2014-06-23 16:42:43 -06:00
|
|
|
/*******************************************************************************
|
|
|
|
|
2015-06-09 08:27:08 -06:00
|
|
|
uBlock - a browser extension to block requests.
|
|
|
|
Copyright (C) 2014-2015 Raymond Hill
|
2014-06-23 16:42:43 -06:00
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
along with this program. If not, see {http://www.gnu.org/licenses/}.
|
|
|
|
|
|
|
|
Home: https://github.com/gorhill/uBlock
|
|
|
|
*/
|
|
|
|
|
2014-11-24 15:20:21 -07:00
|
|
|
/* global µBlock, vAPI */
|
2014-06-23 16:42:43 -06:00
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
// Start isolation from global scope
|
|
|
|
|
|
|
|
µBlock.webRequest = (function() {
|
|
|
|
|
2014-11-24 15:20:21 -07:00
|
|
|
'use strict';
|
|
|
|
|
2014-06-23 16:42:43 -06:00
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-03-25 17:28:22 -06:00
|
|
|
var exports = {};
|
|
|
|
|
2015-03-13 07:48:10 -06:00
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-07-26 07:55:12 -06:00
|
|
|
// Intercept and filter web requests.
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
var onBeforeRequest = function(details) {
|
2015-02-25 12:15:36 -07:00
|
|
|
//console.debug('µBlock.webRequest/onBeforeRequest(): "%s": %o', details.url, details);
|
2015-03-13 08:02:33 -06:00
|
|
|
//console.debug('µBlock.webRequest/onBeforeRequest(): "type=%s, id=%d, parent id=%d, url=%s', details.type, details.frameId, details.parentFrameId, details.url);
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
// Special handling for root document.
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/1001
|
2015-03-13 07:48:10 -06:00
|
|
|
// This must be executed regardless of whether the request is
|
|
|
|
// behind-the-scene
|
2015-03-21 14:52:35 -06:00
|
|
|
var requestType = details.type;
|
2015-03-13 08:20:33 -06:00
|
|
|
if ( requestType === 'main_frame' ) {
|
2015-03-21 14:52:35 -06:00
|
|
|
return onBeforeRootFrameRequest(details);
|
2014-07-14 09:24:59 -06:00
|
|
|
}
|
|
|
|
|
2015-03-13 07:48:10 -06:00
|
|
|
// Special treatment: behind-the-scene requests
|
2015-03-21 14:52:35 -06:00
|
|
|
var tabId = details.tabId;
|
2015-04-05 10:03:14 -06:00
|
|
|
if ( vAPI.isBehindTheSceneTabId(tabId) ) {
|
2015-03-13 07:48:10 -06:00
|
|
|
return onBeforeBehindTheSceneRequest(details);
|
|
|
|
}
|
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
// Lookup the page store associated with this tab id.
|
2015-03-21 14:52:35 -06:00
|
|
|
var µb = µBlock;
|
|
|
|
var pageStore = µb.pageStoreFromTabId(tabId);
|
2014-07-25 17:29:51 -06:00
|
|
|
if ( !pageStore ) {
|
2015-04-08 16:46:08 -06:00
|
|
|
var tabContext = µb.tabContextManager.lookup(tabId);
|
|
|
|
if ( vAPI.isBehindTheSceneTabId(tabContext.tabId) ) {
|
2015-03-21 18:30:00 -06:00
|
|
|
return onBeforeBehindTheSceneRequest(details);
|
2015-03-13 07:48:10 -06:00
|
|
|
}
|
2015-04-08 16:46:08 -06:00
|
|
|
vAPI.tabs.onNavigation({ tabId: tabId, frameId: 0, url: tabContext.rawURL });
|
|
|
|
pageStore = µb.pageStoreFromTabId(tabId);
|
2014-07-14 12:40:40 -06:00
|
|
|
}
|
2014-07-15 05:38:34 -06:00
|
|
|
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/886
|
2015-02-25 12:15:36 -07:00
|
|
|
// For requests of type `sub_frame`, the parent frame id must be used
|
|
|
|
// to lookup the proper context:
|
|
|
|
// > If the document of a (sub-)frame is loaded (type is main_frame or
|
|
|
|
// > sub_frame), frameId indicates the ID of this frame, not the ID of
|
|
|
|
// > the outer frame.
|
|
|
|
// > (ref: https://developer.chrome.com/extensions/webRequest)
|
2015-03-21 14:52:35 -06:00
|
|
|
var isFrame = requestType === 'sub_frame';
|
2015-02-25 12:15:36 -07:00
|
|
|
var frameId = isFrame ? details.parentFrameId : details.frameId;
|
2015-04-08 16:46:08 -06:00
|
|
|
|
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/114
|
|
|
|
var requestContext = pageStore.createContextFromFrameId(frameId);
|
2014-07-29 23:05:35 -06:00
|
|
|
|
2014-12-28 08:07:43 -07:00
|
|
|
// Setup context and evaluate
|
2015-03-21 14:52:35 -06:00
|
|
|
var requestURL = details.url;
|
2014-12-28 08:07:43 -07:00
|
|
|
requestContext.requestURL = requestURL;
|
2015-01-20 17:39:13 -07:00
|
|
|
requestContext.requestHostname = details.hostname;
|
2014-12-28 08:07:43 -07:00
|
|
|
requestContext.requestType = requestType;
|
|
|
|
|
|
|
|
var result = pageStore.filterRequest(requestContext);
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2015-01-16 10:15:12 -07:00
|
|
|
// Possible outcomes: blocked, allowed-passthru, allowed-mirror
|
2015-01-06 06:01:15 -07:00
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
pageStore.logRequest(requestContext, result);
|
2015-06-04 17:27:03 -06:00
|
|
|
|
|
|
|
if ( µb.logger.isEnabled() ) {
|
|
|
|
µb.logger.writeOne(
|
|
|
|
tabId,
|
|
|
|
'net',
|
|
|
|
result,
|
|
|
|
requestType,
|
|
|
|
requestURL,
|
|
|
|
requestContext.rootHostname,
|
|
|
|
requestContext.pageHostname
|
|
|
|
);
|
|
|
|
}
|
2015-04-08 16:46:08 -06:00
|
|
|
|
2014-09-14 14:20:40 -06:00
|
|
|
// Not blocked
|
2015-01-16 10:15:12 -07:00
|
|
|
if ( µb.isAllowResult(result) ) {
|
2015-01-24 10:06:22 -07:00
|
|
|
//console.debug('traffic.js > onBeforeRequest(): ALLOW "%s" (%o) because "%s"', details.url, details, result);
|
2014-07-29 23:05:35 -06:00
|
|
|
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/114
|
2015-03-02 08:41:51 -07:00
|
|
|
frameId = details.frameId;
|
|
|
|
if ( frameId > 0 ) {
|
|
|
|
if ( isFrame ) {
|
|
|
|
pageStore.setFrame(frameId, requestURL);
|
|
|
|
} else if ( pageStore.getFrame(frameId) === null ) {
|
|
|
|
pageStore.setFrame(frameId, requestURL);
|
|
|
|
}
|
2014-08-05 17:35:32 -06:00
|
|
|
}
|
2014-09-14 14:20:40 -06:00
|
|
|
|
2014-07-14 09:24:59 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
// Blocked
|
2015-03-15 12:04:07 -06:00
|
|
|
//console.debug('traffic.js > onBeforeRequest(): BLOCK "%s" (%o) because "%s"', details.url, details, result);
|
2014-12-22 16:38:18 -07:00
|
|
|
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/905#issuecomment-76543649
|
2015-02-28 13:34:50 -07:00
|
|
|
// No point updating the badge if it's not being displayed.
|
|
|
|
if ( µb.userSettings.showIconBadge ) {
|
|
|
|
µb.updateBadgeAsync(tabId);
|
|
|
|
}
|
2014-07-25 17:29:51 -06:00
|
|
|
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/18
|
2014-07-25 17:29:51 -06:00
|
|
|
// Do not use redirection, we need to block outright to be sure the request
|
|
|
|
// will not be made. There can be no such guarantee with redirection.
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2015-03-25 17:28:22 -06:00
|
|
|
return { cancel: true };
|
2014-07-14 09:24:59 -06:00
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-03-21 14:52:35 -06:00
|
|
|
var onBeforeRootFrameRequest = function(details) {
|
2015-04-08 16:46:08 -06:00
|
|
|
var tabId = details.tabId;
|
2015-03-31 07:07:14 -06:00
|
|
|
var requestURL = details.url;
|
2015-04-08 16:46:08 -06:00
|
|
|
var µb = µBlock;
|
2015-03-31 07:07:14 -06:00
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
µb.tabContextManager.push(tabId, requestURL);
|
2015-03-25 17:28:22 -06:00
|
|
|
|
2015-03-21 14:52:35 -06:00
|
|
|
// Special handling for root document.
|
2015-04-06 19:26:05 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/1001
|
2015-03-21 14:52:35 -06:00
|
|
|
// This must be executed regardless of whether the request is
|
|
|
|
// behind-the-scene
|
2015-03-25 17:28:22 -06:00
|
|
|
var requestHostname = details.hostname;
|
2015-04-06 08:26:32 -06:00
|
|
|
var requestDomain = µb.URI.domainFromHostname(requestHostname) || requestHostname;
|
2015-03-25 17:28:22 -06:00
|
|
|
var context = {
|
|
|
|
rootHostname: requestHostname,
|
|
|
|
rootDomain: requestDomain,
|
|
|
|
pageHostname: requestHostname,
|
|
|
|
pageDomain: requestDomain,
|
|
|
|
requestURL: requestURL,
|
|
|
|
requestHostname: requestHostname,
|
2015-07-11 15:40:42 -06:00
|
|
|
requestType: 'other'
|
2015-03-25 17:28:22 -06:00
|
|
|
};
|
|
|
|
|
|
|
|
var result = '';
|
|
|
|
|
2015-04-09 10:20:24 -06:00
|
|
|
// If the site is whitelisted, disregard strict blocking
|
|
|
|
if ( µb.getNetFilteringSwitch(requestURL) === false ) {
|
|
|
|
result = 'ua:whitelisted';
|
|
|
|
}
|
|
|
|
|
2015-03-27 11:00:55 -06:00
|
|
|
// Permanently unrestricted?
|
2015-04-09 09:19:31 -06:00
|
|
|
if ( result === '' && µb.hnSwitches.evaluateZ('no-strict-blocking', requestHostname) ) {
|
2015-04-24 22:28:30 -06:00
|
|
|
result = 'ua:no-strict-blocking: ' + µb.hnSwitches.z + ' true';
|
2015-03-27 11:00:55 -06:00
|
|
|
}
|
|
|
|
|
2015-03-25 17:28:22 -06:00
|
|
|
// Temporarily whitelisted?
|
2015-04-09 10:20:24 -06:00
|
|
|
if ( result === '' ) {
|
|
|
|
result = isTemporarilyWhitelisted(result, requestHostname);
|
|
|
|
if ( result.charAt(1) === 'a' ) {
|
2015-07-11 15:40:42 -06:00
|
|
|
result = 'ua:no-strict-blocking true (temporary)';
|
2015-04-09 10:20:24 -06:00
|
|
|
}
|
2015-03-21 14:52:35 -06:00
|
|
|
}
|
2015-03-25 17:28:22 -06:00
|
|
|
|
2015-07-13 06:49:58 -06:00
|
|
|
// Static filtering: We always need the long-form result here.
|
2015-07-11 15:40:42 -06:00
|
|
|
var snfe = µb.staticNetFilteringEngine;
|
2015-07-13 06:49:58 -06:00
|
|
|
|
|
|
|
// Check for specific block
|
|
|
|
if ( result === '' && snfe.matchStringExactType(context, requestURL, 'main_frame') !== undefined ) {
|
|
|
|
result = snfe.toResultString(true);
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check for generic block
|
2015-07-11 15:40:42 -06:00
|
|
|
if ( result === '' && snfe.matchString(context) !== undefined ) {
|
|
|
|
result = snfe.toResultString(true);
|
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/1128
|
|
|
|
// Do not block if the match begins after the hostname, except when
|
|
|
|
// the filter is specifically of type `other`.
|
2015-07-13 05:41:02 -06:00
|
|
|
// https://github.com/gorhill/uBlock/issues/490
|
|
|
|
// Removing this for the time being, will need a new, dedicated type.
|
|
|
|
if ( result.charAt(1) === 'b' ) {
|
2015-07-11 15:40:42 -06:00
|
|
|
result = toBlockDocResult(requestURL, requestHostname, result);
|
2015-03-30 15:42:12 -06:00
|
|
|
}
|
2015-03-25 17:28:22 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
// Log
|
2015-04-08 16:46:08 -06:00
|
|
|
var pageStore = µb.bindTabToPageStats(tabId, 'beforeRequest');
|
2015-03-25 17:28:22 -06:00
|
|
|
if ( pageStore ) {
|
|
|
|
pageStore.logRequest(context, result);
|
|
|
|
}
|
2015-06-04 17:27:03 -06:00
|
|
|
|
|
|
|
if ( µb.logger.isEnabled() ) {
|
|
|
|
µb.logger.writeOne(
|
|
|
|
tabId,
|
|
|
|
'net',
|
|
|
|
result,
|
|
|
|
'main_frame',
|
|
|
|
requestURL,
|
|
|
|
requestHostname,
|
|
|
|
requestHostname
|
|
|
|
);
|
|
|
|
}
|
2015-03-25 17:28:22 -06:00
|
|
|
|
|
|
|
// Not blocked
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2015-06-11 17:33:30 -06:00
|
|
|
var compiled = result.slice(3);
|
|
|
|
|
2015-03-25 17:28:22 -06:00
|
|
|
// Blocked
|
|
|
|
var query = btoa(JSON.stringify({
|
|
|
|
url: requestURL,
|
2015-03-30 11:10:29 -06:00
|
|
|
hn: requestHostname,
|
2015-04-06 08:26:32 -06:00
|
|
|
dn: requestDomain,
|
2015-06-11 17:33:30 -06:00
|
|
|
fc: compiled,
|
2015-07-11 15:40:42 -06:00
|
|
|
fs: snfe.filterStringFromCompiled(compiled)
|
2015-03-25 17:28:22 -06:00
|
|
|
}));
|
2015-03-27 11:00:55 -06:00
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
vAPI.tabs.replace(tabId, vAPI.getURL('document-blocked.html?details=') + query);
|
2015-03-27 11:00:55 -06:00
|
|
|
|
|
|
|
return { cancel: true };
|
2015-03-21 14:52:35 -06:00
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-03-30 15:42:12 -06:00
|
|
|
var toBlockDocResult = function(url, hostname, result) {
|
|
|
|
// Make a regex out of the result
|
2015-06-09 08:27:08 -06:00
|
|
|
var re = µBlock.staticNetFilteringEngine
|
|
|
|
.filterRegexFromCompiled(result.slice(3), 'gi');
|
|
|
|
if ( re === null ) {
|
|
|
|
return '';
|
2015-03-30 15:42:12 -06:00
|
|
|
}
|
|
|
|
var matches = re.exec(url);
|
|
|
|
if ( matches === null ) {
|
|
|
|
return '';
|
|
|
|
}
|
|
|
|
|
2015-04-08 05:04:29 -06:00
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/1128
|
|
|
|
// https://github.com/chrisaljoudi/uBlock/issues/1212
|
|
|
|
// Relax the rule: verify that the match is completely before the path part
|
|
|
|
if ( re.lastIndex <= url.indexOf(hostname) + hostname.length + 1 ) {
|
2015-03-30 15:42:12 -06:00
|
|
|
return result;
|
|
|
|
}
|
|
|
|
|
|
|
|
return '';
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
// Intercept and filter behind-the-scene requests.
|
|
|
|
|
|
|
|
var onBeforeBehindTheSceneRequest = function(details) {
|
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): "%s": %o', details.url, details);
|
|
|
|
|
|
|
|
var µb = µBlock;
|
|
|
|
var pageStore = µb.pageStoreFromTabId(vAPI.noTabId);
|
|
|
|
if ( !pageStore ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
var context = pageStore.createContextFromPage();
|
|
|
|
context.requestURL = details.url;
|
|
|
|
context.requestHostname = details.hostname;
|
|
|
|
context.requestType = details.type;
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
// Blocking behind-the-scene requests can break a lot of stuff: prevent
|
|
|
|
// browser updates, prevent extension updates, prevent extensions from
|
|
|
|
// working properly, etc.
|
|
|
|
// So we filter if and only if the "advanced user" mode is selected
|
|
|
|
var result = '';
|
|
|
|
if ( µb.userSettings.advancedUserEnabled ) {
|
2015-04-08 16:46:08 -06:00
|
|
|
result = pageStore.filterRequestNoCache(context);
|
2015-01-24 10:06:22 -07:00
|
|
|
}
|
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
pageStore.logRequest(context, result);
|
2015-06-04 17:27:03 -06:00
|
|
|
|
|
|
|
if ( µb.logger.isEnabled() ) {
|
|
|
|
µb.logger.writeOne(
|
|
|
|
vAPI.noTabId,
|
|
|
|
'net',
|
|
|
|
result,
|
|
|
|
details.type,
|
|
|
|
details.url,
|
|
|
|
context.rootHostname,
|
|
|
|
context.rootHostname
|
|
|
|
);
|
|
|
|
}
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
// Not blocked
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): ALLOW "%s" (%o) because "%s"', details.url, details, result);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Blocked
|
2015-03-15 12:04:07 -06:00
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): BLOCK "%s" (%o) because "%s"', details.url, details, result);
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
return { 'cancel': true };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-09-24 15:38:22 -06:00
|
|
|
// To handle `inline-script`.
|
|
|
|
|
|
|
|
var onHeadersReceived = function(details) {
|
|
|
|
// Do not interfere with behind-the-scene requests.
|
|
|
|
var tabId = details.tabId;
|
2015-04-05 10:03:14 -06:00
|
|
|
if ( vAPI.isBehindTheSceneTabId(tabId) ) {
|
2014-09-24 15:38:22 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
// Special handling for root document.
|
|
|
|
if ( details.type === 'main_frame' ) {
|
|
|
|
return onRootFrameHeadersReceived(details);
|
|
|
|
}
|
|
|
|
|
2015-06-11 13:11:01 -06:00
|
|
|
// Just in case...
|
|
|
|
if ( details.type !== 'sub_frame' ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
// If we reach this point, we are dealing with a sub_frame
|
2015-03-13 06:36:12 -06:00
|
|
|
|
2014-09-24 15:38:22 -06:00
|
|
|
// Lookup the page store associated with this tab id.
|
|
|
|
var µb = µBlock;
|
|
|
|
var pageStore = µb.pageStoreFromTabId(tabId);
|
|
|
|
if ( !pageStore ) {
|
2015-04-08 16:46:08 -06:00
|
|
|
return;
|
2014-09-24 15:38:22 -06:00
|
|
|
}
|
|
|
|
|
2015-04-22 07:23:36 -06:00
|
|
|
// Frame id of frame request is their own id, while the request is made
|
2015-04-08 16:46:08 -06:00
|
|
|
// in the context of the parent.
|
|
|
|
var context = pageStore.createContextFromFrameId(details.parentFrameId);
|
2015-04-22 07:23:36 -06:00
|
|
|
context.requestURL = details.url;
|
2015-04-08 16:46:08 -06:00
|
|
|
context.requestHostname = details.hostname;
|
|
|
|
context.requestType = 'inline-script';
|
|
|
|
|
|
|
|
var result = pageStore.filterRequestNoCache(context);
|
|
|
|
|
|
|
|
pageStore.logRequest(context, result);
|
2015-06-04 17:27:03 -06:00
|
|
|
|
|
|
|
if ( µb.logger.isEnabled() ) {
|
|
|
|
µb.logger.writeOne(
|
|
|
|
tabId,
|
|
|
|
'net',
|
|
|
|
result,
|
|
|
|
'inline-script',
|
|
|
|
details.url,
|
|
|
|
context.rootHostname,
|
|
|
|
context.pageHostname
|
|
|
|
);
|
|
|
|
}
|
2015-01-13 09:54:54 -07:00
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
// Don't block
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
µb.updateBadgeAsync(tabId);
|
|
|
|
|
|
|
|
details.responseHeaders.push({
|
|
|
|
'name': 'Content-Security-Policy',
|
|
|
|
'value': "script-src 'unsafe-eval' *"
|
|
|
|
});
|
|
|
|
|
|
|
|
return { 'responseHeaders': details.responseHeaders };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
var onRootFrameHeadersReceived = function(details) {
|
|
|
|
var tabId = details.tabId;
|
|
|
|
var µb = µBlock;
|
2015-01-17 13:03:33 -07:00
|
|
|
|
2015-05-28 12:47:19 -06:00
|
|
|
µb.tabContextManager.push(tabId, details.url);
|
2015-01-17 13:03:33 -07:00
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
// Lookup the page store associated with this tab id.
|
|
|
|
var pageStore = µb.pageStoreFromTabId(tabId);
|
|
|
|
if ( !pageStore ) {
|
|
|
|
pageStore = µb.bindTabToPageStats(tabId, 'beforeRequest');
|
|
|
|
}
|
|
|
|
// I can't think of how pageStore could be null at this point.
|
|
|
|
|
|
|
|
var context = pageStore.createContextFromPage();
|
2015-04-22 07:23:36 -06:00
|
|
|
context.requestURL = details.url;
|
|
|
|
context.requestHostname = details.hostname;
|
2015-01-17 13:03:33 -07:00
|
|
|
context.requestType = 'inline-script';
|
|
|
|
|
2015-04-07 19:26:13 -06:00
|
|
|
var result = pageStore.filterRequestNoCache(context);
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
pageStore.logRequest(context, result);
|
2015-06-04 17:27:03 -06:00
|
|
|
|
|
|
|
if ( µb.logger.isEnabled() ) {
|
|
|
|
µb.logger.writeOne(
|
|
|
|
tabId,
|
|
|
|
'net',
|
|
|
|
result,
|
|
|
|
'inline-script',
|
|
|
|
details.url,
|
|
|
|
context.rootHostname,
|
|
|
|
context.pageHostname
|
|
|
|
);
|
|
|
|
}
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
// Don't block
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
2014-09-24 15:38:22 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
µb.updateBadgeAsync(tabId);
|
|
|
|
|
|
|
|
details.responseHeaders.push({
|
|
|
|
'name': 'Content-Security-Policy',
|
2014-10-06 12:02:44 -06:00
|
|
|
'value': "script-src 'unsafe-eval' *"
|
2014-09-24 15:38:22 -06:00
|
|
|
});
|
|
|
|
|
|
|
|
return { 'responseHeaders': details.responseHeaders };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-10-17 13:44:19 -06:00
|
|
|
vAPI.net.onBeforeRequest = {
|
|
|
|
urls: [
|
|
|
|
'http://*/*',
|
|
|
|
'https://*/*'
|
|
|
|
],
|
|
|
|
extra: [ 'blocking' ],
|
|
|
|
callback: onBeforeRequest
|
|
|
|
};
|
|
|
|
|
|
|
|
vAPI.net.onHeadersReceived = {
|
|
|
|
urls: [
|
|
|
|
'http://*/*',
|
|
|
|
'https://*/*'
|
|
|
|
],
|
|
|
|
types: [
|
2015-01-13 09:54:54 -07:00
|
|
|
"main_frame",
|
|
|
|
"sub_frame"
|
2014-10-17 13:44:19 -06:00
|
|
|
],
|
|
|
|
extra: [ 'blocking', 'responseHeaders' ],
|
|
|
|
callback: onHeadersReceived
|
|
|
|
};
|
|
|
|
|
|
|
|
vAPI.net.registerListeners();
|
2014-09-24 15:38:22 -06:00
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
//console.log('traffic.js > Beginning to intercept net requests at %s', (new Date()).toISOString());
|
2014-06-23 16:42:43 -06:00
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-04-06 08:26:32 -06:00
|
|
|
var isTemporarilyWhitelisted = function(result, hostname) {
|
|
|
|
var obsolete, pos;
|
|
|
|
|
|
|
|
for (;;) {
|
|
|
|
obsolete = documentWhitelists[hostname];
|
|
|
|
if ( obsolete !== undefined ) {
|
|
|
|
if ( obsolete > Date.now() ) {
|
|
|
|
if ( result === '' ) {
|
|
|
|
return 'ua:*' + ' ' + hostname + ' doc allow';
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
delete documentWhitelists[hostname];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
pos = hostname.indexOf('.');
|
|
|
|
if ( pos === -1 ) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
hostname = hostname.slice(pos + 1);
|
|
|
|
}
|
|
|
|
return result;
|
|
|
|
};
|
|
|
|
|
2015-04-08 16:46:08 -06:00
|
|
|
var documentWhitelists = Object.create(null);
|
|
|
|
|
2015-04-06 08:26:32 -06:00
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
exports.temporarilyWhitelistDocument = function(hostname) {
|
|
|
|
if ( typeof hostname !== 'string' || hostname === '' ) {
|
2015-03-25 17:28:22 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
documentWhitelists[hostname] = Date.now() + 60 * 1000;
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
return exports;
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-06-23 16:42:43 -06:00
|
|
|
})();
|
|
|
|
|
|
|
|
/******************************************************************************/
|