search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
merge the formfield patch from ooo-build
[ooovba.git] / sfx2 / source / doc / docmacromode.cxx
blob131ff7c8d8eb04e31e7a2f99aa858eb5f33879a0
1 /*************************************************************************
2 *
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * Copyright 2008 by Sun Microsystems, Inc.
6 *
7 * OpenOffice.org - a multi-platform office productivity suite
8 *
9 * $RCSfile: docmacromode.cxx,v $
10 * $Revision: 1.6 $
11 *
12 * This file is part of OpenOffice.org.
13 *
14 * OpenOffice.org is free software: you can redistribute it and/or modify
15 * it under the terms of the GNU Lesser General Public License version 3
16 * only, as published by the Free Software Foundation.
17 *
18 * OpenOffice.org is distributed in the hope that it will be useful,
19 * but WITHOUT ANY WARRANTY; without even the implied warranty of
20 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 * GNU Lesser General Public License version 3 for more details
22 * (a copy is included in the LICENSE file that accompanied this code).
23 *
24 * You should have received a copy of the GNU Lesser General Public License
25 * version 3 along with OpenOffice.org. If not, see
26 * <http://www.openoffice.org/license.html>
27 * for a copy of the LGPLv3 License.
28 *
29 ************************************************************************/
30
31 // MARKER(update_precomp.py): autogen include statement, do not remove
32 #include "precompiled_sfx2.hxx"
33
34 #include "sfx2/docmacromode.hxx"
35 #include "sfx2/signaturestate.hxx"
36 #include "sfx2/docfile.hxx"
37
38 /** === begin UNO includes === **/
39 #include <com/sun/star/document/MacroExecMode.hpp>
40 #include <com/sun/star/task/ErrorCodeRequest.hpp>
41 #include <com/sun/star/task/DocumentMacroConfirmationRequest.hpp>
42 #include <com/sun/star/task/InteractionClassification.hpp>
43 #include <com/sun/star/security/XDocumentDigitalSignatures.hpp>
44 #include <com/sun/star/script/XLibraryQueryExecutable.hpp>
45 /** === end UNO includes === **/
46
47 #include <comphelper/componentcontext.hxx>
48 #include <comphelper/processfactory.hxx>
49 #include <framework/interaction.hxx>
50 #include <osl/file.hxx>
51 #include <rtl/ref.hxx>
52 #include <svtools/securityoptions.hxx>
53 #include <svtools/sfxecode.hxx>
54 #include <tools/diagnose_ex.h>
55 #include <tools/urlobj.hxx>
56
57 //........................................................................
58 namespace sfx2
59 {
60 //........................................................................
61
62 /** === begin UNO using === **/
63 using ::com::sun::star::uno::Reference;
64 using ::com::sun::star::task::XInteractionHandler;
65 using ::com::sun::star::uno::Any;
66 using ::com::sun::star::task::XInteractionHandler;
67 using ::com::sun::star::uno::Sequence;
68 using ::com::sun::star::task::XInteractionContinuation;
69 using ::com::sun::star::task::XInteractionRequest;
70 using ::com::sun::star::task::DocumentMacroConfirmationRequest;
71 using ::com::sun::star::task::ErrorCodeRequest;
72 using ::com::sun::star::uno::Exception;
73 using ::com::sun::star::security::XDocumentDigitalSignatures;
74 using ::com::sun::star::security::DocumentSignatureInformation;
75 using ::com::sun::star::embed::XStorage;
76 using ::com::sun::star::task::InteractionClassification_QUERY;
77 using ::com::sun::star::document::XEmbeddedScripts;
78 using ::com::sun::star::uno::UNO_SET_THROW;
79 using ::com::sun::star::script::XLibraryContainer;
80 using ::com::sun::star::script::XLibraryQueryExecutable;
81 using ::com::sun::star::container::XNameAccess;
82 using ::com::sun::star::uno::UNO_QUERY_THROW;
83 using ::com::sun::star::uno::UNO_QUERY;
84 /** === end UNO using === **/
85 namespace MacroExecMode = ::com::sun::star::document::MacroExecMode;
86
87 //====================================================================
88 //= DocumentMacroMode_Data
89 //====================================================================
90 struct DocumentMacroMode_Data
91 {
92 IMacroDocumentAccess& m_rDocumentAccess;
93 sal_Bool m_bMacroDisabledMessageShown;
94 sal_Bool m_bDocMacroDisabledMessageShown;
95
96 DocumentMacroMode_Data( IMacroDocumentAccess& rDocumentAccess )
97 :m_rDocumentAccess( rDocumentAccess )
98 ,m_bMacroDisabledMessageShown( sal_False )
99 ,m_bDocMacroDisabledMessageShown( sal_False )
100 {
101 }
102 };
103
104 //====================================================================
105 //= helper
106 //====================================================================
107 namespace
108 {
109 //................................................................
110 void lcl_showGeneralSfxErrorOnce( const Reference< XInteractionHandler >& rxHandler, const sal_Int32 nSfxErrorCode, sal_Bool& rbAlreadyShown )
111 {
112 if ( rbAlreadyShown )
113 return;
114
115 ErrorCodeRequest aErrorCodeRequest;
116 aErrorCodeRequest.ErrCode = nSfxErrorCode;
117
118 SfxMedium::CallApproveHandler( rxHandler, makeAny( aErrorCodeRequest ), sal_False );
119 rbAlreadyShown = sal_True;
120 }
121
122 //................................................................
123 void lcl_showMacrosDisabledError( const Reference< XInteractionHandler >& rxHandler, sal_Bool& rbAlreadyShown )
124 {
125 lcl_showGeneralSfxErrorOnce( rxHandler, ERRCODE_SFX_MACROS_SUPPORT_DISABLED, rbAlreadyShown );
126 }
127
128 //................................................................
129 void lcl_showDocumentMacrosDisabledError( const Reference< XInteractionHandler >& rxHandler, sal_Bool& rbAlreadyShown )
130 {
131 lcl_showGeneralSfxErrorOnce( rxHandler, ERRCODE_SFX_DOCUMENT_MACRO_DISABLED, rbAlreadyShown );
132 }
133
134 //................................................................
135 sal_Bool lcl_showMacroWarning( const Reference< XInteractionHandler >& rxHandler,
136 const ::rtl::OUString& rDocumentLocation )
137 {
138 DocumentMacroConfirmationRequest aRequest;
139 aRequest.DocumentURL = rDocumentLocation;
140 return SfxMedium::CallApproveHandler( rxHandler, makeAny( aRequest ), sal_True );
141 }
142 }
143
144 //====================================================================
145 //= DocumentMacroMode
146 //====================================================================
147 //--------------------------------------------------------------------
148 DocumentMacroMode::DocumentMacroMode( IMacroDocumentAccess& rDocumentAccess )
149 :m_pData( new DocumentMacroMode_Data( rDocumentAccess ) )
150 {
151 }
152
153 //--------------------------------------------------------------------
154 DocumentMacroMode::~DocumentMacroMode()
155 {
156 }
157
158 //--------------------------------------------------------------------
159 sal_Bool DocumentMacroMode::allowMacroExecution()
160 {
161 m_pData->m_rDocumentAccess.setCurrentMacroExecMode( MacroExecMode::ALWAYS_EXECUTE_NO_WARN );
162 return sal_True;
163 }
164
165 //--------------------------------------------------------------------
166 sal_Bool DocumentMacroMode::disallowMacroExecution()
167 {
168 m_pData->m_rDocumentAccess.setCurrentMacroExecMode( MacroExecMode::NEVER_EXECUTE );
169 return sal_False;
170 }
171
172 //--------------------------------------------------------------------
173 sal_Bool DocumentMacroMode::adjustMacroMode( const Reference< XInteractionHandler >& rxInteraction )
174 {
175 sal_uInt16 nMacroExecutionMode = m_pData->m_rDocumentAccess.getCurrentMacroExecMode();
176
177 if ( SvtSecurityOptions().IsMacroDisabled() )
178 {
179 // no macro should be executed at all
180 lcl_showMacrosDisabledError( rxInteraction, m_pData->m_bMacroDisabledMessageShown );
181 return disallowMacroExecution();
182 }
183
184 // get setting from configuration if required
185 enum AutoConfirmation
186 {
187 eNoAutoConfirm,
188 eAutoConfirmApprove,
189 eAutoConfirmReject
190 };
191 AutoConfirmation eAutoConfirm( eNoAutoConfirm );
192
193 if ( ( nMacroExecutionMode == MacroExecMode::USE_CONFIG )
194 || ( nMacroExecutionMode == MacroExecMode::USE_CONFIG_REJECT_CONFIRMATION )
195 || ( nMacroExecutionMode == MacroExecMode::USE_CONFIG_APPROVE_CONFIRMATION )
196 )
197 {
198 SvtSecurityOptions aOpt;
199 switch ( aOpt.GetMacroSecurityLevel() )
200 {
201 case 3:
202 nMacroExecutionMode = MacroExecMode::FROM_LIST_NO_WARN;
203 break;
204 case 2:
205 nMacroExecutionMode = MacroExecMode::FROM_LIST_AND_SIGNED_WARN;
206 break;
207 case 1:
208 nMacroExecutionMode = MacroExecMode::ALWAYS_EXECUTE;
209 break;
210 case 0:
211 nMacroExecutionMode = MacroExecMode::ALWAYS_EXECUTE_NO_WARN;
212 break;
213 default:
214 OSL_ENSURE( sal_False, "DocumentMacroMode::adjustMacroMode: unexpected macro security level!" );
215 nMacroExecutionMode = MacroExecMode::NEVER_EXECUTE;
216 }
217
218 if ( nMacroExecutionMode == MacroExecMode::USE_CONFIG_REJECT_CONFIRMATION )
219 eAutoConfirm = eAutoConfirmReject;
220 else if ( nMacroExecutionMode == MacroExecMode::USE_CONFIG_APPROVE_CONFIRMATION )
221 eAutoConfirm = eAutoConfirmApprove;
222 }
223
224 if ( nMacroExecutionMode == MacroExecMode::NEVER_EXECUTE )
225 return sal_False;
226
227 if ( nMacroExecutionMode == MacroExecMode::ALWAYS_EXECUTE_NO_WARN )
228 return sal_True;
229
230 try
231 {
232 ::rtl::OUString sReferrer( m_pData->m_rDocumentAccess.getDocumentLocation() );
233
234 // get document location from medium name and check whether it is a trusted one
235 // the service is created ohne document version, since it is not of interest here
236 ::comphelper::ComponentContext aContext( ::comphelper::getProcessServiceFactory() );
237 Reference< XDocumentDigitalSignatures > xSignatures;
238 if ( aContext.createComponent( "com.sun.star.security.DocumentDigitalSignatures", xSignatures ) )
239 {
240 INetURLObject aURLReferer( sReferrer );
241
242 ::rtl::OUString aLocation;
243 if ( aURLReferer.removeSegment() )
244 aLocation = aURLReferer.GetMainURL( INetURLObject::NO_DECODE );
245
246 if ( aLocation.getLength() && xSignatures->isLocationTrusted( aLocation ) )
247 {
248 return allowMacroExecution();
249 }
250 }
251
252 // at this point it is clear that the document is not in the secure location
253 if ( nMacroExecutionMode == MacroExecMode::FROM_LIST_NO_WARN )
254 {
255 lcl_showDocumentMacrosDisabledError( rxInteraction, m_pData->m_bDocMacroDisabledMessageShown );
256 return disallowMacroExecution();
257 }
258
259 // check whether the document is signed with trusted certificate
260 if ( nMacroExecutionMode != MacroExecMode::FROM_LIST )
261 {
262 // the trusted macro check will also retrieve the signature state ( small optimization )
263 sal_Bool bHasTrustedMacroSignature = m_pData->m_rDocumentAccess.hasTrustedScriptingSignature( nMacroExecutionMode != MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN );
264
265 sal_uInt16 nSignatureState = m_pData->m_rDocumentAccess.getScriptingSignatureState();
266 if ( nSignatureState == SIGNATURESTATE_SIGNATURES_BROKEN )
267 {
268 // the signature is broken, no macro execution
269 if ( nMacroExecutionMode != MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN )
270 m_pData->m_rDocumentAccess.showBrokenSignatureWarning( rxInteraction );
271
272 return disallowMacroExecution();
273 }
274 else if ( bHasTrustedMacroSignature )
275 {
276 // there is trusted macro signature, allow macro execution
277 return allowMacroExecution();
278 }
279 else if ( nSignatureState == SIGNATURESTATE_SIGNATURES_OK
280 || nSignatureState == SIGNATURESTATE_SIGNATURES_NOTVALIDATED )
281 {
282 // there is valid signature, but it is not from the trusted author
283 return disallowMacroExecution();
284 }
285 }
286
287 // at this point it is clear that the document is neither in secure location nor signed with trusted certificate
288 if ( ( nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN )
289 || ( nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN )
290 )
291 {
292 if ( nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN )
293 lcl_showDocumentMacrosDisabledError( rxInteraction, m_pData->m_bDocMacroDisabledMessageShown );
294
295 return disallowMacroExecution();
296 }
297 }
298 catch ( Exception& )
299 {
300 if ( ( nMacroExecutionMode == MacroExecMode::FROM_LIST_NO_WARN )
301 || ( nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN )
302 || ( nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN )
303 )
304 {
305 return disallowMacroExecution();
306 }
307 }
308
309 // conformation is required
310 sal_Bool bSecure = sal_False;
311
312 if ( eAutoConfirm == eNoAutoConfirm )
313 {
314 ::rtl::OUString sReferrer( m_pData->m_rDocumentAccess.getDocumentLocation() );
315
316 ::rtl::OUString aSystemFileURL;
317 if ( osl::FileBase::getSystemPathFromFileURL( sReferrer, aSystemFileURL ) == osl::FileBase::E_None )
318 sReferrer = aSystemFileURL;
319
320 bSecure = lcl_showMacroWarning( rxInteraction, sReferrer );
321 }
322 else
323 bSecure = ( eAutoConfirm == eAutoConfirmApprove );
324
325 return ( bSecure ? allowMacroExecution() : disallowMacroExecution() );
326 }
327
328 //--------------------------------------------------------------------
329 sal_Bool DocumentMacroMode::isMacroExecutionDisallowed() const
330 {
331 return m_pData->m_rDocumentAccess.getCurrentMacroExecMode() == MacroExecMode::NEVER_EXECUTE;
332 }
333
334 //--------------------------------------------------------------------
335 sal_Bool DocumentMacroMode::hasMacroLibrary() const
336 {
337 sal_Bool bHasMacroLib = sal_False;
338 try
339 {
340 Reference< XEmbeddedScripts > xScripts( m_pData->m_rDocumentAccess.getEmbeddedDocumentScripts() );
341 Reference< XLibraryContainer > xContainer;
342 if ( xScripts.is() )
343 xContainer.set( xScripts->getBasicLibraries(), UNO_QUERY_THROW );
344
345 if ( xContainer.is() )
346 {
347 // a library container exists; check if it's empty
348
349 // if there are libraries except the "Standard" library
350 // we assume that they are not empty (because they have been created by the user)
351 if ( !xContainer->hasElements() )
352 bHasMacroLib = sal_False;
353 else
354 {
355 ::rtl::OUString aStdLibName( RTL_CONSTASCII_USTRINGPARAM( "Standard" ) );
356 Sequence< ::rtl::OUString > aElements = xContainer->getElementNames();
357 if ( aElements.getLength() )
358 {
359 if ( aElements.getLength() > 1 || !aElements[0].equals( aStdLibName ) )
360 bHasMacroLib = sal_True;
361 else
362 {
363 // usually a "Standard" library is always present (design)
364 // for this reason we must check if it's empty
365 //
366 // Note: Since #i73229#, this is not true anymore. There's no default
367 // "Standard" lib anymore. Wouldn't it be time to get completely
368 // rid of the "Standard" thingie - this shouldn't be necessary
369 // anymore, should it?
370 // 2007-01-25 / frank.schoenheit@sun.com
371 Reference < XLibraryQueryExecutable > xLib( xContainer, UNO_QUERY );
372 if ( xLib.is() )
373 bHasMacroLib = xLib->HasExecutableCode( aStdLibName );
374 }
375 }
376 }
377 }
378 }
379 catch( const Exception& )
380 {
381 DBG_UNHANDLED_EXCEPTION();
382 }
383
384 return bHasMacroLib;
385 }
386
387 //--------------------------------------------------------------------
388 sal_Bool DocumentMacroMode::storageHasMacros( const Reference< XStorage >& rxStorage )
389 {
390 sal_Bool bHasMacros = sal_False;
391 if ( rxStorage.is() )
392 {
393 try
394 {
395 static const ::rtl::OUString s_sBasicStorageName( ::rtl::OUString::intern( RTL_CONSTASCII_USTRINGPARAM( "Basic" ) ) );
396 static const ::rtl::OUString s_sScriptsStorageName( ::rtl::OUString::intern( RTL_CONSTASCII_USTRINGPARAM( "Scripts" ) ) );
397
398 bHasMacros =( ( rxStorage->hasByName( s_sBasicStorageName )
399 && rxStorage->isStorageElement( s_sBasicStorageName )
400 )
401 || ( rxStorage->hasByName( s_sScriptsStorageName )
402 && rxStorage->isStorageElement( s_sScriptsStorageName )
403 )
404 );
405 }
406 catch ( const Exception& )
407 {
408 DBG_UNHANDLED_EXCEPTION();
409 }
410 }
411 return bHasMacros;
412 }
413
414 //--------------------------------------------------------------------
415 sal_Bool DocumentMacroMode::checkMacrosOnLoading( const Reference< XInteractionHandler >& rxInteraction )
416 {
417 sal_Bool bAllow = sal_False;
418 if ( SvtSecurityOptions().IsMacroDisabled() )
419 {
420 // no macro should be executed at all
421 bAllow = disallowMacroExecution();
422 }
423 else
424 {
425 if ( m_pData->m_rDocumentAccess.documentStorageHasMacros() || hasMacroLibrary() )
426 {
427 bAllow = adjustMacroMode( rxInteraction );
428 }
429 else if ( !isMacroExecutionDisallowed() )
430 {
431 // if macros will be added by the user later, the security check is obsolete
432 bAllow = allowMacroExecution();
433 }
434 }
435 return bAllow;
436 }
437
438 //........................................................................
439 } // namespace sfx2
440 //........................................................................
vba interoperability for OOo