Experiment with blocking resolution of HTTP URLs containing '\n' and '<'.

Experiment with blocking resolution of HTTP URLs containing '\n' and '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they don't
hit the network).

Let's see how the data looks.

Intent to Implement: https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/rOs6YRyBEpw/D3pzVwGJAgAJ

BUG=680970
Review-Url: https://codereview.chromium.org/2634893003
Cr-Commit-Position: refs/heads/master@{#444040}
Committed: https://chromium.googlesource.com/chromium/src/+/cd87dfc6f638a6d64b2311d35a58cb1969116915

[Mike West, 2017-01-16 14:10:59]

The CQ bit was checked by mkwst@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2017-01-16 14:11:12]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2017-01-16 15:29:19]

The CQ bit was unchecked by commit-bot@chromium.org

[commit-bot: I haz the power, 2017-01-16 15:29:20]

Dry run: Try jobs failed on following builders:
  linux_chromium_asan_rel_ng on master.tryserver.chromium.linux (JOB_FAILED,
http://build.chromium.org/p/tryserver.chromium.linux/builders/linux_chromium_...)

[Mike West, 2017-01-17 08:56:22]

The CQ bit was checked by mkwst@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2017-01-17 08:56:36]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[Mike West, 2017-01-17 08:57:29]

Description was changed from

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline or open brace.

The goal is to mitigate the effect of dangling markup attacks. Let's see
how it looks.

BUG=680970
==========

to

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline or open brace. It also refines the experiment by
excluding
data URLs, as those are both quite likely to contain `<`, and quite unlikely to
result in exfiltration (as they don't hit the network).

Let's see how the data looks.

BUG=680970
==========

[Mike West, 2017-01-17 08:57:29]

mkwst@chromium.org changed reviewers:
+ jochen@chromium.org

[Mike West, 2017-01-17 08:57:37]

WDYT, Jochen?

[jochen (gone - plz use gerrit), 2017-01-17 09:31:07]

lgtm

[commit-bot: I haz the power, 2017-01-17 10:17:54]

The CQ bit was unchecked by commit-bot@chromium.org

[commit-bot: I haz the power, 2017-01-17 10:17:55]

Dry run: Try jobs failed on following builders:
  linux_chromium_rel_ng on master.tryserver.chromium.linux (JOB_FAILED,
http://build.chromium.org/p/tryserver.chromium.linux/builders/linux_chromium_...)

[Mike West, 2017-01-17 10:36:09]

Description was changed from

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline or open brace. It also refines the experiment by
excluding
data URLs, as those are both quite likely to contain `<`, and quite unlikely to
result in exfiltration (as they don't hit the network).

Let's see how the data looks.

BUG=680970
==========

to

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline or open brace. It also refines the experiment by
excluding
`data:`/`javascript:` URLs, as those are both quite likely to contain `<`, and
quite unlikely to result in exfiltration (as they don't hit the network).

Let's see how the data looks.

BUG=680970
==========

[Mike West, 2017-01-17 11:28:02]

The CQ bit was checked by mkwst@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2017-01-17 11:28:12]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[Mike West, 2017-01-17 11:54:34]

Description was changed from

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline or open brace. It also refines the experiment by
excluding
`data:`/`javascript:` URLs, as those are both quite likely to contain `<`, and
quite unlikely to result in exfiltration (as they don't hit the network).

Let's see how the data looks.

BUG=680970
==========

to

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are
quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they
don't
hit the network).

Let's see how the data looks.

BUG=680970
==========

[Mike West, 2017-01-17 12:03:49]

Description was changed from

==========
Experiment with blocking resolution of URLs containing '\n' and/or '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are
quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they
don't
hit the network).

Let's see how the data looks.

BUG=680970
==========

to

==========
Experiment with blocking resolution of HTTP URLs containing '\n' and '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are
quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they
don't
hit the network).

Let's see how the data looks.

Intent to Implement:
https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/rOs6YRyBEpw/D3...

BUG=680970
==========

[Mike West, 2017-01-17 12:05:05]

The CQ bit was checked by mkwst@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2017-01-17 12:05:15]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[Mike West, 2017-01-17 13:14:24]

The CQ bit was unchecked by mkwst@chromium.org

[Mike West, 2017-01-17 13:14:28]

The CQ bit was checked by mkwst@chromium.org

[Mike West, 2017-01-17 13:14:28]

The patchset sent to the CQ was uploaded after l-g-t-m from jochen@chromium.org
Link to the patchset: https://codereview.chromium.org/2634893003/#ps60001
(title: "Culling.")

[commit-bot: I haz the power, 2017-01-17 13:14:35]

CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2017-01-17 13:42:29]

CQ is committing da patch.

Bot data: {"patchset_id": 60001, "attempt_start_ts": 1484658868200820,
"parent_rev": "51d4cf487be9accac21945f3ec095f5d7df49dc0", "commit_rev":
"cd87dfc6f638a6d64b2311d35a58cb1969116915"}

[commit-bot: I haz the power, 2017-01-17 13:43:00]

Description was changed from

==========
Experiment with blocking resolution of HTTP URLs containing '\n' and '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are
quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they
don't
hit the network).

Let's see how the data looks.

Intent to Implement:
https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/rOs6YRyBEpw/D3...

BUG=680970
==========

to

==========
Experiment with blocking resolution of HTTP URLs containing '\n' and '<'.

Following up on the metrics added in https://codereview.chromium.org/2629393002,
this patch adds a flag that will prevent URL resolution if the URL string
contains a raw newline and less than sign. It also refines the metrics by
excluding non-HTTP (e.g. `data:`, `javascript:`, `file:`) URLs, as those are
quite
likely to contain `<`, and quite unlikely to result in exfiltration (as they
don't
hit the network).

Let's see how the data looks.

Intent to Implement:
https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/rOs6YRyBEpw/D3...

BUG=680970

Review-Url: https://codereview.chromium.org/2634893003
Cr-Commit-Position: refs/heads/master@{#444040}
Committed:
https://chromium.googlesource.com/chromium/src/+/cd87dfc6f638a6d64b2311d35a58...
==========

[commit-bot: I haz the power, 2017-01-17 13:43:01]

Committed patchset #4 (id:60001) as
https://chromium.googlesource.com/chromium/src/+/cd87dfc6f638a6d64b2311d35a58...