summaryrefslogtreecommitdiff
path: root/chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h
diff options
context:
space:
mode:
Diffstat (limited to 'chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h')
-rw-r--r--chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h152
1 files changed, 152 insertions, 0 deletions
diff --git a/chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h b/chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h
new file mode 100644
index 00000000000..a5fb3ca2c87
--- /dev/null
+++ b/chromium/third_party/blink/renderer/platform/loader/subresource_integrity.h
@@ -0,0 +1,152 @@
+// Copyright 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef THIRD_PARTY_BLINK_RENDERER_PLATFORM_LOADER_SUBRESOURCE_INTEGRITY_H_
+#define THIRD_PARTY_BLINK_RENDERER_PLATFORM_LOADER_SUBRESOURCE_INTEGRITY_H_
+
+#include "base/gtest_prod_util.h"
+#include "third_party/blink/renderer/platform/loader/fetch/integrity_metadata.h"
+#include "third_party/blink/renderer/platform/platform_export.h"
+#include "third_party/blink/renderer/platform/wtf/allocator.h"
+#include "third_party/blink/renderer/platform/wtf/text/wtf_string.h"
+#include "third_party/blink/renderer/platform/wtf/vector.h"
+
+namespace blink {
+
+class KURL;
+class Resource;
+
+class PLATFORM_EXPORT SubresourceIntegrity final {
+ STATIC_ONLY(SubresourceIntegrity);
+
+ public:
+ class PLATFORM_EXPORT ReportInfo final {
+ public:
+ enum class UseCounterFeature {
+ kSRIElementWithMatchingIntegrityAttribute,
+ kSRIElementWithNonMatchingIntegrityAttribute,
+ kSRIElementIntegrityAttributeButIneligible,
+ kSRIElementWithUnparsableIntegrityAttribute,
+ kSRISignatureCheck,
+ kSRISignatureSuccess,
+ };
+
+ void AddUseCount(UseCounterFeature);
+ void AddConsoleErrorMessage(const String&);
+ void Clear();
+
+ const Vector<UseCounterFeature>& UseCounts() const { return use_counts_; }
+ const Vector<String>& ConsoleErrorMessages() const {
+ return console_error_messages_;
+ }
+
+ private:
+ Vector<UseCounterFeature> use_counts_;
+ Vector<String> console_error_messages_;
+ };
+
+ enum IntegrityParseResult {
+ kIntegrityParseValidResult,
+ kIntegrityParseNoValidResult
+ };
+
+ // Determine which SRI features to support when parsing integrity attributes.
+ enum class IntegrityFeatures {
+ kDefault, // Default: All sha* hash codes.
+ kSignatures // Also support the ed25519 signature scheme.
+ };
+
+ // The version with the IntegrityMetadataSet passed as the first argument
+ // assumes that the integrity attribute has already been parsed, and the
+ // IntegrityMetadataSet represents the result of that parsing.
+ static bool CheckSubresourceIntegrity(const IntegrityMetadataSet&,
+ const char* content,
+ size_t content_size,
+ const KURL& resource_url,
+ const Resource&,
+ ReportInfo&);
+ static bool CheckSubresourceIntegrity(const String&,
+ IntegrityFeatures,
+ const char* content,
+ size_t content_size,
+ const KURL& resource_url,
+ ReportInfo&);
+
+ // The IntegrityMetadataSet arguments are out parameters which contain the
+ // set of all valid, parsed metadata from |attribute|.
+ static IntegrityParseResult ParseIntegrityAttribute(
+ const WTF::String& attribute,
+ IntegrityFeatures,
+ IntegrityMetadataSet&);
+ static IntegrityParseResult ParseIntegrityAttribute(
+ const WTF::String& attribute,
+ IntegrityFeatures,
+ IntegrityMetadataSet&,
+ ReportInfo*);
+
+ private:
+ friend class SubresourceIntegrityTest;
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest, Parsing);
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest, ParseAlgorithm);
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest, ParseHeader);
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest, Prioritization);
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest, FindBestAlgorithm);
+ FRIEND_TEST_ALL_PREFIXES(SubresourceIntegrityTest,
+ GetCheckFunctionForAlgorithm);
+
+ // The core implementation for all CheckSubresoureIntegrity functions.
+ static bool CheckSubresourceIntegrityImpl(const IntegrityMetadataSet&,
+ const char*,
+ size_t,
+ const KURL& resource_url,
+ const String integrity_header,
+ ReportInfo&);
+
+ enum AlgorithmParseResult {
+ kAlgorithmValid,
+ kAlgorithmUnparsable,
+ kAlgorithmUnknown
+ };
+
+ static IntegrityAlgorithm FindBestAlgorithm(const IntegrityMetadataSet&);
+
+ typedef bool (*CheckFunction)(const IntegrityMetadata&,
+ const char*,
+ size_t,
+ const String&);
+ static CheckFunction GetCheckFunctionForAlgorithm(IntegrityAlgorithm);
+
+ static bool CheckSubresourceIntegrityDigest(const IntegrityMetadata&,
+ const char*,
+ size_t,
+ const String& integrity_header);
+ static bool CheckSubresourceIntegritySignature(
+ const IntegrityMetadata&,
+ const char*,
+ size_t,
+ const String& integrity_header);
+
+ static AlgorithmParseResult ParseAttributeAlgorithm(const UChar*& begin,
+ const UChar* end,
+ IntegrityFeatures,
+ IntegrityAlgorithm&);
+ static AlgorithmParseResult ParseIntegrityHeaderAlgorithm(
+ const UChar*& begin,
+ const UChar* end,
+ IntegrityAlgorithm&);
+ typedef std::pair<const char*, IntegrityAlgorithm> AlgorithmPrefixPair;
+ static AlgorithmParseResult ParseAlgorithmPrefix(
+ const UChar*& string_position,
+ const UChar* string_end,
+ const AlgorithmPrefixPair* prefix_table,
+ size_t prefix_table_size,
+ IntegrityAlgorithm&);
+ static bool ParseDigest(const UChar*& begin,
+ const UChar* end,
+ String& digest);
+};
+
+} // namespace blink
+
+#endif
View Lorry Controller Status