gecko-dev/dom/serviceworkers/ServiceWorkerUtils.cpp

/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* vim: set ts=8 sts=2 et sw=2 tw=80: */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#include "ServiceWorkerUtils.h"

#include "mozilla/Preferences.h"
#include "mozilla/dom/ClientInfo.h"
#include "mozilla/dom/ServiceWorkerRegistrarTypes.h"
#include "nsIURL.h"

namespace mozilla {
namespace dom {

bool ServiceWorkerParentInterceptEnabled() {
  static Atomic<bool> sEnabled;
  static Atomic<bool> sInitialized;
  if (!sInitialized) {
    AssertIsOnMainThread();
    sInitialized = true;
    sEnabled =
        Preferences::GetBool("dom.serviceWorkers.parent_intercept", false);
  }
  return sEnabled;
}

bool ServiceWorkerRegistrationDataIsValid(
    const ServiceWorkerRegistrationData& aData) {
  return !aData.scope().IsEmpty() && !aData.currentWorkerURL().IsEmpty() &&
         !aData.cacheName().IsEmpty();
}

namespace {

nsresult CheckForSlashEscapedCharsInPath(nsIURI* aURI) {
  MOZ_ASSERT(aURI);

  // A URL that can't be downcast to a standard URL is an invalid URL and should
  // be treated as such and fail with SecurityError.
  nsCOMPtr<nsIURL> url(do_QueryInterface(aURI));
  if (NS_WARN_IF(!url)) {
    return NS_ERROR_DOM_SECURITY_ERR;
  }

  nsAutoCString path;
  nsresult rv = url->GetFilePath(path);
  if (NS_WARN_IF(NS_FAILED(rv))) {
    return rv;
  }

  ToLowerCase(path);
  if (path.Find("%2f") != kNotFound || path.Find("%5c") != kNotFound) {
    return NS_ERROR_DOM_TYPE_ERR;
  }

  return NS_OK;
}

}  // anonymous namespace

nsresult ServiceWorkerScopeAndScriptAreValid(const ClientInfo& aClientInfo,
                                             nsIURI* aScopeURI,
                                             nsIURI* aScriptURI) {
  MOZ_DIAGNOSTIC_ASSERT(aScopeURI);
  MOZ_DIAGNOSTIC_ASSERT(aScriptURI);

  nsCOMPtr<nsIPrincipal> principal = aClientInfo.GetPrincipal();
  NS_ENSURE_TRUE(principal, NS_ERROR_DOM_INVALID_STATE_ERR);

  bool isHttp = aScriptURI->SchemeIs("http");
  bool isHttps = aScriptURI->SchemeIs("https");
  NS_ENSURE_TRUE(isHttp || isHttps, NS_ERROR_DOM_SECURITY_ERR);

  nsresult rv = CheckForSlashEscapedCharsInPath(aScopeURI);
  NS_ENSURE_SUCCESS(rv, rv);

  rv = CheckForSlashEscapedCharsInPath(aScriptURI);
  NS_ENSURE_SUCCESS(rv, rv);

  nsAutoCString ref;
  Unused << aScopeURI->GetRef(ref);
  NS_ENSURE_TRUE(ref.IsEmpty(), NS_ERROR_DOM_SECURITY_ERR);

  Unused << aScriptURI->GetRef(ref);
  NS_ENSURE_TRUE(ref.IsEmpty(), NS_ERROR_DOM_SECURITY_ERR);

  // Unfortunately we don't seem to have an obvious window id here; in
  // particular ClientInfo does not have one.
  rv = principal->CheckMayLoadWithReporting(
      aScopeURI, false /* allowIfInheritsPrincipal */, 0 /* innerWindowID */);
  NS_ENSURE_SUCCESS(rv, NS_ERROR_DOM_SECURITY_ERR);

  rv = principal->CheckMayLoadWithReporting(
      aScriptURI, false /* allowIfInheritsPrincipal */, 0 /* innerWindowID */);
  NS_ENSURE_SUCCESS(rv, NS_ERROR_DOM_SECURITY_ERR);

  return NS_OK;
}

}  // namespace dom
}  // namespace mozilla
Bug 1431847 P3 Add ServiceWorkerParentInterceptEnabled() method and backing pref. r=asuth 2018-01-24 20:47:16 +03:00			`/* -- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -- */`
			`/* vim: set ts=8 sts=2 et sw=2 tw=80: */`
			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this`
			`* file, You can obtain one at http://mozilla.org/MPL/2.0/. */`

			`#include "ServiceWorkerUtils.h"`

			`#include "mozilla/Preferences.h"`
Bug 1459209 P1 Add IPC actor boilerplate for PServiceWorker, PServiceWorkerContainer, and PServiceWorkerRegistration. r=mrbkap --HG-- extra : rebase_source : 10106a76c6e9188238a89821d59bdcbf4eedbab6 2018-07-10 02:02:39 +03:00			`#include "mozilla/dom/ClientInfo.h"`
			`#include "mozilla/dom/ServiceWorkerRegistrarTypes.h"`
			`#include "nsIURL.h"`
Bug 1431847 P3 Add ServiceWorkerParentInterceptEnabled() method and backing pref. r=asuth 2018-01-24 20:47:16 +03:00
			`namespace mozilla {`
			`namespace dom {`

			`bool ServiceWorkerParentInterceptEnabled() {`
Bug 1462069 P0 Allow ServiceWorkerParentInterceptEnabled() to be used off-main-thread. r=asuth 2018-06-04 19:10:49 +03:00			`static Atomic<bool> sEnabled;`
Bug 1469024 Define service worker parent intercept pref in StaticPrefList and read it once at startup. r=asuth 2018-06-19 18:26:25 +03:00			`static Atomic<bool> sInitialized;`
			`if (!sInitialized) {`
			`AssertIsOnMainThread();`
			`sInitialized = true;`
			`sEnabled =`
			`Preferences::GetBool("dom.serviceWorkers.parent_intercept", false);`
Bug 1431847 P3 Add ServiceWorkerParentInterceptEnabled() method and backing pref. r=asuth 2018-01-24 20:47:16 +03:00			`}`
			`return sEnabled;`
			`}`

Bug 1452244 Avoid empty entries in serviceworker.txt. r=asuth 2018-04-09 20:54:23 +03:00			`bool ServiceWorkerRegistrationDataIsValid(`
			`const ServiceWorkerRegistrationData& aData) {`
			`return !aData.scope().IsEmpty() && !aData.currentWorkerURL().IsEmpty() &&`
			`!aData.cacheName().IsEmpty();`
			`}`

Bug 1436812 P7 Move many checks into ServiceWorkerScopeAndScriptAreValid() utility method. r=baku 2018-04-23 19:46:55 +03:00			`namespace {`

			`nsresult CheckForSlashEscapedCharsInPath(nsIURI* aURI) {`
			`MOZ_ASSERT(aURI);`

			`// A URL that can't be downcast to a standard URL is an invalid URL and should`
			`// be treated as such and fail with SecurityError.`
			`nsCOMPtr<nsIURL> url(do_QueryInterface(aURI));`
			`if (NS_WARN_IF(!url)) {`
			`return NS_ERROR_DOM_SECURITY_ERR;`
			`}`

			`nsAutoCString path;`
			`nsresult rv = url->GetFilePath(path);`
			`if (NS_WARN_IF(NS_FAILED(rv))) {`
			`return rv;`
			`}`

			`ToLowerCase(path);`
			`if (path.Find("%2f") != kNotFound \|\| path.Find("%5c") != kNotFound) {`
			`return NS_ERROR_DOM_TYPE_ERR;`
			`}`

			`return NS_OK;`
			`}`

			`} // anonymous namespace`

			`nsresult ServiceWorkerScopeAndScriptAreValid(const ClientInfo& aClientInfo,`
			`nsIURI* aScopeURI,`
			`nsIURI* aScriptURI) {`
			`MOZ_DIAGNOSTIC_ASSERT(aScopeURI);`
			`MOZ_DIAGNOSTIC_ASSERT(aScriptURI);`

			`nsCOMPtr<nsIPrincipal> principal = aClientInfo.GetPrincipal();`
			`NS_ENSURE_TRUE(principal, NS_ERROR_DOM_INVALID_STATE_ERR);`

Bug 1558915 - Use infallible nsIURI::SchemeIs in dom/. r=smaug Differential Revision: https://phabricator.services.mozilla.com/D40108 --HG-- extra : source : 3da6e9e86be4a4a9eeaceec222398475b6679193 2019-08-02 11:54:18 +03:00			`bool isHttp = aScriptURI->SchemeIs("http");`
			`bool isHttps = aScriptURI->SchemeIs("https");`
Bug 1436812 P7 Move many checks into ServiceWorkerScopeAndScriptAreValid() utility method. r=baku 2018-04-23 19:46:55 +03:00			`NS_ENSURE_TRUE(isHttp \|\| isHttps, NS_ERROR_DOM_SECURITY_ERR);`

			`nsresult rv = CheckForSlashEscapedCharsInPath(aScopeURI);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`rv = CheckForSlashEscapedCharsInPath(aScriptURI);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`nsAutoCString ref;`
			`Unused << aScopeURI->GetRef(ref);`
			`NS_ENSURE_TRUE(ref.IsEmpty(), NS_ERROR_DOM_SECURITY_ERR);`

			`Unused << aScriptURI->GetRef(ref);`
			`NS_ENSURE_TRUE(ref.IsEmpty(), NS_ERROR_DOM_SECURITY_ERR);`

Bug 1602090 part 2. Create separate CheckMayLoad and CheckMayLoadWithReporting APIs. r=ckerschb CheckMayLoadAndReport takes a window ID. This allows us to report errors from it to the web console as needed. Most consumers know statically whether they want reporting or not, so there's no reason to force the ones that don't to provide window ids. Differential Revision: https://phabricator.services.mozilla.com/D56388 --HG-- extra : moz-landing-system : lando 2019-12-13 09:24:12 +03:00			`// Unfortunately we don't seem to have an obvious window id here; in`
			`// particular ClientInfo does not have one.`
			`rv = principal->CheckMayLoadWithReporting(`
			`aScopeURI, false /* allowIfInheritsPrincipal /, 0 / innerWindowID */);`
Bug 1436812 P7 Move many checks into ServiceWorkerScopeAndScriptAreValid() utility method. r=baku 2018-04-23 19:46:55 +03:00			`NS_ENSURE_SUCCESS(rv, NS_ERROR_DOM_SECURITY_ERR);`

Bug 1602090 part 2. Create separate CheckMayLoad and CheckMayLoadWithReporting APIs. r=ckerschb CheckMayLoadAndReport takes a window ID. This allows us to report errors from it to the web console as needed. Most consumers know statically whether they want reporting or not, so there's no reason to force the ones that don't to provide window ids. Differential Revision: https://phabricator.services.mozilla.com/D56388 --HG-- extra : moz-landing-system : lando 2019-12-13 09:24:12 +03:00			`rv = principal->CheckMayLoadWithReporting(`
			`aScriptURI, false /* allowIfInheritsPrincipal /, 0 / innerWindowID */);`
Bug 1436812 P7 Move many checks into ServiceWorkerScopeAndScriptAreValid() utility method. r=baku 2018-04-23 19:46:55 +03:00			`NS_ENSURE_SUCCESS(rv, NS_ERROR_DOM_SECURITY_ERR);`

			`return NS_OK;`
			`}`

Bug 1431847 P3 Add ServiceWorkerParentInterceptEnabled() method and backing pref. r=asuth 2018-01-24 20:47:16 +03:00			`} // namespace dom`
			`} // namespace mozilla`