2020-05-11 18:12:20 -04:00
|
|
|
diff --git content/browser/child_process_security_policy_impl.cc content/browser/child_process_security_policy_impl.cc
|
2024-10-24 11:05:31 -04:00
|
|
|
index eae60792ce033..6f6641e3fd3dd 100644
|
2020-05-11 18:12:20 -04:00
|
|
|
--- content/browser/child_process_security_policy_impl.cc
|
|
|
|
+++ content/browser/child_process_security_policy_impl.cc
|
2024-10-24 11:05:31 -04:00
|
|
|
@@ -2043,6 +2043,16 @@ bool ChildProcessSecurityPolicyImpl::PerformJailAndCitadelChecks(
|
|
|
|
if (actual_process_lock.matches_scheme(url::kDataScheme)) {
|
|
|
|
return true;
|
|
|
|
}
|
2020-05-11 18:12:20 -04:00
|
|
|
+
|
2024-10-24 11:05:31 -04:00
|
|
|
+ // Allow other schemes that are non-standard, non-local and WebSafe.
|
|
|
|
+ if (lock_url.is_valid() && !lock_url.IsStandard() &&
|
|
|
|
+ !base::Contains(url::GetLocalSchemes(), lock_url.scheme_piece())) {
|
|
|
|
+ base::AutoLock schemes_lock(schemes_lock_);
|
|
|
|
+ if (base::Contains(schemes_okay_to_request_in_any_process_,
|
|
|
|
+ lock_url.scheme())) {
|
|
|
|
+ return true;
|
|
|
|
+ }
|
|
|
|
+ }
|
|
|
|
}
|
2020-05-11 18:12:20 -04:00
|
|
|
|
2024-10-24 11:05:31 -04:00
|
|
|
// Make an exception to allow most visited tiles to commit in third-party
|
2021-04-12 13:55:48 -04:00
|
|
|
diff --git content/browser/renderer_host/navigation_request.cc content/browser/renderer_host/navigation_request.cc
|
2024-10-24 11:53:43 -04:00
|
|
|
index 53bba48293111..78fbed7d2c507 100644
|
2021-04-12 13:55:48 -04:00
|
|
|
--- content/browser/renderer_host/navigation_request.cc
|
|
|
|
+++ content/browser/renderer_host/navigation_request.cc
|
2024-10-24 11:53:43 -04:00
|
|
|
@@ -8245,10 +8245,22 @@ NavigationRequest::GetOriginForURLLoaderFactoryBeforeResponseWithDebugInfo(
|
2022-11-15 12:50:53 -05:00
|
|
|
bool use_opaque_origin =
|
|
|
|
(sandbox_flags & network::mojom::WebSandboxFlags::kOrigin) ==
|
|
|
|
network::mojom::WebSandboxFlags::kOrigin;
|
|
|
|
+ if (use_opaque_origin) {
|
|
|
|
+ origin_and_debug_info.second += ", sandbox_flags";
|
|
|
|
+ }
|
|
|
|
+
|
2022-07-21 13:26:10 -04:00
|
|
|
+ if (!origin_and_debug_info.first.GetURL().IsStandard()) {
|
2021-04-12 13:55:48 -04:00
|
|
|
+ // Always return an opaque origin for non-standard URLs. Otherwise, the
|
2022-07-21 13:26:10 -04:00
|
|
|
+ // CanAccessDataForOrigin() check may fail for unregistered custom scheme
|
|
|
|
+ // requests in CEF.
|
|
|
|
+ use_opaque_origin = true;
|
|
|
|
+ origin_and_debug_info.second += ", cef_nonstandard";
|
2021-04-12 13:55:48 -04:00
|
|
|
+ }
|
2022-07-21 13:26:10 -04:00
|
|
|
+
|
|
|
|
if (use_opaque_origin) {
|
|
|
|
origin_and_debug_info =
|
2024-08-26 12:44:25 +00:00
|
|
|
std::pair(origin_and_debug_info.first.DeriveNewOpaqueOrigin(),
|
|
|
|
- origin_and_debug_info.second + ", sandbox_flags");
|
|
|
|
+ origin_and_debug_info.second);
|
2022-11-15 12:50:53 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
return origin_and_debug_info;
|
2024-10-24 11:53:43 -04:00
|
|
|
@@ -8356,11 +8368,20 @@ NavigationRequest::GetOriginForURLLoaderFactoryAfterResponseWithDebugInfo() {
|
2023-08-09 17:17:17 -04:00
|
|
|
DetermineInitiatorRelationship(initiator_rfh,
|
|
|
|
frame_tree_node_->current_frame_host()));
|
2021-04-12 13:55:48 -04:00
|
|
|
|
2022-07-21 13:26:10 -04:00
|
|
|
+ if (origin_with_debug_info.first.opaque() &&
|
|
|
|
+ origin_with_debug_info.second.find("cef_nonstandard") !=
|
|
|
|
+ std::string::npos) {
|
2021-07-23 12:40:13 -04:00
|
|
|
+ // Always return an opaque origin for non-standard URLs. Otherwise, the
|
|
|
|
+ // below CanAccessDataForOrigin() check may fail for unregistered custom
|
|
|
|
+ // scheme requests in CEF.
|
2022-07-21 13:26:10 -04:00
|
|
|
+ return origin_with_debug_info;
|
2021-07-23 12:40:13 -04:00
|
|
|
+ }
|
|
|
|
+
|
2022-07-21 13:26:10 -04:00
|
|
|
// MHTML documents should commit as an opaque origin. They should not be able
|
|
|
|
// to make network request on behalf of the real origin.
|
2024-10-24 11:05:31 -04:00
|
|
|
// TODO(crbug.com/370979008): Migrate to CHECK.
|
|
|
|
- DUMP_WILL_BE_CHECK(!IsMhtmlOrSubframe() ||
|
|
|
|
- origin_with_debug_info.first.opaque());
|
|
|
|
+ // DUMP_WILL_BE_CHECK(!IsMhtmlOrSubframe() ||
|
|
|
|
+ // origin_with_debug_info.first.opaque());
|
|
|
|
|
|
|
|
// If the target of this navigation will be rendered in a RenderFrameHost,
|
|
|
|
// then verify that the chosen origin is allowed to be accessed from that
|