"use strict"; (function(exports) { const rules = require('./rules'), store = require('./store'), incognito = require('./incognito'), util = require('./util'), update = require('./update'), { update_channels } = require('./update_channels'); let all_rules = new rules.RuleSets(); async function initialize() { await store.initialize(); await store.performMigrations(); await initializeStoredGlobals(); await getUpgradeToSecureAvailable(); await update.initialize(store, initializeAllRules); await all_rules.loadFromBrowserStorage(store, update.applyStoredRulesets); await incognito.onIncognitoDestruction(destroy_caches); } initialize(); async function initializeAllRules() { const r = new rules.RuleSets(); await r.loadFromBrowserStorage(store, update.applyStoredRulesets); Object.assign(all_rules, r); } /** * Load preferences. Structure is: * { * httpNowhere: Boolean, * isExtensionEnabled: Boolean * } */ var httpNowhereOn = false; var isExtensionEnabled = true; let disabledList = new Set(); function initializeStoredGlobals() { return new Promise(resolve => { store.get({ httpNowhere: false, globalEnabled: true, enableMixedRulesets: false, disabledList: [] }, function(item) { httpNowhereOn = item.httpNowhere; isExtensionEnabled = item.globalEnabled; for (let disabledSite of item.disabledList) { disabledList.add(disabledSite); } updateState(); rules.settings.enableMixedRulesets = item.enableMixedRulesets; resolve(); }); }); } let upgradeToSecureAvailable; function getUpgradeToSecureAvailable() { if (typeof browser !== 'undefined') { return browser.runtime.getBrowserInfo().then(function(info) { let version = info.version.match(/^(\d+)/)[1]; if (info.name == "Firefox" && version >= 59) { upgradeToSecureAvailable = true; } else { upgradeToSecureAvailable = false; } }); } else { return new Promise(resolve => { upgradeToSecureAvailable = false; resolve(); }); } } chrome.storage.onChanged.addListener(async function(changes, areaName) { if (areaName === 'sync' || areaName === 'local') { if ('httpNowhere' in changes) { httpNowhereOn = changes.httpNowhere.newValue; updateState(); } if ('globalEnabled' in changes) { isExtensionEnabled = changes.globalEnabled.newValue; updateState(); } if ('enableMixedRulesets' in changes) { // Don't require users to restart the browsers rules.settings.enableMixedRulesets = changes.enableMixedRulesets.newValue; initializeAllRules(); } if ('debugging_rulesets' in changes) { initializeAllRules(); } } }); if (chrome.tabs) { chrome.tabs.onActivated.addListener(function() { updateState(); }); } if (chrome.windows) { chrome.windows.onFocusChanged.addListener(function() { updateState(); }); } chrome.webNavigation.onCompleted.addListener(function() { updateState(); }); // Records which tabId's are active in the HTTPS Switch Planner (see // pages/devtools/panel-ux.js). var switchPlannerEnabledFor = {}; // Detailed information recorded when the HTTPS Switch Planner is active. // Structure is: // switchPlannerInfo[tabId]["rw"/"nrw"][resource_host][active_content][url]; // rw / nrw stand for "rewritten" versus "not rewritten" var switchPlannerInfo = {}; /** * Set the icon color correctly * active: extension is enabled. * blocking: extension is in "block all HTTP requests" mode. * disabled: extension is disabled from the popup menu. */ function updateState () { if (!chrome.tabs) return; let iconState = 'active'; if (!isExtensionEnabled) { iconState = 'disabled'; } else if (httpNowhereOn) { iconState = 'blocking'; } chrome.browserAction.setTitle({ title: 'HTTPS Everywhere' + ((iconState === 'active') ? '' : ' (' + iconState + ')') }); chrome.tabs.query({ active: true, currentWindow: true }, function(tabs) { if (!tabs || tabs.length === 0) { return; } const tabUrl = new URL(tabs[0].url); if (disabledList.has(tabUrl.host) || iconState == "disabled") { if ('setIcon' in chrome.browserAction) { chrome.browserAction.setIcon({ path: { 38: 'images/icons/icon-disabled-38.png' } }); } } else { if ('setIcon' in chrome.browserAction) { chrome.browserAction.setIcon({ path: { 38: 'images/icons/icon-' + iconState + '-38.png' } }); } } }); } /** * The following allows fennec to interact with the popup ui * */ chrome.browserAction.onClicked.addListener(e => { const url = chrome.runtime.getURL("/pages/popup/index.html?tabId=" + e.id); chrome.tabs.create({ url }); }); /** * Add a listener for removed tabs */ function AppliedRulesets() { this.active_tab_rules = new Map(); this.active_tab_main_frames = new Map(); let that = this; if (chrome.tabs) { chrome.tabs.onRemoved.addListener(function(tabId) { that.removeTab(tabId); }); } } AppliedRulesets.prototype = { addRulesetToTab: function(tabId, type, ruleset) { if (!this.active_tab_main_frames.has(tabId)) { this.active_tab_main_frames.set(tabId, false); } // always show main_frame ruleset on the top if (type == "main_frame") { this.active_tab_main_frames.set(tabId, true); this.active_tab_rules.set(tabId, [ruleset,]); return ; } if (this.active_tab_rules.has(tabId)) { let rulesets = this.active_tab_rules.get(tabId); let insertIndex = 0; const ruleset_name = ruleset.name.toLowerCase(); for (const item of rulesets) { const item_name = item.name.toLowerCase(); if (item_name == ruleset_name) { return ; } else if (insertIndex == 0 && this.active_tab_main_frames.get(tabId)) { insertIndex = 1; } else if (item_name < ruleset_name) { insertIndex++; } } rulesets.splice(insertIndex, 0, ruleset); } else { this.active_tab_rules.set(tabId, [ruleset,]); } }, getRulesets: function(tabId) { if (this.active_tab_rules.has(tabId)) { return this.active_tab_rules.get(tabId); } else { return null; } }, removeTab: function(tabId) { this.active_tab_rules.delete(tabId); this.active_tab_main_frames.delete(tabId); }, getActiveRulesetCount: function (tabId) { let activeCount = 0; const rulesets = this.getRulesets(tabId); if (rulesets) { for (const ruleset of rulesets) { if (ruleset.active) { activeCount++; } } } return activeCount; } }; var appliedRulesets = new AppliedRulesets(); var urlBlacklist = new Set(); // redirect counter workaround // TODO: Remove this code if they ever give us a real counter var redirectCounter = new Map(); // Create a map to indicate whether a given request has been subject to a simple // HTTP Nowhere redirect. let simpleHTTPNowhereRedirect = new Map(); const cancelUrl = chrome.runtime.getURL("/pages/cancel/index.html"); function redirectOnCancel(shouldCancel, originURL) { return shouldCancel ? {redirectUrl: newCancelUrl(originURL)} : {cancel: false}; } function newCancelUrl(originURL) { return cancelUrl + "?originURL=" + encodeURI(originURL); } /** * Called before a HTTP(s) request. Does the heavy lifting * Cancels the request/redirects it to HTTPS. URL modification happens in here. * @param details of the handler, see Chrome doc * */ function onBeforeRequest(details) { // If HTTPSe has been disabled by the user, return immediately. if (!isExtensionEnabled) { return; } // Clear the content shown in the extension popup. // This needed to be done before this listener returns, // otherwise, the extension page might include rulesets // from previous page. if (details.type == "main_frame") { appliedRulesets.removeTab(details.tabId); } let uri = new URL(details.url); // Check if a user has disabled HTTPS Everywhere on this site. We should // ensure that all subresources are not run through HTTPS Everywhere as well. let firstPartyHost; if (details.type == "main_frame") { firstPartyHost = uri.host; } else { // In Firefox, documentUrl is preferable here, since it will always be the // URL in the URL bar, but it was only introduced in FF 54. We should get // rid of `originUrl` at some point. if ('documentUrl' in details) { // Firefox 54+ firstPartyHost = new URL(details.documentUrl).host; } else if ('originUrl' in details) { // Firefox < 54 firstPartyHost = new URL(details.originUrl).host; } else if('initiator' in details) { // Chrome firstPartyHost = new URL(details.initiator).host; } } if (disabledList.has(firstPartyHost)) { return; } // Normalise hosts with tailing dots, e.g. "www.example.com." while (uri.hostname[uri.hostname.length - 1] === '.' && uri.hostname !== '.') { uri.hostname = uri.hostname.slice(0, -1); } // Should the request be canceled? // true if the URL is a http:// connection to a remote canonical host, and not // a tor hidden service const shouldCancel = httpNowhereOn && (uri.protocol === 'http:' || uri.protocol === 'ftp:') && uri.hostname.slice(-6) !== '.onion' && uri.hostname !== 'localhost' && !/^127(\.[0-9]{1,3}){3}$/.test(uri.hostname) && uri.hostname !== '0.0.0.0' && uri.hostname !== '[::1]'; // If there is a username / password, put them aside during the ruleset // analysis process let using_credentials_in_url = false; let tmp_user; let tmp_pass; if (uri.password || uri.username) { using_credentials_in_url = true; tmp_user = uri.username; tmp_pass = uri.password; uri.username = ''; uri.password = ''; } if (details.url != uri.href && !using_credentials_in_url) { util.log(util.INFO, "Original url " + details.url + " changed before processing to " + uri.href); } if (urlBlacklist.has(uri.href)) { return redirectOnCancel(shouldCancel, details.url); } if (redirectCounter.get(details.requestId) >= 8) { util.log(util.NOTE, "Redirect counter hit for " + uri.href); urlBlacklist.add(uri.href); rules.settings.domainBlacklist.add(uri.hostname); util.log(util.WARN, "Domain blacklisted " + uri.hostname); return redirectOnCancel(shouldCancel, details.url); } // whether to use mozilla's upgradeToSecure BlockingResponse if available let upgradeToSecure = false; let newuristr = null; let potentiallyApplicable = all_rules.potentiallyApplicableRulesets(uri.hostname); for (let ruleset of potentiallyApplicable) { if (details.url.match(ruleset.scope)) { appliedRulesets.addRulesetToTab(details.tabId, details.type, ruleset); if (ruleset.active && !newuristr) { newuristr = ruleset.apply(uri.href); } } } // only use upgradeToSecure for trivial rewrites if (upgradeToSecureAvailable && newuristr) { // check rewritten URIs against the trivially upgraded URI const trivialUpgradeUri = uri.href.replace(/^http:/, "https:"); upgradeToSecure = (newuristr == trivialUpgradeUri); } // re-insert userpass info which was stripped temporarily if (using_credentials_in_url) { if (newuristr) { const uri_with_credentials = new URL(newuristr); uri_with_credentials.username = tmp_user; uri_with_credentials.password = tmp_pass; newuristr = uri_with_credentials.href; } else { const url_with_credentials = new URL(uri.href); url_with_credentials.username = tmp_user; url_with_credentials.password = tmp_pass; uri.href = url_with_credentials.href; } } // In Switch Planner Mode, record any non-rewriteable // HTTP URIs by parent hostname, along with the resource type. if (switchPlannerEnabledFor[details.tabId] && uri.protocol !== "https:") { writeToSwitchPlanner(details.type, details.tabId, uri.hostname, details.url, newuristr); } if (httpNowhereOn) { // If loading a main frame, try the HTTPS version as an alternative to // failing. if (shouldCancel) { if (!newuristr) { newuristr = uri.href.replace(/^http:/, "https:"); simpleHTTPNowhereRedirect.set(details.requestId, true); upgradeToSecure = true; } else { newuristr = newuristr.replace(/^http:/, "https:"); } } if ( newuristr && ( newuristr.substring(0, 5) === "http:" || newuristr.substring(0, 4) === "ftp:" ) ) { // Abort early if we're about to redirect to HTTP or FTP in HTTP Nowhere mode return {redirectUrl: newCancelUrl(newuristr)}; } } if (upgradeToSecureAvailable && upgradeToSecure) { util.log(util.INFO, 'onBeforeRequest returning upgradeToSecure: true'); return {upgradeToSecure: true}; } else if (newuristr) { util.log(util.INFO, 'onBeforeRequest returning redirectUrl: ' + newuristr); return {redirectUrl: newuristr}; } else { util.log(util.INFO, 'onBeforeRequest returning shouldCancel: ' + shouldCancel); return redirectOnCancel(shouldCancel, details.url); } } // Map of which values for the `type' enum denote active vs passive content. // https://developer.chrome.com/extensions/webRequest.html#event-onBeforeRequest const mixedContentTypes = { object: 1, other: 1, script: 1, stylesheet: 1, sub_frame: 1, xmlhttprequest: 1, image: 0, main_frame: 0 }; /** * Record a non-HTTPS URL loaded by a given hostname in the Switch Planner, for * use in determining which resources need to be ported to HTTPS. * (Reminder: Switch planner is the pro-tool enabled by switching into debug-mode) * * @param type: type of the resource (see activeTypes and passiveTypes arrays) * @param tab_id: The id of the tab * @param resource_host: The host of the original url * @param resource_url: the original url * @param rewritten_url: The url rewritten to * */ function writeToSwitchPlanner(type, tab_id, resource_host, resource_url, rewritten_url) { let rw = rewritten_url ? "rw" : "nrw"; let active_content = 1; if (mixedContentTypes.hasOwnProperty(type)) { active_content = mixedContentTypes[type]; } else { util.log(util.WARN, "Unknown type from onBeforeRequest details: `" + type + "', assuming active"); } if (!switchPlannerInfo[tab_id]) { switchPlannerInfo[tab_id] = {}; switchPlannerInfo[tab_id]["rw"] = {}; switchPlannerInfo[tab_id]["nrw"] = {}; } if (!switchPlannerInfo[tab_id][rw][resource_host]) switchPlannerInfo[tab_id][rw][resource_host] = {}; if (!switchPlannerInfo[tab_id][rw][resource_host][active_content]) switchPlannerInfo[tab_id][rw][resource_host][active_content] = {}; switchPlannerInfo[tab_id][rw][resource_host][active_content][resource_url] = 1; } /** * Return the number of properties in an object. For associative maps, this is * their size. * @param obj: object to calc the size for * */ function objSize(obj) { if (typeof obj == 'undefined') return 0; var size = 0, key; for (key in obj) { if (obj.hasOwnProperty(key)) size++; } return size; } /** * Make an array of asset hosts by score so we can sort them, * presenting the most important ones first. * */ function sortSwitchPlanner(tab_id, rewritten) { var asset_host_list = []; if (typeof switchPlannerInfo[tab_id] === 'undefined' || typeof switchPlannerInfo[tab_id][rewritten] === 'undefined') { return []; } var tabInfo = switchPlannerInfo[tab_id][rewritten]; for (var asset_host in tabInfo) { var ah = tabInfo[asset_host]; var activeCount = objSize(ah[1]); var passiveCount = objSize(ah[0]); var score = activeCount * 100 + passiveCount; asset_host_list.push([score, activeCount, passiveCount, asset_host]); } asset_host_list.sort(function(a,b) { return a[0]-b[0]; }); return asset_host_list; } /** * monitor cookie changes. Automatically convert them to secure cookies * @param changeInfo Cookie changed info, see Chrome doc * */ function onCookieChanged(changeInfo) { if (!changeInfo.removed && !changeInfo.cookie.secure && isExtensionEnabled) { if (all_rules.shouldSecureCookie(changeInfo.cookie)) { let cookie = { name:changeInfo.cookie.name, value:changeInfo.cookie.value, path:changeInfo.cookie.path, httpOnly:changeInfo.cookie.httpOnly, expirationDate:changeInfo.cookie.expirationDate, storeId:changeInfo.cookie.storeId, secure: true }; // Host-only cookies don't set the domain field. if (!changeInfo.cookie.hostOnly) { cookie.domain = changeInfo.cookie.domain; } // Chromium cookie sameSite status, see https://tools.ietf.org/html/draft-west-first-party-cookies if (changeInfo.cookie.sameSite) { cookie.sameSite = changeInfo.cookie.sameSite; } // Firefox first-party isolation if (changeInfo.cookie.firstPartyDomain) { cookie.firstPartyDomain = changeInfo.cookie.firstPartyDomain; } // The cookie API is magical -- we must recreate the URL from the domain and path. if (changeInfo.cookie.domain[0] == ".") { cookie.url = "https://www" + changeInfo.cookie.domain + cookie.path; } else { cookie.url = "https://" + changeInfo.cookie.domain + cookie.path; } // We get repeated events for some cookies because sites change their // value repeatedly and remove the "secure" flag. util.log(util.DBUG, "Securing cookie " + cookie.name + " for " + changeInfo.cookie.domain + ", was secure=" + changeInfo.cookie.secure); chrome.cookies.set(cookie); } } } /** * handling redirects, breaking loops * @param details details for the redirect (see chrome doc) * */ function onBeforeRedirect(details) { // Catch redirect loops (ignoring about:blank, etc. caused by other extensions) let prefix = details.redirectUrl.substring(0, 5); if (prefix === "http:" || prefix === "https") { let count = redirectCounter.get(details.requestId); if (count) { redirectCounter.set(details.requestId, count + 1); util.log(util.DBUG, "Got redirect id "+details.requestId+ ": "+count); } else { redirectCounter.set(details.requestId, 1); } } } /** * handle webrequest.onCompleted, cleanup redirectCounter * @param details details for the chrome.webRequest (see chrome doc) */ function onCompleted(details) { if (redirectCounter.has(details.requestId)) { redirectCounter.delete(details.requestId); } if (simpleHTTPNowhereRedirect.has(details.requestId)) { simpleHTTPNowhereRedirect.delete(details.requestId); } } /** * handle webrequest.onErrorOccurred, cleanup redirectCounter * @param details details for the chrome.webRequest (see chrome doc) */ function onErrorOccurred(details) { if (httpNowhereOn && details.type == "main_frame" && simpleHTTPNowhereRedirect.get(details.requestId) && ( // Enumerate a class of errors that are likely due to HTTPS misconfigurations details.error.indexOf("net::ERR_SSL_") == 0 || details.error.indexOf("net::ERR_CERT_") == 0 || details.error.indexOf("net::ERR_CONNECTION_") == 0 || details.error.indexOf("net::ERR_ABORTED") == 0 || details.error.indexOf("net::ERR_SSL_PROTOCOL_ERROR") == 0 || details.error.indexOf("NS_ERROR_CONNECTION_REFUSED") == 0 || details.error.indexOf("NS_ERROR_NET_TIMEOUT") == 0 || details.error.indexOf("NS_ERROR_NET_ON_TLS_HANDSHAKE_ENDED") == 0 || details.error.indexOf("NS_BINDING_ABORTED") == 0 || details.error.indexOf("SSL received a record that exceeded the maximum permissible length.") == 0 || details.error.indexOf("Peer’s Certificate has expired.") == 0 || details.error.indexOf("Unable to communicate securely with peer: requested domain name does not match the server’s certificate.") == 0 || details.error.indexOf("Peer’s Certificate issuer is not recognized.") == 0 || details.error.indexOf("Peer’s Certificate has been revoked.") == 0 || details.error.indexOf("Peer reports it experienced an internal error.") == 0 || details.error.indexOf("The server uses key pinning (HPKP) but no trusted certificate chain could be constructed that matches the pinset. Key pinning violations cannot be overridden.") == 0 || details.error.indexOf("SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message.") == 0 || details.error.indexOf("The certificate was signed using a signature algorithm that is disabled because it is not secure.") == 0 || details.error.indexOf("Unable to communicate securely with peer: requested domain name does not match the server’s certificate.") == 0 || details.error.indexOf("Cannot communicate securely with peer: no common encryption algorithm(s).") == 0 || details.error.indexOf("SSL peer has no certificate for the requested DNS name.") == 0 )) { let url = new URL(details.url); if (url.protocol == "https:") { url.protocol = "http:"; } chrome.tabs.update(details.tabId, {url: newCancelUrl(url.toString())}); } if (redirectCounter.has(details.requestId)) { redirectCounter.delete(details.requestId); } if (simpleHTTPNowhereRedirect.has(details.requestId)) { simpleHTTPNowhereRedirect.delete(details.requestId); } } /** * handle webrequest.onHeadersReceived, insert upgrade-insecure-requests directive and * rewrite access-control-allow-origin if presented in HTTP Nowhere mode * @param details details for the chrome.webRequest (see chrome doc) */ function onHeadersReceived(details) { if (isExtensionEnabled && httpNowhereOn) { // Do not upgrade the .onion requests in EASE mode, // See https://github.com/EFForg/https-everywhere/pull/14600#discussion_r168072480 const uri = new URL(details.url); if (uri.hostname.slice(-6) == '.onion') { return {}; } // Do not upgrade resources if the first-party domain disbled EASE mode // This is needed for HTTPS sites serve mixed content and is broken let firstPartyHost; if (details.type == "main_frame") { firstPartyHost = uri.host; } else { // In Firefox, documentUrl is preferable here, since it will always be the // URL in the URL bar, but it was only introduced in FF 54. We should get // rid of `originUrl` at some point. if ('documentUrl' in details) { // Firefox 54+ firstPartyHost = new URL(details.documentUrl).host; } else if ('originUrl' in details) { // Firefox < 54 firstPartyHost = new URL(details.originUrl).host; } else if('initiator' in details) { // Chrome firstPartyHost = new URL(details.initiator).host; } } if (disabledList.has(firstPartyHost)) { return {}; } let responseHeadersChanged = false; let cspHeaderFound = false; for (const idx in details.responseHeaders) { if (details.responseHeaders[idx].name.match(/Content-Security-Policy/i)) { // Existing CSP headers found cspHeaderFound = true; const value = details.responseHeaders[idx].value; // Prepend if no upgrade-insecure-requests directive exists if (!value.match(/upgrade-insecure-requests/i)) { details.responseHeaders[idx].value = "upgrade-insecure-requests; " + value; responseHeadersChanged = true; } } if (details.responseHeaders[idx].name.match(/Access-Control-Allow-Origin/i)) { // Existing access-control-allow-origin header found const value = details.responseHeaders[idx].value; // If HTTP protocol is used, change it to HTTPS if (value.match(/http:/)) { details.responseHeaders[idx].value = value.replace(/http:/g, "https:"); responseHeadersChanged = true; } } } if (!cspHeaderFound) { // CSP headers not found const upgradeInsecureRequests = { name: 'Content-Security-Policy', value: 'upgrade-insecure-requests' } details.responseHeaders.push(upgradeInsecureRequests); responseHeadersChanged = true; } if (responseHeadersChanged) { return {responseHeaders: details.responseHeaders}; } } return {}; } // Registers the handler for requests // See: https://github.com/EFForg/https-everywhere/issues/10039 chrome.webRequest.onBeforeRequest.addListener(onBeforeRequest, {urls: ["*://*/*", "ftp://*/*"]}, ["blocking"]); // Try to catch redirect loops on URLs we've redirected to HTTPS. chrome.webRequest.onBeforeRedirect.addListener(onBeforeRedirect, {urls: ["https://*/*"]}); // Cleanup redirectCounter if necessary chrome.webRequest.onCompleted.addListener(onCompleted, {urls: ["*://*/*"]}); // Cleanup redirectCounter if necessary chrome.webRequest.onErrorOccurred.addListener(onErrorOccurred, {urls: ["*://*/*"]}) // Insert upgrade-insecure-requests directive in httpNowhere mode chrome.webRequest.onHeadersReceived.addListener(onHeadersReceived, {urls: ["https://*/*"]}, ["blocking", "responseHeaders"]); // Listen for cookies set/updated and secure them if applicable. This function is async/nonblocking. chrome.cookies.onChanged.addListener(onCookieChanged); /** * disable switch Planner * @param tabId the Tab to disable for */ function disableSwitchPlannerFor(tabId) { delete switchPlannerEnabledFor[tabId]; // Clear stored URL info. delete switchPlannerInfo[tabId]; } /** * Enable switch planner for specific tab * @param tabId the tab to enable it for */ function enableSwitchPlannerFor(tabId) { switchPlannerEnabledFor[tabId] = true; } // Listen for connection from the DevTools panel so we can set up communication. chrome.runtime.onConnect.addListener(function (port) { if (port.name == "devtools-page") { chrome.runtime.onMessage.addListener(function(message, sender, sendResponse) { var tabId = message.tabId; var disableOnCloseCallback = function() { util.log(util.DBUG, "Devtools window for tab " + tabId + " closed, clearing data."); disableSwitchPlannerFor(tabId); }; const responses = { enable: () => { enableSwitchPlannerFor(tabId); port.onDisconnect.addListener(disableOnCloseCallback); }, disable: () => { disableSwitchPlannerFor(tabId); }, getHosts: () => { sendResponse({ nrw: sortSwitchPlanner(tabId, "nrw"), rw: sortSwitchPlanner(tabId, "rw") }); return true; } }; if (message.type in responses) { return responses[message.type](); } }); } }); // This is necessary for communication with the popup in Firefox Private // Browsing Mode, see https://bugzilla.mozilla.org/show_bug.cgi?id=1329304 chrome.runtime.onMessage.addListener(function(message, sender, sendResponse) { function get_update_channels_generic(update_channels) { let last_updated_promises = []; for(let update_channel of update_channels) { last_updated_promises.push(new Promise(resolve => { store.local.get({['rulesets-timestamp: ' + update_channel.name]: 0}, item => { resolve([update_channel.name, item['rulesets-timestamp: ' + update_channel.name]]); }); })); } Promise.all(last_updated_promises).then(results => { const last_updated = results.reduce((obj, item) => { obj[item[0]] = item[1]; return obj; }, {}); sendResponse({update_channels, last_updated}); }); } function storeDisabledList() { const disabledListArray = Array.from(disabledList); store.set({disabledList: disabledListArray}, () => { sendResponse(true); }); return true; } const responses = { get_option: () => { store.get(message.object, sendResponse); return true; }, set_option: () => { store.set(message.object, item => { if (sendResponse) { sendResponse(item); } }); }, delete_from_ruleset_cache: () => { all_rules.ruleCache.delete(message.object); }, get_active_rulesets: () => { sendResponse(appliedRulesets.getRulesets(message.object)); return true; }, set_ruleset_active_status: () => { let rulesets = appliedRulesets.getRulesets(message.object.tab_id); for (let ruleset of rulesets) { if (ruleset.name == message.object.name) { ruleset.active = message.object.active; if (ruleset.default_state == message.object.active) { message.object.active = undefined; } break; } } all_rules.setRuleActiveState(message.object.name, message.object.active).then(() => { sendResponse(true); }); return true; }, reset_to_defaults: () => { // restore the 'default states' of the rulesets store.set_promise('ruleActiveStates', {}).then(() => { // clear the caches such that it becomes stateless destroy_caches(); // re-activate all rules according to the new states initializeAllRules(); // reload tabs when operations completed chrome.tabs.reload(); }); }, get_user_rules: () => { store.get_promise(all_rules.USER_RULE_KEY, []).then(userRules => sendResponse(userRules)); return true; }, add_new_rule: () => { all_rules.addNewRuleAndStore(message.object).then(() => { sendResponse(true); }); return true; }, remove_rule: () => { all_rules.removeRuleAndStore(message.object.ruleset, message.object.src) .then(() => { /** * FIXME: initializeAllRules is needed for calls from the option pages. * Since message.object is not of type Ruleset, rules.removeUserRule * is not usable... */ if (message.object.src === 'options') { return initializeAllRules(); } }) .then(() => { if (sendResponse !== null) { sendResponse(true); } }) return true; }, get_ruleset_timestamps: () => { update.getRulesetTimestamps().then(timestamps => sendResponse(timestamps)); return true; }, get_pinned_update_channels: () => { get_update_channels_generic(update_channels); return true; }, get_stored_update_channels: () => { store.get({update_channels: []}, item => { get_update_channels_generic(item.update_channels); }); return true; }, create_update_channel: () => { store.get({update_channels: []}, item => { const update_channel_names = update_channels.concat(item.update_channels).reduce((obj, item) => { obj.add(item.name); return obj; }, new Set()); if(update_channel_names.has(message.object)) { return sendResponse(false); } item.update_channels.push({ name: message.object, jwk: {}, update_path_prefix: '', scope: '' }); store.set({update_channels: item.update_channels}, () => { sendResponse(true); }); }); return true; }, delete_update_channel: () => { store.get({update_channels: []}, item => { store.set({update_channels: item.update_channels.filter(update_channel => { return (update_channel.name != message.object); })}, () => { store.local.remove([ 'rulesets-timestamp: ' + message.object, 'rulesets-stored-timestamp: ' + message.object, 'rulesets: ' + message.object ], () => { initializeAllRules(); sendResponse(true); }); }); }); return true; }, update_update_channel: () => { store.get({update_channels: []}, item => { let scope_changed = false; item.update_channels = item.update_channels.map(update_channel => { if(update_channel.name == message.object.name) { if(update_channel.scope != message.object.scope) { scope_changed = true; } update_channel = message.object; } return update_channel; }); // Ensure that we check for new rulesets from the update channel immediately. // If the scope has changed, make sure that the rulesets are re-initialized. store.set({update_channels: item.update_channels}, () => { // Since loadUpdateChannesKeys is already contained in chrome.storage.onChanged // within update.js, the below call will make it run twice. This is // necesssary to avoid a race condition, see #16673 update.loadUpdateChannelsKeys().then(() => { update.resetTimer(); if(scope_changed) { initializeAllRules(); } sendResponse(true); }); }); }); return true; }, get_last_checked: () => { store.local.get({'last-checked': false}, item => { sendResponse(item['last-checked']); }); return true; }, disable_on_site: () => { disabledList.add(message.object); return storeDisabledList(); }, enable_on_site: () => { disabledList.delete(message.object); return storeDisabledList(); }, check_if_site_disabled: () => { sendResponse(disabledList.has(message.object)); return true; }, is_firefox: () => { if(typeof(browser) != "undefined") { browser.runtime.getBrowserInfo().then(function(info) { if (info.name == "Firefox") { sendResponse(true); } else { sendResponse(false); } }); } else { sendResponse(false); } return true; } }; if (message.type in responses) { return responses[message.type](); } }); /** * Clear any cache/ blacklist we have. */ function destroy_caches() { util.log(util.DBUG, "Destroying caches."); all_rules.cookieHostCache.clear(); all_rules.ruleCache.clear(); rules.settings.domainBlacklist.clear(); urlBlacklist.clear(); } Object.assign(exports, { all_rules, urlBlacklist, sortSwitchPlanner, switchPlannerInfo }); })(typeof exports == 'undefined' ? require.scopes.background = {} : exports);