search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Only grant permissions to new extensions from sync if they have the expected version
[chromium-blink-merge.git] / components / autofill / core / browser / credit_card_field.cc
blob3b24ec38c1851268949aaa7ce297cda4ded4c9d8
1 // Copyright 2013 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "components/autofill/core/browser/credit_card_field.h"
6
7 #include <stddef.h>
8
9 #include "base/memory/scoped_ptr.h"
10 #include "base/stl_util.h"
11 #include "base/strings/string16.h"
12 #include "base/strings/string_number_conversions.h"
13 #include "base/strings/string_util.h"
14 #include "base/strings/utf_string_conversions.h"
15 #include "base/time/time.h"
16 #include "components/autofill/core/browser/autofill_field.h"
17 #include "components/autofill/core/browser/autofill_regex_constants.h"
18 #include "components/autofill/core/browser/autofill_scanner.h"
19 #include "components/autofill/core/browser/field_types.h"
20 #include "components/autofill/core/common/autofill_regexes.h"
21 #include "grit/components_strings.h"
22 #include "ui/base/l10n/l10n_util.h"
23
24 namespace autofill {
25
26 namespace {
27
28 // Credit card numbers are at most 19 digits in length.
29 // [Ref: http://en.wikipedia.org/wiki/Bank_card_number]
30 const size_t kMaxValidCardNumberSize = 19;
31
32 // Look for the vector |regex_needles| in |haystack|. Returns true if a
33 // consecutive section of |haystack| matches |regex_needles|.
34 bool FindConsecutiveStrings(const std::vector<base::string16>& regex_needles,
35 const std::vector<base::string16>& haystack) {
36 if (regex_needles.empty() ||
37 haystack.empty() ||
38 (haystack.size() < regex_needles.size()))
39 return false;
40
41 for (size_t i = 0; i < haystack.size() - regex_needles.size() + 1; ++i) {
42 for (size_t j = 0; j < regex_needles.size(); ++j) {
43 if (!MatchesPattern(haystack[i + j], regex_needles[j]))
44 break;
45
46 if (j == regex_needles.size() - 1)
47 return true;
48 }
49 }
50 return false;
51 }
52
53 // Returns true if a field that has |max_length| can fit the data for a field of
54 // |type|.
55 bool FieldCanFitDataForFieldType(int max_length, ServerFieldType type) {
56 if (max_length == 0)
57 return true;
58
59 switch (type) {
60 case CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR: {
61 static int kMinimum2YearCcExpLength = strlen("12/14");
62 return max_length >= kMinimum2YearCcExpLength;
63 }
64 case CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR: {
65 static int kMinimum4YearCcExpLength = strlen("12/2014");
66 return max_length >= kMinimum4YearCcExpLength;
67 }
68 default:
69 NOTREACHED();
70 return false;
71 }
72 }
73
74
75 } // namespace
76
77 // static
78 scoped_ptr<FormField> CreditCardField::Parse(AutofillScanner* scanner) {
79 if (scanner->IsEnd())
80 return nullptr;
81
82 scoped_ptr<CreditCardField> credit_card_field(new CreditCardField);
83 size_t saved_cursor = scanner->SaveCursor();
84
85 // Credit card fields can appear in many different orders.
86 // We loop until no more credit card related fields are found, see |break| at
87 // the bottom of the loop.
88 for (int fields = 0; !scanner->IsEnd(); ++fields) {
89 // Ignore gift card fields.
90 if (IsGiftCardField(scanner))
91 break;
92
93 if (!credit_card_field->cardholder_) {
94 if (ParseField(scanner,
95 base::UTF8ToUTF16(kNameOnCardRe),
96 &credit_card_field->cardholder_)) {
97 continue;
98 }
99
100 // Sometimes the cardholder field is just labeled "name". Unfortunately
101 // this is a dangerously generic word to search for, since it will often
102 // match a name (not cardholder name) field before or after credit card
103 // fields. So we search for "name" only when we've already parsed at
104 // least one other credit card field and haven't yet parsed the
105 // expiration date (which usually appears at the end).
106 if (fields > 0 &&
107 !credit_card_field->expiration_month_ &&
108 ParseField(scanner,
109 base::UTF8ToUTF16(kNameOnCardContextualRe),
110 &credit_card_field->cardholder_)) {
111 continue;
112 }
113 }
114
115 // Check for a credit card type (Visa, MasterCard, etc.) field.
116 // All CC type fields encountered so far have been of type select.
117 if (!credit_card_field->type_ && LikelyCardTypeSelectField(scanner)) {
118 credit_card_field->type_ = scanner->Cursor();
119 scanner->Advance();
120 continue;
121 }
122
123 // We look for a card security code before we look for a credit card number
124 // and match the general term "number". The security code has a plethora of
125 // names; we've seen "verification #", "verification number", "card
126 // identification number", and others listed in the regex pattern used
127 // below.
128 // Note: Some sites use type="tel" or type="number" for numerical inputs.
129 const int kMatchNumAndTel = MATCH_DEFAULT | MATCH_NUMBER | MATCH_TELEPHONE;
130 if (!credit_card_field->verification_ &&
131 ParseFieldSpecifics(scanner,
132 base::UTF8ToUTF16(kCardCvcRe),
133 kMatchNumAndTel | MATCH_PASSWORD,
134 &credit_card_field->verification_)) {
135 continue;
136 }
137
138 AutofillField* current_number_field;
139 if (ParseFieldSpecifics(scanner,
140 base::UTF8ToUTF16(kCardNumberRe),
141 kMatchNumAndTel,
142 &current_number_field)) {
143 // Avoid autofilling any credit card number field having very low or high
144 // |start_index| on the HTML form.
145 size_t start_index = 0;
146 if (!credit_card_field->numbers_.empty()) {
147 size_t last_number_field_size =
148 credit_card_field->numbers_.back()->credit_card_number_offset() +
149 credit_card_field->numbers_.back()->max_length;
150
151 // Distinguish between
152 // (a) one card split across multiple fields
153 // (b) multiple fields for multiple cards
154 // Treat this field as a part of the same card as the last field, except
155 // when doing so would cause overflow.
156 if (last_number_field_size < kMaxValidCardNumberSize)
157 start_index = last_number_field_size;
158 }
159
160 current_number_field->set_credit_card_number_offset(start_index);
161 credit_card_field->numbers_.push_back(current_number_field);
162 continue;
163 }
164
165 if (credit_card_field->ParseExpirationDate(scanner))
166 continue;
167
168 if (credit_card_field->expiration_month_ &&
169 !credit_card_field->expiration_year_ &&
170 !credit_card_field->expiration_date_) {
171 // Parsed a month but couldn't parse a year; give up.
172 scanner->RewindTo(saved_cursor);
173 return nullptr;
174 }
175
176 break;
177 }
178
179 // Some pages have a billing address field after the cardholder name field.
180 // For that case, allow only just the cardholder name field. The remaining
181 // CC fields will be picked up in a following CreditCardField.
182 if (credit_card_field->cardholder_)
183 return credit_card_field.Pass();
184
185 // On some pages, the user selects a card type using radio buttons
186 // (e.g. test page Apple Store Billing.html). We can't handle that yet,
187 // so we treat the card type as optional for now.
188 // The existence of a number or cvc in combination with expiration date is
189 // a strong enough signal that this is a credit card. It is possible that
190 // the number and name were parsed in a separate part of the form. So if
191 // the cvc and date were found independently they are returned.
192 bool has_cc_number_or_verification = (credit_card_field->verification_ ||
193 !credit_card_field->numbers_.empty());
194 bool has_date_or_mm_yy = (credit_card_field->expiration_date_ ||
195 (credit_card_field->expiration_month_ &&
196 credit_card_field->expiration_year_));
197 if (has_cc_number_or_verification && has_date_or_mm_yy)
198 return credit_card_field.Pass();
199
200 scanner->RewindTo(saved_cursor);
201 return nullptr;
202 }
203
204 // static
205 bool CreditCardField::LikelyCardMonthSelectField(AutofillScanner* scanner) {
206 if (scanner->IsEnd())
207 return false;
208
209 AutofillField* field = scanner->Cursor();
210 if (!MatchesFormControlType(field->form_control_type, MATCH_SELECT))
211 return false;
212
213 if (field->option_values.size() < 12 || field->option_values.size() > 13)
214 return false;
215
216 // Filter out years.
217 const base::string16 kNumericalYearRe =
218 base::ASCIIToUTF16("[1-9][0-9][0-9][0-9]");
219 for (const auto& value : field->option_values) {
220 if (MatchesPattern(value, kNumericalYearRe))
221 return false;
222 }
223 for (const auto& value : field->option_contents) {
224 if (MatchesPattern(value, kNumericalYearRe))
225 return false;
226 }
227
228 // Look for numerical months.
229 const base::string16 kNumericalMonthRe = base::ASCIIToUTF16("12");
230 if (MatchesPattern(field->option_values.back(), kNumericalMonthRe) ||
231 MatchesPattern(field->option_contents.back(), kNumericalMonthRe)) {
232 return true;
233 }
234
235 // Maybe do more matches here. e.g. look for (translated) December.
236
237 // Unsure? Return false.
238 return false;
239 }
240
241 // static
242 bool CreditCardField::LikelyCardYearSelectField(AutofillScanner* scanner) {
243 if (scanner->IsEnd())
244 return false;
245
246 AutofillField* field = scanner->Cursor();
247 if (!MatchesFormControlType(field->form_control_type, MATCH_SELECT))
248 return false;
249
250 const base::Time time_now = base::Time::Now();
251 base::Time::Exploded time_exploded;
252 time_now.UTCExplode(&time_exploded);
253
254 const int kYearsToMatch = 3;
255 std::vector<base::string16> years_to_check;
256 for (int year = time_exploded.year;
257 year < time_exploded.year + kYearsToMatch;
258 ++year) {
259 years_to_check.push_back(base::IntToString16(year));
260 }
261 return (FindConsecutiveStrings(years_to_check, field->option_values) ||
262 FindConsecutiveStrings(years_to_check, field->option_contents));
263 }
264
265 // static
266 bool CreditCardField::LikelyCardTypeSelectField(AutofillScanner* scanner) {
267 if (scanner->IsEnd())
268 return false;
269
270 AutofillField* field = scanner->Cursor();
271 if (!MatchesFormControlType(field->form_control_type, MATCH_SELECT))
272 return false;
273
274 return AutofillField::FindValueInSelectControl(
275 *field, l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_VISA),
276 nullptr) ||
277 AutofillField::FindValueInSelectControl(
278 *field, l10n_util::GetStringUTF16(IDS_AUTOFILL_CC_MASTERCARD),
279 nullptr);
280 }
281
282 // static
283 bool CreditCardField::IsGiftCardField(AutofillScanner* scanner) {
284 if (scanner->IsEnd())
285 return false;
286
287 size_t saved_cursor = scanner->SaveCursor();
288 if (ParseField(scanner, base::UTF8ToUTF16(kDebitCardRe), nullptr)) {
289 scanner->RewindTo(saved_cursor);
290 return false;
291 }
292 if (ParseField(scanner, base::UTF8ToUTF16(kDebitGiftCardRe), nullptr)) {
293 scanner->RewindTo(saved_cursor);
294 return false;
295 }
296
297 return ParseField(scanner, base::UTF8ToUTF16(kGiftCardRe), nullptr);
298 }
299
300 CreditCardField::CreditCardField()
301 : cardholder_(nullptr),
302 cardholder_last_(nullptr),
303 type_(nullptr),
304 verification_(nullptr),
305 expiration_month_(nullptr),
306 expiration_year_(nullptr),
307 expiration_date_(nullptr),
308 exp_year_type_(CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR) {
309 }
310
311 CreditCardField::~CreditCardField() {
312 }
313
314 bool CreditCardField::ClassifyField(ServerFieldTypeMap* map) const {
315 bool ok = true;
316 for (size_t index = 0; index < numbers_.size(); ++index) {
317 ok = ok && AddClassification(numbers_[index], CREDIT_CARD_NUMBER, map);
318 }
319
320 ok = ok && AddClassification(type_, CREDIT_CARD_TYPE, map);
321 ok = ok &&
322 AddClassification(verification_, CREDIT_CARD_VERIFICATION_CODE, map);
323
324 // If the heuristics detected first and last name in separate fields,
325 // then ignore both fields. Putting them into separate fields is probably
326 // wrong, because the credit card can also contain a middle name or middle
327 // initial.
328 if (cardholder_last_ == nullptr)
329 ok = ok && AddClassification(cardholder_, CREDIT_CARD_NAME, map);
330
331 if (expiration_date_) {
332 DCHECK(!expiration_month_);
333 DCHECK(!expiration_year_);
334 ok =
335 ok && AddClassification(expiration_date_, GetExpirationYearType(), map);
336 } else {
337 ok = ok && AddClassification(expiration_month_, CREDIT_CARD_EXP_MONTH, map);
338 ok =
339 ok && AddClassification(expiration_year_, GetExpirationYearType(), map);
340 }
341
342 return ok;
343 }
344
345 bool CreditCardField::ParseExpirationDate(AutofillScanner* scanner) {
346 if (!expiration_date_ &&
347 base::LowerCaseEqualsASCII(scanner->Cursor()->form_control_type,
348 "month")) {
349 expiration_date_ = scanner->Cursor();
350 expiration_month_ = nullptr;
351 expiration_year_ = nullptr;
352 scanner->Advance();
353 return true;
354 }
355
356 if (expiration_month_ || expiration_date_)
357 return false;
358
359 // First try to parse split month/year expiration fields by looking for a
360 // pair of select fields that look like month/year.
361 size_t month_year_saved_cursor = scanner->SaveCursor();
362
363 if (LikelyCardMonthSelectField(scanner)) {
364 expiration_month_ = scanner->Cursor();
365 scanner->Advance();
366 if (LikelyCardYearSelectField(scanner)) {
367 expiration_year_ = scanner->Cursor();
368 scanner->Advance();
369 return true;
370 }
371 expiration_month_ = nullptr;
372 expiration_year_ = nullptr;
373 }
374
375 // If that fails, do a general regex search.
376 scanner->RewindTo(month_year_saved_cursor);
377 const int kMatchTelAndSelect = MATCH_DEFAULT | MATCH_TELEPHONE | MATCH_SELECT;
378 if (ParseFieldSpecifics(scanner,
379 base::UTF8ToUTF16(kExpirationMonthRe),
380 kMatchTelAndSelect,
381 &expiration_month_) &&
382 ParseFieldSpecifics(scanner,
383 base::UTF8ToUTF16(kExpirationYearRe),
384 kMatchTelAndSelect,
385 &expiration_year_)) {
386 return true;
387 }
388
389 // If that fails, look for just MM/YY(YY).
390 scanner->RewindTo(month_year_saved_cursor);
391 if (ParseFieldSpecifics(scanner,
392 base::ASCIIToUTF16("^mm$"),
393 kMatchTelAndSelect,
394 &expiration_month_) &&
395 ParseFieldSpecifics(scanner,
396 base::ASCIIToUTF16("^(yy|yyyy)$"),
397 kMatchTelAndSelect,
398 &expiration_year_)) {
399 return true;
400 }
401
402 // If that fails, try to parse a combined expiration field.
403 // We allow <select> fields, because they're used e.g. on qvc.com.
404 scanner->RewindTo(month_year_saved_cursor);
405
406 // Bail out if the field cannot fit a 2-digit year expiration date.
407 const int current_field_max_length = scanner->Cursor()->max_length;
408 if (!FieldCanFitDataForFieldType(current_field_max_length,
409 CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR)) {
410 return false;
411 }
412
413 // Try to look for a 2-digit year expiration date.
414 if (ParseFieldSpecifics(scanner,
415 base::UTF8ToUTF16(kExpirationDate2DigitYearRe),
416 kMatchTelAndSelect,
417 &expiration_date_)) {
418 exp_year_type_ = CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR;
419 expiration_month_ = nullptr;
420 return true;
421 }
422
423 // Try to look for a generic expiration date field. (2 or 4 digit year)
424 if (ParseFieldSpecifics(scanner,
425 base::UTF8ToUTF16(kExpirationDateRe),
426 kMatchTelAndSelect,
427 &expiration_date_)) {
428 // If such a field exists, but it cannot fit a 4-digit year expiration
429 // date, then the likely possibility is that it is a 2-digit year expiration
430 // date.
431 if (!FieldCanFitDataForFieldType(current_field_max_length,
432 CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR)) {
433 exp_year_type_ = CREDIT_CARD_EXP_DATE_2_DIGIT_YEAR;
434 }
435 expiration_month_ = nullptr;
436 return true;
437 }
438
439 // Try to look for a 4-digit year expiration date.
440 if (FieldCanFitDataForFieldType(current_field_max_length,
441 CREDIT_CARD_EXP_DATE_4_DIGIT_YEAR) &&
442 ParseFieldSpecifics(scanner,
443 base::UTF8ToUTF16(kExpirationDate4DigitYearRe),
444 kMatchTelAndSelect,
445 &expiration_date_)) {
446 expiration_month_ = nullptr;
447 return true;
448 }
449
450 return false;
451 }
452
453 ServerFieldType CreditCardField::GetExpirationYearType() const {
454 return (expiration_date_
455 ? exp_year_type_
456 : ((expiration_year_ && expiration_year_->max_length == 2)
457 ? CREDIT_CARD_EXP_2_DIGIT_YEAR
458 : CREDIT_CARD_EXP_4_DIGIT_YEAR));
459 }
460
461 } // namespace autofill