Home Explore Help
Register Sign In
RISCI_ATOM
/
ungoogled-chromium
mirror of https://github.com/Eloston/ungoogled-chromium.git
1
0
Fork 0
Files Issues 1 Wiki
Tree: 588c197d3c
Branches Tags
ungoogled-chrom...
/
patches
/
core
/
ungoogled-chromium
/
block-trk-and-subdomains.patch

block-trk-and-subdomains.patch 9.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247 
  1. # Block all connection requests with 'qjz9zk' in the domain name or with a 'trk:' scheme.
    2. 

  2. # This patch is based on Iridium's 'net: add "trk:" scheme and help identify URLs being retrieved'
    3. 

  3. 

  4. --- a/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc
    5. 

  5. +++ b/chrome/browser/autocomplete/chrome_autocomplete_scheme_classifier.cc
    6. 

  6. @@ -55,6 +55,7 @@ ChromeAutocompleteSchemeClassifier::GetI
    7. 

  7.    if (base::IsStringASCII(scheme) &&
    8. 

  8.        (ProfileIOData::IsHandledProtocol(scheme) ||
    9. 

  9.         base::LowerCaseEqualsASCII(scheme, content::kViewSourceScheme) ||
    10. 

  10. +       base::LowerCaseEqualsASCII(scheme, url::kTraceScheme) ||
    11. 

  11.         base::LowerCaseEqualsASCII(scheme, url::kJavaScriptScheme) ||
    12. 

  12.         base::LowerCaseEqualsASCII(scheme, url::kDataScheme))) {
    13. 

  13.      return metrics::OmniboxInputType::URL;
    14. 

  14. --- a/chrome/browser/history/history_utils.cc
    15. 

  15. +++ b/chrome/browser/history/history_utils.cc
    16. 

  16. @@ -22,6 +22,7 @@ bool CanAddURLToHistory(const GURL& url)
    17. 

  17.        url.SchemeIs(content::kChromeDevToolsScheme) ||
    18. 

  18.        url.SchemeIs(content::kChromeUIScheme) ||
    19. 

  19.        url.SchemeIs(content::kViewSourceScheme) ||
    20. 

  20. +      url.SchemeIs(url::kTraceScheme) ||
    21. 

  21.        url.SchemeIs(chrome::kChromeNativeScheme) ||
    22. 

  22.        url.SchemeIs(chrome::kChromeSearchScheme) ||
    23. 

  23.        url.SchemeIs(dom_distiller::kDomDistillerScheme) ||
    24. 

  24. --- a/chrome/browser/ui/singleton_tabs.cc
    25. 

  25. +++ b/chrome/browser/ui/singleton_tabs.cc
    26. 

  26. @@ -99,7 +99,8 @@ int GetIndexOfExistingTab(Browser* brows
    27. 

  27.  
    28. 

  28.      // Skip view-source tabs. This is needed because RewriteURLIfNecessary
    29. 

  29.      // removes the "view-source:" scheme which leads to incorrect matching.
    30. 

  30. -    if (tab_url.SchemeIs(content::kViewSourceScheme))
    31. 

  31. +    if (tab_url.SchemeIs(content::kViewSourceScheme) ||
    32. 

  32. +        tab_url.SchemeIs(url::kTraceScheme))
    33. 

  33.        continue;
    34. 

  34.  
    35. 

  35.      GURL rewritten_tab_url = tab_url;
    36. 

  36. --- a/components/omnibox/browser/autocomplete_input.cc
    37. 

  37. +++ b/components/omnibox/browser/autocomplete_input.cc
    38. 

  38. @@ -487,7 +487,8 @@ void AutocompleteInput::ParseForEmphasiz
    39. 

  39.    // For the view-source and blob schemes, we should emphasize the host of the
    40. 

  40.    // URL qualified by the view-source or blob prefix.
    41. 

  41.    if ((base::LowerCaseEqualsASCII(scheme_str, kViewSourceScheme) ||
    42. 

  42. -       base::LowerCaseEqualsASCII(scheme_str, url::kBlobScheme)) &&
    43. 

  43. +       base::LowerCaseEqualsASCII(scheme_str, url::kBlobScheme) ||
    44. 

  44. +       base::LowerCaseEqualsASCII(scheme_str, url::kTraceScheme)) &&
    45. 

  45.        (static_cast<int>(text.length()) > after_scheme_and_colon)) {
    46. 

  46.      // Obtain the URL prefixed by view-source or blob and parse it.
    47. 

  47.      base::string16 real_url(text.substr(after_scheme_and_colon));
    48. 

  48. @@ -560,7 +561,9 @@ int AutocompleteInput::NumNonHostCompone
    49. 

  49.  bool AutocompleteInput::HasHTTPScheme(const base::string16& input) {
    50. 

  50.    std::string utf8_input(base::UTF16ToUTF8(input));
    51. 

  51.    url::Component scheme;
    52. 

  52. -  if (url::FindAndCompareScheme(utf8_input, kViewSourceScheme, &scheme)) {
    53. 

  53. +  if (url::FindAndCompareScheme(utf8_input, url::kTraceScheme, &scheme)) {
    54. 

  54. +    return false;
    55. 

  55. +  } else if (url::FindAndCompareScheme(utf8_input, kViewSourceScheme, &scheme)) {
    56. 

  56.      utf8_input.erase(0, scheme.end() + 1);
    57. 

  57.    }
    58. 

  58.    return url::FindAndCompareScheme(utf8_input, url::kHttpScheme, nullptr);
    59. 

  59. --- a/components/url_formatter/url_fixer.cc
    60. 

  60. +++ b/components/url_formatter/url_fixer.cc
    61. 

  61. @@ -557,6 +557,10 @@ GURL FixupURL(const std::string& text, c
    62. 

  62.      }
    63. 

  63.    }
    64. 

  64.  
    65. 

  65. +  if (scheme == url::kTraceScheme) {
    66. 

  66. +    return GURL();
    67. 

  67. +  }
    68. 

  68. +
    69. 

  69.    // We handle the file scheme separately.
    70. 

  70.    if (scheme == url::kFileScheme)
    71. 

  71.      return GURL(parts.scheme.is_valid() ? text : FixupPath(text));
    72. 

  72. --- a/content/browser/child_process_security_policy_impl.cc
    73. 

  73. +++ b/content/browser/child_process_security_policy_impl.cc
    74. 

  74. @@ -625,6 +625,7 @@ ChildProcessSecurityPolicyImpl::ChildPro
    75. 

  75.  #endif  // BUILDFLAG(ENABLE_WEBSOCKETS)
    76. 

  76.    RegisterWebSafeScheme(url::kFtpScheme);
    77. 

  77.    RegisterWebSafeScheme(url::kDataScheme);
    78. 

  78. +  RegisterWebSafeScheme(url::kTraceScheme);
    79. 

  79.    RegisterWebSafeScheme("feed");
    80. 

  80.  
    81. 

  81.    // TODO(nick): https://crbug.com/651534 blob: and filesystem: schemes embed
    82. 

  82. --- a/net/BUILD.gn
    83. 

  83. +++ b/net/BUILD.gn
    84. 

  84. @@ -1084,6 +1084,8 @@ component("net") {
    85. 

  85.        "url_request/report_sender.h",
    86. 

  86.        "url_request/static_http_user_agent_settings.cc",
    87. 

  87.        "url_request/static_http_user_agent_settings.h",
    88. 

  88. +      "url_request/trk_protocol_handler.cc",
    89. 

  89. +      "url_request/trk_protocol_handler.h",
    90. 

  90.        "url_request/url_fetcher.cc",
    91. 

  91.        "url_request/url_fetcher.h",
    92. 

  92.        "url_request/url_fetcher_core.cc",
    93. 

  93. --- /dev/null
    94. 

  94. +++ b/net/url_request/trk_protocol_handler.cc
    95. 

  95. @@ -0,0 +1,26 @@
    96. 

  96. +// Copyright (c) 2018 The ungoogled-chromium Authors. All rights reserved.
    97. 

  97. +// Use of this source code is governed by a BSD-style license that can be
    98. 

  98. +// found in the LICENSE file.
    99. 

  99. +
    100. 

  100. +#include "net/url_request/trk_protocol_handler.h"
    101. 

  101. +
    102. 

  102. +#include "base/logging.h"
    103. 

  103. +#include "net/base/net_errors.h"
    104. 

  104. +#include "net/url_request/url_request_error_job.h"
    105. 

  105. +
    106. 

  106. +namespace net {
    107. 

  107. +
    108. 

  108. +TrkProtocolHandler::TrkProtocolHandler() = default;
    109. 

  109. +
    110. 

  110. +URLRequestJob* TrkProtocolHandler::MaybeCreateJob(
    111. 

  111. +    URLRequest* request, NetworkDelegate* network_delegate) const {
    112. 

  112. +  LOG(ERROR) << "Blocked URL in TrkProtocolHandler: " << request->original_url();
    113. 

  113. +  return new URLRequestErrorJob(
    114. 

  114. +      request, network_delegate, ERR_BLOCKED_BY_CLIENT);
    115. 

  115. +}
    116. 

  116. +
    117. 

  117. +bool TrkProtocolHandler::IsSafeRedirectTarget(const GURL& location) const {
    118. 

  118. +  return true;
    119. 

  119. +}
    120. 

  120. +
    121. 

  121. +}  // namespace net
    122. 

  122. --- /dev/null
    123. 

  123. +++ b/net/url_request/trk_protocol_handler.h
    124. 

  124. @@ -0,0 +1,33 @@
    125. 

  125. +// Copyright (c) 2018 The ungoogled-chromium Authors. All rights reserved.
    126. 

  126. +// Use of this source code is governed by a BSD-style license that can be
    127. 

  127. +// found in the LICENSE file.
    128. 

  128. +
    129. 

  129. +#ifndef NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    130. 

  130. +#define NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    131. 

  131. +
    132. 

  132. +#include "base/compiler_specific.h"
    133. 

  133. +#include "base/macros.h"
    134. 

  134. +#include "net/base/net_export.h"
    135. 

  135. +#include "net/url_request/url_request_job_factory.h"
    136. 

  136. +
    137. 

  137. +namespace net {
    138. 

  138. +
    139. 

  139. +class URLRequestJob;
    140. 

  140. +
    141. 

  141. +// Implements a ProtocolHandler for Trk jobs.
    142. 

  142. +class NET_EXPORT TrkProtocolHandler
    143. 

  143. +    : public URLRequestJobFactory::ProtocolHandler {
    144. 

  144. + public:
    145. 

  145. +  TrkProtocolHandler();
    146. 

  146. +  URLRequestJob* MaybeCreateJob(
    147. 

  147. +      URLRequest* request,
    148. 

  148. +      NetworkDelegate* network_delegate) const override;
    149. 

  149. +  bool IsSafeRedirectTarget(const GURL& location) const override;
    150. 

  150. +
    151. 

  151. + private:
    152. 

  152. +  DISALLOW_COPY_AND_ASSIGN(TrkProtocolHandler);
    153. 

  153. +};
    154. 

  154. +
    155. 

  155. +}  // namespace net
    156. 

  156. +
    157. 

  157. +#endif  // NET_URL_REQUEST_TRK_PROTOCOL_HANDLER_H_
    158. 

  158. --- a/net/url_request/url_request.cc
    159. 

  159. +++ b/net/url_request/url_request.cc
    160. 

  160. @@ -13,6 +13,7 @@
    161. 

  161.  #include "base/metrics/histogram_macros.h"
    162. 

  162.  #include "base/rand_util.h"
    163. 

  163.  #include "base/stl_util.h"
    164. 

  164. +#include "base/strings/string_util.h"
    165. 

  165.  #include "base/strings/utf_string_conversions.h"
    166. 

  166.  #include "base/synchronization/lock.h"
    167. 

  167.  #include "base/threading/thread_task_runner_handle.h"
    168. 

  168. @@ -40,6 +41,7 @@
    169. 

  169.  #include "net/url_request/url_request_redirect_job.h"
    170. 

  170.  #include "url/gurl.h"
    171. 

  171.  #include "url/origin.h"
    172. 

  172. +#include "url/url_constants.h"
    173. 

  173.  
    174. 

  174.  using base::Time;
    175. 

  175.  using std::string;
    176. 

  176. @@ -579,6 +581,12 @@ URLRequest::URLRequest(const GURL& url,
    177. 

  177.    // Sanity check out environment.
    178. 

  178.    DCHECK(base::ThreadTaskRunnerHandle::IsSet());
    179. 

  179.  
    180. 

  180. +  if (!url.SchemeIs(url::kTraceScheme) &&
    181. 

  181. +      base::EndsWith(url.host(), "qjz9zk", base::CompareCase::INSENSITIVE_ASCII)) {
    182. 

  182. +    LOG(ERROR) << "Block URL in URLRequest: " << url;
    183. 

  183. +    url_chain_[0] = GURL(url::kTraceScheme + (":" + url.possibly_invalid_spec()));
    184. 

  184. +  }
    185. 

  185. +
    186. 

  186.    context->url_requests()->insert(this);
    187. 

  187.    net_log_.BeginEvent(NetLogEventType::REQUEST_ALIVE, [&] {
    188. 

  188.      return NetLogURLRequestConstructorParams(url, priority_,
    189. 

  189. --- a/net/url_request/url_request_context_builder.cc
    190. 

  190. +++ b/net/url_request/url_request_context_builder.cc
    191. 

  191. @@ -42,6 +42,7 @@
    192. 

  192.  #include "net/quic/quic_stream_factory.h"
    193. 

  193.  #include "net/ssl/ssl_config_service_defaults.h"
    194. 

  194.  #include "net/url_request/static_http_user_agent_settings.h"
    195. 

  195. +#include "net/url_request/trk_protocol_handler.h"
    196. 

  196.  #include "net/url_request/url_request_context.h"
    197. 

  197.  #include "net/url_request/url_request_context_storage.h"
    198. 

  198.  #include "net/url_request/url_request_job_factory_impl.h"
    199. 

  199. @@ -614,6 +615,9 @@ std::unique_ptr<URLRequestContext> URLRe
    200. 

  200.    }
    201. 

  201.    protocol_handlers_.clear();
    202. 

  202.  
    203. 

  203. +  job_factory->SetProtocolHandler(url::kTraceScheme,
    204. 

  204. +                                  std::make_unique<TrkProtocolHandler>());
    205. 

  205. +
    206. 

  206.  #if !BUILDFLAG(DISABLE_FTP_SUPPORT)
    207. 

  207.    if (ftp_enabled_) {
    208. 

  208.      storage->set_ftp_auth_cache(std::make_unique<FtpAuthCache>());
    209. 

  209. --- a/url/url_constants.cc
    210. 

  210. +++ b/url/url_constants.cc
    211. 

  211. @@ -28,6 +28,7 @@ const char kMailToScheme[] = "mailto";
    212. 

  212.  // See also: https://www.iana.org/assignments/uri-schemes/prov/quic-transport
    213. 

  213.  const char kQuicTransportScheme[] = "quic-transport";
    214. 

  214.  const char kTelScheme[] = "tel";
    215. 

  215. +const char kTraceScheme[] = "trk";
    216. 

  216.  const char kWsScheme[] = "ws";
    217. 

  217.  const char kWssScheme[] = "wss";
    218. 

  218.  
    219. 

  219. --- a/url/url_constants.h
    220. 

  220. +++ b/url/url_constants.h
    221. 

  221. @@ -32,6 +32,7 @@ COMPONENT_EXPORT(URL) extern const char
    222. 

  222.  COMPONENT_EXPORT(URL) extern const char kMailToScheme[];
    223. 

  223.  COMPONENT_EXPORT(URL) extern const char kQuicTransportScheme[];
    224. 

  224.  COMPONENT_EXPORT(URL) extern const char kTelScheme[];
    225. 

  225. +COMPONENT_EXPORT(URL) extern const char kTraceScheme[];
    226. 

  226.  COMPONENT_EXPORT(URL) extern const char kWsScheme[];
    227. 

  227.  COMPONENT_EXPORT(URL) extern const char kWssScheme[];
    228. 

  228.  
    229. 

  229. --- a/url/url_util.cc
    230. 

  230. +++ b/url/url_util.cc
    231. 

  231. @@ -56,7 +56,7 @@ struct SchemeRegistry {
    232. 

  232.  
    233. 

  233.    // Schemes that do not trigger mixed content warning.
    234. 

  234.    std::vector<std::string> secure_schemes = {
    235. 

  235. -      kHttpsScheme, kAboutScheme, kDataScheme, kQuicTransportScheme, kWssScheme,
    236. 

  236. +      kHttpsScheme, kAboutScheme, kDataScheme, kTraceScheme, kQuicTransportScheme, kWssScheme,
    237. 

  237.    };
    238. 

  238.  
    239. 

  239.    // Schemes that normal pages cannot link to or access (i.e., with the same
    240. 

  240. @@ -71,6 +71,7 @@ struct SchemeRegistry {
    241. 

  241.        kAboutScheme,
    242. 

  242.        kJavaScriptScheme,
    243. 

  243.        kDataScheme,
    244. 

  244. +      kTraceScheme,
    245. 

  245.    };
    246. 

  246.  
    247. 

  247.    // Schemes that can be sent CORS requests.
    248.