Google Git
Sign in
chromium / chromium / src / d8bf984699025cba5ae5ade78c04907921010520 / . / chrome / browser / safe_search_api / safe_search_url_checker.cc
blob: 0011b8bb61f9a58ba48f268c20e65cbb08003105 [file] [log] [blame]
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/safe_search_api/safe_search_url_checker.h"
#include <string>
#include <utility>
#include "base/callback.h"
#include "base/json/json_reader.h"
#include "base/memory/ptr_util.h"
#include "base/metrics/histogram_macros.h"
#include "base/stl_util.h"
#include "base/strings/string_piece.h"
#include "base/strings/string_util.h"
#include "base/strings/stringprintf.h"
#include "base/time/time.h"
#include "base/values.h"
#include "components/google/core/browser/google_util.h"
#include "google_apis/google_api_keys.h"
#include "net/base/escape.h"
#include "net/base/load_flags.h"
#include "net/url_request/url_fetcher.h"
#include "net/url_request/url_request_context.h"
#include "url/url_constants.h"
using net::URLFetcher;
using net::URLFetcherDelegate;
using net::URLRequestContextGetter;
using net::URLRequestStatus;
namespace {
const char kSafeSearchApiUrl[] =
"https://safesearch.googleapis.com/v1:classify";
const char kDataContentType[] = "application/x-www-form-urlencoded";
const char kDataFormat[] = "key=%s&urls=%s";
const size_t kDefaultCacheSize = 1000;
const size_t kDefaultCacheTimeoutSeconds = 3600;
// Builds the POST data for SafeSearch API requests.
std::string BuildRequestData(const std::string& api_key, const GURL& url) {
std::string query = net::EscapeQueryParamValue(url.spec(), true);
return base::StringPrintf(kDataFormat, api_key.c_str(), query.c_str());
}
// Creates a URLFetcher to call the SafeSearch API for |url|.
std::unique_ptr<net::URLFetcher> CreateFetcher(
URLFetcherDelegate* delegate,
URLRequestContextGetter* context,
const std::string& api_key,
const GURL& url,
const net::NetworkTrafficAnnotationTag& traffic_annotation) {
std::unique_ptr<net::URLFetcher> fetcher =
URLFetcher::Create(0, GURL(kSafeSearchApiUrl), URLFetcher::POST, delegate,
traffic_annotation);
fetcher->SetUploadData(kDataContentType, BuildRequestData(api_key, url));
fetcher->SetRequestContext(context);
fetcher->SetLoadFlags(net::LOAD_DO_NOT_SEND_COOKIES |
net::LOAD_DO_NOT_SAVE_COOKIES);
return fetcher;
}
// Parses a SafeSearch API |response| and stores the result in |is_porn|.
// On errors, returns false and doesn't set |is_porn|.
bool ParseResponse(const std::string& response, bool* is_porn) {
std::unique_ptr<base::Value> value = base::JSONReader::Read(response);
const base::DictionaryValue* dict = nullptr;
if (!value || !value->GetAsDictionary(&dict)) {
DLOG(WARNING) << "ParseResponse failed to parse global dictionary";
return false;
}
const base::ListValue* classifications_list = nullptr;
if (!dict->GetList("classifications", &classifications_list)) {
DLOG(WARNING) << "ParseResponse failed to parse classifications list";
return false;
}
if (classifications_list->GetSize() != 1) {
DLOG(WARNING) << "ParseResponse expected exactly one result";
return false;
}
const base::DictionaryValue* classification_dict = nullptr;
if (!classifications_list->GetDictionary(0, &classification_dict)) {
DLOG(WARNING) << "ParseResponse failed to parse classification dict";
return false;
}
classification_dict->GetBoolean("pornography", is_porn);
return true;
}
} // namespace
struct SafeSearchURLChecker::Check {
Check(const GURL& url,
std::unique_ptr<net::URLFetcher> fetcher,
CheckCallback callback);
~Check();
GURL url;
std::unique_ptr<net::URLFetcher> fetcher;
std::vector<CheckCallback> callbacks;
base::TimeTicks start_time;
};
SafeSearchURLChecker::Check::Check(const GURL& url,
std::unique_ptr<net::URLFetcher> fetcher,
CheckCallback callback)
: url(url),
fetcher(std::move(fetcher)),
start_time(base::TimeTicks::Now()) {
callbacks.push_back(std::move(callback));
}
SafeSearchURLChecker::Check::~Check() {
for (const CheckCallback& callback : callbacks) {
DCHECK(!callback);
}
}
SafeSearchURLChecker::CheckResult::CheckResult(Classification classification,
bool uncertain)
: classification(classification),
uncertain(uncertain),
timestamp(base::TimeTicks::Now()) {}
SafeSearchURLChecker::SafeSearchURLChecker(
URLRequestContextGetter* context,
const net::NetworkTrafficAnnotationTag& traffic_annotation)
: SafeSearchURLChecker(context, traffic_annotation, kDefaultCacheSize) {}
SafeSearchURLChecker::SafeSearchURLChecker(
URLRequestContextGetter* context,
const net::NetworkTrafficAnnotationTag& traffic_annotation,
size_t cache_size)
: context_(context),
traffic_annotation_(traffic_annotation),
cache_(cache_size),
cache_timeout_(
base::TimeDelta::FromSeconds(kDefaultCacheTimeoutSeconds)) {}
SafeSearchURLChecker::~SafeSearchURLChecker() {}
bool SafeSearchURLChecker::CheckURL(const GURL& url, CheckCallback callback) {
// TODO(treib): Hack: For now, allow all Google URLs to save QPS. If we ever
// remove this, we should find a way to allow at least the NTP.
if (google_util::IsGoogleDomainUrl(url, google_util::ALLOW_SUBDOMAIN,
google_util::ALLOW_NON_STANDARD_PORTS)) {
std::move(callback).Run(url, Classification::SAFE, false);
return true;
}
// TODO(treib): Hack: For now, allow all YouTube URLs since YouTube has its
// own Safety Mode anyway.
if (google_util::IsYoutubeDomainUrl(url, google_util::ALLOW_SUBDOMAIN,
google_util::ALLOW_NON_STANDARD_PORTS)) {
std::move(callback).Run(url, Classification::SAFE, false);
return true;
}
auto cache_it = cache_.Get(url);
if (cache_it != cache_.end()) {
const CheckResult& result = cache_it->second;
base::TimeDelta age = base::TimeTicks::Now() - result.timestamp;
if (age < cache_timeout_) {
DVLOG(1) << "Cache hit! " << url.spec() << " is "
<< (result.classification == Classification::UNSAFE ? "NOT" : "")
<< " safe; certain: " << !result.uncertain;
std::move(callback).Run(url, result.classification, result.uncertain);
return true;
}
DVLOG(1) << "Outdated cache entry for " << url.spec() << ", purging";
cache_.Erase(cache_it);
}
// See if we already have a check in progress for this URL.
for (const auto& check : checks_in_progress_) {
if (check->url == url) {
DVLOG(1) << "Adding to pending check for " << url.spec();
check->callbacks.push_back(std::move(callback));
return false;
}
}
DVLOG(1) << "Checking URL " << url;
std::string api_key = google_apis::GetAPIKey();
std::unique_ptr<URLFetcher> fetcher(
CreateFetcher(this, context_, api_key, url, traffic_annotation_));
fetcher->Start();
checks_in_progress_.push_back(
std::make_unique<Check>(url, std::move(fetcher), std::move(callback)));
return false;
}
void SafeSearchURLChecker::OnURLFetchComplete(const net::URLFetcher* source) {
auto it = checks_in_progress_.begin();
while (it != checks_in_progress_.end()) {
if (source == (*it)->fetcher.get())
break;
++it;
}
DCHECK(it != checks_in_progress_.end());
Check* check = it->get();
const URLRequestStatus& status = source->GetStatus();
if (!status.is_success()) {
DLOG(WARNING) << "URL request failed! Letting through...";
for (size_t i = 0; i < check->callbacks.size(); i++)
std::move(check->callbacks[i])
.Run(check->url, Classification::SAFE, true);
checks_in_progress_.erase(it);
return;
}
std::string response_body;
source->GetResponseAsString(&response_body);
bool is_porn = false;
bool uncertain = !ParseResponse(response_body, &is_porn);
Classification classification =
is_porn ? Classification::UNSAFE : Classification::SAFE;
// TODO(msramek): Consider moving this to SupervisedUserResourceThrottle.
UMA_HISTOGRAM_TIMES("ManagedUsers.SafeSitesDelay",
base::TimeTicks::Now() - check->start_time);
cache_.Put(check->url, CheckResult(classification, uncertain));
for (size_t i = 0; i < check->callbacks.size(); i++)
std::move(check->callbacks[i]).Run(check->url, classification, uncertain);
checks_in_progress_.erase(it);
}