Version 0.6.2

[minimalist.git] / components / minimalist.js

function NSGetModule() {
  /* Providing shortcuts for many otherwise lengthy XPCOM interfaces and constants */
  const ACCEPT             = Components.interfaces.nsIContentPolicy.ACCEPT
  const REJECT             = Components.interfaces.nsIContentPolicy.REJECT_SERVER
  const nsIAnchorElement   = Components.interfaces.nsIDOMHTMLAnchorElement
  const nsIContentPolicy   = Components.interfaces.nsIContentPolicy
  const nsIEmbedElement    = Components.interfaces.nsIDOMHTMLEmbedElement
  const nsIFrameElement    = Components.interfaces.nsIDOMHTMLFrameElement
  const nsIHttpChannel     = Components.interfaces.nsIHttpChannel
  const nsIImageElement    = Components.interfaces.nsIDOMHTMLImageElement
  const nsIObjectElement   = Components.interfaces.nsIDOMHTMLObjectElement
  const nsIObserver        = Components.interfaces.nsIObserver
  const nsIObserverService = Components.interfaces.nsIObserverService
  const nsIPrefBranch      = Components.interfaces.nsIPrefBranch
  const nsIPrefBranch2     = Components.interfaces.nsIPrefBranch2
  const nsIURI             = Components.interfaces.nsIURI
  const nsIXULElement      = Components.interfaces.nsIDOMXULElement

  /* Generic constants */
  const tagsToClear       = ['Age', 'Cache-Control', 'Date', 'ETag', 'Last-Modified', 'Pragma', 'Vary']
  const allowedSchemes    = {'chrome': true, 'resource': true}
  const urlParser         = Components.classes['@mozilla.org/network/standard-url;1'].getService(nsIURI)
  const preferenceManager = Components.classes['@mozilla.org/preferences-service;1'].getService(nsIPrefBranch)
  const observerService   = Components.classes['@mozilla.org/observer-service;1'].getService(nsIObserverService)

  /* Various regular expressions. They are automatically compiled once on startup due to the literal notation */
  const isHTMLDocument    = /^(?:text\/html|application\/xhtml\+xml)/
  const mustBeCached      = /^(?:text|image|multipart)\/|^application\/(?:x-)?(?:javascript|json)/
  const extractDomainName = /([^.]+)\.[^\d.]+$/
  const isAnImageFileName = /\.(?:jpe?g|png|gif|bmp)$/i
  const advertBlacklist   = /(?:^|[\/.])ad(?:vert|serv(?:er)?)?s?\d?(?:[\/.]|$)/i

  /* These variables hold the settings used throughout this extension */
  var filterLevel         = 3
  var embedExceptions     = {}
  var whiteList           = {}


  /* Purpose: Extracts and returns only the domain name from an URL
   */
  const getDomainName = function(URL) {
    urlParser.spec = URL
    return (extractDomainName.exec(urlParser.host) || {1: URL})[1].toLowerCase() }


  /* Purpose: Has three different filter levels that try to prevent advertisement and annoying scripts from loading.
   *          resource:// and chrome:// URLs and XUL elements are always granted to load, so the UI doesn't break
   */
  const filterLoadRequest = function(unused, destinationURL, sourceURL, triggeringNode) {
    if (filterLevel < 1 || !sourceURL || triggeringNode instanceof nsIXULElement ||
        sourceURL.scheme in allowedSchemes || destinationURL.scheme in allowedSchemes) {
      return ACCEPT }

    // When checking whether a resource is external, we always only compare the domain names
    var sourceDomain      = getDomainName(sourceURL.spec)
    var destinationDomain = getDomainName(destinationURL.spec)
    var whiteListDomains  = whiteList[sourceDomain] || {}

    // Filter level 1: Embed and object tags have an own whitelist that's valid for any source domain
    if ((triggeringNode instanceof nsIEmbedElement || triggeringNode instanceof nsIObjectElement) &&
         destinationDomain in embedExceptions) {
      return ACCEPT }

    // Determine wheter the triggering node is an image linked to a valid target
    var linkNode          = triggeringNode.parentNode
    var isLinkedImageNode = triggeringNode instanceof nsIImageElement && linkNode instanceof nsIAnchorElement &&
                            linkNode.href.substr(0, 11) != 'javascript:'

    // Filter level 2: Denies to load if the triggering node is an image,
    // but does link to some other external resource, that is not an image
    if (filterLevel > 1 && isLinkedImageNode) {
      if (isAnImageFileName.test(linkNode.href)) {
        return ACCEPT }

      var linkDomain = getDomainName(linkNode.href)
      if (linkDomain != sourceDomain && !(linkDomain in whiteListDomains)) {
        linkNode.innerHTML = '[Blocked L2]'
        return REJECT } }

    // Filter level 1: Denies to load any external resource that aren't on this domain's whiteList
    if (sourceDomain != destinationDomain && !(destinationDomain in whiteListDomains)) {
      if (triggeringNode instanceof nsIImageElement) {
        linkNode             = triggeringNode.ownerDocument.createElement('a')
        linkNode.href        = triggeringNode.src
        linkNode.textContent = '[Blocked L1]'
        triggeringNode.parentNode.replaceChild(linkNode, triggeringNode) }
      return REJECT }

    // Filter level 3: This is the last measure. Checks the destination URL for blacklisted tokens
    if (filterLevel > 2 && (advertBlacklist.test(destinationURL.spec) ||
            isLinkedImageNode && advertBlacklist.test(linkNode.href))) {
      if (isLinkedImageNode) {
        linkNode.innerHTML = '[Blocked L3]' }
      return REJECT }

    // Fall-through case
    return ACCEPT }


  /* Purpose: Wrapper for httpChannel.getRequestHeader that doesn't crash
   */
  const getRequestHeader = function(httpChannel, tagName) {
    try       { return httpChannel.getRequestHeader(tagName) }
    catch (e) { return false } }


  /* Purpose: Wrapper for httpChannel.getResponseHeader that doesn't crash
   */
  const getResponseHeader = function(httpChannel, tagName) {
    try       { return httpChannel.getResponseHeader(tagName) }
    catch (e) { return false } }


  /* Purpose: Removes all known HTTP tags related to caching and user tracking;
   *          inserts it an Expiry tag afterwards to enforce our own caching rules
   *   Notes: httpChannel is of type nsISupports and must be casted to nsIHttpChannel
   */
  const filterIncomingHTTP = function(httpChannel) {
    var httpChannel = httpChannel.QueryInterface(nsIHttpChannel)

    for each (var tagName in tagsToClear) {
      httpChannel.setResponseHeader(tagName, '', false) }

    // This is the fall-through case
    var expiryDate = 'Thu, 01 Jan 1970 00:00:00 GMT'

    // (X)HTML documents will get cached for 2 minutes before being rechecked
    var contentType = getResponseHeader(httpChannel, 'Content-Type') || ''
    if (isHTMLDocument.test(contentType)) {
      expiryDate = new Date( Date.now() + (2*60*1000) ).toGMTString() }

    // Content with MIME type text/*, image/* or multipart/* will be cached forever if known to be smaller than 2 MiB
    else if ((contentLength = getResponseHeader(httpChannel, 'Content-Length')) &&
             parseInt(contentLength) <= (2*1024*1024) || mustBeCached.test(contentType)) {
      expiryDate = 'Sun, 07 Feb 2106 06:28:15 GMT' }

    httpChannel.setResponseHeader('Expires', expiryDate, false)
    httpChannel.setResponseHeader('Last-Modified', new Date().toGMTString(), false) }


  /* Purpose: Overwrites the User-Agent and Referer HTTP tags to archive better privacy
   *   Notes: httpChannel is of type nsISupports and must be casted to nsIHttpChannel
   */
  const filterOutgoingHTTP = function(httpChannel) {
    var httpChannel = httpChannel.QueryInterface(nsIHttpChannel)

    // If the Referer's domain isn't the same as the target domain, make it so, but leave it untouched if it is
    var referer       = getRequestHeader(httpChannel, 'Referer') || ''
    var domain        = getRequestHeader(httpChannel, 'Host')    || ''
    var refererDomain = getDomainName(referer)
    var currentDomain = getDomainName('http://' + domain)

    if (refererDomain != currentDomain) {
      httpChannel.setRequestHeader('Referer', 'http://' + domain, false) }

    // This is the User-Agent sent by the official Firefox 3.0.6 build when running on Windows XP
    httpChannel.setRequestHeader('User-Agent', 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.6) '
                                             + 'Gecko/2009011913 Firefox/3.0.6 ', false) }


  /* Purpose: Reads the new value pointed to by settingPath into a local variable
   */
  const readSetting = function(settingPath) {
    var pathTokens = settingPath.split('.')

    switch (pathTokens[2]) {
      case 'level':
        filterLevel = preferenceManager.getIntPref(settingPath)
        break

      case 'skipRefresh':
        Minimalist.prototype.skipRefresh = preferenceManager.getBoolPref(settingPath)
        break

      case 'linkify':
        Minimalist.prototype.linkify = preferenceManager.getBoolPref(settingPath)
        break

      case 'embed':
        var destinationDomains = preferenceManager.getCharPref(settingPath).split(',')
        embedExceptions = {}

        for each (var destinationDomain in destinationDomains) {
          embedExceptions[destinationDomain] = true }
        break

      case 'whitelist':
        var sourceDomain       = pathTokens[3]
        var destinationDomains = preferenceManager.getCharPref(settingPath).split(',')
        whiteList[sourceDomain] = {}

        for each (var destinationDomain in destinationDomains) {
          whiteList[sourceDomain][destinationDomain] = true }
        break } }


  /* Purpose: The ObserverService notifies us of all events we've subscribed to by calling this function
   */
  const observerCallback = function(triggeringObject, eventName, eventData) {
    switch (eventName) {
      case 'http-on-examine-response':
        filterIncomingHTTP(triggeringObject)
        break

      case 'http-on-modify-request':
        filterOutgoingHTTP(triggeringObject)
        break

      case 'nsPref:changed':
        readSetting(eventData)
        break } }


  // Prepare for XPCOM registration
  Components.utils.import('resource://gre/modules/XPCOMUtils.jsm')
  const Minimalist = function() { this.wrappedJSObject = this }
  Minimalist.prototype = {
     classDescription: 'Minimalist',
           contractID: '@zelgadis.jp/minimalist;1',
              classID: Components.ID('{124b1de7-bd8a-4a41-a04a-9d40070a0b3a}'),
       QueryInterface: XPCOMUtils.generateQI([nsIContentPolicy]),
    _xpcom_categories: [{category: 'content-policy'}],
           shouldLoad: filterLoadRequest,
        shouldProcess: function() { return ACCEPT } }

  // Adding the nsIPrefBranch2 interface gives us access to the getChildList method
  var registrar = { observe: observerCallback }
  preferenceManager.QueryInterface(nsIPrefBranch2)
  preferenceManager.addObserver('extensions.minimalist.', registrar, false)
  observerService.addObserver(registrar, 'http-on-examine-response', false)
  observerService.addObserver(registrar, 'http-on-modify-request',   false)

  // Populate all settings with their initial values so they can be accessed right away
  var whiteListEntries = preferenceManager.getChildList('extensions.minimalist.whitelist', {})
  for each (whiteListEntry in whiteListEntries) { readSetting(whiteListEntry) }
  readSetting('extensions.minimalist.level')
  readSetting('extensions.minimalist.skipRefresh')
  readSetting('extensions.minimalist.linkify')
  readSetting('extensions.minimalist.embed')

  return XPCOMUtils.generateModule([Minimalist]) }