chrome/browser/reputation/safety_tips_config.cc - chromium/src - Git at Google

 // Copyright 2019 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "chrome/browser/reputation/safety_tips_config.h"

 #include "base/no_destructor.h"
 #include "components/safe_browsing/core/db/v4_protocol_manager_util.h"
 #include "url/gurl.h"

 using chrome_browser_safety_tips::FlaggedPage;
 using chrome_browser_safety_tips::UrlPattern;
 using safe_browsing::V4ProtocolManagerUtil;

 namespace {

 class SafetyTipsConfigSingleton {
  public:
   void SetProto(
       std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto) {
     proto_ = std::move(proto);
   }

   chrome_browser_safety_tips::SafetyTipsConfig* GetProto() const {
     return proto_.get();
   }

   static SafetyTipsConfigSingleton& GetInstance() {
     static base::NoDestructor<SafetyTipsConfigSingleton> instance;
     return *instance;
   }

  private:
   std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto_;
 };

 // Given a URL, generates all possible variant URLs to check the blocklist for.
 // This is conceptually almost identical to safe_browsing::UrlToFullHashes, but
 // without the hashing step.
 //
 // Note: Blocking "a.b/c/" does NOT block http://a.b/c without the trailing /.
 void UrlToSafetyTipPatterns(const GURL& url,
                             std::vector<std::string>* patterns) {
   std::string canon_host;
   std::string canon_path;
   std::string canon_query;
   V4ProtocolManagerUtil::CanonicalizeUrl(url, &canon_host, &canon_path,
                                          &canon_query);

   std::vector<std::string> hosts;
   if (url.HostIsIPAddress()) {
     hosts.push_back(url.host());
   } else {
     V4ProtocolManagerUtil::GenerateHostVariantsToCheck(canon_host, &hosts);
   }

   std::vector<std::string> paths;
   V4ProtocolManagerUtil::GeneratePathVariantsToCheck(canon_path, canon_query,
                                                      &paths);

   for (const std::string& host : hosts) {
     for (const std::string& path : paths) {
       DCHECK(path.length() == 0 || path[0] == '/');
       patterns->push_back(host + path);
     }
   }
 }

 security_state::SafetyTipStatus FlagTypeToSafetyTipStatus(
     FlaggedPage::FlagType type) {
   switch (type) {
     case FlaggedPage::FlagType::FlaggedPage_FlagType_UNKNOWN:
     case FlaggedPage::FlagType::FlaggedPage_FlagType_YOUNG_DOMAIN:
       // Reached if component includes these flags, which might happen to
       // support newer Chrome releases.
       return security_state::SafetyTipStatus::kNone;
     case FlaggedPage::FlagType::FlaggedPage_FlagType_BAD_REP:
       return security_state::SafetyTipStatus::kBadReputation;
   }
   NOTREACHED();
   return security_state::SafetyTipStatus::kNone;
 }

 }  // namespace

 // static
 void SetSafetyTipsRemoteConfigProto(
     std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto) {
   SafetyTipsConfigSingleton::GetInstance().SetProto(std::move(proto));
 }

 // static
 const chrome_browser_safety_tips::SafetyTipsConfig*
 GetSafetyTipsRemoteConfigProto() {
   return SafetyTipsConfigSingleton::GetInstance().GetProto();
 }

 bool IsUrlAllowlistedBySafetyTipsComponent(
     const chrome_browser_safety_tips::SafetyTipsConfig* proto,
     const GURL& url) {
   DCHECK(proto);
   DCHECK(url.is_valid());
   std::vector<std::string> patterns;
   UrlToSafetyTipPatterns(url, &patterns);
   auto allowed_pages = proto->allowed_pattern();
   for (const auto& pattern : patterns) {
     UrlPattern search_target;
     search_target.set_pattern(pattern);

     auto lower = std::lower_bound(
         allowed_pages.begin(), allowed_pages.end(), search_target,
         [](const UrlPattern& a, const UrlPattern& b) -> bool {
           return a.pattern() < b.pattern();
         });

     if (lower != allowed_pages.end() && pattern == lower->pattern()) {
       return true;
     }
   }
   return false;
 }

 security_state::SafetyTipStatus GetSafetyTipUrlBlockType(const GURL& url) {
   auto* proto = GetSafetyTipsRemoteConfigProto();
   if (!proto) {
     return security_state::SafetyTipStatus::kNone;
   }

   std::vector<std::string> patterns;
   UrlToSafetyTipPatterns(url, &patterns);
   auto flagged_pages = proto->flagged_page();
   for (const auto& pattern : patterns) {
     FlaggedPage search_target;
     search_target.set_pattern(pattern);

     auto lower = std::lower_bound(
         flagged_pages.begin(), flagged_pages.end(), search_target,
         [](const FlaggedPage& a, const FlaggedPage& b) -> bool {
           return a.pattern() < b.pattern();
         });

     while (lower != flagged_pages.end() && pattern == lower->pattern()) {
       // Skip over sites with unexpected flag types and keep looking for other
       // matches. This allows components to include flag types not handled by
       // this release.
       auto type = FlagTypeToSafetyTipStatus(lower->type());
       if (type != security_state::SafetyTipStatus::kNone) {
         return type;
       }
       ++lower;
     }
   }

   return security_state::SafetyTipStatus::kNone;
 }
	// Copyright 2019 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "chrome/browser/reputation/safety_tips_config.h"

	#include "base/no_destructor.h"
	#include "components/safe_browsing/core/db/v4_protocol_manager_util.h"
	#include "url/gurl.h"

	using chrome_browser_safety_tips::FlaggedPage;
	using chrome_browser_safety_tips::UrlPattern;
	using safe_browsing::V4ProtocolManagerUtil;

	namespace {

	class SafetyTipsConfigSingleton {
	public:
	void SetProto(
	std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto) {
	proto_ = std::move(proto);
	}

	chrome_browser_safety_tips::SafetyTipsConfig* GetProto() const {
	return proto_.get();
	}

	static SafetyTipsConfigSingleton& GetInstance() {
	static base::NoDestructor<SafetyTipsConfigSingleton> instance;
	return *instance;
	}

	private:
	std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto_;
	};

	// Given a URL, generates all possible variant URLs to check the blocklist for.
	// This is conceptually almost identical to safe_browsing::UrlToFullHashes, but
	// without the hashing step.
	//
	// Note: Blocking "a.b/c/" does NOT block http://a.b/c without the trailing /.
	void UrlToSafetyTipPatterns(const GURL& url,
	std::vector<std::string>* patterns) {
	std::string canon_host;
	std::string canon_path;
	std::string canon_query;
	V4ProtocolManagerUtil::CanonicalizeUrl(url, &canon_host, &canon_path,
	&canon_query);

	std::vector<std::string> hosts;
	if (url.HostIsIPAddress()) {
	hosts.push_back(url.host());
	} else {
	V4ProtocolManagerUtil::GenerateHostVariantsToCheck(canon_host, &hosts);
	}

	std::vector<std::string> paths;
	V4ProtocolManagerUtil::GeneratePathVariantsToCheck(canon_path, canon_query,
	&paths);

	for (const std::string& host : hosts) {
	for (const std::string& path : paths) {
	DCHECK(path.length() == 0 \|\| path[0] == '/');
	patterns->push_back(host + path);
	}
	}
	}

	security_state::SafetyTipStatus FlagTypeToSafetyTipStatus(
	FlaggedPage::FlagType type) {
	switch (type) {
	case FlaggedPage::FlagType::FlaggedPage_FlagType_UNKNOWN:
	case FlaggedPage::FlagType::FlaggedPage_FlagType_YOUNG_DOMAIN:
	// Reached if component includes these flags, which might happen to
	// support newer Chrome releases.
	return security_state::SafetyTipStatus::kNone;
	case FlaggedPage::FlagType::FlaggedPage_FlagType_BAD_REP:
	return security_state::SafetyTipStatus::kBadReputation;
	}
	NOTREACHED();
	return security_state::SafetyTipStatus::kNone;
	}

	} // namespace

	// static
	void SetSafetyTipsRemoteConfigProto(
	std::unique_ptr<chrome_browser_safety_tips::SafetyTipsConfig> proto) {
	SafetyTipsConfigSingleton::GetInstance().SetProto(std::move(proto));
	}

	// static
	const chrome_browser_safety_tips::SafetyTipsConfig*
	GetSafetyTipsRemoteConfigProto() {
	return SafetyTipsConfigSingleton::GetInstance().GetProto();
	}

	bool IsUrlAllowlistedBySafetyTipsComponent(
	const chrome_browser_safety_tips::SafetyTipsConfig* proto,
	const GURL& url) {
	DCHECK(proto);
	DCHECK(url.is_valid());
	std::vector<std::string> patterns;
	UrlToSafetyTipPatterns(url, &patterns);
	auto allowed_pages = proto->allowed_pattern();
	for (const auto& pattern : patterns) {
	UrlPattern search_target;
	search_target.set_pattern(pattern);

	auto lower = std::lower_bound(
	allowed_pages.begin(), allowed_pages.end(), search_target,
	[](const UrlPattern& a, const UrlPattern& b) -> bool {
	return a.pattern() < b.pattern();
	});

	if (lower != allowed_pages.end() && pattern == lower->pattern()) {
	return true;
	}
	}
	return false;
	}

	security_state::SafetyTipStatus GetSafetyTipUrlBlockType(const GURL& url) {
	auto* proto = GetSafetyTipsRemoteConfigProto();
	if (!proto) {
	return security_state::SafetyTipStatus::kNone;
	}

	std::vector<std::string> patterns;
	UrlToSafetyTipPatterns(url, &patterns);
	auto flagged_pages = proto->flagged_page();
	for (const auto& pattern : patterns) {
	FlaggedPage search_target;
	search_target.set_pattern(pattern);

	auto lower = std::lower_bound(
	flagged_pages.begin(), flagged_pages.end(), search_target,
	[](const FlaggedPage& a, const FlaggedPage& b) -> bool {
	return a.pattern() < b.pattern();
	});

	while (lower != flagged_pages.end() && pattern == lower->pattern()) {
	// Skip over sites with unexpected flag types and keep looking for other
	// matches. This allows components to include flag types not handled by
	// this release.
	auto type = FlagTypeToSafetyTipStatus(lower->type());
	if (type != security_state::SafetyTipStatus::kNone) {
	return type;
	}
	++lower;
	}
	}

	return security_state::SafetyTipStatus::kNone;
	}