Google Git
Sign in
chromium / chromium / src / main / . / components / webapps / browser / installable / installable_evaluator.cc
blob: 49283f93f393593ec22828fbb73928f6a262e3ac [file] [log] [blame]
// Copyright 2023 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "components/webapps/browser/installable/installable_evaluator.h"
#include "base/containers/contains.h"
#include "base/feature_list.h"
#include "base/strings/string_util.h"
#include "components/security_state/core/security_state.h"
#include "components/webapps/browser/features.h"
#include "components/webapps/browser/webapps_client.h"
#include "components/webapps/common/web_app_id.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/web_contents.h"
#include "content/public/common/url_constants.h"
#include "net/base/url_util.h"
#include "services/network/public/cpp/is_potentially_trustworthy.h"
#include "third_party/blink/public/common/manifest/manifest_util.h"
#include "third_party/blink/public/mojom/favicon/favicon_url.mojom.h"
namespace webapps {
namespace {
using IconPurpose = blink::mojom::ManifestImageResource_Purpose;
// This constant is the icon size on Android (48dp) multiplied by the scale
// factor of a Nexus 5 device (3x). It is the currently advertised minimum icon
// size for triggering banners.
const int kMinimumPrimaryIconSizeInPx = 144;
struct ImageTypeDetails {
const char* extension;
const char* mimetype;
};
constexpr ImageTypeDetails kSupportedImageTypes[] = {
{".png", "image/png"},
{".svg", "image/svg+xml"},
{".webp", "image/webp"},
};
InstallableStatusCode HasManifestOrAtRootScope(
InstallableCriteria criteria,
const blink::mojom::Manifest& manifest,
const GURL& manifest_url,
const GURL& site_url) {
switch (criteria) {
case InstallableCriteria::kDoNotCheck:
return InstallableStatusCode::NO_ERROR_DETECTED;
case InstallableCriteria::kNoManifestAtRootScope:
if (site_url.GetWithoutFilename().path().length() <= 1) {
return InstallableStatusCode::NO_ERROR_DETECTED;
}
break;
case InstallableCriteria::kImplicitManifestFieldsHTML:
case InstallableCriteria::kValidManifestIgnoreDisplay:
case InstallableCriteria::kValidManifestWithIcons:
break;
}
// This occurs when there is an error parsing the manifest, a network issue,
// or a CORS / opaque origin issue.
if (blink::IsEmptyManifest(manifest)) {
return InstallableStatusCode::MANIFEST_PARSING_OR_NETWORK_ERROR;
}
if (manifest_url.is_empty()) {
return InstallableStatusCode::NO_MANIFEST;
}
return InstallableStatusCode::NO_ERROR_DETECTED;
}
bool HasValidStartUrl(const blink::mojom::Manifest& manifest,
const mojom::WebPageMetadata& metadata,
const GURL& site_url,
InstallableCriteria criteria) {
// Since the id is generated from the start_url, either both are valid or both
// are invalid. If has_valid_specified_start_url is specified, then the
// start_url must be valid.
CHECK((!manifest.start_url.is_valid() && !manifest.id.is_valid() &&
!manifest.has_valid_specified_start_url) ||
(manifest.start_url.is_valid() && manifest.id.is_valid()));
switch (criteria) {
case InstallableCriteria::kValidManifestIgnoreDisplay:
case InstallableCriteria::kValidManifestWithIcons:
return manifest.has_valid_specified_start_url;
case InstallableCriteria::kDoNotCheck:
return true;
case InstallableCriteria::kImplicitManifestFieldsHTML:
return manifest.start_url.is_valid() ||
metadata.application_url.is_valid();
case InstallableCriteria::kNoManifestAtRootScope:
return manifest.start_url.is_valid() ||
metadata.application_url.is_valid() ||
site_url.GetWithoutFilename().path().length() <= 1;
}
}
bool IsManifestNameValid(const blink::mojom::Manifest& manifest) {
return (manifest.name && !manifest.name->empty()) ||
(manifest.short_name && !manifest.short_name->empty());
}
bool IsWebPageMetadataContainValidName(const mojom::WebPageMetadata& metadata) {
return !metadata.application_name.empty() || !metadata.title.empty();
}
bool HasValidName(const blink::mojom::Manifest& manifest,
const mojom::WebPageMetadata& metadata,
InstallableCriteria criteria) {
switch (criteria) {
case InstallableCriteria::kDoNotCheck:
return true;
case InstallableCriteria::kValidManifestWithIcons:
case InstallableCriteria::kValidManifestIgnoreDisplay:
return IsManifestNameValid(manifest);
case InstallableCriteria::kImplicitManifestFieldsHTML:
case InstallableCriteria::kNoManifestAtRootScope:
return IsManifestNameValid(manifest) ||
IsWebPageMetadataContainValidName(metadata);
}
}
bool IsIconTypeSupported(const blink::Manifest::ImageResource& icon) {
// The type field is optional. If it isn't present, fall back on checking
// the src extension.
if (icon.type.empty()) {
std::string filename = icon.src.ExtractFileName();
for (const ImageTypeDetails& details : kSupportedImageTypes) {
if (base::EndsWith(filename, details.extension,
base::CompareCase::INSENSITIVE_ASCII)) {
return true;
}
}
return false;
}
for (const ImageTypeDetails& details : kSupportedImageTypes) {
if (base::EqualsASCII(icon.type, details.mimetype)) {
return true;
}
}
return false;
}
// Returns whether |manifest| specifies an SVG or PNG icon that has
// IconPurpose::ANY, with size >= kMinimumPrimaryIconSizeInPx (or size "any").
bool DoesManifestContainRequiredIcon(const blink::mojom::Manifest& manifest) {
for (const auto& icon : manifest.icons) {
if (!IsIconTypeSupported(icon)) {
continue;
}
if (!base::Contains(icon.purpose, IconPurpose::ANY)) {
continue;
}
for (const auto& size : icon.sizes) {
if (size.IsEmpty()) { // "any"
return true;
}
if (size.width() >= InstallableEvaluator::GetMinimumIconSizeInPx() &&
size.height() >= InstallableEvaluator::GetMinimumIconSizeInPx() &&
size.width() <= InstallableEvaluator::kMaximumIconSizeInPx &&
size.height() <= InstallableEvaluator::kMaximumIconSizeInPx) {
return true;
}
}
}
return false;
}
bool HasNonDefaultFavicon(content::WebContents* web_contents) {
if (!web_contents) {
return false;
}
for (const auto& favicon_url : web_contents->GetFaviconURLs()) {
if (!favicon_url->is_default_icon) {
return true;
}
}
return false;
}
bool HasValidIcon(content::WebContents* web_contents,
const blink::mojom::Manifest& manifest,
InstallableCriteria criteria) {
switch (criteria) {
case webapps::InstallableCriteria::kDoNotCheck:
return true;
case webapps::InstallableCriteria::kValidManifestWithIcons:
case webapps::InstallableCriteria::kValidManifestIgnoreDisplay:
return DoesManifestContainRequiredIcon(manifest);
case webapps::InstallableCriteria::kImplicitManifestFieldsHTML:
case webapps::InstallableCriteria::kNoManifestAtRootScope:
return DoesManifestContainRequiredIcon(manifest) ||
HasNonDefaultFavicon(web_contents);
}
}
bool IsInstallableDisplayMode(blink::mojom::DisplayMode display_mode) {
// Note: The 'enabling' of these display modes is checked in the
// manifest_parser.cc, as that contains checks for origin trials etc.
return display_mode == blink::mojom::DisplayMode::kStandalone ||
display_mode == blink::mojom::DisplayMode::kFullscreen ||
display_mode == blink::mojom::DisplayMode::kMinimalUi ||
display_mode == blink::mojom::DisplayMode::kWindowControlsOverlay ||
display_mode == blink::mojom::DisplayMode::kBorderless ||
display_mode == blink::mojom::DisplayMode::kTabbed;
}
} // namespace
InstallableStatusCode InstallableEvaluator::GetDisplayError(
const blink::mojom::Manifest& manifest,
InstallableCriteria criteria) {
blink::mojom::DisplayMode display_mode_to_evaluate = manifest.display;
InstallableStatusCode error_type_if_invalid =
InstallableStatusCode::MANIFEST_DISPLAY_NOT_SUPPORTED;
// Unsupported values are ignored when we parse the manifest, and
// consequently aren't in the manifest.display_override array.
// If this array is not empty, the first value will "win", so validate
// this value is installable.
if (!manifest.display_override.empty()) {
display_mode_to_evaluate = manifest.display_override[0];
error_type_if_invalid =
InstallableStatusCode::MANIFEST_DISPLAY_OVERRIDE_NOT_SUPPORTED;
}
switch (criteria) {
case InstallableCriteria::kValidManifestWithIcons:
if (!IsInstallableDisplayMode(display_mode_to_evaluate)) {
return error_type_if_invalid;
}
break;
case InstallableCriteria::kImplicitManifestFieldsHTML:
case InstallableCriteria::kNoManifestAtRootScope:
if (display_mode_to_evaluate == blink::mojom::DisplayMode::kBrowser) {
return error_type_if_invalid;
}
break;
case InstallableCriteria::kValidManifestIgnoreDisplay:
break;
case InstallableCriteria::kDoNotCheck:
NOTREACHED();
}
return InstallableStatusCode::NO_ERROR_DETECTED;
}
InstallableEvaluator::InstallableEvaluator(content::WebContents* web_contents,
const InstallablePageData& data,
InstallableCriteria criteria)
: web_contents_(web_contents->GetWeakPtr()),
page_data_(data),
criteria_(criteria) {}
InstallableEvaluator::~InstallableEvaluator() = default;
// static
int InstallableEvaluator::GetMinimumIconSizeInPx() {
return kMinimumPrimaryIconSizeInPx;
}
std::optional<std::vector<InstallableStatusCode>>
InstallableEvaluator::CheckInstallability() const {
CHECK(blink::IsEmptyManifest(page_data_->GetManifest()) ||
(page_data_->GetManifest().start_url.is_valid() &&
page_data_->GetManifest().scope.is_valid() &&
page_data_->GetManifest().id.is_valid()));
if (criteria_ == InstallableCriteria::kDoNotCheck) {
return std::nullopt;
}
std::vector<InstallableStatusCode> errors;
InstallableStatusCode error = HasManifestOrAtRootScope(
criteria_, page_data_->GetManifest(), page_data_->manifest_url(),
web_contents_->GetLastCommittedURL());
if (error != InstallableStatusCode::NO_ERROR_DETECTED) {
errors.push_back(error);
return errors;
}
if (!HasValidStartUrl(page_data_->GetManifest(),
page_data_->WebPageMetadata(),
web_contents_->GetLastCommittedURL(), criteria_)) {
errors.push_back(InstallableStatusCode::START_URL_NOT_VALID);
}
if (!HasValidName(page_data_->GetManifest(), page_data_->WebPageMetadata(),
criteria_)) {
errors.push_back(
InstallableStatusCode::MANIFEST_MISSING_NAME_OR_SHORT_NAME);
}
InstallableStatusCode display_error = InstallableEvaluator::GetDisplayError(
page_data_->GetManifest(), criteria_);
if (display_error != InstallableStatusCode::NO_ERROR_DETECTED) {
errors.push_back(display_error);
}
if (!HasValidIcon(web_contents_.get(), page_data_->GetManifest(),
criteria_)) {
errors.push_back(InstallableStatusCode::MANIFEST_MISSING_SUITABLE_ICON);
}
return errors;
}
std::vector<InstallableStatusCode> InstallableEvaluator::CheckEligibility(
content::WebContents* web_contents) const {
std::vector<InstallableStatusCode> errors;
if (web_contents->GetBrowserContext()->IsOffTheRecord()) {
errors.push_back(InstallableStatusCode::IN_INCOGNITO);
}
if (!IsContentSecure(web_contents)) {
errors.push_back(InstallableStatusCode::NOT_FROM_SECURE_ORIGIN);
}
return errors;
}
// static
bool InstallableEvaluator::IsContentSecure(content::WebContents* web_contents) {
if (!web_contents) {
return false;
}
// chrome:// URLs are considered secure.
const GURL& url = web_contents->GetLastCommittedURL();
if (url.scheme() == content::kChromeUIScheme) {
return true;
}
// chrome-untrusted:// URLs are shipped with Chrome, so they are considered
// secure in this context.
if (url.scheme() == content::kChromeUIUntrustedScheme) {
return true;
}
if (IsOriginConsideredSecure(url)) {
return true;
}
// This can be null in unit tests but should be non-null in production.
if (!webapps::WebappsClient::Get()) {
return false;
}
return security_state::IsSslCertificateValid(
WebappsClient::Get()->GetSecurityLevelForWebContents(web_contents));
}
// static
bool InstallableEvaluator::IsOriginConsideredSecure(const GURL& url) {
auto origin = url::Origin::Create(url);
auto* webapps_client = webapps::WebappsClient::Get();
return (webapps_client && webapps_client->IsOriginConsideredSecure(origin)) ||
net::IsLocalhost(url) ||
network::SecureOriginAllowlist::GetInstance().IsOriginAllowlisted(
origin);
}
} // namespace webapps