summaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
authorWarwick Allison <warwick.allison@nokia.com>2010-03-24 03:03:19 (GMT)
committerWarwick Allison <warwick.allison@nokia.com>2010-03-24 03:03:19 (GMT)
commit4d82dd604c4f6aedbf3ed0eabcf89d3dca3d0a88 (patch)
treed0dac934b956613d6bedefa79f90f6523b639c08 /src
parent838e4cc024f4589322d5279acd96e3ca4d00e1f5 (diff)
downloadQt-4d82dd604c4f6aedbf3ed0eabcf89d3dca3d0a88.zip
Qt-4d82dd604c4f6aedbf3ed0eabcf89d3dca3d0a88.tar.gz
Qt-4d82dd604c4f6aedbf3ed0eabcf89d3dca3d0a88.tar.bz2
Origin safety testing for imported resources.
Extends upon 95aa8c8fc76e2309a629b05994a2677b0887140b. Still under discussion.
Diffstat (limited to 'src')
-rw-r--r--src/declarative/graphicsitems/qdeclarativeloader.cpp5
-rw-r--r--src/declarative/qml/qdeclarativecompositetypemanager.cpp13
-rw-r--r--src/declarative/qml/qdeclarativecontext.cpp14
-rw-r--r--src/declarative/qml/qdeclarativeengine.cpp27
-rw-r--r--src/declarative/qml/qdeclarativeengine.h2
5 files changed, 48 insertions, 13 deletions
diff --git a/src/declarative/graphicsitems/qdeclarativeloader.cpp b/src/declarative/graphicsitems/qdeclarativeloader.cpp
index 3cbafd6..c0d316f 100644
--- a/src/declarative/graphicsitems/qdeclarativeloader.cpp
+++ b/src/declarative/graphicsitems/qdeclarativeloader.cpp
@@ -42,6 +42,7 @@
#include "qdeclarativeloader_p_p.h"
#include <qdeclarativeengine_p.h>
+#include <qdeclarativeinfo.h>
QT_BEGIN_NAMESPACE
@@ -185,8 +186,10 @@ void QDeclarativeLoader::setSource(const QUrl &url)
if (d->source == url)
return;
- if (!qmlContext(this)->isSafeOrigin(url))
+ if (!qmlContext(this)->isSafeOrigin(url)) {
+ qmlInfo(this) << tr("\"%1\" is not a safe origin from \"%2\"").arg(url).arg(qmlContext(this)->baseUrl());
return;
+ }
d->clear();
diff --git a/src/declarative/qml/qdeclarativecompositetypemanager.cpp b/src/declarative/qml/qdeclarativecompositetypemanager.cpp
index c59e5e2..5160514 100644
--- a/src/declarative/qml/qdeclarativecompositetypemanager.cpp
+++ b/src/declarative/qml/qdeclarativecompositetypemanager.cpp
@@ -539,6 +539,19 @@ int QDeclarativeCompositeTypeManager::resolveTypes(QDeclarativeCompositeTypeData
foreach (QDeclarativeScriptParser::Import imp, unit->data.imports()) {
+ if (imp.type != QDeclarativeScriptParser::Import::Library && !engine->isSafeOrigin(QUrl(imp.uri), unit->imports.baseUrl())) {
+ QDeclarativeError error;
+ error.setUrl(unit->imports.baseUrl());
+ error.setDescription(tr("\"%1\" is not a safe origin").arg(imp.uri));
+ error.setLine(imp.location.start.line);
+ error.setColumn(imp.location.start.column);
+ unit->status = QDeclarativeCompositeTypeData::Error;
+ unit->errorType = QDeclarativeCompositeTypeData::GeneralError;
+ unit->errors << error;
+ doComplete(unit);
+ return 0;
+ }
+
QDeclarativeDirComponents qmldircomponentsnetwork;
if (imp.type == QDeclarativeScriptParser::Import::Script)
continue;
diff --git a/src/declarative/qml/qdeclarativecontext.cpp b/src/declarative/qml/qdeclarativecontext.cpp
index ab3849a..f801a88 100644
--- a/src/declarative/qml/qdeclarativecontext.cpp
+++ b/src/declarative/qml/qdeclarativecontext.cpp
@@ -363,18 +363,8 @@ QVariant QDeclarativeContext::contextProperty(const QString &name) const
bool QDeclarativeContext::isSafeOrigin(const QUrl &src) const
{
- if (src.isRelative())
- return true;
- if (src.scheme()==QLatin1String("https"))
- return true;
-
- QUrl base = baseUrl();
- if (src.host() == base.host() && src.port() == base.port()) // including files (with no host)
- return true;
-
- qWarning() << src << "is not a safe origin from" << base;
-
- return false;
+ Q_D(const QDeclarativeContext);
+ return !d->data->engine || d->data->engine->isSafeOrigin(src, baseUrl());
}
/*!
diff --git a/src/declarative/qml/qdeclarativeengine.cpp b/src/declarative/qml/qdeclarativeengine.cpp
index d4872e2..d7f30d7 100644
--- a/src/declarative/qml/qdeclarativeengine.cpp
+++ b/src/declarative/qml/qdeclarativeengine.cpp
@@ -1883,6 +1883,33 @@ QString QDeclarativeEngine::offlineStoragePath() const
}
/*!
+ Returns whether \a to_url is considered safe content when reference by
+ content at \a from_url.
+
+ The default implementation implements:
+
+ \list
+ \i Relative URLs are safe
+ \i https content is safe
+ \i URLs from the same host and port are safe (including no-host)
+ \endlist
+
+ You should consider whether this convention is adequate for your pareticular application.
+*/
+bool QDeclarativeEngine::isSafeOrigin(const QUrl& to_url, const QUrl& from_url) const
+{
+ if (to_url.isRelative())
+ return true;
+ if (to_url.scheme()==QLatin1String("https"))
+ return true;
+
+ if (to_url.host() == from_url.host() && to_url.port() == from_url.port()) // including files (with no host)
+ return true;
+
+ return false;
+}
+
+/*!
\internal
Returns the result of the merge of \a baseName with \a dir, \a suffixes, and \a prefix.
diff --git a/src/declarative/qml/qdeclarativeengine.h b/src/declarative/qml/qdeclarativeengine.h
index 19e81b6..5c70b18 100644
--- a/src/declarative/qml/qdeclarativeengine.h
+++ b/src/declarative/qml/qdeclarativeengine.h
@@ -102,6 +102,8 @@ public:
static void setObjectOwnership(QObject *, ObjectOwnership);
static ObjectOwnership objectOwnership(QObject *);
+ virtual bool isSafeOrigin(const QUrl& to_url, const QUrl& from_url) const;
+
Q_SIGNALS:
void quit ();