1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
|
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/supervised_user/supervised_user_resource_throttle.h"
#include "base/bind.h"
#include "base/metrics/sparse_histogram.h"
#include "chrome/browser/supervised_user/supervised_user_interstitial.h"
#include "chrome/browser/supervised_user/supervised_user_navigation_observer.h"
#include "chrome/browser/supervised_user/supervised_user_url_filter.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/resource_controller.h"
#include "content/public/browser/resource_request_info.h"
#include "net/url_request/redirect_info.h"
#include "net/url_request/url_request.h"
#include "ui/base/page_transition_types.h"
using content::BrowserThread;
namespace {
// These values corresponds to SupervisedUserSafetyFilterResult in
// tools/metrics/histograms/histograms.xml. If you change anything here, make
// sure to also update histograms.xml accordingly.
enum {
FILTERING_BEHAVIOR_ALLOW = 1,
FILTERING_BEHAVIOR_ALLOW_UNCERTAIN,
FILTERING_BEHAVIOR_BLOCK_BLACKLIST,
FILTERING_BEHAVIOR_BLOCK_SAFESITES,
FILTERING_BEHAVIOR_BLOCK_MANUAL,
FILTERING_BEHAVIOR_BLOCK_DEFAULT,
FILTERING_BEHAVIOR_MAX = FILTERING_BEHAVIOR_BLOCK_DEFAULT
};
const int kHistogramFilteringBehaviorSpacing = 100;
const int kHistogramPageTransitionMaxKnownValue =
static_cast<int>(ui::PAGE_TRANSITION_KEYWORD_GENERATED);
const int kHistogramPageTransitionFallbackValue =
kHistogramFilteringBehaviorSpacing - 1;
const int kHistogramMax = 700;
static_assert(kHistogramPageTransitionMaxKnownValue <
kHistogramPageTransitionFallbackValue,
"HistogramPageTransition MaxKnownValue must be < FallbackValue");
static_assert(FILTERING_BEHAVIOR_MAX * kHistogramFilteringBehaviorSpacing +
kHistogramPageTransitionFallbackValue < kHistogramMax,
"Invalid HistogramMax value");
int GetHistogramValueForFilteringBehavior(
SupervisedUserURLFilter::FilteringBehavior behavior,
SupervisedUserURLFilter::FilteringBehaviorReason reason,
bool uncertain) {
switch (behavior) {
case SupervisedUserURLFilter::ALLOW:
case SupervisedUserURLFilter::WARN:
return uncertain ? FILTERING_BEHAVIOR_ALLOW_UNCERTAIN
: FILTERING_BEHAVIOR_ALLOW;
case SupervisedUserURLFilter::BLOCK:
switch (reason) {
case SupervisedUserURLFilter::BLACKLIST:
return FILTERING_BEHAVIOR_BLOCK_BLACKLIST;
case SupervisedUserURLFilter::ASYNC_CHECKER:
return FILTERING_BEHAVIOR_BLOCK_SAFESITES;
case SupervisedUserURLFilter::WHITELIST:
NOTREACHED();
break;
case SupervisedUserURLFilter::MANUAL:
return FILTERING_BEHAVIOR_BLOCK_MANUAL;
case SupervisedUserURLFilter::DEFAULT:
return FILTERING_BEHAVIOR_BLOCK_DEFAULT;
}
case SupervisedUserURLFilter::INVALID:
NOTREACHED();
}
return 0;
}
int GetHistogramValueForTransitionType(ui::PageTransition transition_type) {
int value =
static_cast<int>(ui::PageTransitionStripQualifier(transition_type));
if (0 <= value && value <= kHistogramPageTransitionMaxKnownValue)
return value;
NOTREACHED();
return kHistogramPageTransitionFallbackValue;
}
void RecordFilterResultEvent(
bool safesites_histogram,
SupervisedUserURLFilter::FilteringBehavior behavior,
SupervisedUserURLFilter::FilteringBehaviorReason reason,
bool uncertain,
ui::PageTransition transition_type) {
int value =
GetHistogramValueForFilteringBehavior(behavior, reason, uncertain) *
kHistogramFilteringBehaviorSpacing +
GetHistogramValueForTransitionType(transition_type);
DCHECK_LT(value, kHistogramMax);
// Note: We can't pass in the histogram name as a parameter to this function
// because of how the macro works (look up the histogram on the first
// invocation and cache it in a static variable).
if (safesites_histogram)
UMA_HISTOGRAM_SPARSE_SLOWLY("ManagedUsers.SafetyFilter", value);
else
UMA_HISTOGRAM_SPARSE_SLOWLY("ManagedUsers.FilteringResult", value);
}
} // namespace
SupervisedUserResourceThrottle::SupervisedUserResourceThrottle(
const net::URLRequest* request,
bool is_main_frame,
const SupervisedUserURLFilter* url_filter)
: request_(request),
is_main_frame_(is_main_frame),
url_filter_(url_filter),
deferred_(false),
behavior_(SupervisedUserURLFilter::INVALID),
weak_ptr_factory_(this) {}
SupervisedUserResourceThrottle::~SupervisedUserResourceThrottle() {}
void SupervisedUserResourceThrottle::ShowInterstitialIfNeeded(bool is_redirect,
const GURL& url,
bool* defer) {
// Only treat main frame requests for now (ignoring subresources).
if (!is_main_frame_)
return;
deferred_ = false;
DCHECK_EQ(SupervisedUserURLFilter::INVALID, behavior_);
bool got_result = url_filter_->GetFilteringBehaviorForURLWithAsyncChecks(
url,
base::Bind(&SupervisedUserResourceThrottle::OnCheckDone,
weak_ptr_factory_.GetWeakPtr(), url));
DCHECK_EQ(got_result, behavior_ != SupervisedUserURLFilter::INVALID);
// If we got a "not blocked" result synchronously, don't defer.
*defer = deferred_ = !got_result ||
(behavior_ == SupervisedUserURLFilter::BLOCK);
if (got_result)
behavior_ = SupervisedUserURLFilter::INVALID;
}
void SupervisedUserResourceThrottle::ShowInterstitial(
const GURL& url,
SupervisedUserURLFilter::FilteringBehaviorReason reason) {
const content::ResourceRequestInfo* info =
content::ResourceRequestInfo::ForRequest(request_);
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(
&SupervisedUserNavigationObserver::OnRequestBlocked,
info->GetWebContentsGetterForRequest(), url, reason,
base::Bind(&SupervisedUserResourceThrottle::OnInterstitialResult,
weak_ptr_factory_.GetWeakPtr())));
}
void SupervisedUserResourceThrottle::WillStartRequest(bool* defer) {
ShowInterstitialIfNeeded(false, request_->url(), defer);
}
void SupervisedUserResourceThrottle::WillRedirectRequest(
const net::RedirectInfo& redirect_info,
bool* defer) {
ShowInterstitialIfNeeded(true, redirect_info.new_url, defer);
}
const char* SupervisedUserResourceThrottle::GetNameForLogging() const {
return "SupervisedUserResourceThrottle";
}
void SupervisedUserResourceThrottle::OnCheckDone(
const GURL& url,
SupervisedUserURLFilter::FilteringBehavior behavior,
SupervisedUserURLFilter::FilteringBehaviorReason reason,
bool uncertain) {
DCHECK_EQ(SupervisedUserURLFilter::INVALID, behavior_);
// If we got a result synchronously, pass it back to ShowInterstitialIfNeeded.
if (!deferred_)
behavior_ = behavior;
ui::PageTransition transition =
content::ResourceRequestInfo::ForRequest(request_)->GetPageTransition();
RecordFilterResultEvent(false, behavior, reason, uncertain, transition);
// If both the static blacklist and the async checker are enabled, also record
// SafeSites-only UMA events.
if (url_filter_->HasBlacklist() && url_filter_->HasAsyncURLChecker() &&
(reason == SupervisedUserURLFilter::ASYNC_CHECKER ||
reason == SupervisedUserURLFilter::BLACKLIST)) {
RecordFilterResultEvent(true, behavior, reason, uncertain, transition);
}
if (behavior == SupervisedUserURLFilter::BLOCK)
ShowInterstitial(url, reason);
else if (deferred_)
controller()->Resume();
}
void SupervisedUserResourceThrottle::OnInterstitialResult(
bool continue_request) {
if (continue_request)
controller()->Resume();
else
controller()->Cancel();
}
|
