diff options
| author | panayiotis@google.com <panayiotis@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2010-08-18 20:01:18 +0000 |
|---|---|---|
| committer | panayiotis@google.com <panayiotis@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2010-08-18 20:01:18 +0000 |
| commit | 293f19251f23ea4c9de9c0d12262237e213ed788 (patch) | |
| tree | 2dac1ecc7b79776ce9c557b4184b629da05ef909 /chrome/browser/safe_browsing/safe_browsing_service.cc | |
| parent | 2d57ab2fba8cd0457392bba9828ed46783114376 (diff) | |
| download | chromium_src-293f19251f23ea4c9de9c0d12262237e213ed788.zip chromium_src-293f19251f23ea4c9de9c0d12262237e213ed788.tar.gz chromium_src-293f19251f23ea4c9de9c0d12262237e213ed788.tar.bz2 | |
Fix the urls reported as page_url and referer_url when a redirect is involved.
Bug=None
Test=Manually verified with sites redirecting to malware.
Review URL: http://codereview.chromium.org/3151018
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@56583 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'chrome/browser/safe_browsing/safe_browsing_service.cc')
| -rw-r--r-- | chrome/browser/safe_browsing/safe_browsing_service.cc | 27 |
1 files changed, 23 insertions, 4 deletions
diff --git a/chrome/browser/safe_browsing/safe_browsing_service.cc b/chrome/browser/safe_browsing/safe_browsing_service.cc index dfcfaa0..af17e77 100644 --- a/chrome/browser/safe_browsing/safe_browsing_service.cc +++ b/chrome/browser/safe_browsing/safe_browsing_service.cc @@ -148,6 +148,7 @@ void SafeBrowsingService::CancelCheck(Client* client) { } void SafeBrowsingService::DisplayBlockingPage(const GURL& url, + const GURL& original_url, ResourceType::Type resource_type, UrlCheckResult result, Client* client, @@ -173,6 +174,7 @@ void SafeBrowsingService::DisplayBlockingPage(const GURL& url, UnsafeResource resource; resource.url = url; + resource.original_url = original_url; resource.resource_type = resource_type; resource.threat_type= result; resource.client = client; @@ -744,8 +746,8 @@ void SafeBrowsingService::DoDisplayBlockingPage( return; } - // Report the malware sub-resource to the SafeBrowsing servers if we have a - // malware sub-resource on a safe page and only if the user has opted in to + // Report the malware resource to the SafeBrowsing servers if we have a + // malware resource on a safe page and only if the user has opted in to // reporting statistics. const MetricsService* metrics = g_browser_process->metrics_service(); DCHECK(metrics); @@ -756,9 +758,23 @@ void SafeBrowsingService::DoDisplayBlockingPage( NavigationEntry* entry = wc->controller().GetActiveEntry(); if (entry) referrer_url = entry->referrer(); + bool is_subresource = resource.resource_type != ResourceType::MAIN_FRAME; + + // When the malicious url is on the main frame, and resource.original_url + // is not the same as the resource.url, that means we have a redirect from + // resource.original_url to resource.url. + // Also, at this point, page_url points to the _previous_ page that we + // were on. We replace page_url with resource.original_url and referrer + // with page_url. + if (!is_subresource && + !resource.original_url.is_empty() && + resource.original_url != resource.url) { + referrer_url = page_url; + page_url = resource.original_url; + } - if (resource.url != page_url || !referrer_url.is_empty()) { - bool is_subresource = resource.resource_type != ResourceType::MAIN_FRAME; + if ((!page_url.is_empty() && resource.url != page_url) || + !referrer_url.is_empty()) { ChromeThread::PostTask( ChromeThread::IO, FROM_HERE, NewRunnableMethod(this, @@ -795,6 +811,9 @@ void SafeBrowsingService::ReportMalware(const GURL& malware_url, return; } + DLOG(INFO) << "ReportMalware: " << malware_url << " " << page_url << " " << + referrer_url << " " << is_subresource; + protocol_manager_->ReportMalware(malware_url, page_url, referrer_url, is_subresource); } |