chrome/browser/safe_browsing/unverified_download_field_trial.cc - chromium/src - Git at Google

 // Copyright 2015 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "chrome/browser/safe_browsing/unverified_download_field_trial.h"

 #include "base/command_line.h"
 #include "base/files/file_path.h"
 #include "base/metrics/field_trial.h"
 #include "base/metrics/histogram.h"
 #include "base/strings/string_split.h"
 #include "base/strings/string_util.h"
 #include "base/strings/utf_string_conversions.h"
 #include "build/build_config.h"
 #include "chrome/common/chrome_switches.h"
 #include "chrome/common/safe_browsing/download_protection_util.h"
 #include "components/variations/variations_associated_data.h"

 namespace safe_browsing {

 const char kUnverifiedDownloadFieldTrialName[] =
     "SafeBrowsingUnverifiedDownloads";

 const char kUnverifiedDownloadFieldTrialDisableByParameter[] =
     "DisableByParameter";

 const char kUnverifiedDownloadFieldTrialWhitelistParam[] = "whitelist";
 const char kUnverifiedDownloadFieldTrialBlacklistParam[] = "blacklist";
 const char kUnverifiedDownloadFieldTrialBlockSBTypesParam[] = "block_sb_types";

 namespace {

 bool MatchesExtensionList(const base::FilePath& needle,
                           const std::string& haystack) {
 #if defined(OS_WIN)
   const base::FilePath::StringType comma_separated_extensions =
       base::UTF8ToUTF16(haystack);
 #else
   const base::FilePath::StringType& comma_separated_extensions = haystack;
 #endif
   std::vector<base::FilePath::StringPieceType> extension_list =
       base::SplitStringPiece(comma_separated_extensions, FILE_PATH_LITERAL(","),
                              base::TRIM_WHITESPACE, base::SPLIT_WANT_NONEMPTY);

   // A single '*' matches everything.
   if (extension_list.size() == 1 && extension_list[0] == FILE_PATH_LITERAL("*"))
     return true;

   for (const auto& extension : extension_list) {
     // This shouldn't happen, but check anyway in case the parameter is
     // accidentally malformed. The underlying FilePath implementation expects
     // the extension to begin with an extension separator.
     if (extension.size() == 0 ||
         extension[0] != base::FilePath::kExtensionSeparator)
       continue;
     if (needle.MatchesExtension(extension))
       return true;
   }
   return false;
 }

 }  // namespace

 bool IsUnverifiedDownloadAllowedByFieldTrial(const base::FilePath& file) {
   std::string group_name =
       base::FieldTrialList::FindFullName(kUnverifiedDownloadFieldTrialName);

   if (base::CommandLine::ForCurrentProcess()->HasSwitch(
           switches::kAllowUncheckedDangerousDownloads))
     return true;

   if (base::CommandLine::ForCurrentProcess()->HasSwitch(
           switches::kDisallowUncheckedDangerousDownloads) &&
       download_protection_util::IsSupportedBinaryFile(file))
     return false;

   if (base::StartsWith(group_name,
                        kUnverifiedDownloadFieldTrialDisableByParameter,
                        base::CompareCase::SENSITIVE)) {
     std::map<std::string, std::string> parameters;
     variations::GetVariationParams(kUnverifiedDownloadFieldTrialName,
                                    &parameters);

     if (parameters.count(kUnverifiedDownloadFieldTrialBlacklistParam) &&
         MatchesExtensionList(
             file, parameters[kUnverifiedDownloadFieldTrialBlacklistParam]))
       return false;

     if (parameters.count(kUnverifiedDownloadFieldTrialWhitelistParam) &&
         MatchesExtensionList(
             file, parameters[kUnverifiedDownloadFieldTrialWhitelistParam]))
       return true;

     if (parameters.count(kUnverifiedDownloadFieldTrialBlockSBTypesParam) &&
         !parameters[kUnverifiedDownloadFieldTrialBlockSBTypesParam].empty() &&
         download_protection_util::IsSupportedBinaryFile(file))
       return false;
   }

   return true;
 }

 }  // namespace safe_browsing
	// Copyright 2015 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "chrome/browser/safe_browsing/unverified_download_field_trial.h"

	#include "base/command_line.h"
	#include "base/files/file_path.h"
	#include "base/metrics/field_trial.h"
	#include "base/metrics/histogram.h"
	#include "base/strings/string_split.h"
	#include "base/strings/string_util.h"
	#include "base/strings/utf_string_conversions.h"
	#include "build/build_config.h"
	#include "chrome/common/chrome_switches.h"
	#include "chrome/common/safe_browsing/download_protection_util.h"
	#include "components/variations/variations_associated_data.h"

	namespace safe_browsing {

	const char kUnverifiedDownloadFieldTrialName[] =
	"SafeBrowsingUnverifiedDownloads";

	const char kUnverifiedDownloadFieldTrialDisableByParameter[] =
	"DisableByParameter";

	const char kUnverifiedDownloadFieldTrialWhitelistParam[] = "whitelist";
	const char kUnverifiedDownloadFieldTrialBlacklistParam[] = "blacklist";
	const char kUnverifiedDownloadFieldTrialBlockSBTypesParam[] = "block_sb_types";

	namespace {

	bool MatchesExtensionList(const base::FilePath& needle,
	const std::string& haystack) {
	#if defined(OS_WIN)
	const base::FilePath::StringType comma_separated_extensions =
	base::UTF8ToUTF16(haystack);
	#else
	const base::FilePath::StringType& comma_separated_extensions = haystack;
	#endif
	std::vector<base::FilePath::StringPieceType> extension_list =
	base::SplitStringPiece(comma_separated_extensions, FILE_PATH_LITERAL(","),
	base::TRIM_WHITESPACE, base::SPLIT_WANT_NONEMPTY);

	// A single '*' matches everything.
	if (extension_list.size() == 1 && extension_list[0] == FILE_PATH_LITERAL("*"))
	return true;

	for (const auto& extension : extension_list) {
	// This shouldn't happen, but check anyway in case the parameter is
	// accidentally malformed. The underlying FilePath implementation expects
	// the extension to begin with an extension separator.
	if (extension.size() == 0 \|\|
	extension[0] != base::FilePath::kExtensionSeparator)
	continue;
	if (needle.MatchesExtension(extension))
	return true;
	}
	return false;
	}

	} // namespace

	bool IsUnverifiedDownloadAllowedByFieldTrial(const base::FilePath& file) {
	std::string group_name =
	base::FieldTrialList::FindFullName(kUnverifiedDownloadFieldTrialName);

	if (base::CommandLine::ForCurrentProcess()->HasSwitch(
	switches::kAllowUncheckedDangerousDownloads))
	return true;

	if (base::CommandLine::ForCurrentProcess()->HasSwitch(
	switches::kDisallowUncheckedDangerousDownloads) &&
	download_protection_util::IsSupportedBinaryFile(file))
	return false;

	if (base::StartsWith(group_name,
	kUnverifiedDownloadFieldTrialDisableByParameter,
	base::CompareCase::SENSITIVE)) {
	std::map<std::string, std::string> parameters;
	variations::GetVariationParams(kUnverifiedDownloadFieldTrialName,
	&parameters);

	if (parameters.count(kUnverifiedDownloadFieldTrialBlacklistParam) &&
	MatchesExtensionList(
	file, parameters[kUnverifiedDownloadFieldTrialBlacklistParam]))
	return false;

	if (parameters.count(kUnverifiedDownloadFieldTrialWhitelistParam) &&
	MatchesExtensionList(
	file, parameters[kUnverifiedDownloadFieldTrialWhitelistParam]))
	return true;

	if (parameters.count(kUnverifiedDownloadFieldTrialBlockSBTypesParam) &&
	!parameters[kUnverifiedDownloadFieldTrialBlockSBTypesParam].empty() &&
	download_protection_util::IsSupportedBinaryFile(file))
	return false;
	}

	return true;
	}

	} // namespace safe_browsing