1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_SAFE_BROWSING_PING_MANAGER_H_
#define CHROME_BROWSER_SAFE_BROWSING_PING_MANAGER_H_
// A class that reports safebrowsing statistics to Google's SafeBrowsing
// servers.
#include <set>
#include <string>
#include <vector>
#include "base/gtest_prod_util.h"
#include "base/memory/scoped_ptr.h"
#include "chrome/browser/safe_browsing/protocol_manager_helper.h"
#include "chrome/browser/safe_browsing/safe_browsing_util.h"
#include "net/url_request/url_fetcher_delegate.h"
#include "url/gurl.h"
namespace chrome_browser_net {
class CertificateErrorReporter;
}
namespace net {
class SSLInfo;
class URLRequestContextGetter;
} // namespace net
class SafeBrowsingPingManager : public net::URLFetcherDelegate {
public:
~SafeBrowsingPingManager() override;
// Create an instance of the safe browsing ping manager.
static SafeBrowsingPingManager* Create(
net::URLRequestContextGetter* request_context_getter,
const SafeBrowsingProtocolConfig& config);
// net::URLFetcherDelegate interface.
void OnURLFetchComplete(const net::URLFetcher* source) override;
// For UMA users we report to Google when a SafeBrowsing interstitial is shown
// to the user. |threat_type| should be one of the types known by
// SafeBrowsingHitUrl.
void ReportSafeBrowsingHit(const GURL& malicious_url,
const GURL& page_url,
const GURL& referrer_url,
bool is_subresource,
SBThreatType threat_type,
const std::string& post_data,
bool is_extended_reporting);
// Users can opt-in on the SafeBrowsing interstitial to send detailed
// malware reports. |report| is the serialized report.
void ReportMalwareDetails(const std::string& report);
// Users can opt-in on the SSL interstitial to send reports of invalid
// certificate chains.
void ReportInvalidCertificateChain(const std::string& serialized_report);
void SetCertificateErrorReporterForTesting(scoped_ptr<
chrome_browser_net::CertificateErrorReporter> certificate_error_reporter);
private:
FRIEND_TEST_ALL_PREFIXES(SafeBrowsingPingManagerTest,
TestSafeBrowsingHitUrl);
FRIEND_TEST_ALL_PREFIXES(SafeBrowsingPingManagerTest,
TestMalwareDetailsUrl);
typedef std::set<const net::URLFetcher*> Reports;
// Constructs a SafeBrowsingPingManager that issues network requests
// using |request_context_getter|.
SafeBrowsingPingManager(
net::URLRequestContextGetter* request_context_getter,
const SafeBrowsingProtocolConfig& config);
// Generates URL for reporting safe browsing hits for UMA users.
GURL SafeBrowsingHitUrl(const GURL& malicious_url,
const GURL& page_url,
const GURL& referrer_url,
bool is_subresource,
SBThreatType threat_type,
bool is_extended_reporting) const;
// Generates URL for reporting malware details for users who opt-in.
GURL MalwareDetailsUrl() const;
// Current product version sent in each request.
std::string version_;
// The safe browsing client name sent in each request.
std::string client_name_;
// The context we use to issue network requests.
scoped_refptr<net::URLRequestContextGetter> request_context_getter_;
// URL prefix where browser reports hits to the safebrowsing list and
// sends detaild malware reports for UMA users.
std::string url_prefix_;
// Track outstanding SafeBrowsing report fetchers for clean up.
// We add both "hit" and "detail" fetchers in this set.
Reports safebrowsing_reports_;
// Sends reports of invalid SSL certificate chains.
scoped_ptr<chrome_browser_net::CertificateErrorReporter>
certificate_error_reporter_;
DISALLOW_COPY_AND_ASSIGN(SafeBrowsingPingManager);
};
#endif // CHROME_BROWSER_SAFE_BROWSING_PING_MANAGER_H_
|
