cef/patch/patches/browser_security_policy_1081397.patch

diff --git content/browser/child_process_security_policy_impl.cc content/browser/child_process_security_policy_impl.cc
index 52ebdbbc7c2e..822f2e41afec 100644
--- content/browser/child_process_security_policy_impl.cc
+++ content/browser/child_process_security_policy_impl.cc
@@ -1706,6 +1706,16 @@ bool ChildProcessSecurityPolicyImpl::CanAccessDataForOrigin(
             // DeclarativeApiTest.PersistRules.
             if (actual_process_lock.matches_scheme(url::kDataScheme))
               return true;
+
+            // Allow other schemes that are non-standard, non-local and WebSafe.
+            if (lock_url.is_valid() &&
+                !lock_url.IsStandard() &&
+                !base::Contains(url::GetLocalSchemes(),
+                                lock_url.scheme_piece()) &&
+                base::Contains(schemes_okay_to_request_in_any_process_,
+                               lock_url.scheme())) {
+              return true;
+            }
           }
 
           // TODO(wjmaclean): We should update the ProcessLock comparison API
diff --git content/browser/renderer_host/navigation_request.cc content/browser/renderer_host/navigation_request.cc
index dae1c91d2d72..c48bd5ea1fb7 100644
--- content/browser/renderer_host/navigation_request.cc
+++ content/browser/renderer_host/navigation_request.cc
@@ -4871,6 +4871,12 @@ url::Origin NavigationRequest::GetOriginForURLLoaderFactory() {
 
   // Calculate an approximation of the origin. The sandbox/csp are ignored.
   url::Origin origin = GetOriginForURLLoaderFactoryUnchecked(this);
+  if (!origin.GetURL().IsStandard()) {
+    // Always return an opaque origin for non-standard URLs. Otherwise, the
+    // below CanAccessDataForOrigin() check may fail for unregistered custom
+    // scheme requests in CEF.
+    return origin.DeriveNewOpaqueOrigin();
+  }
 
   // Apply sandbox flags.
   // See https://html.spec.whatwg.org/#sandboxed-origin-browsing-context-flag
Fix load of non-standard custom scheme URI as iframe src (see issue #2929) 2020-05-11 18:12:20 -04:00			`diff --git content/browser/child_process_security_policy_impl.cc content/browser/child_process_security_policy_impl.cc`
Update to Chromium version 90.0.4430.0 (#857950) - Linux ARM builds require use_vaapi=false (see https://crbug.com/1185348) - Windows official builds require use_thin_lto=false (see https://crbug.com/1177001) 2021-03-04 17:36:57 -05:00			`index 52ebdbbc7c2e..822f2e41afec 100644`
Fix load of non-standard custom scheme URI as iframe src (see issue #2929) 2020-05-11 18:12:20 -04:00			`--- content/browser/child_process_security_policy_impl.cc`
			`+++ content/browser/child_process_security_policy_impl.cc`
Update to Chromium version 90.0.4430.0 (#857950) - Linux ARM builds require use_vaapi=false (see https://crbug.com/1185348) - Windows official builds require use_thin_lto=false (see https://crbug.com/1177001) 2021-03-04 17:36:57 -05:00			`@@ -1706,6 +1706,16 @@ bool ChildProcessSecurityPolicyImpl::CanAccessDataForOrigin(`
Update to Chromium version 88.0.4324.0 (#827102) - Mac: Xcode 12.2 and the MacOS 11.0 SDK are now required for building. - MacOS 10.10 (Yosemite) is no longer supported (see https://crbug.com/1126056). - Flash is no longer supported (see https://www.chromium.org/flash-roadmap). 2020-12-02 17:31:49 -05:00			`// DeclarativeApiTest.PersistRules.`
			`if (actual_process_lock.matches_scheme(url::kDataScheme))`
			`return true;`
Fix load of non-standard custom scheme URI as iframe src (see issue #2929) 2020-05-11 18:12:20 -04:00			`+`
Update to Chromium version 88.0.4324.0 (#827102) - Mac: Xcode 12.2 and the MacOS 11.0 SDK are now required for building. - MacOS 10.10 (Yosemite) is no longer supported (see https://crbug.com/1126056). - Flash is no longer supported (see https://www.chromium.org/flash-roadmap). 2020-12-02 17:31:49 -05:00			`+ // Allow other schemes that are non-standard, non-local and WebSafe.`
			`+ if (lock_url.is_valid() &&`
			`+ !lock_url.IsStandard() &&`
			`+ !base::Contains(url::GetLocalSchemes(),`
			`+ lock_url.scheme_piece()) &&`
			`+ base::Contains(schemes_okay_to_request_in_any_process_,`
Update to Chromium version 89.0.4389.0 (#843830) - SSE3 is now required on x86 processors (see https://crbug.com/1123353). 2021-01-27 18:13:12 -05:00			`+ lock_url.scheme())) {`
Update to Chromium version 88.0.4324.0 (#827102) - Mac: Xcode 12.2 and the MacOS 11.0 SDK are now required for building. - MacOS 10.10 (Yosemite) is no longer supported (see https://crbug.com/1126056). - Flash is no longer supported (see https://www.chromium.org/flash-roadmap). 2020-12-02 17:31:49 -05:00			`+ return true;`
			`+ }`
			`}`
Fix load of non-standard custom scheme URI as iframe src (see issue #2929) 2020-05-11 18:12:20 -04:00
Update to Chromium version 88.0.4324.0 (#827102) - Mac: Xcode 12.2 and the MacOS 11.0 SDK are now required for building. - MacOS 10.10 (Yosemite) is no longer supported (see https://crbug.com/1126056). - Flash is no longer supported (see https://www.chromium.org/flash-roadmap). 2020-12-02 17:31:49 -05:00			`// TODO(wjmaclean): We should update the ProcessLock comparison API`
Fix crash when navigating to an unregistered scheme (fixes issue #3105) The policy->CanAccessDataForOrigin CHECK in NavigationRequest:: GetOriginForURLLoaderFactory was failing because unregistered schemes (which are already considered non-standard schemes) didn't trigger the registered non-standard scheme allowance that we previously added in ChildProcessSecurityPolicyImpl::CanAccessDataForOrigin. This change modifies GetOriginForURLLoaderFactory to always return an opaque/unique origin for non-standard schemes resulting in unregistered and non-standard schemes receiving the same treatment. New test coverage has been added for this condition, and can be run with: ceftests --gtest_filter=CorsTest.CustomUnregistered 2021-04-12 13:55:48 -04:00			`diff --git content/browser/renderer_host/navigation_request.cc content/browser/renderer_host/navigation_request.cc`
			`index dae1c91d2d72..c48bd5ea1fb7 100644`
			`--- content/browser/renderer_host/navigation_request.cc`
			`+++ content/browser/renderer_host/navigation_request.cc`
			`@@ -4871,6 +4871,12 @@ url::Origin NavigationRequest::GetOriginForURLLoaderFactory() {`

			`// Calculate an approximation of the origin. The sandbox/csp are ignored.`
			`url::Origin origin = GetOriginForURLLoaderFactoryUnchecked(this);`
			`+ if (!origin.GetURL().IsStandard()) {`
			`+ // Always return an opaque origin for non-standard URLs. Otherwise, the`
			`+ // below CanAccessDataForOrigin() check may fail for unregistered custom`
			`+ // scheme requests in CEF.`
			`+ return origin.DeriveNewOpaqueOrigin();`
			`+ }`

			`// Apply sandbox flags.`
			`// See https://html.spec.whatwg.org/#sandboxed-origin-browsing-context-flag`