| // Copyright 2017 The Chromium Authors |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifdef UNSAFE_BUFFERS_BUILD |
| // TODO(crbug.com/390223051): Remove C-library calls to fix the errors. |
| #pragma allow_unsafe_libc_calls |
| #endif |
| |
| #include "base/run_loop.h" |
| #include "base/strings/string_number_conversions.h" |
| #include "base/test/scoped_feature_list.h" |
| #include "chrome/browser/profiles/profile.h" |
| #include "chrome/browser/safe_browsing/chrome_client_side_detection_host_delegate.h" |
| #include "chrome/browser/safe_browsing/chrome_safe_browsing_blocking_page_factory.h" |
| #include "chrome/browser/safe_browsing/chrome_ui_manager_delegate.h" |
| #include "chrome/browser/safe_browsing/safe_browsing_service.h" |
| #include "chrome/browser/ui/browser.h" |
| #include "chrome/browser/ui/exclusive_access/exclusive_access_context.h" |
| #include "chrome/browser/ui/exclusive_access/exclusive_access_manager.h" |
| #include "chrome/browser/ui/exclusive_access/exclusive_access_test.h" |
| #include "chrome/browser/ui/tabs/tab_strip_model.h" |
| #include "chrome/common/url_constants.h" |
| #include "chrome/test/base/in_process_browser_test.h" |
| #include "chrome/test/base/ui_test_utils.h" |
| #include "components/prefs/pref_service.h" |
| #include "components/safe_browsing/buildflags.h" |
| #include "components/safe_browsing/content/browser/client_side_detection_feature_cache.h" |
| #include "components/safe_browsing/content/browser/client_side_detection_service.h" |
| #include "components/safe_browsing/content/browser/client_side_phishing_model.h" |
| #include "components/safe_browsing/content/browser/ui_manager.h" |
| #include "components/safe_browsing/core/common/features.h" |
| #include "components/safe_browsing/core/common/proto/client_model.pb.h" |
| #include "components/safe_browsing/core/common/proto/csd.pb.h" |
| #include "components/safe_browsing/core/common/safe_browsing_prefs.h" |
| #include "content/public/browser/browser_context.h" |
| #include "content/public/browser/render_frame_host.h" |
| #include "content/public/browser/web_contents_observer.h" |
| #include "content/public/test/browser_test.h" |
| #include "content/public/test/mock_navigation_handle.h" |
| #include "content/public/test/prerender_test_util.h" |
| #include "net/dns/mock_host_resolver.h" |
| #include "net/http/http_status_code.h" |
| #include "net/test/embedded_test_server/embedded_test_server.h" |
| #include "testing/gmock/include/gmock/gmock.h" |
| #include "testing/gtest/include/gtest/gtest.h" |
| #include "url/gurl.h" |
| |
| namespace safe_browsing { |
| namespace { |
| |
| using ::testing::_; |
| using ::testing::StrictMock; |
| |
| class FakeDelegate : public ClientSideDetectionService::Delegate { |
| PrefService* GetPrefs() override { return nullptr; } |
| scoped_refptr<network::SharedURLLoaderFactory> GetURLLoaderFactory() |
| override { |
| return nullptr; |
| } |
| scoped_refptr<network::SharedURLLoaderFactory> |
| GetSafeBrowsingURLLoaderFactory() override { |
| return nullptr; |
| } |
| bool ShouldSendModelToBrowserContext( |
| content::BrowserContext* context) override { |
| return true; |
| } |
| }; |
| |
| class FakeClientSideDetectionService : public ClientSideDetectionService { |
| public: |
| FakeClientSideDetectionService() |
| : ClientSideDetectionService(std::make_unique<FakeDelegate>(), nullptr) {} |
| |
| void SendClientReportPhishingRequest( |
| std::unique_ptr<ClientPhishingRequest> verdict, |
| ClientReportPhishingRequestCallback callback, |
| const std::string& access_token) override { |
| saved_request_ = *verdict; |
| saved_callback_ = std::move(callback); |
| access_token_ = access_token; |
| request_callback_.Run(); |
| } |
| |
| void ClassifyPhishingThroughThresholds( |
| ClientPhishingRequest* verdict) override { |
| // Just like how we always send the ping due to DOM classification, we will |
| // do the same when doing visual features thresholds classification. |
| verdict->set_is_phishing(true); |
| } |
| |
| const ClientPhishingRequest& saved_request() { return saved_request_; } |
| |
| bool saved_callback_is_null() { return saved_callback_.is_null(); } |
| |
| ClientReportPhishingRequestCallback saved_callback() { |
| return std::move(saved_callback_); |
| } |
| |
| void SetModel(std::string client_side_model) { |
| client_side_model_ = client_side_model; |
| } |
| |
| CSDModelType GetModelType() override { return CSDModelType::kFlatbuffer; } |
| |
| bool IsModelAvailable() override { return true; } |
| |
| // This is a fake CSD service which will have no TfLite models. |
| const base::File& GetVisualTfLiteModel() override { |
| return visual_tflite_model_; |
| } |
| |
| base::ReadOnlySharedMemoryRegion GetModelSharedMemoryRegion() override { |
| base::MappedReadOnlyRegion mapped_region = |
| base::ReadOnlySharedMemoryRegion::Create(client_side_model_.length()); |
| memcpy(mapped_region.mapping.memory(), client_side_model_.data(), |
| client_side_model_.length()); |
| return mapped_region.region.Duplicate(); |
| } |
| |
| // This is a fake CSD service which will have no thresholds due to no TfLite |
| // models. |
| const base::flat_map<std::string, TfLiteModelMetadata::Threshold>& |
| GetVisualTfLiteModelThresholds() override { |
| return thresholds_; |
| } |
| |
| void SetRequestCallback(const base::RepeatingClosure& closure) { |
| request_callback_ = closure; |
| } |
| |
| base::WeakPtr<ClientSideDetectionService> GetWeakPtr() { |
| return weak_factory_.GetWeakPtr(); |
| } |
| |
| private: |
| ClientPhishingRequest saved_request_; |
| ClientReportPhishingRequestCallback saved_callback_; |
| ClientSideModel model_; |
| std::string access_token_; |
| std::string client_side_model_; |
| base::File visual_tflite_model_; |
| base::flat_map<std::string, TfLiteModelMetadata::Threshold> thresholds_; |
| base::RepeatingClosure request_callback_; |
| base::WeakPtrFactory<ClientSideDetectionService> weak_factory_{this}; |
| }; |
| |
| class MockSafeBrowsingUIManager : public SafeBrowsingUIManager { |
| public: |
| MockSafeBrowsingUIManager() |
| : SafeBrowsingUIManager( |
| std::make_unique<ChromeSafeBrowsingUIManagerDelegate>(), |
| std::make_unique<ChromeSafeBrowsingBlockingPageFactory>(), |
| GURL(chrome::kChromeUINewTabURL)) {} |
| |
| MockSafeBrowsingUIManager(const MockSafeBrowsingUIManager&) = delete; |
| MockSafeBrowsingUIManager& operator=(const MockSafeBrowsingUIManager&) = |
| delete; |
| |
| MOCK_METHOD1(DisplayBlockingPage, void(const UnsafeResource& resource)); |
| |
| protected: |
| ~MockSafeBrowsingUIManager() override = default; |
| }; |
| |
| } // namespace |
| |
| class ClientSideDetectionHostPrerenderBrowserTest |
| : public InProcessBrowserTest, |
| public ::testing::WithParamInterface<bool> { |
| public: |
| ClientSideDetectionHostPrerenderBrowserTest() { |
| if (GetParam()) { |
| scoped_feature_list_.InitWithFeatures( |
| {kClientSideDetectionDebuggingMetadataCache, |
| kClientSideDetectionOnlyExtractVisualFeatures}, |
| {}); |
| } else { |
| scoped_feature_list_.InitWithFeatures( |
| {kClientSideDetectionDebuggingMetadataCache}, |
| {kClientSideDetectionOnlyExtractVisualFeatures}); |
| } |
| prerender_helper_ = std::make_unique<content::test::PrerenderTestHelper>( |
| base::BindRepeating( |
| &ClientSideDetectionHostPrerenderBrowserTest::GetWebContents, |
| base::Unretained(this))); |
| } |
| ~ClientSideDetectionHostPrerenderBrowserTest() override = default; |
| ClientSideDetectionHostPrerenderBrowserTest( |
| const ClientSideDetectionHostPrerenderBrowserTest&) = delete; |
| ClientSideDetectionHostPrerenderBrowserTest& operator=( |
| const ClientSideDetectionHostPrerenderBrowserTest&) = delete; |
| |
| void SetUp() override { |
| prerender_helper_->RegisterServerRequestMonitor(embedded_test_server()); |
| InProcessBrowserTest::SetUp(); |
| } |
| |
| void SetUpOnMainThread() override { |
| set_up_client_side_model(); |
| host_resolver()->AddRule("*", "127.0.0.1"); |
| ASSERT_TRUE(embedded_test_server()->Start()); |
| } |
| |
| content::test::PrerenderTestHelper& prerender_helper() { |
| return *prerender_helper_.get(); |
| } |
| |
| content::WebContents* GetWebContents() { |
| return browser()->tab_strip_model()->GetActiveWebContents(); |
| } |
| |
| void set_up_client_side_model() { |
| flatbuffers::FlatBufferBuilder builder(1024); |
| std::vector<flatbuffers::Offset<flat::Hash>> hashes; |
| // Make sure this is sorted. |
| std::vector<std::string> hashes_vector = { |
| "feature1", "feature2", "feature3", "token one", "token two"}; |
| for (std::string& feature : hashes_vector) { |
| std::vector<uint8_t> hash_data(feature.begin(), feature.end()); |
| hashes.push_back(flat::CreateHashDirect(builder, &hash_data)); |
| } |
| flatbuffers::Offset<flatbuffers::Vector<flatbuffers::Offset<flat::Hash>>> |
| hashes_flat = builder.CreateVector(hashes); |
| |
| std::vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>> rules; |
| std::vector<int32_t> rule_feature1 = {}; |
| std::vector<int32_t> rule_feature2 = {0}; |
| std::vector<int32_t> rule_feature3 = {0, 1}; |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature1, 0.5)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature2, 2)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature3, 3)); |
| flatbuffers::Offset< |
| flatbuffers::Vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>>> |
| rules_flat = builder.CreateVector(rules); |
| |
| std::vector<int32_t> page_terms_vector = {3, 4}; |
| flatbuffers::Offset<flatbuffers::Vector<int32_t>> page_term_flat = |
| builder.CreateVector(page_terms_vector); |
| |
| std::vector<uint32_t> page_words_vector = {1000U, 2000U, 3000U}; |
| flatbuffers::Offset<flatbuffers::Vector<uint32_t>> page_word_flat = |
| builder.CreateVector(page_words_vector); |
| |
| std::vector<flatbuffers::Offset< |
| safe_browsing::flat::TfLiteModelMetadata_::Threshold>> |
| thresholds_vector = {}; |
| flatbuffers::Offset<flat::TfLiteModelMetadata> tflite_metadata_flat = |
| flat::CreateTfLiteModelMetadataDirect(builder, 0, &thresholds_vector, 0, |
| 0); |
| flat::ClientSideModelBuilder csd_model_builder(builder); |
| csd_model_builder.add_version(123); |
| // The model will always trigger. |
| csd_model_builder.add_threshold_probability(-1); |
| csd_model_builder.add_hashes(hashes_flat); |
| csd_model_builder.add_rule(rules_flat); |
| csd_model_builder.add_page_term(page_term_flat); |
| csd_model_builder.add_page_word(page_word_flat); |
| csd_model_builder.add_max_words_per_term(2); |
| csd_model_builder.add_murmur_hash_seed(12345U); |
| csd_model_builder.add_max_shingles_per_page(10); |
| csd_model_builder.add_shingle_size(3); |
| csd_model_builder.add_tflite_metadata(tflite_metadata_flat); |
| builder.Finish(csd_model_builder.Finish()); |
| flatbuffer_model_str_ = std::string( |
| reinterpret_cast<char*>(builder.GetBufferPointer()), builder.GetSize()); |
| } |
| |
| std::string client_side_model() { return flatbuffer_model_str_; } |
| |
| protected: |
| base::test::ScopedFeatureList scoped_feature_list_; |
| |
| private: |
| std::unique_ptr<content::test::PrerenderTestHelper> prerender_helper_; |
| std::string flatbuffer_model_str_; |
| }; |
| |
| class ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest |
| : public ExclusiveAccessTest { |
| public: |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest() |
| : prerender_helper_(base::BindRepeating( |
| &ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest:: |
| GetWebContents, |
| base::Unretained(this))) {} |
| ~ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest() override = |
| default; |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest( |
| const ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest&) = |
| delete; |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest& operator=( |
| const ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest&) = |
| delete; |
| |
| void SetUp() override { |
| prerender_helper_.RegisterServerRequestMonitor(embedded_test_server()); |
| ExclusiveAccessTest::SetUp(); |
| } |
| |
| void SetUpOnMainThread() override { |
| set_up_client_side_model(); |
| host_resolver()->AddRule("*", "127.0.0.1"); |
| ASSERT_TRUE(embedded_test_server()->Start()); |
| ExclusiveAccessTest::SetUpOnMainThread(); |
| } |
| |
| content::test::PrerenderTestHelper& prerender_helper() { |
| return prerender_helper_; |
| } |
| |
| content::WebContents* GetWebContents() { |
| return browser()->tab_strip_model()->GetActiveWebContents(); |
| } |
| |
| void set_up_client_side_model() { |
| flatbuffers::FlatBufferBuilder builder(1024); |
| std::vector<flatbuffers::Offset<flat::Hash>> hashes; |
| // Make sure this is sorted. |
| std::vector<std::string> hashes_vector = { |
| "feature1", "feature2", "feature3", "token one", "token two"}; |
| for (std::string& feature : hashes_vector) { |
| std::vector<uint8_t> hash_data(feature.begin(), feature.end()); |
| hashes.push_back(flat::CreateHashDirect(builder, &hash_data)); |
| } |
| flatbuffers::Offset<flatbuffers::Vector<flatbuffers::Offset<flat::Hash>>> |
| hashes_flat = builder.CreateVector(hashes); |
| |
| std::vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>> rules; |
| std::vector<int32_t> rule_feature1 = {}; |
| std::vector<int32_t> rule_feature2 = {0}; |
| std::vector<int32_t> rule_feature3 = {0, 1}; |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature1, 0.5)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature2, 2)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature3, 3)); |
| flatbuffers::Offset< |
| flatbuffers::Vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>>> |
| rules_flat = builder.CreateVector(rules); |
| |
| std::vector<int32_t> page_terms_vector = {3, 4}; |
| flatbuffers::Offset<flatbuffers::Vector<int32_t>> page_term_flat = |
| builder.CreateVector(page_terms_vector); |
| |
| std::vector<uint32_t> page_words_vector = {1000U, 2000U, 3000U}; |
| flatbuffers::Offset<flatbuffers::Vector<uint32_t>> page_word_flat = |
| builder.CreateVector(page_words_vector); |
| |
| std::vector<flatbuffers::Offset< |
| safe_browsing::flat::TfLiteModelMetadata_::Threshold>> |
| thresholds_vector = {}; |
| flatbuffers::Offset<flat::TfLiteModelMetadata> tflite_metadata_flat = |
| flat::CreateTfLiteModelMetadataDirect(builder, 0, &thresholds_vector, 0, |
| 0); |
| flat::ClientSideModelBuilder csd_model_builder(builder); |
| csd_model_builder.add_version(123); |
| // The model will always trigger. |
| csd_model_builder.add_threshold_probability(-1); |
| csd_model_builder.add_hashes(hashes_flat); |
| csd_model_builder.add_rule(rules_flat); |
| csd_model_builder.add_page_term(page_term_flat); |
| csd_model_builder.add_page_word(page_word_flat); |
| csd_model_builder.add_max_words_per_term(2); |
| csd_model_builder.add_murmur_hash_seed(12345U); |
| csd_model_builder.add_max_shingles_per_page(10); |
| csd_model_builder.add_shingle_size(3); |
| csd_model_builder.add_tflite_metadata(tflite_metadata_flat); |
| builder.Finish(csd_model_builder.Finish()); |
| flatbuffer_model_str_ = std::string( |
| reinterpret_cast<char*>(builder.GetBufferPointer()), builder.GetSize()); |
| } |
| |
| std::string client_side_model() { return flatbuffer_model_str_; } |
| |
| protected: |
| base::test::ScopedFeatureList scoped_feature_list_{ |
| kClientSideDetectionKeyboardPointerLockRequest}; |
| |
| private: |
| content::test::PrerenderTestHelper prerender_helper_; |
| std::string flatbuffer_model_str_; |
| }; |
| |
| INSTANTIATE_TEST_SUITE_P(All, |
| ClientSideDetectionHostPrerenderBrowserTest, |
| testing::Bool()); |
| |
| IN_PROC_BROWSER_TEST_P(ClientSideDetectionHostPrerenderBrowserTest, |
| PrerenderShouldNotAffectClientSideDetection) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch)) { |
| GTEST_SKIP(); |
| } |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| |
| fake_csd_service.SendModelToRenderers(); |
| |
| GURL page_url(embedded_test_server()->GetURL("/safe_browsing/malware.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), page_url)); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| // Bypass the pre-classification checks. |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::TRIGGER_MODELS, /*should_classify=*/true, |
| /*is_sample_ping=*/false, /*did_match_high_confidence_allowlist=*/false); |
| |
| // A prerendered navigation committing should not cancel classification. |
| // We simulate the commit of a prerendered navigation to avoid races |
| // between the completion of phishing detection in the primary |
| // main frame's renderer and the commit of a real prerendered navigation. |
| // TODO(mcnee): Use a real prerendered navigation here and make sure the |
| // navigation doesn't race with the classification. |
| content::MockNavigationHandle prerendered_navigation_handle; |
| prerendered_navigation_handle.set_has_committed(true); |
| prerendered_navigation_handle.set_is_in_primary_main_frame(false); |
| csd_host->DidFinishNavigation(&prerendered_navigation_handle); |
| |
| run_loop.Run(); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(page_url, true, net::HTTP_OK, std::nullopt); |
| } |
| |
| IN_PROC_BROWSER_TEST_P(ClientSideDetectionHostPrerenderBrowserTest, |
| ClassifyPrerenderedPageAfterActivation) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch)) { |
| GTEST_SKIP(); |
| } |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // Prerender then activate a phishing page. |
| const GURL prerender_url = |
| embedded_test_server()->GetURL("/safe_browsing/malware.html"); |
| prerender_helper().AddPrerender(prerender_url); |
| prerender_helper().NavigatePrimaryPage(prerender_url); |
| |
| // Bypass the pre-classification checks. |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::TRIGGER_MODELS, /*should_classify=*/true, |
| /*is_sample_ping=*/false, /*did_match_high_confidence_allowlist=*/false); |
| |
| run_loop.Run(); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(prerender_url, true, net::HTTP_OK, std::nullopt); |
| } |
| |
| IN_PROC_BROWSER_TEST_P( |
| ClientSideDetectionHostPrerenderBrowserTest, |
| ClassifyPrerenderedPageAfterActivationAndCheckDebuggingMetadataCache) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch)) { |
| GTEST_SKIP(); |
| } |
| |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // Prerender then activate a phishing page. |
| const GURL prerender_url = |
| embedded_test_server()->GetURL("/safe_browsing/malware.html"); |
| prerender_helper().AddPrerender(prerender_url); |
| prerender_helper().NavigatePrimaryPage(prerender_url); |
| |
| // Bypass the pre-classification checks. |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::TRIGGER_MODELS, /*should_classify=*/true, |
| /*is_sample_ping=*/false, /*did_match_high_confidence_allowlist=*/false); |
| |
| run_loop.Run(); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(prerender_url, true, net::HTTP_OK, std::nullopt); |
| |
| ClientSideDetectionFeatureCache* feature_cache_map = |
| ClientSideDetectionFeatureCache::FromWebContents(GetWebContents()); |
| LoginReputationClientRequest::DebuggingMetadata* debugging_metadata = |
| feature_cache_map->GetOrCreateDebuggingMetadataForURL(prerender_url); |
| ClientPhishingRequest* verdict_from_cache = |
| feature_cache_map->GetVerdictForURL(prerender_url); |
| EXPECT_EQ(verdict_from_cache->model_version(), 123); |
| // The value remains private ip since we bypassed it in the test. |
| EXPECT_EQ(debugging_metadata->preclassification_check_result(), |
| PreClassificationCheckResult::NO_CLASSIFY_PRIVATE_IP); |
| EXPECT_EQ(debugging_metadata->network_result(), net::HTTP_OK); |
| EXPECT_EQ(debugging_metadata->phishing_detector_result(), |
| PhishingDetectorResult::CLASSIFICATION_SUCCESS); |
| EXPECT_TRUE(debugging_metadata->local_model_detects_phishing()); |
| } |
| |
| IN_PROC_BROWSER_TEST_P( |
| ClientSideDetectionHostPrerenderBrowserTest, |
| CheckDebuggingMetadataCacheAfterClearingCacheAfterNavigation) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch)) { |
| GTEST_SKIP(); |
| } |
| |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| ClientSideDetectionFeatureCache* feature_cache_map = |
| ClientSideDetectionFeatureCache::FromWebContents(GetWebContents()); |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // Prerender then activate a phishing page. |
| const GURL prerender_url = |
| embedded_test_server()->GetURL("/safe_browsing/malware.html"); |
| prerender_helper().AddPrerender(prerender_url); |
| prerender_helper().NavigatePrimaryPage(prerender_url); |
| |
| feature_cache_map->Clear(); |
| |
| // Bypass the pre-classification checks. |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::TRIGGER_MODELS, /*should_classify=*/true, |
| /*is_sample_ping=*/false, /*did_match_high_confidence_allowlist=*/false); |
| |
| run_loop.Run(); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(prerender_url, true, net::HTTP_OK, std::nullopt); |
| |
| LoginReputationClientRequest::DebuggingMetadata* debugging_metadata = |
| feature_cache_map->GetOrCreateDebuggingMetadataForURL(prerender_url); |
| ClientPhishingRequest* verdict_from_cache = |
| feature_cache_map->GetVerdictForURL(prerender_url); |
| EXPECT_EQ(verdict_from_cache->model_version(), 123); |
| // The value remains private ip since we bypassed it in the test, but we |
| // cleared the cache before bypassing, so this should not equal anymore. |
| EXPECT_NE(debugging_metadata->preclassification_check_result(), |
| PreClassificationCheckResult::NO_CLASSIFY_PRIVATE_IP); |
| EXPECT_EQ(debugging_metadata->network_result(), net::HTTP_OK); |
| EXPECT_EQ(debugging_metadata->phishing_detector_result(), |
| PhishingDetectorResult::CLASSIFICATION_SUCCESS); |
| EXPECT_TRUE(debugging_metadata->local_model_detects_phishing()); |
| } |
| |
| IN_PROC_BROWSER_TEST_F( |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest, |
| KeyboardLockTriggersPreclassificationCheck) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled( |
| kClientSideDetectionKeyboardPointerLockRequest)) { |
| GTEST_SKIP(); |
| } |
| |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // TODO(andysjlim): Navigating to initial page alongside the first page logs |
| // the histogram twice. Figure out why. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult", 2); |
| |
| EnterActiveTabFullscreen(); |
| ASSERT_TRUE(RequestKeyboardLock(/*esc_key_locked=*/true)); |
| ASSERT_TRUE(GetExclusiveAccessManager() |
| ->keyboard_lock_controller() |
| ->IsKeyboardLockActive()); |
| |
| // TODO(andysjlim): Preclassification check should trigger one additional |
| // times with the keyboard lock notify, but this is added twice. Investigate |
| // why. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult", 4); |
| } |
| |
| IN_PROC_BROWSER_TEST_F( |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest, |
| PointerLockTriggersPreClassificationCheck) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled( |
| kClientSideDetectionKeyboardPointerLockRequest)) { |
| GTEST_SKIP(); |
| } |
| SetWebContentsGrantedSilentPointerLockPermission(); |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // Navigating to initial page logs the histogram twice. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult", 2); |
| |
| // The function automatically approves the lock request, but for tests, |
| // functionally, nothing changes. |
| RequestToLockPointer(true, false); |
| EXPECT_TRUE(GetExclusiveAccessManager() |
| ->pointer_lock_controller() |
| ->IsPointerLocked()); |
| |
| // Due to the nature of pointer controller code, we have to manually send a |
| // response to web_contents observer that PointerLockRequest has been sent. |
| csd_host->PointerLockRequested(); |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult", 3); |
| } |
| |
| IN_PROC_BROWSER_TEST_F( |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest, |
| KeyboardLockClassificationTriggersCSPPPing) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled( |
| kClientSideDetectionKeyboardPointerLockRequest)) { |
| GTEST_SKIP(); |
| } |
| |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| prerender_helper().AddPrerender(initial_url); |
| prerender_helper().NavigatePrimaryPage(initial_url); |
| |
| EnterActiveTabFullscreen(); |
| ASSERT_TRUE(RequestKeyboardLock(/*esc_key_locked=*/true)); |
| ASSERT_TRUE(GetExclusiveAccessManager() |
| ->keyboard_lock_controller() |
| ->IsKeyboardLockActive()); |
| |
| // Bypass the pre-classification check because it would otherwise return |
| // "NO_CLASSIFY_PRIVATE_IP". |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::KEYBOARD_LOCK_REQUESTED, |
| /*should_classify=*/true, /*is_sample_ping=*/false, |
| /*did_match_high_confidence_allowlist=*/false); |
| |
| run_loop.Run(); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PhishingDetectorResult.KeyboardLockRequested", 1); |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ClientSideDetectionTypeRequest", 1); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(initial_url, true, net::HTTP_OK, std::nullopt); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ServerModelDetectsPhishing.KeyboardLockRequested", 1); |
| |
| // We do not check whether the keyboard lock is active because the |
| // MockSafeBrowsingUIManager does not do any navigation on the page, but a red |
| // warning page navigation will change the state of WebContents, which |
| // ultimately removes the fullscreen and thus the lock. |
| } |
| |
| IN_PROC_BROWSER_TEST_F( |
| ClientSideDetectionHostPrerenderExclusiveAccessBrowserTest, |
| PointerLockClassificationTriggersCSPPPing) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled( |
| kClientSideDetectionKeyboardPointerLockRequest)) { |
| GTEST_SKIP(); |
| } |
| |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| prerender_helper().AddPrerender(initial_url); |
| prerender_helper().NavigatePrimaryPage(initial_url); |
| |
| RequestToLockPointer(true, false); |
| ASSERT_TRUE(GetExclusiveAccessManager() |
| ->pointer_lock_controller() |
| ->IsPointerLocked()); |
| |
| // Bypass the pre-classification check because it would otherwise return |
| // "NO_CLASSIFY_PRIVATE_IP". |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::POINTER_LOCK_REQUESTED, |
| /*should_classify=*/true, /*is_sample_ping=*/false, |
| /*did_match_high_confidence_allowlist=*/false); |
| |
| run_loop.Run(); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PhishingDetectorResult.PointerLockRequested", 1); |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ClientSideDetectionTypeRequest", 1); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(initial_url, true, net::HTTP_OK, std::nullopt); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ServerModelDetectsPhishing.PointerLockRequested", 1); |
| |
| // We do not check whether the keyboard lock is active because the |
| // MockSafeBrowsingUIManager does not do any navigation on the page, but a red |
| // warning page navigation will change the state of WebContents, which |
| // ultimately removes the fullscreen and thus the lock. |
| } |
| |
| class ClientSideDetectionHostVibrateTest : public InProcessBrowserTest { |
| public: |
| ClientSideDetectionHostVibrateTest() = default; |
| |
| ClientSideDetectionHostVibrateTest( |
| const ClientSideDetectionHostVibrateTest&) = delete; |
| ClientSideDetectionHostVibrateTest& operator=( |
| const ClientSideDetectionHostVibrateTest&) = delete; |
| ~ClientSideDetectionHostVibrateTest() override = default; |
| |
| void SetUpOnMainThread() override { |
| set_up_client_side_model(); |
| host_resolver()->AddRule("*", "127.0.0.1"); |
| ASSERT_TRUE(embedded_test_server()->Start()); |
| } |
| |
| void set_up_client_side_model() { |
| flatbuffers::FlatBufferBuilder builder(1024); |
| std::vector<flatbuffers::Offset<flat::Hash>> hashes; |
| // Make sure this is sorted. |
| std::vector<std::string> hashes_vector = { |
| "feature1", "feature2", "feature3", "token one", "token two"}; |
| for (std::string& feature : hashes_vector) { |
| std::vector<uint8_t> hash_data(feature.begin(), feature.end()); |
| hashes.push_back(flat::CreateHashDirect(builder, &hash_data)); |
| } |
| flatbuffers::Offset<flatbuffers::Vector<flatbuffers::Offset<flat::Hash>>> |
| hashes_flat = builder.CreateVector(hashes); |
| |
| std::vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>> rules; |
| std::vector<int32_t> rule_feature1 = {}; |
| std::vector<int32_t> rule_feature2 = {0}; |
| std::vector<int32_t> rule_feature3 = {0, 1}; |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature1, 0.5)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature2, 2)); |
| rules.push_back( |
| flat::ClientSideModel_::CreateRuleDirect(builder, &rule_feature3, 3)); |
| flatbuffers::Offset< |
| flatbuffers::Vector<flatbuffers::Offset<flat::ClientSideModel_::Rule>>> |
| rules_flat = builder.CreateVector(rules); |
| |
| std::vector<int32_t> page_terms_vector = {3, 4}; |
| flatbuffers::Offset<flatbuffers::Vector<int32_t>> page_term_flat = |
| builder.CreateVector(page_terms_vector); |
| |
| std::vector<uint32_t> page_words_vector = {1000U, 2000U, 3000U}; |
| flatbuffers::Offset<flatbuffers::Vector<uint32_t>> page_word_flat = |
| builder.CreateVector(page_words_vector); |
| |
| std::vector<flatbuffers::Offset< |
| safe_browsing::flat::TfLiteModelMetadata_::Threshold>> |
| thresholds_vector = {}; |
| flatbuffers::Offset<flat::TfLiteModelMetadata> tflite_metadata_flat = |
| flat::CreateTfLiteModelMetadataDirect(builder, 0, &thresholds_vector, 0, |
| 0); |
| flat::ClientSideModelBuilder csd_model_builder(builder); |
| csd_model_builder.add_version(123); |
| // The model will always trigger. |
| csd_model_builder.add_threshold_probability(-1); |
| csd_model_builder.add_hashes(hashes_flat); |
| csd_model_builder.add_rule(rules_flat); |
| csd_model_builder.add_page_term(page_term_flat); |
| csd_model_builder.add_page_word(page_word_flat); |
| csd_model_builder.add_max_words_per_term(2); |
| csd_model_builder.add_murmur_hash_seed(12345U); |
| csd_model_builder.add_max_shingles_per_page(10); |
| csd_model_builder.add_shingle_size(3); |
| csd_model_builder.add_tflite_metadata(tflite_metadata_flat); |
| builder.Finish(csd_model_builder.Finish()); |
| flatbuffer_model_str_ = std::string( |
| reinterpret_cast<char*>(builder.GetBufferPointer()), builder.GetSize()); |
| } |
| |
| std::string client_side_model() { return flatbuffer_model_str_; } |
| |
| content::WebContents* GetWebContents() { |
| return browser()->tab_strip_model()->GetActiveWebContents(); |
| } |
| |
| protected: |
| void TriggerVibrate(int duration, base::OnceClosure vibrate_done) { |
| content::RenderFrameHost* frame = GetWebContents()->GetPrimaryMainFrame(); |
| std::string script = |
| "navigator.vibrate(" + base::NumberToString(duration) + ")"; |
| EXPECT_TRUE(ExecJs(frame, script)); |
| std::move(vibrate_done).Run(); |
| } |
| |
| base::test::ScopedFeatureList scoped_feature_list_{ |
| kClientSideDetectionVibrationApi}; |
| |
| private: |
| std::string flatbuffer_model_str_; |
| }; |
| |
| class VibrationObserverWaiter : public content::WebContentsObserver { |
| public: |
| explicit VibrationObserverWaiter(content::WebContents* web_contents) |
| : WebContentsObserver(web_contents) {} |
| |
| void VibrationRequested() override { |
| did_vibrate_ = true; |
| run_loop_.Quit(); |
| } |
| |
| void Wait() { |
| if (!did_vibrate_) { |
| run_loop_.Run(); |
| } |
| } |
| |
| bool DidVibrate() { return did_vibrate_; } |
| |
| private: |
| bool did_vibrate_ = false; |
| base::RunLoop run_loop_; |
| }; |
| |
| IN_PROC_BROWSER_TEST_F(ClientSideDetectionHostVibrateTest, |
| VibrationApiTriggersPreclassificationCheck) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled(kClientSideDetectionVibrationApi)) { |
| GTEST_SKIP(); |
| } |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // TODO(andysjlim): Navigating to initial page alongside the first page logs |
| // the histogram twice. Figure out why. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult.TriggerModel", 2); |
| |
| VibrationObserverWaiter waiter(GetWebContents()); |
| EXPECT_FALSE(waiter.DidVibrate()); |
| |
| base::RunLoop run_loop; |
| TriggerVibrate(1234, run_loop.QuitClosure()); |
| run_loop.Run(); |
| waiter.Wait(); |
| |
| // TODO(andysjlim): Just like above, VibrationRequested() in the host class is |
| // hit twice, although the web contents observer notification is hit once, so |
| // the second immediately cancels the first. Observe why this happens. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult.VibrationApi", 2); |
| EXPECT_TRUE(waiter.DidVibrate()); |
| |
| // Triggering vibration again on the same page will not trigger |
| // PreClassification. |
| base::RunLoop second_vibrate_run_loop; |
| TriggerVibrate(1234, second_vibrate_run_loop.QuitClosure()); |
| second_vibrate_run_loop.Run(); |
| waiter.Wait(); |
| |
| // The total count has not changed although the second_vibration_run_loop has |
| // triggered another vibration. |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PreClassificationCheckResult.VibrationApi", 2); |
| } |
| |
| IN_PROC_BROWSER_TEST_F(ClientSideDetectionHostVibrateTest, |
| VibrationApiClassificationTriggersCSPPPing) { |
| if (base::FeatureList::IsEnabled(kClientSideDetectionKillswitch) || |
| !base::FeatureList::IsEnabled(kClientSideDetectionVibrationApi)) { |
| GTEST_SKIP(); |
| } |
| SetSafeBrowsingState(browser()->profile()->GetPrefs(), |
| SafeBrowsingState::ENHANCED_PROTECTION); |
| |
| base::HistogramTester histogram_tester; |
| |
| FakeClientSideDetectionService fake_csd_service; |
| fake_csd_service.SetModel(client_side_model()); |
| |
| scoped_refptr<StrictMock<MockSafeBrowsingUIManager>> mock_ui_manager = |
| new StrictMock<MockSafeBrowsingUIManager>(); |
| |
| std::unique_ptr<ClientSideDetectionHost> csd_host = |
| ChromeClientSideDetectionHostDelegate::CreateHost( |
| browser()->tab_strip_model()->GetActiveWebContents()); |
| csd_host->set_client_side_detection_service(fake_csd_service.GetWeakPtr()); |
| csd_host->set_ui_manager(mock_ui_manager.get()); |
| fake_csd_service.SendModelToRenderers(); |
| |
| base::RunLoop run_loop; |
| fake_csd_service.SetRequestCallback(run_loop.QuitClosure()); |
| |
| const GURL initial_url(embedded_test_server()->GetURL("/title1.html")); |
| ASSERT_TRUE(ui_test_utils::NavigateToURL(browser(), initial_url)); |
| |
| // Bypass the pre-classification check because it would otherwise return |
| // "NO_CLASSIFY_PRIVATE_IP". |
| csd_host->OnPhishingPreClassificationDone( |
| ClientSideDetectionType::VIBRATION_API, |
| /*should_classify=*/true, /*is_sample_ping=*/false, |
| /*did_match_high_confidence_allowlist=*/false); |
| run_loop.Run(); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.PhishingDetectorResult.VibrationApi", 1); |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ClientSideDetectionTypeRequest", 1); |
| |
| ASSERT_FALSE(fake_csd_service.saved_callback_is_null()); |
| |
| EXPECT_EQ(fake_csd_service.saved_request().model_version(), 123); |
| |
| // Expect an interstitial to be shown. |
| EXPECT_CALL(*mock_ui_manager, DisplayBlockingPage(_)); |
| std::move(fake_csd_service.saved_callback()) |
| .Run(initial_url, true, net::HTTP_OK, std::nullopt); |
| |
| histogram_tester.ExpectTotalCount( |
| "SBClientPhishing.ServerModelDetectsPhishing.VibrationApi", 1); |
| } |
| |
| } // namespace safe_browsing |
