Changeset 208931 in webkit

Timestamp:

Nov 19, 2016 4:38:09 PM (7 years ago)

Author:

Antti Koivisto

Message:

Salt network cache hashes
​https://bugs.webkit.org/show_bug.cgi?id=164924

Reviewed by Alex Christensen.

To enhance privacy make cache content unidentifiable from file names alone.
This is done by generating a unique persistent salt for each cache instance.
It is used when computing hashes used in file names.

The patch also replaces plain text partition directory names with salted hashes.

• NetworkProcess/cache/NetworkCache.cpp:

(WebKit::NetworkCache::Cache::makeCacheKey):
(WebKit::NetworkCache::makeCacheKey): Deleted.

• NetworkProcess/cache/NetworkCache.h:

Increment cache version.

• NetworkProcess/cache/NetworkCacheBlobStorage.cpp:

(WebKit::NetworkCache::BlobStorage::BlobStorage):
(WebKit::NetworkCache::BlobStorage::add):
(WebKit::NetworkCache::BlobStorage::get):

Use salt for blob content hash.

• NetworkProcess/cache/NetworkCacheBlobStorage.h:
• NetworkProcess/cache/NetworkCacheData.cpp:

(WebKit::NetworkCache::computeSHA1):

For simplicity all SHA1s are now salted.

(WebKit::NetworkCache::makeSalt):
(WebKit::NetworkCache::readOrMakeSalt):

Read salt if it exists, generate and persist it otherwise.

• NetworkProcess/cache/NetworkCacheData.h:
• NetworkProcess/cache/NetworkCacheKey.cpp:

(WebKit::NetworkCache::Key::Key):

Remove the "No partition" string and just empty.
That was only needed to have a directory name of some sort.

(WebKit::NetworkCache::Key::computeHash):

Use salt for key hash.

(WebKit::NetworkCache::Key::computePartitionHash):

Separate hash for partition.

• NetworkProcess/cache/NetworkCacheKey.h:
• NetworkProcess/cache/NetworkCacheSpeculativeLoadManager.cpp:

(WebKit::NetworkCache::makeSubresourcesKey):
(WebKit::NetworkCache::SpeculativeLoadManager::PendingFrameLoad::saveToDiskIfReady):
(WebKit::NetworkCache::SpeculativeLoadManager::retrieveSubresourcesEntry):

• NetworkProcess/cache/NetworkCacheStorage.cpp:

(WebKit::NetworkCache::makeSaltFilePath):
(WebKit::NetworkCache::Storage::open):

Cache can't be opened if we can't read or persist a salt.

(WebKit::NetworkCache::traverseRecordsFiles):
(WebKit::NetworkCache::Storage::Storage):
(WebKit::NetworkCache::Storage::synchronize):
(WebKit::NetworkCache::Storage::recordDirectoryPathForKey):

Use the partition hash in the directory name instead of a plain text name.

(WebKit::NetworkCache::decodeRecordHeader):
(WebKit::NetworkCache::Storage::readRecord):
(WebKit::NetworkCache::Storage::encodeRecord):
(WebKit::NetworkCache::Storage::traverse):
(WebKit::NetworkCache::Storage::clear):

• NetworkProcess/cache/NetworkCacheStorage.h:

(WebKit::NetworkCache::Storage::salt):

Location:

trunk/Source/WebKit2

Files:

• ChangeLog (modified) (1 diff)
• NetworkProcess/cache/NetworkCache.cpp (modified) (2 diffs)
• NetworkProcess/cache/NetworkCache.h (modified) (1 diff)
• NetworkProcess/cache/NetworkCacheBlobStorage.cpp (modified) (3 diffs)
• NetworkProcess/cache/NetworkCacheBlobStorage.h (modified) (2 diffs)
• NetworkProcess/cache/NetworkCacheData.cpp (modified) (3 diffs)
• NetworkProcess/cache/NetworkCacheData.h (modified) (1 diff)
• NetworkProcess/cache/NetworkCacheKey.cpp (modified) (5 diffs)
• NetworkProcess/cache/NetworkCacheKey.h (modified) (6 diffs)
• NetworkProcess/cache/NetworkCacheSpeculativeLoadManager.cpp (modified) (4 diffs)
• NetworkProcess/cache/NetworkCacheStorage.cpp (modified) (12 diffs)
• NetworkProcess/cache/NetworkCacheStorage.h (modified) (4 diffs)

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2016-11-19  Antti Koivisto  <antti@apple.com>
+
+        Salt network cache hashes
+        https://bugs.webkit.org/show_bug.cgi?id=164924
+
+        Reviewed by Alex Christensen.
+
+        To enhance privacy make cache content unidentifiable from file names alone.
+        This is done by generating a unique persistent salt for each cache instance.
+        It is used when computing hashes used in file names.
+
+        The patch also replaces plain text partition directory names with salted hashes.
+
+        * NetworkProcess/cache/NetworkCache.cpp:
+        (WebKit::NetworkCache::Cache::makeCacheKey):
+        (WebKit::NetworkCache::makeCacheKey): Deleted.
+        * NetworkProcess/cache/NetworkCache.h:
+
+            Increment cache version.
+
+        * NetworkProcess/cache/NetworkCacheBlobStorage.cpp:
+        (WebKit::NetworkCache::BlobStorage::BlobStorage):
+        (WebKit::NetworkCache::BlobStorage::add):
+        (WebKit::NetworkCache::BlobStorage::get):
+
+            Use salt for blob content hash.
+
+        * NetworkProcess/cache/NetworkCacheBlobStorage.h:
+        * NetworkProcess/cache/NetworkCacheData.cpp:
+        (WebKit::NetworkCache::computeSHA1):
+
+            For simplicity all SHA1s are now salted.
+
+        (WebKit::NetworkCache::makeSalt):
+        (WebKit::NetworkCache::readOrMakeSalt):
+
+            Read salt if it exists, generate and persist it otherwise.
+
+        * NetworkProcess/cache/NetworkCacheData.h:
+        * NetworkProcess/cache/NetworkCacheKey.cpp:
+        (WebKit::NetworkCache::Key::Key):
+
+            Remove the "No partition" string and just empty.
+            That was only needed to have a directory name of some sort.
+
+        (WebKit::NetworkCache::Key::computeHash):
+
+            Use salt for key hash.
+
+        (WebKit::NetworkCache::Key::computePartitionHash):
+
+            Separate hash for partition.
+
+        * NetworkProcess/cache/NetworkCacheKey.h:
+        * NetworkProcess/cache/NetworkCacheSpeculativeLoadManager.cpp:
+        (WebKit::NetworkCache::makeSubresourcesKey):
+        (WebKit::NetworkCache::SpeculativeLoadManager::PendingFrameLoad::saveToDiskIfReady):
+        (WebKit::NetworkCache::SpeculativeLoadManager::retrieveSubresourcesEntry):
+        * NetworkProcess/cache/NetworkCacheStorage.cpp:
+        (WebKit::NetworkCache::makeSaltFilePath):
+        (WebKit::NetworkCache::Storage::open):
+
+            Cache can't be opened if we can't read or persist a salt.
+
+        (WebKit::NetworkCache::traverseRecordsFiles):
+        (WebKit::NetworkCache::Storage::Storage):
+        (WebKit::NetworkCache::Storage::synchronize):
+        (WebKit::NetworkCache::Storage::recordDirectoryPathForKey):
+
+            Use the partition hash in the directory name instead of a plain text name.
+
+        (WebKit::NetworkCache::decodeRecordHeader):
+        (WebKit::NetworkCache::Storage::readRecord):
+        (WebKit::NetworkCache::Storage::encodeRecord):
+        (WebKit::NetworkCache::Storage::traverse):
+        (WebKit::NetworkCache::Storage::clear):
+        * NetworkProcess/cache/NetworkCacheStorage.h:
+        (WebKit::NetworkCache::Storage::salt):
+
 2016-11-19  Simon Fraser  <simon.fraser@apple.com>
 

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCache.cpp

@@ -115 +115 @@
 }
 
-static Key makeCacheKey(const WebCore::ResourceRequest& request)
+Key Cache::makeCacheKey(const WebCore::ResourceRequest& request)
 {
 #if ENABLE(CACHE_PARTITIONING)
@@ -126 +126 @@
     // ranges so only the same exact range request will be served from the cache.
     String range = request.httpHeaderField(WebCore::HTTPHeaderName::Range);
-    return { partition, resourceType(), range, request.url().string() };
+    return { partition, resourceType(), range, request.url().string(), m_storage->salt() };
 }
 

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCache.h

@@ -130 +130 @@
     ~Cache() = delete;
 
+    Key makeCacheKey(const WebCore::ResourceRequest&);
+
     String dumpFilePath() const;
     void deleteDumpFile();

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheBlobStorage.cpp

@@ -41 +41 @@
 namespace NetworkCache {
 
-BlobStorage::BlobStorage(const String& blobDirectoryPath)
+BlobStorage::BlobStorage(const String& blobDirectoryPath, Salt salt)
     : m_blobDirectoryPath(blobDirectoryPath)
+    , m_salt(salt)
 {
 }
@@ -86 +87 @@
     ASSERT(!RunLoop::isMain());
 
-    auto hash = computeSHA1(data);
+    auto hash = computeSHA1(data, m_salt);
     if (data.isEmpty())
         return { data, hash };
@@ -124 +125 @@
     auto data = mapFile(linkPath.data());
 
-    return { data, computeSHA1(data) };
+    return { data, computeSHA1(data, m_salt) };
 }
 

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheBlobStorage.h

@@ -40 +40 @@
     WTF_MAKE_NONCOPYABLE(BlobStorage);
 public:
-    BlobStorage(const String& blobDirectoryPath);
+    BlobStorage(const String& blobDirectoryPath, Salt);
 
     struct Blob {
@@ -64 +64 @@
 
     const String m_blobDirectoryPath;
+    const Salt m_salt;
 
     std::atomic<size_t> m_approximateSize { 0 };

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheData.cpp

@@ -29 +29 @@
 #if ENABLE(NETWORK_CACHE)
 
+#include <WebCore/FileSystem.h>
 #include <fcntl.h>
 #include <sys/mman.h>
 #include <sys/stat.h>
+#include <wtf/CryptographicallyRandomNumber.h>
 
 namespace WebKit {
@@ -104 +106 @@
 }
 
-SHA1::Digest computeSHA1(const Data& data)
+SHA1::Digest computeSHA1(const Data& data, const Salt& salt)
 {
     SHA1 sha1;
+    sha1.addBytes(salt.data(), salt.size());
     data.apply([&sha1](const uint8_t* data, size_t size) {
         sha1.addBytes(data, size);
         return true;
     });
+
     SHA1::Digest digest;
     sha1.computeHash(digest);
@@ -125 +129 @@
 }
 
+static Salt makeSalt()
+{
+    Salt salt;
+    static_assert(salt.size() == 8, "Salt size");
+    *reinterpret_cast<uint32_t*>(&salt[0]) = cryptographicallyRandomNumber();
+    *reinterpret_cast<uint32_t*>(&salt[4]) = cryptographicallyRandomNumber();
+    return salt;
+}
+
+Optional<Salt> readOrMakeSalt(const String& path)
+{
+    auto cpath = WebCore::fileSystemRepresentation(path);
+    auto fd = open(cpath.data(), O_RDONLY, 0);
+    Salt salt;
+    auto bytesRead = read(fd, salt.data(), salt.size());
+    close(fd);
+    if (bytesRead != salt.size()) {
+        salt = makeSalt();
+
+        unlink(cpath.data());
+        fd = open(cpath.data(), O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR);
+        bool success = write(fd, salt.data(), salt.size()) == salt.size();
+        close(fd);
+        if (!success)
+            return { };
+    }
+    return salt;
+}
+
 } // namespace NetworkCache
 } // namespace WebKit

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheData.h

@@ -157 +157 @@
 Data adoptAndMapFile(int fd, size_t offset, size_t);
 Data mapFile(const char* path);
-SHA1::Digest computeSHA1(const Data&);
+
+using Salt = std::array<uint8_t, 8>;
+
+Optional<Salt> readOrMakeSalt(const String& path);
+SHA1::Digest computeSHA1(const Data&, const Salt&);
 
 }

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheKey.cpp

@@ -38 +38 @@
 namespace NetworkCache {
 
-static const String& noPartitionString()
-{
-    static NeverDestroyed<String> noPartition(ASCIILiteral("No partition"));
-    return noPartition;
-}
-
 Key::Key(const Key& o)
     : m_partition(o.m_partition.isolatedCopy())
@@ -50 +44 @@
     , m_range(o.m_range.isolatedCopy())
     , m_hash(o.m_hash)
+    , m_partitionHash(o.m_partitionHash)
 {
 }
 
-Key::Key(const String& partition, const String& type, const String& range, const String& identifier)
-    : m_partition(partition.isEmpty() ? noPartitionString() : partition)
+Key::Key(const String& partition, const String& type, const String& range, const String& identifier, const Salt& salt)
+    : m_partition(partition)
     , m_type(type)
     , m_identifier(identifier)
     , m_range(range)
-    , m_hash(computeHash())
+    , m_hash(computeHash(salt))
+    , m_partitionHash(computePartitionHash(salt))
 {
 }
@@ -65 +61 @@
     : m_identifier(WTF::HashTableDeletedValue)
 {
-}
-
-bool Key::hasPartition() const
-{
-    return m_partition != noPartitionString();
 }
 
@@ -98 +89 @@
 }
 
-Key::HashType Key::computeHash() const
+Key::HashType Key::computeHash(const Salt& salt) const
 {
     // We don't really need a cryptographic hash. The key is always verified against the entry header.
     // SHA1 just happens to be suitably sized, fast and available.
     SHA1 sha1;
+    sha1.addBytes(salt.data(), salt.size());
+
     hashString(sha1, m_partition);
     hashString(sha1, m_type);
     hashString(sha1, m_identifier);
     hashString(sha1, m_range);
+
     SHA1::Digest hash;
     sha1.computeHash(hash);
@@ -112 +106 @@
 }
 
-String Key::hashAsString() const
+Key::HashType Key::computePartitionHash(const Salt& salt) const
+{
+    SHA1 sha1;
+    sha1.addBytes(salt.data(), salt.size());
+
+    hashString(sha1, m_partition);
+
+    SHA1::Digest hash;
+    sha1.computeHash(hash);
+    return hash;
+}
+
+String Key::hashAsString(const HashType& hash)
 {
     StringBuilder builder;
     builder.reserveCapacity(hashStringLength());
-    for (auto byte : m_hash) {
+    for (auto byte : hash) {
         builder.append(upperNibbleToASCIIHexDigit(byte));
         builder.append(lowerNibbleToASCIIHexDigit(byte));

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheKey.h

@@ -29 +29 @@
 #if ENABLE(NETWORK_CACHE)
 
+#include "NetworkCacheData.h"
 #include <wtf/SHA1.h>
 #include <wtf/text/WTFString.h>
@@ -45 +46 @@
     Key(const Key&);
     Key(Key&&) = default;
-    Key(const String& partition, const String& type, const String& range, const String& identifier);
+    Key(const String& partition, const String& type, const String& range, const String& identifier, const Salt&);
 
     Key& operator=(const Key&);
@@ -55 +56 @@
     bool isNull() const { return m_identifier.isNull(); }
 
-    bool hasPartition() const;
     const String& partition() const { return m_partition; }
     const String& identifier() const { return m_identifier; }
@@ -61 +61 @@
     const String& range() const { return m_range; }
 
-    HashType hash() const { return m_hash; }
+    const HashType& hash() const { return m_hash; }
+    const HashType& partitionHash() const { return m_partitionHash; }
 
     static bool stringToHash(const String&, HashType&);
 
     static size_t hashStringLength() { return 2 * sizeof(m_hash); }
-    String hashAsString() const;
+    String hashAsString() const { return hashAsString(m_hash); }
+    String partitionHashAsString() const { return hashAsString(m_partitionHash); }
 
     void encode(Encoder&) const;
@@ -75 +77 @@
 
 private:
-    HashType computeHash() const;
+    static String hashAsString(const HashType&);
+    HashType computeHash(const Salt&) const;
+    HashType computePartitionHash(const Salt&) const;
 
     String m_partition;
@@ -82 +86 @@
     String m_range;
     HashType m_hash;
+    HashType m_partitionHash;
 };
 

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheSpeculativeLoadManager.cpp

@@ -80 +80 @@
 }
 
-static inline Key makeSubresourcesKey(const Key& resourceKey)
-{
-    return Key(resourceKey.partition(), subresourcesType(), resourceKey.range(), resourceKey.identifier());
+static inline Key makeSubresourcesKey(const Key& resourceKey, const Salt& salt)
+{
+    return Key(resourceKey.partition(), subresourcesType(), resourceKey.range(), resourceKey.identifier(), salt);
 }
 
@@ -91 +91 @@
     revalidationRequest.setFirstPartyForCookies(subResourceInfo.firstPartyForCookies());
 #if ENABLE(CACHE_PARTITIONING)
-    if (entry.key().hasPartition())
+    if (!entry.key().partition().isEmpty())
         revalidationRequest.setCachePartition(entry.key().partition());
 #endif
@@ -227 +227 @@
             m_storage.store(m_existingEntry->encodeAsStorageRecord(), [](const Data&) { });
         } else {
-            SubresourcesEntry entry(makeSubresourcesKey(m_mainResourceKey), m_subresourceLoads);
+            SubresourcesEntry entry(makeSubresourcesKey(m_mainResourceKey, m_storage.salt()), m_subresourceLoads);
             m_storage.store(entry.encodeAsStorageRecord(), [](const Data&) { });
         }
@@ -522 +522 @@
 {
     ASSERT(storageKey.type() == "Resource");
-    auto subresourcesStorageKey = makeSubresourcesKey(storageKey);
+    auto subresourcesStorageKey = makeSubresourcesKey(storageKey, m_storage.salt());
     m_storage.retrieve(subresourcesStorageKey, static_cast<unsigned>(ResourceLoadPriority::Medium), [completionHandler = WTFMove(completionHandler)](auto record) {
         if (!record) {

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheStorage.cpp

@@ -43 +43 @@
 namespace NetworkCache {
 
+static const char saltFileName[] = "salt";
 static const char versionDirectoryPrefix[] = "Version ";
 static const char recordsDirectoryName[] = "Records";
@@ -128 +129 @@
 };
 
-std::unique_ptr<Storage> Storage::open(const String& cachePath)
-{
-    ASSERT(RunLoop::isMain());
-
-    if (!WebCore::makeAllDirectories(cachePath))
-        return nullptr;
-    return std::unique_ptr<Storage>(new Storage(cachePath));
-}
-
 static String makeVersionedDirectoryPath(const String& baseDirectoryPath)
 {
@@ -153 +145 @@
 }
 
-void traverseRecordsFiles(const String& recordsPath, const String& expectedType, const std::function<void (const String& fileName, const String& hashString, const String& type, bool isBlob, const String& recordDirectoryPath)>& function)
-{
-    traverseDirectory(recordsPath, [&recordsPath, &function, &expectedType](const String& partitionName, DirectoryEntryType entryType) {
+static String makeSaltFilePath(const String& baseDirectoryPath)
+{
+    return WebCore::pathByAppendingComponent(makeVersionedDirectoryPath(baseDirectoryPath), saltFileName);
+}
+
+std::unique_ptr<Storage> Storage::open(const String& cachePath)
+{
+    ASSERT(RunLoop::isMain());
+
+    if (!WebCore::makeAllDirectories(makeVersionedDirectoryPath(cachePath)))
+        return nullptr;
+    auto salt = readOrMakeSalt(makeSaltFilePath(cachePath));
+    if (!salt)
+        return nullptr;
+    return std::unique_ptr<Storage>(new Storage(cachePath, *salt));
+}
+
+void traverseRecordsFiles(const String& recordsPath, const String& expectedType, const RecordFileTraverseFunction& function)
+{
+    traverseDirectory(recordsPath, [&](const String& partitionName, DirectoryEntryType entryType) {
         if (entryType != DirectoryEntryType::Directory)
             return;
         String partitionPath = WebCore::pathByAppendingComponent(recordsPath, partitionName);
-        traverseDirectory(partitionPath, [&function, &partitionPath, &expectedType](const String& actualType, DirectoryEntryType entryType) {
+        traverseDirectory(partitionPath, [&](const String& actualType, DirectoryEntryType entryType) {
             if (entryType != DirectoryEntryType::Directory)
                 return;
@@ -199 +208 @@
 }
 
-Storage::Storage(const String& baseDirectoryPath)
+Storage::Storage(const String& baseDirectoryPath, Salt salt)
     : m_basePath(baseDirectoryPath)
     , m_recordsPath(makeRecordsDirectoryPath(baseDirectoryPath))
+    , m_salt(salt)
     , m_readOperationTimeoutTimer(*this, &Storage::cancelAllReadOperations)
     , m_writeOperationDispatchTimer(*this, &Storage::dispatchPendingWriteOperations)
@@ -207 +217 @@
     , m_backgroundIOQueue(WorkQueue::create("com.apple.WebKit.Cache.Storage.background", WorkQueue::Type::Concurrent, WorkQueue::QOS::Background))
     , m_serialBackgroundIOQueue(WorkQueue::create("com.apple.WebKit.Cache.Storage.serialBackground", WorkQueue::Type::Serial, WorkQueue::QOS::Background))
-    , m_blobStorage(makeBlobDirectoryPath(baseDirectoryPath))
+    , m_blobStorage(makeBlobDirectoryPath(baseDirectoryPath), m_salt)
 {
     deleteOldVersions();
@@ -327 +337 @@
 String Storage::recordDirectoryPathForKey(const Key& key) const
 {
-    ASSERT(!key.partition().isEmpty());
     ASSERT(!key.type().isEmpty());
-    return WebCore::pathByAppendingComponent(WebCore::pathByAppendingComponent(recordsPath(), key.partition()), key.type());
+    return WebCore::pathByAppendingComponent(WebCore::pathByAppendingComponent(recordsPath(), key.partitionHashAsString()), key.type());
 }
 
@@ -398 +407 @@
 }
 
-static bool decodeRecordHeader(const Data& fileData, RecordMetaData& metaData, Data& headerData)
+static bool decodeRecordHeader(const Data& fileData, RecordMetaData& metaData, Data& headerData, const Salt& salt)
 {
     if (!decodeRecordMetaData(metaData, fileData)) {
@@ -411 +420 @@
 
     headerData = fileData.subrange(metaData.headerOffset, metaData.headerSize);
-    if (metaData.headerHash != computeSHA1(headerData)) {
+    if (metaData.headerHash != computeSHA1(headerData, salt)) {
         LOG(NetworkCacheStorage, "(NetworkProcess) header checksum mismatch");
         return false;
@@ -424 +433 @@
     RecordMetaData metaData;
     Data headerData;
-    if (!decodeRecordHeader(recordData, metaData, headerData))
+    if (!decodeRecordHeader(recordData, metaData, headerData, m_salt))
         return;
 
@@ -441 +450 @@
             return;
         bodyData = recordData.subrange(bodyOffset, metaData.bodySize);
-        if (metaData.bodyHash != computeSHA1(bodyData))
+        if (metaData.bodyHash != computeSHA1(bodyData, m_salt))
             return;
     }
@@ -503 +512 @@
     RecordMetaData metaData(record.key);
     metaData.epochRelativeTimeStamp = std::chrono::duration_cast<std::chrono::milliseconds>(record.timeStamp.time_since_epoch());
-    metaData.headerHash = computeSHA1(record.header);
+    metaData.headerHash = computeSHA1(record.header, m_salt);
     metaData.headerSize = record.header.size();
-    metaData.bodyHash = blob ? blob.value().hash : computeSHA1(record.body);
+    metaData.bodyHash = blob ? blob.value().hash : computeSHA1(record.body, m_salt);
     metaData.bodySize = record.body.size();
     metaData.isBodyInline = !blob;
@@ -824 +833 @@
                 RecordMetaData metaData;
                 Data headerData;
-                if (decodeRecordHeader(fileData, metaData, headerData)) {
+                if (decodeRecordHeader(fileData, metaData, headerData, m_salt)) {
                     Record record {
                         metaData.key,

trunk/Source/WebKit2/NetworkProcess/cache/NetworkCacheStorage.h

@@ -88 +88 @@
     size_t approximateSize() const;
 
-    static const unsigned version = 10;
+    static const unsigned version = 11;
 #if PLATFORM(MAC)
     /// Allow the last stable version of the cache to co-exist with the latest development one.
@@ -98 +98 @@
     String recordsPath() const;
 
+    const Salt& salt() const { return m_salt; }
+
     ~Storage();
 
 private:
-    Storage(const String& directoryPath);
+    Storage(const String& directoryPath, Salt);
 
     String recordDirectoryPathForKey(const Key&) const;
@@ -142 +144 @@
     const String m_recordsPath;
 
+    const Salt m_salt;
+
     size_t m_capacity { std::numeric_limits<size_t>::max() };
     size_t m_approximateRecordsSize { 0 };
@@ -176 +180 @@
 
 // FIXME: Remove, used by NetworkCacheStatistics only.
-void traverseRecordsFiles(const String& recordsPath, const String& type, const std::function<void (const String& fileName, const String& hashString, const String& type, bool isBodyBlob, const String& recordDirectoryPath)>&);
+using RecordFileTraverseFunction = std::function<void (const String& fileName, const String& hashString, const String& type, bool isBlob, const String& recordDirectoryPath)>;
+void traverseRecordsFiles(const String& recordsPath, const String& type, const RecordFileTraverseFunction&);
 
 }