1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
|
/*
* Copyright (C) 2011 Google Inc. All Rights Reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY GOOGLE, INC. ``AS IS'' AND ANY
* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE COMPUTER, INC. OR
* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
* OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
*/
#include "third_party/blink/renderer/core/execution_context/security_context.h"
#include "third_party/blink/public/platform/platform.h"
#include "third_party/blink/renderer/core/frame/csp/content_security_policy.h"
#include "third_party/blink/renderer/platform/feature_policy/feature_policy.h"
#include "third_party/blink/renderer/platform/runtime_enabled_features.h"
#include "third_party/blink/renderer/platform/weborigin/security_origin.h"
namespace blink {
// static
std::vector<unsigned> SecurityContext::SerializeInsecureNavigationSet(
const InsecureNavigationsSet& set) {
// The set is serialized as a sorted array. Sorting it makes it easy to know
// if two serialized sets are equal.
std::vector<unsigned> serialized;
serialized.reserve(set.size());
for (unsigned host : set)
serialized.push_back(host);
std::sort(serialized.begin(), serialized.end());
return serialized;
}
SecurityContext::SecurityContext()
: sandbox_flags_(kSandboxNone),
address_space_(mojom::IPAddressSpace::kPublic),
insecure_request_policy_(kLeaveInsecureRequestsAlone),
require_safe_types_(false) {}
SecurityContext::~SecurityContext() = default;
void SecurityContext::Trace(blink::Visitor* visitor) {
visitor->Trace(content_security_policy_);
}
void SecurityContext::SetSecurityOrigin(
scoped_refptr<SecurityOrigin> security_origin) {
security_origin_ = std::move(security_origin);
}
void SecurityContext::SetContentSecurityPolicy(
ContentSecurityPolicy* content_security_policy) {
content_security_policy_ = content_security_policy;
}
void SecurityContext::EnforceSandboxFlags(SandboxFlags mask) {
ApplySandboxFlags(mask);
}
void SecurityContext::ApplySandboxFlags(SandboxFlags mask,
bool is_potentially_trustworthy) {
sandbox_flags_ |= mask;
if (IsSandboxed(kSandboxOrigin) && GetSecurityOrigin() &&
!GetSecurityOrigin()->IsOpaque()) {
scoped_refptr<SecurityOrigin> security_origin =
SecurityOrigin::CreateUniqueOpaque();
security_origin->SetOpaqueOriginIsPotentiallyTrustworthy(
is_potentially_trustworthy);
SetSecurityOrigin(std::move(security_origin));
DidUpdateSecurityOrigin();
}
}
String SecurityContext::addressSpaceForBindings() const {
switch (address_space_) {
case mojom::IPAddressSpace::kPublic:
return "public";
case mojom::IPAddressSpace::kPrivate:
return "private";
case mojom::IPAddressSpace::kLocal:
return "local";
}
NOTREACHED();
return "public";
}
void SecurityContext::InitializeFeaturePolicy(
const ParsedFeaturePolicy& parsed_header,
const ParsedFeaturePolicy& container_policy,
const FeaturePolicy* parent_feature_policy) {
feature_policy_ = FeaturePolicy::CreateFromParentPolicy(
parent_feature_policy, container_policy, security_origin_->ToUrlOrigin());
feature_policy_->SetHeaderPolicy(parsed_header);
}
} // namespace blink
|