dlls/mshtml/secmgr.c - wine - Git at Google

 /*
  * Copyright 2009 Jacek Caban for CodeWeavers
  *
  * This library is free software; you can redistribute it and/or
  * modify it under the terms of the GNU Lesser General Public
  * License as published by the Free Software Foundation; either
  * version 2.1 of the License, or (at your option) any later version.
  *
  * This library is distributed in the hope that it will be useful,
  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  * Lesser General Public License for more details.
  *
  * You should have received a copy of the GNU Lesser General Public
  * License along with this library; if not, write to the Free Software
  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
  */

 #include "config.h"

 #include <stdarg.h>
 #include <stdio.h>
 #include <assert.h>

 #define COBJMACROS

 #include "windef.h"
 #include "winbase.h"
 #include "winuser.h"
 #include "ole2.h"
 #include "activscp.h"

 #include "wine/debug.h"

 #include "mshtml_private.h"

 WINE_DEFAULT_DEBUG_CHANNEL(mshtml);

 static const WCHAR about_blankW[] = {'a','b','o','u','t',':','b','l','a','n','k',0};

 /* Defined as extern in urlmon.idl, but not exported by uuid.lib */
 DECLSPEC_HIDDEN const GUID GUID_CUSTOM_CONFIRMOBJECTSAFETY =
     {0x10200490,0xfa38,0x11d0,{0xac,0x0e,0x00,0xa0,0xc9,0xf,0xff,0xc0}};

 static inline HTMLDocumentNode *impl_from_IInternetHostSecurityManager(IInternetHostSecurityManager *iface)
 {
     return CONTAINING_RECORD(iface, HTMLDocumentNode, IInternetHostSecurityManager_iface);
 }

 static HRESULT WINAPI InternetHostSecurityManager_QueryInterface(IInternetHostSecurityManager *iface, REFIID riid, void **ppv)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     return IHTMLDOMNode_QueryInterface(&This->node.IHTMLDOMNode_iface, riid, ppv);
 }

 static ULONG WINAPI InternetHostSecurityManager_AddRef(IInternetHostSecurityManager *iface)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     return IHTMLDOMNode_AddRef(&This->node.IHTMLDOMNode_iface);
 }

 static ULONG WINAPI InternetHostSecurityManager_Release(IInternetHostSecurityManager *iface)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     return IHTMLDOMNode_Release(&This->node.IHTMLDOMNode_iface);
 }

 static HRESULT WINAPI InternetHostSecurityManager_GetSecurityId(IInternetHostSecurityManager *iface,  BYTE *pbSecurityId,
         DWORD *pcbSecurityId, DWORD_PTR dwReserved)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     FIXME("(%p)->(%p %p %lx)\n", This, pbSecurityId, pcbSecurityId, dwReserved);
     return E_NOTIMPL;
 }

 static HRESULT WINAPI InternetHostSecurityManager_ProcessUrlAction(IInternetHostSecurityManager *iface, DWORD dwAction,
         BYTE *pPolicy, DWORD cbPolicy, BYTE *pContext, DWORD cbContext, DWORD dwFlags, DWORD dwReserved)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     const WCHAR *url;

     TRACE("(%p)->(%d %p %d %p %d %x %x)\n", This, dwAction, pPolicy, cbPolicy, pContext, cbContext, dwFlags, dwReserved);

     if(!This->basedoc.window)
         return E_UNEXPECTED;

     url = This->basedoc.window->url ? This->basedoc.window->url : about_blankW;

     return IInternetSecurityManager_ProcessUrlAction(This->basedoc.window->secmgr, url, dwAction, pPolicy, cbPolicy,
             pContext, cbContext, dwFlags, dwReserved);
 }

 static HRESULT confirm_safety_load(HTMLDocumentNode *This, struct CONFIRMSAFETY *cs, DWORD *ret)
 {
     IObjectSafety *obj_safety;
     HRESULT hres;

     hres = IUnknown_QueryInterface(cs->pUnk, &IID_IObjectSafety, (void**)&obj_safety);
     if(SUCCEEDED(hres)) {
         hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatch,
                 INTERFACESAFE_FOR_UNTRUSTED_DATA, INTERFACESAFE_FOR_UNTRUSTED_DATA);
         IObjectSafety_Release(obj_safety);
         *ret = SUCCEEDED(hres) ? URLPOLICY_ALLOW : URLPOLICY_DISALLOW;
     }else {
         CATID init_catid = CATID_SafeForInitializing;

         hres = ICatInformation_IsClassOfCategories(This->catmgr, &cs->clsid, 1, &init_catid, 0, NULL);
         assert(SUCCEEDED(hres));
         *ret = hres == S_OK ? URLPOLICY_ALLOW : URLPOLICY_DISALLOW;
     }

     return S_OK;
 }

 static HRESULT confirm_safety(HTMLDocumentNode *This, const WCHAR *url, struct CONFIRMSAFETY *cs, DWORD *ret)
 {
     DWORD policy, enabled_opts, supported_opts;
     IObjectSafety *obj_safety;
     HRESULT hres;

     TRACE("%s %p %s\n", debugstr_w(url), cs->pUnk, debugstr_guid(&cs->clsid));

     /* FIXME: Check URLACTION_ACTIVEX_OVERRIDE_SCRIPT_SAFETY */

     hres = IInternetSecurityManager_ProcessUrlAction(This->basedoc.window->secmgr, url, URLACTION_SCRIPT_SAFE_ACTIVEX,
             (BYTE*)&policy, sizeof(policy), NULL, 0, 0, 0);
     if(FAILED(hres) || policy != URLPOLICY_ALLOW) {
         *ret = URLPOLICY_DISALLOW;
         return S_OK;
     }

     hres = IUnknown_QueryInterface(cs->pUnk, &IID_IObjectSafety, (void**)&obj_safety);
     if(SUCCEEDED(hres)) {
         hres = IObjectSafety_GetInterfaceSafetyOptions(obj_safety, &IID_IDispatchEx, &supported_opts, &enabled_opts);
         if(FAILED(hres))
             supported_opts = 0;

         enabled_opts = INTERFACESAFE_FOR_UNTRUSTED_CALLER;
         if(supported_opts & INTERFACE_USES_SECURITY_MANAGER)
             enabled_opts |= INTERFACE_USES_SECURITY_MANAGER;

         hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatchEx, enabled_opts, enabled_opts);
         if(FAILED(hres)) {
             enabled_opts &= ~INTERFACE_USES_SECURITY_MANAGER;
             hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatch, enabled_opts, enabled_opts);
         }
         IObjectSafety_Release(obj_safety);

         if(FAILED(hres)) {
             *ret = URLPOLICY_DISALLOW;
             return S_OK;
         }
     }else {
         CATID scripting_catid = CATID_SafeForScripting;

         if(!This->catmgr) {
             hres = CoCreateInstance(&CLSID_StdComponentCategoriesMgr, NULL, CLSCTX_INPROC_SERVER,
                     &IID_ICatInformation, (void**)&This->catmgr);
             if(FAILED(hres))
                 return hres;
         }

         hres = ICatInformation_IsClassOfCategories(This->catmgr, &cs->clsid, 1, &scripting_catid, 0, NULL);
         if(FAILED(hres))
             return hres;

         if(hres != S_OK) {
             *ret = URLPOLICY_DISALLOW;
             return S_OK;
         }
     }

     if(cs->dwFlags & CONFIRMSAFETYACTION_LOADOBJECT)
         return confirm_safety_load(This, cs, ret);

     *ret = URLPOLICY_ALLOW;
     return S_OK;
 }

 static HRESULT WINAPI InternetHostSecurityManager_QueryCustomPolicy(IInternetHostSecurityManager *iface, REFGUID guidKey,
         BYTE **ppPolicy, DWORD *pcbPolicy, BYTE *pContext, DWORD cbContext, DWORD dwReserved)
 {
     HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
     const WCHAR *url;
     HRESULT hres;

     TRACE("(%p)->(%s %p %p %p %d %x)\n", This, debugstr_guid(guidKey), ppPolicy, pcbPolicy, pContext, cbContext, dwReserved);

     if(!This->basedoc.window)
         return E_UNEXPECTED;

     url = This->basedoc.window->url ? This->basedoc.window->url : about_blankW;

     hres = IInternetSecurityManager_QueryCustomPolicy(This->basedoc.window->secmgr, url, guidKey, ppPolicy, pcbPolicy,
             pContext, cbContext, dwReserved);
     if(hres != HRESULT_FROM_WIN32(ERROR_NOT_FOUND))
         return hres;

     if(IsEqualGUID(&GUID_CUSTOM_CONFIRMOBJECTSAFETY, guidKey)) {
         IActiveScript *active_script;
         struct CONFIRMSAFETY *cs;
         DWORD policy;

         if(cbContext != sizeof(struct CONFIRMSAFETY)) {
             FIXME("wrong context size\n");
             return E_FAIL;
         }

         cs = (struct CONFIRMSAFETY*)pContext;
         TRACE("cs = {%s %p %x}\n", debugstr_guid(&cs->clsid), cs->pUnk, cs->dwFlags);

         hres = IUnknown_QueryInterface(cs->pUnk, &IID_IActiveScript, (void**)&active_script);
         if(SUCCEEDED(hres)) {
             FIXME("Got IAciveScript iface\n");
             IActiveScript_Release(active_script);
             return E_FAIL;
         }

         hres = confirm_safety(This, url, cs, &policy);
         if(FAILED(hres))
             return hres;

         *ppPolicy = CoTaskMemAlloc(sizeof(policy));
         if(!*ppPolicy)
             return E_OUTOFMEMORY;

         *(DWORD*)*ppPolicy = policy;
         *pcbPolicy = sizeof(policy);
         TRACE("policy %x\n", policy);
         return S_OK;
     }

     FIXME("Unknown guidKey %s\n", debugstr_guid(guidKey));
     return hres;
 }

 static const IInternetHostSecurityManagerVtbl InternetHostSecurityManagerVtbl = {
     InternetHostSecurityManager_QueryInterface,
     InternetHostSecurityManager_AddRef,
     InternetHostSecurityManager_Release,
     InternetHostSecurityManager_GetSecurityId,
     InternetHostSecurityManager_ProcessUrlAction,
     InternetHostSecurityManager_QueryCustomPolicy
 };

 void HTMLDocumentNode_SecMgr_Init(HTMLDocumentNode *This)
 {
     This->IInternetHostSecurityManager_iface.lpVtbl = &InternetHostSecurityManagerVtbl;
 }
	/*
	* Copyright 2009 Jacek Caban for CodeWeavers
	*
	* This library is free software; you can redistribute it and/or
	* modify it under the terms of the GNU Lesser General Public
	* License as published by the Free Software Foundation; either
	* version 2.1 of the License, or (at your option) any later version.
	*
	* This library is distributed in the hope that it will be useful,
	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	* Lesser General Public License for more details.
	*
	* You should have received a copy of the GNU Lesser General Public
	* License along with this library; if not, write to the Free Software
	* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
	*/

	#include "config.h"

	#include <stdarg.h>
	#include <stdio.h>
	#include <assert.h>

	#define COBJMACROS

	#include "windef.h"
	#include "winbase.h"
	#include "winuser.h"
	#include "ole2.h"
	#include "activscp.h"

	#include "wine/debug.h"

	#include "mshtml_private.h"

	WINE_DEFAULT_DEBUG_CHANNEL(mshtml);

	static const WCHAR about_blankW[] = {'a','b','o','u','t',':','b','l','a','n','k',0};

	/* Defined as extern in urlmon.idl, but not exported by uuid.lib */
	DECLSPEC_HIDDEN const GUID GUID_CUSTOM_CONFIRMOBJECTSAFETY =
	{0x10200490,0xfa38,0x11d0,{0xac,0x0e,0x00,0xa0,0xc9,0xf,0xff,0xc0}};

	static inline HTMLDocumentNode impl_from_IInternetHostSecurityManager(IInternetHostSecurityManager iface)
	{
	return CONTAINING_RECORD(iface, HTMLDocumentNode, IInternetHostSecurityManager_iface);
	}

	static HRESULT WINAPI InternetHostSecurityManager_QueryInterface(IInternetHostSecurityManager iface, REFIID riid, void *ppv)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	return IHTMLDOMNode_QueryInterface(&This->node.IHTMLDOMNode_iface, riid, ppv);
	}

	static ULONG WINAPI InternetHostSecurityManager_AddRef(IInternetHostSecurityManager *iface)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	return IHTMLDOMNode_AddRef(&This->node.IHTMLDOMNode_iface);
	}

	static ULONG WINAPI InternetHostSecurityManager_Release(IInternetHostSecurityManager *iface)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	return IHTMLDOMNode_Release(&This->node.IHTMLDOMNode_iface);
	}

	static HRESULT WINAPI InternetHostSecurityManager_GetSecurityId(IInternetHostSecurityManager iface, BYTE pbSecurityId,
	DWORD *pcbSecurityId, DWORD_PTR dwReserved)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	FIXME("(%p)->(%p %p %lx)\n", This, pbSecurityId, pcbSecurityId, dwReserved);
	return E_NOTIMPL;
	}

	static HRESULT WINAPI InternetHostSecurityManager_ProcessUrlAction(IInternetHostSecurityManager *iface, DWORD dwAction,
	BYTE pPolicy, DWORD cbPolicy, BYTE pContext, DWORD cbContext, DWORD dwFlags, DWORD dwReserved)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	const WCHAR *url;

	TRACE("(%p)->(%d %p %d %p %d %x %x)\n", This, dwAction, pPolicy, cbPolicy, pContext, cbContext, dwFlags, dwReserved);

	if(!This->basedoc.window)
	return E_UNEXPECTED;

	url = This->basedoc.window->url ? This->basedoc.window->url : about_blankW;

	return IInternetSecurityManager_ProcessUrlAction(This->basedoc.window->secmgr, url, dwAction, pPolicy, cbPolicy,
	pContext, cbContext, dwFlags, dwReserved);
	}

	static HRESULT confirm_safety_load(HTMLDocumentNode This, struct CONFIRMSAFETY cs, DWORD *ret)
	{
	IObjectSafety *obj_safety;
	HRESULT hres;

	hres = IUnknown_QueryInterface(cs->pUnk, &IID_IObjectSafety, (void**)&obj_safety);
	if(SUCCEEDED(hres)) {
	hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatch,
	INTERFACESAFE_FOR_UNTRUSTED_DATA, INTERFACESAFE_FOR_UNTRUSTED_DATA);
	IObjectSafety_Release(obj_safety);
	*ret = SUCCEEDED(hres) ? URLPOLICY_ALLOW : URLPOLICY_DISALLOW;
	}else {
	CATID init_catid = CATID_SafeForInitializing;

	hres = ICatInformation_IsClassOfCategories(This->catmgr, &cs->clsid, 1, &init_catid, 0, NULL);
	assert(SUCCEEDED(hres));
	*ret = hres == S_OK ? URLPOLICY_ALLOW : URLPOLICY_DISALLOW;
	}

	return S_OK;
	}

	static HRESULT confirm_safety(HTMLDocumentNode This, const WCHAR url, struct CONFIRMSAFETY cs, DWORD ret)
	{
	DWORD policy, enabled_opts, supported_opts;
	IObjectSafety *obj_safety;
	HRESULT hres;

	TRACE("%s %p %s\n", debugstr_w(url), cs->pUnk, debugstr_guid(&cs->clsid));

	/* FIXME: Check URLACTION_ACTIVEX_OVERRIDE_SCRIPT_SAFETY */

	hres = IInternetSecurityManager_ProcessUrlAction(This->basedoc.window->secmgr, url, URLACTION_SCRIPT_SAFE_ACTIVEX,
	(BYTE*)&policy, sizeof(policy), NULL, 0, 0, 0);
	if(FAILED(hres) \|\| policy != URLPOLICY_ALLOW) {
	*ret = URLPOLICY_DISALLOW;
	return S_OK;
	}

	hres = IUnknown_QueryInterface(cs->pUnk, &IID_IObjectSafety, (void**)&obj_safety);
	if(SUCCEEDED(hres)) {
	hres = IObjectSafety_GetInterfaceSafetyOptions(obj_safety, &IID_IDispatchEx, &supported_opts, &enabled_opts);
	if(FAILED(hres))
	supported_opts = 0;

	enabled_opts = INTERFACESAFE_FOR_UNTRUSTED_CALLER;
	if(supported_opts & INTERFACE_USES_SECURITY_MANAGER)
	enabled_opts \|= INTERFACE_USES_SECURITY_MANAGER;

	hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatchEx, enabled_opts, enabled_opts);
	if(FAILED(hres)) {
	enabled_opts &= ~INTERFACE_USES_SECURITY_MANAGER;
	hres = IObjectSafety_SetInterfaceSafetyOptions(obj_safety, &IID_IDispatch, enabled_opts, enabled_opts);
	}
	IObjectSafety_Release(obj_safety);

	if(FAILED(hres)) {
	*ret = URLPOLICY_DISALLOW;
	return S_OK;
	}
	}else {
	CATID scripting_catid = CATID_SafeForScripting;

	if(!This->catmgr) {
	hres = CoCreateInstance(&CLSID_StdComponentCategoriesMgr, NULL, CLSCTX_INPROC_SERVER,
	&IID_ICatInformation, (void**)&This->catmgr);
	if(FAILED(hres))
	return hres;
	}

	hres = ICatInformation_IsClassOfCategories(This->catmgr, &cs->clsid, 1, &scripting_catid, 0, NULL);
	if(FAILED(hres))
	return hres;

	if(hres != S_OK) {
	*ret = URLPOLICY_DISALLOW;
	return S_OK;
	}
	}

	if(cs->dwFlags & CONFIRMSAFETYACTION_LOADOBJECT)
	return confirm_safety_load(This, cs, ret);

	*ret = URLPOLICY_ALLOW;
	return S_OK;
	}

	static HRESULT WINAPI InternetHostSecurityManager_QueryCustomPolicy(IInternetHostSecurityManager *iface, REFGUID guidKey,
	BYTE *ppPolicy, DWORD pcbPolicy, BYTE *pContext, DWORD cbContext, DWORD dwReserved)
	{
	HTMLDocumentNode *This = impl_from_IInternetHostSecurityManager(iface);
	const WCHAR *url;
	HRESULT hres;

	TRACE("(%p)->(%s %p %p %p %d %x)\n", This, debugstr_guid(guidKey), ppPolicy, pcbPolicy, pContext, cbContext, dwReserved);

	if(!This->basedoc.window)
	return E_UNEXPECTED;

	url = This->basedoc.window->url ? This->basedoc.window->url : about_blankW;

	hres = IInternetSecurityManager_QueryCustomPolicy(This->basedoc.window->secmgr, url, guidKey, ppPolicy, pcbPolicy,
	pContext, cbContext, dwReserved);
	if(hres != HRESULT_FROM_WIN32(ERROR_NOT_FOUND))
	return hres;

	if(IsEqualGUID(&GUID_CUSTOM_CONFIRMOBJECTSAFETY, guidKey)) {
	IActiveScript *active_script;
	struct CONFIRMSAFETY *cs;
	DWORD policy;

	if(cbContext != sizeof(struct CONFIRMSAFETY)) {
	FIXME("wrong context size\n");
	return E_FAIL;
	}

	cs = (struct CONFIRMSAFETY*)pContext;
	TRACE("cs = {%s %p %x}\n", debugstr_guid(&cs->clsid), cs->pUnk, cs->dwFlags);

	hres = IUnknown_QueryInterface(cs->pUnk, &IID_IActiveScript, (void**)&active_script);
	if(SUCCEEDED(hres)) {
	FIXME("Got IAciveScript iface\n");
	IActiveScript_Release(active_script);
	return E_FAIL;
	}

	hres = confirm_safety(This, url, cs, &policy);
	if(FAILED(hres))
	return hres;

	*ppPolicy = CoTaskMemAlloc(sizeof(policy));
	if(!*ppPolicy)
	return E_OUTOFMEMORY;

	(DWORD)*ppPolicy = policy;
	*pcbPolicy = sizeof(policy);
	TRACE("policy %x\n", policy);
	return S_OK;
	}

	FIXME("Unknown guidKey %s\n", debugstr_guid(guidKey));
	return hres;
	}

	static const IInternetHostSecurityManagerVtbl InternetHostSecurityManagerVtbl = {
	InternetHostSecurityManager_QueryInterface,
	InternetHostSecurityManager_AddRef,
	InternetHostSecurityManager_Release,
	InternetHostSecurityManager_GetSecurityId,
	InternetHostSecurityManager_ProcessUrlAction,
	InternetHostSecurityManager_QueryCustomPolicy
	};

	void HTMLDocumentNode_SecMgr_Init(HTMLDocumentNode *This)
	{
	This->IInternetHostSecurityManager_iface.lpVtbl = &InternetHostSecurityManagerVtbl;
	}