1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
|
// Copyright (c) 2011 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/common/extensions/api/extension_api.h"
#include <string>
#include <vector>
#include "base/json/json_reader.h"
#include "base/logging.h"
#include "base/string_split.h"
#include "base/string_util.h"
#include "base/values.h"
#include "grit/common_resources.h"
#include "ui/base/resource/resource_bundle.h"
namespace extensions {
// static
ExtensionAPI* ExtensionAPI::GetInstance() {
return Singleton<ExtensionAPI>::get();
}
ExtensionAPI::ExtensionAPI() {
const bool kAllowTrailingCommas = false;
std::string error_message;
scoped_ptr<Value> temp_value(
base::JSONReader::ReadAndReturnError(
ResourceBundle::GetSharedInstance().GetRawDataResource(
IDR_EXTENSION_API_JSON).as_string(),
kAllowTrailingCommas,
NULL, // error code
&error_message));
CHECK(temp_value.get()) << error_message;
CHECK(temp_value->IsType(base::Value::TYPE_LIST))
<< "Top-level node in extension API is not dictionary";
value_.reset(static_cast<base::ListValue*>(temp_value.release()));
}
ExtensionAPI::~ExtensionAPI() {
}
bool ExtensionAPI::IsPrivileged(const std::string& full_name) const {
std::vector<std::string> split_full_name;
base::SplitString(full_name, '.', &split_full_name);
std::string name = split_full_name.back();
split_full_name.pop_back();
std::string name_space = JoinString(split_full_name, '.');
// HACK(kalman): explicitly mark all Storage API methods as unprivileged.
// TODO(kalman): solve this in a more general way; the problem is that
// functions-on-properties are not found with the following algorithm.
if (name_space == "experimental.storage")
return false;
base::DictionaryValue* name_space_node =
FindListItem(value_.get(), "namespace", name_space);
if (!name_space_node)
return true;
if (!IsChildNamePrivileged(name_space_node, "functions", name) ||
!IsChildNamePrivileged(name_space_node, "events", name)) {
return false;
}
return true;
}
DictionaryValue* ExtensionAPI::FindListItem(
base::ListValue* list,
const std::string& property_name,
const std::string& property_value) const {
for (size_t i = 0; i < list->GetSize(); ++i) {
DictionaryValue* item = NULL;
CHECK(list->GetDictionary(i, &item));
std::string value;
if (item->GetString(property_name, &value) && value == property_value)
return item;
}
return NULL;
}
bool ExtensionAPI::IsChildNamePrivileged(DictionaryValue* name_space_node,
const std::string& child_kind,
const std::string& child_name) const {
ListValue* child_list = NULL;
name_space_node->GetList(child_kind, &child_list);
if (!child_list)
return true;
bool unprivileged = false;
DictionaryValue* child = FindListItem(child_list, "name", child_name);
if (!child || !child->GetBoolean("unprivileged", &unprivileged))
return true;
return !unprivileged;
}
}
|
