LocalCDN-Firefox-Chrome-Brave/core/manipulate-dom.js

/**
 * Remove integrity checks from embedded CSS and JavaScript files
 * Belongs to LocalCDN.
 *
 * @author      nobody42
 * @since       2020-02-27
 *
 * @license     MPL 2.0
 *
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this file,
 * You can obtain one at http://mozilla.org/MPL/2.0/.
 */

'use strict';


/**
 * Manipulate DOM
 */

var manipulateDOM = {};


/**
 * Private Methods
 */

manipulateDOM._removeCrossOriginAndIntegrityAttr = function (details) {


    let initiatorDomain, listedToManipulateDOM;
    initiatorDomain = helpers.extractDomainFromUrl(details.url, true) || Address.EXAMPLE;
    listedToManipulateDOM = stateManager._domainIsListed(initiatorDomain, "manipulate-dom");

    // by Jaap (https://gitlab.com/Jaaap)
    let header = details.responseHeaders.find(h => h.name.toLowerCase() === 'content-type');

    if (header && BrowserType.FIREFOX && listedToManipulateDOM) {

        let mimeType, isWhitelisted;

        mimeType = header.value.replace(/;.*/, '').toLowerCase();
        isWhitelisted = stateManager._domainIsListed(initiatorDomain);

        if (!isWhitelisted && mimeType === 'text/html') {

            let asciiDecoder, decoder, encoder, charset, isFirstData, filter;

            charset = /charset\s*=/.test(header.value) && header.value.replace(/^.*?charset\s*=\s*/, '').replace(/["']?/g, '');

            // Check if charset is supported by TextDecoder()
            if(/charset\s*=/.test(header.value) && !EncodingTypes[charset.toString().toLowerCase()]){
                console.error('[ LocalCDN ] Unsupported charset: ' + charset);
                return;
            }

            asciiDecoder = new TextDecoder('ASCII');
            encoder = new TextEncoder();
            isFirstData = true;
            filter = browser.webRequest.filterResponseData(details.requestId);

            header.value = 'text/html; charset=UTF-8';

            //Note that this will not work if the '<script crossorigin="anonymous" src="dfgsfgd.com">' string is divided into two chunks, but we want to flush this data asap.
            filter.ondata = evt => {
                if (isFirstData) {
                    if (!charset) {
                        //content-type has no charset declared
                        let htmlHead = asciiDecoder.decode(evt.data, {stream: false});
                        let charsetMatch = htmlHead.match(/<meta.*charset=["']?([^>"'\/]+)["'].*[>\/]/i);
                        charset = charsetMatch ? charsetMatch[1] : "UTF-8";
                    }
                    decoder = new TextDecoder(charset);
                }
                //remove crossorigin and integrity attributes
                let str = decoder.decode(evt.data, {stream: true}).replace(/<(link|script)[^>]+>/ig, m => {
                    if (cdnDomainsRE.test(m)) {
                        return m.replace(/\s+(integrity|crossorigin)(="[^"]*"|='[^']*'|=[^"'`=\s]+|)/ig, '');
                    }
                    return m;
                });
                filter.write(encoder.encode(str));
                isFirstData = false;
            }

            filter.onstop = evt => {
                let str = decoder.decode(); //end-of-stream
                filter.write(encoder.encode(str));
                filter.close();
            }
        }
        return {responseHeaders: details.responseHeaders};

    } else if(BrowserType.CHROMIUM) {

        // Chromium browsers do not support webRequest.filterResponseData
        // https://bugs.chromium.org/p/chromium/issues/detail?id=487422
        console.warn('[ LocalCDN ] browser.webRequest.filterResponseData not supported by your browser.');

    }
};


/**
 * Initializations
 */

 let whitelistedDomains = {};
 let cdnDomainsRE = new RegExp('//(' + Object.keys(mappings).map(m => m.replace(/\W/g, '\\$&')).join('|') + ')/');


/**
* Event Handlers
*/

chrome.webRequest.onHeadersReceived.addListener(
    manipulateDOM._removeCrossOriginAndIntegrityAttr,
    {'types': [WebRequestType.MAIN_FRAME], 'urls': [Address.ANY]},
    [WebRequest.BLOCKING, WebRequest.RESPONSE_HEADERS]
);
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`/**`
			`* Remove integrity checks from embedded CSS and JavaScript files`
			`* Belongs to LocalCDN.`
			`*`
			`* @author nobody42`
			`* @since 2020-02-27`
			`*`
			`* @license MPL 2.0`
			`*`
			`* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this file,`
			`* You can obtain one at http://mozilla.org/MPL/2.0/.`
			`*/`

			`'use strict';`


			`/**`
			`* Manipulate DOM`
			`*/`

			`var manipulateDOM = {};`


			`/**`
			`* Private Methods`
			`*/`

			`manipulateDOM._removeCrossOriginAndIntegrityAttr = function (details) {`

Check if domain in list to manipulate DOM (#1) 2020-05-25 22:53:46 +02:00
			`let initiatorDomain, listedToManipulateDOM;`
			`initiatorDomain = helpers.extractDomainFromUrl(details.url, true) \|\| Address.EXAMPLE;`
Fixed error when querying from list to manipulate DOM 2020-05-27 18:33:29 +02:00			`listedToManipulateDOM = stateManager._domainIsListed(initiatorDomain, "manipulate-dom");`
Check if domain in list to manipulate DOM (#1) 2020-05-25 22:53:46 +02:00
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`// by Jaap (https://gitlab.com/Jaaap)`
			`let header = details.responseHeaders.find(h => h.name.toLowerCase() === 'content-type');`

Check if domain in list to manipulate DOM (#1) 2020-05-25 22:53:46 +02:00			`if (header && BrowserType.FIREFOX && listedToManipulateDOM) {`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00
Check if domain in list to manipulate DOM (#1) 2020-05-25 22:53:46 +02:00			`let mimeType, isWhitelisted;`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00
			`mimeType = header.value.replace(/;.*/, '').toLowerCase();`
Method domainIsWhitelisted renamed to domainIsListed 2020-05-26 20:26:15 +02:00			`isWhitelisted = stateManager._domainIsListed(initiatorDomain);`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00
			`if (!isWhitelisted && mimeType === 'text/html') {`

Fixed typo in manipulate-dom.js 2020-05-19 17:38:07 +02:00			`let asciiDecoder, decoder, encoder, charset, isFirstData, filter;`
Second decoder implemented 2020-05-19 17:26:16 +02:00
Identify correct charset if its in quotation mark 2020-05-21 19:44:33 +02:00			`charset = /charset\s=/.test(header.value) && header.value.replace(/^.?charset\s=\s/, '').replace(/["']?/g, '');`
Check if charset is supported by TextDecoder 2020-05-22 07:19:01 +02:00
			`// Check if charset is supported by TextDecoder()`
Updated charset check 2020-05-23 16:56:16 +02:00			`if(/charset\s*=/.test(header.value) && !EncodingTypes[charset.toString().toLowerCase()]){`
			`console.error('[ LocalCDN ] Unsupported charset: ' + charset);`
			`return;`
Check if charset is supported by TextDecoder 2020-05-22 07:19:01 +02:00			`}`

Updated charset check 2020-05-23 16:56:16 +02:00			`asciiDecoder = new TextDecoder('ASCII');`
			`encoder = new TextEncoder();`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`isFirstData = true;`
			`filter = browser.webRequest.filterResponseData(details.requestId);`

Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`header.value = 'text/html; charset=UTF-8';`

			`//Note that this will not work if the '<script crossorigin="anonymous" src="dfgsfgd.com">' string is divided into two chunks, but we want to flush this data asap.`
			`filter.ondata = evt => {`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`if (isFirstData) {`
			`if (!charset) {`
			`//content-type has no charset declared`
			`let htmlHead = asciiDecoder.decode(evt.data, {stream: false});`
Improved charset detection in HTML source code 2020-05-25 06:19:17 +02:00			`let charsetMatch = htmlHead.match(/<meta.charset=["']?([^>"'\/]+)["'].[>\/]/i);`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`charset = charsetMatch ? charsetMatch[1] : "UTF-8";`
			`}`
			`decoder = new TextDecoder(charset);`
			`}`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`//remove crossorigin and integrity attributes`
			`let str = decoder.decode(evt.data, {stream: true}).replace(/<(link\|script)[^>]+>/ig, m => {`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`if (cdnDomainsRE.test(m)) {`
			return m.replace(/\s+(integrity\|crossorigin)(="[^"]"\|='[^']'\|=[^"'`=\s]+\|)/ig, '');
			`}`
			`return m;`
			`});`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`filter.write(encoder.encode(str));`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`isFirstData = false;`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`}`

			`filter.onstop = evt => {`
			`let str = decoder.decode(); //end-of-stream`
			`filter.write(encoder.encode(str));`
			`filter.close();`
			`}`
			`}`
Return statement moved (#66) 2020-05-03 07:32:08 +02:00			`return {responseHeaders: details.responseHeaders};`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00
			`} else if(BrowserType.CHROMIUM) {`

			`// Chromium browsers do not support webRequest.filterResponseData`
			`// https://bugs.chromium.org/p/chromium/issues/detail?id=487422`
			`console.warn('[ LocalCDN ] browser.webRequest.filterResponseData not supported by your browser.');`

			`}`
			`};`


			`/**`
			`* Initializations`
			`*/`

			`let whitelistedDomains = {};`
			`let cdnDomainsRE = new RegExp('//(' + Object.keys(mappings).map(m => m.replace(/\W/g, '\\$&')).join('\|') + ')/');`


			`/**`
			`* Event Handlers`
			`*/`

			`chrome.webRequest.onHeadersReceived.addListener(`
			`manipulateDOM._removeCrossOriginAndIntegrityAttr,`
			`{'types': [WebRequestType.MAIN_FRAME], 'urls': [Address.ANY]},`
Second decoder implemented 2020-05-19 17:26:16 +02:00			`[WebRequest.BLOCKING, WebRequest.RESPONSE_HEADERS]`
Error in encoding fixed (#66) 2020-05-02 13:56:49 +02:00			`);`