We use cookies to ensure you get the best experience on our website
Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
0ct0pu5
/
bromite
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: 509bd87548
Ramos Etiquetas
bromite
/
build
/
patches
/
Block-all-connection-requests-with-qjz9zk-in-the-domain-name-or-with-a-trk-scheme.patch

Block-all-connection-requests-with-qjz9zk-in-the-domain-name-or-with-a-trk-scheme.patch 12 KB
Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278 
  1. From: csagan5 <32685696+csagan5@users.noreply.github.com>
    2. 

  2. Date: Wed, 30 Oct 2019 11:50:13 +0100
    3. 

  3. Subject: Block all connection requests with 'qjz9zk' in the domain name or
    4. 

  4.  with a 'trk:' scheme.
    5. 

  5. 

  6. An info bar is displayed unless the --disable-trkbar command-line flag or the chrome://flag option is used.
    7. 

  7. This patch is based on Iridium's 'net: add "trk:" scheme and help identify URLs being retrieved'
    8. 

  8. FILE:Block-all-connection-requests-with-qjz9zk-in-the-domain-name-or-with-a-trk-scheme.patch
    9. 

  9. ---
    10. 

  10. diff --git a/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc b/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc
    11. 

  11. index d5c3dd451a..431f242e27 100644
    12. 

  12. --- a/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc
    13. 

  13. +++ b/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc
    14. 

  14. @@ -56,6 +56,7 @@ ChromeAutocompleteSchemeClassifier::GetInputTypeForScheme(
    15. 

  15.    if (base::IsStringASCII(scheme) &&
    16. 

  16.        (ProfileIOData::IsHandledProtocol(scheme) ||
    17. 

  17.         base::LowerCaseEqualsASCII(scheme, content::kViewSourceScheme) ||
    18. 

  18. +       base::LowerCaseEqualsASCII(scheme, url::kTraceScheme) ||
    19. 

  19.         base::LowerCaseEqualsASCII(scheme, url::kJavaScriptScheme) ||
    20. 

  20.         base::LowerCaseEqualsASCII(scheme, url::kDataScheme))) {
    21. 

  21.      return metrics::OmniboxInputType::URL;
    22. 

  22. diff --git a/chrome/browser/history/history_utils.cc b/chrome/browser/history/history_utils.cc
    23. 

  23. index 3f54bbb409..8971b7e96a 100644
    24. 

  24. --- a/chrome/browser/history/history_utils.cc
    25. 

  25. +++ b/chrome/browser/history/history_utils.cc
    26. 

  26. @@ -21,6 +21,7 @@ bool CanAddURLToHistory(const GURL& url) {
    27. 

  27.        url.SchemeIs(content::kChromeDevToolsScheme) ||
    28. 

  28.        url.SchemeIs(content::kChromeUIScheme) ||
    29. 

  29.        url.SchemeIs(content::kViewSourceScheme) ||
    30. 

  30. +      url.SchemeIs(url::kTraceScheme) ||
    31. 

  31.        url.SchemeIs(chrome::kChromeNativeScheme) ||
    32. 

  32.        url.SchemeIs(chrome::kChromeSearchScheme) ||
    33. 

  33.        url.SchemeIs(dom_distiller::kDomDistillerScheme))
    34. 

  34. diff --git a/chrome/browser/ui/singleton_tabs.cc b/chrome/browser/ui/singleton_tabs.cc
    35. 

  35. index 6d99c68055..3d4f0ccfae 100644
    36. 

  36. --- a/chrome/browser/ui/singleton_tabs.cc
    37. 

  37. +++ b/chrome/browser/ui/singleton_tabs.cc
    38. 

  38. @@ -99,7 +99,8 @@ int GetIndexOfExistingTab(Browser* browser, const NavigateParams& params) {
    39. 

  39.  
    40. 

  40.      // Skip view-source tabs. This is needed because RewriteURLIfNecessary
    41. 

  41.      // removes the "view-source:" scheme which leads to incorrect matching.
    42. 

  42. -    if (tab_url.SchemeIs(content::kViewSourceScheme))
    43. 

  43. +    if (tab_url.SchemeIs(content::kViewSourceScheme) ||
    44. 

  44. +        tab_url.SchemeIs(url::kTraceScheme))
    45. 

  45.        continue;
    46. 

  46.  
    47. 

  47.      GURL rewritten_tab_url = tab_url;
    48. 

  48. diff --git a/components/omnibox/browser/autocomplete_input.cc b/components/omnibox/browser/autocomplete_input.cc
    49. 

  49. index 1a3902c994..294d5980fb 100644
    50. 

  50. --- a/components/omnibox/browser/autocomplete_input.cc
    51. 

  51. +++ b/components/omnibox/browser/autocomplete_input.cc
    52. 

  52. @@ -526,7 +526,8 @@ void AutocompleteInput::ParseForEmphasizeComponents(
    53. 

  53.    // For the view-source and blob schemes, we should emphasize the host of the
    54. 

  54.    // URL qualified by the view-source or blob prefix.
    55. 

  55.    if ((base::LowerCaseEqualsASCII(scheme_str, kViewSourceScheme) ||
    56. 

  56. -       base::LowerCaseEqualsASCII(scheme_str, url::kBlobScheme)) &&
    57. 

  57. +       base::LowerCaseEqualsASCII(scheme_str, url::kBlobScheme) ||
    58. 

  58. +       base::LowerCaseEqualsASCII(scheme_str, url::kTraceScheme)) &&
    59. 

  59.        (static_cast<int>(text.length()) > after_scheme_and_colon)) {
    60. 

  60.      // Obtain the URL prefixed by view-source or blob and parse it.
    61. 

  61.      base::string16 real_url(text.substr(after_scheme_and_colon));
    62. 

  62. @@ -599,7 +600,9 @@ int AutocompleteInput::NumNonHostComponents(const url::Parsed& parts) {
    63. 

  63.  bool AutocompleteInput::HasHTTPScheme(const base::string16& input) {
    64. 

  64.    std::string utf8_input(base::UTF16ToUTF8(input));
    65. 

  65.    url::Component scheme;
    66. 

  66. -  if (url::FindAndCompareScheme(utf8_input, kViewSourceScheme, &scheme)) {
    67. 

  67. +  if (url::FindAndCompareScheme(utf8_input, url::kTraceScheme, &scheme)) {
    68. 

  68. +    return false;
    69. 

  69. +  } else if (url::FindAndCompareScheme(utf8_input, kViewSourceScheme, &scheme)) {
    70. 

  70.      utf8_input.erase(0, scheme.end() + 1);
    71. 

  71.    }
    72. 

  72.    return url::FindAndCompareScheme(utf8_input, url::kHttpScheme, nullptr);
    73. 

  73. diff --git a/components/url_formatter/url_fixer.cc b/components/url_formatter/url_fixer.cc
    74. 

  74. index 125a2f1e8e..528d03ad06 100644
    75. 

  75. --- a/components/url_formatter/url_fixer.cc
    76. 

  76. +++ b/components/url_formatter/url_fixer.cc
    77. 

  77. @@ -560,6 +560,10 @@ GURL FixupURL(const std::string& text, const std::string& desired_tld) {
    78. 

  78.      }
    79. 

  79.    }
    80. 

  80.  
    81. 

  81. +  if (scheme == url::kTraceScheme) {
    82. 

  82. +    return GURL();
    83. 

  83. +  }
    84. 

  84. +
    85. 

  85.    // We handle the file scheme separately.
    86. 

  86.    if (scheme == url::kFileScheme)
    87. 

  87.      return GURL(parts.scheme.is_valid() ? text : FixupPath(text));
    88. 

  88. diff --git a/content/browser/child_process_security_policy_impl.cc b/content/browser/child_process_security_policy_impl.cc
    89. 

  89. index d2d167ebf5..8eec489e7e 100644
    90. 

  90. --- a/content/browser/child_process_security_policy_impl.cc
    91. 

  91. +++ b/content/browser/child_process_security_policy_impl.cc
    92. 

  92. @@ -762,6 +762,7 @@ ChildProcessSecurityPolicyImpl::ChildProcessSecurityPolicyImpl() {
    93. 

  93.  #endif  // BUILDFLAG(ENABLE_WEBSOCKETS)
    94. 

  94.    RegisterWebSafeScheme(url::kFtpScheme);
    95. 

  95.    RegisterWebSafeScheme(url::kDataScheme);
    96. 

  96. +  RegisterWebSafeScheme(url::kTraceScheme);
    97. 

  97.    RegisterWebSafeScheme("feed");
    98. 

  98.  
    99. 

  99.    // TODO(nick): https://crbug.com/651534 blob: and filesystem: schemes embed
    100. 

  100. diff --git a/net/BUILD.gn b/net/BUILD.gn
    101. 

  101. index d214ac4959..11de6308ee 100644
    102. 

  102. --- a/net/BUILD.gn
    103. 

  103. +++ b/net/BUILD.gn
    104. 

  104. @@ -1086,6 +1086,8 @@ component("net") {
    105. 

  105.        "url_request/report_sender.h",
    106. 

  106.        "url_request/static_http_user_agent_settings.cc",
    107. 

  107.        "url_request/static_http_user_agent_settings.h",
    108. 

  108. +      "url_request/trk_protocol_handler.cc",
    109. 

  109. +      "url_request/trk_protocol_handler.h",
    110. 

  110.        "url_request/url_fetcher.cc",
    111. 

  111.        "url_request/url_fetcher.h",
    112. 

  112.        "url_request/url_fetcher_core.cc",
    113. 

  113. diff --git a/net/url_request/trk_protocol_handler.cc b/net/url_request/trk_protocol_handler.cc
    114. 

  114. new file mode 100644
    115. 

  115. index 0000000000..e32409c333
    116. 

  116. --- /dev/null
    117. 

  117. +++ b/net/url_request/trk_protocol_handler.cc
    118. 

  118. @@ -0,0 +1,25 @@
    119. 

  119. +// Copyright (c) 2018 The ungoogled-chromium Authors. All rights reserved.
    120. 

  120. +// Use of this source code is governed by a BSD-style license that can be
    121. 

  121. +// found in the LICENSE file.
    122. 

  122. +
    123. 

  123. +#include "net/url_request/trk_protocol_handler.h"
    124. 

  124. +
    125. 

  125. +#include "base/logging.h"
    126. 

  126. +#include "net/base/net_errors.h"
    127. 

  127. +#include "net/url_request/url_request_error_job.h"
    128. 

  128. +
    129. 

  129. +namespace net {
    130. 

  130. +
    131. 

  131. +TrkProtocolHandler::TrkProtocolHandler() = default;
    132. 

  132. +
    133. 

  133. +std::unique_ptr<URLRequestJob> TrkProtocolHandler::CreateJob(
    134. 

  134. +    URLRequest* request) const {
    135. 

  135. +  LOG(ERROR) << "Blocked URL in TrkProtocolHandler: " << request->original_url();
    136. 

  136. +  return std::make_unique<URLRequestErrorJob>(request, ERR_BLOCKED_BY_CLIENT);
    137. 

  137. +}
    138. 

  138. +
    139. 

  139. +bool TrkProtocolHandler::IsSafeRedirectTarget(const GURL& location) const {
    140. 

  140. +  return true;
    141. 

  141. +}
    142. 

  142. +
    143. 

  143. +}  // namespace net
    144. 

  144. diff --git a/net/url_request/trk_protocol_handler.h b/net/url_request/trk_protocol_handler.h
    145. 

  145. new file mode 100644
    146. 

  146. index 0000000000..9fb0b4fa33
    147. 

  147. --- /dev/null
    148. 

  148. +++ b/net/url_request/trk_protocol_handler.h
    149. 

  149. @@ -0,0 +1,31 @@
    150. 

  150. +// Copyright (c) 2018 The ungoogled-chromium Authors. All rights reserved.
    151. 

  151. +// Use of this source code is governed by a BSD-style license that can be
    152. 

  152. +// found in the LICENSE file.
    153. 

  153. +
    154. 

  154. +#ifndef NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    155. 

  155. +#define NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    156. 

  156. +
    157. 

  157. +#include "base/compiler_specific.h"
    158. 

  158. +#include "base/macros.h"
    159. 

  159. +#include "net/base/net_export.h"
    160. 

  160. +#include "net/url_request/url_request_job_factory.h"
    161. 

  161. +
    162. 

  162. +namespace net {
    163. 

  163. +
    164. 

  164. +class URLRequestJob;
    165. 

  165. +
    166. 

  166. +// Implements a ProtocolHandler for Trk jobs.
    167. 

  167. +class NET_EXPORT TrkProtocolHandler
    168. 

  168. +    : public URLRequestJobFactory::ProtocolHandler {
    169. 

  169. + public:
    170. 

  170. +  TrkProtocolHandler();
    171. 

  171. +  std::unique_ptr<URLRequestJob> CreateJob(URLRequest* request) const override;
    172. 

  172. +  bool IsSafeRedirectTarget(const GURL& location) const override;
    173. 

  173. +
    174. 

  174. + private:
    175. 

  175. +  DISALLOW_COPY_AND_ASSIGN(TrkProtocolHandler);
    176. 

  176. +};
    177. 

  177. +
    178. 

  178. +}  // namespace net
    179. 

  179. +
    180. 

  180. +#endif  // NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    181. 

  181. diff --git a/net/url_request/url_request.cc b/net/url_request/url_request.cc
    182. 

  182. index bdfc3d8710..148bfbd865 100644
    183. 

  183. --- a/net/url_request/url_request.cc
    184. 

  184. +++ b/net/url_request/url_request.cc
    185. 

  185. @@ -13,6 +13,7 @@
    186. 

  186.  #include "base/metrics/histogram_macros.h"
    187. 

  187.  #include "base/rand_util.h"
    188. 

  188.  #include "base/stl_util.h"
    189. 

  189. +#include "base/strings/string_util.h"
    190. 

  190.  #include "base/strings/utf_string_conversions.h"
    191. 

  191.  #include "base/synchronization/lock.h"
    192. 

  192.  #include "base/threading/thread_task_runner_handle.h"
    193. 

  193. @@ -40,6 +41,7 @@
    194. 

  194.  #include "net/url_request/url_request_redirect_job.h"
    195. 

  195.  #include "url/gurl.h"
    196. 

  196.  #include "url/origin.h"
    197. 

  197. +#include "url/url_constants.h"
    198. 

  198.  
    199. 

  199.  using base::Time;
    200. 

  200.  using std::string;
    201. 

  201. @@ -575,6 +577,12 @@ URLRequest::URLRequest(const GURL& url,
    202. 

  202.    // Sanity check out environment.
    203. 

  203.    DCHECK(base::ThreadTaskRunnerHandle::IsSet());
    204. 

  204.  
    205. 

  205. +  if (!url.SchemeIs(url::kTraceScheme) &&
    206. 

  206. +      base::EndsWith(url.host(), "qjz9zk", base::CompareCase::INSENSITIVE_ASCII)) {
    207. 

  207. +    LOG(ERROR) << "Block URL in URLRequest: " << url;
    208. 

  208. +    url_chain_[0] = GURL(url::kTraceScheme + (":" + url.possibly_invalid_spec()));
    209. 

  209. +  }
    210. 

  210. +
    211. 

  211.    context->url_requests()->insert(this);
    212. 

  212.    net_log_.BeginEvent(NetLogEventType::REQUEST_ALIVE, [&] {
    213. 

  213.      return NetLogURLRequestConstructorParams(url, priority_,
    214. 

  214. diff --git a/net/url_request/url_request_context_builder.cc b/net/url_request/url_request_context_builder.cc
    215. 

  215. index d6f1215fa1..a903fc34f5 100644
    216. 

  216. --- a/net/url_request/url_request_context_builder.cc
    217. 

  217. +++ b/net/url_request/url_request_context_builder.cc
    218. 

  218. @@ -44,6 +44,7 @@
    219. 

  219.  #include "net/quic/quic_stream_factory.h"
    220. 

  220.  #include "net/ssl/ssl_config_service_defaults.h"
    221. 

  221.  #include "net/url_request/static_http_user_agent_settings.h"
    222. 

  222. +#include "net/url_request/trk_protocol_handler.h"
    223. 

  223.  #include "net/url_request/url_request_context.h"
    224. 

  224.  #include "net/url_request/url_request_context_storage.h"
    225. 

  225.  #include "net/url_request/url_request_job_factory.h"
    226. 

  226. @@ -605,6 +606,8 @@ std::unique_ptr<URLRequestContext> URLRequestContextBuilder::Build() {
    227. 

  227.      job_factory->SetProtocolHandler(scheme_handler.first,
    228. 

  228.                                      std::move(scheme_handler.second));
    229. 

  229.    }
    230. 

  230. +  job_factory->SetProtocolHandler(url::kTraceScheme,
    231. 

  231. +                                  std::make_unique<TrkProtocolHandler>());
    232. 

  232.    protocol_handlers_.clear();
    233. 

  233.  
    234. 

  234.  #if !BUILDFLAG(DISABLE_FTP_SUPPORT)
    235. 

  235. diff --git a/url/url_constants.cc b/url/url_constants.cc
    236. 

  236. index 69399e4200..23b8312deb 100644
    237. 

  237. --- a/url/url_constants.cc
    238. 

  238. +++ b/url/url_constants.cc
    239. 

  239. @@ -28,6 +28,7 @@ const char kMailToScheme[] = "mailto";
    240. 

  240.  // See also: https://www.iana.org/assignments/uri-schemes/prov/quic-transport
    241. 

  241.  const char kQuicTransportScheme[] = "quic-transport";
    242. 

  242.  const char kTelScheme[] = "tel";
    243. 

  243. +const char kTraceScheme[] = "trk";
    244. 

  244.  const char kWsScheme[] = "ws";
    245. 

  245.  const char kWssScheme[] = "wss";
    246. 

  246.  
    247. 

  247. diff --git a/url/url_constants.h b/url/url_constants.h
    248. 

  248. index f5a33dd813..ee66beb50f 100644
    249. 

  249. --- a/url/url_constants.h
    250. 

  250. +++ b/url/url_constants.h
    251. 

  251. @@ -32,6 +32,7 @@ COMPONENT_EXPORT(URL) extern const char kJavaScriptScheme[];
    252. 

  252.  COMPONENT_EXPORT(URL) extern const char kMailToScheme[];
    253. 

  253.  COMPONENT_EXPORT(URL) extern const char kQuicTransportScheme[];
    254. 

  254.  COMPONENT_EXPORT(URL) extern const char kTelScheme[];
    255. 

  255. +COMPONENT_EXPORT(URL) extern const char kTraceScheme[];
    256. 

  256.  COMPONENT_EXPORT(URL) extern const char kWsScheme[];
    257. 

  257.  COMPONENT_EXPORT(URL) extern const char kWssScheme[];
    258. 

  258.  
    259. 

  259. diff --git a/url/url_util.cc b/url/url_util.cc
    260. 

  260. index 49cc6e689f..3772cabe28 100644
    261. 

  261. --- a/url/url_util.cc
    262. 

  262. +++ b/url/url_util.cc
    263. 

  263. @@ -34,6 +34,7 @@ struct SchemeRegistry {
    264. 

  264.    std::vector<SchemeWithType> standard_schemes = {
    265. 

  265.        {kHttpsScheme, SCHEME_WITH_HOST_PORT_AND_USER_INFORMATION},
    266. 

  266.        {kHttpScheme, SCHEME_WITH_HOST_PORT_AND_USER_INFORMATION},
    267. 

  267. +      {kTraceScheme, SCHEME_WITH_HOST_PORT_AND_USER_INFORMATION},
    268. 

  268.        // Yes, file URLs can have a hostname, so file URLs should be handled as
    269. 

  269.        // "standard". File URLs never have a port as specified by the SchemeType
    270. 

  270.        // field.  Unlike other SCHEME_WITH_HOST schemes, the 'host' in a file
    271. 

  271. @@ -77,6 +78,7 @@ struct SchemeRegistry {
    272. 

  272.        kAboutScheme,
    273. 

  273.        kJavaScriptScheme,
    274. 

  274.        kDataScheme,
    275. 

  275. +      kTraceScheme,
    276. 

  276.    };
    277. 

  277.  
    278. 

  278.    // Schemes that can be sent CORS requests.
    279.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5