| // Copyright 2021 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef CHROME_BROWSER_SERIAL_SERIAL_BLOCKLIST_H_ |
| #define CHROME_BROWSER_SERIAL_SERIAL_BLOCKLIST_H_ |
| |
| #include <stdint.h> |
| |
| #include <string> |
| #include <vector> |
| |
| #include "base/feature_list.h" |
| #include "base/metrics/field_trial_params.h" |
| #include "base/no_destructor.h" |
| #include "services/device/public/mojom/serial.mojom-forward.h" |
| |
| // Feature used to configure entries in the Web Serial API blocklist which can |
| // be deployed using a server configuration. |
| extern const base::Feature kWebSerialBlocklist; |
| |
| // Dynamic additions to the Web Serial API device blocklist. |
| // |
| // The string must be a comma-separated list of entries which start with a type |
| // identifier. The only currently supported type identifier is "usb:". Entries |
| // may be separated by an arbitrary amount of whitespace. |
| // |
| // A USB entry provides a vendor ID and product ID, each a 16-bit integer |
| // written as exactly 4 hexadecimal digits. For example, the entry |
| // "usb:1000:001C" matches a device with a vendor ID of 0x1000 and a product |
| // ID of 0x001C. |
| // |
| // Invalid entries in the list will be ignored. |
| extern const base::FeatureParam<std::string> kWebSerialBlocklistAdditions; |
| |
| class SerialBlocklist final { |
| public: |
| // An entry in the blocklist. Represents a device that should not be |
| // accessible using the Web Serial API. Currently only USB devices can be |
| // matched by an entry but this could be expanded in the future to support a |
| // more expressive ruleset. |
| struct Entry { |
| constexpr Entry(uint16_t usb_vendor_id, uint16_t usb_product_id) |
| : usb_vendor_id(usb_vendor_id), usb_product_id(usb_product_id) {} |
| |
| // Matched against the idVendor field of the USB Device Descriptor. |
| uint16_t usb_vendor_id; |
| |
| // Matched against the idProduct field of the USB Device Descriptor. |
| uint16_t usb_product_id; |
| }; |
| |
| SerialBlocklist(const SerialBlocklist&) = delete; |
| SerialBlocklist& operator=(const SerialBlocklist&) = delete; |
| ~SerialBlocklist(); |
| |
| // Returns a singleton instance of the blocklist. |
| static SerialBlocklist& Get(); |
| |
| // Returns if a device is excluded from access. |
| bool IsExcluded(const device::mojom::SerialPortInfo& port_info) const; |
| |
| // Size of the blocklist. |
| size_t GetDynamicEntryCountForTesting() const { |
| return dynamic_entries_.size(); |
| } |
| |
| // Reload the blocklist for testing purposes. |
| void ResetToDefaultValuesForTesting(); |
| |
| private: |
| // Friend NoDestructor to permit access to private constructor. |
| friend class base::NoDestructor<SerialBlocklist>; |
| |
| SerialBlocklist(); |
| |
| // Populates the blocklist with values set via a Finch experiment which allows |
| // the set of blocked devices to be updated without shipping new executable |
| // versions. |
| // |
| // See kWebSerialBlocklistAdditions for the format of this parameter. |
| void PopulateWithServerProvidedValues(); |
| |
| // Set of blocklist entries. |
| std::vector<Entry> dynamic_entries_; |
| }; |
| |
| #endif // CHROME_BROWSER_SERIAL_SERIAL_BLOCKLIST_H_ |
