBuilder; UnorderedElementsAre; UnorderedElementsAreArray; namespace { static const char* kExampleHost = …; static const char* kLocalHost = …; static const base::Time kStartTime = …; static const base::Time kLastHourTime = …; // This enum is used in the place of base::Time because using base::Time // as a test param causes problems on Fuchsia. See https://crbug.com/1308948 for // details. enum TimeEnum { … }; base::Time TimeEnumToTime(TimeEnum time) { … } std::vector<std::string> GetHistogramSuffixes( const base::HistogramTester& tester, const std::string& prefix) { … } void AppendRange(std::vector<std::string>& target, const std::vector<std::string_view> append) { … } } // namespace class BrowsingDataRemoverBrowserTest : public BrowsingDataRemoverBrowserTestBase { … }; #if BUILDFLAG(ENABLE_DICE_SUPPORT) // Same as BrowsingDataRemoverBrowserTest, but forces Dice to be enabled. class DiceBrowsingDataRemoverBrowserTest : public BrowsingDataRemoverBrowserTest { … }; #endif // Test BrowsingDataRemover for downloads. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, Download) { … } // Test that the salt for media device IDs is reset when cookies are cleared. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, MediaDeviceIdSalt) { … } #if BUILDFLAG(ENABLE_DICE_SUPPORT) // Test that Sync is paused when cookies are cleared. IN_PROC_BROWSER_TEST_F(DiceBrowsingDataRemoverBrowserTest, SyncToken) { … } // Test that Sync is not paused when cookies are cleared, if synced data is // being deleted. IN_PROC_BROWSER_TEST_F(DiceBrowsingDataRemoverBrowserTest, SyncTokenScopedDeletion) { … } // Test that Sync is paused when cookies are cleared if Sync was in error, even // if synced data is being deleted. IN_PROC_BROWSER_TEST_F(DiceBrowsingDataRemoverBrowserTest, SyncTokenError) { … } // Test that the tokens are revoked when cookies are cleared when there is no // primary account. IN_PROC_BROWSER_TEST_F(DiceBrowsingDataRemoverBrowserTest, NoSync) { … } #endif // The call to Remove() should crash in debug (DCHECK), but the browser-test // process model prevents using a death test. #if defined(NDEBUG) && !defined(DCHECK_ALWAYS_ON) // Test BrowsingDataRemover for prohibited downloads. Note that this only // really exercises the code in a Release build. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, DownloadProhibited) { PrefService* prefs = GetBrowser()->profile()->GetPrefs(); prefs->SetBoolean(prefs::kAllowDeletingBrowserHistory, false); DownloadAnItem(); RemoveAndWait(content::BrowsingDataRemover::DATA_TYPE_DOWNLOADS); VerifyDownloadCount(1u); } #endif // Verify VideoDecodePerfHistory is cleared when deleting all history from // beginning of time. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, VideoDecodePerfHistory) { … } // Verify WebrtcVideoPerfHistory is cleared when deleting all history from // beginning of time. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, WebrtcVideoPerfHistory) { … } // TODO(crbug.com/333756088): WebSQL is disabled everywhere except Android // WebView. #if !BUILDFLAG(IS_ANDROID) #define MAYBE_Database … #else #define MAYBE_Database … #endif // Verify can modify database after deleting it. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, MAYBE_Database) { … } // Verifies that cache deletion finishes successfully. Completes deletion of // cache should leave it empty, and partial deletion should leave nonzero // amount of data. Note that this tests the integration of BrowsingDataRemover // with ConditionalCacheDeletionHelper. Whether ConditionalCacheDeletionHelper // actually deletes the correct entries is tested // in ConditionalCacheDeletionHelperBrowsertest. // TODO(crbug.com/41373874): check the cache size instead of stopping the server // and loading the request again. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, Cache) { … } // Crashes the network service while clearing the HTTP cache to make sure the // clear operation does complete. // Note that there is a race between crashing the network service and clearing // the cache, so the test might flakily fail if the tested behavior does not // work. // TODO(crbug.com/40563720): test retry behavior by validating the cache is // empty after the crash. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, ClearCacheAndNetworkServiceCrashes) { … } // Verifies that the network quality prefs are cleared. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, VerifyNQECacheCleared) { … } IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, ExternalProtocolHandlerPerOriginPrefs) { … } IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, HistoryDeletion) { … } // ChromeOS users cannot sign out, their account preferences can never be // cleared. #if !BUILDFLAG(IS_CHROMEOS) IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, ClearingCookiesAlsoClearsPasswordAccountStorageOptIn) { … } IN_PROC_BROWSER_TEST_F( BrowsingDataRemoverBrowserTest, ClearingCookiesWithFilterAlsoClearsPasswordAccountStorageOptIn) { … } IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, ClearSiteData) { … } #endif // !BUILDFLAG(IS_CHROMEOS) // Storage Buckets class BrowsingDataRemoverStorageBucketsBrowserTest : public BrowsingDataRemoverBrowserTest { … }; IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverStorageBucketsBrowserTest, ClearSiteDataStorageBuckets) { … } const char kDelegateHistogramPrefix[] = …; const char kImplHistogramPrefix[] = …; // Add data types here that support filtering and only delete data that matches // the BrowsingDataFilterBuilder. const std::vector<std::string_view> kSupportsOriginFilteringImpl{ … }; const std::vector<std::string_view> kSupportsOriginFilteringDelegate{ … }; // This test ensures that all deletions that are part of FILTERABLE_DATA_TYPES // fully support the BrowsingDataFilterBuilder if they are running for // origin-specific deletions. Ideally, every web-visible data type should // support filtering. If you implemented filtering already, just add your type // to kSupportsOriginFiltering above. // // If it is not important that your data is cleared with per-origin deletions, // you can add your type to kDoesNotSupportOriginFiltering and ensure that // deletions are only performed when the filter builder // MatchesMostOriginsAndDomains(). IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, FullyFilteredDataTypes) { … } // Add data types here that do not support the BrowsingDataFilterBuilder. // These deletions should only run when the mode of the filter builder is // "kPreserve" and MatchesMostOriginsAndDomains() is true. Otherwise data for // these types will be cleared when per-origin deletions like those from the // Clear-Site-Data header are performed. const std::vector<std::string_view> kDoesNotSupportOriginFilteringImpl{ … }; const std::vector<std::string_view> kDoesNotSupportOriginFilteringDelegate{ … }; // See comment on FullyFilteredDataTypes test for advice when this test fails. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, AllFilterableDataTypes) { … } // Parameterized to run tests for different deletion time ranges. class BrowsingDataRemoverBrowserTestP : public BrowsingDataRemoverBrowserTest, public testing::WithParamInterface<TimeEnum> { … }; IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, CookieDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, CookieIncognitoDeletion) { … } // Regression test for https://crbug.com/1216406. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, BrowserContextDestructionVsCookieRemoval) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, SessionCookieDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, LocalStorageDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, LocalStorageIncognitoDeletion) { … } // TODO(crbug.com/41348517): DISABLED until session storage is working // correctly. Add Incognito variant when this is re-enabled. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, DISABLED_SessionStorageDeletion) { … } // SessionStorage is not supported by site data counting and the cookie tree // model but we can test the web visible behavior. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, SessionStorageDeletionWebOnly) { … } // Test that session storage is not counted until crbug.com/772337 is fixed. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, SessionStorageCounting) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, ServiceWorkerDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, ServiceWorkerIncognitoDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, CacheStorageDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, CacheStorageIncognitoDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, FileSystemDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, FileSystemIncognitoDeletion) { … } // Test that empty filesystems are deleted correctly. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, EmptyFileSystemDeletion) { … } // Test that empty filesystems are deleted correctly in incognito mode. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, EmptyFileSystemIncognitoDeletion) { … } // TODO(crbug.com/333756088): WebSQL is disabled everywhere except Android // WebView. #if !BUILDFLAG(IS_ANDROID) #define MAYBE_WebSqlDeletion … #else #define MAYBE_WebSqlDeletion … #endif IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, MAYBE_WebSqlDeletion) { … } // TODO(crbug.com/333756088): WebSQL is disabled everywhere except Android // WebView. #if !BUILDFLAG(IS_ANDROID) #define MAYBE_WebSqlIncognitoDeletion … #else #define MAYBE_WebSqlIncognitoDeletion … #endif IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, MAYBE_WebSqlIncognitoDeletion) { … } // TODO(crbug.com/333756088): WebSQL is disabled everywhere except Android // WebView. #if !BUILDFLAG(IS_ANDROID) #define MAYBE_EmptyWebSqlDeletion … #else #define MAYBE_EmptyWebSqlDeletion … #endif IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, MAYBE_EmptyWebSqlDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, IndexedDbDeletion) { … } IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, IndexedDbIncognitoDeletion) { … } // Test that empty indexed dbs are deleted correctly. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, EmptyIndexedDb) { … } #if BUILDFLAG(ENABLE_LIBRARY_CDMS) // Test Media Licenses by creating one and checking it is counted by the // cookie counter. Then delete it and check that the cookie counter is back // to zero. IN_PROC_BROWSER_TEST_P(BrowsingDataRemoverBrowserTestP, MediaLicenseDeletion) { … } // Create and save a media license (which will be deleted in the following // test). IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, PRE_MediaLicenseTimedDeletion) { … } // Create and save a second media license, and then verify that timed deletion // selects the correct license to delete. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, MediaLicenseTimedDeletion) { … } IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, MediaLicenseDeletionWithFilter) { … } #endif // BUILDFLAG(ENABLE_LIBRARY_CDMS) const std::vector<std::string> kStorageTypes{ … }; // Test that storage doesn't leave any traces on disk. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, PRE_PRE_StorageRemovedFromDisk) { … } // Restart after creating the data to ensure that everything was written to // disk. // // This depends on session restore being explicitly disabled by the test harness // above. Otherwise, we'll restore the tabs, delete the data on disk, and the // still-open tabs can get re-persisted. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, PRE_StorageRemovedFromDisk) { … } // Check if any data remains after a deletion and a Chrome restart to force // all writes to be finished. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, StorageRemovedFromDisk) { … } const std::vector<std::string> kSessionOnlyStorageTestTypes{ … }; // Test that storage gets deleted if marked as SessionOnly. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, PRE_SessionOnlyStorageRemoved) { … } // TODO(crbug.com/40925336): Test is flaky on Mac. #if BUILDFLAG(IS_MAC) #define MAYBE_SessionOnlyStorageRemoved … #else #define MAYBE_SessionOnlyStorageRemoved … #endif // Restart to delete session only storage. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, MAYBE_SessionOnlyStorageRemoved) { … } #if BUILDFLAG(IS_CHROMEOS_ASH) // Test that removing passwords, when System-proxy is enabled on Chrome OS, // sends a request to System-proxy to clear the cached user credentials. IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, SystemProxyClearsUserCredentials) { ash::SystemProxyManager::Get()->SetSystemProxyEnabledForTest(true); EXPECT_EQ(0, ash::SystemProxyClient::Get() ->GetTestInterface() ->GetClearUserCredentialsCount()); RemoveAndWait(chrome_browsing_data_remover::DATA_TYPE_PASSWORDS); EXPECT_EQ(1, ash::SystemProxyClient::Get() ->GetTestInterface() ->GetClearUserCredentialsCount()); } #endif // BUILDFLAG(IS_CHROMEOS_ASH) IN_PROC_BROWSER_TEST_F(BrowsingDataRemoverBrowserTest, RelatedWebsiteSetsDeletion) { … } // Some storage backend use a different code path for full deletions and // partial deletions, so we need to test both. INSTANTIATE_TEST_SUITE_P(…);
Codebase Browser
chromium