| // Copyright 2017 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "chrome/browser/ui/blocked_content/safe_browsing_triggered_popup_blocker.h" |
| |
| #include <utility> |
| |
| #include "base/memory/ptr_util.h" |
| #include "base/metrics/histogram_macros.h" |
| #include "chrome/browser/profiles/profile.h" |
| #include "chrome/common/pref_names.h" |
| #include "components/pref_registry/pref_registry_syncable.h" |
| #include "components/prefs/pref_service.h" |
| #include "components/safe_browsing/core/db/util.h" |
| #include "components/safe_browsing/core/db/v4_protocol_manager_util.h" |
| #include "components/subresource_filter/content/browser/subresource_filter_safe_browsing_activation_throttle.h" |
| #include "content/public/browser/back_forward_cache.h" |
| #include "content/public/browser/navigation_handle.h" |
| #include "content/public/browser/render_frame_host.h" |
| #include "content/public/browser/web_contents.h" |
| #include "third_party/blink/public/common/navigation/triggering_event_info.h" |
| #include "third_party/blink/public/mojom/devtools/console_message.mojom.h" |
| |
| namespace { |
| |
| void LogAction(SafeBrowsingTriggeredPopupBlocker::Action action) { |
| UMA_HISTOGRAM_ENUMERATION("ContentSettings.Popups.StrongBlockerActions", |
| action, |
| SafeBrowsingTriggeredPopupBlocker::Action::kCount); |
| } |
| |
| } // namespace |
| |
| using safe_browsing::SubresourceFilterLevel; |
| |
| const base::Feature kAbusiveExperienceEnforce{"AbusiveExperienceEnforce", |
| base::FEATURE_ENABLED_BY_DEFAULT}; |
| |
| SafeBrowsingTriggeredPopupBlocker::PageData::PageData() = default; |
| |
| SafeBrowsingTriggeredPopupBlocker::PageData::~PageData() { |
| if (is_triggered_) { |
| UMA_HISTOGRAM_COUNTS_100("ContentSettings.Popups.StrongBlocker.NumBlocked", |
| num_popups_blocked_); |
| } |
| } |
| |
| // static |
| void SafeBrowsingTriggeredPopupBlocker::RegisterProfilePrefs( |
| user_prefs::PrefRegistrySyncable* registry) { |
| registry->RegisterBooleanPref(prefs::kAbusiveExperienceInterventionEnforce, |
| true /* default_value */); |
| } |
| |
| // static |
| void SafeBrowsingTriggeredPopupBlocker::MaybeCreate( |
| content::WebContents* web_contents) { |
| if (!IsEnabled(web_contents)) |
| return; |
| |
| auto* observer_manager = |
| subresource_filter::SubresourceFilterObserverManager::FromWebContents( |
| web_contents); |
| if (!observer_manager) |
| return; |
| |
| if (FromWebContents(web_contents)) |
| return; |
| |
| web_contents->SetUserData( |
| UserDataKey(), base::WrapUnique(new SafeBrowsingTriggeredPopupBlocker( |
| web_contents, observer_manager))); |
| } |
| |
| SafeBrowsingTriggeredPopupBlocker::~SafeBrowsingTriggeredPopupBlocker() = |
| default; |
| |
| bool SafeBrowsingTriggeredPopupBlocker::ShouldApplyAbusivePopupBlocker() { |
| LogAction(Action::kConsidered); |
| if (!current_page_data_->is_triggered()) |
| return false; |
| |
| if (!IsEnabled(web_contents())) |
| return false; |
| |
| LogAction(Action::kBlocked); |
| current_page_data_->inc_num_popups_blocked(); |
| web_contents()->GetMainFrame()->AddMessageToConsole( |
| blink::mojom::ConsoleMessageLevel::kError, kAbusiveEnforceMessage); |
| return true; |
| } |
| |
| SafeBrowsingTriggeredPopupBlocker::SafeBrowsingTriggeredPopupBlocker( |
| content::WebContents* web_contents, |
| subresource_filter::SubresourceFilterObserverManager* observer_manager) |
| : content::WebContentsObserver(web_contents), |
| scoped_observer_(this), |
| current_page_data_(std::make_unique<PageData>()) { |
| DCHECK(observer_manager); |
| scoped_observer_.Add(observer_manager); |
| } |
| |
| void SafeBrowsingTriggeredPopupBlocker::DidFinishNavigation( |
| content::NavigationHandle* navigation_handle) { |
| if (!navigation_handle->IsInMainFrame()) |
| return; |
| |
| base::Optional<SubresourceFilterLevel> level; |
| level_for_next_committed_navigation_.swap(level); |
| |
| // Only care about main frame navigations that commit. |
| if (!navigation_handle->HasCommitted() || |
| navigation_handle->IsSameDocument()) { |
| return; |
| } |
| |
| DCHECK(current_page_data_); |
| current_page_data_ = std::make_unique<PageData>(); |
| if (navigation_handle->IsErrorPage()) |
| return; |
| |
| // Log a warning only if we've matched a warn-only safe browsing list. |
| if (level == SubresourceFilterLevel::ENFORCE) { |
| current_page_data_->set_is_triggered(true); |
| LogAction(Action::kEnforcedSite); |
| // When a page is restored from back-forward cache, we don't get |
| // OnSafeBrowsingChecksComplete callback, so |level| will always |
| // be empty. |
| // To work around this, we disable back-forward cache if the original |
| // page load had abusive enforcement - this means that not doing checks on |
| // back-forward navigation is fine as it's guaranteed that |
| // the original page load didn't have enforcement. |
| // Note that it's possible for the safe browsing list to update while |
| // the page is in the cache, the risk of this is mininal due to |
| // having a time limit for how long pages are allowed to be in the |
| // cache. |
| content::BackForwardCache::DisableForRenderFrameHost( |
| navigation_handle->GetRenderFrameHost(), |
| "SafeBrowsingTriggeredPopupBlocker"); |
| } else if (level == SubresourceFilterLevel::WARN) { |
| web_contents()->GetMainFrame()->AddMessageToConsole( |
| blink::mojom::ConsoleMessageLevel::kWarning, kAbusiveWarnMessage); |
| LogAction(Action::kWarningSite); |
| } |
| LogAction(Action::kNavigation); |
| } |
| |
| // This method will always be called before the DidFinishNavigation associated |
| // with this handle. |
| // The exception is a navigation restoring a page from back-forward cache -- |
| // in that case don't issue any requests, therefore we don't get any |
| // safe browsing callbacks. See the comment above for the mitigation. |
| void SafeBrowsingTriggeredPopupBlocker::OnSafeBrowsingChecksComplete( |
| content::NavigationHandle* navigation_handle, |
| const SafeBrowsingCheckResults& results) { |
| DCHECK(navigation_handle->IsInMainFrame()); |
| base::Optional<safe_browsing::SubresourceFilterLevel> match_level; |
| base::Optional<size_t> match_index; |
| for (size_t i = 0u; i < results.size(); ++i) { |
| const auto& result = results[i]; |
| if (result.threat_type != |
| safe_browsing::SBThreatType::SB_THREAT_TYPE_SUBRESOURCE_FILTER) |
| continue; |
| |
| auto abusive = result.threat_metadata.subresource_filter_match.find( |
| safe_browsing::SubresourceFilterType::ABUSIVE); |
| if (abusive != result.threat_metadata.subresource_filter_match.end() && |
| (!match_level.has_value() || match_level.value() < abusive->second)) { |
| match_level = abusive->second; |
| match_index = i; |
| } |
| } |
| |
| if (match_level.has_value()) { |
| level_for_next_committed_navigation_ = match_level; |
| } |
| } |
| |
| void SafeBrowsingTriggeredPopupBlocker::OnSubresourceFilterGoingAway() { |
| scoped_observer_.RemoveAll(); |
| } |
| |
| bool SafeBrowsingTriggeredPopupBlocker::IsEnabled( |
| content::WebContents* web_contents) { |
| // If feature is disabled, return false. This is done so that if the feature |
| // is broken it can be disabled irrespective of the policy. |
| if (!base::FeatureList::IsEnabled(kAbusiveExperienceEnforce)) |
| return false; |
| |
| // If enterprise policy is not set, this will return true which is the default |
| // preference value. |
| Profile* profile = |
| Profile::FromBrowserContext(web_contents->GetBrowserContext()); |
| return profile->GetPrefs()->GetBoolean( |
| prefs::kAbusiveExperienceInterventionEnforce); |
| } |
| |
| WEB_CONTENTS_USER_DATA_KEY_IMPL(SafeBrowsingTriggeredPopupBlocker) |
