2014-06-23 16:42:43 -06:00
|
|
|
/*******************************************************************************
|
|
|
|
|
2015-03-07 11:20:18 -07:00
|
|
|
µBlock - a browser extension to block requests.
|
2014-06-23 16:42:43 -06:00
|
|
|
Copyright (C) 2014 Raymond Hill
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
along with this program. If not, see {http://www.gnu.org/licenses/}.
|
|
|
|
|
|
|
|
Home: https://github.com/gorhill/uBlock
|
|
|
|
*/
|
|
|
|
|
2014-11-24 15:20:21 -07:00
|
|
|
/* global µBlock, vAPI */
|
2014-06-23 16:42:43 -06:00
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
// Start isolation from global scope
|
|
|
|
|
|
|
|
µBlock.webRequest = (function() {
|
|
|
|
|
2014-11-24 15:20:21 -07:00
|
|
|
'use strict';
|
|
|
|
|
2014-06-23 16:42:43 -06:00
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-07-26 07:55:12 -06:00
|
|
|
// Intercept and filter web requests.
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
var onBeforeRequest = function(details) {
|
2015-02-25 12:15:36 -07:00
|
|
|
//console.debug('µBlock.webRequest/onBeforeRequest(): "%s": %o', details.url, details);
|
2015-02-26 10:30:12 -07:00
|
|
|
//console.debug('µBlock.webRequest/onBeforeRequest(): "type=%s, id=%d, parent id=%d, url=%s', details.type, details.frameId, details.parentFrameId, details.url);
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
var tabId = details.tabId;
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
// Special treatment: behind-the-scene requests
|
|
|
|
if ( vAPI.isNoTabId(tabId) ) {
|
|
|
|
return onBeforeBehindTheSceneRequest(details);
|
|
|
|
}
|
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
var µb = µBlock;
|
|
|
|
var requestURL = details.url;
|
2014-10-02 14:45:26 -06:00
|
|
|
var requestType = details.type;
|
2015-01-07 16:56:03 -07:00
|
|
|
var pageStore;
|
2014-07-25 17:29:51 -06:00
|
|
|
|
|
|
|
// Special handling for root document.
|
|
|
|
if ( requestType === 'main_frame' && details.parentFrameId === -1 ) {
|
2015-01-07 16:56:03 -07:00
|
|
|
pageStore = µb.bindTabToPageStats(tabId, requestURL, 'beforeRequest');
|
|
|
|
// Log for convenience
|
|
|
|
if ( pageStore !== null ) {
|
|
|
|
pageStore.requestURL = requestURL;
|
|
|
|
pageStore.requestHostname = pageStore.pageHostname;
|
|
|
|
pageStore.requestType = 'main_frame';
|
2015-01-24 10:06:22 -07:00
|
|
|
pageStore.logRequest(pageStore, '');
|
2015-01-07 16:56:03 -07:00
|
|
|
}
|
2014-07-14 09:24:59 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
// Lookup the page store associated with this tab id.
|
2015-01-07 16:56:03 -07:00
|
|
|
pageStore = µb.pageStoreFromTabId(tabId);
|
2014-07-25 17:29:51 -06:00
|
|
|
if ( !pageStore ) {
|
2014-07-14 12:40:40 -06:00
|
|
|
return;
|
|
|
|
}
|
2014-07-15 05:38:34 -06:00
|
|
|
|
2014-07-29 23:05:35 -06:00
|
|
|
// https://github.com/gorhill/uBlock/issues/114
|
|
|
|
var requestContext = pageStore;
|
2014-08-05 17:35:32 -06:00
|
|
|
var frameStore;
|
2015-02-25 12:15:36 -07:00
|
|
|
// https://github.com/gorhill/uBlock/issues/886
|
|
|
|
// For requests of type `sub_frame`, the parent frame id must be used
|
|
|
|
// to lookup the proper context:
|
|
|
|
// > If the document of a (sub-)frame is loaded (type is main_frame or
|
|
|
|
// > sub_frame), frameId indicates the ID of this frame, not the ID of
|
|
|
|
// > the outer frame.
|
|
|
|
// > (ref: https://developer.chrome.com/extensions/webRequest)
|
|
|
|
var isFrame = requestType === 'sub_frame' || requestType === 'main_frame';
|
|
|
|
var frameId = isFrame ? details.parentFrameId : details.frameId;
|
2014-08-05 17:35:32 -06:00
|
|
|
if ( frameId > 0 ) {
|
|
|
|
if ( frameStore = pageStore.getFrame(frameId) ) {
|
|
|
|
requestContext = frameStore;
|
|
|
|
}
|
|
|
|
}
|
2014-07-29 23:05:35 -06:00
|
|
|
|
2014-12-28 08:07:43 -07:00
|
|
|
// Setup context and evaluate
|
|
|
|
requestContext.requestURL = requestURL;
|
2015-01-20 17:39:13 -07:00
|
|
|
requestContext.requestHostname = details.hostname;
|
2014-12-28 08:07:43 -07:00
|
|
|
requestContext.requestType = requestType;
|
|
|
|
|
|
|
|
var result = pageStore.filterRequest(requestContext);
|
2014-07-14 09:24:59 -06:00
|
|
|
|
2015-01-16 10:15:12 -07:00
|
|
|
// Possible outcomes: blocked, allowed-passthru, allowed-mirror
|
2015-01-06 06:01:15 -07:00
|
|
|
|
2014-09-14 14:20:40 -06:00
|
|
|
// Not blocked
|
2015-01-16 10:15:12 -07:00
|
|
|
if ( µb.isAllowResult(result) ) {
|
2015-01-24 10:06:22 -07:00
|
|
|
//console.debug('traffic.js > onBeforeRequest(): ALLOW "%s" (%o) because "%s"', details.url, details, result);
|
2014-07-29 23:05:35 -06:00
|
|
|
|
|
|
|
// https://github.com/gorhill/uBlock/issues/114
|
2015-03-02 08:41:51 -07:00
|
|
|
frameId = details.frameId;
|
|
|
|
if ( frameId > 0 ) {
|
|
|
|
if ( isFrame ) {
|
|
|
|
pageStore.setFrame(frameId, requestURL);
|
|
|
|
} else if ( pageStore.getFrame(frameId) === null ) {
|
|
|
|
pageStore.setFrame(frameId, requestURL);
|
|
|
|
}
|
2014-08-05 17:35:32 -06:00
|
|
|
}
|
2014-09-14 14:20:40 -06:00
|
|
|
|
2014-11-29 13:26:01 -07:00
|
|
|
// https://code.google.com/p/chromium/issues/detail?id=387198
|
|
|
|
// Not all redirects will succeed, until bug above is fixed.
|
2015-01-18 17:17:36 -07:00
|
|
|
// https://github.com/gorhill/uBlock/issues/540
|
|
|
|
// Disabling local mirroring for the time being
|
|
|
|
//var redirectURL = pageStore.toMirrorURL(requestURL);
|
|
|
|
//if ( redirectURL !== '' ) {
|
2015-01-24 10:06:22 -07:00
|
|
|
// pageStore.logRequest(requestContext, 'ma:');
|
|
|
|
//console.debug('traffic.js > "%s" redirected to "%s..."', requestURL.slice(0, 50), redirectURL.slice(0, 50));
|
2015-01-18 17:17:36 -07:00
|
|
|
// return { redirectUrl: redirectURL };
|
|
|
|
//}
|
2014-09-30 13:55:18 -06:00
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
pageStore.logRequest(requestContext, result);
|
2015-01-16 10:15:12 -07:00
|
|
|
|
2014-07-14 09:24:59 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2014-07-25 17:29:51 -06:00
|
|
|
// Blocked
|
2015-01-24 10:06:22 -07:00
|
|
|
//console.debug('traffic.js > onBeforeRequest(): BLOCK "%s" (%o) because "%s"', details.url, details, result);
|
2014-12-22 16:38:18 -07:00
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
pageStore.logRequest(requestContext, result);
|
2015-01-16 10:15:12 -07:00
|
|
|
|
2015-02-28 13:34:50 -07:00
|
|
|
// https://github.com/gorhill/uBlock/issues/905#issuecomment-76543649
|
|
|
|
// No point updating the badge if it's not being displayed.
|
|
|
|
if ( µb.userSettings.showIconBadge ) {
|
|
|
|
µb.updateBadgeAsync(tabId);
|
|
|
|
}
|
2014-07-25 17:29:51 -06:00
|
|
|
|
|
|
|
// https://github.com/gorhill/uBlock/issues/18
|
|
|
|
// Do not use redirection, we need to block outright to be sure the request
|
|
|
|
// will not be made. There can be no such guarantee with redirection.
|
2014-07-14 09:24:59 -06:00
|
|
|
|
|
|
|
return { 'cancel': true };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
// Intercept and filter behind-the-scene requests.
|
|
|
|
|
|
|
|
var onBeforeBehindTheSceneRequest = function(details) {
|
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): "%s": %o', details.url, details);
|
|
|
|
|
|
|
|
var µb = µBlock;
|
|
|
|
var pageStore = µb.pageStoreFromTabId(vAPI.noTabId);
|
|
|
|
if ( !pageStore ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
pageStore.requestURL = details.url;
|
|
|
|
pageStore.requestHostname = details.hostname;
|
|
|
|
pageStore.requestType = details.type;
|
|
|
|
|
|
|
|
// Blocking behind-the-scene requests can break a lot of stuff: prevent
|
|
|
|
// browser updates, prevent extension updates, prevent extensions from
|
|
|
|
// working properly, etc.
|
|
|
|
// So we filter if and only if the "advanced user" mode is selected
|
|
|
|
var result = '';
|
|
|
|
if ( µb.userSettings.advancedUserEnabled ) {
|
|
|
|
result = pageStore.filterRequestNoCache(pageStore);
|
|
|
|
}
|
|
|
|
|
|
|
|
pageStore.logRequest(pageStore, result);
|
|
|
|
|
|
|
|
// Not blocked
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): ALLOW "%s" (%o) because "%s"', details.url, details, result);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Blocked
|
|
|
|
//console.debug('traffic.js > onBeforeBehindTheSceneRequest(): BLOCK "%s" (%o) because "%s"', details.url, details, result);
|
|
|
|
|
|
|
|
return { 'cancel': true };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-09-24 15:38:22 -06:00
|
|
|
// To handle `inline-script`.
|
|
|
|
|
|
|
|
var onHeadersReceived = function(details) {
|
|
|
|
// Do not interfere with behind-the-scene requests.
|
|
|
|
var tabId = details.tabId;
|
2015-01-24 10:06:22 -07:00
|
|
|
if ( vAPI.isNoTabId(tabId) ) {
|
2014-09-24 15:38:22 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Lookup the page store associated with this tab id.
|
|
|
|
var µb = µBlock;
|
|
|
|
var pageStore = µb.pageStoreFromTabId(tabId);
|
|
|
|
if ( !pageStore ) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2014-11-29 13:26:01 -07:00
|
|
|
// https://github.com/gorhill/uBlock/issues/384
|
2015-01-18 17:17:36 -07:00
|
|
|
// https://github.com/gorhill/uBlock/issues/540
|
|
|
|
// Disabling local mirroring for the time being
|
|
|
|
//if ( details.parentFrameId === -1 ) {
|
2015-01-18 20:26:07 -07:00
|
|
|
// pageStore.skipLocalMirroring = headerStartsWith(details.responseHeaders, 'content-security-policy') !== '';
|
2015-01-18 17:17:36 -07:00
|
|
|
//}
|
2015-01-13 09:54:54 -07:00
|
|
|
|
2015-01-17 13:03:33 -07:00
|
|
|
var requestURL = details.url;
|
2015-01-20 17:39:13 -07:00
|
|
|
var requestHostname = details.hostname;
|
2015-01-17 13:03:33 -07:00
|
|
|
|
|
|
|
// https://github.com/gorhill/uBlock/issues/525
|
|
|
|
// When we are dealing with the root frame, due to fix to issue #516, it
|
|
|
|
// is likely the root frame has not been bound yet to the tab, and thus
|
|
|
|
// we could end up using the context of the previous page for filtering.
|
|
|
|
// So when the request is that of a root frame, simply create an
|
|
|
|
// artificial context, this will ensure we are properly filtering
|
|
|
|
// inline scripts.
|
|
|
|
var context;
|
|
|
|
if ( details.parentFrameId === -1 ) {
|
2015-01-20 17:39:13 -07:00
|
|
|
var contextDomain = µb.URI.domainFromHostname(requestHostname);
|
2015-01-17 13:03:33 -07:00
|
|
|
context = {
|
|
|
|
rootHostname: requestHostname,
|
2015-01-20 17:39:13 -07:00
|
|
|
rootDomain: contextDomain,
|
2015-01-17 13:03:33 -07:00
|
|
|
pageHostname: requestHostname,
|
2015-01-20 17:39:13 -07:00
|
|
|
pageDomain: contextDomain
|
2015-01-17 13:03:33 -07:00
|
|
|
};
|
|
|
|
} else {
|
|
|
|
context = pageStore;
|
|
|
|
}
|
|
|
|
|
2015-01-13 09:54:54 -07:00
|
|
|
// Concatenating with '{inline-script}' so that the network request cache
|
|
|
|
// can distinguish from the document itself
|
2015-01-17 13:03:33 -07:00
|
|
|
// The cache should do whatever it takes to not confuse same
|
|
|
|
// URLs-different type
|
|
|
|
context.requestURL = requestURL + '{inline-script}';
|
|
|
|
context.requestHostname = requestHostname;
|
|
|
|
context.requestType = 'inline-script';
|
|
|
|
|
|
|
|
var result = pageStore.filterRequest(context);
|
2015-01-24 10:06:22 -07:00
|
|
|
|
|
|
|
pageStore.logRequest(context, result);
|
|
|
|
|
|
|
|
// Don't block
|
|
|
|
if ( µb.isAllowResult(result) ) {
|
2014-09-24 15:38:22 -06:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
µb.updateBadgeAsync(tabId);
|
|
|
|
|
|
|
|
details.responseHeaders.push({
|
|
|
|
'name': 'Content-Security-Policy',
|
2014-10-06 12:02:44 -06:00
|
|
|
'value': "script-src 'unsafe-eval' *"
|
2014-09-24 15:38:22 -06:00
|
|
|
});
|
|
|
|
|
|
|
|
return { 'responseHeaders': details.responseHeaders };
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2015-01-18 20:26:07 -07:00
|
|
|
var headerStartsWith = function(headers, prefix) {
|
2015-01-18 17:17:36 -07:00
|
|
|
var i = headers.length;
|
|
|
|
while ( i-- ) {
|
2015-01-20 17:39:13 -07:00
|
|
|
if ( headers[i].name.toLowerCase().lastIndexOf(prefix, 0) === 0 ) {
|
2015-01-18 17:17:36 -07:00
|
|
|
return headers[i].value;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return '';
|
|
|
|
};
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
2014-10-17 13:44:19 -06:00
|
|
|
vAPI.net.onBeforeRequest = {
|
|
|
|
urls: [
|
|
|
|
'http://*/*',
|
|
|
|
'https://*/*'
|
|
|
|
],
|
|
|
|
types: [
|
|
|
|
"main_frame",
|
|
|
|
"sub_frame",
|
|
|
|
'stylesheet',
|
|
|
|
"script",
|
|
|
|
"image",
|
|
|
|
"object",
|
|
|
|
"xmlhttprequest",
|
|
|
|
"other"
|
|
|
|
],
|
|
|
|
extra: [ 'blocking' ],
|
|
|
|
callback: onBeforeRequest
|
|
|
|
};
|
|
|
|
|
|
|
|
vAPI.net.onHeadersReceived = {
|
|
|
|
urls: [
|
|
|
|
'http://*/*',
|
|
|
|
'https://*/*'
|
|
|
|
],
|
|
|
|
types: [
|
2015-01-13 09:54:54 -07:00
|
|
|
"main_frame",
|
|
|
|
"sub_frame"
|
2014-10-17 13:44:19 -06:00
|
|
|
],
|
|
|
|
extra: [ 'blocking', 'responseHeaders' ],
|
|
|
|
callback: onHeadersReceived
|
|
|
|
};
|
|
|
|
|
|
|
|
vAPI.net.registerListeners();
|
2014-09-24 15:38:22 -06:00
|
|
|
|
2015-01-24 10:06:22 -07:00
|
|
|
//console.log('traffic.js > Beginning to intercept net requests at %s', (new Date()).toISOString());
|
2014-06-23 16:42:43 -06:00
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|
|
|
|
})();
|
|
|
|
|
|
|
|
/******************************************************************************/
|
|
|
|
|