1 files changed, 182 insertions, 0 deletions

diff --git a/chromium/third_party/blink/renderer/core/feature_policy/document_policy_parser.cc b/chromium/third_party/blink/renderer/core/feature_policy/document_policy_parser.cc
new file mode 100644
index 00000000000..41fa9ea07c1
--- /dev/null
+++ b/chromium/third_party/blink/renderer/core/feature_policy/document_policy_parser.cc
@@ -0,0 +1,182 @@
+// Copyright 2020 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "third_party/blink/renderer/core/feature_policy/document_policy_parser.h"
+
+#include "net/http/structured_headers.h"
+#include "third_party/blink/public/mojom/feature_policy/policy_value.mojom-blink-forward.h"
+
+namespace blink {
+
+namespace {
+
+base::Optional<PolicyValue> ItemToPolicyValue(
+    const net::structured_headers::Item& item) {
+  switch (item.Type()) {
+    case net::structured_headers::Item::ItemType::kIntegerType:
+      return PolicyValue(static_cast<double>(item.GetInteger()));
+    case net::structured_headers::Item::ItemType::kDecimalType:
+      return PolicyValue(item.GetDecimal());
+    default:
+      return base::nullopt;
+  }
+}
+
+base::Optional<std::string> ItemToString(
+    const net::structured_headers::Item& item) {
+  if (item.Type() != net::structured_headers::Item::ItemType::kTokenType)
+    return base::nullopt;
+  return item.GetString();
+}
+
+struct ParsedFeature {
+  mojom::blink::DocumentPolicyFeature feature;
+  PolicyValue policy_value;
+  base::Optional<std::string> endpoint_group;
+};
+
+base::Optional<ParsedFeature> ParseFeature(
+    const net::structured_headers::ParameterizedMember& directive,
+    const DocumentPolicyNameFeatureMap& name_feature_map,
+    const DocumentPolicyFeatureInfoMap& feature_info_map) {
+  ParsedFeature parsed_feature;
+
+  // Directives must not be inner lists.
+  if (directive.member_is_inner_list)
+    return base::nullopt;
+
+  const net::structured_headers::Item& feature_token =
+      directive.member.front().item;
+
+  // The item in directive should be token type.
+  if (!feature_token.is_token())
+    return base::nullopt;
+
+  // No directive can currently have more than two parameters, including
+  // 'report-to'.
+  if (directive.params.size() > 2)
+    return base::nullopt;
+
+  std::string feature_name = feature_token.GetString();
+  auto feature_iter = name_feature_map.find(feature_name);
+
+  // Parse feature_name string to DocumentPolicyFeature.
+  if (feature_iter != name_feature_map.end()) {
+    parsed_feature.feature = feature_iter->second;
+  } else if (feature_name.size() > 3 && feature_name.substr(0, 3) == "no-") {
+    // Handle "no-" prefix.
+    feature_iter = name_feature_map.find(feature_name.substr(3));
+    if (feature_iter != name_feature_map.end()) {
+      parsed_feature.feature = feature_iter->second;
+      // "no-" prefix is exclusively for policy with Boolean policy value.
+      if (feature_info_map.at(parsed_feature.feature).default_value.Type() !=
+          mojom::blink::PolicyValueType::kBool)
+        return base::nullopt;
+      parsed_feature.policy_value = PolicyValue(false);
+    } else {
+      return base::nullopt;  // Unrecognized feature name.
+    }
+  } else {
+    return base::nullopt;  // Unrecognized feature name.
+  }
+
+  // Handle boolean value.
+  // For document policy that has a boolean policy value, policy value is not
+  // specified as directive param. Instead, the value is expressed using "no-"
+  // prefix, e.g. for feature X, "X" itself in header should be parsed as true,
+  // "no-X" should be parsed as false.
+  if (feature_info_map.at(parsed_feature.feature).default_value.Type() ==
+          mojom::blink::PolicyValueType::kBool &&
+      parsed_feature.policy_value.Type() ==
+          mojom::blink::PolicyValueType::kNull)
+    parsed_feature.policy_value = PolicyValue(true);
+
+  for (const auto& param : directive.params) {
+    const std::string& param_name = param.first;
+    // Handle "report-to" param. "report-to" is an optional param for
+    // Document-Policy header that specifies the endpoint group that the policy
+    // should send report to. If left unspecified, no report will be send upon
+    // policy violation.
+    if (param_name == "report-to") {
+      base::Optional<std::string> endpoint_group = ItemToString(param.second);
+      if (!endpoint_group)
+        return base::nullopt;
+      parsed_feature.endpoint_group = *endpoint_group;
+    } else {
+      // Handle policy value. For all non-boolean policy value types, they
+      // should be specified as FeatureX;f=xxx, with f representing the
+      // |feature_param_name| and xxx representing policy value.
+
+      // |param_name| does not match param_name in config.
+      if (param_name !=
+          feature_info_map.at(parsed_feature.feature).feature_param_name)
+        return base::nullopt;
+      // |parsed_feature.policy_value| should not be assigned yet.
+      DCHECK(parsed_feature.policy_value.Type() ==
+             mojom::blink::PolicyValueType::kNull);
+
+      base::Optional<PolicyValue> policy_value =
+          ItemToPolicyValue(param.second);
+      if (!policy_value)
+        return base::nullopt;
+      parsed_feature.policy_value = *policy_value;
+    }
+  }
+
+  // |parsed_feature.policy_value| should be initialized.
+  if (parsed_feature.policy_value.Type() ==
+      mojom::blink::PolicyValueType::kNull)
+    return base::nullopt;
+
+  return parsed_feature;
+}
+
+}  // namespace
+
+// static
+base::Optional<DocumentPolicy::ParsedDocumentPolicy>
+DocumentPolicyParser::Parse(const String& policy_string) {
+  return ParseInternal(policy_string, GetDocumentPolicyNameFeatureMap(),
+                       GetDocumentPolicyFeatureInfoMap(),
+                       GetAvailableDocumentPolicyFeatures());
+}
+
+// static
+base::Optional<DocumentPolicy::ParsedDocumentPolicy>
+DocumentPolicyParser::ParseInternal(
+    const String& policy_string,
+    const DocumentPolicyNameFeatureMap& name_feature_map,
+    const DocumentPolicyFeatureInfoMap& feature_info_map,
+    const DocumentPolicyFeatureSet& available_features) {
+  auto root = net::structured_headers::ParseList(policy_string.Ascii());
+  if (!root)
+    return base::nullopt;
+
+  DocumentPolicy::ParsedDocumentPolicy parse_result;
+  for (const net::structured_headers::ParameterizedMember& directive :
+       root.value()) {
+    base::Optional<ParsedFeature> parsed_feature_option =
+        ParseFeature(directive, name_feature_map, feature_info_map);
+    // If a feature fails parsing, ignore the entry.
+    if (!parsed_feature_option)
+      continue;
+
+    ParsedFeature parsed_feature = *parsed_feature_option;
+
+    // If feature is not available, i.e. not enabled, ignore the entry.
+    if (available_features.find(parsed_feature.feature) ==
+        available_features.end())
+      continue;
+
+    parse_result.feature_state.emplace(parsed_feature.feature,
+                                       std::move(parsed_feature.policy_value));
+    if (parsed_feature.endpoint_group) {
+      parse_result.endpoint_map.emplace(parsed_feature.feature,
+                                        *parsed_feature.endpoint_group);
+    }
+  }
+  return parse_result;
+}
+
+}  // namespace blink