components/safe_browsing/core/realtime/policy_engine.cc - chromium/src - Git at Google

 // Copyright 2019 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "components/safe_browsing/core/realtime/policy_engine.h"

 #include "base/containers/contains.h"
 #include "base/feature_list.h"
 #include "base/metrics/histogram_macros.h"
 #include "build/build_config.h"
 #include "components/prefs/pref_service.h"
 #include "components/safe_browsing/core/common/safe_browsing_prefs.h"
 #include "components/safe_browsing/core/common/safebrowsing_constants.h"
 #include "components/safe_browsing/core/features.h"
 #include "components/unified_consent/pref_names.h"
 #include "components/user_prefs/user_prefs.h"
 #include "components/variations/service/variations_service.h"

 #if defined(OS_ANDROID)
 #include "base/metrics/field_trial_params.h"
 #include "base/system/sys_info.h"
 #endif

 namespace safe_browsing {

 // static
 bool RealTimePolicyEngine::IsInExcludedCountry(
     const std::string& country_code) {
   return base::Contains(GetExcludedCountries(), country_code);
 }

 // static
 bool RealTimePolicyEngine::IsUrlLookupEnabled() {
   return base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabled);
 }

 // static
 bool RealTimePolicyEngine::IsUserMbbOptedIn(PrefService* pref_service) {
   return pref_service->GetBoolean(
       unified_consent::prefs::kUrlKeyedAnonymizedDataCollectionEnabled);
 }

 // static
 bool RealTimePolicyEngine::IsUserEpOptedIn(PrefService* pref_service) {
   return IsEnhancedProtectionEnabled(*pref_service);
 }

 // static
 bool RealTimePolicyEngine::CanPerformFullURLLookup(
     PrefService* pref_service,
     bool is_off_the_record,
     variations::VariationsService* variations_service) {
   if (is_off_the_record)
     return false;

   // |variations_service| can be nullptr in tests.
   if (variations_service &&
       IsInExcludedCountry(variations_service->GetStoredPermanentCountry()))
     return false;

   if (IsUserEpOptedIn(pref_service))
     return true;

   return IsUrlLookupEnabled() && IsUserMbbOptedIn(pref_service);
 }

 // static
 bool RealTimePolicyEngine::CanPerformFullURLLookupWithToken(
     PrefService* pref_service,
     bool is_off_the_record,
     ClientConfiguredForTokenFetchesCallback client_callback,
     variations::VariationsService* variations_service) {
   if (!CanPerformFullURLLookup(pref_service, is_off_the_record,
                                variations_service)) {
     return false;
   }

   // Safe browsing token fetches are usually disabled if the feature is not
   // enabled via Finch. The only exception is for users who have explicitly
   // enabled enhanced protection, for whom the Finch feature is not relevant.
   if (!base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabledWithToken) &&
       !IsUserEpOptedIn(pref_service)) {
     return false;
   }

   return std::move(client_callback).Run(IsUserEpOptedIn(pref_service));
 }

 // static
 bool RealTimePolicyEngine::CanPerformEnterpriseFullURLLookup(
     const PrefService* pref_service,
     bool has_valid_dm_token,
     bool is_off_the_record) {
   if (is_off_the_record) {
     return false;
   }

   if (!base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabledForEnterprise)) {
     return false;
   }

   if (!has_valid_dm_token) {
     return false;
   }

   return pref_service->GetInteger(
              prefs::kSafeBrowsingEnterpriseRealTimeUrlCheckMode) ==
          REAL_TIME_CHECK_FOR_MAINFRAME_ENABLED;
 }

 // static
 bool RealTimePolicyEngine::CanPerformFullURLLookupForResourceType(
     ResourceType resource_type,
     bool can_rt_check_subresource_url) {
   UMA_HISTOGRAM_ENUMERATION("SafeBrowsing.RT.ResourceTypes.Requested",
                             resource_type);
   if (resource_type == ResourceType::kMainFrame) {
     return true;
   }
   if (resource_type == ResourceType::kSubFrame &&
       can_rt_check_subresource_url) {
     return true;
   }
   return false;
 }

 }  // namespace safe_browsing
	// Copyright 2019 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "components/safe_browsing/core/realtime/policy_engine.h"

	#include "base/containers/contains.h"
	#include "base/feature_list.h"
	#include "base/metrics/histogram_macros.h"
	#include "build/build_config.h"
	#include "components/prefs/pref_service.h"
	#include "components/safe_browsing/core/common/safe_browsing_prefs.h"
	#include "components/safe_browsing/core/common/safebrowsing_constants.h"
	#include "components/safe_browsing/core/features.h"
	#include "components/unified_consent/pref_names.h"
	#include "components/user_prefs/user_prefs.h"
	#include "components/variations/service/variations_service.h"

	#if defined(OS_ANDROID)
	#include "base/metrics/field_trial_params.h"
	#include "base/system/sys_info.h"
	#endif

	namespace safe_browsing {

	// static
	bool RealTimePolicyEngine::IsInExcludedCountry(
	const std::string& country_code) {
	return base::Contains(GetExcludedCountries(), country_code);
	}

	// static
	bool RealTimePolicyEngine::IsUrlLookupEnabled() {
	return base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabled);
	}

	// static
	bool RealTimePolicyEngine::IsUserMbbOptedIn(PrefService* pref_service) {
	return pref_service->GetBoolean(
	unified_consent::prefs::kUrlKeyedAnonymizedDataCollectionEnabled);
	}

	// static
	bool RealTimePolicyEngine::IsUserEpOptedIn(PrefService* pref_service) {
	return IsEnhancedProtectionEnabled(*pref_service);
	}

	// static
	bool RealTimePolicyEngine::CanPerformFullURLLookup(
	PrefService* pref_service,
	bool is_off_the_record,
	variations::VariationsService* variations_service) {
	if (is_off_the_record)
	return false;

	// \|variations_service\| can be nullptr in tests.
	if (variations_service &&
	IsInExcludedCountry(variations_service->GetStoredPermanentCountry()))
	return false;

	if (IsUserEpOptedIn(pref_service))
	return true;

	return IsUrlLookupEnabled() && IsUserMbbOptedIn(pref_service);
	}

	// static
	bool RealTimePolicyEngine::CanPerformFullURLLookupWithToken(
	PrefService* pref_service,
	bool is_off_the_record,
	ClientConfiguredForTokenFetchesCallback client_callback,
	variations::VariationsService* variations_service) {
	if (!CanPerformFullURLLookup(pref_service, is_off_the_record,
	variations_service)) {
	return false;
	}

	// Safe browsing token fetches are usually disabled if the feature is not
	// enabled via Finch. The only exception is for users who have explicitly
	// enabled enhanced protection, for whom the Finch feature is not relevant.
	if (!base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabledWithToken) &&
	!IsUserEpOptedIn(pref_service)) {
	return false;
	}

	return std::move(client_callback).Run(IsUserEpOptedIn(pref_service));
	}

	// static
	bool RealTimePolicyEngine::CanPerformEnterpriseFullURLLookup(
	const PrefService* pref_service,
	bool has_valid_dm_token,
	bool is_off_the_record) {
	if (is_off_the_record) {
	return false;
	}

	if (!base::FeatureList::IsEnabled(kRealTimeUrlLookupEnabledForEnterprise)) {
	return false;
	}

	if (!has_valid_dm_token) {
	return false;
	}

	return pref_service->GetInteger(
	prefs::kSafeBrowsingEnterpriseRealTimeUrlCheckMode) ==
	REAL_TIME_CHECK_FOR_MAINFRAME_ENABLED;
	}

	// static
	bool RealTimePolicyEngine::CanPerformFullURLLookupForResourceType(
	ResourceType resource_type,
	bool can_rt_check_subresource_url) {
	UMA_HISTOGRAM_ENUMERATION("SafeBrowsing.RT.ResourceTypes.Requested",
	resource_type);
	if (resource_type == ResourceType::kMainFrame) {
	return true;
	}
	if (resource_type == ResourceType::kSubFrame &&
	can_rt_check_subresource_url) {
	return true;
	}
	return false;
	}

	} // namespace safe_browsing