Run pre-classification checks in the browser before starting client-side phishing detection.

chrome/renderer/safe_browsing/phishing_classifier_delegate_browsertest.cc

 // Copyright (c) 2010 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 //
 // Note: this test uses RenderViewFakeResourcesTest in order to set up a
 // real RenderThread to hold the phishing Scorer object.
 
 #include "chrome/renderer/safe_browsing/phishing_classifier_delegate.h"
 
 #include "base/scoped_ptr.h"
@@ skipping 94 matching lines @@
   // Test an initial load.  We expect classification to happen normally.
   responses_["http://host.com/"] =
       "<html><body><iframe src=\"http://sub1.com/\"></iframe></body></html>";
   LoadURL("http://host.com/");
   WebKit::WebFrame* child_frame = GetMainFrame()->firstChild();
   string16 page_text = ASCIIToUTF16("dummy");
   EXPECT_CALL(*classifier, CancelPendingClassification()).Times(2);
   delegate.CommittedLoadInFrame(GetMainFrame());
   delegate.CommittedLoadInFrame(child_frame);
   Mock::VerifyAndClearExpectations(classifier);
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
   EXPECT_CALL(*classifier, BeginClassification(Pointee(page_text), _)).
       WillOnce(DeleteArg<1>());
   delegate.FinishedLoad(&page_text);
   Mock::VerifyAndClearExpectations(classifier);
 
   // Reloading the same page should not trigger a reclassification.
   // However, it will cancel any pending classification since the
   // content is being replaced.
   EXPECT_CALL(*classifier, CancelPendingClassification());
   delegate.CommittedLoadInFrame(GetMainFrame());
   Mock::VerifyAndClearExpectations(classifier);
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
+  page_text = ASCIIToUTF16("dummy");
   delegate.FinishedLoad(&page_text);
 
   // Navigating in a subframe will increment the page id, but not change
   // the toplevel URL.  This should cancel pending classification since the
   // page content is changing, and not begin a new classification.
   child_frame->loadRequest(WebKit::WebURLRequest(GURL("http://sub2.com/")));
   message_loop_.Run();
   EXPECT_CALL(*classifier, CancelPendingClassification());
   delegate.CommittedLoadInFrame(child_frame);
   Mock::VerifyAndClearExpectations(classifier);
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
+  page_text = ASCIIToUTF16("dummy");
   delegate.FinishedLoad(&page_text);
 
   // Scrolling to an anchor will increment the page id, but should not
   // not trigger a reclassification.  A pending classification should not
   // be cancelled, since the content is not changing.
   LoadURL("http://host.com/#foo");
   delegate.CommittedLoadInFrame(GetMainFrame());
+  delegate.OnStartPhishingDetection(GURL("http://host.com/#foo"));
+  page_text = ASCIIToUTF16("dummy");
   delegate.FinishedLoad(&page_text);
 
   // Now load a new toplevel page, which should trigger another classification.
   LoadURL("http://host2.com/");
-  page_text = ASCIIToUTF16("dummy2");
   EXPECT_CALL(*classifier, CancelPendingClassification());
   delegate.CommittedLoadInFrame(GetMainFrame());
   Mock::VerifyAndClearExpectations(classifier);
+  page_text = ASCIIToUTF16("dummy2");
   EXPECT_CALL(*classifier, BeginClassification(Pointee(page_text), _)).
       WillOnce(DeleteArg<1>());
+  delegate.OnStartPhishingDetection(GURL("http://host2.com/"));
   delegate.FinishedLoad(&page_text);
   Mock::VerifyAndClearExpectations(classifier);
 
+  // No classification should happen on back/forward navigation.
+  // Note: in practice, the browser will not send a StartPhishingDetection IPC
+  // in this case.  However, we want to make sure that the delegate behaves
+  // correctly regardless.
+  GoBack();
+  EXPECT_CALL(*classifier, CancelPendingClassification());
+  delegate.CommittedLoadInFrame(GetMainFrame());
+  Mock::VerifyAndClearExpectations(classifier);
+  page_text = ASCIIToUTF16("dummy");
+  delegate.OnStartPhishingDetection(GURL("http://host.com/#foo"));
+  delegate.FinishedLoad(&page_text);
+
   // The delegate will cancel pending classification on destruction.
   EXPECT_CALL(*classifier, CancelPendingClassification());
 }
 
-TEST_F(PhishingClassifierDelegateTest, PendingClassification) {
+TEST_F(PhishingClassifierDelegateTest, NoScorer) {
   // For this test, we'll create the delegate with no scorer available yet.
   MockPhishingClassifier* classifier =
       new StrictMock<MockPhishingClassifier>(view_);
   PhishingClassifierDelegate delegate(view_, classifier);
   ASSERT_FALSE(classifier->is_ready());
 
   // Queue up a pending classification, cancel it, then queue up another one.
   LoadURL("http://host.com/");
   string16 page_text = ASCIIToUTF16("dummy");
   delegate.CommittedLoadInFrame(GetMainFrame());
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
   delegate.FinishedLoad(&page_text);
 
   LoadURL("http://host2.com/");
   delegate.CommittedLoadInFrame(GetMainFrame());
   page_text = ASCIIToUTF16("dummy2");
+  delegate.OnStartPhishingDetection(GURL("http://host2.com/"));
   delegate.FinishedLoad(&page_text);
 
   // Now set a scorer, which should cause a classifier to be created and
   // the classification to proceed.  Note that we need to reset |page_text|
   // since it is modified by the call to FinishedLoad().
   page_text = ASCIIToUTF16("dummy2");
   EXPECT_CALL(*classifier, BeginClassification(Pointee(page_text), _)).
       WillOnce(DeleteArg<1>());
   MockScorer scorer;
   delegate.SetPhishingScorer(&scorer);
   Mock::VerifyAndClearExpectations(classifier);
 
   // The delegate will cancel pending classification on destruction.
   EXPECT_CALL(*classifier, CancelPendingClassification());
 }
 
-TEST_F(PhishingClassifierDelegateTest, PendingClassification_Ref) {
+TEST_F(PhishingClassifierDelegateTest, NoScorer_Ref) {
   // Similar to the last test, but navigates within the page before
   // setting the scorer.
   MockPhishingClassifier* classifier =
       new StrictMock<MockPhishingClassifier>(view_);
   PhishingClassifierDelegate delegate(view_, classifier);
   ASSERT_FALSE(classifier->is_ready());
 
   // Queue up a pending classification, cancel it, then queue up another one.
   LoadURL("http://host.com/");
   delegate.CommittedLoadInFrame(GetMainFrame());
   string16 orig_page_text = ASCIIToUTF16("dummy");
   string16 page_text = orig_page_text;
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
   delegate.FinishedLoad(&page_text);
 
   LoadURL("http://host.com/#foo");
   page_text = orig_page_text;
   delegate.CommittedLoadInFrame(GetMainFrame());
+  delegate.OnStartPhishingDetection(GURL("http://host.com/#foo"));
   delegate.FinishedLoad(&page_text);
 
   // Now set a scorer, which should cause a classifier to be created and
   // the classification to proceed.
   EXPECT_CALL(*classifier, BeginClassification(Pointee(orig_page_text), _)).
       WillOnce(DeleteArg<1>());
   MockScorer scorer;
   delegate.SetPhishingScorer(&scorer);
   Mock::VerifyAndClearExpectations(classifier);
 
   // The delegate will cancel pending classification on destruction.
   EXPECT_CALL(*classifier, CancelPendingClassification());
 }
 
+TEST_F(PhishingClassifierDelegateTest, NoStartPhishingDetection) {
+  // Tests the behavior when OnStartPhishingDetection has not yet been called
+  // when the page load finishes.
+  MockPhishingClassifier* classifier =
+      new StrictMock<MockPhishingClassifier>(view_);
+  PhishingClassifierDelegate delegate(view_, classifier);
+  MockScorer scorer;
+  delegate.SetPhishingScorer(&scorer);
+  ASSERT_TRUE(classifier->is_ready());
+
+  responses_["http://host.com/"] = "<html><body>phish</body></html>";
+  LoadURL("http://host.com/");
+  string16 orig_page_text = ASCIIToUTF16("phish");
+  string16 page_text = orig_page_text;
+  EXPECT_CALL(*classifier, CancelPendingClassification());
+  delegate.CommittedLoadInFrame(GetMainFrame());
+  Mock::VerifyAndClearExpectations(classifier);
+  delegate.FinishedLoad(&page_text);
+
+  // Now simulate the StartPhishingDetection IPC.  We expect classification
+  // to begin.
+  EXPECT_CALL(*classifier, BeginClassification(Pointee(orig_page_text), _)).
+      WillOnce(DeleteArg<1>());
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
+  Mock::VerifyAndClearExpectations(classifier);
+
+  // Now try again, but this time we will navigate the page away before
+  // the IPC is sent.
+  responses_["http://host2.com/"] = "<html><body>phish</body></html>";
+  LoadURL("http://host2.com/");
+  EXPECT_CALL(*classifier, CancelPendingClassification());
+  delegate.CommittedLoadInFrame(GetMainFrame());
+  Mock::VerifyAndClearExpectations(classifier);
+  delegate.FinishedLoad(&page_text);
+
+  responses_["http://host3.com/"] = "<html><body>phish</body></html>";
+  LoadURL("http://host3.com/");
+  delegate.OnStartPhishingDetection(GURL("http://host2.com/"));
+
+  // The delegate will cancel pending classification on destruction.
+  EXPECT_CALL(*classifier, CancelPendingClassification());
+}
+
 TEST_F(PhishingClassifierDelegateTest, DetectedPhishingSite) {
   // Tests that a DetectedPhishingSite IPC is sent to the browser
   // if a site comes back as phishy.
   MockPhishingClassifier* classifier =
       new StrictMock<MockPhishingClassifier>(view_);
   PhishingClassifierDelegate delegate(view_, classifier);
   MockScorer scorer;
   delegate.SetPhishingScorer(&scorer);
   ASSERT_TRUE(classifier->is_ready());
 
   // Start by loading a page to populate the delegate's state.
   responses_["http://host.com/"] = "<html><body>phish</body></html>";
   LoadURL("http://host.com/");
   string16 page_text = ASCIIToUTF16("phish");
   EXPECT_CALL(*classifier, CancelPendingClassification());
   delegate.CommittedLoadInFrame(GetMainFrame());
   Mock::VerifyAndClearExpectations(classifier);
   EXPECT_CALL(*classifier, BeginClassification(Pointee(page_text), _)).
       WillOnce(DeleteArg<1>());
+  delegate.OnStartPhishingDetection(GURL("http://host.com/"));
   delegate.FinishedLoad(&page_text);
   Mock::VerifyAndClearExpectations(classifier);
 
   // Now run the callback to simulate the classifier finishing.
   RunClassificationDone(&delegate, true, 0.8);
   EXPECT_TRUE(detected_phishing_site_);
   EXPECT_EQ(GURL("http://host.com/"), detected_url_);
   EXPECT_EQ(0.8, detected_score_);
 
   // The delegate will cancel pending classification on destruction.
   EXPECT_CALL(*classifier, CancelPendingClassification());
 }
 
 }  // namespace safe_browsing