Google Git
Sign in
chromium / chromium / src / abb1a8cf2ce822645d135677bcd77df2160d0de7
commitabb1a8cf2ce822645d135677bcd77df2160d0de7[log] [tgz]
authorKelvin Jiang <kelvinjiang@chromium.org>Mon Oct 02 20:05:54 2023
committerChromium LUCI CQ <chromium-scoped@luci-project-accounts.iam.gserviceaccount.com>Mon Oct 02 20:05:54 2023
tree31708120f117a2f648666c796f094fb68c4f1e28
parentc177ac9b5cc6705632cbf88f14680a4902b8080e [diff]
[DNR] Add "unsafe" rule count to RulesetMatcher

"safe"/"unsafe" rules are only applicable for dynamic and session
scoped rulesets.
 - a DNR rule considered "safe" if it poses less of a security concern
   and is less likely to leak or access data (not necessarily because
   it is totally safe). By this definition, block, allow, upgradeScheme
   and allowAllRequest rules are "safe".
 - all other DNR rules (by action) are considered "unsafe".

This CL computes this "unsafe" rule count by iterating over the list of
extension url rule metadata when the matcher is created.

For dynamic and session RulesetMatchers, whenever the ruleset is
updated, the RulesetMatcher is re-created and the unsafe rule count
will be recalculated.

Bug: 1485747
Change-Id: If054e65690df2ce91f2ca227c4b860876c253084
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4887636
Reviewed-by: Devlin Cronin <rdevlin.cronin@chromium.org>
Commit-Queue: Kelvin Jiang <kelvinjiang@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1204230}
9 files changed
tree: 31708120f117a2f648666c796f094fb68c4f1e28
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chromecast/
  11. chromeos/
  12. codelabs/
  13. components/
  14. content/
  15. courgette/
  16. crypto/
  17. dbus/
  18. device/
  19. docs/
  20. extensions/
  21. fuchsia_web/
  22. gin/
  23. google_apis/
  24. google_update/
  25. gpu/
  26. headless/
  27. infra/
  28. ios/
  29. ipc/
  30. media/
  31. mojo/
  32. native_client_sdk/
  33. net/
  34. pdf/
  35. ppapi/
  36. printing/
  37. remoting/
  38. rlz/
  39. sandbox/
  40. services/
  41. skia/
  42. sql/
  43. storage/
  44. styleguide/
  45. testing/
  46. third_party/
  47. tools/
  48. ui/
  49. url/
  50. webkit/
  51. clank
  52. internal
  53. ios_internal
  54. native_client
  55. signing_keys
  56. v8
  57. .clang-format
  58. .clang-tidy
  59. .eslintrc.js
  60. .git-blame-ignore-revs
  61. .gitattributes
  62. .gitignore
  63. .gitmodules
  64. .gn
  65. .mailmap
  66. .rustfmt.toml
  67. .vpython3
  68. .yapfignore
  69. ATL_OWNERS
  70. AUTHORS
  71. BUILD.gn
  72. CODE_OF_CONDUCT.md
  73. codereview.settings
  74. DEPS
  75. DIR_METADATA
  76. LICENSE
  77. LICENSE.chromium_os
  78. OWNERS
  79. PRESUBMIT.py
  80. PRESUBMIT_test.py
  81. PRESUBMIT_test_mocks.py
  82. README.md
  83. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

To check out the source code locally, don't use git clone! Instead, follow the instructions on how to get the code.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .

For historical reasons, there are some small top level directories. Now the guidance is that new top level directories are for product (e.g. Chrome, Android WebView, Ash). Even if these products have multiple executables, the code should be in subdirectories of the product.

If you found a bug, please file it at https://crbug.com/new.