1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CHROME_BROWSER_SAFE_BROWSING_CLIENT_SIDE_DETECTION_HOST_H_
6 #define CHROME_BROWSER_SAFE_BROWSING_CLIENT_SIDE_DETECTION_HOST_H_
11 #include "base/basictypes.h"
12 #include "base/memory/ref_counted.h"
13 #include "base/memory/scoped_ptr.h"
14 #include "chrome/browser/safe_browsing/browser_feature_extractor.h"
15 #include "chrome/browser/safe_browsing/database_manager.h"
16 #include "chrome/browser/safe_browsing/ui_manager.h"
17 #include "content/public/browser/notification_registrar.h"
18 #include "content/public/browser/resource_request_details.h"
19 #include "content/public/browser/web_contents_observer.h"
22 namespace safe_browsing
{
23 class ClientPhishingRequest
;
24 class ClientSideDetectionService
;
26 // This class is used to receive the IPC from the renderer which
27 // notifies the browser that a URL was classified as phishing. This
28 // class relays this information to the client-side detection service
29 // class which sends a ping to a server to validate the verdict.
30 // TODO(noelutz): move all client-side detection IPCs to this class.
31 class ClientSideDetectionHost
: public content::WebContentsObserver
,
32 public content::NotificationObserver
,
33 public SafeBrowsingUIManager::Observer
{
35 // The caller keeps ownership of the tab object and is responsible for
36 // ensuring that it stays valid until WebContentsDestroyed is called.
37 static ClientSideDetectionHost
* Create(content::WebContents
* tab
);
38 virtual ~ClientSideDetectionHost();
40 // From content::WebContentsObserver.
41 virtual bool OnMessageReceived(const IPC::Message
& message
) OVERRIDE
;
43 // From content::WebContentsObserver. If we navigate away we cancel all
44 // pending callbacks that could show an interstitial, and check to see whether
45 // we should classify the new URL.
46 virtual void DidNavigateMainFrame(
47 const content::LoadCommittedDetails
& details
,
48 const content::FrameNavigateParams
& params
) OVERRIDE
;
50 // Called when the SafeBrowsingService found a hit with one of the
51 // SafeBrowsing lists. This method is called on the UI thread.
52 virtual void OnSafeBrowsingHit(
53 const SafeBrowsingUIManager::UnsafeResource
& resource
) OVERRIDE
;
55 // Called when the SafeBrowsingService finds a match on the SB lists.
56 // Called on the UI thread. Called even if the resource is whitelisted.
57 virtual void OnSafeBrowsingMatch(
58 const SafeBrowsingUIManager::UnsafeResource
& resource
) OVERRIDE
;
60 virtual scoped_refptr
<SafeBrowsingDatabaseManager
> database_manager();
62 // Returns whether the current page contains a malware or phishing safe
64 bool DidPageReceiveSafeBrowsingMatch() const;
67 explicit ClientSideDetectionHost(content::WebContents
* tab
);
69 // From content::WebContentsObserver.
70 virtual void WebContentsDestroyed() OVERRIDE
;
73 void set_safe_browsing_managers(
74 SafeBrowsingUIManager
* ui_manager
,
75 SafeBrowsingDatabaseManager
* database_manager
);
78 friend class ClientSideDetectionHostTest
;
79 class ShouldClassifyUrlRequest
;
80 friend class ShouldClassifyUrlRequest
;
82 // These methods are called when pre-classification checks are done for
83 // the phishing and malware clasifiers.
84 void OnPhishingPreClassificationDone(bool should_classify
);
85 void OnMalwarePreClassificationDone(bool should_classify
);
87 // Verdict is an encoded ClientPhishingRequest protocol message.
88 void OnPhishingDetectionDone(const std::string
& verdict
);
90 // Callback that is called when the server ping back is
91 // done. Display an interstitial if |is_phishing| is true.
92 // Otherwise, we do nothing. Called in UI thread.
93 void MaybeShowPhishingWarning(GURL phishing_url
, bool is_phishing
);
95 // Callback that is called when the malware IP server ping back is
96 // done. Display an interstitial if |is_malware| is true.
97 // Otherwise, we do nothing. Called in UI thread.
98 void MaybeShowMalwareWarning(GURL original_url
, GURL malware_url
,
101 // Callback that is called when the browser feature extractor is done.
102 // This method is responsible for deleting the request object. Called on
104 void FeatureExtractionDone(bool success
,
105 scoped_ptr
<ClientPhishingRequest
> request
);
107 // Start malware classification once the onload handler was called and
108 // malware pre-classification checks are done and passed.
109 void MaybeStartMalwareFeatureExtraction();
111 // Function to be called when the browser malware feature extractor is done.
112 // Called on the UI thread.
113 void MalwareFeatureExtractionDone(
114 bool success
, scoped_ptr
<ClientMalwareRequest
> request
);
116 // Update the entries in browse_info_->ips map.
117 void UpdateIPUrlMap(const std::string
& ip
,
118 const std::string
& url
,
119 const std::string
& method
,
120 const std::string
& referrer
,
121 const content::ResourceType resource_type
);
123 // From NotificationObserver. Called when a notification comes in. This
124 // method is called in the UI thread.
125 virtual void Observe(int type
,
126 const content::NotificationSource
& source
,
127 const content::NotificationDetails
& details
) OVERRIDE
;
129 // Inherited from WebContentsObserver. This is called once the page is
131 virtual void DidStopLoading(content::RenderViewHost
* rvh
) OVERRIDE
;
133 // Returns true if the user has seen a regular SafeBrowsing
134 // interstitial for the current page. This is only true if the user has
135 // actually clicked through the warning. This method is called on the UI
137 bool DidShowSBInterstitial() const;
139 // Used for testing. This function does not take ownership of the service
141 void set_client_side_detection_service(ClientSideDetectionService
* service
);
143 // This pointer may be NULL if client-side phishing detection is disabled.
144 ClientSideDetectionService
* csd_service_
;
145 // These pointers may be NULL if SafeBrowsing is disabled.
146 scoped_refptr
<SafeBrowsingDatabaseManager
> database_manager_
;
147 scoped_refptr
<SafeBrowsingUIManager
> ui_manager_
;
148 // Keep a handle to the latest classification request so that we can cancel
150 scoped_refptr
<ShouldClassifyUrlRequest
> classification_request_
;
151 // Browser-side feature extractor.
152 scoped_ptr
<BrowserFeatureExtractor
> feature_extractor_
;
153 // Keeps some info about the current page visit while the renderer
154 // classification is going on. Since we cancel classification on
155 // every page load we can simply keep this data around as a member
156 // variable. This information will be passed on to the feature extractor.
157 scoped_ptr
<BrowseInfo
> browse_info_
;
158 // Redirect chain that leads to the first page of the current host. We keep
159 // track of this for browse_info_.
160 std::vector
<GURL
> cur_host_redirects_
;
161 // Current host, used to help determine cur_host_redirects_.
162 std::string cur_host_
;
163 // Handles registering notifications with the NotificationService.
164 content::NotificationRegistrar registrar_
;
166 // Max number of ips we save for each browse
167 static const size_t kMaxIPsPerBrowse
;
168 // Max number of urls we report for each malware IP.
169 static const size_t kMaxUrlsPerIP
;
171 bool should_extract_malware_features_
;
172 bool should_classify_for_malware_
;
173 bool pageload_complete_
;
175 base::WeakPtrFactory
<ClientSideDetectionHost
> weak_factory_
;
177 // Unique page ID of the most recent unsafe site that was loaded in this tab
178 // as well as the UnsafeResource.
179 int unsafe_unique_page_id_
;
180 scoped_ptr
<SafeBrowsingUIManager::UnsafeResource
> unsafe_resource_
;
182 DISALLOW_COPY_AND_ASSIGN(ClientSideDetectionHost
);
185 } // namespace safe_browsing
187 #endif // CHROME_BROWSER_SAFE_BROWSING_CLIENT_SIDE_DETECTION_HOST_H_