components/autofill/core/browser/randomized_encoder.h - chromium/src - Git at Google

 // Copyright 2018 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_
 #define COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_

 #include <memory>
 #include <string>

 #include "base/memory/raw_ptr.h"
 #include "base/strings/string_piece.h"
 #include "components/autofill/core/browser/proto/server.pb.h"
 #include "components/autofill/core/common/signatures.h"

 class PrefService;

 namespace autofill {

 // Encodes string values using the differential-privacy scheme as described
 // in go/autofill-metadata-upload (Google internal link).
 class RandomizedEncoder {
  public:
   struct EncodingInfo {
     AutofillRandomizedValue_EncodingType encoding_type;
     size_t chunk_length_in_bytes;
     size_t bit_offset;
     size_t bit_stride;
   };

   // Form-level data-type identifiers.
   static const char FORM_ID[];
   static const char FORM_NAME[];
   static const char FORM_ACTION[];
   static const char FORM_URL[];
   static const char FORM_CSS_CLASS[];
   static const char FORM_BUTTON_TITLES[];

   // Field-level data-type identifiers.
   static const char FIELD_ID[];
   static const char FIELD_NAME[];
   static const char FIELD_CONTROL_TYPE[];
   static const char FIELD_LABEL[];
   static const char FIELD_ARIA_LABEL[];
   static const char FIELD_ARIA_DESCRIPTION[];
   static const char FIELD_CSS_CLASS[];
   static const char FIELD_PLACEHOLDER[];
   static const char FIELD_INITIAL_VALUE_HASH[];
   static const char FIELD_AUTOCOMPLETE[];

   static const char kUrlKeyedAnonymizedDataCollectionEnabled[];

   // Factory Function
   static std::unique_ptr<RandomizedEncoder> Create(PrefService* pref_service);

   RandomizedEncoder(std::string seed,
                     AutofillRandomizedValue_EncodingType encoding_type,
                     bool anonymous_url_collection_is_enabled);

   // Encode |data_value| using this instance's |encoding_type_|.
   // If |data_type!=FORM_URL|, the output value's length is limited by
   // |kEncodedChunkLengthInBytes|.
   std::string Encode(FormSignature form_signature,
                      FieldSignature field_signature,
                      base::StringPiece data_type,
                      base::StringPiece data_value) const;
   // Used for testing, converts |data_value| to UTF-8 and calls Encode().
   std::string EncodeForTesting(FormSignature form_signature,
                                FieldSignature field_signature,
                                base::StringPiece data_type,
                                base::StringPiece16 data_value) const;

   AutofillRandomizedValue_EncodingType encoding_type() const {
     DCHECK(encoding_info_);
     return encoding_info_
                ? encoding_info_->encoding_type
                : AutofillRandomizedValue_EncodingType_UNSPECIFIED_ENCODING_TYPE;
   }
   bool AnonymousUrlCollectionIsEnabled() const {
     return anonymous_url_collection_is_enabled_;
   }

  protected:
   // Get the pseudo-random string to use at the coin bit-field. This function
   // is internal, but exposed here to facilitate testing.
   std::string GetCoins(FormSignature form_signature,
                        FieldSignature field_signature,
                        base::StringPiece data_type,
                        int encoding_length) const;

   // Get the pseudo-random string to use at the noise bit-field. This function
   // is internal, but exposed here to facilitate testing.
   std::string GetNoise(FormSignature form_signature,
                        FieldSignature field_signature,
                        base::StringPiece data_type,
                        int encoding_length) const;

   // For |data_type==FORM_URL|, returns required chunk count to fit
   // |data_value|, but max |kMaxChunks|. Otherwise, returns 1.
   int GetChunkCount(base::StringPiece data_value,
                     base::StringPiece data_type) const;

  private:
   const std::string seed_;
   const raw_ptr<const EncodingInfo> encoding_info_;
   const bool anonymous_url_collection_is_enabled_;
 };
 }  // namespace autofill

 #endif  // COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_
	// Copyright 2018 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_
	#define COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_

	#include <memory>
	#include <string>

	#include "base/memory/raw_ptr.h"
	#include "base/strings/string_piece.h"
	#include "components/autofill/core/browser/proto/server.pb.h"
	#include "components/autofill/core/common/signatures.h"

	class PrefService;

	namespace autofill {

	// Encodes string values using the differential-privacy scheme as described
	// in go/autofill-metadata-upload (Google internal link).
	class RandomizedEncoder {
	public:
	struct EncodingInfo {
	AutofillRandomizedValue_EncodingType encoding_type;
	size_t chunk_length_in_bytes;
	size_t bit_offset;
	size_t bit_stride;
	};

	// Form-level data-type identifiers.
	static const char FORM_ID[];
	static const char FORM_NAME[];
	static const char FORM_ACTION[];
	static const char FORM_URL[];
	static const char FORM_CSS_CLASS[];
	static const char FORM_BUTTON_TITLES[];

	// Field-level data-type identifiers.
	static const char FIELD_ID[];
	static const char FIELD_NAME[];
	static const char FIELD_CONTROL_TYPE[];
	static const char FIELD_LABEL[];
	static const char FIELD_ARIA_LABEL[];
	static const char FIELD_ARIA_DESCRIPTION[];
	static const char FIELD_CSS_CLASS[];
	static const char FIELD_PLACEHOLDER[];
	static const char FIELD_INITIAL_VALUE_HASH[];
	static const char FIELD_AUTOCOMPLETE[];

	static const char kUrlKeyedAnonymizedDataCollectionEnabled[];

	// Factory Function
	static std::unique_ptr<RandomizedEncoder> Create(PrefService* pref_service);

	RandomizedEncoder(std::string seed,
	AutofillRandomizedValue_EncodingType encoding_type,
	bool anonymous_url_collection_is_enabled);

	// Encode \|data_value\| using this instance's \|encoding_type_\|.
	// If \|data_type!=FORM_URL\|, the output value's length is limited by
	// \|kEncodedChunkLengthInBytes\|.
	std::string Encode(FormSignature form_signature,
	FieldSignature field_signature,
	base::StringPiece data_type,
	base::StringPiece data_value) const;
	// Used for testing, converts \|data_value\| to UTF-8 and calls Encode().
	std::string EncodeForTesting(FormSignature form_signature,
	FieldSignature field_signature,
	base::StringPiece data_type,
	base::StringPiece16 data_value) const;

	AutofillRandomizedValue_EncodingType encoding_type() const {
	DCHECK(encoding_info_);
	return encoding_info_
	? encoding_info_->encoding_type
	: AutofillRandomizedValue_EncodingType_UNSPECIFIED_ENCODING_TYPE;
	}
	bool AnonymousUrlCollectionIsEnabled() const {
	return anonymous_url_collection_is_enabled_;
	}

	protected:
	// Get the pseudo-random string to use at the coin bit-field. This function
	// is internal, but exposed here to facilitate testing.
	std::string GetCoins(FormSignature form_signature,
	FieldSignature field_signature,
	base::StringPiece data_type,
	int encoding_length) const;

	// Get the pseudo-random string to use at the noise bit-field. This function
	// is internal, but exposed here to facilitate testing.
	std::string GetNoise(FormSignature form_signature,
	FieldSignature field_signature,
	base::StringPiece data_type,
	int encoding_length) const;

	// For \|data_type==FORM_URL\|, returns required chunk count to fit
	// \|data_value\|, but max \|kMaxChunks\|. Otherwise, returns 1.
	int GetChunkCount(base::StringPiece data_value,
	base::StringPiece data_type) const;

	private:
	const std::string seed_;
	const raw_ptr<const EncodingInfo> encoding_info_;
	const bool anonymous_url_collection_is_enabled_;
	};
	} // namespace autofill

	#endif // COMPONENTS_AUTOFILL_CORE_BROWSER_RANDOMIZED_ENCODER_H_