[Topics] Implement BrowsingTopicsSiteDataStorage database

Explainer: https://github.com/jkarlin/topics

Design doc: https://docs.google.com/document/d/12UEo6PgeySUgEpkaAoawPjhjR0GSz-XhSOXSmrMxV6U

PoC CL: https://chromium-review.googlesource.com/c/chromium/src/+/3416117

Bug: 1294456
Change-Id: I6ab632d10147737a6560539a6a4698e87013dddc
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3456782
Reviewed-by: Josh Karlin <[email protected]>
Reviewed-by: Marijn Kruisselbrink <[email protected]>
Reviewed-by: Weilun Shi <[email protected]>
Reviewed-by: Ted Choc <[email protected]>
Reviewed-by: Daniel Cheng <[email protected]>
Reviewed-by: Avi Drissman <[email protected]>
Commit-Queue: Yao Xiao <[email protected]>
Cr-Commit-Position: refs/heads/main@{#974934}

Author: yaoxiachromium

components/browsing_topics/OWNERS

@@ -0,0 +1,2 @@
+[email protected]
+[email protected]

components/browsing_topics/common/BUILD.gn

@@ -0,0 +1,16 @@
+# Copyright 2022 The Chromium Authors. All rights reserved.
+# Use of this source code is governed by a BSD-style license that can be
+# found in the LICENSE file.
+
+component("common") {
+  output_name = "browsing_topics_common"
+
+  defines = [ "IS_BROWSING_TOPICS_COMMON_IMPL" ]
+
+  sources = [
+    "common_types.cc",
+    "common_types.h",
+  ]
+
+  deps = [ "//base" ]
+}

components/browsing_topics/common/common_types.cc

@@ -0,0 +1,23 @@
+// Copyright 2022 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "components/browsing_topics/common/common_types.h"
+
+namespace browsing_topics {
+
+ApiUsageContextQueryResult::ApiUsageContextQueryResult() = default;
+
+ApiUsageContextQueryResult::ApiUsageContextQueryResult(
+    std::vector<ApiUsageContext> api_usage_contexts)
+    : success(true), api_usage_contexts(std::move(api_usage_contexts)) {}
+
+ApiUsageContextQueryResult::ApiUsageContextQueryResult(
+    ApiUsageContextQueryResult&& other) = default;
+
+ApiUsageContextQueryResult& ApiUsageContextQueryResult::operator=(
+    ApiUsageContextQueryResult&& other) = default;
+
+ApiUsageContextQueryResult::~ApiUsageContextQueryResult() = default;
+
+}  // namespace browsing_topics

components/browsing_topics/common/common_types.h

@@ -0,0 +1,46 @@
+// Copyright 2022 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef COMPONENTS_BROWSING_TOPICS_COMMON_COMMON_TYPES_H_
+#define COMPONENTS_BROWSING_TOPICS_COMMON_COMMON_TYPES_H_
+
+#include <vector>
+
+#include "base/component_export.h"
+#include "base/time/time.h"
+#include "base/types/strong_alias.h"
+
+namespace browsing_topics {
+
+using HashedHost = base::StrongAlias<class HashedHostTag, int64_t>;
+using HashedDomain = base::StrongAlias<class HashedHostTag, int64_t>;
+
+struct COMPONENT_EXPORT(BROWSING_TOPICS_COMMON) ApiUsageContext {
+  HashedDomain hashed_context_domain;
+  HashedHost hashed_top_host;
+  base::Time time;
+};
+
+struct COMPONENT_EXPORT(BROWSING_TOPICS_COMMON) ApiUsageContextQueryResult {
+  ApiUsageContextQueryResult();
+  explicit ApiUsageContextQueryResult(
+      std::vector<ApiUsageContext> api_usage_contexts);
+
+  ApiUsageContextQueryResult(const ApiUsageContextQueryResult&) = delete;
+  ApiUsageContextQueryResult& operator=(const ApiUsageContextQueryResult&) =
+      delete;
+
+  ApiUsageContextQueryResult(ApiUsageContextQueryResult&&);
+  ApiUsageContextQueryResult& operator=(ApiUsageContextQueryResult&&);
+
+  ~ApiUsageContextQueryResult();
+
+  bool success = false;
+
+  std::vector<ApiUsageContext> api_usage_contexts;
+};
+
+}  // namespace browsing_topics
+
+#endif  // COMPONENTS_BROWSING_TOPICS_COMMON_COMMON_TYPES_H_

content/DEPS

@@ -25,6 +25,7 @@ include_rules = [
   # as autofill or extensions, and chrome implementation details such as
   # settings, packaging details, installation or crash reporting.
 
+  "+components/browsing_topics/common",
   "+components/memory_pressure",
   "+components/power_scheduler",
   "+components/services/filesystem",

content/browser/BUILD.gn

@@ -62,6 +62,7 @@ source_set("browser") {
     "//cc/mojo_embedder",
     "//cc/paint",
     "//components/back_forward_cache:enum",
+    "//components/browsing_topics/common:common",
     "//components/cbor",
     "//components/discardable_memory/common",
     "//components/discardable_memory/service",
@@ -600,6 +601,8 @@ source_set("browser") {
     "browsing_data/storage_partition_code_cache_data_remover.h",
     "browsing_instance.cc",
     "browsing_instance.h",
+    "browsing_topics/browsing_topics_site_data_storage.cc",
+    "browsing_topics/browsing_topics_site_data_storage.h",
     "buckets/bucket_context.cc",
     "buckets/bucket_context.h",
     "buckets/bucket_host.cc",

content/browser/browsing_topics/OWNERS

@@ -0,0 +1 @@
+file://components/browsing_topics/OWNERS

content/browser/browsing_topics/browsing_topics_site_data_storage.cc

@@ -0,0 +1,269 @@
+// Copyright 2022 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "content/browser/browsing_topics/browsing_topics_site_data_storage.h"
+
+#include "base/files/file_util.h"
+#include "base/metrics/histogram_functions.h"
+#include "sql/database.h"
+#include "sql/recovery.h"
+#include "sql/statement.h"
+#include "sql/transaction.h"
+#include "third_party/blink/public/common/features.h"
+
+namespace content {
+
+namespace {
+
+// Version number of the database.
+const int kCurrentVersionNumber = 1;
+
+void RecordInitializationStatus(bool successful) {
+  base::UmaHistogramBoolean("BrowsingTopics.SiteDataStorage.InitStatus",
+                            successful);
+}
+
+}  // namespace
+
+BrowsingTopicsSiteDataStorage::BrowsingTopicsSiteDataStorage(
+    const base::FilePath& path_to_database)
+    : path_to_database_(path_to_database) {
+  DETACH_FROM_SEQUENCE(sequence_checker_);
+}
+
+BrowsingTopicsSiteDataStorage::~BrowsingTopicsSiteDataStorage() {
+  DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_);
+}
+
+void BrowsingTopicsSiteDataStorage::ExpireDataBefore(base::Time end_time) {
+  DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_);
+
+  if (!LazyInit())
+    return;
+
+  static constexpr char kDeleteApiUsageSql[] =
+      // clang-format off
+      "DELETE FROM browsing_topics_api_usages "
+          "WHERE last_usage_time < ?";
+  // clang-format on
+
+  sql::Statement delete_api_usage_statement(
+      db_->GetCachedStatement(SQL_FROM_HERE, kDeleteApiUsageSql));
+  delete_api_usage_statement.BindTime(0, end_time);
+
+  delete_api_usage_statement.Run();
+}
+
+browsing_topics::ApiUsageContextQueryResult
+BrowsingTopicsSiteDataStorage::GetBrowsingTopicsApiUsage(base::Time begin_time,
+                                                         base::Time end_time) {
+  DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_);
+
+  if (!LazyInit())
+    return {};
+
+  // Expire data before `begin_time`, as they are no longer needed.
+  ExpireDataBefore(begin_time);
+
+  static constexpr char kGetApiUsageSql[] =
+      // clang-format off
+      "SELECT hashed_context_domain,hashed_top_host,last_usage_time "
+          "FROM browsing_topics_api_usages "
+          "WHERE last_usage_time>=? AND last_usage_time<? "
+          "ORDER BY last_usage_time DESC "
+          "LIMIT ?";
+  // clang-format on
+
+  sql::Statement statement(
+      db_->GetCachedStatement(SQL_FROM_HERE, kGetApiUsageSql));
+
+  statement.BindTime(0, begin_time);
+  statement.BindTime(1, end_time);
+  statement.BindInt(
+      2,
+      blink::features::
+          kBrowsingTopicsMaxNumberOfApiUsageContextEntriesToLoadPerEpoch.Get());
+
+  std::vector<browsing_topics::ApiUsageContext> contexts;
+  while (statement.Step()) {
+    browsing_topics::ApiUsageContext usage_context;
+    usage_context.hashed_context_domain =
+        browsing_topics::HashedDomain(statement.ColumnInt64(0));
+    usage_context.hashed_top_host =
+        browsing_topics::HashedHost(statement.ColumnInt64(1));
+    usage_context.time = statement.ColumnTime(2);
+
+    contexts.push_back(std::move(usage_context));
+  }
+
+  if (!statement.Succeeded())
+    return {};
+
+  return browsing_topics::ApiUsageContextQueryResult(std::move(contexts));
+}
+
+void BrowsingTopicsSiteDataStorage::OnBrowsingTopicsApiUsed(
+    const browsing_topics::HashedHost& hashed_top_host,
+    const base::flat_set<browsing_topics::HashedDomain>&
+        hashed_context_domains) {
+  DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_);
+
+  if (!LazyInit())
+    return;
+
+  sql::Transaction transaction(db_.get());
+  if (!transaction.Begin())
+    return;
+
+  base::Time current_time = base::Time::Now();
+
+  for (const browsing_topics::HashedDomain& hashed_context_domain :
+       hashed_context_domains) {
+    static constexpr char kInsertApiUsageSql[] =
+        // clang-format off
+        "INSERT OR REPLACE INTO browsing_topics_api_usages "
+            "(hashed_context_domain,hashed_top_host,last_usage_time) "
+            "VALUES (?,?,?)";
+    // clang-format on
+
+    sql::Statement insert_api_usage_statement(
+        db_->GetCachedStatement(SQL_FROM_HERE, kInsertApiUsageSql));
+    insert_api_usage_statement.BindInt64(0, hashed_context_domain.value());
+    insert_api_usage_statement.BindInt64(1, hashed_top_host.value());
+    insert_api_usage_statement.BindTime(2, current_time);
+
+    if (!insert_api_usage_statement.Run())
+      return;
+  }
+
+  transaction.Commit();
+}
+
+bool BrowsingTopicsSiteDataStorage::LazyInit() {
+  if (db_init_status_ != InitStatus::kUnattempted)
+    return db_init_status_ == InitStatus::kSuccess;
+
+  db_ = std::make_unique<sql::Database>(sql::DatabaseOptions{
+      .exclusive_locking = true, .page_size = 4096, .cache_size = 32});
+  db_->set_histogram_tag("BrowsingTopics");
+
+  // base::Unretained is safe here because this BrowsingTopicsSiteDataStorage
+  // owns the sql::Database instance that stores and uses the callback. So,
+  // `this` is guaranteed to outlive the callback.
+  db_->set_error_callback(
+      base::BindRepeating(&BrowsingTopicsSiteDataStorage::DatabaseErrorCallback,
+                          base::Unretained(this)));
+
+  if (!db_->Open(path_to_database_)) {
+    HandleInitializationFailure();
+    return false;
+  }
+
+  // TODO(yaoxia): measure metrics for the DB file size to have some idea if it
+  // gets too big.
+
+  if (!InitializeTables()) {
+    HandleInitializationFailure();
+    return false;
+  }
+
+  db_init_status_ = InitStatus::kSuccess;
+  RecordInitializationStatus(true);
+  return true;
+}
+
+bool BrowsingTopicsSiteDataStorage::InitializeTables() {
+  sql::Transaction transaction(db_.get());
+  if (!transaction.Begin())
+    return false;
+
+  if (!meta_table_.Init(db_.get(), kCurrentVersionNumber,
+                        kCurrentVersionNumber)) {
+    return false;
+  }
+
+  if (!CreateSchema())
+    return false;
+
+  // This is the first code version. No database version is expected to be
+  // smaller. Fail when this happens.
+  if (meta_table_.GetVersionNumber() < kCurrentVersionNumber)
+    return false;
+
+  if (!transaction.Commit())
+    return false;
+
+  // This is possible with code reverts. The DB will never work until Chrome
+  // is re-upgraded. Assume the user will continue using this Chrome version
+  // and raze the DB to get the feature working.
+  if (meta_table_.GetVersionNumber() > kCurrentVersionNumber) {
+    db_->Raze();
+    meta_table_.Reset();
+    return InitializeTables();
+  }
+
+  return true;
+}
+
+bool BrowsingTopicsSiteDataStorage::CreateSchema() {
+  static constexpr char kBrowsingTopicsApiUsagesTableSql[] =
+      // clang-format off
+      "CREATE TABLE IF NOT EXISTS browsing_topics_api_usages("
+          "hashed_context_domain INTEGER NOT NULL,"
+          "hashed_top_host INTEGER NOT NULL,"
+          "last_usage_time INTEGER NOT NULL,"
+          "PRIMARY KEY (hashed_context_domain,hashed_top_host))";
+  // clang-format on
+  if (!db_->Execute(kBrowsingTopicsApiUsagesTableSql))
+    return false;
+
+  static constexpr char kLastUsageTimeIndexSql[] =
+      // clang-format off
+      "CREATE INDEX IF NOT EXISTS last_usage_time_idx "
+          "ON browsing_topics_api_usages(last_usage_time)";
+  // clang-format on
+  if (!db_->Execute(kLastUsageTimeIndexSql))
+    return false;
+
+  return true;
+}
+
+void BrowsingTopicsSiteDataStorage::HandleInitializationFailure() {
+  db_.reset();
+  db_init_status_ = InitStatus::kFailure;
+  RecordInitializationStatus(false);
+}
+
+void BrowsingTopicsSiteDataStorage::DatabaseErrorCallback(
+    int extended_error,
+    sql::Statement* stmt) {
+  DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_);
+  // Attempt to recover a corrupt database.
+  if (sql::Recovery::ShouldRecover(extended_error)) {
+    // Prevent reentrant calls.
+    db_->reset_error_callback();
+
+    // After this call, the |db_| handle is poisoned so that future calls will
+    // return errors until the handle is re-opened.
+    sql::Recovery::RecoverDatabaseWithMetaVersion(db_.get(), path_to_database_);
+
+    // The DLOG(FATAL) below is intended to draw immediate attention to errors
+    // in newly-written code. Database corruption is generally a result of OS or
+    // hardware issues, not coding errors at the client level, so displaying the
+    // error would probably lead to confusion. The ignored call signals the
+    // test-expectation framework that the error was handled.
+    std::ignore = sql::Database::IsExpectedSqliteError(extended_error);
+    return;
+  }
+
+  // The default handling is to assert on debug and to ignore on release.
+  if (!sql::Database::IsExpectedSqliteError(extended_error))
+    DLOG(FATAL) << db_->GetErrorMessage();
+
+  // Consider the database closed if we did not attempt to recover so we did not
+  // produce further errors.
+  db_init_status_ = InitStatus::kFailure;
+}
+
+}  // namespace content