The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/2d114cdf706c786e5c9c801bd19d92d7c51aaa9e

commit 2d114cdf706c786e5c9c801bd19d92d7c51aaa9e
Author: msramek <msramek@chromium.org>
Date: Fri Jul 22 14:27:03 2016

Fix a race condition in BrowsingDataRemover.

BrowsingDataRemover::RemoveImpl runs on the UI thread. It schedules several
operations on other threads and flips a boolean flag to "true" for each of
them. Each operation responds with a callback on the UI thread flipping its
flag back to "false" and call NotifyIfDone(), a method that checks if all
flags are already false, in which case it reports that the deletion was
completed.

In addition, NotifyIfDone() is also called at the end of
BrowsingDataRemover::RemoveImpl - this is in case that no tasks on other
threads were scheduled.

Consider the following simplified scenario with arbitrary task "X":

BrowsingDataRemover::RemoveImpl() {
  DCHECK_CURRENTLY_ON(BrowserThread::UI);
  waiting_for_task_x_ = true;
  ScheduleTaskX(&OnXDone);

  // ...

  NotifyIfDone();
}

BrowsingDataRemover::OnXDone() {
  DCHECK_CURRENTLY_ON(BrowserThread::UI);
  waiting_for_task_x_ = false;
  NotifyIfDone();
}

While this pattern should only be used if X is on a different thread,
consider what would happen if X was on the UI thread and yielded to the UI
thread. NotifyIfDone() in OnXDOne() would find all flags false and notify
about the deletion being complete. Immediately after, NotifyIfDone() in
RemoveImpl() would do the same. The observer would receive two deletion
notifications.

This is not hypothetical - clearing with remove_mask == REMOVE_COOKIES
will run OnClearedDomainReliabilityMonitor() before RemoveImpl() is finished.

This CL fixes that by considering the execution of RemoveImpl() as a task
of its own, having its own boolean flag to indicate that the body of
RemoveImpl() has finished.

This was discovered during the implementation of a task scheduler for
BrowsingDataRemover in a different CL and will be covered against regression
by the tests of that CL. It was not caught by our tests before because
BrowsingDataRemoverCompletionObserver that is commonly used in the unittests
always unregisters itself after the first callback and thus never spotted
the second callback.

BUG= 630327 

Review-Url: https://codereview.chromium.org/2173443002
Cr-Commit-Position: refs/heads/master@{#407154}

[modify] https://crrev.com/2d114cdf706c786e5c9c801bd19d92d7c51aaa9e/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/2d114cdf706c786e5c9c801bd19d92d7c51aaa9e/chrome/browser/browsing_data/browsing_data_remover.h

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/09df8fd82d462a314bde355b8aba7a221f1f3bbc

commit 09df8fd82d462a314bde355b8aba7a221f1f3bbc
Author: msramek <msramek@chromium.org>
Date: Tue Jul 26 11:10:19 2016

Fix a memory leak in BrowsingDataFilterBuilder

BrowsingDataFilterBuilder is an abstract class that has a non-virtual
destructor. This is a mistake - since the class and its subclasses are
non-copyable, they're typically handled by pointers; calling delete on
such a pointer will only call the base class destructor, not those of
the subclasses, and thus leak any attributes of the subclasses.

This was spotted by ASan in the context of the CL implementing the task
scheduler for BrowsingDataRemover. When a task was finished processing,
its destructor did not correctly destroy the contained
BrowsingDataFilterBuilder.

BUG= 630327 

Review-Url: https://codereview.chromium.org/2185453004
Cr-Commit-Position: refs/heads/master@{#407765}

[modify] https://crrev.com/09df8fd82d462a314bde355b8aba7a221f1f3bbc/chrome/browser/browsing_data/browsing_data_filter_builder.h
[modify] https://crrev.com/09df8fd82d462a314bde355b8aba7a221f1f3bbc/chrome/browser/browsing_data/origin_filter_builder.h
[modify] https://crrev.com/09df8fd82d462a314bde355b8aba7a221f1f3bbc/chrome/browser/browsing_data/registrable_domain_filter_builder.h

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/00117ff9b264b662930f8e10683fe2a0f7abef3f

commit 00117ff9b264b662930f8e10683fe2a0f7abef3f
Author: msramek <msramek@chromium.org>
Date: Thu Jul 28 12:58:03 2016

Deprecate the CallbackSubscription in BrowsingDataRemover

BrowsingDataRemover currently supports two notification systems:
1. BrowsingDataRemover::Observer
2. BrowsingDataRemover::CallbackSubscription

Remove #2 in favor of #1.

The NotificationDetails class which is returned by #2, and used by tests to
determine the parameters of the last call to BrowsingDataRemover, is replaced
by a public API of BrowsingDataRemover exposing the same values.

The consolidation of notifications will simplify the implementation of task
scheduler for removal tasks, as described in
https://docs.google.com/document/d/1oIbmZJlq5m5FvHcN7trCpp0h4mtydA0UfZasxEIe3P8/

BUG= 630327 

Review-Url: https://codereview.chromium.org/2171383002
Cr-Commit-Position: refs/heads/master@{#408378}

[modify] https://crrev.com/00117ff9b264b662930f8e10683fe2a0f7abef3f/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/00117ff9b264b662930f8e10683fe2a0f7abef3f/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/00117ff9b264b662930f8e10683fe2a0f7abef3f/chrome/browser/browsing_data/browsing_data_remover_unittest.cc
[modify] https://crrev.com/00117ff9b264b662930f8e10683fe2a0f7abef3f/chrome/browser/extensions/api/browsing_data/browsing_data_test.cc

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/6f166831372df3044052eda2459982671c24ea5e

commit 6f166831372df3044052eda2459982671c24ea5e
Author: msramek <msramek@chromium.org>
Date: Fri Aug 05 08:44:28 2016

Implement a task scheduler for BrowsingDataRemover

BrowsingDataRemover now processes each Remove() call by adding a task
to a queue; the tasks are then processed serially.

Design doc and discussion:
https://docs.google.com/document/d/1oIbmZJlq5m5FvHcN7trCpp0h4mtydA0UfZasxEIe3P8/

Changes in this CL:
1. Add a RemovalTask struct that will represent an enqueued task.
2. Since BrowsingDataFilterBuilder and its subclasses are not copyable,
   change the interface so that it's passed in a unique_ptr (it must
   be owned by a RemovalTask so that it outlives the Remove() call).
3. Split the Remove() and RemoveWithFilter() interfaces into two versions,
   one with an observer and one without. Thus, RemoveAndReply() and
   RemoveWithFilterAndReply() are added. They must explicitly specify
   a *single* observer that will receive a callback from that particular
   task.
4. Despite the change #3, every observer must still explicitly register
   and unregister itself. This is needed so that if a caller is destroyed
   before its scheduled tasks are executed, it can unregister itself
   and we know that we should *not* call it back.
5. The recently added OnBrowsingDataRemoving() call which communicates
   a busy / idle state of BrowsingDataRemover still calls all registered
   observers.
6. Updated the tests with the new interface.

To consider in follow-up CLs:
- Use a base::Callback instead of an Observer pointer (see the discussion
  in the design doc), or use a task handles whose destruction will
  cancel the task.
- Consider changing BrowsingDataFilterBuilder to be copyable. This is
  still not needed in production, but could simplify tests.

TBR=mmenke@chromium.org,engedy@chromium.org,meacer@chromium.org,johnme@chromium.org,stevenjb@chromium.org
BUG= 630327 

Review-Url: https://codereview.chromium.org/2175703002
Cr-Commit-Position: refs/heads/master@{#410016}

[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/android/preferences/pref_service_bridge.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/android/signin/signin_manager_android.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/browsing_data/browsing_data_remover_browsertest.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/browsing_data/browsing_data_remover_unittest.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/chromeos/profiles/profile_helper.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/extensions/api/browsing_data/browsing_data_api.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/net/sdch_browsertest.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/prerender/prerender_browsertest.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/profile_resetter/profile_resetter.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/push_messaging/push_messaging_browsertest.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/ssl/chrome_ssl_host_state_delegate_test.cc
[modify] https://crrev.com/6f166831372df3044052eda2459982671c24ea5e/chrome/browser/ui/webui/options/clear_browser_data_handler.cc

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/a946e92eaa55cb6da801ada49dfdd51d786fa06d

commit a946e92eaa55cb6da801ada49dfdd51d786fa06d
Author: msramek <msramek@chromium.org>
Date: Thu Sep 01 10:38:26 2016

Make ClearBrowsingDataHandler only observe its own removal task

In https://codereview.chromium.org/2133893002/, ClearBrowsingDataHandler
was made to observe whether BrowsingDataRemover has any removal task
in progress and disable the "Clear data" button if that is the case.

This is no longer necessary. BrowsingDataRemover is nowadays able to
accept a new removal task at any time and call back (only) the associated
observer when the task is done. Callers no longer need to be aware of
the possibility of other removal tasks running.

We still disable the "Clear data" button while we execute the removal
task started by pressing that button - this serves as a feedback to the
user that their removal task has indeed been executed, i.e. that pressing
the button had an effect. However, opening another instance of a dialog
in a different tab (i.e. tied to a different handler) allows the user
to execute another parallel removal task if they wish to do so.

Finally, we remove the OnBrowsingDataRemoverRemoving(bool) method from
BrowsingDataRemover::Observer, as the previous behavior of
ClearBrowsingDataHandler was its only usecase.

In practice, this CL is mostly a partial revert of
https://codereview.chromium.org/2133893002/

BUG= 630327 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.linux:closure_compilation

Review-Url: https://codereview.chromium.org/2240883002
Cr-Commit-Position: refs/heads/master@{#415925}

[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_browser_proxy.js
[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_dialog.js
[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.cc
[modify] https://crrev.com/a946e92eaa55cb6da801ada49dfdd51d786fa06d/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.h

The last one of these CLs (comment #5) reconciles the logic used by the material design Clear Browsing Data dialog (chrome://md-settings/clearBrowserData) to track the clearing tasks with the sequentialization of tasks in BrowsingDataRemover.

In the state before this CL, the dialog would stay open until all running tasks are finished, not only the task initiated by the user.

In the current world, it's probably not a problem yet - it's not yet likely that several tasks would be executed at the same time, and the old non-material CBD dialog did not even protect itself from this case. However, it's still a bug that has appeared in M54, so I would consider merging it.

Your change meets the bar and is auto-approved for M54 (branch: 2840)

Please merge your change to M54 (branch: 2840) before 5:00 PM PST Monday [09/05] if you would like to make it to M54 Beta promotion on Thursday [09/08].

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/b768f65f0df5bda94f61b45035c83793678c8e46

commit b768f65f0df5bda94f61b45035c83793678c8e46
Author: Martin Sramek <msramek@chromium.org>
Date: Mon Sep 05 09:26:46 2016

Make ClearBrowsingDataHandler only observe its own removal task

In https://codereview.chromium.org/2133893002/, ClearBrowsingDataHandler
was made to observe whether BrowsingDataRemover has any removal task
in progress and disable the "Clear data" button if that is the case.

This is no longer necessary. BrowsingDataRemover is nowadays able to
accept a new removal task at any time and call back (only) the associated
observer when the task is done. Callers no longer need to be aware of
the possibility of other removal tasks running.

We still disable the "Clear data" button while we execute the removal
task started by pressing that button - this serves as a feedback to the
user that their removal task has indeed been executed, i.e. that pressing
the button had an effect. However, opening another instance of a dialog
in a different tab (i.e. tied to a different handler) allows the user
to execute another parallel removal task if they wish to do so.

Finally, we remove the OnBrowsingDataRemoverRemoving(bool) method from
BrowsingDataRemover::Observer, as the previous behavior of
ClearBrowsingDataHandler was its only usecase.

In practice, this CL is mostly a partial revert of
https://codereview.chromium.org/2133893002/

BUG= 630327 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.linux:closure_compilation

Review-Url: https://codereview.chromium.org/2240883002
Cr-Commit-Position: refs/heads/master@{#415925}
(cherry picked from commit a946e92eaa55cb6da801ada49dfdd51d786fa06d)

Review URL: https://codereview.chromium.org/2315443002 .

Cr-Commit-Position: refs/branch-heads/2840@{#154}
Cr-Branched-From: 1ae106dbab4bddd85132d5b75c670794311f4c57-refs/heads/master@{#414607}

[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_browser_proxy.js
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_dialog.js
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.cc
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.h

We now fully support the serialization of deletion tasks.

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/b768f65f0df5bda94f61b45035c83793678c8e46

commit b768f65f0df5bda94f61b45035c83793678c8e46
Author: Martin Sramek <msramek@chromium.org>
Date: Mon Sep 05 09:26:46 2016

Make ClearBrowsingDataHandler only observe its own removal task

In https://codereview.chromium.org/2133893002/, ClearBrowsingDataHandler
was made to observe whether BrowsingDataRemover has any removal task
in progress and disable the "Clear data" button if that is the case.

This is no longer necessary. BrowsingDataRemover is nowadays able to
accept a new removal task at any time and call back (only) the associated
observer when the task is done. Callers no longer need to be aware of
the possibility of other removal tasks running.

We still disable the "Clear data" button while we execute the removal
task started by pressing that button - this serves as a feedback to the
user that their removal task has indeed been executed, i.e. that pressing
the button had an effect. However, opening another instance of a dialog
in a different tab (i.e. tied to a different handler) allows the user
to execute another parallel removal task if they wish to do so.

Finally, we remove the OnBrowsingDataRemoverRemoving(bool) method from
BrowsingDataRemover::Observer, as the previous behavior of
ClearBrowsingDataHandler was its only usecase.

In practice, this CL is mostly a partial revert of
https://codereview.chromium.org/2133893002/

BUG= 630327 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.linux:closure_compilation

Review-Url: https://codereview.chromium.org/2240883002
Cr-Commit-Position: refs/heads/master@{#415925}
(cherry picked from commit a946e92eaa55cb6da801ada49dfdd51d786fa06d)

Review URL: https://codereview.chromium.org/2315443002 .

Cr-Commit-Position: refs/branch-heads/2840@{#154}
Cr-Branched-From: 1ae106dbab4bddd85132d5b75c670794311f4c57-refs/heads/master@{#414607}

[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/browsing_data/browsing_data_remover.cc
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_browser_proxy.js
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/resources/settings/clear_browsing_data_dialog/clear_browsing_data_dialog.js
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.cc
[modify] https://crrev.com/b768f65f0df5bda94f61b45035c83793678c8e46/chrome/browser/ui/webui/settings/settings_clear_browsing_data_handler.h

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/08165e64189a0c081f340b1819ab2e954d5266a1

commit 08165e64189a0c081f340b1819ab2e954d5266a1
Author: msramek <msramek@chromium.org>
Date: Wed Nov 23 16:13:37 2016

Remove the "one at a time" restriction from the browsingData API

As of https://codereview.chromium.org/2175703002, BrowsingDataRemover
supports task exclusion and this is no longer necessary.

BUG= 630327 

Review-Url: https://codereview.chromium.org/2504943002
Cr-Commit-Position: refs/heads/master@{#434177}

[modify] https://crrev.com/08165e64189a0c081f340b1819ab2e954d5266a1/chrome/browser/browsing_data/browsing_data_remover.h
[modify] https://crrev.com/08165e64189a0c081f340b1819ab2e954d5266a1/chrome/browser/extensions/api/browsing_data/browsing_data_api.cc
[modify] https://crrev.com/08165e64189a0c081f340b1819ab2e954d5266a1/chrome/browser/extensions/api/browsing_data/browsing_data_api.h
[modify] https://crrev.com/08165e64189a0c081f340b1819ab2e954d5266a1/chrome/browser/extensions/api/browsing_data/browsing_data_test.cc