// Copyright (c) 2010 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/host_content_settings_map.h"
#include "base/string_util.h"
#include "base/utf_string_conversions.h"
#include "chrome/browser/chrome_thread.h"
#include "chrome/browser/pref_service.h"
#include "chrome/browser/profile.h"
#include "chrome/browser/scoped_pref_update.h"
#include "chrome/common/notification_service.h"
#include "chrome/common/notification_source.h"
#include "chrome/common/notification_type.h"
#include "chrome/common/pref_names.h"
#include "chrome/common/url_constants.h"
#include "googleurl/src/gurl.h"
#include "googleurl/src/url_canon.h"
#include "googleurl/src/url_parse.h"
#include "net/base/dns_util.h"
#include "net/base/net_util.h"
#include "net/base/static_cookie_policy.h"
namespace {
// The version of the pattern format implemented. Version 1 includes the
// following patterns:
// - [*.]domain.tld (matches domain.tld and all sub-domains)
// - host (matches an exact hostname)
// - a.b.c.d (matches an exact IPv4 ip)
// - [a:b:c:d:e:f:g:h] (matches an exact IPv6 ip)
// - file:///tmp/test.html (a complete URL without a host)
const int kContentSettingsPatternVersion = 1;
// The format of a domain wildcard.
const char kDomainWildcard[] = "[*.]";
// The length of kDomainWildcard (without the trailing '\0')
const size_t kDomainWildcardLength = arraysize(kDomainWildcard) - 1;
} // namespace
// static
HostContentSettingsMap::Pattern HostContentSettingsMap::Pattern::FromURL(
const GURL& url) {
return Pattern(!url.has_host() || url.HostIsIPAddress() ?
net::GetHostOrSpecFromURL(url) :
std::string(kDomainWildcard) + url.host());
}
// static
HostContentSettingsMap::Pattern
HostContentSettingsMap::Pattern::FromURLNoWildcard(const GURL& url) {
return Pattern(net::GetHostOrSpecFromURL(url));
}
bool HostContentSettingsMap::Pattern::IsValid() const {
if (pattern_.empty())
return false;
const std::string host(pattern_.length() > kDomainWildcardLength &&
StartsWithASCII(pattern_, kDomainWildcard, false) ?
pattern_.substr(kDomainWildcardLength) :
pattern_);
url_canon::CanonHostInfo host_info;
return host.find('*') == std::string::npos &&
!net::CanonicalizeHost(host, &host_info).empty();
}
bool HostContentSettingsMap::Pattern::Matches(const GURL& url) const {
if (!IsValid())
return false;
const std::string host(net::GetHostOrSpecFromURL(url));
if (pattern_.length() < kDomainWildcardLength ||
!StartsWithASCII(pattern_, kDomainWildcard, false))
return pattern_ == host;
const size_t match =
host.rfind(pattern_.substr(kDomainWildcardLength));
return (match != std::string::npos) &&
(match == 0 || host[match - 1] == '.') &&
(match + pattern_.length() - kDomainWildcardLength == host.length());
}
// static
const wchar_t*
HostContentSettingsMap::kTypeNames[CONTENT_SETTINGS_NUM_TYPES] = {
L"cookies",
L"images",
L"javascript",
L"plugins",
L"popups",
NULL, // Not used for Geolocation
};
// static
const ContentSetting
HostContentSettingsMap::kDefaultSettings[CONTENT_SETTINGS_NUM_TYPES] = {
CONTENT_SETTING_ALLOW, // CONTENT_SETTINGS_TYPE_COOKIES
CONTENT_SETTING_ALLOW, // CONTENT_SETTINGS_TYPE_IMAGES
CONTENT_SETTING_ALLOW, // CONTENT_SETTINGS_TYPE_JAVASCRIPT
CONTENT_SETTING_ALLOW, // CONTENT_SETTINGS_TYPE_PLUGINS
CONTENT_SETTING_BLOCK, // CONTENT_SETTINGS_TYPE_POPUPS
CONTENT_SETTING_ASK, // Not used for Geolocation
};
HostContentSettingsMap::HostContentSettingsMap(Profile* profile)
: profile_(profile),
block_third_party_cookies_(false),
is_off_the_record_(profile_->IsOffTheRecord()),
updating_preferences_(false) {
PrefService* prefs = profile_->GetPrefs();
// Migrate obsolete cookie pref.
if (prefs->HasPrefPath(prefs::kCookieBehavior)) {
int cookie_behavior = prefs->GetInteger(prefs::kCookieBehavior);
prefs->ClearPref(prefs::kCookieBehavior);
if (!prefs->HasPrefPath(prefs::kDefaultContentSettings)) {
SetDefaultContentSetting(CONTENT_SETTINGS_TYPE_COOKIES,
(cookie_behavior == net::StaticCookiePolicy::BLOCK_ALL_COOKIES) ?
CONTENT_SETTING_BLOCK : CONTENT_SETTING_ALLOW);
}
if (!prefs->HasPrefPath(prefs::kBlockThirdPartyCookies)) {
SetBlockThirdPartyCookies(cookie_behavior ==
net::StaticCookiePolicy::BLOCK_THIRD_PARTY_COOKIES);
}
}
// Migrate obsolete popups pref.
if (prefs->HasPrefPath(prefs::kPopupWhitelistedHosts)) {
const ListValue* whitelist_pref =
prefs->GetList(prefs::kPopupWhitelistedHosts);
for (ListValue::const_iterator i(whitelist_pref->begin());
i != whitelist_pref->end(); ++i) {
std::string host;
(*i)->GetAsString(&host);
SetContentSetting(Pattern(host), CONTENT_SETTINGS_TYPE_POPUPS,
CONTENT_SETTING_ALLOW);
}
prefs->ClearPref(prefs::kPopupWhitelistedHosts);
}
// Migrate obsolete per-host pref.
if (prefs->HasPrefPath(prefs::kPerHostContentSettings)) {
const DictionaryValue* all_settings_dictionary =
prefs->GetDictionary(prefs::kPerHostContentSettings);
for (DictionaryValue::key_iterator i(all_settings_dictionary->begin_keys());
i != all_settings_dictionary->end_keys(); ++i) {
std::wstring wide_host(*i);
Pattern pattern(std::string(kDomainWildcard) + WideToUTF8(wide_host));
DictionaryValue* host_settings_dictionary = NULL;
bool found = all_settings_dictionary->GetDictionaryWithoutPathExpansion(
wide_host, &host_settings_dictionary);
DCHECK(found);
ContentSettings settings;
GetSettingsFromDictionary(host_settings_dictionary, &settings);
for (int j = 0; j < CONTENT_SETTINGS_NUM_TYPES; ++j) {
if (settings.settings[j] != CONTENT_SETTING_DEFAULT)
SetContentSetting(
pattern, ContentSettingsType(j), settings.settings[j]);
}
}
prefs->ClearPref(prefs::kPerHostContentSettings);
}
// Read global defaults.
DCHECK_EQ(arraysize(kTypeNames),
static_cast<size_t>(CONTENT_SETTINGS_NUM_TYPES));
ReadDefaultSettings(false);
// Read misc. global settings.
block_third_party_cookies_ =
prefs->GetBoolean(prefs::kBlockThirdPartyCookies);
// Verify preferences version.
if (!prefs->HasPrefPath(prefs::kContentSettingsVersion)) {
prefs->SetInteger(prefs::kContentSettingsVersion,
kContentSettingsPatternVersion);
}
if (prefs->GetInteger(prefs::kContentSettingsVersion) >
kContentSettingsPatternVersion) {
LOG(ERROR) << "Unknown content settings version in preferences.";
return;
}
// Read exceptions.
ReadExceptions(false);
prefs->AddPrefObserver(prefs::kDefaultContentSettings, this);
prefs->AddPrefObserver(prefs::kContentSettingsPatterns, this);
prefs->AddPrefObserver(prefs::kBlockThirdPartyCookies, this);
notification_registrar_.Add(this, NotificationType::PROFILE_DESTROYED,
Source<Profile>(profile_));
}
// static
void HostContentSettingsMap::RegisterUserPrefs(PrefService* prefs) {
prefs->RegisterDictionaryPref(prefs::kDefaultContentSettings);
prefs->RegisterIntegerPref(prefs::kContentSettingsVersion,
kContentSettingsPatternVersion);
prefs->RegisterDictionaryPref(prefs::kContentSettingsPatterns);
prefs->RegisterBooleanPref(prefs::kBlockThirdPartyCookies, false);
prefs->RegisterIntegerPref(prefs::kContentSettingsWindowLastTabIndex, 0);
// Obsolete prefs, for migration:
prefs->RegisterIntegerPref(prefs::kCookieBehavior,
net::StaticCookiePolicy::ALLOW_ALL_COOKIES);
prefs->RegisterListPref(prefs::kPopupWhitelistedHosts);
prefs->RegisterDictionaryPref(prefs::kPerHostContentSettings);
}
ContentSetting HostContentSettingsMap::GetDefaultContentSetting(
ContentSettingsType content_type) const {
AutoLock auto_lock(lock_);
return default_content_settings_.settings[content_type];
}
ContentSetting HostContentSettingsMap::GetContentSetting(
const GURL& url,
ContentSettingsType content_type) const {
return GetContentSettings(url).settings[content_type];
}
ContentSettings HostContentSettingsMap::GetContentSettings(
const GURL& url) const {
if (ShouldAllowAllContent(url))
return ContentSettings(CONTENT_SETTING_ALLOW);
AutoLock auto_lock(lock_);
const std::string host(net::GetHostOrSpecFromURL(url));
// Check for exact matches first.
HostContentSettings::const_iterator i(host_content_settings_.find(host));
if (i != host_content_settings_.end()) {
ContentSettings output = i->second;
for (int j = 0; j < CONTENT_SETTINGS_NUM_TYPES; ++j) {
if (output.settings[j] == CONTENT_SETTING_DEFAULT)
output.settings[j] = default_content_settings_.settings[j];
}
return output;
}
// Find the most concrete pattern match.
for (std::string key = std::string(kDomainWildcard) + host; ; ) {
HostContentSettings::const_iterator i(host_content_settings_.find(key));
if (i != host_content_settings_.end()) {
ContentSettings output = i->second;
for (int j = 0; j < CONTENT_SETTINGS_NUM_TYPES; ++j) {
if (output.settings[j] == CONTENT_SETTING_DEFAULT)
output.settings[j] = default_content_settings_.settings[j];
}
return output;
}
const size_t next_dot = key.find('.', kDomainWildcardLength);
if (next_dot == std::string::npos)
break;
key.erase(kDomainWildcardLength, next_dot - kDomainWildcardLength + 1);
}
return default_content_settings_;
}
void HostContentSettingsMap::GetSettingsForOneType(
ContentSettingsType content_type,
SettingsForOneType* settings) const {
DCHECK(settings);
settings->clear();
AutoLock auto_lock(lock_);
for (HostContentSettings::const_iterator i(host_content_settings_.begin());
i != host_content_settings_.end(); ++i) {
ContentSetting setting = i->second.settings[content_type];
if (setting != CONTENT_SETTING_DEFAULT) {
// Use of push_back() relies on the map iterator traversing in order of
// ascending keys.
settings->push_back(std::make_pair(Pattern(i->first), setting));
}
}
}
void HostContentSettingsMap::SetDefaultContentSetting(
ContentSettingsType content_type,
ContentSetting setting) {
DCHECK(kTypeNames[content_type] != NULL); // Don't call this for Geolocation.
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
PrefService* prefs = profile_->GetPrefs();
// Settings may not be modified for OTR sessions.
if (is_off_the_record_) {
NOTREACHED();
return;
}
DictionaryValue* default_settings_dictionary =
prefs->GetMutableDictionary(prefs::kDefaultContentSettings);
std::wstring dictionary_path(kTypeNames[content_type]);
updating_preferences_ = true;
{
AutoLock auto_lock(lock_);
ScopedPrefUpdate update(prefs, prefs::kDefaultContentSettings);
if ((setting == CONTENT_SETTING_DEFAULT) ||
(setting == kDefaultSettings[content_type])) {
default_content_settings_.settings[content_type] =
kDefaultSettings[content_type];
default_settings_dictionary->RemoveWithoutPathExpansion(dictionary_path,
NULL);
} else {
default_content_settings_.settings[content_type] = setting;
default_settings_dictionary->SetWithoutPathExpansion(
dictionary_path, Value::CreateIntegerValue(setting));
}
}
updating_preferences_ = false;
NotifyObservers(ContentSettingsDetails(true));
}
void HostContentSettingsMap::SetContentSetting(const Pattern& pattern,
ContentSettingsType content_type,
ContentSetting setting) {
DCHECK(kTypeNames[content_type] != NULL); // Don't call this for Geolocation.
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
PrefService* prefs = profile_->GetPrefs();
// Settings may not be modified for OTR sessions.
if (is_off_the_record_) {
NOTREACHED();
return;
}
bool early_exit = false;
std::wstring wide_pattern(UTF8ToWide(pattern.AsString()));
DictionaryValue* all_settings_dictionary =
prefs->GetMutableDictionary(prefs::kContentSettingsPatterns);
{
AutoLock auto_lock(lock_);
if (!host_content_settings_.count(pattern.AsString()))
host_content_settings_[pattern.AsString()] = ContentSettings();
HostContentSettings::iterator
i(host_content_settings_.find(pattern.AsString()));
ContentSettings& settings = i->second;
settings.settings[content_type] = setting;
if (AllDefault(settings)) {
host_content_settings_.erase(i);
all_settings_dictionary->RemoveWithoutPathExpansion(wide_pattern, NULL);
// We can't just return because |NotifyObservers()| needs to be called,
// without |lock_| being held.
early_exit = true;
}
}
if (!early_exit) {
DictionaryValue* host_settings_dictionary;
bool found = all_settings_dictionary->GetDictionaryWithoutPathExpansion(
wide_pattern, &host_settings_dictionary);
if (!found) {
host_settings_dictionary = new DictionaryValue;
all_settings_dictionary->SetWithoutPathExpansion(
wide_pattern, host_settings_dictionary);
DCHECK_NE(setting, CONTENT_SETTING_DEFAULT);
}
std::wstring dictionary_path(kTypeNames[content_type]);
if (setting == CONTENT_SETTING_DEFAULT) {
host_settings_dictionary->RemoveWithoutPathExpansion(dictionary_path,
NULL);
} else {
host_settings_dictionary->SetWithoutPathExpansion(
dictionary_path, Value::CreateIntegerValue(setting));
}
}
updating_preferences_ = true;
{
ScopedPrefUpdate update(prefs, prefs::kContentSettingsPatterns);
}
updating_preferences_ = false;
NotifyObservers(ContentSettingsDetails(pattern));
}
void HostContentSettingsMap::ClearSettingsForOneType(
ContentSettingsType content_type) {
DCHECK(kTypeNames[content_type] != NULL); // Don't call this for Geolocation.
// Settings may not be modified for OTR sessions.
if (is_off_the_record_) {
NOTREACHED();
return;
}
PrefService* prefs = profile_->GetPrefs();
updating_preferences_ = true;
{
AutoLock auto_lock(lock_);
ScopedPrefUpdate update(prefs, prefs::kContentSettingsPatterns);
for (HostContentSettings::iterator i(host_content_settings_.begin());
i != host_content_settings_.end(); ) {
if (i->second.settings[content_type] != CONTENT_SETTING_DEFAULT) {
i->second.settings[content_type] = CONTENT_SETTING_DEFAULT;
std::wstring wide_host(UTF8ToWide(i->first));
DictionaryValue* all_settings_dictionary =
prefs->GetMutableDictionary(prefs::kContentSettingsPatterns);
if (AllDefault(i->second)) {
all_settings_dictionary->RemoveWithoutPathExpansion(wide_host, NULL);
host_content_settings_.erase(i++);
} else {
DictionaryValue* host_settings_dictionary;
bool found =
all_settings_dictionary->GetDictionaryWithoutPathExpansion(
wide_host, &host_settings_dictionary);
DCHECK(found);
host_settings_dictionary->RemoveWithoutPathExpansion(
kTypeNames[content_type], NULL);
++i;
}
} else {
++i;
}
}
}
updating_preferences_ = false;
NotifyObservers(ContentSettingsDetails(true));
}
void HostContentSettingsMap::SetBlockThirdPartyCookies(bool block) {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
// Settings may not be modified for OTR sessions.
if (is_off_the_record_) {
NOTREACHED();
return;
}
{
AutoLock auto_lock(lock_);
block_third_party_cookies_ = block;
}
PrefService* prefs = profile_->GetPrefs();
if (block)
prefs->SetBoolean(prefs::kBlockThirdPartyCookies, true);
else
prefs->ClearPref(prefs::kBlockThirdPartyCookies);
}
void HostContentSettingsMap::ResetToDefaults() {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
{
AutoLock auto_lock(lock_);
default_content_settings_ = ContentSettings();
ForceDefaultsToBeExplicit();
host_content_settings_.clear();
block_third_party_cookies_ = false;
}
PrefService* prefs = profile_->GetPrefs();
updating_preferences_ = true;
prefs->ClearPref(prefs::kDefaultContentSettings);
prefs->ClearPref(prefs::kContentSettingsPatterns);
prefs->ClearPref(prefs::kBlockThirdPartyCookies);
updating_preferences_ = false;
NotifyObservers(ContentSettingsDetails(true));
}
bool HostContentSettingsMap::IsOffTheRecord() {
return profile_->IsOffTheRecord();
}
void HostContentSettingsMap::Observe(NotificationType type,
const NotificationSource& source,
const NotificationDetails& details) {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
if (NotificationType::PREF_CHANGED == type) {
if (updating_preferences_)
return;
std::wstring* name = Details<std::wstring>(details).ptr();
if (prefs::kDefaultContentSettings == *name) {
ReadDefaultSettings(true);
} else if (prefs::kContentSettingsPatterns == *name) {
ReadExceptions(true);
} else if (prefs::kBlockThirdPartyCookies == *name) {
updating_preferences_ = true;
SetBlockThirdPartyCookies(profile_->GetPrefs()->GetBoolean(
prefs::kBlockThirdPartyCookies));
updating_preferences_ = false;
} else {
NOTREACHED() << "Unexpected preference observed";
return;
}
NotifyObservers(ContentSettingsDetails(true));
} else if (NotificationType::PROFILE_DESTROYED == type) {
UnregisterObservers();
} else {
NOTREACHED() << "Unexpected notification";
}
}
HostContentSettingsMap::~HostContentSettingsMap() {
UnregisterObservers();
}
// static
bool HostContentSettingsMap::ShouldAllowAllContent(const GURL& url) {
return url.SchemeIs(chrome::kChromeInternalScheme) ||
url.SchemeIs(chrome::kChromeUIScheme) ||
url.SchemeIs(chrome::kExtensionScheme) ||
url.SchemeIs(chrome::kGearsScheme) ||
url.SchemeIs(chrome::kUserScriptScheme);
}
void HostContentSettingsMap::GetSettingsFromDictionary(
const DictionaryValue* dictionary,
ContentSettings* settings) {
for (DictionaryValue::key_iterator i(dictionary->begin_keys());
i != dictionary->end_keys(); ++i) {
std::wstring content_type(*i);
int setting = CONTENT_SETTING_DEFAULT;
bool found = dictionary->GetIntegerWithoutPathExpansion(content_type,
&setting);
DCHECK(found);
for (size_t type = 0; type < arraysize(kTypeNames); ++type) {
if ((kTypeNames[type] != NULL) &&
(std::wstring(kTypeNames[type]) == content_type)) {
settings->settings[type] = IntToContentSetting(setting);
break;
}
}
}
}
void HostContentSettingsMap::ForceDefaultsToBeExplicit() {
DCHECK_EQ(arraysize(kDefaultSettings),
static_cast<size_t>(CONTENT_SETTINGS_NUM_TYPES));
for (int i = 0; i < CONTENT_SETTINGS_NUM_TYPES; ++i) {
if (default_content_settings_.settings[i] == CONTENT_SETTING_DEFAULT)
default_content_settings_.settings[i] = kDefaultSettings[i];
}
}
bool HostContentSettingsMap::AllDefault(const ContentSettings& settings) const {
for (size_t i = 0; i < arraysize(settings.settings); ++i) {
if (settings.settings[i] != CONTENT_SETTING_DEFAULT)
return false;
}
return true;
}
void HostContentSettingsMap::ReadDefaultSettings(bool overwrite) {
PrefService* prefs = profile_->GetPrefs();
const DictionaryValue* default_settings_dictionary =
prefs->GetDictionary(prefs::kDefaultContentSettings);
// Careful: The returned value could be NULL if the pref has never been set.
if (default_settings_dictionary != NULL) {
if (overwrite)
default_content_settings_ = ContentSettings();
GetSettingsFromDictionary(default_settings_dictionary,
&default_content_settings_);
}
ForceDefaultsToBeExplicit();
}
void HostContentSettingsMap::ReadExceptions(bool overwrite) {
PrefService* prefs = profile_->GetPrefs();
const DictionaryValue* all_settings_dictionary =
prefs->GetMutableDictionary(prefs::kContentSettingsPatterns);
// Careful: The returned value could be NULL if the pref has never been set.
if (all_settings_dictionary != NULL) {
if (overwrite)
host_content_settings_.clear();
for (DictionaryValue::key_iterator i(all_settings_dictionary->begin_keys());
i != all_settings_dictionary->end_keys(); ++i) {
std::wstring wide_pattern(*i);
if (!Pattern(WideToUTF8(wide_pattern)).IsValid())
LOG(WARNING) << "Invalid pattern stored in content settings";
DictionaryValue* pattern_settings_dictionary = NULL;
bool found = all_settings_dictionary->GetDictionaryWithoutPathExpansion(
wide_pattern, &pattern_settings_dictionary);
DCHECK(found);
ContentSettings settings;
GetSettingsFromDictionary(pattern_settings_dictionary, &settings);
host_content_settings_[WideToUTF8(wide_pattern)] = settings;
}
}
}
void HostContentSettingsMap::NotifyObservers(
const ContentSettingsDetails& details) {
NotificationService::current()->Notify(
NotificationType::CONTENT_SETTINGS_CHANGED,
Source<HostContentSettingsMap>(this),
Details<const ContentSettingsDetails>(&details));
}
void HostContentSettingsMap::UnregisterObservers() {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
if (!profile_)
return;
PrefService* prefs = profile_->GetPrefs();
prefs->RemovePrefObserver(prefs::kDefaultContentSettings, this);
prefs->RemovePrefObserver(prefs::kContentSettingsPatterns, this);
prefs->RemovePrefObserver(prefs::kBlockThirdPartyCookies, this);
notification_registrar_.Remove(this, NotificationType::PROFILE_DESTROYED,
Source<Profile>(profile_));
profile_ = NULL;
}