// Copyright 2013 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "components/autofill/core/browser/credit_card.h" #include #include #include #include #include #include "base/guid.h" #include "base/logging.h" #include "base/macros.h" #include "base/metrics/histogram_macros.h" #include "base/strings/string16.h" #include "base/strings/string_number_conversions.h" #include "base/strings/string_split.h" #include "base/strings/string_util.h" #include "base/strings/utf_string_conversions.h" #include "base/time/time.h" #include "build/build_config.h" #include "components/autofill/core/browser/autofill_field.h" #include "components/autofill/core/browser/autofill_type.h" #include "components/autofill/core/browser/validation.h" #include "components/autofill/core/common/autofill_l10n_util.h" #include "components/autofill/core/common/autofill_regexes.h" #include "components/autofill/core/common/form_field_data.h" #include "grit/components_scaled_resources.h" #include "grit/components_strings.h" #include "third_party/icu/source/common/unicode/uloc.h" #include "third_party/icu/source/i18n/unicode/dtfmtsym.h" #include "ui/base/l10n/l10n_util.h" namespace autofill { namespace { const base::char16 kCreditCardObfuscationSymbol = '*'; bool ConvertYear(const base::string16& year, int* num) { // If the |year| is empty, clear the stored value. if (year.empty()) { *num = 0; return true; } // Try parsing the |year| as a number. if (base::StringToInt(year, num)) return true; *num = 0; return false; } base::string16 TypeForFill(const std::string& type) { if (type == kAmericanExpressCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_AMEX); if (type == kDinersCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_DINERS); if (type == kDiscoverCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_DISCOVER); if (type == kJCBCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_JCB); if (type == kMasterCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_MASTERCARD); if (type == kUnionPay) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_UNION_PAY); if (type == kVisaCard) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_VISA); // If you hit this DCHECK, the above list of cases needs to be updated to // include a new card. DCHECK_EQ(kGenericCard, type); return base::string16(); } } // namespace CreditCard::CreditCard(const std::string& guid, const std::string& origin) : AutofillDataModel(guid, origin), record_type_(LOCAL_CARD), type_(kGenericCard), expiration_month_(0), expiration_year_(0), server_status_(OK) {} CreditCard::CreditCard(const base::string16& card_number, int expiration_month, int expiration_year) : CreditCard() { SetNumber(card_number); SetExpirationMonth(expiration_month); SetExpirationYear(expiration_year); } CreditCard::CreditCard(RecordType type, const std::string& server_id) : CreditCard() { DCHECK(type == MASKED_SERVER_CARD || type == FULL_SERVER_CARD); record_type_ = type; server_id_ = server_id; } CreditCard::CreditCard() : CreditCard(base::GenerateGUID(), std::string()) {} CreditCard::CreditCard(const CreditCard& credit_card) : CreditCard() { operator=(credit_card); } CreditCard::~CreditCard() {} // static const base::string16 CreditCard::StripSeparators(const base::string16& number) { base::string16 stripped; base::RemoveChars(number, base::ASCIIToUTF16("- "), &stripped); return stripped; } // static base::string16 CreditCard::TypeForDisplay(const std::string& type) { if (kGenericCard == type) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_GENERIC); if (kAmericanExpressCard == type) return l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_AMEX_SHORT); return ::autofill::TypeForFill(type); } // This method is not compiled on iOS because the resources are not used and // should not be shipped. #if !defined(OS_IOS) // static int CreditCard::IconResourceId(const std::string& type) { if (type == kAmericanExpressCard) return IDR_AUTOFILL_CC_AMEX; if (type == kDinersCard) return IDR_AUTOFILL_CC_GENERIC; if (type == kDiscoverCard) return IDR_AUTOFILL_CC_DISCOVER; if (type == kJCBCard) return IDR_AUTOFILL_CC_GENERIC; if (type == kMasterCard) return IDR_AUTOFILL_CC_MASTERCARD; if (type == kUnionPay) return IDR_AUTOFILL_CC_GENERIC; if (type == kVisaCard) return IDR_AUTOFILL_CC_VISA; // If you hit this DCHECK, the above list of cases needs to be updated to // include a new card. DCHECK_EQ(kGenericCard, type); return IDR_AUTOFILL_CC_GENERIC; } #endif // #if !defined(OS_IOS) // static const char* CreditCard::GetCreditCardType(const base::string16& number) { // Credit card number specifications taken from: // http://en.wikipedia.org/wiki/Credit_card_numbers, // http://en.wikipedia.org/wiki/List_of_Issuer_Identification_Numbers, // http://www.discovernetwork.com/merchants/images/Merchant_Marketing_PDF.pdf, // http://www.regular-expressions.info/creditcard.html, // http://developer.ean.com/general_info/Valid_Credit_Card_Types, // http://www.bincodes.com/, // http://www.fraudpractice.com/FL-binCC.html, and // http://www.beachnet.com/~hstiles/cardtype.html // // The last site is currently unavailable, but a cached version remains at // http://web.archive.org/web/20120923111349/http://www.beachnet.com/~hstiles/cardtype.html // // Card Type Prefix(es) Length // --------------------------------------------------------------- // Visa 4 13,16 // American Express 34,37 15 // Diners Club 300-305,3095,36,38-39 14 // Discover Card 6011,644-649,65 16 // JCB 3528-3589 16 // MasterCard 51-55 16 // UnionPay 62 16-19 // Check for prefixes of length 1. if (number.empty()) return kGenericCard; if (number[0] == '4') return kVisaCard; // Check for prefixes of length 2. if (number.size() < 2) return kGenericCard; int first_two_digits = 0; if (!base::StringToInt(number.substr(0, 2), &first_two_digits)) return kGenericCard; if (first_two_digits == 34 || first_two_digits == 37) return kAmericanExpressCard; if (first_two_digits == 36 || first_two_digits == 38 || first_two_digits == 39) return kDinersCard; if (first_two_digits >= 51 && first_two_digits <= 55) return kMasterCard; if (first_two_digits == 62) return kUnionPay; if (first_two_digits == 65) return kDiscoverCard; // Check for prefixes of length 3. if (number.size() < 3) return kGenericCard; int first_three_digits = 0; if (!base::StringToInt(number.substr(0, 3), &first_three_digits)) return kGenericCard; if (first_three_digits >= 300 && first_three_digits <= 305) return kDinersCard; if (first_three_digits >= 644 && first_three_digits <= 649) return kDiscoverCard; // Check for prefixes of length 4. if (number.size() < 4) return kGenericCard; int first_four_digits = 0; if (!base::StringToInt(number.substr(0, 4), &first_four_digits)) return kGenericCard; if (first_four_digits == 3095) return kDinersCard; if (first_four_digits >= 3528 && first_four_digits <= 3589) return kJCBCard; if (first_four_digits == 6011) return kDiscoverCard; return kGenericCard; } void CreditCard::SetTypeForMaskedCard(const char* type) { DCHECK_EQ(MASKED_SERVER_CARD, record_type()); type_ = type; } void CreditCard::SetServerStatus(ServerStatus status) { DCHECK_NE(LOCAL_CARD, record_type()); server_status_ = status; } CreditCard::ServerStatus CreditCard::GetServerStatus() const { DCHECK_NE(LOCAL_CARD, record_type()); return server_status_; } base::string16 CreditCard::GetRawInfo(ServerFieldType type) const { DCHECK_EQ(CREDIT_CARD, AutofillType(type).group()); switch (type) { case CREDIT_CARD_NAME: return name_on_card_; case CREDIT_CARD_EXP_MONTH: return ExpirationMonthAsString(); case CREDIT_CARD_EXP_2_DIGIT_YEAR: return Expiration2DigitYearAsString(); case CREDIT_CARD_EXP_4_DIGIT_YEAR: return Expiration4DigitYearAsString(); case CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR: { base::string16 month = ExpirationMonthAsString(); base::string16 year = Expiration2DigitYearAsString(); if (!month.empty() && !year.empty()) return month + base::ASCIIToUTF16("/") + year; return base::string16(); } case CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR: { base::string16 month = ExpirationMonthAsString(); base::string16 year = Expiration4DigitYearAsString(); if (!month.empty() && !year.empty()) return month + base::ASCIIToUTF16("/") + year; return base::string16(); } case CREDIT_CARD_TYPE: return TypeForFill(); case CREDIT_CARD_NUMBER: return number_; case CREDIT_CARD_VERIFICATION_CODE: // Chrome doesn't store credit card verification codes. return base::string16(); default: // ComputeDataPresentForArray will hit this repeatedly. return base::string16(); } } void CreditCard::SetRawInfo(ServerFieldType type, const base::string16& value) { DCHECK_EQ(CREDIT_CARD, AutofillType(type).group()); switch (type) { case CREDIT_CARD_NAME: name_on_card_ = value; break; case CREDIT_CARD_EXP_MONTH: SetExpirationMonthFromString(value, std::string()); break; case CREDIT_CARD_EXP_2_DIGIT_YEAR: // This is a read-only attribute. break; case CREDIT_CARD_EXP_4_DIGIT_YEAR: SetExpirationYearFromString(value); break; case CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR: // This is a read-only attribute. break; case CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR: // This is a read-only attribute. break; case CREDIT_CARD_TYPE: // This is a read-only attribute, determined by the credit card number. break; case CREDIT_CARD_NUMBER: { // Don't change the real value if the input is an obfuscated string. if (value.size() > 0 && value[0] != kCreditCardObfuscationSymbol) SetNumber(value); break; } case CREDIT_CARD_VERIFICATION_CODE: // Chrome doesn't store the credit card verification code. break; default: NOTREACHED() << "Attempting to set unknown info-type " << type; break; } } base::string16 CreditCard::GetInfo(const AutofillType& type, const std::string& app_locale) const { ServerFieldType storable_type = type.GetStorableType(); if (storable_type == CREDIT_CARD_NUMBER) { // Web pages should never actually be filled by a masked server card, // but this function is used at the preview stage. if (record_type() == MASKED_SERVER_CARD) return TypeAndLastFourDigits(); return StripSeparators(number_); } return GetRawInfo(storable_type); } bool CreditCard::SetInfo(const AutofillType& type, const base::string16& value, const std::string& app_locale) { ServerFieldType storable_type = type.GetStorableType(); if (storable_type == CREDIT_CARD_NUMBER) SetRawInfo(storable_type, StripSeparators(value)); else if (storable_type == CREDIT_CARD_EXP_MONTH) return SetExpirationMonthFromString(value, app_locale); else SetRawInfo(storable_type, value); return true; } void CreditCard::GetMatchingTypes(const base::string16& text, const std::string& app_locale, ServerFieldTypeSet* matching_types) const { FormGroup::GetMatchingTypes(text, app_locale, matching_types); base::string16 card_number = GetInfo(AutofillType(CREDIT_CARD_NUMBER), app_locale); if (!card_number.empty() && StripSeparators(text) == card_number) matching_types->insert(CREDIT_CARD_NUMBER); int month; if (ConvertMonth(text, app_locale, &month) && month == expiration_month_) { matching_types->insert(CREDIT_CARD_EXP_MONTH); } } const base::string16 CreditCard::Label() const { std::pair pieces = LabelPieces(); return pieces.first + pieces.second; } const std::pair CreditCard::LabelPieces() const { base::string16 label; // No CC number, return name only. if (number().empty()) return std::make_pair(name_on_card_, base::string16()); base::string16 obfuscated_cc_number = TypeAndLastFourDigits(); // No expiration date set. if (!expiration_month_ || !expiration_year_) return std::make_pair(obfuscated_cc_number, base::string16()); base::string16 formatted_date(ExpirationMonthAsString()); formatted_date.append(base::ASCIIToUTF16("/")); formatted_date.append(Expiration4DigitYearAsString()); base::string16 separator = l10n_util::GetStringUTF16(IDS_AUTOFILL_ADDRESS_SUMMARY_SEPARATOR); return std::make_pair(obfuscated_cc_number, separator + formatted_date); } void CreditCard::SetInfoForMonthInputType(const base::string16& value) { // Check if |text| is "yyyy-mm" format first, and check normal month format. if (!MatchesPattern(value, base::UTF8ToUTF16("^[0-9]{4}-[0-9]{1,2}$"))) return; std::vector year_month = base::SplitStringPiece( value, base::ASCIIToUTF16("-"), base::TRIM_WHITESPACE, base::SPLIT_WANT_ALL); DCHECK_EQ(2u, year_month.size()); int num = 0; bool converted = false; converted = base::StringToInt(year_month[0], &num); DCHECK(converted); SetExpirationYear(num); converted = base::StringToInt(year_month[1], &num); DCHECK(converted); SetExpirationMonth(num); } void CreditCard::SetExpirationMonth(int expiration_month) { if (expiration_month < 0 || expiration_month > 12) return; expiration_month_ = expiration_month; } void CreditCard::SetExpirationYear(int expiration_year) { if (expiration_year != 0 && (expiration_year < 2006 || expiration_year > 10000)) return; expiration_year_ = expiration_year; } base::string16 CreditCard::LastFourDigits() const { static const size_t kNumLastDigits = 4; base::string16 number = StripSeparators(number_); if (number.size() <= kNumLastDigits) return number; return number.substr(number.size() - kNumLastDigits, kNumLastDigits); } base::string16 CreditCard::TypeForDisplay() const { return CreditCard::TypeForDisplay(type_); } base::string16 CreditCard::TypeAndLastFourDigits() const { base::string16 type = TypeForDisplay(); base::string16 digits = LastFourDigits(); if (digits.empty()) return type; // The separator character is a non breaking space and a horizontal midline // ellipsis. // TODO(estade): i18n? return type + base::UTF8ToUTF16("\xC2\xA0\xE2\x8B\xAF") + digits; } base::string16 CreditCard::AbbreviatedExpirationDateForDisplay() const { base::string16 month = ExpirationMonthAsString(); base::string16 year = Expiration2DigitYearAsString(); return month.empty() || year.empty() ? base::string16() : l10n_util::GetStringFUTF16( IDS_AUTOFILL_CREDIT_CARD_EXPIRATION_DATE_ABBR, month, year); } void CreditCard::operator=(const CreditCard& credit_card) { set_use_count(credit_card.use_count()); set_use_date(credit_card.use_date()); set_modification_date(credit_card.modification_date()); if (this == &credit_card) return; record_type_ = credit_card.record_type_; number_ = credit_card.number_; name_on_card_ = credit_card.name_on_card_; type_ = credit_card.type_; expiration_month_ = credit_card.expiration_month_; expiration_year_ = credit_card.expiration_year_; server_id_ = credit_card.server_id_; server_status_ = credit_card.server_status_; set_guid(credit_card.guid()); set_origin(credit_card.origin()); } bool CreditCard::UpdateFromImportedCard(const CreditCard& imported_card, const std::string& app_locale) { if (this->GetInfo(AutofillType(CREDIT_CARD_NUMBER), app_locale) != imported_card.GetInfo(AutofillType(CREDIT_CARD_NUMBER), app_locale)) { return false; } // Heuristically aggregated data should never overwrite verified data. // Instead, discard any heuristically aggregated credit cards that disagree // with explicitly entered data, so that the UI is not cluttered with // duplicate cards. if (this->IsVerified() && !imported_card.IsVerified()) return true; set_origin(imported_card.origin()); // Note that the card number is intentionally not updated, so as to preserve // any formatting (i.e. separator characters). Since the card number is not // updated, there is no reason to update the card type, either. if (!imported_card.name_on_card_.empty()) name_on_card_ = imported_card.name_on_card_; // The expiration date for |imported_card| should always be set. DCHECK(imported_card.expiration_month_ && imported_card.expiration_year_); expiration_month_ = imported_card.expiration_month_; expiration_year_ = imported_card.expiration_year_; return true; } int CreditCard::Compare(const CreditCard& credit_card) const { // The following CreditCard field types are the only types we store in the // WebDB so far, so we're only concerned with matching these types in the // credit card. const ServerFieldType types[] = { CREDIT_CARD_NAME, CREDIT_CARD_NUMBER, CREDIT_CARD_EXP_MONTH, CREDIT_CARD_EXP_4_DIGIT_YEAR }; for (size_t i = 0; i < arraysize(types); ++i) { int comparison = GetRawInfo(types[i]).compare(credit_card.GetRawInfo(types[i])); if (comparison != 0) return comparison; } int comparison = server_id_.compare(credit_card.server_id_); if (comparison != 0) return comparison; if (static_cast(server_status_) < static_cast(credit_card.server_status_)) return -1; if (static_cast(server_status_) > static_cast(credit_card.server_status_)) return 1; if (static_cast(record_type_) < static_cast(credit_card.record_type_)) return -1; if (static_cast(record_type_) > static_cast(credit_card.record_type_)) return 1; return 0; } bool CreditCard::IsLocalDuplicateOfServerCard(const CreditCard& other) const { if (record_type() != LOCAL_CARD || other.record_type() == LOCAL_CARD) return false; // If |this| is only a partial card, i.e. some fields are missing, assume // those fields match. if ((!name_on_card_.empty() && name_on_card_ != other.name_on_card_) || (expiration_month_ != 0 && expiration_month_ != other.expiration_month_) || (expiration_year_ != 0 && expiration_year_ != other.expiration_year_)) { return false; } if (number_.empty()) return true; if (other.record_type() == FULL_SERVER_CARD) return StripSeparators(number_) == StripSeparators(other.number_); // For masked cards, this is the best we can do to compare card numbers. return TypeAndLastFourDigits() == other.TypeAndLastFourDigits(); } bool CreditCard::operator==(const CreditCard& credit_card) const { return guid() == credit_card.guid() && origin() == credit_card.origin() && Compare(credit_card) == 0; } bool CreditCard::operator!=(const CreditCard& credit_card) const { return !operator==(credit_card); } bool CreditCard::IsEmpty(const std::string& app_locale) const { ServerFieldTypeSet types; GetNonEmptyTypes(app_locale, &types); return types.empty(); } bool CreditCard::IsComplete() const { return IsValidCreditCardNumber(number_) && expiration_month_ != 0 && expiration_year_ != 0; } bool CreditCard::IsValid() const { return IsValidCreditCardNumber(number_) && IsValidCreditCardExpirationDate( expiration_year_, expiration_month_, base::Time::Now()); } void CreditCard::GetSupportedTypes(ServerFieldTypeSet* supported_types) const { supported_types->insert(CREDIT_CARD_NAME); supported_types->insert(CREDIT_CARD_NUMBER); supported_types->insert(CREDIT_CARD_TYPE); supported_types->insert(CREDIT_CARD_EXP_MONTH); supported_types->insert(CREDIT_CARD_EXP_2_DIGIT_YEAR); supported_types->insert(CREDIT_CARD_EXP_4_DIGIT_YEAR); supported_types->insert(CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR); supported_types->insert(CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR); } base::string16 CreditCard::ExpirationMonthAsString() const { if (expiration_month_ == 0) return base::string16(); base::string16 month = base::IntToString16(expiration_month_); if (expiration_month_ >= 10) return month; base::string16 zero = base::ASCIIToUTF16("0"); zero.append(month); return zero; } base::string16 CreditCard::TypeForFill() const { return ::autofill::TypeForFill(type_); } base::string16 CreditCard::Expiration4DigitYearAsString() const { if (expiration_year_ == 0) return base::string16(); return base::IntToString16(Expiration4DigitYear()); } base::string16 CreditCard::Expiration2DigitYearAsString() const { if (expiration_year_ == 0) return base::string16(); return base::IntToString16(Expiration2DigitYear()); } bool CreditCard::SetExpirationMonthFromString(const base::string16& text, const std::string& app_locale) { base::string16 trimmed; base::TrimWhitespace(text, base::TRIM_ALL, &trimmed); int month = 0; if (!ConvertMonth(trimmed, app_locale, &month)) return false; SetExpirationMonth(month); return true; } void CreditCard::SetExpirationYearFromString(const base::string16& text) { int year; if (!ConvertYear(text, &year)) return; SetExpirationYear(year); } void CreditCard::SetNumber(const base::string16& number) { number_ = number; // Set the type based on the card number, but only for full numbers, not // when we have masked cards from the server (last 4 digits). if (record_type_ != MASKED_SERVER_CARD) type_ = GetCreditCardType(StripSeparators(number_)); } void CreditCard::RecordAndLogUse() { UMA_HISTOGRAM_COUNTS_1000("Autofill.DaysSinceLastUse.CreditCard", (base::Time::Now() - use_date()).InDays()); RecordUse(); } // static bool CreditCard::ConvertMonth(const base::string16& month, const std::string& app_locale, int* num) { if (month.empty()) return false; // Try parsing the |month| as a number (this doesn't require |app_locale|). if (base::StringToInt(month, num)) return true; if (app_locale.empty()) return false; // Otherwise, try parsing the |month| as a named month, e.g. "January" or // "Jan". l10n::CaseInsensitiveCompare compare; UErrorCode status = U_ZERO_ERROR; icu::Locale locale(app_locale.c_str()); icu::DateFormatSymbols date_format_symbols(locale, status); DCHECK(status == U_ZERO_ERROR || status == U_USING_FALLBACK_WARNING || status == U_USING_DEFAULT_WARNING); int32_t num_months; const icu::UnicodeString* months = date_format_symbols.getMonths(num_months); for (int32_t i = 0; i < num_months; ++i) { const base::string16 icu_month(months[i].getBuffer(), months[i].length()); if (compare.StringsEqual(icu_month, month)) { *num = i + 1; // Adjust from 0-indexed to 1-indexed. return true; } } months = date_format_symbols.getShortMonths(num_months); // Some abbreviations have . at the end (e.g., "janv." in French). We don't // care about matching that. base::string16 trimmed_month; base::TrimString(month, base::ASCIIToUTF16("."), &trimmed_month); for (int32_t i = 0; i < num_months; ++i) { base::string16 icu_month(months[i].getBuffer(), months[i].length()); base::TrimString(icu_month, base::ASCIIToUTF16("."), &icu_month); if (compare.StringsEqual(icu_month, trimmed_month)) { *num = i + 1; // Adjust from 0-indexed to 1-indexed. return true; } } return false; } // So we can compare CreditCards with EXPECT_EQ(). std::ostream& operator<<(std::ostream& os, const CreditCard& credit_card) { return os << base::UTF16ToUTF8(credit_card.Label()) << " " << credit_card.guid() << " " << credit_card.origin() << " " << base::UTF16ToUTF8(credit_card.GetRawInfo(CREDIT_CARD_NAME)) << " " << base::UTF16ToUTF8(credit_card.GetRawInfo(CREDIT_CARD_TYPE)) << " " << base::UTF16ToUTF8(credit_card.GetRawInfo(CREDIT_CARD_NUMBER)) << " " << base::UTF16ToUTF8(credit_card.GetRawInfo(CREDIT_CARD_EXP_MONTH)) << " " << base::UTF16ToUTF8( credit_card.GetRawInfo(CREDIT_CARD_EXP_4_DIGIT_YEAR)); } // These values must match the values in WebKitPlatformSupportImpl in // webkit/glue. We send these strings to WebKit, which then asks // WebKitPlatformSupportImpl to load the image data. const char kAmericanExpressCard[] = "americanExpressCC"; const char kDinersCard[] = "dinersCC"; const char kDiscoverCard[] = "discoverCC"; const char kGenericCard[] = "genericCC"; const char kJCBCard[] = "jcbCC"; const char kMasterCard[] = "masterCardCC"; const char kUnionPay[] = "unionPayCC"; const char kVisaCard[] = "visaCC"; } // namespace autofill