blob: d786dd10378ea7e91d651da25a2506833e018270 [file] [log] [blame]
// Copyright 2018 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <memory>
#include <vector>
#include "base/macros.h"
#include "base/memory/ref_counted.h"
#include "chrome/browser/conflicts/installed_applications_win.h"
#include "chrome/browser/conflicts/module_database_observer_win.h"
#include "chrome/browser/conflicts/proto/module_list.pb.h"
struct CertificateInfo;
class ModuleListFilter;
class PrefRegistrySimple;
// Maintains a list of incompatible applications that are installed on the
// machine. These applications cause unwanted DLLs to be loaded into Chrome.
// Because the list is expensive to build, it is cached into the Local State
// file so that it is available at startup.
class IncompatibleApplicationsUpdater : public ModuleDatabaseObserver {
// The decision that explains why a particular module caused an
// incompatibility warning or not.
// Note that this enum is very similar to the ModuleBlockingDecision in
// ModuleBlacklistCacheUpdater. This is done so that it is easier to keep the
// 2 features separate, as they can be independently enabled/disabled.
enum ModuleWarningDecision {
// Explicitly defined as zero so it is the default value when a
// ModuleWarningDecision
// variable is value-initialized (std::vector::resize()).
kUnknown = 0,
// A shell extension or IME that is not loaded in the process yet.
// Input method editors are allowed.
// Shell extensions are unwanted, but does not cause trigger a warning.
// Allowed because the certificate's subject of the module matches the
// certificate's subject of the executable. The certificate is not
// validated.
// Allowed because the path of the executable is the parent of the path of
// the module.
// Allowed because it is signed by Microsoft. The certificate is not
// validated.
// Explicitly whitelisted by the Module List component.
// This module is already going to be blocked on next browser launch, so
// don't warn about it.
// Unwanted, but can't tie back to an installed application.
// An incompatibility warning will be shown because of this module.
struct IncompatibleApplication {
InstalledApplications::ApplicationInfo info,
std::unique_ptr<chrome::conflicts::BlacklistAction> blacklist_action);
// Needed for std::remove_if().
IncompatibleApplication(IncompatibleApplication&& incompatible_application);
IncompatibleApplication& operator=(
IncompatibleApplication&& incompatible_application);
InstalledApplications::ApplicationInfo info;
std::unique_ptr<chrome::conflicts::BlacklistAction> blacklist_action;
// Creates an instance of the updater.
// The parameters must outlive the lifetime of this class.
ModuleDatabaseEventSource* module_database_event_source,
const CertificateInfo& exe_certificate_info,
scoped_refptr<ModuleListFilter> module_list_filter,
const InstalledApplications& installed_applications);
~IncompatibleApplicationsUpdater() override;
static void RegisterLocalStatePrefs(PrefRegistrySimple* registry);
// Returns true if the tracking of incompatible applications is enabled. Note
// that this is a Windows 10+ feature only.
static bool IsWarningEnabled();
// Returns true if the cache contains at least one incompatible application.
// Only call this if IsIncompatibleApplicationsWarningEnabled() returns true.
static bool HasCachedApplications();
// Returns all the cached incompatible applications.
// Only call this if IsIncompatibleApplicationsWarningEnabled() returns true.
static std::vector<IncompatibleApplication> GetCachedApplications();
// ModuleDatabaseObserver:
void OnNewModuleFound(const ModuleInfoKey& module_key,
const ModuleInfoData& module_data) override;
void OnKnownModuleLoaded(const ModuleInfoKey& module_key,
const ModuleInfoData& module_data) override;
void OnModuleDatabaseIdle() override;
// Returns the warning decision for a module.
ModuleWarningDecision GetModuleWarningDecision(
ModuleInfoKey module_key) const;
ModuleDatabaseEventSource* const module_database_event_source_;
const CertificateInfo& exe_certificate_info_;
scoped_refptr<ModuleListFilter> module_list_filter_;
const InstalledApplications& installed_applications_;
// Temporarily holds incompatible applications that were recently found.
std::vector<IncompatibleApplication> incompatible_applications_;
// Becomes false on the first call to OnModuleDatabaseIdle.
bool before_first_idle_ = true;
// Holds the warning decision for all known modules. The index is the module
// id.
std::vector<ModuleWarningDecision> module_warning_decisions_;