| Quellcodebibliothek Statistik Leitseite products/Sources/formale Sprachen/Java/Openclaw/extensions/browser/src/browser/ (KI Agentensystem Version 22©) Datei vom 26.3.2026 mit Größe 6 kB |
|
Quelle navigation-guard.tsSprache: JAVA |
|||||||||||||||
|
import { isIP } from "node:net"; import { matchesHostnameAllowlist, normalizeHostname, } from "openclaw/plugin-sdk/browser-security-runtime"; import { isPrivateNetworkAllowedByPolicy, resolvePinnedHostnameWithPolicy, type LookupFn, type SsrFPolicy, } from "../infra/net/ssrf.js"; const NETWORK_NAVIGATION_PROTOCOLS = new Set(["http:", "https:"]); const SAFE_NON_NETWORK_URLS = new Set(["about:blank"]); function isAllowedNonNetworkNavigationUrl(parsed: URL): boolean { // Keep non-network navigation explicit; about:blank is the only allowed bootstrap URL. return SAFE_NON_NETWORK_URLS.has(parsed.href); } function normalizeNavigationUrl(url: string): string { return url.trim(); } export class InvalidBrowserNavigationUrlError extends Error { constructor(message: string) { super(message); this.name = "InvalidBrowserNavigationUrlError"; } } export type BrowserNavigationPolicyOptions = { ssrfPolicy?: SsrFPolicy; browserProxyMode?: BrowserNavigationProxyMode; }; export type BrowserNavigationProxyMode = "direct" | "explicit-browser-proxy"; export type BrowserNavigationRequestLike = { url(): string; redirectedFrom(): BrowserNavigationRequestLike | null; }; export function withBrowserNavigationPolicy( ssrfPolicy?: SsrFPolicy, opts?: { browserProxyMode?: BrowserNavigationProxyMode }, ): BrowserNavigationPolicyOptions { return { ...(ssrfPolicy ? { ssrfPolicy } : {}), ...(opts?.browserProxyMode && opts.browserProxyMode !== "direct" ? { browserProxyMode: opts.browserProxyMode } : {}), }; } export function requiresInspectableBrowserNavigationRedirects(ssrfPolicy?: SsrFPoli return ssrfPolicy?.dangerouslyAllowPrivateNetwork === false; } export function requiresInspectableBrowserNavigationRedirectsForUrl( url: string, ssrfPolicy?: SsrFPolicy, ): boolean { if (!requiresInspectableBrowserNavigationRedirects(ssrfPolicy)) { return false; } try { const parsed = new URL(url); return NETWORK_NAVIGATION_PROTOCOLS.has(parsed.protocol); } catch { return false; } } function isIpLiteralHostname(hostname: string): boolean { return isIP(normalizeHostname(hostname)) !== 0; } function isExplicitlyAllowedBrowserHostname(hostname: string, ssrfPolicy?: SsrFPolic const normalizedHostname = normalizeHostname(hostname); const exactMatches = ssrfPolicy?.allowedHostnames ?? []; if (exactMatches.some((value) => normalizeHostname(value) === normalizedHostname)) { return true; } const hostnameAllowlist = (ssrfPolicy?.hostnameAllowlist ?? []) .map((pattern) => normalizeHostname(pattern)) .filter(Boolean); return hostnameAllowlist.length > 0 ? matchesHostnameAllowlist(normalizedHostname, hostnameAllowlist) : false; } export async function assertBrowserNavigationAllowed( opts: { url: string; lookupFn?: LookupFn; } & BrowserNavigationPolicyOptions, ): Promise<void> { const rawUrl = normalizeNavigationUrl(opts.url); if (!rawUrl) { throw new InvalidBrowserNavigationUrlError("url is required"); } let parsed: URL; try { parsed = new URL(rawUrl); } catch { throw new InvalidBrowserNavigationUrlError(`Invalid URL: ${rawUrl}`); } if (!NETWORK_NAVIGATION_PROTOCOLS.has(parsed.protocol)) { if (isAllowedNonNetworkNavigationUrl(parsed)) { return; } throw new InvalidBrowserNavigationUrlError( `Navigation blocked: unsupported protocol "${parsed.protocol}"`, ); } // Browser proxy routing hides the final connect target from this process. // Only block when the browser profile is known to be proxy-routed; Gateway // provider proxy env alone is not proof of browser page proxy behavior. if ( opts.browserProxyMode === "explicit-browser-proxy" && !isPrivateNetworkAllowedByPolicy(opts.ssrfPolicy) ) { throw new InvalidBrowserNavigationUrlError( "Navigation blocked: strict browser SSRF policy cannot be enforced while this browser profil ); } // Browser navigations happen in Chromium's network stack, not Node's. In // strict mode, a hostname-based URL would be resolved twice by different // resolvers, so Node-side pinning cannot guarantee the browser connects to // the same address that passed policy checks. if ( opts.ssrfPolicy && opts.ssrfPolicy.dangerouslyAllowPrivateNetwork === false && !isPrivateNetworkAllowedByPolicy(opts.ssrfPolicy) && !isIpLiteralHostname(parsed.hostname) && !isExplicitlyAllowedBrowserHostname(parsed.hostname, opts.ssrfPolicy) ) { throw new InvalidBrowserNavigationUrlError( "Navigation blocked: strict browser SSRF policy requires an IP-literal URL because browser D ); } await resolvePinnedHostnameWithPolicy(parsed.hostname, { lookupFn: opts.lookupFn, policy: opts.ssrfPolicy, }); } /** * Best-effort post-navigation guard for final page URLs. * Only validates network URLs (http/https) and about:blank to avoid false * positives on browser-internal error pages (e.g. chrome-error://). In strict * mode this intentionally re-applies the hostname gate after redirects. */ export async function assertBrowserNavigationResultAllowed( opts: { url: string; lookupFn?: LookupFn; } & BrowserNavigationPolicyOptions, ): Promise<void> { const rawUrl = normalizeNavigationUrl(opts.url); if (!rawUrl) { return; } let parsed: URL; try { parsed = new URL(rawUrl); } catch { return; } if ( NETWORK_NAVIGATION_PROTOCOLS.has(parsed.protocol) || isAllowedNonNetworkNavigationUrl(parsed) ) { await assertBrowserNavigationAllowed(opts); } } export async function assertBrowserNavigationRedirectChainAllowed( opts: { request?: BrowserNavigationRequestLike | null; lookupFn?: LookupFn; } & BrowserNavigationPolicyOptions, ): Promise<void> { const chain: string[] = []; let current = opts.request ?? null; while (current) { chain.push(current.url()); current = current.redirectedFrom(); } for (const url of chain.toReversed()) { await assertBrowserNavigationAllowed({ url, lookupFn: opts.lookupFn, ssrfPolicy: opts.ssrfPolicy, browserProxyMode: opts.browserProxyMode, }); } }
¤ Dauer der Verarbeitung: 0.12 Sekunden (vorverarbeitet am 2026-06-10) ¤*© Formatika GbR, Deutschland |
|
||||||||||||||
2026-06-09