components/safe_browsing/core/common/utils.cc - chromium/src - Git at Google

 // Copyright 2017 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "components/safe_browsing/core/common/utils.h"

 #include "base/feature_list.h"
 #include "base/metrics/histogram_macros.h"
 #include "base/stl_util.h"
 #include "base/strings/strcat.h"
 #include "base/strings/string_number_conversions.h"
 #include "base/time/time.h"
 #include "build/build_config.h"
 #include "build/chromeos_buildflags.h"
 #include "components/policy/core/browser/browser_policy_connector.h"
 #include "components/prefs/pref_service.h"
 #include "components/safe_browsing/core/common/features.h"
 #include "crypto/sha2.h"
 #include "net/base/ip_address.h"
 #include "net/base/url_util.h"
 #include "net/http/http_request_headers.h"
 #include "services/network/public/cpp/resource_request.h"

 #if defined(OS_WIN)
 #include "base/enterprise_util.h"
 #endif

 namespace safe_browsing {

 namespace {

 // The bearer token prefix in authorization header. Used when various Safe
 // Browsing requests are GAIA-keyed by attaching oauth2 tokens as bearer tokens.
 const char kAuthHeaderBearer[] = "Bearer ";

 }  // namespace

 std::string ShortURLForReporting(const GURL& url) {
   std::string spec(url.spec());
   if (url.SchemeIs(url::kDataScheme)) {
     size_t comma_pos = spec.find(',');
     if (comma_pos != std::string::npos && comma_pos != spec.size() - 1) {
       std::string hash_value = crypto::SHA256HashString(spec);
       spec.erase(comma_pos + 1);
       spec += base::HexEncode(hash_value.data(), hash_value.size());
     }
   }
   return spec;
 }

 ChromeUserPopulation::ProfileManagementStatus GetProfileManagementStatus(
     const policy::BrowserPolicyConnector* bpc) {
 #if defined(OS_WIN)
   if (base::IsMachineExternallyManaged())
     return ChromeUserPopulation::ENTERPRISE_MANAGED;
   else
     return ChromeUserPopulation::NOT_MANAGED;
 #elif BUILDFLAG(IS_CHROMEOS_ASH)
   if (!bpc || !bpc->IsDeviceEnterpriseManaged())
     return ChromeUserPopulation::NOT_MANAGED;
   return ChromeUserPopulation::ENTERPRISE_MANAGED;
 #else
   return ChromeUserPopulation::UNAVAILABLE;
 #endif  // #if defined(OS_WIN) || BUILDFLAG(IS_CHROMEOS_ASH)
 }

 void SetDelayInPref(PrefService* prefs,
                     const char* pref_name,
                     const base::TimeDelta& delay) {
   base::Time next_event = base::Time::Now() + delay;
   int64_t seconds_since_epoch =
       next_event.ToDeltaSinceWindowsEpoch().InSeconds();
   prefs->SetInt64(pref_name, seconds_since_epoch);
 }

 base::TimeDelta GetDelayFromPref(PrefService* prefs, const char* pref_name) {
   const base::TimeDelta zero_delay;
   if (!prefs->HasPrefPath(pref_name))
     return zero_delay;

   int64_t seconds_since_epoch = prefs->GetInt64(pref_name);
   if (seconds_since_epoch <= 0)
     return zero_delay;

   base::Time next_event = base::Time::FromDeltaSinceWindowsEpoch(
       base::Seconds(seconds_since_epoch));
   base::Time now = base::Time::Now();
   if (now > next_event)
     return zero_delay;
   else
     return next_event - now;
 }

 bool CanGetReputationOfUrl(const GURL& url) {
   if (!url.is_valid() || !url.SchemeIsHTTPOrHTTPS() || net::IsLocalhost(url)) {
     return false;
   }
   const std::string hostname = url.host();
   // A valid hostname should be longer than 3 characters and have at least 1
   // dot.
   if (hostname.size() < 4 || base::STLCount(hostname, '.') < 1) {
     return false;
   }

   if (net::IsLocalhost(url)) {
     // Includes: "//localhost/", "//127.0.0.1/"
     return false;
   }

   net::IPAddress ip_address;
   if (url.HostIsIPAddress() && ip_address.AssignFromIPLiteral(hostname) &&
       !ip_address.IsPubliclyRoutable()) {
     // Includes: "//192.168.1.1/", "//172.16.2.2/", "//10.1.1.1/"
     return false;
   }

   return true;
 }

 void SetAccessTokenAndClearCookieInResourceRequest(
     network::ResourceRequest* resource_request,
     const std::string& access_token) {
   resource_request->headers.SetHeader(
       net::HttpRequestHeaders::kAuthorization,
       base::StrCat({kAuthHeaderBearer, access_token}));
   if (base::FeatureList::IsEnabled(kSafeBrowsingRemoveCookiesInAuthRequests)) {
     resource_request->credentials_mode = network::mojom::CredentialsMode::kOmit;
   }
 }

 }  // namespace safe_browsing
	// Copyright 2017 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "components/safe_browsing/core/common/utils.h"

	#include "base/feature_list.h"
	#include "base/metrics/histogram_macros.h"
	#include "base/stl_util.h"
	#include "base/strings/strcat.h"
	#include "base/strings/string_number_conversions.h"
	#include "base/time/time.h"
	#include "build/build_config.h"
	#include "build/chromeos_buildflags.h"
	#include "components/policy/core/browser/browser_policy_connector.h"
	#include "components/prefs/pref_service.h"
	#include "components/safe_browsing/core/common/features.h"
	#include "crypto/sha2.h"
	#include "net/base/ip_address.h"
	#include "net/base/url_util.h"
	#include "net/http/http_request_headers.h"
	#include "services/network/public/cpp/resource_request.h"

	#if defined(OS_WIN)
	#include "base/enterprise_util.h"
	#endif

	namespace safe_browsing {

	namespace {

	// The bearer token prefix in authorization header. Used when various Safe
	// Browsing requests are GAIA-keyed by attaching oauth2 tokens as bearer tokens.
	const char kAuthHeaderBearer[] = "Bearer ";

	} // namespace

	std::string ShortURLForReporting(const GURL& url) {
	std::string spec(url.spec());
	if (url.SchemeIs(url::kDataScheme)) {
	size_t comma_pos = spec.find(',');
	if (comma_pos != std::string::npos && comma_pos != spec.size() - 1) {
	std::string hash_value = crypto::SHA256HashString(spec);
	spec.erase(comma_pos + 1);
	spec += base::HexEncode(hash_value.data(), hash_value.size());
	}
	}
	return spec;
	}

	ChromeUserPopulation::ProfileManagementStatus GetProfileManagementStatus(
	const policy::BrowserPolicyConnector* bpc) {
	#if defined(OS_WIN)
	if (base::IsMachineExternallyManaged())
	return ChromeUserPopulation::ENTERPRISE_MANAGED;
	else
	return ChromeUserPopulation::NOT_MANAGED;
	#elif BUILDFLAG(IS_CHROMEOS_ASH)
	if (!bpc \|\| !bpc->IsDeviceEnterpriseManaged())
	return ChromeUserPopulation::NOT_MANAGED;
	return ChromeUserPopulation::ENTERPRISE_MANAGED;
	#else
	return ChromeUserPopulation::UNAVAILABLE;
	#endif // #if defined(OS_WIN) \|\| BUILDFLAG(IS_CHROMEOS_ASH)
	}

	void SetDelayInPref(PrefService* prefs,
	const char* pref_name,
	const base::TimeDelta& delay) {
	base::Time next_event = base::Time::Now() + delay;
	int64_t seconds_since_epoch =
	next_event.ToDeltaSinceWindowsEpoch().InSeconds();
	prefs->SetInt64(pref_name, seconds_since_epoch);
	}

	base::TimeDelta GetDelayFromPref(PrefService* prefs, const char* pref_name) {
	const base::TimeDelta zero_delay;
	if (!prefs->HasPrefPath(pref_name))
	return zero_delay;

	int64_t seconds_since_epoch = prefs->GetInt64(pref_name);
	if (seconds_since_epoch <= 0)
	return zero_delay;

	base::Time next_event = base::Time::FromDeltaSinceWindowsEpoch(
	base::Seconds(seconds_since_epoch));
	base::Time now = base::Time::Now();
	if (now > next_event)
	return zero_delay;
	else
	return next_event - now;
	}

	bool CanGetReputationOfUrl(const GURL& url) {
	if (!url.is_valid() \|\| !url.SchemeIsHTTPOrHTTPS() \|\| net::IsLocalhost(url)) {
	return false;
	}
	const std::string hostname = url.host();
	// A valid hostname should be longer than 3 characters and have at least 1
	// dot.
	if (hostname.size() < 4 \|\| base::STLCount(hostname, '.') < 1) {
	return false;
	}

	if (net::IsLocalhost(url)) {
	// Includes: "//localhost/", "//127.0.0.1/"
	return false;
	}

	net::IPAddress ip_address;
	if (url.HostIsIPAddress() && ip_address.AssignFromIPLiteral(hostname) &&
	!ip_address.IsPubliclyRoutable()) {
	// Includes: "//192.168.1.1/", "//172.16.2.2/", "//10.1.1.1/"
	return false;
	}

	return true;
	}

	void SetAccessTokenAndClearCookieInResourceRequest(
	network::ResourceRequest* resource_request,
	const std::string& access_token) {
	resource_request->headers.SetHeader(
	net::HttpRequestHeaders::kAuthorization,
	base::StrCat({kAuthHeaderBearer, access_token}));
	if (base::FeatureList::IsEnabled(kSafeBrowsingRemoveCookiesInAuthRequests)) {
	resource_request->credentials_mode = network::mojom::CredentialsMode::kOmit;
	}
	}

	} // namespace safe_browsing