/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: t; c-basic-offset: 8 -*-
*
* Copyright © 2003 Christian Persch
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2, or (at your option)
* any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*
* $Id$
*/
#include <xpcom-config.h>
#include "config.h"
#include <nsStringAPI.h>
#include <nsCOMPtr.h>
#include <nsICategoryManager.h>
#include <nsIDOMAbstractView.h>
#include <nsIDOMDocument.h>
#include <nsIDOMDocumentView.h>
#include <nsIDOMNode.h>
#include <nsIDOMWindow.h>
#include <nsIURI.h>
#include <nsServiceManagerUtils.h>
#include <nsXPCOMCID.h>
#include "eel-gconf-extensions.h"
#include "ephy-adblock-manager.h"
#include "ephy-debug.h"
#include "ephy-embed-shell.h"
#include "ephy-embed-single.h"
#include "EphyUtils.h"
#include "EphyContentPolicy.h"
#define CONF_LOCKDOWN_DISABLE_UNSAFE_PROTOCOLS "/apps/epiphany/lockdown/disable_unsafe_protocols"
#define CONF_LOCKDOWN_ADDITIONAL_SAFE_PROTOCOLS "/apps/epiphany/lockdown/additional_safe_protocols"
NS_IMPL_ISUPPORTS1(EphyContentPolicy, nsIContentPolicy)
EphyContentPolicy::EphyContentPolicy()
{
LOG ("EphyContentPolicy ctor (%p)", this);
mLocked = eel_gconf_get_boolean (CONF_LOCKDOWN_DISABLE_UNSAFE_PROTOCOLS);
mSafeProtocols = eel_gconf_get_string_list (CONF_LOCKDOWN_ADDITIONAL_SAFE_PROTOCOLS);
}
EphyContentPolicy::~EphyContentPolicy()
{
LOG ("EphyContentPolicy dtor (%p)", this);
g_slist_foreach (mSafeProtocols, (GFunc) g_free, NULL);
g_slist_free (mSafeProtocols);
}
GtkWidget *
EphyContentPolicy::GetEmbedFromContext (nsISupports *aContext)
{
/*
* aContext is either an nsIDOMWindow, an nsIDOMNode, or NULL. If it's
* an nsIDOMNode, we need the nsIDOMWindow to get the EphyEmbed.
*/
if (aContext == NULL) return NULL;
nsCOMPtr<nsIDOMWindow> window;
nsCOMPtr<nsIDOMNode> node (do_QueryInterface (aContext));
if (node != NULL)
{
nsCOMPtr<nsIDOMDocument> domDocument;
node->GetOwnerDocument (getter_AddRefs (domDocument));
if (domDocument == NULL) return NULL; /* resource://... */
nsCOMPtr<nsIDOMDocumentView> docView =
do_QueryInterface (domDocument);
NS_ENSURE_TRUE (docView, NULL);
nsCOMPtr<nsIDOMAbstractView> view;
docView->GetDefaultView (getter_AddRefs (view));
window = do_QueryInterface (view);
}
else
{
window = do_QueryInterface (aContext);
}
NS_ENSURE_TRUE (window, NULL);
GtkWidget *embed = EphyUtils::FindEmbed (window);
if (!EPHY_IS_EMBED (embed)) return NULL;
return embed;
}
NS_IMETHODIMP
EphyContentPolicy::ShouldLoad(PRUint32 aContentType,
nsIURI *aContentLocation,
nsIURI *aRequestingLocation,
nsISupports *aContext,
const nsACString &aMimeTypeGuess,
nsISupports *aExtra,
PRInt16 *aDecision)
{
NS_ENSURE_ARG (aContentLocation);
NS_ENSURE_ARG_POINTER (aDecision);
*aDecision = nsIContentPolicy::ACCEPT;
/* We have to always allow these, else forms and scrollbars break */
PRBool isChrome = PR_FALSE, isResource = PR_FALSE;
aContentLocation->SchemeIs ("chrome", &isChrome);
aContentLocation->SchemeIs ("resource", &isResource);
if (isChrome || isResource) return NS_OK;
PRBool isHttps = PR_FALSE;
aContentLocation->SchemeIs ("https", &isHttps);
if (isHttps) return NS_OK;
/* is this url allowed ? */
nsCString contentSpec;
aContentLocation->GetSpec (contentSpec);
EphyAdBlockManager *adblock_manager =
EPHY_ADBLOCK_MANAGER (ephy_embed_shell_get_adblock_manager (embed_shell));
static PRBool kBlockType[nsIContentPolicy::TYPE_REFRESH + 1] = {
PR_FALSE /* unused/unknown, don't block */,
PR_TRUE /* TYPE_OTHER */,
PR_TRUE /* TYPE_SCRIPT */,
PR_TRUE /* TYPE_IMAGE */,
PR_FALSE /* TYPE_STYLESHEET */,
PR_TRUE /* TYPE_OBJECT */,
PR_FALSE /* TYPE_DOCUMENT */,
PR_TRUE /* TYPE_SUBDOCUMENT */,
PR_TRUE /* TYPE_REFRESH */
};
if (kBlockType[aContentType < G_N_ELEMENTS (kBlockType) ? aContentType : 0])
{
GtkWidget *embed = GetEmbedFromContext (aContext);
if (embed &&
!ephy_adblock_manager_should_load (adblock_manager,
EPHY_EMBED (embed),
contentSpec.get (),
AdUriCheckType (aContentType)))
{
*aDecision = nsIContentPolicy::REJECT_REQUEST;
g_signal_emit_by_name (embed,
"content-blocked",
contentSpec.get ());
return NS_OK;
}
}
PRBool isHttp = PR_FALSE;
aContentLocation->SchemeIs ("http", &isHttp);
if (isHttp) return NS_OK;
if (strcmp (contentSpec.get(), "about:blank") == 0) return NS_OK;
nsCString contentScheme;
aContentLocation->GetScheme (contentScheme);
/* first general lockdown check */
if (mLocked &&
!g_slist_find_custom (mSafeProtocols, contentScheme.get(), (GCompareFunc) strcmp))
{
*aDecision = nsIContentPolicy::REJECT_REQUEST;
}
return NS_OK;
}
NS_IMETHODIMP
EphyContentPolicy::ShouldProcess(PRUint32 aContentType,
nsIURI *aContentLocation,
nsIURI *aRequestingLocation,
nsISupports *aContext,
const nsACString &aMimeType,
nsISupports *aExtra,
PRInt16 *aDecision)
{
*aDecision = nsIContentPolicy::ACCEPT;
return NS_OK;
}
/* static */ NS_METHOD
EphyContentPolicy::Register (nsIComponentManager* aComponentManager,
nsIFile* aPath,
const char* aRegistryLocation,
const char* aComponentType,
const nsModuleComponentInfo* aInfo)
{
nsresult rv;
nsCOMPtr<nsICategoryManager> catMan (do_GetService(NS_CATEGORYMANAGER_CONTRACTID, &rv));
NS_ENSURE_SUCCESS (rv, rv);
rv = catMan->AddCategoryEntry ("content-policy",
EPHY_CONTENT_POLICY_CONTRACTID,
EPHY_CONTENT_POLICY_CONTRACTID,
PR_FALSE /* don't persist */,
PR_TRUE /* replace */,
nsnull);
NS_ENSURE_SUCCESS (rv, rv);
return rv;
}
/* static */ NS_METHOD
EphyContentPolicy::Unregister (nsIComponentManager* aComponentManager,
nsIFile* aPath,
const char* aRegistryLocation,
const nsModuleComponentInfo* aInfo)
{
nsresult rv;
nsCOMPtr<nsICategoryManager> catMan (do_GetService(NS_CATEGORYMANAGER_CONTRACTID, &rv));
NS_ENSURE_SUCCESS (rv, rv);
rv = catMan->DeleteCategoryEntry ("content-policy",
EPHY_CONTENT_POLICY_CONTRACTID,
PR_FALSE /* don't persist */);
NS_ENSURE_SUCCESS (rv, rv);
return rv;
}