Google Git
Sign in
chromium / chromium / src / e245e901b1d4f7d9282f74116f2747cbe363fc79 / . / components / payments / content / utility / payment_manifest_parser.cc
blob: d8871e5496829c14f56529aca2d0bda334548e67 [file] [log] [blame]
// Copyright 2017 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "components/payments/content/utility/payment_manifest_parser.h"
#include <algorithm>
#include <utility>
#include "base/bind.h"
#include "base/callback_helpers.h"
#include "base/check_op.h"
#include "base/memory/ref_counted.h"
#include "base/memory/scoped_refptr.h"
#include "base/strings/string_number_conversions.h"
#include "base/strings/stringprintf.h"
#include "components/payments/content/utility/fingerprint_parser.h"
#include "components/payments/core/error_logger.h"
#include "components/payments/core/url_util.h"
#include "net/base/url_util.h"
#include "services/data_decoder/public/cpp/data_decoder.h"
#include "url/url_constants.h"
namespace payments {
namespace {
const size_t kMaximumNumberOfItems = 100U;
const size_t kMaximumNumberOfSupportedOrigins = 100000;
const size_t kMaximumNumberOfSupportedDelegations = 4U;
const size_t kMaximumPrintedStringLength = 100U;
const char* const kDefaultApplications = "default_applications";
const char* const kFingerprints = "fingerprints";
const char* const kHttpPrefix = "http://";
const char* const kHttpsPrefix = "https://";
const char* const kId = "id";
const char* const kMinVersion = "min_version";
const char* const kPayment = "payment";
const char* const kPlatform = "platform";
const char* const kPlay = "play";
const char* const kPreferRelatedApplications = "prefer_related_applications";
const char* const kRelatedApplications = "related_applications";
const char* const kServiceWorkerScope = "scope";
const char* const kServiceWorker = "serviceworker";
const char* const kServiceWorkerSrc = "src";
const char* const kServiceWorkerUseCache = "use_cache";
const char* const kSupportedDelegations = "supported_delegations";
const char* const kSupportedOrigins = "supported_origins";
const char* const kWebAppIcons = "icons";
const char* const kWebAppIconSizes = "sizes";
const char* const kWebAppIconSrc = "src";
const char* const kWebAppIconType = "type";
const char* const kWebAppName = "name";
// Truncates a std::string to 100 chars. This returns an empty string when the
// input should be ASCII but it's not.
const std::string ValidateAndTruncateIfNeeded(const std::string& input,
bool* out_is_ASCII) {
if (out_is_ASCII) {
*out_is_ASCII = base::IsStringASCII(input);
if (!*out_is_ASCII)
return "";
}
return input.size() > kMaximumPrintedStringLength
? (input.substr(0, kMaximumPrintedStringLength) + "...")
: input;
}
// Parses the "default_applications": ["https://some/url"] from |dict| into
// |web_app_manifest_urls|. Uses |manifest_url| to resolve relative URLs.
// Returns 'false' for invalid data.
bool ParseDefaultApplications(const GURL& manifest_url,
base::DictionaryValue* dict,
std::vector<GURL>* web_app_manifest_urls,
const ErrorLogger& log) {
DCHECK(dict);
DCHECK(web_app_manifest_urls);
base::ListValue* list = nullptr;
if (!dict->GetList(kDefaultApplications, &list)) {
// TODO(crbug.com/1065337): Move the error message strings to
// components/payments/core/native_error_strings.cc.
log.Error(
base::StringPrintf("\"%s\" must be a list.", kDefaultApplications));
return false;
}
size_t apps_number = list->GetList().size();
if (apps_number > kMaximumNumberOfItems) {
log.Error(base::StringPrintf("\"%s\" must contain at most %zu entries.",
kDefaultApplications, kMaximumNumberOfItems));
return false;
}
for (size_t i = 0; i < apps_number; ++i) {
std::string item;
if (!list->GetString(i, &item) || item.empty() ||
!base::IsStringUTF8(item)) {
log.Error(base::StringPrintf("Each entry in \"%s\" must be UTF8 string.",
kDefaultApplications));
web_app_manifest_urls->clear();
return false;
}
GURL url = manifest_url.Resolve(item);
// TODO(crbug.com/1065337): Check that |url| is the same origin with
// |manifest_url|. Currently that's checked by callers, but the earlier this
// is caught, the fewer resources Chrome consumes.
if (!UrlUtil::IsValidManifestUrl(url)) {
const std::string item_to_print =
ValidateAndTruncateIfNeeded(item, nullptr);
log.Error(
base::StringPrintf("\"%s\" entry in \"%s\" is not a valid URL with "
"HTTPS scheme and is "
"not a valid localhost URL with HTTP scheme.",
item_to_print.c_str(), kDefaultApplications));
web_app_manifest_urls->clear();
return false;
}
web_app_manifest_urls->push_back(url);
}
return true;
}
// Parses the "supported_origins": "https://some.origin" from |dict|
// into |supported_origins|. Returns 'false' for invalid data.
bool ParseSupportedOrigins(base::DictionaryValue* dict,
std::vector<url::Origin>* supported_origins,
const ErrorLogger& log) {
DCHECK(dict);
DCHECK(supported_origins);
base::ListValue* list = nullptr;
if (!dict->GetList(kSupportedOrigins, &list)) {
log.Error(base::StringPrintf("\"%s\" must be a list of origins.",
kSupportedOrigins));
return false;
}
size_t supported_origins_number = list->GetList().size();
if (supported_origins_number > kMaximumNumberOfSupportedOrigins) {
log.Error(base::StringPrintf("\"%s\" must contain at most %zu entires.",
kSupportedOrigins,
kMaximumNumberOfSupportedOrigins));
return false;
}
for (size_t i = 0; i < supported_origins_number; ++i) {
std::string item;
if (!list->GetString(i, &item) || item.empty() ||
!base::IsStringUTF8(item) ||
!(base::StartsWith(item, kHttpsPrefix, base::CompareCase::SENSITIVE) ||
base::StartsWith(item, kHttpPrefix, base::CompareCase::SENSITIVE))) {
supported_origins->clear();
log.Error(base::StringPrintf(
"Each entry in \"%s\" must be UTF8 string that starts with \"%s\" or "
"\"%s\" (for localhost).",
kSupportedOrigins, kHttpsPrefix, kHttpPrefix));
return false;
}
GURL url(item);
if (!UrlUtil::IsValidSupportedOrigin(url)) {
supported_origins->clear();
const std::string item_to_print =
ValidateAndTruncateIfNeeded(item, nullptr);
log.Error(base::StringPrintf(
"\"%s\" entry in \"%s\" is not a valid origin with HTTPS scheme "
"and "
"is not a valid localhost origin with HTTP scheme.",
item_to_print.c_str(), kSupportedOrigins));
return false;
}
supported_origins->push_back(url::Origin::Create(url));
}
return true;
}
void ParseIcons(const base::DictionaryValue& dict,
const ErrorLogger& log,
std::vector<PaymentManifestParser::WebAppIcon>* icons) {
DCHECK(icons);
const base::ListValue* icons_list = nullptr;
if (!dict.GetList(kWebAppIcons, &icons_list)) {
log.Warn(
base::StringPrintf("No \"%s\" list in the manifest.", kWebAppIcons));
return;
}
for (const auto& icon : icons_list->GetList()) {
if (!icon.is_dict()) {
log.Warn(base::StringPrintf(
"Each item in the list \"%s\" should be a dictionary.",
kWebAppIcons));
continue;
}
PaymentManifestParser::WebAppIcon web_app_icon;
const base::Value* icon_src =
icon.FindKeyOfType(kWebAppIconSrc, base::Value::Type::STRING);
if (!icon_src || icon_src->GetString().empty() ||
!base::IsStringUTF8(icon_src->GetString())) {
log.Warn(
base::StringPrintf("Each dictionary in the list \"%s\" should "
"contain a non-empty UTF8 string field \"%s\".",
kWebAppIcons, kWebAppIconSrc));
continue;
}
web_app_icon.src = icon_src->GetString();
const base::Value* icon_sizes =
icon.FindKeyOfType(kWebAppIconSizes, base::Value::Type::STRING);
if (!icon_sizes || icon_sizes->GetString().empty() ||
!base::IsStringUTF8(icon_sizes->GetString())) {
log.Warn(
base::StringPrintf("Each dictionary in the list \"%s\" should "
"contain a non-empty UTF8 string field \"%s\".",
kWebAppIcons, kWebAppIconSizes));
} else {
web_app_icon.sizes = icon_sizes->GetString();
}
const base::Value* icon_type =
icon.FindKeyOfType(kWebAppIconType, base::Value::Type::STRING);
if (!icon_type || icon_type->GetString().empty() ||
!base::IsStringUTF8(icon_type->GetString())) {
log.Warn(
base::StringPrintf("Each dictionary in the list \"%s\" should "
"contain a non-empty UTF8 string field \"%s\".",
kWebAppIcons, kWebAppIconType));
} else {
web_app_icon.type = icon_type->GetString();
}
icons->emplace_back(web_app_icon);
}
}
void ParsePreferredRelatedApplicationIdentifiers(
const base::DictionaryValue& dict,
const ErrorLogger& log,
std::vector<std::string>* ids) {
DCHECK(ids);
if (!dict.HasKey(kPreferRelatedApplications))
return;
absl::optional<bool> prefer_related_applications =
dict.FindBoolKey(kPreferRelatedApplications);
if (!prefer_related_applications.has_value()) {
log.Warn(base::StringPrintf("The \"%s\" field should be a boolean.",
kPreferRelatedApplications));
return;
}
if (!prefer_related_applications.value())
return;
const base::ListValue* related_applications = nullptr;
if (!dict.GetList(kRelatedApplications, &related_applications)) {
log.Warn(
base::StringPrintf("The \"%s\" field should be a list of dictionaries.",
kRelatedApplications));
return;
}
size_t size = related_applications->GetList().size();
if (size == 0) {
log.Warn(base::StringPrintf(
"Did not find any entries in \"%s\", even though \"%s\" is true.",
kRelatedApplications, kPreferRelatedApplications));
return;
}
for (size_t i = 0; i < size; ++i) {
const base::Value& related_application_value =
related_applications->GetList()[i];
if (!related_application_value.is_dict()) {
log.Warn(
base::StringPrintf("Element #%zu in \"%s\" should be a dictionary.",
i, kRelatedApplications));
continue;
}
const base::DictionaryValue& related_application =
base::Value::AsDictionaryValue(related_application_value);
std::string platform;
if (!related_application.GetString(kPlatform, &platform) ||
platform != kPlay) {
continue;
}
if (ids->size() >= kMaximumNumberOfItems) {
log.Warn(base::StringPrintf(
"The maximum number of items in \"%s\" with \"%s\":\"%s\" should not "
"exceed %zu.",
kRelatedApplications, kPlatform, kPlay, kMaximumNumberOfItems));
break;
}
std::string id;
if (!related_application.GetString(kId, &id)) {
log.Warn(base::StringPrintf(
"Elements in \"%s\" with \"%s\":\"%s\" should have \"%s\" field.",
kRelatedApplications, kPlatform, kPlay, kId));
continue;
}
if (id.empty() || !base::IsStringASCII(id)) {
log.Warn(base::StringPrintf(
"\"%s\".\"%s\" should be a non-empty ASCII string.",
kRelatedApplications, kId));
continue;
}
ids->emplace_back(id);
}
}
} // namespace
PaymentManifestParser::WebAppIcon::WebAppIcon() = default;
PaymentManifestParser::WebAppIcon::~WebAppIcon() = default;
PaymentManifestParser::PaymentManifestParser(std::unique_ptr<ErrorLogger> log)
: log_(std::move(log)) {
DCHECK(log_);
}
PaymentManifestParser::~PaymentManifestParser() = default;
void PaymentManifestParser::ParsePaymentMethodManifest(
const GURL& manifest_url,
const std::string& content,
PaymentMethodCallback callback) {
parse_payment_callback_counter_++;
DCHECK_GE(10U, parse_payment_callback_counter_);
data_decoder::DataDecoder::ParseJsonIsolated(
content, base::BindOnce(&PaymentManifestParser::OnPaymentMethodParse,
weak_factory_.GetWeakPtr(), manifest_url,
std::move(callback)));
}
void PaymentManifestParser::ParseWebAppManifest(const std::string& content,
WebAppCallback callback) {
parse_webapp_callback_counter_++;
DCHECK_GE(10U, parse_webapp_callback_counter_);
data_decoder::DataDecoder::ParseJsonIsolated(
content, base::BindOnce(&PaymentManifestParser::OnWebAppParse,
weak_factory_.GetWeakPtr(), std::move(callback)));
}
void PaymentManifestParser::ParseWebAppInstallationInfo(
const std::string& content,
WebAppInstallationInfoCallback callback) {
data_decoder::DataDecoder::ParseJsonIsolated(
content,
base::BindOnce(&PaymentManifestParser::OnWebAppParseInstallationInfo,
weak_factory_.GetWeakPtr(), std::move(callback)));
}
// static
void PaymentManifestParser::ParsePaymentMethodManifestIntoVectors(
const GURL& manifest_url,
std::unique_ptr<base::Value> value,
const ErrorLogger& log,
std::vector<GURL>* web_app_manifest_urls,
std::vector<url::Origin>* supported_origins) {
DCHECK(web_app_manifest_urls);
DCHECK(supported_origins);
std::unique_ptr<base::DictionaryValue> dict =
base::DictionaryValue::From(std::move(value));
if (!dict) {
log.Error("Payment method manifest must be a JSON dictionary.");
return;
}
if (dict->HasKey(kDefaultApplications) &&
!ParseDefaultApplications(manifest_url, dict.get(), web_app_manifest_urls,
log)) {
return;
}
if (dict->HasKey(kSupportedOrigins) &&
!ParseSupportedOrigins(dict.get(), supported_origins, log)) {
web_app_manifest_urls->clear();
}
}
// static
bool PaymentManifestParser::ParseWebAppManifestIntoVector(
std::unique_ptr<base::Value> value,
const ErrorLogger& log,
std::vector<WebAppManifestSection>* output) {
std::unique_ptr<base::DictionaryValue> dict =
base::DictionaryValue::From(std::move(value));
if (!dict) {
log.Error("Web app manifest must be a JSON dictionary.");
return false;
}
base::ListValue* list = nullptr;
if (!dict->GetList(kRelatedApplications, &list)) {
log.Error(
base::StringPrintf("\"%s\" must be a list.", kRelatedApplications));
return false;
}
for (const base::Value& related_application_value : list->GetList()) {
if (!related_application_value.is_dict()) {
log.Error(base::StringPrintf("\"%s\" must be a list of dictionaries.",
kRelatedApplications));
output->clear();
return false;
}
const base::DictionaryValue& related_application =
base::Value::AsDictionaryValue(related_application_value);
std::string platform;
if (!related_application.GetString(kPlatform, &platform) ||
platform != kPlay) {
continue;
}
if (output->size() >= kMaximumNumberOfItems) {
log.Error(base::StringPrintf(
"\"%s\" must contain at most %zu entries with \"%s\": \"%s\".",
kRelatedApplications, kMaximumNumberOfItems, kPlatform, kPlay));
output->clear();
return false;
}
if (!related_application.HasKey(kId) ||
!related_application.HasKey(kMinVersion) ||
!related_application.HasKey(kFingerprints)) {
log.Error(
base::StringPrintf("Each \"%s\": \"%s\" entry in \"%s\" must contain "
"\"%s\", \"%s\", and \"%s\".",
kPlatform, kPlay, kRelatedApplications, kId,
kMinVersion, kFingerprints));
return false;
}
WebAppManifestSection section;
section.min_version = 0;
if (!related_application.GetString(kId, &section.id) ||
section.id.empty() || !base::IsStringASCII(section.id)) {
log.Error(
base::StringPrintf("\"%s\" must be a non-empty ASCII string.", kId));
output->clear();
return false;
}
std::string min_version;
if (!related_application.GetString(kMinVersion, &min_version) ||
min_version.empty() || !base::IsStringASCII(min_version) ||
!base::StringToInt64(min_version, &section.min_version)) {
log.Error(base::StringPrintf(
"\"%s\" must be a string convertible into a number.", kMinVersion));
output->clear();
return false;
}
const base::ListValue* fingerprints_list = nullptr;
if (!related_application.GetList(kFingerprints, &fingerprints_list) ||
fingerprints_list->GetList().empty() ||
fingerprints_list->GetList().size() > kMaximumNumberOfItems) {
log.Error(base::StringPrintf(
"\"%s\" must be a non-empty list of at most %zu items.",
kFingerprints, kMaximumNumberOfItems));
output->clear();
return false;
}
for (const base::Value& fingerprint_dict_value :
fingerprints_list->GetList()) {
const base::DictionaryValue* fingerprint_dict = nullptr;
if (fingerprint_dict_value.is_dict()) {
fingerprint_dict =
&base::Value::AsDictionaryValue(fingerprint_dict_value);
}
std::string fingerprint_type;
std::string fingerprint_value;
if (!fingerprint_dict ||
!fingerprint_dict->GetString("type", &fingerprint_type) ||
fingerprint_type != "sha256_cert" ||
!fingerprint_dict->GetString("value", &fingerprint_value) ||
fingerprint_value.empty() ||
!base::IsStringASCII(fingerprint_value)) {
log.Error(base::StringPrintf(
"Each entry in \"%s\" must be a dictionary with \"type\": "
"\"sha256_cert\" and a non-empty ASCII string \"value\".",
kFingerprints));
output->clear();
return false;
}
std::vector<uint8_t> hash =
FingerprintStringToByteArray(fingerprint_value, log);
if (hash.empty()) {
output->clear();
return false;
}
section.fingerprints.push_back(hash);
}
output->push_back(section);
}
return true;
}
// static
bool PaymentManifestParser::ParseWebAppInstallationInfoIntoStructs(
std::unique_ptr<base::Value> value,
const ErrorLogger& log,
WebAppInstallationInfo* installation_info,
std::vector<WebAppIcon>* icons) {
DCHECK(installation_info);
DCHECK(icons);
std::unique_ptr<base::DictionaryValue> dict =
base::DictionaryValue::From(std::move(value));
if (!dict) {
log.Error("Web app manifest must be a JSON dictionary.");
return false;
}
{
base::DictionaryValue* service_worker_dict = nullptr;
if (!dict->GetDictionary(kServiceWorker, &service_worker_dict)) {
log.Error(base::StringPrintf(
"\"%s\" must be a dictionary in your web app manifest.",
kServiceWorker));
return false;
}
if (!service_worker_dict->GetString(kServiceWorkerSrc,
&installation_info->sw_js_url) ||
installation_info->sw_js_url.empty() ||
!base::IsStringUTF8(installation_info->sw_js_url)) {
log.Error(
base::StringPrintf("\"%s\".\"%s\" must be a non-empty UTF8 string.",
kServiceWorker, kServiceWorkerSrc));
return false;
}
service_worker_dict->GetString(kServiceWorkerScope,
&installation_info->sw_scope);
absl::optional<bool> use_cache =
service_worker_dict->FindBoolKey(kServiceWorkerUseCache);
if (use_cache.has_value()) {
installation_info->sw_use_cache = use_cache.value();
}
}
dict->GetString(kWebAppName, &installation_info->name);
if (installation_info->name.empty()) {
log.Warn(
base::StringPrintf("No \"%s\" string in the manifest.", kWebAppName));
}
ParseIcons(*dict, log, icons);
ParsePreferredRelatedApplicationIdentifiers(
*dict, log, &installation_info->preferred_app_ids);
base::DictionaryValue* payment_dict = nullptr;
if (dict->GetDictionary(kPayment, &payment_dict)) {
const base::ListValue* delegation_list = nullptr;
if (payment_dict->GetList(kSupportedDelegations, &delegation_list)) {
if (delegation_list->GetList().empty() ||
delegation_list->GetList().size() >
kMaximumNumberOfSupportedDelegations) {
log.Error(base::StringPrintf(
"\"%s.%s\" must be a non-empty list of at most %zu entries.",
kPayment, kSupportedDelegations,
kMaximumNumberOfSupportedDelegations));
return false;
}
for (const auto& delegation_item : delegation_list->GetList()) {
std::string delegation_name = delegation_item.GetString();
if (delegation_name == "shippingAddress") {
installation_info->supported_delegations.shipping_address = true;
} else if (delegation_name == "payerName") {
installation_info->supported_delegations.payer_name = true;
} else if (delegation_name == "payerEmail") {
installation_info->supported_delegations.payer_email = true;
} else if (delegation_name == "payerPhone") {
installation_info->supported_delegations.payer_phone = true;
} else { // delegation_name is not valid
bool is_ASCII;
const std::string delegation_name_to_print =
ValidateAndTruncateIfNeeded(delegation_name, &is_ASCII);
if (!is_ASCII) {
log.Error("Entries in delegation list must be ASCII strings.");
} else { // ASCII string.
log.Error(base::StringPrintf(
"\"%s\" is not a valid value in \"%s\" array.",
delegation_name_to_print.c_str(), kSupportedDelegations));
}
return false;
}
}
} else { // !payment_dict->GetList(kSupportedDelegations, &delegation_list)
log.Error(base::StringPrintf("\"%s\" member must have \"%s\" list",
kPayment, kSupportedDelegations));
return false;
}
} else if (dict->HasKey(kPayment)) {
log.Error(
base::StringPrintf("\"%s\" member must be a dictionary", kPayment));
return false;
}
return true;
}
void PaymentManifestParser::OnPaymentMethodParse(
const GURL& manifest_url,
PaymentMethodCallback callback,
data_decoder::DataDecoder::ValueOrError result) {
parse_payment_callback_counter_--;
std::vector<GURL> web_app_manifest_urls;
std::vector<url::Origin> supported_origins;
if (result.value) {
ParsePaymentMethodManifestIntoVectors(
manifest_url, base::Value::ToUniquePtrValue(std::move(*result.value)),
*log_, &web_app_manifest_urls, &supported_origins);
} else {
log_->Error(*result.error);
}
// Can trigger synchronous deletion of this object, so can't access any of
// the member variables after this statement.
std::move(callback).Run(web_app_manifest_urls, supported_origins);
}
void PaymentManifestParser::OnWebAppParse(
WebAppCallback callback,
data_decoder::DataDecoder::ValueOrError result) {
parse_webapp_callback_counter_--;
std::vector<WebAppManifestSection> manifest;
if (result.value) {
ParseWebAppManifestIntoVector(
base::Value::ToUniquePtrValue(std::move(*result.value)), *log_,
&manifest);
} else {
log_->Error(*result.error);
}
// Can trigger synchronous deletion of this object, so can't access any of
// the member variables after this statement.
std::move(callback).Run(manifest);
}
void PaymentManifestParser::OnWebAppParseInstallationInfo(
WebAppInstallationInfoCallback callback,
data_decoder::DataDecoder::ValueOrError result) {
std::unique_ptr<WebAppInstallationInfo> installation_info;
std::unique_ptr<std::vector<WebAppIcon>> icons;
if (result.value) {
installation_info = std::make_unique<WebAppInstallationInfo>();
icons = std::make_unique<std::vector<WebAppIcon>>();
if (!ParseWebAppInstallationInfoIntoStructs(
base::Value::ToUniquePtrValue(std::move(*result.value)), *log_,
installation_info.get(), icons.get())) {
installation_info.reset();
icons.reset();
}
} else {
log_->Error(*result.error);
}
// Can trigger synchronous deletion of this object, so can't access any of
// the member variables after this statement.
std::move(callback).Run(std::move(installation_info), std::move(icons));
}
} // namespace payments