Chromium Code Reviews Chromium Code Reviews
Issue 2815003005:
Integrate WebUSB with Feature Policy (Closed)
| OLD | NEW |
|---|---|
| 1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "chrome/browser/usb/usb_tab_helper.h" | 5 #include "chrome/browser/usb/usb_tab_helper.h" |
| 6 | 6 |
| 7 #include <memory> | 7 #include <memory> |
| 8 #include <utility> | 8 #include <utility> |
| 9 | 9 |
| 10 #include "chrome/browser/ui/browser_finder.h" | 10 #include "chrome/browser/ui/browser_finder.h" |
| 11 #include "chrome/browser/ui/tabs/tab_strip_model.h" | 11 #include "chrome/browser/ui/tabs/tab_strip_model.h" |
| 12 #include "chrome/browser/usb/web_usb_permission_provider.h" | 12 #include "chrome/browser/usb/web_usb_permission_provider.h" |
| 13 #include "content/public/browser/render_frame_host.h" | |
| 14 #include "content/public/common/content_features.h" | |
| 13 #include "device/usb/mojo/device_manager_impl.h" | 15 #include "device/usb/mojo/device_manager_impl.h" |
| 16 #include "mojo/public/cpp/bindings/message.h" | |
| 17 #include "third_party/WebKit/public/platform/WebFeaturePolicy.h" | |
| 14 | 18 |
| 15 #if defined(OS_ANDROID) | 19 #if defined(OS_ANDROID) |
| 16 #include "chrome/browser/android/usb/web_usb_chooser_service_android.h" | 20 #include "chrome/browser/android/usb/web_usb_chooser_service_android.h" |
| 17 #else | 21 #else |
| 18 #include "chrome/browser/usb/web_usb_chooser_service.h" | 22 #include "chrome/browser/usb/web_usb_chooser_service.h" |
| 19 #endif // defined(OS_ANDROID) | 23 #endif // defined(OS_ANDROID) |
| 20 | 24 |
| 21 using content::RenderFrameHost; | 25 using content::RenderFrameHost; |
| 22 using content::WebContents; | 26 using content::WebContents; |
| 23 | 27 |
| 28 namespace { | |
| 29 | |
| 30 // The renderer performs its own feature policy checks so a request that gets | |
| 31 // to the browser process indicates malicous code. | |
| 32 const char kFeaturePolicyViolation[] = | |
| 33 "Feature policy blocks access to WebUSB."; | |
| 34 | |
| 35 } // namespace | |
| 36 | |
| 24 DEFINE_WEB_CONTENTS_USER_DATA_KEY(UsbTabHelper); | 37 DEFINE_WEB_CONTENTS_USER_DATA_KEY(UsbTabHelper); |
| 25 | 38 |
| 26 struct FrameUsbServices { | 39 struct FrameUsbServices { |
| 27 std::unique_ptr<WebUSBPermissionProvider> permission_provider; | 40 std::unique_ptr<WebUSBPermissionProvider> permission_provider; |
| 28 #if defined(OS_ANDROID) | 41 #if defined(OS_ANDROID) |
| 29 std::unique_ptr<WebUsbChooserServiceAndroid> chooser_service; | 42 std::unique_ptr<WebUsbChooserServiceAndroid> chooser_service; |
| 30 #else | 43 #else |
| 31 std::unique_ptr<WebUsbChooserService> chooser_service; | 44 std::unique_ptr<WebUsbChooserService> chooser_service; |
| 32 #endif // defined(OS_ANDROID) | 45 #endif // defined(OS_ANDROID) |
| 33 int device_connection_count_ = 0; | 46 int device_connection_count_ = 0; |
| 34 }; | 47 }; |
| 35 | 48 |
| 36 // static | 49 // static |
| 37 UsbTabHelper* UsbTabHelper::GetOrCreateForWebContents( | 50 UsbTabHelper* UsbTabHelper::GetOrCreateForWebContents( |
| 38 WebContents* web_contents) { | 51 WebContents* web_contents) { |
| 39 UsbTabHelper* tab_helper = FromWebContents(web_contents); | 52 UsbTabHelper* tab_helper = FromWebContents(web_contents); |
| 40 if (!tab_helper) { | 53 if (!tab_helper) { |
| 41 CreateForWebContents(web_contents); | 54 CreateForWebContents(web_contents); |
| 42 tab_helper = FromWebContents(web_contents); | 55 tab_helper = FromWebContents(web_contents); |
| 43 } | 56 } |
| 44 return tab_helper; | 57 return tab_helper; |
| 45 } | 58 } |
| 46 | 59 |
| 47 UsbTabHelper::~UsbTabHelper() {} | 60 UsbTabHelper::~UsbTabHelper() {} |
| 48 | 61 |
| 49 void UsbTabHelper::CreateDeviceManager( | 62 void UsbTabHelper::CreateDeviceManager( |
| 50 RenderFrameHost* render_frame_host, | 63 RenderFrameHost* render_frame_host, |
| 51 mojo::InterfaceRequest<device::mojom::UsbDeviceManager> request) { | 64 mojo::InterfaceRequest<device::mojom::UsbDeviceManager> request) { |
| 52 DCHECK(WebContents::FromRenderFrameHost(render_frame_host) == web_contents()); | 65 DCHECK(WebContents::FromRenderFrameHost(render_frame_host) == web_contents()); |
| 66 if (base::FeatureList::IsEnabled(features::kFeaturePolicy)) { | |
|
iclelland.google
2017/05/02 14:42:52
Could this block, and the identical one below, be
Reilly Grant (use Gerrit)
2017/05/02 19:29:05
Done.
| |
| 67 if (!render_frame_host->IsFeatureEnabled( | |
| 68 blink::WebFeaturePolicyFeature::kUsb)) { | |
| 69 mojo::ReportBadMessage(kFeaturePolicyViolation); | |
| 70 return; | |
| 71 } | |
| 72 } else if (web_contents()->GetMainFrame() != render_frame_host) { | |
| 73 mojo::ReportBadMessage(kFeaturePolicyViolation); | |
| 74 return; | |
| 75 } | |
| 53 device::usb::DeviceManagerImpl::Create( | 76 device::usb::DeviceManagerImpl::Create( |
| 54 GetPermissionProvider(render_frame_host), std::move(request)); | 77 GetPermissionProvider(render_frame_host), std::move(request)); |
| 55 } | 78 } |
| 56 | 79 |
| 57 void UsbTabHelper::CreateChooserService( | 80 void UsbTabHelper::CreateChooserService( |
| 58 content::RenderFrameHost* render_frame_host, | 81 content::RenderFrameHost* render_frame_host, |
| 59 mojo::InterfaceRequest<device::mojom::UsbChooserService> request) { | 82 mojo::InterfaceRequest<device::mojom::UsbChooserService> request) { |
| 83 DCHECK(WebContents::FromRenderFrameHost(render_frame_host) == web_contents()); | |
| 84 if (base::FeatureList::IsEnabled(features::kFeaturePolicy)) { | |
| 85 if (!render_frame_host->IsFeatureEnabled( | |
| 86 blink::WebFeaturePolicyFeature::kUsb)) { | |
| 87 mojo::ReportBadMessage(kFeaturePolicyViolation); | |
| 88 return; | |
| 89 } | |
| 90 } else if (web_contents()->GetMainFrame() != render_frame_host) { | |
| 91 mojo::ReportBadMessage(kFeaturePolicyViolation); | |
| 92 return; | |
| 93 } | |
| 60 GetChooserService(render_frame_host, std::move(request)); | 94 GetChooserService(render_frame_host, std::move(request)); |
| 61 } | 95 } |
| 62 | 96 |
| 63 void UsbTabHelper::IncrementConnectionCount( | 97 void UsbTabHelper::IncrementConnectionCount( |
| 64 RenderFrameHost* render_frame_host) { | 98 RenderFrameHost* render_frame_host) { |
| 65 auto it = frame_usb_services_.find(render_frame_host); | 99 auto it = frame_usb_services_.find(render_frame_host); |
| 66 DCHECK(it != frame_usb_services_.end()); | 100 DCHECK(it != frame_usb_services_.end()); |
| 67 it->second->device_connection_count_++; | 101 it->second->device_connection_count_++; |
| 68 NotifyTabStateChanged(); | 102 NotifyTabStateChanged(); |
| 69 } | 103 } |
| (...skipping 67 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 137 #if !defined(OS_ANDROID) | 171 #if !defined(OS_ANDROID) |
| 138 Browser* browser = chrome::FindBrowserWithWebContents(web_contents()); | 172 Browser* browser = chrome::FindBrowserWithWebContents(web_contents()); |
| 139 if (browser) { | 173 if (browser) { |
| 140 TabStripModel* tab_strip_model = browser->tab_strip_model(); | 174 TabStripModel* tab_strip_model = browser->tab_strip_model(); |
| 141 tab_strip_model->UpdateWebContentsStateAt( | 175 tab_strip_model->UpdateWebContentsStateAt( |
| 142 tab_strip_model->GetIndexOfWebContents(web_contents()), | 176 tab_strip_model->GetIndexOfWebContents(web_contents()), |
| 143 TabStripModelObserver::ALL); | 177 TabStripModelObserver::ALL); |
| 144 } | 178 } |
| 145 #endif | 179 #endif |
| 146 } | 180 } |
| OLD | NEW |
