npapi_plugin/origin.cc

   1 /*
   2  * Copyright 2008, Google Inc.
   3  * All rights reserved.
   4  *
   5  * Redistribution and use in source and binary forms, with or without
   6  * modification, are permitted provided that the following conditions are
   7  * met:
   8  *
   9  *     * Redistributions of source code must retain the above copyright
  10  * notice, this list of conditions and the following disclaimer.
  11  *     * Redistributions in binary form must reproduce the above
  12  * copyright notice, this list of conditions and the following disclaimer
  13  * in the documentation and/or other materials provided with the
  14  * distribution.
  15  *     * Neither the name of Google Inc. nor the names of its
  16  * contributors may be used to endorse or promote products derived from
  17  * this software without specific prior written permission.
  18  *
  19  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
  20  * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
  21  * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
  22  * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
  23  * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  24  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
  25  * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
  26  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
  27  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
  28  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
  29  * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  30  */
  31
  32
  33 #include <stdio.h>
  34
  35 #include <cctype>
  36 #include <string>
  37 #include <algorithm>
  38
  39 #include "native_client/npapi_plugin/origin.h"
  40
  41 #ifdef  ORIGIN_DEBUG
  42 # define dprintf(alist) printf alist
  43 #else
  44 # define dprintf(alist)
  45 #endif
  46
  47 namespace nacl {
  48
  49 std::string UrlToOrigin(std::string url) {
  50   std::string::iterator it = find(url.begin(), url.end(), ':');
  51   if (url.end() == it) {
  52     dprintf(("no protospec separator found\n"));
  53     return "";
  54   }
  55   for (int num_slashes = 0; num_slashes < 3; ++num_slashes) {
  56     it = find(it + 1, url.end(), '/');
  57     if (url.end() == it) {
  58       dprintf(("no start of pathspec found\n"));
  59       return "";
  60     }
  61   }
  62
  63   std::string origin(url.begin(), it);
  64
  65   //
  66   // Domain names are in ascii and case insensitive, so we can
  67   // canonicalize to all lower case.  NB: Internationalizing Domain
  68   // Names in Applications (IDNA) encodes unicode in this reduced
  69   // alphabet.
  70   //
  71   for (it = origin.begin(); origin.end() != it; ++it) {
  72     *it = tolower(*it);
  73   }
  74   //
  75   // cannonicalize empty hostname as "localhost"
  76   //
  77   if ("file://" == origin) {
  78     origin = "file://localhost";
  79   }
  80   return origin;
  81 }
  82
  83 // For now we are just checking that NaCl modules are local, or on
  84 // code.google.com.  Beware NaCl modules in the browser cache!
  85 //
  86 // Eventually, after sufficient security testing, we will always
  87 // return true.
  88 bool OriginIsInWhitelist(std::string origin) {
  89   static char const *allowed_origin[] = {
  90     "file://localhost",        // for testing
  91 #if 0
  92     "http://code.google.com",  // for demos hosted on project website
  93 #endif
  94   };
  95   for (size_t i = 0; i < sizeof allowed_origin/sizeof allowed_origin[0]; ++i) {
  96     if (origin == allowed_origin[i]) {
  97       return true;
  98     }
  99   }
 100   return false;
 101 }
 102
 103 }