« back to all changes in this revision
Viewing changes to content/lib/ruleset.jsm
- browse files at revision 14
- compare with another revision
- download diff
- download tarball
- view history from revision 14
- Committer: Package Import Robot
- Author(s): David Prévot, Martin Kimmerle, moshpirit, David Prévot
- Date: 2016-06-27 08:31:55 UTC
- mfrom: (1.2.6)
- Revision ID: package-import@ubuntu.com-20160627083155-tql0njr1honmdz97
Tags: 1.0.0~beta12.2+dfsg-1
* Team upload
[ Martin Kimmerle ]
* [release] set version to 1.0.beta12.2
[ moshpirit ]
* Created Spanish translations (Spain)
[ David Prévot ]
* Update Standards-Version to 3.9.8
* Update copyright (years)
[ Martin Kimmerle ]
* [release] set version to 1.0.beta12.2
[ moshpirit ]
* Created Spanish translations (Spain)
[ David Prévot ]
* Update Standards-Version to 3.9.8
* Update copyright (years)
- files added:
- content/lib/utils/rules.jsm
- locale/es-ES
- files modified:
- META-INF/manifest.mf
added
removed
content/lib/ruleset.jsm
639
639
this.destinations = new Ruleset();
640
640
},
641
641
642
isMatch: function(uriObj) {
643
if (this.scheme && this.scheme !== uriObj.scheme) {
642
/**
643
* @param {nsIURI} uriObj
644
* @param {boolean} endpointSpecHasHost Whether the endpoint spec
645
* corresponding to this "Rule" instance has a host.
646
* @return {boolean}
647
*/
648
isMatch: function(uriObj, endpointSpecHasHost) {
649
if (this.scheme && this.scheme !== "*" && this.scheme !== uriObj.scheme) {
644
650
//dprint("isMatch: wrong scheme (uri: '" + uriObj.scheme + "', rule: '" +
645
651
// this.scheme + "')");
646
652
return false;
647
653
}
648
654
649
655
// Check the port only in case the URI has a host at all.
650
if (DomainUtil.uriObjHasHost(uriObj)) {
656
if (DomainUtil.uriObjHasPort(uriObj)) {
651
657
if (this.port) {
652
658
// If the rule's port is "*" it means any port. We use this convention
653
659
// because we assume an empty port in a rule means default ports rather
654
660
// than any port.
655
if (parseInt(this.port, 10) !== uriObj.port && this.port !== "*") {
656
//dprint("isMatch: wrong port (not the port specified by the rule)");
657
return false;
661
if (this.port !== "*") {
662
let rulePort = parseInt(this.port, 10);
663
if (
664
rulePort === uriObj.port ||
665
uriObj.port === -1 &&
666
rulePort === DomainUtil.
667
getDefaultPortForScheme(uriObj.scheme)
668
) {
669
// Port Match is OK, so continue
670
} else {
671
//dprint("isMatch: wrong port (not the port specified by the rule)");
672
return false;
673
}
658
674
}
659
675
} else {
660
if (!DomainUtil.hasStandardPort(uriObj)) {
661
//dprint("isMatch: wrong port (not the default port and the rule assumes default)");
662
return false;
676
if (!endpointSpecHasHost) {
677
// Both host and port are undefined, so skip the default-port-check.
678
} else {
679
if (!DomainUtil.hasStandardPort(uriObj)) {
680
//dprint("isMatch: wrong port (not the default port and the rule assumes default)");
681
return false;
682
}
663
683
}
664
684
}
685
} else if (this.port) {
686
// The rule specifies a port, but the URI has no port.
687
return false;
665
688
}
666
689
667
690
if (this.path) {
925
948
// origin is non-host-specific but the destination doesn't
926
949
// have to be.
927
950
928
yield this;
951
yield [this, false];
929
952
}
930
953
931
954
if (!host) {
935
958
if (DomainUtil.isIPAddress(host)) {
936
959
var addrEntry = this._ipAddr[host];
937
960
if (addrEntry) {
938
yield addrEntry;
961
yield [addrEntry, true];
939
962
}
940
963
} else {
941
964
var parts = host.split(".");
942
965
var curLevel = this._domain;
943
var nextLevel;
966
// Start by checking for a wildcard at the highest level.
967
var nextLevel = curLevel.getLowerLevel("*");
968
if (nextLevel) {
969
yield [nextLevel, true];
970
}
944
971
for (var i = parts.length - 1; i >= 0; i--) {
945
972
nextLevel = curLevel.getLowerLevel(parts[i]);
946
973
if (!nextLevel) {
947
974
break;
948
975
}
949
976
curLevel = nextLevel;
950
yield nextLevel;
977
yield [nextLevel, true];
951
978
952
979
// Check for *.domain rules at each level.
953
980
nextLevel = curLevel.getLowerLevel("*");
954
981
if (nextLevel) {
955
yield nextLevel;
982
yield [nextLevel, true];
956
983
}
957
984
}
958
985
}
983
1010
984
1011
//dprint("Checking origin rules and origin-to-destination rules.");
985
1012
// First, check for rules for each part of the origin host.
986
originouterloop: for (let entry in this.getHostMatches(originHost)) {
1013
for (let [entry, originSpecHasHost] in this.getHostMatches(originHost)) {
987
1014
//dprint(entry);
988
1015
for (let rule in entry.rules) {
989
1016
//dprint("Checking rule: " + rule);
990
let ruleMatchedOrigin = rule.isMatch(origin);
1017
let ruleMatchedOrigin = rule.isMatch(origin, originSpecHasHost);
991
1018
992
1019
if (rule.allowOrigin && ruleMatchedOrigin) {
993
1020
//dprint("ALLOW origin by rule " + entry + " " + rule);
997
1024
//dprint("DENY origin by rule " + entry + " " + rule);
998
1025
matchedDenyRules.push(["origin", entry, rule]);
999
1026
}
1000
// switch(rule.originRuleAction) {
1001
// case C.RULE_ACTION_ALLOW:
1002
// if (ruleMatchedOrigin) {
1003
// dprint("ALLOW origin by rule " + entry + " " + rule);
1004
// matchedAllowRules.push(["origin", entry, rule]);
1005
// }
1006
// break;
1007
// case C.RULE_ACTION_DENY:
1008
// if (ruleMatchedOrigin) {
1009
// dprint("DENY origin by rule " + entry + " " + rule);
1010
// matchedDenyRules.push(["origin", entry, rule]);
1011
// //break originouterloop;
1012
// break;
1013
// }
1014
// break;
1015
// }
1027
1016
1028
// Check if there are origin-to-destination rules from the origin host
1017
1029
// entry we're currently looking at.
1018
1030
if (ruleMatchedOrigin && rule.destinations) {
1019
1031
//dprint("There are origin-to-destination rules using this origin rule.");
1020
for (let destEntry in rule.destinations.getHostMatches(destHost)) {
1032
for (let [destEntry, destSpecHasHost]
1033
in rule.destinations.getHostMatches(destHost)) {
1021
1034
//dprint(destEntry);
1022
1035
for (let destRule in destEntry.rules) {
1023
1036
//dprint("Checking rule: " + rule);
1024
if (destRule.allowDestination && destRule.isMatch(dest)) {
1037
if (destRule.allowDestination &&
1038
destRule.isMatch(dest, destSpecHasHost)) {
1025
1039
//dprint("ALLOW origin-to-dest by rule origin " + entry + " " + rule + " to dest " + destEntry + " " + destRule);
1026
1040
matchedAllowRules.push([
1027
1041
"origin-to-dest",
1031
1045
destRule
1032
1046
]);
1033
1047
}
1034
if (destRule.denyDestination && destRule.isMatch(dest)) {
1048
if (destRule.denyDestination &&
1049
destRule.isMatch(dest, destSpecHasHost)) {
1035
1050
//dprint("DENY origin-to-dest by rule origin " + entry + " " + rule + " to dest " + destEntry + " " + destRule);
1036
1051
matchedDenyRules.push([
1037
1052
"origin-to-dest",
1041
1056
destRule
1042
1057
]);
1043
1058
}
1044
1045
// switch(destRule.destinationRuleAction) {
1046
// case C.RULE_ACTION_ALLOW:
1047
// if (destRule.isMatch(dest)) {
1048
// dprint("ALLOW origin-to-dest by rule origin " + entry + " " + rule + " to dest " + destEntry + " " + destRule);
1049
// matchedAllowRules.push(["origin-to-dest", entry, rule, destEntry, destRule]);
1050
// }
1051
// break;
1052
// case C.RULE_ACTION_DENY:
1053
// if (destRule.isMatch(dest)) {
1054
// dprint("DENY origin-to-dest by rule origin " + entry + " " + rule + " to dest " + destEntry + " " + destRule);
1055
// matchedDenyRules.push(["origin-to-dest", entry, rule, destEntry, destRule]);
1056
// //break originouterloop;
1057
// break;
1058
// }
1059
// break;
1060
// }
1061
1059
}
1062
1060
}
1063
1061
//dprint("Done checking origin-to-destination rules using this origin rule.");
1067
1065
1068
1066
//dprint("Checking dest rules.");
1069
1067
// Last, check for rules for each part of the destination host.
1070
destouterloop: for (let entry in this.getHostMatches(destHost)) {
1068
for (let [entry, destSpecHasHost] in this.getHostMatches(destHost)) {
1071
1069
//dprint(entry);
1072
1070
for (let rule in entry.rules) {
1073
1071
//dprint("Checking rule: " + rule);
1074
if (rule.allowDestination && rule.isMatch(dest)) {
1072
if (rule.allowDestination && rule.isMatch(dest, destSpecHasHost)) {
1075
1073
//dprint("ALLOW dest by rule " + entry + " " + rule);
1076
1074
matchedAllowRules.push(["dest", entry, rule]);
1077
1075
}
1078
if (rule.denyDestination && rule.isMatch(dest)) {
1076
if (rule.denyDestination && rule.isMatch(dest, destSpecHasHost)) {
1079
1077
//dprint("DENY dest by rule " + entry + " " + rule);
1080
1078
matchedDenyRules.push(["dest", entry, rule]);
1081
1079
}
1082
// switch(rule.destinationRuleAction) {
1083
// case C.RULE_ACTION_ALLOW:
1084
// if (rule.isMatch(dest)) {
1085
// dprint("ALLOW dest by rule " + entry + " " + rule);
1086
// matchedAllowRules.push(["dest", entry, rule]);
1087
// }
1088
// break;
1089
// case C.RULE_ACTION_DENY:
1090
// if (rule.isMatch(dest)) {
1091
// dprint("DENY dest by rule " + entry + " " + rule);
1092
// matchedDenyRules.push(["dest", entry, rule]);
1093
// //break destouterloop;
1094
// break;
1095
// }
1096
// break;
1097
// }
1098
1080
}
1099
1081
}
1100
1082
Loggerhead is a web-based interface for Breezy
Version: 2.0.1