1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
|
// Copyright 2019 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_DOWNLOAD_INSECURE_DOWNLOAD_BLOCKING_H_
#define CHROME_BROWSER_DOWNLOAD_INSECURE_DOWNLOAD_BLOCKING_H_
#include <string>
#include "base/files/file_path.h"
#include "chrome/browser/profiles/profile.h"
#include "components/download/public/common/download_item.h"
// Each download is recorded with two histograms.
// This histogram always summarizes the type of download. See
// InsecureDownloadSecurityStatus.
inline constexpr char kInsecureDownloadHistogramName[] =
"Download.InsecureBlocking.Totals";
// Base name (prefix) for histogram recording the file extension of the
// download. One histogram is recorded per download. See
// InsecureDownloadExtensions for file extensions recorded.
inline constexpr char kInsecureDownloadExtensionHistogramBase[] =
"Download.InsecureBlocking.Extensions";
// Interfixes for histogram names.
inline constexpr char kInsecureDownloadExtensionInitiatorUnknown[] =
"InitiatorUnknown";
inline constexpr char kInsecureDownloadExtensionInitiatorSecure[] =
"InitiatorKnownSecure";
inline constexpr char kInsecureDownloadExtensionInitiatorInsecure[] =
"InitiatorKnownInsecure";
inline constexpr char kInsecureDownloadExtensionInitiatorInferredSecure[] =
"InitiatorInferredSecure";
inline constexpr char kInsecureDownloadExtensionInitiatorInferredInsecure[] =
"InitiatorInferredInsecure";
inline constexpr char kInsecureDownloadExtensionInitiatorInsecureNonUnique[] =
"InitiatorInsecureNonUnique";
// Suffixes for histogram names.
inline constexpr char kInsecureDownloadHistogramTargetSecure[] =
"DownloadSecure";
inline constexpr char kInsecureDownloadHistogramTargetInsecure[] =
"DownloadInsecure";
// These values are logged to UMA. Entries should not be renumbered and numeric
// values should never be reused. Please keep in sync with
// "InsecureDownloadSecurityStatus" in src/tools/metrics/histograms/enums.xml.
enum class InsecureDownloadSecurityStatus {
kInitiatorUnknownFileSecure = 0,
kInitiatorUnknownFileInsecure = 1,
kInitiatorSecureFileSecure = 2,
kInitiatorSecureFileInsecure = 3,
kInitiatorInsecureFileSecure = 4,
kInitiatorInsecureFileInsecure = 5,
kInitiatorInferredSecureFileSecure = 6,
kInitiatorInferredSecureFileInsecure = 7,
kInitiatorInferredInsecureFileSecure = 8,
kInitiatorInferredInsecureFileInsecure = 9,
kDownloadIgnored = 10,
kInitiatorInsecureNonUniqueFileSecure = 11,
kInitiatorInsecureNonUniqueFileInsecure = 12,
kMaxValue = kInitiatorInsecureNonUniqueFileInsecure,
};
// These values are logged to UMA. Entries should not be renumbered and numeric
// values should never be reused. Please keep in sync with
// "InsecureDownloadExtensions" in src/tools/metrics/histograms/enums.xml.
enum class InsecureDownloadExtensions {
kUnknown = 0,
kNone = 1,
kImage = 2,
kArchive = 3,
kAudio = 4,
kVideo = 5,
kMSExecutable = 6,
kMacExecutable = 7,
kWeb = 8,
kText = 9,
kMSOffice = 10,
kPDF = 11,
kCRX = 12,
kAPK = 13,
kBIN = 14,
kSH = 15,
kVB = 16,
kSWF = 17,
kICO = 18,
kEPUB = 19,
kICS = 20,
kSVG = 21,
kTest = 22, // Test extensions, e.g. .silently_blocked.
kMaxValue = kTest,
};
struct ExtensionMapping {
const char* const extension;
const InsecureDownloadExtensions value;
};
// Maps a file's extension to its enum bucket for metrics. Since these are
// logged to UMA, they shouldn't be changed unless there's an egregious error.
// This list aims to cover the common download cases. Extensions can be added as
// needed, but the list need not be comprehensive. It is used to track risky
// download types. Low-risk extensions are only categorized for completeness.
static const ExtensionMapping kExtensionsToEnum[] = {
{"png", InsecureDownloadExtensions::kImage},
{"jpg", InsecureDownloadExtensions::kImage},
{"gif", InsecureDownloadExtensions::kImage},
{"bmp", InsecureDownloadExtensions::kImage},
{"webp", InsecureDownloadExtensions::kImage},
{"gz", InsecureDownloadExtensions::kArchive},
{"gzip", InsecureDownloadExtensions::kArchive},
{"zip", InsecureDownloadExtensions::kArchive},
{"bz2", InsecureDownloadExtensions::kArchive},
{"7z", InsecureDownloadExtensions::kArchive},
{"rar", InsecureDownloadExtensions::kArchive},
{"tar", InsecureDownloadExtensions::kArchive},
{"mp3", InsecureDownloadExtensions::kAudio},
{"aac", InsecureDownloadExtensions::kAudio},
{"oga", InsecureDownloadExtensions::kAudio},
{"flac", InsecureDownloadExtensions::kAudio},
{"wav", InsecureDownloadExtensions::kAudio},
{"m4a", InsecureDownloadExtensions::kAudio},
{"webm", InsecureDownloadExtensions::kVideo},
{"mp4", InsecureDownloadExtensions::kVideo},
{"m4p", InsecureDownloadExtensions::kVideo},
{"m4v", InsecureDownloadExtensions::kVideo},
{"mpg", InsecureDownloadExtensions::kVideo},
{"mpeg", InsecureDownloadExtensions::kVideo},
{"mpe", InsecureDownloadExtensions::kVideo},
{"mpv", InsecureDownloadExtensions::kVideo},
{"ogg", InsecureDownloadExtensions::kVideo},
{"exe", InsecureDownloadExtensions::kMSExecutable},
{"com", InsecureDownloadExtensions::kMSExecutable},
{"scr", InsecureDownloadExtensions::kMSExecutable},
{"msi", InsecureDownloadExtensions::kMSExecutable},
{"dmg", InsecureDownloadExtensions::kMacExecutable},
{"pkg", InsecureDownloadExtensions::kMacExecutable},
{"html", InsecureDownloadExtensions::kWeb},
{"htm", InsecureDownloadExtensions::kWeb},
{"css", InsecureDownloadExtensions::kWeb},
{"js", InsecureDownloadExtensions::kWeb},
{"xml", InsecureDownloadExtensions::kWeb},
{"txt", InsecureDownloadExtensions::kText},
{"json", InsecureDownloadExtensions::kText},
{"csv", InsecureDownloadExtensions::kText},
{"tsv", InsecureDownloadExtensions::kText},
{"sql", InsecureDownloadExtensions::kText},
{"doc", InsecureDownloadExtensions::kMSOffice},
{"dot", InsecureDownloadExtensions::kMSOffice},
{"wbk", InsecureDownloadExtensions::kMSOffice},
{"docx", InsecureDownloadExtensions::kMSOffice},
{"docm", InsecureDownloadExtensions::kMSOffice},
{"dotx", InsecureDownloadExtensions::kMSOffice},
{"dotm", InsecureDownloadExtensions::kMSOffice},
{"docb", InsecureDownloadExtensions::kMSOffice},
{"xls", InsecureDownloadExtensions::kMSOffice},
{"xlt", InsecureDownloadExtensions::kMSOffice},
{"xlm", InsecureDownloadExtensions::kMSOffice},
{"xlsx", InsecureDownloadExtensions::kMSOffice},
{"xlsm", InsecureDownloadExtensions::kMSOffice},
{"xltx", InsecureDownloadExtensions::kMSOffice},
{"xltm", InsecureDownloadExtensions::kMSOffice},
{"xlsb", InsecureDownloadExtensions::kMSOffice},
{"xll", InsecureDownloadExtensions::kMSOffice},
{"xlw", InsecureDownloadExtensions::kMSOffice},
{"ppt", InsecureDownloadExtensions::kMSOffice},
{"pot", InsecureDownloadExtensions::kMSOffice},
{"pps", InsecureDownloadExtensions::kMSOffice},
{"pptx", InsecureDownloadExtensions::kMSOffice},
{"pptm", InsecureDownloadExtensions::kMSOffice},
{"potx", InsecureDownloadExtensions::kMSOffice},
{"potm", InsecureDownloadExtensions::kMSOffice},
{"ppam", InsecureDownloadExtensions::kMSOffice},
{"ppsx", InsecureDownloadExtensions::kMSOffice},
{"ppsm", InsecureDownloadExtensions::kMSOffice},
{"sldx", InsecureDownloadExtensions::kMSOffice},
{"sldm", InsecureDownloadExtensions::kMSOffice},
{"pdf", InsecureDownloadExtensions::kPDF},
{"crx", InsecureDownloadExtensions::kCRX},
{"apk", InsecureDownloadExtensions::kAPK},
{"bin", InsecureDownloadExtensions::kBIN},
{"sh", InsecureDownloadExtensions::kSH},
{"vb", InsecureDownloadExtensions::kVB},
{"swf", InsecureDownloadExtensions::kSWF},
{"ico", InsecureDownloadExtensions::kICO},
{"epub", InsecureDownloadExtensions::kEPUB},
{"ics", InsecureDownloadExtensions::kICS},
{"svg", InsecureDownloadExtensions::kSVG},
{"silently_blocked_for_testing", InsecureDownloadExtensions::kTest},
{"warn_for_testing", InsecureDownloadExtensions::kTest},
{"dont_warn_for_testing", InsecureDownloadExtensions::kTest},
};
// Convenience function to assemble a histogram name for download blocking.
// |initiator| is one of kInsecureDownloadExtensionInitiator* above.
// |download| is one of kInsecureDownloadHistogramTarget* above.
inline std::string GetDLBlockingHistogramName(const std::string& initiator,
const std::string& download) {
return std::string(kInsecureDownloadExtensionHistogramBase)
.append(".")
.append(initiator)
.append(".")
.append(download);
}
// Returns the correct insecure download blocking behavior for the given
// |item| saved to |path|. Controlled by kTreatUnsafeDownloadsAsActive.
download::DownloadItem::InsecureDownloadStatus
GetInsecureDownloadStatusForDownload(Profile* profile,
const base::FilePath& path,
const download::DownloadItem* item);
#endif // CHROME_BROWSER_DOWNLOAD_INSECURE_DOWNLOAD_BLOCKING_H_
|
