1 /* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* ***** BEGIN LICENSE BLOCK *****
3 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
5 * The contents of this file are subject to the Mozilla Public License Version
6 * 1.1 (the "License"); you may not use this file except in compliance with
7 * the License. You may obtain a copy of the License at
8 * http://www.mozilla.org/MPL/
10 * Software distributed under the License is distributed on an "AS IS" basis,
11 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
12 * for the specific language governing rights and limitations under the
15 * The Original Code is mozilla.org code.
17 * The Initial Developer of the Original Code is
18 * the Mozilla Corporation.
19 * Portions created by the Initial Developer are Copyright (C) 2006
20 * the Initial Developer. All Rights Reserved.
23 * Boris Zbarsky <bzbarsky@mit.edu> (Original author)
25 * Alternatively, the contents of this file may be used under the terms of
26 * either of the GNU General Public License Version 2 or later (the "GPL"),
27 * or the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
28 * in which case the provisions of the GPL or the LGPL are applicable instead
29 * of those above. If you wish to allow use of your version of this file only
30 * under the terms of either the GPL or the LGPL, and not to allow others to
31 * use your version of this file under the terms of the MPL, indicate your
32 * decision by deleting the provisions above and replace them with the notice
33 * and other provisions required by the GPL or the LGPL. If you do not delete
34 * the provisions above, a recipient may use your version of this file under
35 * the terms of any one of the MPL, the GPL or the LGPL.
37 * ***** END LICENSE BLOCK ***** */
40 * This is the principal that has no rights and can't be accessed by
41 * anything other than itself and chrome; null principals are not
42 * same-origin with anything but themselves.
45 #include "nsNullPrincipal.h"
46 #include "nsNullPrincipalURI.h"
48 #include "nsIUUIDGenerator.h"
50 #include "nsNetUtil.h"
51 #include "nsIClassInfoImpl.h"
53 #include "nsDOMError.h"
54 #include "nsScriptSecurityManager.h"
56 NS_IMPL_CLASSINFO(nsNullPrincipal
, NULL
, nsIClassInfo::MAIN_THREAD_ONLY
,
58 NS_IMPL_QUERY_INTERFACE2_CI(nsNullPrincipal
,
61 NS_IMPL_CI_INTERFACE_GETTER2(nsNullPrincipal
,
65 NS_IMETHODIMP_(nsrefcnt
)
66 nsNullPrincipal::AddRef()
68 NS_PRECONDITION(PRInt32(mJSPrincipals
.refcount
) >= 0, "illegal refcnt");
69 nsrefcnt count
= PR_AtomicIncrement((PRInt32
*)&mJSPrincipals
.refcount
);
70 NS_LOG_ADDREF(this, count
, "nsNullPrincipal", sizeof(*this));
74 NS_IMETHODIMP_(nsrefcnt
)
75 nsNullPrincipal::Release()
77 NS_PRECONDITION(0 != mJSPrincipals
.refcount
, "dup release");
78 nsrefcnt count
= PR_AtomicDecrement((PRInt32
*)&mJSPrincipals
.refcount
);
79 NS_LOG_RELEASE(this, count
, "nsNullPrincipal");
87 nsNullPrincipal::nsNullPrincipal()
91 nsNullPrincipal::~nsNullPrincipal()
95 #define NS_NULLPRINCIPAL_PREFIX NS_NULLPRINCIPAL_SCHEME ":"
98 nsNullPrincipal::Init()
100 // FIXME: bug 327161 -- make sure the uuid generator is reseeding-resistant.
102 nsCOMPtr
<nsIUUIDGenerator
> uuidgen
=
103 do_GetService("@mozilla.org/uuid-generator;1", &rv
);
104 NS_ENSURE_SUCCESS(rv
, rv
);
107 rv
= uuidgen
->GenerateUUIDInPlace(&id
);
108 NS_ENSURE_SUCCESS(rv
, rv
);
110 char chars
[NSID_LENGTH
];
111 id
.ToProvidedString(chars
);
113 PRUint32 suffixLen
= NSID_LENGTH
- 1;
114 PRUint32 prefixLen
= NS_ARRAY_LENGTH(NS_NULLPRINCIPAL_PREFIX
) - 1;
116 // Use an nsCString so we only do the allocation once here and then share
117 // with nsJSPrincipals
119 str
.SetCapacity(prefixLen
+ suffixLen
);
121 str
.Append(NS_NULLPRINCIPAL_PREFIX
);
124 if (str
.Length() != prefixLen
+ suffixLen
) {
125 NS_WARNING("Out of memory allocating null-principal URI");
126 return NS_ERROR_OUT_OF_MEMORY
;
129 mURI
= new nsNullPrincipalURI(str
);
130 NS_ENSURE_TRUE(mURI
, NS_ERROR_OUT_OF_MEMORY
);
132 return mJSPrincipals
.Init(this, str
);
136 * nsIPrincipal implementation
140 nsNullPrincipal::GetPreferences(char** aPrefName
, char** aID
,
142 char** aGrantedList
, char** aDeniedList
,
145 // The null principal should never be written to preferences.
148 *aSubjectName
= nsnull
;
149 *aGrantedList
= nsnull
;
150 *aDeniedList
= nsnull
;
151 *aIsTrusted
= PR_FALSE
;
153 return NS_ERROR_FAILURE
;
157 nsNullPrincipal::Equals(nsIPrincipal
*aOther
, PRBool
*aResult
)
159 // Just equal to ourselves. Note that nsPrincipal::Equals will return false
160 // for us since we have a unique domain/origin/etc.
161 *aResult
= (aOther
== this);
166 nsNullPrincipal::GetHashValue(PRUint32
*aResult
)
168 *aResult
= (NS_PTR_TO_INT32(this) >> 2);
173 nsNullPrincipal::GetJSPrincipals(JSContext
*cx
, JSPrincipals
**aJsprin
)
175 NS_PRECONDITION(mJSPrincipals
.nsIPrincipalPtr
,
176 "mJSPrincipals is uninitalized!");
178 JSPRINCIPALS_HOLD(cx
, &mJSPrincipals
);
179 *aJsprin
= &mJSPrincipals
;
184 nsNullPrincipal::GetSecurityPolicy(void** aSecurityPolicy
)
186 // We don't actually do security policy caching. And it's not like anyone
187 // can set a security policy for us anyway.
188 *aSecurityPolicy
= nsnull
;
193 nsNullPrincipal::SetSecurityPolicy(void* aSecurityPolicy
)
195 // We don't actually do security policy caching. And it's not like anyone
196 // can set a security policy for us anyway.
201 nsNullPrincipal::CanEnableCapability(const char *aCapability
,
204 // Null principal can enable no capabilities.
205 *aResult
= nsIPrincipal::ENABLE_DENIED
;
210 nsNullPrincipal::SetCanEnableCapability(const char *aCapability
,
213 return NS_ERROR_NOT_AVAILABLE
;
218 nsNullPrincipal::IsCapabilityEnabled(const char *aCapability
,
222 // Nope. No capabilities, I say!
228 nsNullPrincipal::EnableCapability(const char *aCapability
, void **aAnnotation
)
230 NS_NOTREACHED("Didn't I say it? NO CAPABILITIES!");
231 *aAnnotation
= nsnull
;
236 nsNullPrincipal::RevertCapability(const char *aCapability
, void **aAnnotation
)
238 *aAnnotation
= nsnull
;
243 nsNullPrincipal::DisableCapability(const char *aCapability
, void **aAnnotation
)
245 // Just a no-op. They're all disabled anyway.
246 *aAnnotation
= nsnull
;
251 nsNullPrincipal::GetURI(nsIURI
** aURI
)
253 return NS_EnsureSafeToReturn(mURI
, aURI
);
257 nsNullPrincipal::GetCsp(nsIContentSecurityPolicy
** aCsp
)
259 // CSP on a null principal makes no sense
265 nsNullPrincipal::SetCsp(nsIContentSecurityPolicy
* aCsp
)
267 // CSP on a null principal makes no sense
268 return NS_ERROR_NOT_AVAILABLE
;
272 nsNullPrincipal::GetDomain(nsIURI
** aDomain
)
274 return NS_EnsureSafeToReturn(mURI
, aDomain
);
278 nsNullPrincipal::SetDomain(nsIURI
* aDomain
)
280 // I think the right thing to do here is to just throw... Silently failing
281 // seems counterproductive.
282 return NS_ERROR_NOT_AVAILABLE
;
286 nsNullPrincipal::GetOrigin(char** aOrigin
)
291 nsresult rv
= mURI
->GetSpec(str
);
292 NS_ENSURE_SUCCESS(rv
, rv
);
294 *aOrigin
= ToNewCString(str
);
295 NS_ENSURE_TRUE(*aOrigin
, NS_ERROR_OUT_OF_MEMORY
);
301 nsNullPrincipal::GetHasCertificate(PRBool
* aResult
)
308 nsNullPrincipal::GetFingerprint(nsACString
& aID
)
310 return NS_ERROR_NOT_AVAILABLE
;
314 nsNullPrincipal::GetPrettyName(nsACString
& aName
)
316 return NS_ERROR_NOT_AVAILABLE
;
320 nsNullPrincipal::Subsumes(nsIPrincipal
*aOther
, PRBool
*aResult
)
322 // We don't subsume anything except ourselves. Note that nsPrincipal::Equals
323 // will return false for us, since we're not about:blank and not Equals to
324 // reasonable nsPrincipals.
325 *aResult
= (aOther
== this);
330 nsNullPrincipal::CheckMayLoad(nsIURI
* aURI
, PRBool aReport
)
333 nsScriptSecurityManager::ReportError(
334 nsnull
, NS_LITERAL_STRING("CheckSameOriginError"), mURI
, aURI
);
337 return NS_ERROR_DOM_BAD_URI
;
341 nsNullPrincipal::GetSubjectName(nsACString
& aName
)
343 return NS_ERROR_NOT_AVAILABLE
;
347 nsNullPrincipal::GetCertificate(nsISupports
** aCertificate
)
349 *aCertificate
= nsnull
;
354 * nsISerializable implementation
357 nsNullPrincipal::Read(nsIObjectInputStream
* aStream
)
359 // no-op: CID is sufficient to create a useful nsNullPrincipal, since the URI
360 // is not really relevant.
365 nsNullPrincipal::Write(nsIObjectOutputStream
* aStream
)
367 // no-op: CID is sufficient to create a useful nsNullPrincipal, since the URI
368 // is not really relevant.