// Copyright (c) 2019 GitHub, Inc. // Use of this source code is governed by the MIT license that can be // found in the LICENSE file. #include "shell/browser/api/electron_api_protocol.h" #include #include #include "base/command_line.h" #include "content/common/url_schemes.h" #include "content/public/browser/child_process_security_policy.h" #include "gin/handle.h" #include "gin/object_template_builder.h" #include "shell/browser/browser.h" #include "shell/browser/electron_browser_context.h" #include "shell/browser/protocol_registry.h" #include "shell/common/gin_converters/callback_converter.h" #include "shell/common/gin_converters/net_converter.h" #include "shell/common/gin_helper/dictionary.h" #include "shell/common/gin_helper/object_template_builder.h" #include "shell/common/gin_helper/promise.h" #include "shell/common/node_includes.h" #include "shell/common/node_util.h" #include "shell/common/options_switches.h" #include "url/url_util.h" namespace { // List of registered custom standard schemes. std::vector g_standard_schemes; // List of registered custom streaming schemes. std::vector g_streaming_schemes; // Schemes that support V8 code cache. std::vector g_code_cache_schemes; struct SchemeOptions { bool standard = false; bool secure = false; bool bypassCSP = false; bool allowServiceWorkers = false; bool supportFetchAPI = false; bool corsEnabled = false; bool stream = false; bool codeCache = false; }; struct CustomScheme { std::string scheme; SchemeOptions options; }; } // namespace namespace gin { template <> struct Converter { static bool FromV8(v8::Isolate* isolate, v8::Local val, CustomScheme* out) { gin::Dictionary dict(isolate); if (!ConvertFromV8(isolate, val, &dict)) return false; if (!dict.Get("scheme", &(out->scheme))) return false; gin::Dictionary opt(isolate); // options are optional. Default values specified in SchemeOptions are used if (dict.Get("privileges", &opt)) { opt.Get("standard", &(out->options.standard)); opt.Get("secure", &(out->options.secure)); opt.Get("bypassCSP", &(out->options.bypassCSP)); opt.Get("allowServiceWorkers", &(out->options.allowServiceWorkers)); opt.Get("supportFetchAPI", &(out->options.supportFetchAPI)); opt.Get("corsEnabled", &(out->options.corsEnabled)); opt.Get("stream", &(out->options.stream)); opt.Get("codeCache", &(out->options.codeCache)); } return true; } }; } // namespace gin namespace electron::api { gin::WrapperInfo Protocol::kWrapperInfo = {gin::kEmbedderNativeGin}; const std::vector& GetStandardSchemes() { return g_standard_schemes; } const std::vector& GetCodeCacheSchemes() { return g_code_cache_schemes; } void AddServiceWorkerScheme(const std::string& scheme) { // There is no API to add service worker scheme, but there is an API to // return const reference to the schemes vector. // If in future the API is changed to return a copy instead of reference, // the compilation will fail, and we should add a patch at that time. auto& mutable_schemes = const_cast&>(content::GetServiceWorkerSchemes()); mutable_schemes.push_back(scheme); } void RegisterSchemesAsPrivileged(gin_helper::ErrorThrower thrower, v8::Local val) { std::vector custom_schemes; if (!gin::ConvertFromV8(thrower.isolate(), val, &custom_schemes)) { thrower.ThrowError("Argument must be an array of custom schemes."); return; } for (const auto& custom_scheme : custom_schemes) { if (custom_scheme.options.codeCache && !custom_scheme.options.standard) { thrower.ThrowError( "Code cache can only be enabled when the custom scheme is registered " "as standard scheme."); return; } } std::vector secure_schemes, cspbypassing_schemes, fetch_schemes, service_worker_schemes, cors_schemes; for (const auto& custom_scheme : custom_schemes) { // Register scheme to privileged list (https, wss, data, chrome-extension) if (custom_scheme.options.standard) { auto* policy = content::ChildProcessSecurityPolicy::GetInstance(); url::AddStandardScheme(custom_scheme.scheme.c_str(), url::SCHEME_WITH_HOST); g_standard_schemes.push_back(custom_scheme.scheme); policy->RegisterWebSafeScheme(custom_scheme.scheme); } if (custom_scheme.options.secure) { secure_schemes.push_back(custom_scheme.scheme); url::AddSecureScheme(custom_scheme.scheme.c_str()); } if (custom_scheme.options.bypassCSP) { cspbypassing_schemes.push_back(custom_scheme.scheme); url::AddCSPBypassingScheme(custom_scheme.scheme.c_str()); } if (custom_scheme.options.corsEnabled) { cors_schemes.push_back(custom_scheme.scheme); url::AddCorsEnabledScheme(custom_scheme.scheme.c_str()); } if (custom_scheme.options.supportFetchAPI) { fetch_schemes.push_back(custom_scheme.scheme); } if (custom_scheme.options.allowServiceWorkers) { service_worker_schemes.push_back(custom_scheme.scheme); AddServiceWorkerScheme(custom_scheme.scheme); } if (custom_scheme.options.stream) { g_streaming_schemes.push_back(custom_scheme.scheme); } if (custom_scheme.options.codeCache) { g_code_cache_schemes.push_back(custom_scheme.scheme); url::AddCodeCacheScheme(custom_scheme.scheme.c_str()); } } const auto AppendSchemesToCmdLine = [](const char* switch_name, std::vector schemes) { if (schemes.empty()) return; // Add the schemes to command line switches, so child processes can also // register them. base::CommandLine::ForCurrentProcess()->AppendSwitchASCII( switch_name, base::JoinString(schemes, ",")); }; AppendSchemesToCmdLine(electron::switches::kSecureSchemes, secure_schemes); AppendSchemesToCmdLine(electron::switches::kBypassCSPSchemes, cspbypassing_schemes); AppendSchemesToCmdLine(electron::switches::kCORSSchemes, cors_schemes); AppendSchemesToCmdLine(electron::switches::kFetchSchemes, fetch_schemes); AppendSchemesToCmdLine(electron::switches::kServiceWorkerSchemes, service_worker_schemes); AppendSchemesToCmdLine(electron::switches::kStandardSchemes, g_standard_schemes); AppendSchemesToCmdLine(electron::switches::kStreamingSchemes, g_streaming_schemes); AppendSchemesToCmdLine(electron::switches::kCodeCacheSchemes, g_code_cache_schemes); } namespace { const char* const kBuiltinSchemes[] = { "about", "file", "http", "https", "data", "filesystem", }; // Convert error code to string. constexpr std::string_view ErrorCodeToString(ProtocolError error) { switch (error) { case ProtocolError::kRegistered: return "The scheme has been registered"; case ProtocolError::kNotRegistered: return "The scheme has not been registered"; case ProtocolError::kIntercepted: return "The scheme has been intercepted"; case ProtocolError::kNotIntercepted: return "The scheme has not been intercepted"; default: return "Unexpected error"; } } } // namespace Protocol::Protocol(v8::Isolate* isolate, ProtocolRegistry* protocol_registry) : protocol_registry_(protocol_registry) {} Protocol::~Protocol() = default; ProtocolError Protocol::RegisterProtocol(ProtocolType type, const std::string& scheme, const ProtocolHandler& handler) { bool added = protocol_registry_->RegisterProtocol(type, scheme, handler); return added ? ProtocolError::kOK : ProtocolError::kRegistered; } bool Protocol::UnregisterProtocol(const std::string& scheme, gin::Arguments* args) { bool removed = protocol_registry_->UnregisterProtocol(scheme); HandleOptionalCallback( args, removed ? ProtocolError::kOK : ProtocolError::kNotRegistered); return removed; } bool Protocol::IsProtocolRegistered(const std::string& scheme) { return protocol_registry_->FindRegistered(scheme) != nullptr; } ProtocolError Protocol::InterceptProtocol(ProtocolType type, const std::string& scheme, const ProtocolHandler& handler) { bool added = protocol_registry_->InterceptProtocol(type, scheme, handler); return added ? ProtocolError::kOK : ProtocolError::kIntercepted; } bool Protocol::UninterceptProtocol(const std::string& scheme, gin::Arguments* args) { bool removed = protocol_registry_->UninterceptProtocol(scheme); HandleOptionalCallback( args, removed ? ProtocolError::kOK : ProtocolError::kNotIntercepted); return removed; } bool Protocol::IsProtocolIntercepted(const std::string& scheme) { return protocol_registry_->FindIntercepted(scheme) != nullptr; } v8::Local Protocol::IsProtocolHandled(const std::string& scheme, gin::Arguments* args) { util::EmitWarning(args->isolate(), "The protocol.isProtocolHandled API is deprecated, " "use protocol.isProtocolRegistered " "or protocol.isProtocolIntercepted instead.", "ProtocolDeprecateIsProtocolHandled"); return gin_helper::Promise::ResolvedPromise( args->isolate(), IsProtocolRegistered(scheme) || IsProtocolIntercepted(scheme) || // The |isProtocolHandled| should return true for builtin // schemes, however with NetworkService it is impossible to // know which schemes are registered until a real network // request is sent. // So we have to test against a hard-coded builtin schemes // list make it work with old code. We should deprecate // this API with the new |isProtocolRegistered| API. base::Contains(kBuiltinSchemes, scheme)); } void Protocol::HandleOptionalCallback(gin::Arguments* args, ProtocolError error) { base::RepeatingCallback)> callback; if (args->GetNext(&callback)) { util::EmitWarning( args->isolate(), "The callback argument of protocol module APIs is no longer needed.", "ProtocolDeprecateCallback"); if (error == ProtocolError::kOK) callback.Run(v8::Null(args->isolate())); else callback.Run(v8::Exception::Error( gin::StringToV8(args->isolate(), ErrorCodeToString(error)))); } } // static gin::Handle Protocol::Create( v8::Isolate* isolate, ElectronBrowserContext* browser_context) { return gin::CreateHandle( isolate, new Protocol(isolate, browser_context->protocol_registry())); } // static gin::Handle Protocol::New(gin_helper::ErrorThrower thrower) { thrower.ThrowError("Protocol cannot be created from JS"); return {}; } // static v8::Local Protocol::FillObjectTemplate( v8::Isolate* isolate, v8::Local tmpl) { return gin::ObjectTemplateBuilder(isolate, GetClassName(), tmpl) .SetMethod("registerStringProtocol", &Protocol::RegisterProtocolFor) .SetMethod("registerBufferProtocol", &Protocol::RegisterProtocolFor) .SetMethod("registerFileProtocol", &Protocol::RegisterProtocolFor) .SetMethod("registerHttpProtocol", &Protocol::RegisterProtocolFor) .SetMethod("registerStreamProtocol", &Protocol::RegisterProtocolFor) .SetMethod("registerProtocol", &Protocol::RegisterProtocolFor) .SetMethod("unregisterProtocol", &Protocol::UnregisterProtocol) .SetMethod("isProtocolRegistered", &Protocol::IsProtocolRegistered) .SetMethod("isProtocolHandled", &Protocol::IsProtocolHandled) .SetMethod("interceptStringProtocol", &Protocol::InterceptProtocolFor) .SetMethod("interceptBufferProtocol", &Protocol::InterceptProtocolFor) .SetMethod("interceptFileProtocol", &Protocol::InterceptProtocolFor) .SetMethod("interceptHttpProtocol", &Protocol::InterceptProtocolFor) .SetMethod("interceptStreamProtocol", &Protocol::InterceptProtocolFor) .SetMethod("interceptProtocol", &Protocol::InterceptProtocolFor) .SetMethod("uninterceptProtocol", &Protocol::UninterceptProtocol) .SetMethod("isProtocolIntercepted", &Protocol::IsProtocolIntercepted) .Build(); } const char* Protocol::GetTypeName() { return GetClassName(); } } // namespace electron::api namespace { void RegisterSchemesAsPrivileged(gin_helper::ErrorThrower thrower, v8::Local val) { if (electron::Browser::Get()->is_ready()) { thrower.ThrowError( "protocol.registerSchemesAsPrivileged should be called before " "app is ready"); return; } electron::api::RegisterSchemesAsPrivileged(thrower, val); } void Initialize(v8::Local exports, v8::Local unused, v8::Local context, void* priv) { v8::Isolate* isolate = context->GetIsolate(); gin_helper::Dictionary dict(isolate, exports); dict.Set("Protocol", electron::api::Protocol::GetConstructor(context)); dict.SetMethod("registerSchemesAsPrivileged", &RegisterSchemesAsPrivileged); dict.SetMethod("getStandardSchemes", &electron::api::GetStandardSchemes); } } // namespace NODE_LINKED_BINDING_CONTEXT_AWARE(electron_browser_protocol, Initialize)