/**
* GNU LibreJS - A browser add-on to block nonfree nontrivial JavaScript.
* *
* Copyright (C) 2017 Nathan Nichols
*
* This file is part of GNU LibreJS.
*
* GNU LibreJS is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* GNU LibreJS is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with GNU LibreJS. If not, see .
*/
var acorn_base = require("acorn");
var acorn = require('acorn/dist/acorn_loose');
var jssha = require('jssha');
var walk = require("acorn/dist/walk");
console.log("main_background.js");
/**
* If this is true, it evaluates entire scripts instead of returning as soon as it encounters a violation.
*
* Also, it controls whether or not this part of the code logs to the console.
*
*/
var DEBUG = false; // debug the JS evaluation
var PRINT_DEBUG = false; // Everything else
function dbg_print(a,b){
if(PRINT_DEBUG == true){
if(b === undefined){
console.log(a);
} else{
console.log(a,b);
}
}
}
/**
* Wrapper around crypto lib
*
*/
function hash(source){
var shaObj = new jssha("SHA-256","TEXT")
shaObj.update(source);
return shaObj.getHash("HEX");
}
// the list of all available event attributes
var intrinsic_events = [
"onload",
"onunload",
"onclick",
"ondblclick",
"onmousedown",
"onmouseup",
"onmouseovr",
"onmousemove",
"onmouseout",
"onfocus",
"onblur",
"onkeypress",
"onkeydown",
"onkeyup",
"onsubmit",
"onreset",
"onselect",
"onchange"
];
/*
NONTRIVIAL THINGS:
- Fetch
- XMLhttpRequest
- eval()
- ?
JAVASCRIPT CAN BE FOUND IN:
- Event handlers (onclick, onload, onsubmit, etc.)
-
-
WAYS TO DETERMINE PASS/FAIL:
- "// @license [magnet link] [identifier]" then "// @license-end" (may also use /* comments)
- Automatic whitelist: (http://bzr.savannah.gnu.org/lh/librejs/dev/annotate/head:/data/script_libraries/script-libraries.json_
*/
var licenses = require("./licenses.json").licenses;
// These are objects that it will search for in an initial regex pass over non-free scripts.
var reserved_objects = [
//"document",
//"window",
"fetch",
"XMLHttpRequest",
"chrome", // only on chrome
"browser", // only on firefox
"eval"
];
// Default whitelist, comes from the script in hash_script
var default_whitelist = {"052b1b5ec0c4ae78aafc7a6e8542c5a2bf31d42a40dac3cfc102e512812b8bed":"core.js","0d9027289ffa5d9f6c8b4e0782bb31bbff2cef5ee3708ccbcb7a22df9128bb21":"jquery.js","87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de":"jquery.min.js","b40f32d17aa2c27a7098e225dd218070597646fc478c0f2aa74fb5b821a64668":"jquery.slim.js","9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398":"jquery.slim.min.js","7c5c8f96ac182ed4d2c9ac74fda37941745f2793814fbd8b28624a9a720f9d39":"core.js","c0f149348165558e3d07e0ae008ac3afddf65d26fa264dc9d4cdb6337136ca54":"jquery.js","2405bdf4c255a4904671bcc4b97938033d39b3f5f20dd068985a8d94cde273e2":"jquery.min.js","f18ac10930e84233b80814f5595bcc1f6ffad74047d038d997114e08880aec03":"jquery.slim.js","a8b02fd240408a170764b2377efdd621329e46c517dbb85deaea4105ad0c4a8c":"jquery.slim.min.js","4a4dec7ca8f2567b4327c82b873c8d7dd774f74b9009d2ff65431a8154693dea":"core.js","d7a71d3dd740e95755227ba6446a3a21b8af6c4444f29ec2411dc7cd306e10b0":"jquery.js","85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf":"jquery.min.js","e62fe6437d3433befd3763950eb975ea56e88705cd51dccbfd1d9a5545f25d60":"jquery.slim.js","fd222b36abfc87a406283b8da0b180e22adeb7e9327ac0a41c6cd5514574b217":"jquery.slim.min.js","55994528e7efe901e92a76761a54ba0c3ae3f1f8d1c3a4da9a23a3e4a06d0eaa":"core.js","b25a2092f0752b754e933008f10213c55dd5ce93a791e355b0abed9182cc8df9":"jquery.js","702b9e051e82b32038ffdb33a4f7eb5f7b38f4cf6f514e4182d8898f4eb0b7fb":"jquery.min.js","2faa690232fa8e0b5199f8ae8a0784139030348da91ff5fd2016cfc9a9c9799c":"jquery.slim.js","711a568e848ec3929cc8839a64da388ba7d9f6d28f85861bea2e53f51495246f":"jquery.slim.min.js","11853583eb5ce8ab1aacc380430145de705cdfff0e72c54d3dca17d01466999b":"core.js","65ded5fa34aa91b976dae0af5888ce4c06fed34271f3665b2924505b704025c7":"jquery.js","df68e90250b9a60fc184ef194d1769d3af8aa67396cc064281cb77e2ef6bf876":"jquery.min.js","c96eeff335114aa55df0328bbe5f9202ed7a3266b6e81fcd357cd17837fa9756":"jquery.slim.js","e92bbd6e77604b75e910952f20f3c95ce29050c7b1137dc1edddad000c236b5d":"jquery.slim.min.js","78f27c3d7cb5d766466703adc7f7ad7706b7fb05514eec39be0aa253449bd0f8":"jquery.js","b72a0aa436a8a8965041beda30577232677ef6588bb933b5bebed2de02c04dc8":"jquery.min.js","4db510700e5773fc7065f36363affd4885c9d9ef257fd7757744f91ac9da5671":"jquery.slim.js","4c369c555423651822c2f7772d5e0b9a56a2372a92657bd2a696fe539b24be9e":"jquery.slim.min.js","10b3ccff4cf14cdb5e7c31b2d323be750a13125cea8ded9ca5c1da4150a69238":"jquery.js","19e065eaadf26f58c0e1081a2e0e64450eec2983eebb08f998ecaacac8642a47":"jquery.min.js","bad41b5e9f7c6b952b3a840b84ce2e97e3029bd2b2773c58a69a33e73217d1e4":"core.js","8eb3cb67ef2f0f1b76167135cef6570a409c79b23f0bc0ede71c9a4018f1408a":"jquery.js","266bcea0bb58b26aa5b16c5aee60d22ccc1ae9d67daeb21db6bad56119c3447d":"jquery.min.js","1a9ea1a741fe03b6b1835b44ac2b9c59e39cdfc8abb64556a546c16528fc2828":"jquery.slim.js","45fe0169d7f20adb2f1e63bcf4151971b62f34dbd9bce4f4f002df133bc2b03d":"jquery.slim.min.js","893e90f6230962e42231635df650f20544ad22affc3ee396df768eaa6bc5a6a2":"jquery.js","05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e":"jquery.min.js","95a5d6b46c9da70a89f0903e5fdc769a2c266a22a19fcb5598e5448a044db4fe":"jquery.js","6b6de0d4db7876d1183a3edb47ebd3bbbf93f153f5de1ba6645049348628109a":"jquery.min.js","e3fcd40aa8aad24ab1859232a781b41a4f803ad089b18d53034d24e4296c6581":"jquery.js","dfa729d82a3effadab1000181cb99108f232721e3b0af74cfae4c12704b35a32":"jquery.min.js","78d714ccede3b2fd179492ef7851246c1f1b03bfc2ae83693559375e99a7c077":"jquery.js","82f420005cd31fab6b4ab016a07d623e8f5773de90c526777de5ba91e9be3b4d":"jquery.min.js","a18aa92dea997bd71eb540d5f931620591e9dee27e5f817978bb385bab924d21":"jquery.js","8a102873a33f24f7eb22221e6b23c4f718e29f85168ecc769a35bfaed9b12cce":"jquery.min.js","b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e":"jquery.js","22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5":"jquery.min.js","828cbbcacb430f9c5b5d27fe9302f8795eb338f2421010f5141882125226f94f":"jquery.js","2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515":"jquery.min.js","07cb07bdfba40ceff869b329eb48eeede41740ba6ce833dd3830bd0af49e4898":"jquery.js","64c51d974a342e9df3ed548082a4ad7816d407b8c36b67356dde9e487b819cbe":"jquery.min.js","dc0083a233768ed8554d770d9d4eed91c0e27de031b3d9cbdcecabc034265010":"jquery.js","293c9966a4fea0fed0adc1aae242bb37e428e649337dcab65d9af5934a7cc775":"jquery.min.js","5adbbda8312291291162ab054df8927291426dbfb550099945ece85b49707290":"jquery.js","d246298c351558d4847d237bb2d052f22001ca24ea4a32c28de378c95af523c8":"jquery.min.js","e96b9e8d7a12b381d2ed1efd785faef3c7bad0ea03edf42fb15c9fde533e761f":"jquery.js","5aed44447956d7933861d56003dbd0f95504d79e19d094edacbe4a55e6cf8736":"jquery.min.js","140ff438eaaede046f1ceba27579d16dc980595709391873fa9bf74d7dbe53ac":"jquery.js","c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079":"jquery.min.js","88d96de8ccf65e57a3f28134616e3abfe0af2b3712302beb0a73f77f6b873fd0":"jquery.js","11f94218bacdd4dbdc5c1736ca7aa1f27bb9632bc0a1696175b408da8dcf16b3":"jquery.min.js","8eb83f00967dd0e18877b71349f5a3641b1046a1667c54e602a5682ac0f07ab9":"jquery.js","7ebd0c0a5a088da45a5ec48f4379dbe457129f2cbe434f2e045ef838136746a9":"jquery.min.js","97efd5af482f4e74c37c04970421fdbd17388fd605d992a2aa0077d388b32b6d":"jquery.js","22966516a31e64225df5e08e35f0fadb27d29a8fb2618ddca17ec171215fc323":"jquery.min.js","0fa7752926a95e3ab6b5f67a21ef40628ce4447c81ddf4f6cacf663b6fb85af7":"jquery.js","f284353a7cc4d97f6fe20a5155131bd43587a0f1c98a56eeaf52cff72910f47d":"jquery.min.js","9427fe2df51f7d4c6bf35f96d19169714d0b432b99dc18f41760d0342c538122":"jquery.js","a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25":"jquery.min.js","d2ed0720108a75db0d53248ba8e36332658064c4189714d16c0f117efb42016d":"jquery.js","9d7d1c727e1cd32745764098a76e5d3d5fb7acd3b6527c5aacd85b7c6f8ce341":"jquery.min.js","820fb338fe8c7478a1b820e2708b4fd306a68825de1194803e7a93fbc2177a16":"jquery.js","4e1354fc542b617c58cbba3aeb5116a528cf08bb1299f5dc7f3bc77a3b902b68":"jquery.min.js","896e379d334cf0b16c78d9962a1579147156d4a72355032fce0de5f673d4e287":"jquery.js","d482871a5e948cb4884fa0972ea98a81abca057b6bd3f8c995a18c12487e761c":"jquery.min.js","430f36f9b5f21aae8cc9dca6a81c4d3d84da5175eaedcf2fdc2c226302cb3575":"jquery.js","668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404":"jquery.min.js","d5732912d03878a5cd3695dc275a6630fb3c255fa7c0b744ab08897824049327":"jquery.js","69a3831c082fc105b56c53865cc797fa90b83d920fb2f9f6875b00ad83a18174":"jquery.min.js","5540b2af46570795610626e8d8391356176ca639b1520c4319a2d0c7ba9bef16":"jquery.js","95914789b5f3307a3718679e867d61b9d4c03f749cd2e2970570331d7d6c8ed9":"jquery.min.js","56e843a66b2bf7188ac2f4c81df61608843ce144bd5aa66c2df4783fba85e8ef":"jquery.js","2359d383bf2d4ab65ebf7923bdf74ce40e4093f6e58251b395a64034b3c39772":"jquery.min.js","c85537acad72f0d7d409dfc1e2d2daa59032f71d29642a8b64b9852f70166fbb":"jquery.js","5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf":"jquery.min.js","2065aecca0fb9b0567358d352ed5f1ab72fce139bf449b4d09805f5d9c3725ed":"jquery.js","aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947":"jquery.min.js","58c27035b7a2e589df397e5d7e05424b90b8c1aaaf73eff47d5ed6daecb70f25":"jquery.js","d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32":"jquery.min.js","648dbce0f3731ebce091c283b52f60b100d73807501eea1a99f7b23140bfcefa":"jquery.js","06d766022172da3774651a3ccfeef893185f9ba46823bcbfcba744ab5e25a4bf":"jquery.min.js","8241d4982de8a6fea3e0ebc47e99445337675a777054c09221f670adb3748995":"jquery.js","a581c274adebdbc44022e45d9febf0b92c572481c58bfe562b3d74d5e8972c5a":"jquery.min.js","0aab28e2fd1f61b6282132553325bd890fef40989b698311c5b00b7b38a1e19d":"jquery.js","99ec4d1ab56cf49ee4c202cc41509ada5eeb334694815f75675792433828a527":"jquery.min.js","3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc":"jquery.js","540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441":"jquery.min.js","84792d2b1ab8a2d57dcc113abb910b4c31dda357a7acd3b46ed282dd03f15d25":"jquery.js","5f58804382f5258bb6b187c1b5af1ec0b8ccbe2c904a5163580371352ca63424":"jquery.min.js","847a61382a55d0c0e5244d0621f1e0674292dee6b850640c669fd1516ec9f4f5":"jquery.js","51fc79c1828a885f3776e35d56a22895e3656d014b502b869bd05f891bd91602":"jquery.min.js","ce0343e1d6f489768eeefe022c12181c6a0822e756239851310acf076d23d10c":"jquery.js","b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682":"jquery.min.js","8ade6740a1d3cfedf81e28d9250929341207b23a55f1be90ccc26cf6d98e052a":"jquery.js","89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e":"jquery.min.js","ebaded49db62a60060caa2577f2a4ec1ff68726bc40861bc65d977abeb64fa7d":"jquery.js","8bf150f6b29d6c9337de6c945a8f63c929b203442040688878bc2753fe13e007":"jquery.min.js","8aa0f84b5331efcc3cb72c7d504c2bc6ebd861da003d72c33df99ce650d4531d":"jquery.js","1e80de36726582824df3f9a7eb6ecdfe9827fc5a7c69f597b1502ebc13950ecd":"jquery.min.js","7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40":"jquery.js","c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4":"jquery.min.js","4d7b01c2f6043bcee83a33d0f627dc6fbc27dc8aeb5bdd5d863e84304b512ef3":"jquery.js","7fa0d5c3f538c76f878e012ac390597faecaabfe6fb9d459b919258e76c5df8e":"jquery.min.js","756d7dfac4a35bb57543f677283d6c682e8d704e5350884b27325badd2b3c4a7":"jquery.js","61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf":"jquery.min.js","ba8f203a9ebbe5771f49bcbe0804079240c7225f4be6ab424769bfbfb35ebc35":"jquery.js","f23d4b309b72743aa8afe1f8c98a25b3ee31246fa572c66d9d8cb1982cae4fbc":"jquery.min.js","7614fc75c4fcf6f32f7307f37550440e12adefb9289226acb79020c66faeffea":"jquery.js","a1305347219d673cc973172494248e557ce8eccaf65af995c07c9d7daed4475d":"jquery.min.js","04ee795a1a5a908ee339e145ae6c6b394d1dc0d971fd0896e3cb776660adba2e":"jquery.js","d73e2e1bff9c55b85284ff287cb20dc29ad9165ec09091a0597b61199f330805":"jquery.min.js","47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4":"jquery.min.js","88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd":"jquery.min.js","ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce":"jquery.min.js","54964f8b580ad795a962fb27066715d3281ae1ad13a28bf8aedd5d8859ebae37":"jquery.js","951d6bae39eb172f57a88bd686f7a921cf060fd21f59648f0d20b6a8f98fc5a5":"jquery.min.js","9baa10e1c5630c3dcd9bb46bf00913cc94b3855d58c9459ae9848339c566e97b":"jquery.js","d3f3779f5113da6da957c4d81481146a272c31aefe0d3e4b64414fd686fd9744":"jquery.min.js","a57292619d14eb8cbd923bde9f28cf994ac66abc48f7c975b769328ff33bddc9":"jquery.js","fefb084f14120d777c7857ba78603e8531a0778b2e639df7622513c70567afa0":"jquery.min.js","0eef76a9583a6c7a1eb764d33fe376bfe1861df79fab82c2c3f5d16183e82016":"jquery.js","c784376960f3163dc760bc019e72e5fed78203745a5510c69992a39d1d8fe776":"jquery.min.js","e2ea0a6ca6b984a9405a759d24cf3c51eb3164e5c43e95c3e9a59b316be7b3b9":"jquery.js","764b9e9f3ad386aaa5cdeae9368353994de61c0bede087c8f7e3579cb443de3b":"jquery.min.js","b31cd094af7950b3a461dc78161fd2faf01faa9d0ed8c1c072790f83ab26d482":"jquery.js","517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c":"jquery.min.js","0e3303a3a0cec95ebc8c3cc3e19fc71c99487faa286b05d01a3eb8cca4d90bc7":"jquery.js","f800b399e5c7a5254fc66bb407117fe38dbde0528780e68c9f7c87d299f8486a":"jquery.min.js","95c023c80dfe0d30304c58244878995061f87801a66daa5d6bf4f2512be0e6f9":"jquery.js","e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59":"jquery.min.js","9edc9f813781eca2aad6de78ef85cdbe92ee32bb0a56791be4da0fa7b472c1d8":"jquery.js","2cec78f739fbddfed852cd7934d2530e7cc4c8f14b38673b03ba5fb880ad4cc7":"jquery.min.js","882927b9aadb2504b5c6a823bd8c8c516f21dec6e441fe2c8fa228e35951bcc8":"jquery.js","89abaf1e2471b00525b0694048e179c0f39a2674e3bcb34460ea6bc4801882be":"jquery.min.js","74537639fa585509395c0d3b9a5601dd1e4ca036961c53dc5ab0e87386aa9be1":"jquery.js","c8370a2d050359e9d505acc411e6f457a49b21360a21e6cbc9229bad3a767899":"jquery.min.js","0ae058559b3e65d6cc5674fe3ff01581da5ae62387bb0dfa2923997a52093a06":"jquery.js","17ec1f16efac893b9bd89bba5f13cb1e0bf938bdc9cece6cae3ed77f18fa6fd7":"jquery.min.js","a7756f21ff6c558f983d5376072174af546e8d07f8bebe1e6f760b2f4b53012d":"jquery.js","900191a443115d8b48a9d68d3062e8b3d7129727951b8617465b485baf253006":"jquery.min.js","3cc5c121471323b25de45fcab48631d4a09c78e76af21c10d747352682605587":"jquery.js","d548530775a6286f49ba66e0715876b4ec5985966b0291c21568fecfc4178e8d":"jquery.min.js","d977fc32dd4bdb0479604abf078f1045b0e922666313f2f42cd71ce7835e0061":"jquery.js","f1c4a0a7b5dead231fc9b42f06965a036ab7a2a788768847eb81e1528d6402ad":"jquery.min.js"}
/**
*
* Sets global variable "webex" to either "chrome" or "browser" for
* use on Chrome or a Firefox variant.
*
* Change this to support a new browser that isn't Chrome or Firefox,
* given that it supports webExtensions.
*
* (Use the variable "webex" for all API calls after calling this)
*/
var webex;
function set_webex(){
if(typeof(browser) == "object"){
webex = browser;
}
if(typeof(chrome) == "object"){
webex = chrome;
}
}
// Generates JSON key for local storage
function get_storage_key(script_name,src_hash){
return script_name;
}
/*
*
* Called when something changes the persistent data of the add-on.
*
* The only things that should need to change this data are:
* a) The "Whitelist this page" button
* b) The options screen
*
* When the actual blocking is implemented, this will need to comminicate
* with its code to update accordingly
*
*/
function options_listener(changes, area){
// The cache must be flushed when settings are changed
// TODO: See if this can be minimized
function flushed(){
dbg_print("cache flushed");
}
//var flushingCache = webex.webRequest.handlerBehaviorChanged(flushed);
dbg_print("Items updated in area" + area +": ");
var changedItems = Object.keys(changes);
var changed_items = "";
for (var i = 0; i < changedItems.length; i++){
var item = changedItems[i];
changed_items += item + ",";
}
dbg_print(changed_items);
}
/**
* Executes the "Display this report in new tab" function
* by opening a new tab with whatever HTML is in the popup
* at the moment.
*/
var active_connections = {};
var unused_data = {};
function open_popup_tab(data){
dbg_print(data);
function gotPopup(popupURL){
var creating = webex.tabs.create({"url":popupURL},function(a){
dbg_print("[TABID:"+a["id"]+"] creating unused data entry from parent window's content");
unused_data[a["id"]] = data;
});
}
var gettingPopup = webex.browserAction.getPopup({},gotPopup);
}
/**
*
* Clears local storage (the persistent data)
*
*/
function debug_delete_local(){
webex.storage.local.clear();
dbg_print("Local storage cleared");
}
/**
*
* Prints local storage (the persistent data) as well as the temporary popup object
*
*/
function debug_print_local(){
function storage_got(items){
console.log("%c Local storage: ", 'color: red;');
for(var i in items){
console.log("%c "+i+" = "+items[i], 'color: blue;');
}
}
console.log("%c Variable 'unused_data': ", 'color: red;');
console.log(unused_data);
webex.storage.local.get(storage_got);
}
/**
*
*
* Sends a message to the content script that sets the popup entries for a tab.
*
* var example_blocked_info = {
* "accepted": [["REASON 1","SOURCE 1"],["REASON 2","SOURCE 2"]],
* "blocked": [["REASON 1","SOURCE 1"],["REASON 2","SOURCE 2"]],
* "url": "example.com"
* }
*
* NOTE: This WILL break if you provide inconsistent URLs to it.
* Make sure it will use the right URL when refering to a certain script.
*
*/
function update_popup(tab_id,blocked_info,update=false){
var new_blocked_data;
function get_sto(items){
//************************************************************************//
// Move scripts that are accepted/blocked but whitelisted to "whitelisted" category
// (Ideally, they just would not be tested in the first place because that would be faster)
var url = blocked_info["url"];
if(url === undefined){
console.error("No url passed to update_popup");
return 1;
}
function get_status(script_name){
var temp = script_name.match(/\(.*?\)/g);
if(temp == null){
return "none"
}
var src_hash = temp[temp.length-1].substr(1,temp[0].length-2);
for(var i in items){
var res = i.match(/\(.*?\)/g);
if(res != null){
var test_hash = res[res.length-1].substr(1,res[0].length-2);
if(test_hash == src_hash){
return items[i];
}
}
}
if(default_whitelist[src_hash] !== undefined){
//console.log("Found script in default whitelist: "+default_whitelist[src_hash]);
return "whitelist";
} else{
//console.log("script " + script_name + " not in default whitelist.");
return "none";
}
}
function is_bl(script_name){
if(get_status(script_name) == "blacklist"){
return true;
}
else return false;
}
function is_wl(script_name){
if(get_status(script_name) == "whitelist"){
return true;
}
else return false;
}
new_blocked_data = {
"accepted":[],
"blocked":[],
"blacklisted":[],
"whitelisted":[],
"url": url
};
for(var type in blocked_info){
for(var script_arr in blocked_info[type]){
if(is_bl(blocked_info[type][script_arr][0])){
new_blocked_data["blacklisted"].push(blocked_info[type][script_arr]);
//console.log("Script " + blocked_info[type][script_arr][0] + " is blacklisted");
continue;
}
if(is_wl(blocked_info[type][script_arr][0])){
new_blocked_data["whitelisted"].push(blocked_info[type][script_arr]);
//console.log("Script " + blocked_info[type][script_arr][0] + " is whitelisted");
continue;
}
if(type == "url"){
continue;
}
// either "blocked" or "accepted"
new_blocked_data[type].push(blocked_info[type][script_arr]);
//console.log("Script " + blocked_info[type][script_arr][0] + " isn't whitelisted or blacklisted");
}
}
dbg_print(new_blocked_data);
//***********************************************************************************************//
// store the blocked info until it is opened and needed
if(update == false && active_connections[tab_id] === undefined){
dbg_print("[TABID:"+tab_id+"]"+"Storing blocked_info for when the browser action is opened or asks for it.");
if(tab_id == undefined){
dbg_print("UNDEFINED TAB_ID");
}
unused_data[tab_id] = new_blocked_data;
} else{
if(tab_id == undefined){
dbg_print("UNDEFINED TAB_ID");
}
unused_data[tab_id] = new_blocked_data;
dbg_print("[TABID:"+tab_id+"]"+"Sending blocked_info directly to browser action");
active_connections[tab_id].postMessage({"show_info":new_blocked_data});
delete active_connections[tab_id];
}
return 0;
}
webex.storage.local.get(get_sto);
}
/**
*
* This is what you call when a page gets changed to update the info box.
*
* Sends a message to the content script that adds a popup entry for a tab.
*
* var example_blocked_info = {
* "accepted"or "blocked": ["name","reason"],
* "url": "example.com"
* }
*
* Returns true/false based on if script should be accepted/denied respectively
*
* NOTE: This WILL break if you provide inconsistent URLs to it.
* Make sure it will use the right URL when refering to a certain script.
*
*/
function add_popup_entry(tab_id,src_hash,blocked_info,update=false){
return new Promise((resolve, reject) => {
var new_blocked_data;
// Make sure the entry in unused_data exists
var url = blocked_info["url"];
if(url === undefined){
console.error("No url passed to update_popup");
return 1;
}
if(unused_data[tab_id] === undefined){
unused_data[tab_id] = {
"accepted":[],
"blocked":[],
"blacklisted":[],
"whitelisted":[],
"url": url
};
}
if(unused_data[tab_id]["accepted"] === undefined){unused_data[tab_id]["accepted"] = [];}
if(unused_data[tab_id]["blocked"] === undefined){unused_data[tab_id]["blocked"] = [];}
if(unused_data[tab_id]["blacklisted"] === undefined){unused_data[tab_id]["blacklisted"] = [];}
if(unused_data[tab_id]["whitelisted"] === undefined){unused_data[tab_id]["whitelisted"] = [];}
var type = "";
if(blocked_info["accepted"] !== undefined){
type = "accepted";
}
if(blocked_info["blocked"] !== undefined){
type = "blocked";
}
function get_sto(items){
function get_status(script_name,src_hash){
var temp = script_name.match(/\(.*?\)/g);
if(temp == null){
return "none"
}
var src_hash = temp[temp.length-1].substr(1,temp[0].length-2);
for(var i in items){
var res = i.match(/\(.*?\)/g);
if(res != null){
var test_hash = res[res.length-1].substr(1,res[0].length-2);
if(test_hash == src_hash){
return items[i];
}
}
}
if(default_whitelist[src_hash] !== undefined){
//console.log("Found script in default whitelist: "+default_whitelist[src_hash]);
return "whitelist";
} else{
//console.log("script " + script_name + " not in default whitelist.");
}
return "none";
}
function is_bl(script_name){
if(get_status(script_name) == "blacklist"){
return true;
}
return false;
}
function is_wl(script_name){
if(get_status(script_name) == "whitelist"){
return true;
}
return false;
}
// Search unused data for the given entry
function not_duplicate(entry,key){
var flag = true;
for(var i = 0; i < unused_data[tab_id][entry].length; i++){
if(unused_data[tab_id][entry][i][0] == key[0]){
flag = false;
}
}
return flag;
}
var type_key = "";
var res = "";
if(is_bl(blocked_info[type][0])){
type_key = "blacklisted";
res = "bl";
//console.log("Script " + blocked_info[type][0] + " is blacklisted");
}
else if(is_wl(blocked_info[type][0])){
type_key = "whitelisted";
res = "wl";
//console.log("Script " + blocked_info[type][0] + " is whitelisted");
} else{
type_key = type;
res = "none";
//console.log("Script " + blocked_info[type][0] + " isn't whitelisted or blacklisted");
}
if(not_duplicate(type_key,blocked_info[type])){
dbg_print(unused_data);
dbg_print(unused_data[tab_id]);
dbg_print(type_key);
unused_data[tab_id][type_key].push(blocked_info[type]);
resolve(res);
} else{
resolve(res);
}
}
webex.storage.local.get(get_sto);
return 0;
});
}
function get_domain(url){
var domain = url.replace('http://','').replace('https://','').split(/[/?#]/)[0];
if(url.indexOf("http://") == 0){
domain = "http://" + domain;
}
else if(url.indexOf("https://") == 0){
domain = "https://" + domain;
}
domain = domain + "/";
domain = domain.replace(/ /g,"");
return domain;
}
/**
*
* This is the callback where the content scripts of the browser action will contact the background script.
*
*/
var portFromCS;
function connected(p) {
if(p["name"] == "contact_finder"){
// Send a message back with the relevant settings
function cb(items){
p.postMessage(items);
}
webex.storage.local.get(cb);
return;
}
p.onMessage.addListener(function(m) {
/**
* Updates the entry of the current URL in storage
*/
function set_script(script,val){
if(val != "whitelist" && val != "forget" && val != "blacklist"){
console.error("Key must be either 'whitelist', 'blacklist' or 'forget'");
}
// (Remember that we do not trust the names of scripts.)
var current_url = "";
function geturl(tabs) {
current_url = tabs[0]["url"];
var domain = get_domain(current_url);
var scriptkey = m[val][0];
if(val == "forget"){
console.log("KEY:");
console.log(scriptkey);
// TODO: This should produce a "Refresh the page for this change to take effect" message
var prom = webex.storage.local.remove(scriptkey);
} else{
var newitem = {};
newitem[scriptkey] = val;
webex.storage.local.set(newitem);
}
}
var querying = webex.tabs.query({active: true,currentWindow: true},geturl);
}
var update = false;
var contact_finder = false;
if(m["whitelist"] !== undefined){
set_script(m["whitelist"][0],"whitelist");
update = true;
}
if(m["blacklist"] !== undefined){
set_script(m["blacklist"][0],"blacklist");
update = true;
}
if(m["forget"] !== undefined){
set_script(m["forget"][0],"forget");
update = true;
}
//
if(m["open_popup_tab"] !== undefined){
open_popup_tab(m["open_popup_tab"]);
}
// a debug feature
if(m["printlocalstorage"] !== undefined){
console.log("Print local storage");
debug_print_local();
}
// invoke_contact_finder
if(m["invoke_contact_finder"] !== undefined){
contact_finder = true;
inject_contact_finder();
}
// a debug feature (maybe give the user an option to do this?)
if(m["deletelocalstorage"] !== undefined){
console.log("Delete local storage");
debug_delete_local();
}
// Add this domain to the whitelist
if(m["allow_all"] !== undefined){
var domain = get_domain(m["allow_all"]["url"]);
add_csv_whitelist(domain);
}
// Remote this domain from the whitelist
if(m["block_all"] !== undefined){
var domain = get_domain(m["block_all"]["url"]);
remove_csv_whitelist(domain);
}
function logTabs(tabs) {
if(contact_finder){
dbg_print("[TABID:"+tab_id+"] Injecting contact finder");
//inject_contact_finder(tabs[0]["id"]);
}
if(update){
dbg_print("%c updating tab "+tabs[0]["id"],"color: red;");
update_popup(tabs[0]["id"],unused_data[tabs[0]["id"]],true);
active_connections[tabs[0]["id"]] = p;
}
for(var i = 0; i < tabs.length; i++) {
var tab = tabs[i];
var tab_id = tab["id"];
if(unused_data[tab_id] !== undefined){
// If we have some data stored here for this tabID, send it
dbg_print("[TABID:"+tab_id+"]"+"Sending stored data associated with browser action");
p.postMessage({"show_info":unused_data[tab_id]});
} else{
// create a new entry
unused_data[tab_id] = {"url":tab["url"],"blocked":"","accepted":""};
p.postMessage({"show_info":unused_data[tab_id]});
dbg_print("[TABID:"+tab_id+"]"+"No data found, creating a new entry for this window.");
}
}
}
var querying = webex.tabs.query({active: true,currentWindow: true},logTabs);
});
}
/**
* The callback for tab closings.
*
* Delete the info we are storing about this tab if there is any.
*
*/
function delete_removed_tab_info(tab_id, remove_info){
dbg_print("[TABID:"+tab_id+"]"+"Deleting stored info about closed tab");
if(unused_data[tab_id] !== undefined){
delete unused_data[tab_id];
}
if(active_connections[tab_id] !== undefined){
delete active_connections[tab_id];
}
}
/**
* Turns a blob URL into a data URL
*
*/
function get_data_url(blob,url){
return new Promise((resolve, reject) => {
//var url = URL.createObjectURL(blob);
var reader = new FileReader();
reader.addEventListener("load", function(){
//console.log("redirecting");
//console.log(url);
//console.log("to");
//console.log(reader.result);
resolve({"redirectUrl": reader.result});
});
reader.readAsDataURL(blob);
});
}
/**
* Check whitelisted by hash
*
*/
function blocked_status(hash){
return new Promise((resolve, reject) => {
function cb(items){
var wl = items["pref_whitelist"];
for(var i in items){
var res = i.match(/\(.*?\)/g);
if(res != null){
var test_hash = res[res.length-1].substr(1,res[0].length-2);
if(test_hash == hash){
resolve(items[i]);
}
}
}
resolve("none");
}
webex.storage.local.get(cb);
});
}
/* *********************************************************************************************** */
var fname_data = require("./fname_data.json").fname_data;
//************************this part can be tested in the HTML file index.html's script test.js****************************
function full_evaluate(script){
var res = true;
if(script === undefined || script == ""){
return [true,"Harmless null script"];
}
var ast = acorn.parse_dammit(script).body[0];
var flag = false;
var amtloops = 0;
var loopkeys = {"for":true,"if":true,"while":true,"switch":true};
var operators = {"||":true,"&&":true,"=":true,"==":true,"++":true,"--":true,"+=":true,"-=":true,"*":true};
try{
var tokens = acorn_base.tokenizer(script);
}catch(e){
console.warn("Tokenizer could not be initiated (probably invalid code)");
return [false,"Tokenizer could not be initiated (probably invalid code)"];
}
try{
var toke = tokens.getToken();
}catch(e){
console.warn("couldn't get first token (probably invalid code)");
console.warn("Continuing evaluation");
}
/**
* Given the end of an identifer token, it tests for bracket suffix notation
*/
function being_called(end){
var i = 0;
while(script.charAt(end+i).match(/\s/g) !== null){
i++;
if(i >= script.length-1){
return false;
}
}
return script.charAt(end+i) == "(";
}
/**
* Given the end of an identifer token, it tests for parentheses
*/
function is_bsn(end){
var i = 0;
while(script.charAt(end+i).match(/\s/g) !== null){
i++;
if(i >= script.length-1){
return false;
}
}
return script.charAt(end+i) == "[";
}
var error_count = 0;
while(toke !== undefined && toke.type != acorn_base.tokTypes.eof){
if(toke.type.keyword !== undefined){
//dbg_print("Keyword:");
//dbg_print(toke);
// This type of loop detection ignores functional loop alternatives and ternary operators
if(toke.type.keyword == "function"){
dbg_print("%c NONTRIVIAL: Function declaration.","color:red");
if(DEBUG == false){
return [false,"NONTRIVIAL: Function declaration."];
}
}
if(loopkeys[toke.type.keyword] !== undefined){
amtloops++;
if(amtloops > 3){
dbg_print("%c NONTRIVIAL: Too many loops/conditionals.","color:red");
if(DEBUG == false){
return [false,"NONTRIVIAL: Too many loops/conditionals."];
}
}
}
}else if(toke.value !== undefined && operators[toke.value] !== undefined){
// It's just an operator. Javascript doesn't have operator overloading so it must be some
// kind of primitive (I.e. a number)
}else if(toke.value !== undefined){
var status = fname_data[toke.value];
if(status === true){ // is the identifier banned?
dbg_print("%c NONTRIVIAL: nontrivial token: '"+toke.value+"'","color:red");
if(DEBUG == false){
return [false,"NONTRIVIAL: nontrivial token: '"+toke.value+"'"];
}
}else if(status === false){// is the identifier not banned?
// Is there bracket suffix notation?
if(is_bsn(toke.end)){
dbg_print("%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'","color:red");
if(DEBUG == false){
return [false,"%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'"];
}
}
}else if(status === undefined){// is the identifier user defined?
// Are arguments being passed to a user defined variable?
if(being_called(toke.end)){
dbg_print("%c NONTRIVIAL: User defined variable '"+toke.value+"' called as function","color:red");
if(DEBUG == false){
return [false,"NONTRIVIAL: User defined variable '"+toke.value+"' called as function"];
}
}
// Is there bracket suffix notation?
if(is_bsn(toke.end)){
dbg_print("%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'","color:red");
if(DEBUG == false){
return [false,"NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'"];
}
}
}else{
dbg_print("trivial token:"+toke.value);
}
}
// If not a keyword or an identifier it's some kind of operator, field parenthesis, brackets
try{
toke = tokens.getToken();
}catch(e){
dbg_print("Denied script because it cannot be parsed.");
return [false,"NONTRIVIAL: Cannot be parsed. This could mean it is a 404 error."];
}
}
dbg_print("%cAppears to be trivial.","color:green;");
return [true,"Script appears to be trivial."];
}
//****************************************************************************************************
/**
* This is the entry point for full code evaluation.
*
* Performs the initial pass on code to see if it needs to be completely parsed
*
* This can only determine if a script is bad, not if it's good
*
* If it passes the intitial pass, it runs the full pass and returns the result
*
*/
function evaluate(script,name){
function reserved_object_regex(object){
var arith_operators = "\\+\\-\\*\\/\\%\\=";
var scope_chars = "\{\}\]\[\(\)\,";
var trailing_chars = "\s*"+"\(\.\[";
return new RegExp("(?:[^\\w\\d]|^|(?:"+arith_operators+"))"+object+'(?:\\s*?(?:[\\;\\,\\.\\(\\[])\\s*?)',"g");
}
reserved_object_regex("window");
var all_strings = new RegExp('".*?"'+"|'.*?'","gm");
var ml_comment = /\/\*([\s\S]+?)\*\//g;
var il_comment = /\/\/.+/gm;
var bracket_pairs = /\[.+?\]/g;
var temp = script.replace(/'.+?'+/gm,"'string'");
temp = temp.replace(/".+?"+/gm,'"string"');
temp = temp.replace(ml_comment,"");
temp = temp.replace(il_comment,"");
dbg_print("%c ------evaluation results for "+ name +"------","color:white");
dbg_print("Script accesses reserved objects?");
var flag = true;
var reason = ""
// This is where individual "passes" are made over the code
for(var i = 0; i < reserved_objects.length; i++){
var res = reserved_object_regex(reserved_objects[i]).exec(temp);
if(res != null){
dbg_print("%c fail","color:red;");
flag = false;
reason = "Script uses a reserved object (" + reserved_objects[i] + ")";
}
}
if(flag){
dbg_print("%c pass","color:green;");
} else{
return [flag,reason+"
"];
}
var temp = full_evaluate(temp);
temp[1] = temp[1] + "
";
return temp;
}
function license_valid(matches){
if(matches.length != 4){
return [false, "malformed or unrecognized license tag"];
}
if(matches[1] != "@license"){
return [false, "malformed or unrecognized license tag"];
}
if(licenses[matches[3]] === undefined){
return [false, "malformed or unrecognized license tag"];
}
if(licenses[matches[3]]["Magnet link"] != matches[2]){
return [false, "malformed or unrecognized license tag"];
}
return [true,"Recognized license as '"+matches[3]+"'
"];
}
/**
*
* Evaluates the content of a script (license, if it is non-trivial)
*
* Returns
* [
* true (accepted) or false (denied),
* edited content,
* reason text
* ]
*/
function license_read(script_src, name){
var reason_text = "";
var edited_src = "";
var unedited_src = script_src;
var nontrivial_status;
var parts_denied = false;
var parts_accepted = false;
while(true){ // TODO: refactor me
// TODO: support multiline comments
var matches = /\/\s*?(@license)\s([\S]+)\s([\S]+$)/gm.exec(unedited_src);
if(matches == null){
nontrivial_status = evaluate(unedited_src,name);
if(nontrivial_status[0] == true){
parts_accepted = true;
edited_src += unedited_src;
} else{
parts_denied = true;
edited_src += "\n/*\nLIBREJS BLOCKED:"+nontrivial_status[1]+"\n*/\n";
}
reason_text += "\n" + nontrivial_status[1];
if(parts_denied == true && parts_accepted == true){
reason_text = "Script was determined partly non-trivial after editing. (check source for details)\n"+reason_text;
}
if(parts_denied == true && parts_accepted == false){
return [false,edited_src,reason_text];
}
else return [true,edited_src,reason_text];
}
var before = unedited_src.substr(0,matches["index"]);
nontrivial_status = evaluate(before,name);
if(nontrivial_status[0] == true){
parts_accepted = true;
edited_src += before;
} else{
parts_denied = true;
edited_src += "\n/*\nLIBREJS BLOCKED:"+nontrivial_status[1]+"\n*/\n";
}
unedited_src = unedited_src.substr(matches["index"],unedited_src.length);
// TODO: support multiline comments
var matches_end = /\/\/\s*?(@license-end)/gm.exec(unedited_src);
if(matches_end == null){
dbg_print("ERROR: @license with no @license-end");
return [false,"\n/*\n ERROR: @license with no @license-end \n*/\n","ERROR: @license with no @license-end"];
}
var endtag_end_index = matches_end["index"]+matches_end[0].length;
var license_res = license_valid(matches);
if(license_res[0] == true){
edited_src = edited_src + unedited_src.substr(0,endtag_end_index);
reason_text += "\n" + license_res[1];
} else{
edited_src = edited_src + "\n/*\n"+license_res[1]+"\n*/\n";
reason_text += "\n" + license_res[1];
}
// trim off everything we just evaluated
unedited_src = unedited_src.substr(endtag_end_index,unedited_src.length);
}
}
/* *********************************************************************************************** */
// TODO: Test if this script is being loaded from another domain compared to unused_data[tabid]["url"]
/**
*
* Returns a promise that resolves with the final edited script as a string.
*/
function get_script(response,url,tabid,wl,index=-1){
return new Promise((resolve, reject) => {
if(unused_data[tabid] === undefined){
unused_data[tabid] = {"url":url,"accepted":[],"blocked":[]};
}
var tok_index = url.split("/").length;
var scriptname = url.split("/")[tok_index-1];
if(wl == true){
// Accept without reading script, it was explicitly whitelisted
if(typeof(unused_data[tabid]["accepted"].push) != "function"){
unused_data[tabid]["accepted"] = [[scriptname,"Page is whitelisted in preferences"]];
} else{
unused_data[tabid]["accepted"].push([scriptname,"Page is whitelisted in preferences"]);
}
resolve("\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response);
if(index != -1){
resolve(["\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response,index]);
} else{
resolve("\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response);
}
}
var src_hash = hash(response);
var edited = license_read(response,scriptname);
var verdict = edited[0];
var popup_res;
var domain = get_domain(url);
var badge_str = 0;
if(unused_data[tabid]["blocked"] !== undefined){
badge_str += unused_data[tabid]["blocked"].length;
}
if(unused_data[tabid]["blacklisted"] !== undefined){
badge_str += unused_data[tabid]["blacklisted"].length;
}
dbg_print("amt. blocked on page:"+badge_str);
if(badge_str > 0 || verdict == false){
webex.browserAction.setBadgeText({
text: "GRR",
tabId: tabid
});
webex.browserAction.setBadgeBackgroundColor({
color: "red",
tabId: tabid
});
} else{
webex.browserAction.setBadgeText({
text: "OK",
tabId: tabid
});
webex.browserAction.setBadgeBackgroundColor({
color: "green",
tabId: tabid
});
}
if(verdict == true){
popup_res = add_popup_entry(tabid,src_hash,{"url":domain,"accepted":[scriptname+" ("+src_hash+")",edited[2]]});
} else{
popup_res = add_popup_entry(tabid,src_hash,{"url":domain,"blocked":[scriptname+" ("+src_hash+")",edited[2]]});
}
popup_res.then(function(list_verdict){
var blob;
if(list_verdict == "wl"){
// redirect to the unedited version
if(index != -1){
resolve(["/* LibreJS: Script whitelisted by user */\n"+response,index]);
} else{
resolve("/* LibreJS: Script whitelisted by user */\n"+response);
}
}else if(list_verdict == "bl"){
// Blank the entire script
if(index != -1){
resolve(["/* LibreJS: Script blacklisted by user */\n",index]);
} else{
resolve("/* LibreJS: Script blacklisted by user */\n");
}
} else{
// Return the edited (normal) version
if(index != -1){
resolve(["/* LibreJS: Script acknowledged */\n"+edited[1],index]);
} else{
resolve("/* LibreJS: Script acknowledged */\n"+edited[1]);
}
}
});
});
}
/**
* Tests if a request is google analytics or not
*/
function test_GA(a){ // TODO: DRY me
// This is just an HTML page
if(a.url == 'https://www.google.com/analytics/#?modal_active=none'){
return false;
}
else if(a.url.match(/https:\/\/www\.google\.com\/analytics\//g)){
dbg_print("%c Google analytics (1)","color:red");
return {cancel: true};
}
else if(a.url == 'https://www.google-analytics.com/analytics.js'){
dbg_print("%c Google analytics (2)","color:red");
return {cancel: true};
}
else if(a.url == 'https://www.google.com/analytics/js/analytics.min.js'){
dbg_print("%c Google analytics (3)","color:red");
return {cancel: true};
}
else return false;
}
/**
* A callback that every type of request invokes.
*/
function block_ga(a){
var GA = test_GA(a);
if(GA != false){
return GA;
}
else return {};
}
/**
* This is a callback trigged from requests caused by script tags with the src="" attribute.
*/
function read_script(a){
var GA = test_GA(a);
if(GA !== false){
return GA;
}
var filter = webex.webRequest.filterResponseData(a.requestId);
var decoder = new TextDecoder("utf-8");
var encoder = new TextEncoder();
filter.ondata = event => {
var str = decoder.decode(event.data, {stream: true});
var res = test_url_whitelisted(a.url);
res.then(function(whitelisted){
var edit_script;
if(whitelisted == true){
// Doesn't matter if this is accepted or blocked, it will still be whitelisted
edit_script = get_script(str,a.url,a["tabId"],true);
} else{
edit_script = get_script(str,a.url,a["tabId"],false);
}
edit_script.then(function(edited){
filter.write(encoder.encode(edited));
filter.disconnect();
});
});
}
return {};
}
/**
* Removes noscript tags with name "librejs-path" leaving the inner content to load.
*/
function remove_noscripts(html_doc){
for(var i = 0; i < html_doc.getElementsByName("librejs-path").length; i++){
if(html_doc.getElementsByName("librejs-path")[i].tagName == "NOSCRIPT"){
html_doc.getElementsByName("librejs-path")[i].outerHTML = html_doc.getElementsByName("librejs-path")[i].innerHTML;
}
}
return html_doc.documentElement.innerHTML;
}
/**
* Tests to see if the intrinsic events on the page are free or not.
* returns true if they are, false if they're not
*/
function read_metadata(meta_element){
if(meta_element === undefined || meta_element === null){
return;
}
console.log("metadata found");
var metadata = {};
try{
metadata = JSON.parse(meta_element.innerHTML);
}catch(error){
console.log("Could not parse metadata on page.")
return false;
}
var license_str = metadata["intrinsic-events"];
if(license_str === undefined){
console.log("No intrinsic events license");
return false;
}
console.log(license_str);
var parts = license_str.split(" ");
if(parts.length != 2){
console.log("invalid (>2 tokens)");
return false;
}
// this should be adequete to escape the HTML escaping
parts[0] = parts[0].replace(/&/g, '&');
try{
if(licenses[parts[1]]["Magnet link"] == parts[0]){
return true;
}else{
console.log("invalid (doesn't match licenses)");
return false;
}
} catch(error){
console.log("invalid (threw error, key didn't exist)");
return false;
}
}
/**
* Reads/changes the HTML of a page and the scripts within it.
*/
function edit_html(html,url,tabid,wl){
return new Promise((resolve, reject) => {
if(wl == true){
// Don't bother, page is whitelisted
resolve(html);
}
var parser = new DOMParser();
var html_doc = parser.parseFromString(html, "text/html");
var amt_scripts = 0;
var total_scripts = 0;
var scripts = html_doc.scripts;
var meta_element = html_doc.getElementById("LibreJS-info");
if(read_metadata(meta_element)){
console.log("Valid license for intrinsic events found in metadata");
}else{
// Deal with intrinsic events
var has_intrinsic_events = [];
for(var i = 0; i < html_doc.all.length; i++){
for(var j = 0; j < intrinsic_events.length; j++){
if(intrinsic_events[j] in html_doc.all[i].attributes){
has_intrinsic_events.push([i,j]);
}
}
}
// "i" is an index in html_doc.all
// "j" is an index in intrinsic_events
function edit_event(src,i,j,name){
var edited = get_script(src,name);
edited.then(function(){
html_doc.all[i].attributes[intrinsic_events[j]].value = edited[0];
});
}
// Find all the document's elements with intrinsic events
for(var i = 0; i < has_intrinsic_events.length; i++){
var s_name = "Intrinsic event ["+has_intrinsic_events[i][0]+"]";
edit_event(html_doc.all[has_intrinsic_events[i][0]].attributes[intrinsic_events[has_intrinsic_events[i][1]]].value,has_intrinsic_events[i][0],has_intrinsic_events[i][1],s_name);
}
}
// Deal with inline scripts
for(var i = 0; i < scripts.length; i++){
if(scripts[i].src == ""){
total_scripts++;
}
}
dbg_print("Analyzing "+total_scripts+" inline scripts...");
for(var i = 0; i < scripts.length; i++){
if(scripts[i].src == ""){
var edit_script = get_script(scripts[i].innerHTML,url,tabid,wl,i);
edit_script.then(function(edited){
var edited_source = edited[0];
var unedited_source = html_doc.scripts[edited[1]].innerHTML.trim();
html_doc.scripts[edited[1]].innerHTML = edited_source;
amt_scripts++;
if(amt_scripts >= total_scripts){
resolve(remove_noscripts(html_doc));
}
});
}
}
if(total_scripts == 0){
dbg_print("Nothing to analyze.");
resolve(remove_noscripts(html_doc));
}
});
}
/**
* Callback for main frame requests
*
*/
function read_document(a){
var GA = test_GA(a);
if(GA != false){
return GA;
}
if(unused_data[a["tabId"]] !== undefined && unused_data[a["tabId"]]["url"] != get_domain(a["url"])){
delete unused_data[a["tabId"]];
dbg_print("Page Changed!!!");
}
var str = "";
var filter = webex.webRequest.filterResponseData(a.requestId);
var decoder = new TextDecoder("utf-8");
var encoder = new TextEncoder();
filter.onerror = event => {
dbg_print("%c Error in getting document","color:red");
}
filter.onstop = event => {
var test = new ArrayBuffer();
var res = test_url_whitelisted(a.url);
res.then(function(whitelisted){
var edit_page;
if(whitelisted == true){
dbg_print("WHITELISTED");
// Doesn't matter if this is accepted or blocked, it will still be whitelisted
filter.write(encoder.encode(str));
filter.disconnect();
} else{
edit_page = edit_html(str,a.url,a["tabId"],false);
edit_page.then(function(edited){
filter.write(encoder.encode(edited));
filter.disconnect();
});
}
});
}
filter.ondata = event => {
str += decoder.decode(event.data, {stream: true});
}
return {};
}
/**
* Initializes various add-on functions
* only meant to be called once when the script starts
*/
function init_addon(){
set_webex();
webex.runtime.onConnect.addListener(connected);
webex.storage.onChanged.addListener(options_listener);
webex.tabs.onRemoved.addListener(delete_removed_tab_info);
// Prevents Google Analytics from being loaded from Google servers
var all_types = [
"beacon", "csp_report", "font", "image", "imageset", "main_frame", "media",
"object", "object_subrequest", "ping", "script", "stylesheet", "sub_frame",
"web_manifest", "websocket", "xbl", "xml_dtd", "xmlhttprequest", "xslt",
"other"
]
// Analyzes remote scripts
webex.webRequest.onBeforeRequest.addListener(
block_ga,
{urls:[""], types:all_types},
["blocking"]
);
// Analyzes remote scripts
webex.webRequest.onBeforeRequest.addListener(
read_script,
{urls:[""], types:["script"]},
["blocking"]
);
// Analyzes the scripts inside of HTML
webex.webRequest.onBeforeRequest.addListener(
read_document,
{urls:[""], types:["main_frame"]},
["blocking"]
);
}
/**
* Test if a page is whitelisted/blacklisted.
*
* The input here is tested against the comma seperated string found in the options.
*
* It does NOT test against the individual entries created by hitting the "whitelist"
* button for a script in the browser action.
*/
function test_url_whitelisted(url){
return new Promise((resolve, reject) => {
function cb(items){
var wl = items["pref_whitelist"];
if(wl !== undefined && wl !== ""){
wl = wl.split(",");
} else{
resolve(false);
return;
}
var regex;
for(var i in wl){
var s = wl[i].replace(/\*/g,"\\S*");
s = s.replace(/\./g,"\\.");
regex = new RegExp(s, "g");
if(url.match(regex)){
//console.log("%c" + wl[i] + " matched " + url,"color: purple;");
resolve(true);
return;
} else{
//console.log("%c" + wl[i] + " didn't match " + url,"color: #dd0000;");
}
}
resolve(false);
return;
}
webex.storage.local.get(cb);
});
}
/**
* Loads the contact finder on the given tab ID.
*/
function inject_contact_finder(tab_id){
function executed(result) {
dbg_print("[TABID:"+tab_id+"]"+"finished executing contact finder: " + result);
}
var executing = webex.tabs.executeScript(tab_id, {file: "/contact_finder.js"}, executed);
}
/**
* Adds given domain to the whitelist in options
*/
function add_csv_whitelist(domain){
function storage_got(items){
if(items["pref_whitelist"] == ""){
items["pref_whitelist"] = domain + "*";
} else if(items["pref_whitelist"] == "undefined"){
items["pref_whitelist"] = domain + "*";
} else{
items["pref_whitelist"] += "," + domain + "*";
}
dbg_print("New CSV whitelist:");
dbg_print(items["pref_whitelist"]);
webex.storage.local.set({"pref_whitelist":items["pref_whitelist"]});
}
webex.storage.local.get(storage_got);
}
/**
* removes given domain from the whitelist in options
*/
function remove_csv_whitelist(domain){
function storage_got(items){
if(items["pref_whitelist"] != ""){
domain = domain + "\\*";
domain.replace(/\./g,"\.");
// remove domain
dbg_print(new RegExp(domain,"g"));
items["pref_whitelist"] = items["pref_whitelist"].replace(new RegExp(domain,"g"),"")
// if an entry was deleted, it will leave an extra comma
items["pref_whitelist"] = items["pref_whitelist"].replace(/,+/g,",");
// remove trailing comma if the last one was deleted
if(items["pref_whitelist"].charAt(items["pref_whitelist"].length-1) == ","){
items["pref_whitelist"] = items["pref_whitelist"].substr(0,items["pref_whitelist"].length-2);
}
}
dbg_print("New CSV whitelist:");
dbg_print(items["pref_whitelist"]);
webex.storage.local.set({"pref_whitelist":items["pref_whitelist"]});
}
webex.storage.local.get(storage_got);
}
init_addon();