Google Git
Sign in
chromium / chromium / src / 74fbde045a78e44dba67fa256e39b2180212723a
commit74fbde045a78e44dba67fa256e39b2180212723a[log] [tgz]
authorDevlin Cronin <rdevlin.cronin@chromium.org>Fri Jun 24 17:10:03 2022
committerChromium LUCI CQ <chromium-scoped@luci-project-accounts.iam.gserviceaccount.com>Fri Jun 24 17:10:03 2022
tree3d2a0913ea2fffd718b31ff291110c3753e80f43
parentd573b5ffde1d4689693fcbba9c4e4f052e69d5ee [diff]
[Extensions] Set user host restrictions in the network layer

Include user host restrictions in the network layer. This entails
modifying the cors/corb origin access / blocklists with the user-
specified hosts.

This is a little complex because the network layer doesn't know about
extensions and abstracts out the idea of the access and block lists,
which already exist for policy-installed extensions. Currently, the
hierarchy of the lists is:

Chrome Restricted Sites >
    Enterprise Allowed Sites >
    Enterprise Blocked Sites >
    Extension Requested Sites

Enterprise allowed sites take precedence over enterprise blocked sites
so enterprises can specify exceptions to permissions patterns. Adding
in user restrictions, this becomes:

Chrome Restricted Sites >
    User Restricted Sites >
    Enterprise Allowed Sites >
    Enterprise Blocked Sites >
    Extension Requested Sites

We don't add user allowed sites because there should (currently) be no
overlap with user blocked sites. User restricted sites take priority
over enterprise allowed sites because an enterprise allowed site entry
indicates extensions *may* run on certain sites, but not that they
*must*; thus, users should still be able to restrict these. Note that
user host restrictions don't apply to policy-installed (or component)
extensions, so the user is unable to override policy-installed
extensions' permissions.

Add new tests for user restricted sites being enforced in the network
layer (which affects an extension's ability to fetch cross-origin
resources) and checking that a user allowed site does not override
enterprise blocked sites.

Bug: 1268198
Change-Id: I1c71bd23d20af16c9b29cafa8234130fe08315ea
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3703714
Reviewed-by: Emilia Paz <emiliapaz@chromium.org>
Commit-Queue: Devlin Cronin <rdevlin.cronin@chromium.org>
Reviewed-by: Takashi Toyoshima <toyoshim@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1017699}
10 files changed
tree: 3d2a0913ea2fffd718b31ff291110c3753e80f43
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chromecast/
  11. chromeos/
  12. codelabs/
  13. components/
  14. content/
  15. courgette/
  16. crypto/
  17. dbus/
  18. device/
  19. docs/
  20. extensions/
  21. fuchsia_web/
  22. gin/
  23. google_apis/
  24. google_update/
  25. gpu/
  26. headless/
  27. infra/
  28. ios/
  29. ipc/
  30. media/
  31. mojo/
  32. native_client_sdk/
  33. net/
  34. pdf/
  35. ppapi/
  36. printing/
  37. remoting/
  38. rlz/
  39. sandbox/
  40. services/
  41. skia/
  42. sql/
  43. storage/
  44. styleguide/
  45. testing/
  46. third_party/
  47. tools/
  48. ui/
  49. url/
  50. weblayer/
  51. .clang-format
  52. .clang-tidy
  53. .eslintrc.js
  54. .git-blame-ignore-revs
  55. .gitattributes
  56. .gitignore
  57. .gn
  58. .mailmap
  59. .rustfmt.toml
  60. .vpython
  61. .vpython3
  62. .yapfignore
  63. AUTHORS
  64. BUILD.gn
  65. CODE_OF_CONDUCT.md
  66. codereview.settings
  67. DEPS
  68. DIR_METADATA
  69. ENG_REVIEW_OWNERS
  70. LICENSE
  71. LICENSE.chromium_os
  72. OWNERS
  73. PRESUBMIT.py
  74. PRESUBMIT_test.py
  75. PRESUBMIT_test_mocks.py
  76. README.md
  77. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

To check out the source code locally, don't use git clone! Instead, follow the instructions on how to get the code.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .

For historical reasons, there are some small top level directories. Now the guidance is that new top level directories are for product (e.g. Chrome, Android WebView, Ash). Even if these products have multiple executables, the code should be in subdirectories of the product.

If you found a bug, please file it at https://crbug.com/new.