var acorn_base = require("acorn"); var acorn = require('acorn/dist/acorn_loose'); var jssha = require('jssha'); var walk = require("acorn/dist/walk"); console.log("main_background.js"); /** * If this is true, it evaluates entire scripts instead of returning as soon as it encounters a violation. * * Also, it controls whether or not this part of the code logs to the console. * */ var DEBUG = false; function dbg_print(a,b){ if(DEBUG == true){ if(b === undefined){ console.log(a); } else{ console.log(a,b); } } } /** * Wrapper around crypto lib * */ function hash(source){ var shaObj = new jssha("SHA-256","TEXT") shaObj.update(source); return shaObj.getHash("HEX"); } // the list of all available event attributes var intrinsicEvents = [ "onload", "onunload", "onclick", "ondblclick", "onmousedown", "onmouseup", "onmouseovr", "onmousemove", "onmouseout", "onfocus", "onblur", "onkeypress", "onkeydown", "onkeyup", "onsubmit", "onreset", "onselect", "onchange" ]; /* NONTRIVIAL THINGS: - Fetch - XMLhttpRequest - eval() - ? JAVASCRIPT CAN BE FOUND IN: - Event handlers (onclick, onload, onsubmit, etc.) - - WAYS TO DETERMINE PASS/FAIL: - "// @license [magnet link] [identifier]" then "// @license-end" (may also use /* comments) - Automatic whitelist: (http://bzr.savannah.gnu.org/lh/librejs/dev/annotate/head:/data/script_libraries/script-libraries.json_ -
which may be linked to by a link tag identified by rel="jslicense" or data-jslicense="1" - In the first script tag, declare the license with @licstart/@licend */ var licenses = { 'Apache-2.0':{ 'URL': 'http://www.apache.org/licenses/LICENSE-2.0', 'Magnet link': 'magnet:?xt=urn:btih:8e4f440f4c65981c5bf93c76d35135ba5064d8b7&dn=apache-2.0.txt' }, // No identifier was present in documentation 'Artistic-2.0':{ 'URL': 'http://www.perlfoundation.org/artistic_license_2_0', 'Magnet link': 'magnet:?xt=urn:btih:54fd2283f9dbdf29466d2df1a98bf8f65cafe314&dn=artistic-2.0.txt' }, // No identifier was present in documentation 'Boost':{ 'URL': 'http://www.boost.org/LICENSE_1_0.txt', 'Magnet link': 'magnet:?xt=urn:btih:89a97c535628232f2f3888c2b7b8ffd4c078cec0&dn=Boost-1.0.txt' }, // No identifier was present in documentation 'BSD-3-Clause':{ 'URL': 'http://opensource.org/licenses/BSD-3-Clause', 'Magnet link': 'magnet:?xt=urn:btih:c80d50af7d3db9be66a4d0a86db0286e4fd33292&dn=bsd-3-clause.txt', }, 'CPAL-1.0':{ 'URL': 'http://opensource.org/licenses/cpal_1.0', 'Magnet link': 'magnet:?xt=urn:btih:84143bc45939fc8fa42921d619a95462c2031c5c&dn=cpal-1.0.txt' }, 'CC0-1.0':{ 'URL': 'http://creativecommons.org/publicdomain/zero/1.0/legalcode', 'Magnet link': 'magnet:?xt=urn:btih:90dc5c0be029de84e523b9b3922520e79e0e6f08&dn=cc0.txt' }, 'EPL-1.0':{ 'URL': 'http://www.eclipse.org/legal/epl-v10.html', 'Magnet link': 'magnet:?xt=urn:btih:4c6a2ad0018cd461e9b0fc44e1b340d2c1828b22&dn=epl-1.0.txt' }, 'Expat':{ 'URL': 'http://www.jclark.com/xml/copying.txt', 'Magnet link': 'magnet:?xt=urn:btih:d3d9a9a6595521f9666a5e94cc830dab83b65699&dn=expat.txt' }, 'FreeBSD':{ 'URL': 'http://www.freebsd.org/copyright/freebsd-license.html', 'Magnet link': 'magnet:?xt=urn:btih:87f119ba0b429ba17a44b4bffcab33165ebdacc0&dn=freebsd.txt' }, 'GPL-2.0':{ 'URL': 'http://www.gnu.org/licenses/gpl-2.0.html', 'Magnet link': 'magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt' }, 'GPL-3.0':{ 'URL': 'http://www.gnu.org/licenses/gpl-3.0.html', 'Magnet link': 'magnet:?xt=urn:btih:1f739d935676111cfff4b4693e3816e664797050&dn=gpl-3.0.txt' }, 'LGPL-2.1':{ 'URL': 'http://www.gnu.org/licenses/lgpl-2.1.html', 'Magnet link': 'magnet:?xt=urn:btih:5de60da917303dbfad4f93fb1b985ced5a89eac2&dn=lgpl-2.1.txt' }, 'LGPL-3.0':{ 'URL': 'http://www.gnu.org/licenses/lgpl-3.0.html', 'Magnet link': 'magnet:?xt=urn:btih:0ef1b8170b3b615170ff270def6427c317705f85&dn=lgpl-3.0.txt' }, 'AGPL-3.0':{ 'URL': 'http://www.gnu.org/licenses/agpl-3.0.html', 'Magnet link': 'magnet:?xt=urn:btih:0b31508aeb0634b347b8270c7bee4d411b5d4109&dn=agpl-3.0.txt' }, 'ISC':{ 'URL': 'https://www.isc.org/downloads/software-support-policy/isc-license/', 'Magnet link': 'magnet:?xt=urn:btih:b8999bbaf509c08d127678643c515b9ab0836bae&dn=ISC.txt' }, 'MPL-2.0':{ 'URL': 'http://www.mozilla.org/MPL/2.0', 'Magnet link': 'magnet:?xt=urn:btih:3877d6d54b3accd4bc32f8a48bf32ebc0901502a&dn=mpl-2.0.txt' }, // "Public domain is not a license" // Replace with CC0? 'Public-Domain':{ 'URL': 'https://www.gnu.org/licenses/license-list.html#PublicDomain', 'Magnet link': 'magnet:?xt=urn:btih:e95b018ef3580986a04669f1b5879592219e2a7a&dn=public-domain.txt' }, 'UPL-1.0': { 'URL': 'https://oss.oracle.com/licenses/upl/', 'Magnet link': 'magnet:?xt=urn:btih:478974f4d41c3fa84c4befba25f283527fad107d&dn=upl-1.0.txt' }, 'WTFPL': { 'URL': 'http://www.wtfpl.net/txt/copying/', 'Magnet link': 'magnet:?xt=urn:btih:723febf9f6185544f57f0660a41489c7d6b4931b&dn=wtfpl.txt' }, 'Unlicense':{ 'URL': 'http://unlicense.org/UNLICENSE', 'Magnet link': 'magnet:?xt=urn:btih:5ac446d35272cc2e4e85e4325b146d0b7ca8f50c&dn=unlicense.txt' }, // No identifier was present in documentation 'X11':{ 'URL': 'http://www.xfree86.org/3.3.6/COPYRIGHT2.html#3', 'Magnet link': 'magnet:?xt=urn:btih:5305d91886084f776adcf57509a648432709a7c7&dn=x11.txt' }, // Picked one of the two links that were there 'Modified-BSD':{ 'URL': 'http://www.xfree86.org/current/LICENSE4.html', 'Magnet link': 'magnet:?xt=urn:btih:12f2ec9e8de2a3b0002a33d518d6010cc8ab2ae9&dn=xfree86.txt' } } // Objects which could be used to do nontrivial things. // Scripts are not allowed to call any methods on these objects or access them in any way. var reserved_objects = [ //"document", //"window", "fetch", "XMLHttpRequest", "chrome", // only on chrome "browser", // only on firefox "eval" ]; // the list of all available event attributes var intrinsic_events = [ "onload", "onunload", "onclick", "ondblclick", "onmousedown", "onmouseup", "onmouseover", "onmousemove", "onmouseout", "onfocus", "onblur", "onkeypress", "onkeydown", "onkeyup", "onsubmit", "onreset", "onselect", "onchange" ]; // TODO: make it so that there is a list of objects that have certain banned methods (which also means it must ban bracket suffix notation on these objects) // Default whitelist, comes from the script in hash_script var default_whitelist = {"052b1b5ec0c4ae78aafc7a6e8542c5a2bf31d42a40dac3cfc102e512812b8bed":"core.js","0d9027289ffa5d9f6c8b4e0782bb31bbff2cef5ee3708ccbcb7a22df9128bb21":"jquery.js","87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de":"jquery.min.js","b40f32d17aa2c27a7098e225dd218070597646fc478c0f2aa74fb5b821a64668":"jquery.slim.js","9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398":"jquery.slim.min.js","7c5c8f96ac182ed4d2c9ac74fda37941745f2793814fbd8b28624a9a720f9d39":"core.js","c0f149348165558e3d07e0ae008ac3afddf65d26fa264dc9d4cdb6337136ca54":"jquery.js","2405bdf4c255a4904671bcc4b97938033d39b3f5f20dd068985a8d94cde273e2":"jquery.min.js","f18ac10930e84233b80814f5595bcc1f6ffad74047d038d997114e08880aec03":"jquery.slim.js","a8b02fd240408a170764b2377efdd621329e46c517dbb85deaea4105ad0c4a8c":"jquery.slim.min.js","4a4dec7ca8f2567b4327c82b873c8d7dd774f74b9009d2ff65431a8154693dea":"core.js","d7a71d3dd740e95755227ba6446a3a21b8af6c4444f29ec2411dc7cd306e10b0":"jquery.js","85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf":"jquery.min.js","e62fe6437d3433befd3763950eb975ea56e88705cd51dccbfd1d9a5545f25d60":"jquery.slim.js","fd222b36abfc87a406283b8da0b180e22adeb7e9327ac0a41c6cd5514574b217":"jquery.slim.min.js","55994528e7efe901e92a76761a54ba0c3ae3f1f8d1c3a4da9a23a3e4a06d0eaa":"core.js","b25a2092f0752b754e933008f10213c55dd5ce93a791e355b0abed9182cc8df9":"jquery.js","702b9e051e82b32038ffdb33a4f7eb5f7b38f4cf6f514e4182d8898f4eb0b7fb":"jquery.min.js","2faa690232fa8e0b5199f8ae8a0784139030348da91ff5fd2016cfc9a9c9799c":"jquery.slim.js","711a568e848ec3929cc8839a64da388ba7d9f6d28f85861bea2e53f51495246f":"jquery.slim.min.js","11853583eb5ce8ab1aacc380430145de705cdfff0e72c54d3dca17d01466999b":"core.js","65ded5fa34aa91b976dae0af5888ce4c06fed34271f3665b2924505b704025c7":"jquery.js","df68e90250b9a60fc184ef194d1769d3af8aa67396cc064281cb77e2ef6bf876":"jquery.min.js","c96eeff335114aa55df0328bbe5f9202ed7a3266b6e81fcd357cd17837fa9756":"jquery.slim.js","e92bbd6e77604b75e910952f20f3c95ce29050c7b1137dc1edddad000c236b5d":"jquery.slim.min.js","78f27c3d7cb5d766466703adc7f7ad7706b7fb05514eec39be0aa253449bd0f8":"jquery.js","b72a0aa436a8a8965041beda30577232677ef6588bb933b5bebed2de02c04dc8":"jquery.min.js","4db510700e5773fc7065f36363affd4885c9d9ef257fd7757744f91ac9da5671":"jquery.slim.js","4c369c555423651822c2f7772d5e0b9a56a2372a92657bd2a696fe539b24be9e":"jquery.slim.min.js","10b3ccff4cf14cdb5e7c31b2d323be750a13125cea8ded9ca5c1da4150a69238":"jquery.js","19e065eaadf26f58c0e1081a2e0e64450eec2983eebb08f998ecaacac8642a47":"jquery.min.js","bad41b5e9f7c6b952b3a840b84ce2e97e3029bd2b2773c58a69a33e73217d1e4":"core.js","8eb3cb67ef2f0f1b76167135cef6570a409c79b23f0bc0ede71c9a4018f1408a":"jquery.js","266bcea0bb58b26aa5b16c5aee60d22ccc1ae9d67daeb21db6bad56119c3447d":"jquery.min.js","1a9ea1a741fe03b6b1835b44ac2b9c59e39cdfc8abb64556a546c16528fc2828":"jquery.slim.js","45fe0169d7f20adb2f1e63bcf4151971b62f34dbd9bce4f4f002df133bc2b03d":"jquery.slim.min.js","893e90f6230962e42231635df650f20544ad22affc3ee396df768eaa6bc5a6a2":"jquery.js","05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e":"jquery.min.js","95a5d6b46c9da70a89f0903e5fdc769a2c266a22a19fcb5598e5448a044db4fe":"jquery.js","6b6de0d4db7876d1183a3edb47ebd3bbbf93f153f5de1ba6645049348628109a":"jquery.min.js","e3fcd40aa8aad24ab1859232a781b41a4f803ad089b18d53034d24e4296c6581":"jquery.js","dfa729d82a3effadab1000181cb99108f232721e3b0af74cfae4c12704b35a32":"jquery.min.js","78d714ccede3b2fd179492ef7851246c1f1b03bfc2ae83693559375e99a7c077":"jquery.js","82f420005cd31fab6b4ab016a07d623e8f5773de90c526777de5ba91e9be3b4d":"jquery.min.js","a18aa92dea997bd71eb540d5f931620591e9dee27e5f817978bb385bab924d21":"jquery.js","8a102873a33f24f7eb22221e6b23c4f718e29f85168ecc769a35bfaed9b12cce":"jquery.min.js","b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e":"jquery.js","22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5":"jquery.min.js","828cbbcacb430f9c5b5d27fe9302f8795eb338f2421010f5141882125226f94f":"jquery.js","2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515":"jquery.min.js","07cb07bdfba40ceff869b329eb48eeede41740ba6ce833dd3830bd0af49e4898":"jquery.js","64c51d974a342e9df3ed548082a4ad7816d407b8c36b67356dde9e487b819cbe":"jquery.min.js","dc0083a233768ed8554d770d9d4eed91c0e27de031b3d9cbdcecabc034265010":"jquery.js","293c9966a4fea0fed0adc1aae242bb37e428e649337dcab65d9af5934a7cc775":"jquery.min.js","5adbbda8312291291162ab054df8927291426dbfb550099945ece85b49707290":"jquery.js","d246298c351558d4847d237bb2d052f22001ca24ea4a32c28de378c95af523c8":"jquery.min.js","e96b9e8d7a12b381d2ed1efd785faef3c7bad0ea03edf42fb15c9fde533e761f":"jquery.js","5aed44447956d7933861d56003dbd0f95504d79e19d094edacbe4a55e6cf8736":"jquery.min.js","140ff438eaaede046f1ceba27579d16dc980595709391873fa9bf74d7dbe53ac":"jquery.js","c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079":"jquery.min.js","88d96de8ccf65e57a3f28134616e3abfe0af2b3712302beb0a73f77f6b873fd0":"jquery.js","11f94218bacdd4dbdc5c1736ca7aa1f27bb9632bc0a1696175b408da8dcf16b3":"jquery.min.js","8eb83f00967dd0e18877b71349f5a3641b1046a1667c54e602a5682ac0f07ab9":"jquery.js","7ebd0c0a5a088da45a5ec48f4379dbe457129f2cbe434f2e045ef838136746a9":"jquery.min.js","97efd5af482f4e74c37c04970421fdbd17388fd605d992a2aa0077d388b32b6d":"jquery.js","22966516a31e64225df5e08e35f0fadb27d29a8fb2618ddca17ec171215fc323":"jquery.min.js","0fa7752926a95e3ab6b5f67a21ef40628ce4447c81ddf4f6cacf663b6fb85af7":"jquery.js","f284353a7cc4d97f6fe20a5155131bd43587a0f1c98a56eeaf52cff72910f47d":"jquery.min.js","9427fe2df51f7d4c6bf35f96d19169714d0b432b99dc18f41760d0342c538122":"jquery.js","a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25":"jquery.min.js","d2ed0720108a75db0d53248ba8e36332658064c4189714d16c0f117efb42016d":"jquery.js","9d7d1c727e1cd32745764098a76e5d3d5fb7acd3b6527c5aacd85b7c6f8ce341":"jquery.min.js","820fb338fe8c7478a1b820e2708b4fd306a68825de1194803e7a93fbc2177a16":"jquery.js","4e1354fc542b617c58cbba3aeb5116a528cf08bb1299f5dc7f3bc77a3b902b68":"jquery.min.js","896e379d334cf0b16c78d9962a1579147156d4a72355032fce0de5f673d4e287":"jquery.js","d482871a5e948cb4884fa0972ea98a81abca057b6bd3f8c995a18c12487e761c":"jquery.min.js","430f36f9b5f21aae8cc9dca6a81c4d3d84da5175eaedcf2fdc2c226302cb3575":"jquery.js","668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404":"jquery.min.js","d5732912d03878a5cd3695dc275a6630fb3c255fa7c0b744ab08897824049327":"jquery.js","69a3831c082fc105b56c53865cc797fa90b83d920fb2f9f6875b00ad83a18174":"jquery.min.js","5540b2af46570795610626e8d8391356176ca639b1520c4319a2d0c7ba9bef16":"jquery.js","95914789b5f3307a3718679e867d61b9d4c03f749cd2e2970570331d7d6c8ed9":"jquery.min.js","56e843a66b2bf7188ac2f4c81df61608843ce144bd5aa66c2df4783fba85e8ef":"jquery.js","2359d383bf2d4ab65ebf7923bdf74ce40e4093f6e58251b395a64034b3c39772":"jquery.min.js","c85537acad72f0d7d409dfc1e2d2daa59032f71d29642a8b64b9852f70166fbb":"jquery.js","5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf":"jquery.min.js","2065aecca0fb9b0567358d352ed5f1ab72fce139bf449b4d09805f5d9c3725ed":"jquery.js","aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947":"jquery.min.js","58c27035b7a2e589df397e5d7e05424b90b8c1aaaf73eff47d5ed6daecb70f25":"jquery.js","d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32":"jquery.min.js","648dbce0f3731ebce091c283b52f60b100d73807501eea1a99f7b23140bfcefa":"jquery.js","06d766022172da3774651a3ccfeef893185f9ba46823bcbfcba744ab5e25a4bf":"jquery.min.js","8241d4982de8a6fea3e0ebc47e99445337675a777054c09221f670adb3748995":"jquery.js","a581c274adebdbc44022e45d9febf0b92c572481c58bfe562b3d74d5e8972c5a":"jquery.min.js","0aab28e2fd1f61b6282132553325bd890fef40989b698311c5b00b7b38a1e19d":"jquery.js","99ec4d1ab56cf49ee4c202cc41509ada5eeb334694815f75675792433828a527":"jquery.min.js","3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc":"jquery.js","540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441":"jquery.min.js","84792d2b1ab8a2d57dcc113abb910b4c31dda357a7acd3b46ed282dd03f15d25":"jquery.js","5f58804382f5258bb6b187c1b5af1ec0b8ccbe2c904a5163580371352ca63424":"jquery.min.js","847a61382a55d0c0e5244d0621f1e0674292dee6b850640c669fd1516ec9f4f5":"jquery.js","51fc79c1828a885f3776e35d56a22895e3656d014b502b869bd05f891bd91602":"jquery.min.js","ce0343e1d6f489768eeefe022c12181c6a0822e756239851310acf076d23d10c":"jquery.js","b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682":"jquery.min.js","8ade6740a1d3cfedf81e28d9250929341207b23a55f1be90ccc26cf6d98e052a":"jquery.js","89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e":"jquery.min.js","ebaded49db62a60060caa2577f2a4ec1ff68726bc40861bc65d977abeb64fa7d":"jquery.js","8bf150f6b29d6c9337de6c945a8f63c929b203442040688878bc2753fe13e007":"jquery.min.js","8aa0f84b5331efcc3cb72c7d504c2bc6ebd861da003d72c33df99ce650d4531d":"jquery.js","1e80de36726582824df3f9a7eb6ecdfe9827fc5a7c69f597b1502ebc13950ecd":"jquery.min.js","7bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40":"jquery.js","c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4":"jquery.min.js","4d7b01c2f6043bcee83a33d0f627dc6fbc27dc8aeb5bdd5d863e84304b512ef3":"jquery.js","7fa0d5c3f538c76f878e012ac390597faecaabfe6fb9d459b919258e76c5df8e":"jquery.min.js","756d7dfac4a35bb57543f677283d6c682e8d704e5350884b27325badd2b3c4a7":"jquery.js","61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf":"jquery.min.js","ba8f203a9ebbe5771f49bcbe0804079240c7225f4be6ab424769bfbfb35ebc35":"jquery.js","f23d4b309b72743aa8afe1f8c98a25b3ee31246fa572c66d9d8cb1982cae4fbc":"jquery.min.js","7614fc75c4fcf6f32f7307f37550440e12adefb9289226acb79020c66faeffea":"jquery.js","a1305347219d673cc973172494248e557ce8eccaf65af995c07c9d7daed4475d":"jquery.min.js","04ee795a1a5a908ee339e145ae6c6b394d1dc0d971fd0896e3cb776660adba2e":"jquery.js","d73e2e1bff9c55b85284ff287cb20dc29ad9165ec09091a0597b61199f330805":"jquery.min.js","47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4":"jquery.min.js","88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd":"jquery.min.js","ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce":"jquery.min.js","54964f8b580ad795a962fb27066715d3281ae1ad13a28bf8aedd5d8859ebae37":"jquery.js","951d6bae39eb172f57a88bd686f7a921cf060fd21f59648f0d20b6a8f98fc5a5":"jquery.min.js","9baa10e1c5630c3dcd9bb46bf00913cc94b3855d58c9459ae9848339c566e97b":"jquery.js","d3f3779f5113da6da957c4d81481146a272c31aefe0d3e4b64414fd686fd9744":"jquery.min.js","a57292619d14eb8cbd923bde9f28cf994ac66abc48f7c975b769328ff33bddc9":"jquery.js","fefb084f14120d777c7857ba78603e8531a0778b2e639df7622513c70567afa0":"jquery.min.js","0eef76a9583a6c7a1eb764d33fe376bfe1861df79fab82c2c3f5d16183e82016":"jquery.js","c784376960f3163dc760bc019e72e5fed78203745a5510c69992a39d1d8fe776":"jquery.min.js","e2ea0a6ca6b984a9405a759d24cf3c51eb3164e5c43e95c3e9a59b316be7b3b9":"jquery.js","764b9e9f3ad386aaa5cdeae9368353994de61c0bede087c8f7e3579cb443de3b":"jquery.min.js","b31cd094af7950b3a461dc78161fd2faf01faa9d0ed8c1c072790f83ab26d482":"jquery.js","517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c":"jquery.min.js","0e3303a3a0cec95ebc8c3cc3e19fc71c99487faa286b05d01a3eb8cca4d90bc7":"jquery.js","f800b399e5c7a5254fc66bb407117fe38dbde0528780e68c9f7c87d299f8486a":"jquery.min.js","95c023c80dfe0d30304c58244878995061f87801a66daa5d6bf4f2512be0e6f9":"jquery.js","e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59":"jquery.min.js","9edc9f813781eca2aad6de78ef85cdbe92ee32bb0a56791be4da0fa7b472c1d8":"jquery.js","2cec78f739fbddfed852cd7934d2530e7cc4c8f14b38673b03ba5fb880ad4cc7":"jquery.min.js","882927b9aadb2504b5c6a823bd8c8c516f21dec6e441fe2c8fa228e35951bcc8":"jquery.js","89abaf1e2471b00525b0694048e179c0f39a2674e3bcb34460ea6bc4801882be":"jquery.min.js","74537639fa585509395c0d3b9a5601dd1e4ca036961c53dc5ab0e87386aa9be1":"jquery.js","c8370a2d050359e9d505acc411e6f457a49b21360a21e6cbc9229bad3a767899":"jquery.min.js","0ae058559b3e65d6cc5674fe3ff01581da5ae62387bb0dfa2923997a52093a06":"jquery.js","17ec1f16efac893b9bd89bba5f13cb1e0bf938bdc9cece6cae3ed77f18fa6fd7":"jquery.min.js","a7756f21ff6c558f983d5376072174af546e8d07f8bebe1e6f760b2f4b53012d":"jquery.js","900191a443115d8b48a9d68d3062e8b3d7129727951b8617465b485baf253006":"jquery.min.js","3cc5c121471323b25de45fcab48631d4a09c78e76af21c10d747352682605587":"jquery.js","d548530775a6286f49ba66e0715876b4ec5985966b0291c21568fecfc4178e8d":"jquery.min.js","d977fc32dd4bdb0479604abf078f1045b0e922666313f2f42cd71ce7835e0061":"jquery.js","f1c4a0a7b5dead231fc9b42f06965a036ab7a2a788768847eb81e1528d6402ad":"jquery.min.js"} /** * * Sets global variable "webex" to either "chrome" or "browser" for * use on Chrome or a Firefox variant. * * Change this to support a new browser that isn't Chrome or Firefox, * given that it supports webExtensions. * * (Use the variable "webex" for all API calls after calling this) */ var webex; function set_webex(){ if(typeof(browser) == "object"){ webex = browser; } if(typeof(chrome) == "object"){ webex = chrome; } } // Generates JSON key for local storage function get_storage_key(script_name,src_hash){ return script_name; } /* * * Called when something changes the persistent data of the add-on. * * The only things that should need to change this data are: * a) The "Whitelist this page" button * b) The options screen * * When the actual blocking is implemented, this will need to comminicate * with its code to update accordingly * */ function options_listener(changes, area){ // The cache must be flushed when settings are changed // TODO: See if this can be minimized function flushed(){ dbg_print("cache flushed"); } //var flushingCache = webex.webRequest.handlerBehaviorChanged(flushed); dbg_print("Items updated in area" + area +": "); var changedItems = Object.keys(changes); var changed_items = ""; for (var i = 0; i < changedItems.length; i++){ var item = changedItems[i]; changed_items += item + ","; } dbg_print(changed_items); } /** * Executes the "Display this report in new tab" function * by opening a new tab with whatever HTML is in the popup * at the moment. */ var active_connections = {}; var unused_data = {}; function open_popup_tab(data){ dbg_print(data); function gotPopup(popupURL){ var creating = webex.tabs.create({"url":popupURL},function(a){ dbg_print("[TABID:"+a["id"]+"] creating unused data entry from parent window's content"); unused_data[a["id"]] = data; }); } var gettingPopup = webex.browserAction.getPopup({},gotPopup); } /** * * Clears local storage (the persistent data) * */ function debug_delete_local(){ webex.storage.local.clear(); dbg_print("Local storage cleared"); } /** * * Prints local storage (the persistent data) as well as the temporary popup object * */ function debug_print_local(){ function storage_got(items){ dbg_print("%c Local storage: ", 'color: red;'); for(var i in items){ dbg_print("%c "+i+" = "+items[i], 'color: blue;'); } } dbg_print("%c Variable 'unused_data': ", 'color: red;'); dbg_print(unused_data); webex.storage.local.get(storage_got); } /** * * * Sends a message to the content script that sets the popup entries for a tab. * * var example_blocked_info = { * "accepted": [["REASON 1","SOURCE 1"],["REASON 2","SOURCE 2"]], * "blocked": [["REASON 1","SOURCE 1"],["REASON 2","SOURCE 2"]], * "url": "example.com" * } * * NOTE: This WILL break if you provide inconsistent URLs to it. * Make sure it will use the right URL when refering to a certain script. * */ function update_popup(tab_id,blocked_info,update=false){ var new_blocked_data; function get_sto(items){ //************************************************************************// // Move scripts that are accepted/blocked but whitelisted to "whitelisted" category // (Ideally, they just would not be tested in the first place because that would be faster) var url = blocked_info["url"]; if(url === undefined){ console.error("No url passed to update_popup"); return 1; } function get_status(script_name){ var temp = script_name.match(/\(.*?\)/g); if(temp == null){ return "none" } var src_hash = temp[temp.length-1].substr(1,temp[0].length-2); for(var i in items){ var res = i.match(/\(.*?\)/g); if(res != null){ var test_hash = res[res.length-1].substr(1,res[0].length-2); if(test_hash == src_hash){ return items[i]; } } } if(default_whitelist[src_hash] !== undefined){ //console.log("Found script in default whitelist: "+default_whitelist[src_hash]); return "whitelist"; } else{ //console.log("script " + script_name + " not in default whitelist."); } return "none"; } function is_bl(script_name){ if(get_status(script_name) == "blacklist"){ return true; } return false; } function is_wl(script_name){ if(get_status(script_name) == "whitelist"){ return true; } return false; } new_blocked_data = { "accepted":[], "blocked":[], "blacklisted":[], "whitelisted":[], "url": url }; for(var type in blocked_info){ for(var script_arr in blocked_info[type]){ if(is_bl(blocked_info[type][script_arr][0])){ new_blocked_data["blacklisted"].push(blocked_info[type][script_arr]); //console.log("Script " + blocked_info[type][script_arr][0] + " is blacklisted"); continue; } if(is_wl(blocked_info[type][script_arr][0])){ new_blocked_data["whitelisted"].push(blocked_info[type][script_arr]); //console.log("Script " + blocked_info[type][script_arr][0] + " is whitelisted"); continue; } if(type == "url"){ continue; } // either "blocked" or "accepted" new_blocked_data[type].push(blocked_info[type][script_arr]); //console.log("Script " + blocked_info[type][script_arr][0] + " isn't whitelisted or blacklisted"); } } dbg_print(new_blocked_data); //***********************************************************************************************// // store the blocked info until it is opened and needed if(update == false && active_connections[tab_id] === undefined){ dbg_print("[TABID:"+tab_id+"]"+"Storing blocked_info for when the browser action is opened or asks for it."); unused_data[tab_id] = new_blocked_data; } else{ unused_data[tab_id] = new_blocked_data; dbg_print("[TABID:"+tab_id+"]"+"Sending blocked_info directly to browser action"); active_connections[tab_id].postMessage({"show_info":new_blocked_data}); delete active_connections[tab_id]; } } webex.storage.local.get(get_sto); } /** * * This is what you call when a page gets changed to update the info box. * * Sends a message to the content script that adds a popup entry for a tab. * * var example_blocked_info = { * "accepted"or "blocked": ["name","reason"], * "url": "example.com" * } * * Returns true/false based on if script should be accepted/denied respectively * * NOTE: This WILL break if you provide inconsistent URLs to it. * Make sure it will use the right URL when refering to a certain script. * */ function add_popup_entry(tab_id,src_hash,blocked_info,update=false){ return new Promise((resolve, reject) => { var new_blocked_data; // Make sure the entry in unused_data exists var url = blocked_info["url"]; if(url === undefined){ console.error("No url passed to update_popup"); return 1; } if(unused_data[tab_id] === undefined){ unused_data[tab_id] = { "accepted":[], "blocked":[], "blacklisted":[], "whitelisted":[], "url": url }; } if(unused_data[tab_id]["accepted"] === undefined){unused_data[tab_id]["accepted"] = [];} if(unused_data[tab_id]["blocked"] === undefined){unused_data[tab_id]["blocked"] = [];} if(unused_data[tab_id]["blacklisted"] === undefined){unused_data[tab_id]["blacklisted"] = [];} if(unused_data[tab_id]["whitelisted"] === undefined){unused_data[tab_id]["whitelisted"] = [];} var type = ""; if(blocked_info["accepted"] !== undefined){ type = "accepted"; } if(blocked_info["blocked"] !== undefined){ type = "blocked"; } function get_sto(items){ function get_status(script_name,src_hash){ var temp = script_name.match(/\(.*?\)/g); if(temp == null){ return "none" } var src_hash = temp[temp.length-1].substr(1,temp[0].length-2); for(var i in items){ var res = i.match(/\(.*?\)/g); if(res != null){ var test_hash = res[res.length-1].substr(1,res[0].length-2); if(test_hash == src_hash){ return items[i]; } } } if(default_whitelist[src_hash] !== undefined){ //console.log("Found script in default whitelist: "+default_whitelist[src_hash]); return "whitelist"; } else{ //console.log("script " + script_name + " not in default whitelist."); } return "none"; } function is_bl(script_name){ if(get_status(script_name) == "blacklist"){ return true; } return false; } function is_wl(script_name){ if(get_status(script_name) == "whitelist"){ return true; } return false; } // Search unused data for the given entry function not_duplicate(entry,key){ var flag = true; for(var i = 0; i < unused_data[tab_id][entry].length; i++){ if(unused_data[tab_id][entry][i][0] == key[0]){ flag = false; } } return flag; } var type_key = ""; var res = ""; if(is_bl(blocked_info[type][0])){ type_key = "blacklisted"; res = "bl"; //console.log("Script " + blocked_info[type][0] + " is blacklisted"); } else if(is_wl(blocked_info[type][0])){ type_key = "whitelisted"; res = "wl"; //console.log("Script " + blocked_info[type][0] + " is whitelisted"); } else{ type_key = type; res = "none"; //console.log("Script " + blocked_info[type][0] + " isn't whitelisted or blacklisted"); } if(not_duplicate(type_key,blocked_info[type])){ unused_data[tab_id][type_key].push(blocked_info[type]); resolve(res); } else{ resolve(res); } } webex.storage.local.get(get_sto); }); } function get_domain(url){ var domain = url.replace('http://','').replace('https://','').split(/[/?#]/)[0]; if(url.indexOf("http://") == 0){ domain = "http://" + domain; } else if(url.indexOf("https://") == 0){ domain = "https://" + domain; } domain = domain + "/"; domain = domain.replace(/ /g,""); return domain; } /** * * This is the callback where the content scripts of the browser action will contact the background script. * */ var portFromCS; function connected(p) { if(p["name"] == "contact_finder"){ // Send a message back with the relevant settings function cb(items){ p.postMessage(items); } webex.storage.local.get(cb); return; } p.onMessage.addListener(function(m) { /** * Updates the entry of the current URL in storage */ function set_script(script,val){ if(val != "whitelist" && val != "forget" && val != "blacklist"){ console.error("Key must be either 'whitelist', 'blacklist' or 'forget'"); } // (Remember that we do not trust the names of scripts.) var current_url = ""; function geturl(tabs) { current_url = tabs[0]["url"]; var domain = get_domain(current_url); // The space char is a valid delimiter because encodeURI() replaces it with %20 var scriptkey = m[val][0]; if(val == "forget"){ var prom = webex.storage.local.remove(scriptkey); // TODO: This should produce a "Refresh the page for this change to take effect" message } else{ var newitem = {}; newitem[scriptkey] = val; webex.storage.local.set(newitem); } } var querying = webex.tabs.query({active: true,currentWindow: true},geturl); return; } var update = false; var contact_finder = false; if(m["whitelist"] !== undefined){ set_script(m["whitelist"][0],"whitelist"); update = true; } if(m["blacklist"] !== undefined){ set_script(m["blacklist"][0],"blacklist"); update = true; } if(m["forget"] !== undefined){ set_script(m["forget"][0],"forget"); update = true; } // if(m["open_popup_tab"] !== undefined){ open_popup_tab(m["open_popup_tab"]); } // a debug feature if(m["printlocalstorage"] !== undefined){ debug_print_local(); } // invoke_contact_finder if(m["invoke_contact_finder"] !== undefined){ contact_finder = true; inject_contact_finder(); } // a debug feature (maybe give the user an option to do this?) if(m["deletelocalstorage"] !== undefined){ debug_delete_local(); } // Add this domain to the whitelist if(m["allow_all"] !== undefined){ var domain = get_domain(m["allow_all"]["url"]); add_csv_whitelist(domain); } // Remote this domain from the whitelist if(m["block_all"] !== undefined){ var domain = get_domain(m["block_all"]["url"]); remove_csv_whitelist(domain); } function logTabs(tabs) { if(contact_finder){ dbg_print("[TABID:"+tab_id+"] Injecting contact finder"); //inject_contact_finder(tabs[0]["id"]); } if(update){ dbg_print("%c updating tab "+tabs[0]["id"],"color: red;"); update_popup(tabs[0]["id"],unused_data[tabs[0]["id"]],true); active_connections[tabs[0]["id"]] = p; } for(var i = 0; i < tabs.length; i++) { var tab = tabs[i]; var tab_id = tab["id"]; if(unused_data[tab_id] !== undefined){ // If we have some data stored here for this tabID, send it dbg_print("[TABID:"+tab_id+"]"+"Sending stored data associated with browser action"); p.postMessage({"show_info":unused_data[tab_id]}); } else{ // create a new entry unused_data[tab_id] = {"url":tab["url"],"blocked":"","accepted":""}; p.postMessage({"show_info":unused_data[tab_id]}); dbg_print("[TABID:"+tab_id+"]"+"No data found, creating a new entry for this window."); } } } var querying = webex.tabs.query({active: true,currentWindow: true},logTabs); }); } /** * The callback for tab closings. * * Delete the info we are storing about this tab if there is any. * */ function delete_removed_tab_info(tab_id, remove_info){ dbg_print("[TABID:"+tab_id+"]"+"Deleting stored info about closed tab"); if(unused_data[tab_id] !== undefined){ delete unused_data[tab_id]; } if(active_connections[tab_id] !== undefined){ delete active_connections[tab_id]; } } /** * Turns a blob URL into a data URL * */ function get_data_url(blob,url){ return new Promise((resolve, reject) => { //var url = URL.createObjectURL(blob); var reader = new FileReader(); reader.addEventListener("load", function(){ //console.log("redirecting"); //console.log(url); //console.log("to"); //console.log(reader.result); resolve({"redirectUrl": reader.result}); }); reader.readAsDataURL(blob); }); } /** * Check whitelisted by hash * */ function blocked_status(hash){ return new Promise((resolve, reject) => { function cb(items){ var wl = items["pref_whitelist"]; for(var i in items){ var res = i.match(/\(.*?\)/g); if(res != null){ var test_hash = res[res.length-1].substr(1,res[0].length-2); if(test_hash == hash){ resolve(items[i]); } } } resolve("none"); return; } webex.storage.local.get(cb); }); } /* *********************************************************************************************** */ var fname_data = { "WebGLShader": true, "WebGLShaderPrecisionFormat": true, "WebGLQuery": true, "WebGLRenderbuffer": true, "WebGLSampler": true, "WebGLUniformLocation": true, "WebGLFramebuffer": true, "WebGLProgram": true, "WebGLContextEvent": true, "WebGL2RenderingContext": true, "WebGLTexture": true, "WebGLRenderingContext": true, "WebGLVertexArrayObject": true, "WebGLActiveInfo": true, "WebGLTransformFeedback": true, "WebGLSync": true, "WebGLBuffer": true, "cat_svg": true, "SVGPoint": true, "SVGEllipseElement": true, "SVGRadialGradientElement": true, "SVGComponentTransferFunctionElement": true, "SVGPathSegCurvetoQuadraticAbs": true, "SVGAnimatedNumberList": true, "SVGPathSegCurvetoQuadraticSmoothRel": true, "SVGFEColorMatrixElement": true, "SVGPathSegLinetoHorizontalAbs": true, "SVGLinearGradientElement": true, "SVGStyleElement": true, "SVGPathSegMovetoRel": true, "SVGStopElement": true, "SVGPathSegLinetoRel": true, "SVGFEConvolveMatrixElement": true, "SVGAnimatedAngle": true, "SVGPathSegLinetoAbs": true, "SVGPreserveAspectRatio": true, "SVGFEOffsetElement": true, "SVGFEImageElement": true, "SVGFEDiffuseLightingElement": true, "SVGAnimatedNumber": true, "SVGTextElement": true, "SVGFESpotLightElement": true, "SVGFEMorphologyElement": true, "SVGAngle": true, "SVGScriptElement": true, "SVGFEDropShadowElement": true, "SVGPathSegArcRel": true, "SVGNumber": true, "SVGPathSegLinetoHorizontalRel": true, "SVGFEFuncBElement": true, "SVGClipPathElement": true, "SVGPathSeg": true, "SVGUseElement": true, "SVGPathSegArcAbs": true, "SVGPathSegCurvetoQuadraticSmoothAbs": true, "SVGRect": true, "SVGAnimatedPreserveAspectRatio": true, "SVGImageElement": true, "SVGAnimatedEnumeration": true, "SVGAnimatedLengthList": true, "SVGFEFloodElement": true, "SVGFECompositeElement": true, "SVGAElement": true, "SVGAnimatedBoolean": true, "SVGMaskElement": true, "SVGFilterElement": true, "SVGPathSegLinetoVerticalRel": true, "SVGAnimatedInteger": true, "SVGTSpanElement": true, "SVGMarkerElement": true, "SVGStringList": true, "SVGTransform": true, "SVGTitleElement": true, "SVGFEBlendElement": true, "SVGTextPositioningElement": true, "SVGFEFuncGElement": true, "SVGFEPointLightElement": true, "SVGAnimateElement": true, "SVGPolylineElement": true, "SVGDefsElement": true, "SVGPathSegList": true, "SVGAnimatedTransformList": true, "SVGPathSegClosePath": true, "SVGGradientElement": true, "SVGSwitchElement": true, "SVGViewElement": true, "SVGUnitTypes": true, "SVGPathSegMovetoAbs": true, "SVGSymbolElement": true, "SVGFEFuncAElement": true, "SVGAnimatedString": true, "SVGFEMergeElement": true, "SVGPathSegLinetoVerticalAbs": true, "SVGAnimationElement": true, "SVGPathSegCurvetoCubicAbs": true, "SVGLength": true, "SVGTextPathElement": true, "SVGPolygonElement": true, "SVGAnimatedRect": true, "SVGPathSegCurvetoCubicRel": true, "SVGFEFuncRElement": true, "SVGLengthList": true, "SVGTextContentElement": true, "SVGFETurbulenceElement": true, "SVGMatrix": true, "SVGZoomAndPan": true, "SVGMetadataElement": true, "SVGFEDistantLightElement": true, "SVGAnimateMotionElement": true, "SVGDescElement": true, "SVGPathSegCurvetoCubicSmoothRel": true, "SVGFESpecularLightingElement": true, "SVGFEGaussianBlurElement": true, "SVGFEComponentTransferElement": true, "SVGNumberList": true, "SVGTransformList": true, "SVGForeignObjectElement": true, "SVGRectElement": true, "SVGFEDisplacementMapElement": true, "SVGAnimateTransformElement": true, "SVGAnimatedLength": true, "SVGPointList": true, "SVGPatternElement": true, "SVGPathSegCurvetoCubicSmoothAbs": true, "SVGCircleElement": true, "SVGSetElement": true, "SVGFETileElement": true, "SVGMPathElement": true, "SVGFEMergeNodeElement": true, "SVGPathSegCurvetoQuadraticRel": true, "SVGElement": true, "SVGGraphicsElement": true, "SVGSVGElement": true, "SVGGElement": true, "SVGGeometryElement": true, "SVGPathElement": true, "SVGLineElement": true, "cat_html": true, "HTMLTimeElement": true, "HTMLPictureElement": true, "HTMLMenuItemElement": true, "HTMLFormElement": true, "HTMLOptionElement": true, "HTMLCanvasElement": true, "HTMLTableSectionElement": true, "HTMLSelectElement": true, "HTMLUListElement": true, "HTMLMetaElement": true, "HTMLLinkElement": true, "HTMLBaseElement": true, "HTMLDataListElement": true, "HTMLInputElement": true, "HTMLMeterElement": true, "HTMLSourceElement": true, "HTMLTrackElement": true, "HTMLTableColElement": true, "HTMLFieldSetElement": true, "HTMLDirectoryElement": true, "HTMLTableCellElement": true, "HTMLStyleElement": true, "HTMLAudioElement": true, "HTMLLegendElement": true, "HTMLOListElement": true, "HTMLEmbedElement": true, "HTMLQuoteElement": true, "HTMLMenuElement": true, "HTMLHeadElement": true, "HTMLUnknownElement": true, "HTMLBRElement": true, "HTMLProgressElement": true, "HTMLMediaElement": true, "HTMLFormControlsCollection": true, "HTMLCollection": true, "HTMLLIElement": true, "HTMLDetailsElement": true, "HTMLObjectElement": true, "HTMLHeadingElement": true, "HTMLTableCaptionElement": true, "HTMLPreElement": true, "HTMLAllCollection": true, "HTMLFrameSetElement": true, "HTMLFontElement": true, "HTMLFrameElement": true, "HTMLAnchorElement": true, "HTMLOptGroupElement": true, "HTMLVideoElement": true, "HTMLModElement": true, "HTMLBodyElement": true, "HTMLTableElement": true, "HTMLButtonElement": true, "HTMLTableRowElement": true, "HTMLAreaElement": true, "HTMLDataElement": true, "HTMLParamElement": true, "HTMLLabelElement": true, "HTMLTemplateElement": true, "HTMLOptionsCollection": true, "HTMLIFrameElement": true, "HTMLTitleElement": true, "HTMLMapElement": true, "HTMLOutputElement": true, "HTMLDListElement": true, "HTMLParagraphElement": true, "HTMLHRElement": true, "HTMLImageElement": true, "HTMLDocument": true, "HTMLElement": true, "HTMLScriptElement": true, "HTMLHtmlElement": true, "HTMLTextAreaElement": true, "HTMLDivElement": true, "HTMLSpanElement": true, "cat_css": true, "CSSStyleRule": true, "CSSFontFaceRule": true, "CSSPrimitiveValue": true, "CSSStyleDeclaration": true, "CSSStyleSheet": true, "CSSPageRule": true, "CSSSupportsRule": true, "CSSMozDocumentRule": true, "CSSKeyframeRule": true, "CSSGroupingRule": true, "CSS2Properties": true, "CSSFontFeatureValuesRule": true, "CSSRuleList": true, "CSSPseudoElement": true, "CSSMediaRule": true, "CSSCounterStyleRule": true, "CSSImportRule": true, "CSSTransition": true, "CSSAnimation": true, "CSSValue": true, "CSSNamespaceRule": true, "CSSRule": true, "CSS": true, "CSSKeyframesRule": true, "CSSConditionRule": true, "CSSValueList": true, "cat_event": true, "ondevicemotion": true, "ondeviceorientation": true, "onabsolutedeviceorientation": true, "ondeviceproximity": true, "onuserproximity": true, "ondevicelight": true, "onvrdisplayconnect": true, "onvrdisplaydisconnect": true, "onvrdisplayactivate": true, "onvrdisplaydeactivate": true, "onvrdisplaypresentchange": true, "onabort": true, "onblur": true, "onfocus": true, "onauxclick": true, "oncanplay": true, "oncanplaythrough": true, "onchange": true, "onclick": true, "onclose": true, "oncontextmenu": true, "ondblclick": true, "ondrag": true, "ondragend": true, "ondragenter": true, "ondragexit": true, "ondragleave": true, "ondragover": true, "ondragstart": true, "ondrop": true, "ondurationchange": true, "onemptied": true, "onended": true, "oninput": true, "oninvalid": true, "onkeydown": true, "onkeypress": true, "onkeyup": true, "onload": true, "onloadeddata": true, "onloadedmetadata": true, "onloadend": true, "onloadstart": true, "onmousedown": true, "onmouseenter": true, "onmouseleave": true, "onmousemove": true, "onmouseout": true, "onmouseover": true, "onmouseup": true, "onwheel": true, "onpause": true, "onplay": true, "onplaying": true, "onprogress": true, "onratechange": true, "onreset": true, "onresize": true, "onscroll": true, "onseeked": true, "onseeking": true, "onselect": true, "onshow": true, "onstalled": true, "onsubmit": true, "onsuspend": true, "ontimeupdate": true, "onvolumechange": true, "onwaiting": true, "onselectstart": true, "ontoggle": true, "onpointercancel": true, "onpointerdown": true, "onpointerup": true, "onpointermove": true, "onpointerout": true, "onpointerover": true, "onpointerenter": true, "onpointerleave": true, "ongotpointercapture": true, "onlostpointercapture": true, "onmozfullscreenchange": true, "onmozfullscreenerror": true, "onanimationcancel": true, "onanimationend": true, "onanimationiteration": true, "onanimationstart": true, "ontransitioncancel": true, "ontransitionend": true, "ontransitionrun": true, "ontransitionstart": true, "onwebkitanimationend": true, "onwebkitanimationiteration": true, "onwebkitanimationstart": true, "onwebkittransitionend": true, "onerror": true, "onafterprint": true, "onbeforeprint": true, "onbeforeunload": true, "onhashchange": true, "onlanguagechange": true, "onmessage": true, "onmessageerror": true, "onoffline": true, "ononline": true, "onpagehide": true, "onpageshow": true, "onpopstate": true, "onstorage": true, "onunload": true, "cat_rtc": true, "RTCDTMFSender": true, "RTCStatsReport": true, "RTCTrackEvent": true, "RTCDataChannelEvent": true, "RTCPeerConnectionIceEvent": true, "RTCCertificate": true, "RTCDTMFToneChangeEvent": true, "RTCPeerConnection": true, "RTCIceCandidate": true, "RTCRtpReceiver": true, "RTCRtpSender": true, "RTCSessionDescription": true, "cat_vr": true, "VRStageParameters": true, "VRFrameData": true, "VRDisplay": true, "VRDisplayEvent": true, "VRFieldOfView": true, "VRDisplayCapabilities": true, "VREyeParameters": true, "VRPose": true, "cat_dom": true, "DOMStringMap": true, "DOMRectReadOnly": true, "DOMException": true, "DOMRect": true, "DOMMatrix": true, "DOMMatrixReadOnly": true, "DOMPointReadOnly": true, "DOMPoint": true, "DOMQuad": true, "DOMRequest": true, "DOMParser": true, "DOMTokenList": true, "DOMStringList": true, "DOMImplementation": true, "DOMError": true, "DOMRectList": true, "DOMCursor": true, "cat_idb": true, "IDBFileRequest": true, "IDBTransaction": true, "IDBCursor": true, "IDBFileHandle": true, "IDBMutableFile": true, "IDBKeyRange": true, "IDBVersionChangeEvent": true, "IDBObjectStore": true, "IDBFactory": true, "IDBCursorWithValue": true, "IDBOpenDBRequest": true, "IDBRequest": true, "IDBIndex": true, "IDBDatabase": true, "cat_audio": true, "AudioContext": true, "AudioBuffer": true, "AudioBufferSourceNode": true, "Audio": true, "MediaElementAudioSourceNode": true, "AudioNode": true, "BaseAudioContext": true, "AudioListener": true, "MediaStreamAudioSourceNode": true, "OfflineAudioContext": true, "AudioDestinationNode": true, "AudioParam": true, "MediaStreamAudioDestinationNode": true, "OfflineAudioCompletionEvent": true, "AudioStreamTrack": true, "AudioScheduledSourceNode": true, "AudioProcessingEvent": true, "cat_gamepad": true, "GamepadButton": true, "GamepadHapticActuator": true, "GamepadAxisMoveEvent": true, "GamepadPose": true, "GamepadEvent": true, "Gamepad": true, "GamepadButtonEvent": true, "cat_media": true, "MediaKeys": true, "MediaKeyError": true, "MediaSource": true, "MediaDevices": true, "MediaKeyStatusMap": true, "MediaStreamTrackEvent": true, "MediaRecorder": true, "MediaQueryListEvent": true, "MediaStream": true, "MediaEncryptedEvent": true, "MediaStreamTrack": true, "MediaError": true, "MediaStreamEvent": true, "MediaQueryList": true, "MediaKeySystemAccess": true, "MediaDeviceInfo": true, "MediaKeySession": true, "MediaList": true, "MediaRecorderErrorEvent": true, "MediaKeyMessageEvent": true, "cat_event2": true, "SpeechSynthesisErrorEvent": true, "BeforeUnloadEvent": true, "CustomEvent": true, "PageTransitionEvent": true, "PopupBlockedEvent": true, "CloseEvent": true, "ProgressEvent": true, "MutationEvent": true, "MessageEvent": true, "FocusEvent": true, "TrackEvent": true, "DeviceMotionEvent": true, "TimeEvent": true, "PointerEvent": true, "UserProximityEvent": true, "StorageEvent": true, "DragEvent": true, "MouseScrollEvent": true, "EventSource": true, "PopStateEvent": true, "DeviceProximityEvent": true, "SpeechSynthesisEvent": true, "XMLHttpRequestEventTarget": true, "ClipboardEvent": true, "AnimationPlaybackEvent": true, "DeviceLightEvent": true, "BlobEvent": true, "MouseEvent": true, "WheelEvent": true, "InputEvent": true, "HashChangeEvent": true, "DeviceOrientationEvent": true, "CompositionEvent": true, "KeyEvent": true, "ScrollAreaEvent": true, "KeyboardEvent": true, "TransitionEvent": true, "ErrorEvent": true, "AnimationEvent": true, "FontFaceSetLoadEvent": true, "EventTarget": true, "captureEvents": true, "releaseEvents": true, "Event": true, "UIEvent": true, "cat_other": false, "undefined": false, "Array": false, "Boolean": false, "JSON": false, "Date": false, "Math": false, "Number": false, "String": false, "RegExp": false, "Error": false, "InternalError": false, "EvalError": false, "RangeError": false, "ReferenceError": false, "SyntaxError": false, "TypeError": false, "URIError": false, "ArrayBuffer": true, "Int8Array": true, "Uint8Array": true, "Int16Array": true, "Uint16Array": true, "Int32Array": true, "Uint32Array": true, "Float32Array": true, "Float64Array": true, "Uint8ClampedArray": true, "Proxy": true, "WeakMap": true, "Map": true, "Set": true, "DataView": false, "Symbol": false, "SharedArrayBuffer": true, "Intl": false, "TypedObject": true, "Reflect": true, "SIMD": true, "WeakSet": true, "Atomics": true, "Promise": true, "WebAssembly": true, "NaN": false, "Infinity": false, "isNaN": false, "isFinite": false, "parseFloat": false, "parseInt": false, "escape": false, "unescape": false, "decodeURI": false, "encodeURI": false, "decodeURIComponent": false, "encodeURIComponent": false, "uneval": false, "BatteryManager": true, "CanvasGradient": true, "TextDecoder": true, "Plugin": true, "PushManager": true, "ChannelMergerNode": true, "PerformanceResourceTiming": true, "ServiceWorker": true, "TextTrackCueList": true, "PerformanceEntry": true, "TextTrackList": true, "StyleSheet": true, "PerformanceMeasure": true, "DesktopNotificationCenter": true, "Comment": true, "DelayNode": true, "XPathResult": true, "CDATASection": true, "MessageChannel": true, "BiquadFilterNode": true, "SpeechSynthesisUtterance": true, "Crypto": true, "Navigator": true, "FileList": true, "URLSearchParams": false, "ServiceWorkerContainer": true, "ValidityState": true, "ProcessingInstruction": true, "AbortSignal": true, "FontFace": true, "FileReader": true, "Worker": true, "External": true, "ImageBitmap": true, "TimeRanges": true, "Option": true, "TextTrack": true, "Image": true, "AnimationTimeline": true, "VideoPlaybackQuality": true, "VTTCue": true, "Storage": true, "XPathExpression": true, "CharacterData": false, "TextMetrics": true, "AnimationEffectReadOnly": true, "PerformanceTiming": false, "PerformanceMark": true, "ImageBitmapRenderingContext": true, "Headers": true, "Range": false, "Rect": true, "AnimationEffectTimingReadOnly": true, "KeyframeEffect": true, "Permissions": true, "TextEncoder": true, "ImageData": true, "SpeechSynthesisVoice": true, "StorageManager": true, "TextTrackCue": true, "WebSocket": true, "DocumentType": true, "XPathEvaluator": true, "PerformanceNavigationTiming": true, "IdleDeadline": true, "FileSystem": true, "FileSystemFileEntry": true, "CacheStorage": true, "MimeType": true, "PannerNode": true, "NodeFilter": true, "StereoPannerNode": true, "console": false, "DynamicsCompressorNode": true, "PaintRequest": true, "RGBColor": true, "FontFaceSet": false, "PaintRequestList": true, "FileSystemEntry": true, "XMLDocument": false, "SourceBuffer": false, "Screen": true, "NamedNodeMap": false, "History": true, "Response": true, "AnimationEffectTiming": true, "ServiceWorkerRegistration": true, "CanvasRenderingContext2D": true, "ScriptProcessorNode": true, "FileSystemDirectoryReader": true, "MimeTypeArray": true, "CanvasCaptureMediaStream": true, "Directory": true, "mozRTCPeerConnection": true, "PerformanceObserverEntryList": true, "PushSubscriptionOptions": true, "Text": false, "IntersectionObserverEntry": true, "SubtleCrypto": true, "Animation": true, "DataTransfer": true, "TreeWalker": true, "XMLHttpRequest": true, "LocalMediaStream": true, "ConvolverNode": true, "WaveShaperNode": true, "DataTransferItemList": false, "Request": true, "SourceBufferList": false, "XSLTProcessor": true, "XMLHttpRequestUpload": true, "SharedWorker": true, "Notification": false, "DataTransferItem": true, "AnalyserNode": true, "mozRTCIceCandidate": true, "PerformanceObserver": true, "OfflineResourceList": true, "FileSystemDirectoryEntry": true, "DesktopNotification": false, "DataChannel": true, "IIRFilterNode": true, "ChannelSplitterNode": true, "File": true, "ConstantSourceNode": true, "CryptoKey": true, "GainNode": true, "AbortController": true, "Attr": true, "SpeechSynthesis": true, "PushSubscription": false, "XMLStylesheetProcessingInstruction": false, "NodeIterator": true, "VideoStreamTrack": true, "XMLSerializer": true, "CaretPosition": true, "FormData": true, "CanvasPattern": true, "mozRTCSessionDescription": true, "Path2D": true, "PerformanceNavigation": true, "URL": false, "PluginArray": true, "MutationRecord": true, "WebKitCSSMatrix": true, "PeriodicWave": true, "DocumentFragment": true, "DocumentTimeline": false, "ScreenOrientation": true, "BroadcastChannel": true, "PermissionStatus": true, "IntersectionObserver": true, "Blob": true, "MessagePort": true, "BarProp": true, "OscillatorNode": true, "Cache": true, "RadioNodeList": true, "KeyframeEffectReadOnly": true, "InstallTrigger": true, "Function": false, "Object": false, "eval": true, "Window": false, "close": false, "stop": false, "focus": false, "blur": false, "open": true, "alert": false, "confirm": false, "prompt": false, "print": false, "postMessage": true, "getSelection": true, "getComputedStyle": true, "matchMedia": true, "moveTo": false, "moveBy": false, "resizeTo": false, "resizeBy": false, "scroll": false, "scrollTo": false, "scrollBy": false, "requestAnimationFrame": true, "cancelAnimationFrame": true, "getDefaultComputedStyle": false, "scrollByLines": false, "scrollByPages": false, "sizeToContent": false, "updateCommands": true, "find": false, "dump": true, "setResizable": false, "requestIdleCallback": false, "cancelIdleCallback": false, "btoa": true, "atob": true, "setTimeout": true, "clearTimeout": true, "setInterval": true, "clearInterval": true, "createImageBitmap": true, "fetch": true, "self": true, "name": false, "history": true, "locationbar": true, "menubar": true, "personalbar": true, "scrollbars": true, "statusbar": true, "toolbar": true, "status": true, "closed": true, "frames": true, "length": false, "opener": true, "parent": true, "frameElement": true, "navigator": true, "external": true, "applicationCache": true, "screen": true, "innerWidth": true, "innerHeight": true, "scrollX": true, "pageXOffset": true, "scrollY": true, "pageYOffset": true, "screenX": true, "screenY": true, "outerWidth": true, "outerHeight": true, "performance": true, "mozInnerScreenX": true, "mozInnerScreenY": true, "devicePixelRatio": true, "scrollMaxX": true, "scrollMaxY": true, "fullScreen": false, "mozPaintCount": true, "sidebar": false, "crypto": true, "speechSynthesis": true, "localStorage": true, "origin": true, "isSecureContext": false, "indexedDB": true, "caches": true, "sessionStorage": true, "window": false, "document": true, "location": false, "top": true, "netscape": true, "Node": true, "Document": true, "Performance": false, "startProfiling": true, "stopProfiling": true, "pauseProfilers": true, "resumeProfilers": true, "dumpProfile": true, "getMaxGCPauseSinceClear": true, "clearMaxGCPauseAccumulator": true, "Location": true, "StyleSheetList": false, "Selection": false, "Element": true, "AnonymousContent": false, "MutationObserver": true, "NodeList": true, "StopIteration": true }; //************************this part can be tested in the HTML file index.html's script test.js**************************** function full_evaluate(script){ var res = true; if(script === undefined || script == ""){ return [true,"Harmless null script"]; } var ast = acorn.parse_dammit(script).body[0]; var flag = false; var amtloops = 0; var loopkeys = {"for":true,"if":true,"while":true,"switch":true}; var operators = {"||":true,"&&":true,"=":true,"==":true,"++":true,"--":true,"+=":true,"-=":true,"*":true}; try{ var tokens = acorn_base.tokenizer(script); }catch(e){ console.warn("Tokenizer could not be initiated (probably invalid code)"); return [false,"Tokenizer could not be initiated (probably invalid code)"]; } try{ var toke = tokens.getToken(); }catch(e){ console.warn("couldn't get first token (probably invalid code)"); console.warn("Continuing evaluation"); } /** * Given the end of an identifer token, it tests for bracket suffix notation */ function being_called(end){ var i = 0; while(script.charAt(end+i).match(/\s/g) !== null){ i++; if(i >= script.length-1){ return false; } } if(script.charAt(end+i) == "("){ return true; }else{ return false; } } /** * Given the end of an identifer token, it tests for parentheses */ function is_bsn(end){ var i = 0; while(script.charAt(end+i).match(/\s/g) !== null){ i++; if(i >= script.length-1){ return false; } } if(script.charAt(end+i) == "["){ return true; }else{ return false; } } var error_count = 0; while(toke.type != acorn_base.tokTypes.eof){ if(toke.type.keyword !== undefined){ // This type of loop detection ignores functional loop alternatives and ternary operators //dbg_print("Keyword:"+toke.type.keyword); if(toke.type.keyword == "function"){ dbg_print("%c NONTRIVIAL: Function declaration.","color:red"); if(DEBUG == false){ return [false,"NONTRIVIAL: Function declaration."]; } } if(loopkeys[toke.type.keyword] !== undefined){ amtloops++; if(amtloops > 3){ dbg_print("%c NONTRIVIAL: Too many loops/conditionals.","color:red"); if(DEBUG == false){ return [false,"NONTRIVIAL: Too many loops/conditionals."]; } } } }else if(toke.value !== undefined){ var status = fname_data[toke.value]; if(status === true){ // is the identifier banned? dbg_print("%c NONTRIVIAL: nontrivial token: '"+toke.value+"'","color:red"); if(DEBUG == false){ return [false,"NONTRIVIAL: nontrivial token: '"+toke.value+"'"]; } }else if(status === false){// is the identifier not banned? // Is there bracket suffix notation? if(operators[toke.value] === undefined){ if(is_bsn(toke.end)){ dbg_print("%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'","color:red"); if(DEBUG == false){ return [false,"%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'"]; } } } }else if(status === undefined){// is the identifier user defined? // Are arguments being passed to a user defined variable? if(being_called(toke.end)){ dbg_print("%c NONTRIVIAL: User defined variable '"+toke.value+"' called as function","color:red"); if(DEBUG == false){ return [false,"NONTRIVIAL: User defined variable '"+toke.value+"' called as function"]; } } // Is there bracket suffix notation? if(operators[toke.value] === undefined){ if(is_bsn(toke.end)){ dbg_print("%c NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'","color:red"); if(DEBUG == false){ return [false,"NONTRIVIAL: Bracket suffix notation on variable '"+toke.value+"'"]; } } } }else{ dbg_print("trivial token:"+toke.value); } } // If not a keyword or an identifier it's some kind of operator, field parenthesis, brackets try{ toke = tokens.getToken(); }catch(e){ dbg_print("Denied script because it cannot be parsed."); return [false,"NONTRIVIAL: Cannot be parsed."]; } } dbg_print("%cAppears to be trivial.","color:green;"); return [true,"Script appears to be trivial."]; } //**************************************************************************************************** /** * This is the entry point for full code evaluation. * * Performs the initial pass on code to see if it needs to be completely parsed * * This can only determine if a script is bad, not if it's good * * If it passes the intitial pass, it runs the full pass and returns the result * */ function evaluate(script,name){ function reserved_object_regex(object){ var arith_operators = "\\+\\-\\*\\/\\%\\="; var scope_chars = "\{\}\]\[\(\)\,"; var trailing_chars = "\s*"+"\(\.\["; return new RegExp("(?:[^\\w\\d]|^|(?:"+arith_operators+"))"+object+'(?:\\s*?(?:[\\;\\,\\.\\(\\[])\\s*?)',"g"); } reserved_object_regex("window"); var all_strings = new RegExp('".*?"'+"|'.*?'","gm"); var ml_comment = /\/\*([\s\S]+?)\*\//g; var il_comment = /\/\/.+/gm; var bracket_pairs = /\[.+?\]/g; var temp = script.replace(/'.+?'+/gm,"'string'"); temp = temp.replace(/".+?"+/gm,'"string"'); temp = temp.replace(ml_comment,""); temp = temp.replace(il_comment,""); dbg_print("%c ------evaluation results for "+ name +"------","color:white"); dbg_print("Script accesses reserved objects?"); var flag = true; var reason = "" // This is where individual "passes" are made over the code for(var i = 0; i < reserved_objects.length; i++){ var res = reserved_object_regex(reserved_objects[i]).exec(temp); if(res != null){ dbg_print("%c fail","color:red;"); flag = false; reason = "Script uses a reserved object (" + reserved_objects[i] + ")"; } } if(flag){ dbg_print("%c pass","color:green;"); } else{ return [flag,reason+"
"]; } var temp = full_evaluate(temp); temp[1] = temp[1] + "
"; return temp; } function license_valid(matches){ if(matches.length != 4){ return [false, "malformed or unrecognized license tag"]; } if(matches[1] != "@license"){ return [false, "malformed or unrecognized license tag"]; } if(licenses[matches[3]] === undefined){ return [false, "malformed or unrecognized license tag"]; } if(licenses[matches[3]]["Magnet link"] != matches[2]){ return [false, "malformed or unrecognized license tag"]; } return [true,"Recognized license as '"+matches[3]+"'
"]; } /** * * Evaluates the content of a script (license, if it is non-trivial) * * Returns * [ * true (accepted) or false (denied), * edited content, * reason text * ] */ function license_read(script_src,name){ var reason_text = ""; var edited_src = ""; var unedited_src = script_src; var nontrivial_status; var parts_denied = false; var parts_accepted = false; while(true){ // TODO: support multiline comments var matches = /\/\s*?(@license)\s([\S]+)\s([\S]+$)/gm.exec(unedited_src); if(matches == null){ nontrivial_status = evaluate(unedited_src,name); if(nontrivial_status[0] == true){ parts_accepted = true; edited_src += unedited_src; } else{ parts_denied = true; edited_src += "\n/*\nLIBREJS BLOCKED:"+nontrivial_status[1]+"\n*/\n"; } reason_text += "\n" + nontrivial_status[1]; if(parts_denied == true && parts_accepted == true){ reason_text = "Script was determined partly non-trivial after editing. (check source for details)\n"+reason_text; } if(parts_denied == true && parts_accepted == false){ return [false,edited_src,reason_text]; } return [true,edited_src,reason_text]; } var before = unedited_src.substr(0,matches["index"]); nontrivial_status = evaluate(before,name); if(nontrivial_status[0] == true){ parts_accepted = true; edited_src += before; } else{ parts_denied = true; edited_src += "\n/*\nLIBREJS BLOCKED:"+nontrivial_status[1]+"\n*/\n"; } unedited_src = unedited_src.substr(matches["index"],unedited_src.length); // TODO: support multiline comments var matches_end = /\/\/\s*?(@license-end)/gm.exec(unedited_src); if(matches_end == null){ dbg_print("ERROR: @license with no @license-end"); return [false,"\n/*\n ERROR: @license with no @license-end \n*/\n","ERROR: @license with no @license-end"]; } var endtag_end_index = matches_end["index"]+matches_end[0].length; var license_res = license_valid(matches); if(license_res[0] == true){ edited_src = edited_src + unedited_src.substr(0,endtag_end_index); reason_text += "\n" + license_res[1]; } else{ edited_src = edited_src + "\n/*\n"+license_res[1]+"\n*/\n"; reason_text += "\n" + license_res[1]; } // trim off everything we just evaluated unedited_src = unedited_src.substr(endtag_end_index,unedited_src.length); } } /* *********************************************************************************************** */ // TODO: Test if this script is being loaded from another domain compared to unused_data[tabid]["url"] /** * * Returns a promise that resolves with the final edited script as a string. */ function get_script(response,url,tabid,wl,index=-1){ return new Promise((resolve, reject) => { if(unused_data[tabid] === undefined){ unused_data[tabid] = {"url":url,"accepted":[],"blocked":[]}; } var tok_index = url.split("/").length; var scriptname = url.split("/")[tok_index-1]; if(wl == true){ // Accept without reading script, it was explicitly whitelisted if(typeof(unused_data[tabid]["accepted"].push) != "function"){ unused_data[tabid]["accepted"] = [[scriptname,"Page is whitelisted in preferences"]]; } else{ unused_data[tabid]["accepted"].push([scriptname,"Page is whitelisted in preferences"]); } resolve("\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response); if(index != -1){ resolve(["\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response,index]); } else{ resolve("\n/*\n LibreJS: Script whitelisted by user (From a URL found in comma seperated whitelist)\n*/\n"+response); } } var src_hash = hash(response); var edited = license_read(response,scriptname); var verdict = edited[0]; var popup_res; var domain = get_domain(url); var badge_str = 0; if(unused_data[tabid]["blocked"] !== undefined){ badge_str += unused_data[tabid]["blocked"].length; } if(unused_data[tabid]["blacklisted"] !== undefined){ badge_str += unused_data[tabid]["blacklisted"].length; } dbg_print("amt. blocked on page:"+badge_str); if(badge_str > 0 || verdict == false){ webex.browserAction.setBadgeText({ text: "GRR", tabId: tabid }); webex.browserAction.setBadgeBackgroundColor({ color: "red", tabId: tabid }); } else{ webex.browserAction.setBadgeText({ text: "OK", tabId: tabid }); webex.browserAction.setBadgeBackgroundColor({ color: "green", tabId: tabid }); } if(verdict == true){ popup_res = add_popup_entry(tabid,src_hash,{"url":domain,"accepted":[scriptname+" ("+src_hash+")",edited[2]]}); } else{ popup_res = add_popup_entry(tabid,src_hash,{"url":domain,"blocked":[scriptname+" ("+src_hash+")",edited[2]]}); } popup_res.then(function(list_verdict){ var blob; if(list_verdict == "wl"){ // redirect to the unedited version if(index != -1){ resolve(["/* LibreJS: Script whitelisted by user */\n"+response,index]); } else{ resolve("/* LibreJS: Script whitelisted by user */\n"+response); } }else if(list_verdict == "bl"){ // Blank the entire script if(index != -1){ resolve(["/* LibreJS: Script blacklisted by user */\n",index]); } else{ resolve("/* LibreJS: Script blacklisted by user */\n"); } } else{ // Return the edited (normal) version if(index != -1){ resolve(["/* LibreJS: Script acknowledged */\n"+edited[1],index]); } else{ resolve("/* LibreJS: Script acknowledged */\n"+edited[1]); } } }); }); } function read_script(a){ var filter = webex.webRequest.filterResponseData(a.requestId); var decoder = new TextDecoder("utf-8"); var encoder = new TextEncoder(); // TODO: make sure this doesn't cause undeclared decoding filter.ondata = event => { var str = decoder.decode(event.data, {stream: true}); var res = test_url_whitelisted(a.url); res.then(function(whitelisted){ var edit_script; if(whitelisted == true){ // Doesn't matter if this is accepted or blocked, it will still be whitelisted edit_script = get_script(str,a.url,a["tabId"],true); } else{ edit_script = get_script(str,a.url,a["tabId"],false); } edit_script.then(function(edited){ filter.write(encoder.encode(edited)); filter.disconnect(); }); }); } return {}; } /** * Removes noscript tags with name "librejs-path" leaving the inner content to load. */ function remove_noscripts(html_doc){ for(var i = 0; i < html_doc.getElementsByName("librejs-path").length; i++){ if(html_doc.getElementsByName("librejs-path")[i].tagName == "NOSCRIPT"){ html_doc.getElementsByName("librejs-path")[i].outerHTML = html_doc.getElementsByName("librejs-path")[i].innerHTML; } } return html_doc.documentElement.innerHTML; } /** * Reads/changes the HTML of a page and the scripts within it. * */ function edit_html(html,url,tabid,wl){ return new Promise((resolve, reject) => { if(wl == true){ // Don't bother, page is whitelisted resolve(html); } var parser = new DOMParser(); var html_doc = parser.parseFromString(html, "text/html"); var amt_scripts = 0; var total_scripts = 0; var scripts = html_doc.scripts; // Deal with intrinsic events var has_intrinsic_events = []; for(var i = 0; i < html_doc.all.length; i++){ for(var j = 0; j < intrinsic_events.length; j++){ if(intrinsic_events[j] in html_doc.all[i].attributes){ has_intrinsic_events.push([i,j]); } } } // "i" is an index in html_doc.all // "j" is an index in intrinsicEvents function edit_event(src,i,j,name){ var edited = get_script(src,name); edited.then(function(){ html_doc.all[i].attributes[intrinsicEvents[j]].value = edited[0]; }); } // Find all the document's elements with intrinsic events for(var i = 0; i < has_intrinsic_events.length; i++){ var s_name = "Intrinsic event ["+has_intrinsic_events[i][0]+"]"; edit_event(html_doc.all[has_intrinsic_events[i][0]].attributes[intrinsicEvents[has_intrinsic_events[i][1]]].value,has_intrinsic_events[i][0],has_intrinsic_events[i][1],s_name); } // Deal with inline scripts for(var i = 0; i < scripts.length; i++){ if(scripts[i].src == ""){ total_scripts++; } } dbg_print("Analyzing "+total_scripts+" inline scripts..."); for(var i = 0; i < scripts.length; i++){ if(scripts[i].src == ""){ var edit_script = get_script(scripts[i].innerHTML,url,tabid,wl,i); edit_script.then(function(edited){ var edited_source = edited[0]; var unedited_source = html_doc.scripts[edited[1]].innerHTML.trim(); html_doc.scripts[edited[1]].innerHTML = edited_source; amt_scripts++; if(amt_scripts >= total_scripts){ resolve(remove_noscripts(html_doc)); } }); } } if(total_scripts == 0){ dbg_print("Nothing to analyze."); resolve(remove_noscripts(html_doc)); } }); } /** * Callback for main frame requests * */ function read_document(a){ if(unused_data[a["tabId"]] !== undefined && unused_data[a["tabId"]]["url"] != get_domain(a["url"])){ delete unused_data[a["tabId"]]; dbg_print("Page Changed!!!"); } var str = ""; var filter = webex.webRequest.filterResponseData(a.requestId); var decoder = new TextDecoder("utf-8"); var encoder = new TextEncoder(); // TODO: make sure this doesn't cause undeclared decoding filter.onerror = event => { dbg_print("%c Error in getting document","color:red"); } filter.onstop = event => { var test = new ArrayBuffer(); var res = test_url_whitelisted(a.url); res.then(function(whitelisted){ var edit_page; if(whitelisted == true){ dbg_print("WHITELISTED"); // Doesn't matter if this is accepted or blocked, it will still be whitelisted filter.write(encoder.encode(str)); filter.disconnect(); return; } else{ edit_page = edit_html(str,a.url,a["tabId"],false); edit_page.then(function(edited){ filter.write(encoder.encode(edited)); filter.disconnect(); }); } }); } filter.ondata = event => { str += decoder.decode(event.data, {stream: true}); return; } return {}; } /** * Initializes various add-on functions * only meant to be called once when the script starts */ function init_addon(){ set_webex(); webex.runtime.onConnect.addListener(connected); webex.storage.onChanged.addListener(options_listener); webex.tabs.onRemoved.addListener(delete_removed_tab_info); // Analyzes remote scripts webex.webRequest.onBeforeRequest.addListener( read_script, {urls:[""], types:["script"]}, ["blocking"] ); // Analyzes the scripts inside of HTML webex.webRequest.onBeforeRequest.addListener( read_document, {urls:[""], types:["main_frame"]}, ["blocking"] ); } /** * Test if a page is whitelisted/blacklisted. * * The input here is tested against the comma seperated string found in the options. * * It does NOT test against the individual entries created by hitting the "whitelist" * button for a script in the browser action. */ function test_url_whitelisted(url){ return new Promise((resolve, reject) => { function cb(items){ var wl = items["pref_whitelist"]; if(wl !== undefined && wl !== ""){ wl = wl.split(","); } else{ resolve(false); return; } var regex; for(var i in wl){ var s = wl[i].replace(/\*/g,"\\S*"); s = s.replace(/\./g,"\\."); regex = new RegExp(s, "g"); if(url.match(regex)){ //console.log("%c" + wl[i] + " matched " + url,"color: purple;"); resolve(true); return; } else{ //console.log("%c" + wl[i] + " didn't match " + url,"color: #dd0000;"); } } resolve(false); return; } webex.storage.local.get(cb); }); } /** * Loads the contact finder on the given tab ID. */ function inject_contact_finder(tab_id){ function executed(result) { dbg_print("[TABID:"+tab_id+"]"+"finished executing contact finder: " + result); } var executing = webex.tabs.executeScript(tab_id, {file: "/contact_finder.js"}, executed); } /** * Adds given domain to the whitelist in options */ function add_csv_whitelist(domain){ function storage_got(items){ if(items["pref_whitelist"] == ""){ items["pref_whitelist"] = domain + "*"; } else if(items["pref_whitelist"] == "undefined"){ items["pref_whitelist"] = domain + "*"; } else{ items["pref_whitelist"] += "," + domain + "*"; } dbg_print("New CSV whitelist:"); dbg_print(items["pref_whitelist"]); webex.storage.local.set({"pref_whitelist":items["pref_whitelist"]}); } webex.storage.local.get(storage_got); } /** * removes given domain from the whitelist in options */ function remove_csv_whitelist(domain){ function storage_got(items){ if(items["pref_whitelist"] != ""){ domain = domain + "\\*"; domain.replace(/\./g,"\."); // remove domain dbg_print(new RegExp(domain,"g")); items["pref_whitelist"] = items["pref_whitelist"].replace(new RegExp(domain,"g"),"") // if an entry was deleted, it will leave an extra comma items["pref_whitelist"] = items["pref_whitelist"].replace(/,+/g,","); // remove trailing comma if the last one was deleted if(items["pref_whitelist"].charAt(items["pref_whitelist"].length-1) == ","){ items["pref_whitelist"] = items["pref_whitelist"].substr(0,items["pref_whitelist"].length-2); } } dbg_print("New CSV whitelist:"); dbg_print(items["pref_whitelist"]); webex.storage.local.set({"pref_whitelist":items["pref_whitelist"]}); } webex.storage.local.get(storage_got); } init_addon();