Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(6138)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/safe_browsing/download_protection_service_unittest.cc

Issue 2072933002: Add sampling of unknown filetypes in download protection. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Add int values for histograms to ensure they match Created 4 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/safe_browsing/download_protection_service.cc ('k') | chrome/browser/safe_browsing/incident_reporting/last_download_finder.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/safe_browsing/download_protection_service_unittest.cc
diff --git a/chrome/browser/safe_browsing/download_protection_service_unittest.cc b/chrome/browser/safe_browsing/download_protection_service_unittest.cc
index 50ad720db4eb6b6ecc8e0592141806f7b0a8fb49..939f32d56a613192e364a2106c871ece0240e253 100644
--- a/chrome/browser/safe_browsing/download_protection_service_unittest.cc
+++ b/chrome/browser/safe_browsing/download_protection_service_unittest.cc
@@ -38,6 +38,7 @@
#include "chrome/common/pref_names.h"
#include "chrome/common/safe_browsing/binary_feature_extractor.h"
#include "chrome/common/safe_browsing/csd.pb.h"
+#include "chrome/common/safe_browsing/file_type_policies_test_util.h"
#include "chrome/test/base/testing_profile.h"
#include "components/history/core/browser/history_service.h"
#include "components/prefs/pref_service.h"
@@ -277,6 +278,9 @@ class DownloadProtectionServiceTest : public testing::Test {
// Setup a directory to place test files in.
ASSERT_TRUE(temp_dir_.CreateUniqueTempDir());
+
+ // Turn off binary sampling by default.
+ SetBinarySamplingProbability(0.0);
}
void TearDown() override {
@@ -292,6 +296,13 @@ class DownloadProtectionServiceTest : public testing::Test {
download_service_->whitelist_sample_rate_ = target_rate;
}
+ void SetBinarySamplingProbability(double target_rate) {
+ std::unique_ptr<DownloadFileTypeConfig> config =
+ policies_.DuplicateConfig();
+ config->set_sampled_ping_probability(target_rate);
+ policies_.SwapConfig(config);
+ }
+
bool RequestContainsResource(const ClientDownloadRequest& request,
ClientDownloadRequest::ResourceType type,
const std::string& url,
@@ -508,6 +519,9 @@ class DownloadProtectionServiceTest : public testing::Test {
protected:
+ // This will effectivly mask the global Singleton while this is in scope.
+ FileTypePoliciesTestOverlay policies_;
+
scoped_refptr<FakeSafeBrowsingService> sb_service_;
scoped_refptr<MockBinaryFeatureExtractor> binary_feature_extractor_;
DownloadProtectionService* download_service_;
@@ -811,6 +825,97 @@ TEST_F(DownloadProtectionServiceTest,
EXPECT_FALSE(HasClientDownloadRequest());
}
+TEST_F(DownloadProtectionServiceTest, CheckClientDownloadSampledFile) {
+ // Server response will be discarded.
+ net::FakeURLFetcherFactory factory(NULL);
+ PrepareResponse(
+ &factory, ClientDownloadResponse::DANGEROUS, net::HTTP_OK,
+ net::URLRequestStatus::SUCCESS);
+
+ content::MockDownloadItem item;
+ PrepareBasicDownloadItem(
+ &item,
+ std::vector<std::string>(), // empty url_chain
+ "http://www.google.com/", // referrer
+ FILE_PATH_LITERAL("a.tmp"), // tmp_path
+ FILE_PATH_LITERAL("a.foobar_unknown_ype")); // final_path
+ EXPECT_CALL(*binary_feature_extractor_.get(), CheckSignature(tmp_path_, _))
+ .Times(1);
+ EXPECT_CALL(*binary_feature_extractor_.get(),
+ ExtractImageFeatures(
+ tmp_path_, BinaryFeatureExtractor::kDefaultOptions, _, _))
+ .Times(1);
+ url_chain_.push_back(GURL("http://www.whitelist.com/a.foobar_unknown_type"));
+
+ // Set ping sample rate to 1.00 so download_service_ will always send a
+ // "light" ping for unknown types if allowed.
+ SetBinarySamplingProbability(1.0);
+
+ // Case (1): is_extended_reporting && is_incognito.
+ // ClientDownloadRequest should NOT be sent.
+ SetExtendedReportingPreference(true);
+ EXPECT_CALL(item, GetBrowserContext())
+ .WillRepeatedly(Return(profile_->GetOffTheRecordProfile()));
+ download_service_->CheckClientDownload(
+ &item,
+ base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,
+ base::Unretained(this)));
+ MessageLoop::current()->Run();
+ EXPECT_TRUE(IsResult(DownloadProtectionService::UNKNOWN));
+ EXPECT_FALSE(HasClientDownloadRequest());
+
+ // Case (2): is_extended_reporting && !is_incognito.
+ // A "light" ClientDownloadRequest should be sent.
+ EXPECT_CALL(item, GetBrowserContext())
+ .WillRepeatedly(Return(profile_.get()));
+ download_service_->CheckClientDownload(
+ &item,
+ base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,
+ base::Unretained(this)));
+ MessageLoop::current()->Run();
+ EXPECT_TRUE(IsResult(DownloadProtectionService::UNKNOWN));
+ EXPECT_TRUE(HasClientDownloadRequest());
+ // Verify it's a "light" ping, check that URLs don't have paths, and
+ // and verify filename is just an extension.
+ auto* req = GetClientDownloadRequest();
+ EXPECT_EQ(ClientDownloadRequest::SAMPLED_UNSUPPORTED_FILE,
+ req->download_type());
+ EXPECT_EQ(GURL(req->url()).GetOrigin().spec(), req->url());
+ for (auto resource : req->resources()) {
+ EXPECT_EQ(GURL(resource.url()).GetOrigin().spec(), resource.url());
+ EXPECT_EQ(GURL(resource.referrer()).GetOrigin().spec(),
+ resource.referrer());
+ }
+ EXPECT_EQ('.', req->file_basename()[0]);
+
+ ClearClientDownloadRequest();
+
+ // Case (3): !is_extended_reporting && is_incognito.
+ // ClientDownloadRequest should NOT be sent.
+ SetExtendedReportingPreference(false);
+ EXPECT_CALL(item, GetBrowserContext())
+ .WillRepeatedly(Return(profile_->GetOffTheRecordProfile()));
+ download_service_->CheckClientDownload(
+ &item,
+ base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,
+ base::Unretained(this)));
+ MessageLoop::current()->Run();
+ EXPECT_TRUE(IsResult(DownloadProtectionService::UNKNOWN));
+ EXPECT_FALSE(HasClientDownloadRequest());
+
+ // Case (4): !is_extended_reporting && !is_incognito.
+ // ClientDownloadRequest should NOT be sent.
+ EXPECT_CALL(item, GetBrowserContext())
+ .WillRepeatedly(Return(profile_.get()));
+ download_service_->CheckClientDownload(
+ &item,
+ base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,
+ base::Unretained(this)));
+ MessageLoop::current()->Run();
+ EXPECT_TRUE(IsResult(DownloadProtectionService::UNKNOWN));
+ EXPECT_FALSE(HasClientDownloadRequest());
+}
+
TEST_F(DownloadProtectionServiceTest, CheckClientDownloadFetchFailed) {
// HTTP request will fail.
net::FakeURLFetcherFactory factory(NULL);
« no previous file with comments | « chrome/browser/safe_browsing/download_protection_service.cc ('k') | chrome/browser/safe_browsing/incident_reporting/last_download_finder.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698