| OLD | NEW |
|---|
| 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 // | 4 // |
| 5 // Implementation of the SafeBrowsingBlockingPage class. | 5 // Implementation of the SafeBrowsingBlockingPage class. |
| 6 | 6 |
| 7 #include "chrome/browser/safe_browsing/safe_browsing_blocking_page.h" | 7 #include "chrome/browser/safe_browsing/safe_browsing_blocking_page.h" |
| 8 | 8 |
| 9 #include <string> | 9 #include <string> |
| 10 | 10 |
| 11 #include "app/l10n_util.h" | 11 #include "app/l10n_util.h" |
| 12 #include "app/resource_bundle.h" | 12 #include "app/resource_bundle.h" |
| 13 #include "base/i18n/rtl.h" | 13 #include "base/i18n/rtl.h" |
| 14 #include "base/singleton.h" | 14 #include "base/singleton.h" |
| 15 #include "base/string_number_conversions.h" | 15 #include "base/string_number_conversions.h" |
| 16 #include "base/utf_string_conversions.h" | 16 #include "base/utf_string_conversions.h" |
| 17 #include "base/values.h" | 17 #include "base/values.h" |
| 18 #include "chrome/browser/browser_thread.h" | 18 #include "chrome/browser/browser_thread.h" |
| 19 #include "chrome/browser/dom_operation_notification_details.h" | 19 #include "chrome/browser/dom_operation_notification_details.h" |
| 20 #include "chrome/browser/dom_ui/new_tab_ui.h" | 20 #include "chrome/browser/dom_ui/new_tab_ui.h" |
| 21 #include "chrome/browser/google/google_util.h" | 21 #include "chrome/browser/google/google_util.h" |
| 22 #include "chrome/browser/metrics/user_metrics.h" | 22 #include "chrome/browser/metrics/user_metrics.h" |
| 23 #include "chrome/browser/prefs/pref_service.h" |
| 24 #include "chrome/browser/profile.h" |
| 25 #include "chrome/browser/safe_browsing/malware_details.h" |
| 23 #include "chrome/browser/safe_browsing/safe_browsing_service.h" | 26 #include "chrome/browser/safe_browsing/safe_browsing_service.h" |
| 24 #include "chrome/browser/tab_contents/navigation_controller.h" | 27 #include "chrome/browser/tab_contents/navigation_controller.h" |
| 25 #include "chrome/browser/tab_contents/navigation_entry.h" | 28 #include "chrome/browser/tab_contents/navigation_entry.h" |
| 26 #include "chrome/browser/tab_contents/tab_util.h" | 29 #include "chrome/browser/tab_contents/tab_util.h" |
| 27 #include "chrome/browser/tab_contents/tab_contents.h" | 30 #include "chrome/browser/tab_contents/tab_contents.h" |
| 28 #include "chrome/common/jstemplate_builder.h" | 31 #include "chrome/common/jstemplate_builder.h" |
| 32 #include "chrome/common/pref_names.h" |
| 29 #include "chrome/common/url_constants.h" | 33 #include "chrome/common/url_constants.h" |
| 30 #include "grit/browser_resources.h" | 34 #include "grit/browser_resources.h" |
| 31 #include "grit/generated_resources.h" | 35 #include "grit/generated_resources.h" |
| 32 #include "grit/locale_settings.h" | 36 #include "grit/locale_settings.h" |
| 33 #include "net/base/escape.h" | 37 #include "net/base/escape.h" |
| 34 | 38 |
| 35 // For malware interstitial pages, we link the problematic URL to Google's | 39 // For malware interstitial pages, we link the problematic URL to Google's |
| 36 // diagnostic page. | 40 // diagnostic page. |
| 37 #if defined(GOOGLE_CHROME_BUILD) | 41 #if defined(GOOGLE_CHROME_BUILD) |
| 38 static const char* const kSbDiagnosticUrl = | 42 static const char* const kSbDiagnosticUrl = |
| (...skipping 56 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 95 | 99 |
| 96 SafeBrowsingBlockingPage::SafeBrowsingBlockingPage( | 100 SafeBrowsingBlockingPage::SafeBrowsingBlockingPage( |
| 97 SafeBrowsingService* sb_service, | 101 SafeBrowsingService* sb_service, |
| 98 TabContents* tab_contents, | 102 TabContents* tab_contents, |
| 99 const UnsafeResourceList& unsafe_resources) | 103 const UnsafeResourceList& unsafe_resources) |
| 100 : InterstitialPage(tab_contents, | 104 : InterstitialPage(tab_contents, |
| 101 IsMainPage(unsafe_resources), | 105 IsMainPage(unsafe_resources), |
| 102 unsafe_resources[0].url), | 106 unsafe_resources[0].url), |
| 103 sb_service_(sb_service), | 107 sb_service_(sb_service), |
| 104 is_main_frame_(IsMainPage(unsafe_resources)), | 108 is_main_frame_(IsMainPage(unsafe_resources)), |
| 105 unsafe_resources_(unsafe_resources) { | 109 unsafe_resources_(unsafe_resources), |
| 110 malware_details_(NULL) { |
| 106 RecordUserAction(SHOW); | 111 RecordUserAction(SHOW); |
| 107 if (!is_main_frame_) { | 112 if (!is_main_frame_) { |
| 108 navigation_entry_index_to_remove_ = | 113 navigation_entry_index_to_remove_ = |
| 109 tab()->controller().last_committed_entry_index(); | 114 tab()->controller().last_committed_entry_index(); |
| 110 } else { | 115 } else { |
| 111 navigation_entry_index_to_remove_ = -1; | 116 navigation_entry_index_to_remove_ = -1; |
| 112 } | 117 } |
| 118 |
| 119 // Start computing malware details. They will be sent only |
| 120 // if the user opts-in on the blocking page later. |
| 121 // If there's more than one malicious resources, it means the user |
| 122 // clicked through the first warning, so we don't prepare additional |
| 123 // reports. |
| 124 if (unsafe_resources.size() == 1 && |
| 125 unsafe_resources[0].threat_type == SafeBrowsingService::URL_MALWARE && |
| 126 malware_details_ == NULL && |
| 127 CanShowMalwareDetailsOption()) { |
| 128 malware_details_ = new MalwareDetails(tab(), unsafe_resources[0]); |
| 129 } |
| 130 } |
| 131 |
| 132 bool SafeBrowsingBlockingPage::CanShowMalwareDetailsOption() { |
| 133 return (!tab()->profile()->IsOffTheRecord() && |
| 134 tab()->GetURL().SchemeIs(chrome::kHttpScheme)); |
| 113 } | 135 } |
| 114 | 136 |
| 115 SafeBrowsingBlockingPage::~SafeBrowsingBlockingPage() { | 137 SafeBrowsingBlockingPage::~SafeBrowsingBlockingPage() { |
| 116 } | 138 } |
| 117 | 139 |
| 118 std::string SafeBrowsingBlockingPage::GetHTMLContents() { | 140 std::string SafeBrowsingBlockingPage::GetHTMLContents() { |
| 119 // Load the HTML page and create the template components. | 141 // Load the HTML page and create the template components. |
| 120 DictionaryValue strings; | 142 DictionaryValue strings; |
| 121 ResourceBundle& rb = ResourceBundle::GetSharedInstance(); | 143 ResourceBundle& rb = ResourceBundle::GetSharedInstance(); |
| 122 std::string html; | 144 std::string html; |
| (...skipping 260 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 383 SafeBrowsingService::URL_MALWARE); | 405 SafeBrowsingService::URL_MALWARE); |
| 384 tab()->OpenURL(diagnostic_url, GURL(), CURRENT_TAB, PageTransition::LINK); | 406 tab()->OpenURL(diagnostic_url, GURL(), CURRENT_TAB, PageTransition::LINK); |
| 385 return; | 407 return; |
| 386 } | 408 } |
| 387 | 409 |
| 388 NOTREACHED() << "Unexpected command: " << command; | 410 NOTREACHED() << "Unexpected command: " << command; |
| 389 } | 411 } |
| 390 | 412 |
| 391 void SafeBrowsingBlockingPage::Proceed() { | 413 void SafeBrowsingBlockingPage::Proceed() { |
| 392 RecordUserAction(PROCEED); | 414 RecordUserAction(PROCEED); |
| 415 FinishMalwareDetails(); // Send the malware details, if we opted to. |
| 393 | 416 |
| 394 NotifySafeBrowsingService(sb_service_, unsafe_resources_, true); | 417 NotifySafeBrowsingService(sb_service_, unsafe_resources_, true); |
| 395 | 418 |
| 396 // Check to see if some new notifications of unsafe resources have been | 419 // Check to see if some new notifications of unsafe resources have been |
| 397 // received while we were showing the interstitial. | 420 // received while we were showing the interstitial. |
| 398 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); | 421 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); |
| 399 UnsafeResourceMap::iterator iter = unsafe_resource_map->find(tab()); | 422 UnsafeResourceMap::iterator iter = unsafe_resource_map->find(tab()); |
| 400 SafeBrowsingBlockingPage* blocking_page = NULL; | 423 SafeBrowsingBlockingPage* blocking_page = NULL; |
| 401 if (iter != unsafe_resource_map->end() && !iter->second.empty()) { | 424 if (iter != unsafe_resource_map->end() && !iter->second.empty()) { |
| 402 // Build an interstitial for all the unsafe resources notifications. | 425 // Build an interstitial for all the unsafe resources notifications. |
| (...skipping 17 matching lines...) Expand all Loading... |
| 420 // We could have already called Proceed(), in which case we must not notify | 443 // We could have already called Proceed(), in which case we must not notify |
| 421 // the SafeBrowsingService again, as the client has been deleted. | 444 // the SafeBrowsingService again, as the client has been deleted. |
| 422 if (action_taken() == PROCEED_ACTION) { | 445 if (action_taken() == PROCEED_ACTION) { |
| 423 // We still want to hide the interstitial page. | 446 // We still want to hide the interstitial page. |
| 424 InterstitialPage::DontProceed(); | 447 InterstitialPage::DontProceed(); |
| 425 // We are now deleted. | 448 // We are now deleted. |
| 426 return; | 449 return; |
| 427 } | 450 } |
| 428 | 451 |
| 429 RecordUserAction(DONT_PROCEED); | 452 RecordUserAction(DONT_PROCEED); |
| 453 FinishMalwareDetails(); // Send the malware details, if we opted to. |
| 430 | 454 |
| 431 NotifySafeBrowsingService(sb_service_, unsafe_resources_, false); | 455 NotifySafeBrowsingService(sb_service_, unsafe_resources_, false); |
| 432 | 456 |
| 433 // The user does not want to proceed, clear the queued unsafe resources | 457 // The user does not want to proceed, clear the queued unsafe resources |
| 434 // notifications we received while the interstitial was showing. | 458 // notifications we received while the interstitial was showing. |
| 435 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); | 459 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); |
| 436 UnsafeResourceMap::iterator iter = unsafe_resource_map->find(tab()); | 460 UnsafeResourceMap::iterator iter = unsafe_resource_map->find(tab()); |
| 437 if (iter != unsafe_resource_map->end() && !iter->second.empty()) { | 461 if (iter != unsafe_resource_map->end() && !iter->second.empty()) { |
| 438 NotifySafeBrowsingService(sb_service_, iter->second, false); | 462 NotifySafeBrowsingService(sb_service_, iter->second, false); |
| 439 unsafe_resource_map->erase(iter); | 463 unsafe_resource_map->erase(iter); |
| (...skipping 45 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 485 case DONT_PROCEED: | 509 case DONT_PROCEED: |
| 486 action.append("DontProceed"); | 510 action.append("DontProceed"); |
| 487 break; | 511 break; |
| 488 default: | 512 default: |
| 489 NOTREACHED() << "Unexpected event: " << event; | 513 NOTREACHED() << "Unexpected event: " << event; |
| 490 } | 514 } |
| 491 | 515 |
| 492 UserMetrics::RecordComputedAction(action); | 516 UserMetrics::RecordComputedAction(action); |
| 493 } | 517 } |
| 494 | 518 |
| 519 void SafeBrowsingBlockingPage::FinishMalwareDetails() { |
| 520 if (malware_details_ == NULL) |
| 521 return; // Not all interstitials have malware details (eg phishing). |
| 522 |
| 523 const PrefService::Preference* pref = |
| 524 tab()->profile()->GetPrefs()->FindPreference( |
| 525 prefs::kSafeBrowsingReportingEnabled); |
| 526 |
| 527 bool value; |
| 528 if (pref && pref->GetValue()->GetAsBoolean(&value) && value) { |
| 529 // Give the details object to the service class, so it can send it. |
| 530 BrowserThread::PostTask( |
| 531 BrowserThread::IO, FROM_HERE, |
| 532 NewRunnableMethod( |
| 533 sb_service_, &SafeBrowsingService::ReportMalwareDetails, |
| 534 malware_details_)); |
| 535 } |
| 536 } |
| 537 |
| 495 // static | 538 // static |
| 496 void SafeBrowsingBlockingPage::NotifySafeBrowsingService( | 539 void SafeBrowsingBlockingPage::NotifySafeBrowsingService( |
| 497 SafeBrowsingService* sb_service, | 540 SafeBrowsingService* sb_service, |
| 498 const UnsafeResourceList& unsafe_resources, | 541 const UnsafeResourceList& unsafe_resources, |
| 499 bool proceed) { | 542 bool proceed) { |
| 500 BrowserThread::PostTask( | 543 BrowserThread::PostTask( |
| 501 BrowserThread::IO, FROM_HERE, | 544 BrowserThread::IO, FROM_HERE, |
| 502 NewRunnableMethod( | 545 NewRunnableMethod( |
| 503 sb_service, &SafeBrowsingService::OnBlockingPageDone, | 546 sb_service, &SafeBrowsingService::OnBlockingPageDone, |
| 504 unsafe_resources, proceed)); | 547 unsafe_resources, proceed)); |
| (...skipping 42 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 547 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); | 590 UnsafeResourceMap* unsafe_resource_map = GetUnsafeResourcesMap(); |
| 548 (*unsafe_resource_map)[tab_contents].push_back(unsafe_resource); | 591 (*unsafe_resource_map)[tab_contents].push_back(unsafe_resource); |
| 549 } | 592 } |
| 550 | 593 |
| 551 // static | 594 // static |
| 552 bool SafeBrowsingBlockingPage::IsMainPage( | 595 bool SafeBrowsingBlockingPage::IsMainPage( |
| 553 const UnsafeResourceList& unsafe_resources) { | 596 const UnsafeResourceList& unsafe_resources) { |
| 554 return unsafe_resources.size() == 1 && | 597 return unsafe_resources.size() == 1 && |
| 555 unsafe_resources[0].resource_type == ResourceType::MAIN_FRAME; | 598 unsafe_resources[0].resource_type == ResourceType::MAIN_FRAME; |
| 556 } | 599 } |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 4822002:
Send malware reports when a user opts-in from the safe browsing interstitial ... (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src/