1 const char killpopup_rcs[] = "$Id: killpopup.c,v 1.13 2001/11/13 00:16:40 jongfoster Exp $";
2 /*********************************************************************
4 * File : $Source: /cvsroot/ijbswa/current/killpopup.c,v $
6 * Purpose : Handles the filtering of popups.
8 * Copyright : Written by and Copyright (C) 2001 the SourceForge
9 * IJBSWA team. http://ijbswa.sourceforge.net
11 * Based on the Internet Junkbuster originally written
12 * by and Copyright (C) 1997 Anonymous Coders and
13 * Junkbusters Corporation. http://www.junkbusters.com
15 * This program is free software; you can redistribute it
16 * and/or modify it under the terms of the GNU General
17 * Public License as published by the Free Software
18 * Foundation; either version 2 of the License, or (at
19 * your option) any later version.
21 * This program is distributed in the hope that it will
22 * be useful, but WITHOUT ANY WARRANTY; without even the
23 * implied warranty of MERCHANTABILITY or FITNESS FOR A
24 * PARTICULAR PURPOSE. See the GNU General Public
25 * License for more details.
27 * The GNU General Public License should be included with
28 * this file. If not, you can view it at
29 * http://www.gnu.org/copyleft/gpl.html
30 * or write to the Free Software Foundation, Inc., 59
31 * Temple Place - Suite 330, Boston, MA 02111-1307, USA.
34 * $Log: killpopup.c,v $
35 * Revision 1.13 2001/11/13 00:16:40 jongfoster
36 * Replacing references to malloc.h with the standard stdlib.h
37 * (See ANSI or K&R 2nd Ed)
39 * Revision 1.12 2001/10/25 03:40:48 david__schmidt
40 * Change in porting tactics: OS/2's EMX porting layer doesn't allow multiple
41 * threads to call select() simultaneously. So, it's time to do a real, live,
42 * native OS/2 port. See defines for __EMX__ (the porting layer) vs. __OS2__
43 * (native). Both versions will work, but using __OS2__ offers multi-threading.
45 * Revision 1.11 2001/10/07 15:42:41 oes
46 * filter_popups now gets a csp pointer so it can raise the new
47 * CSP_FLAG_MODIFIED flag.
49 * Revision 1.10 2001/09/22 16:34:44 jongfoster
50 * Removing unneeded #includes
52 * Revision 1.9 2001/07/31 14:44:22 oes
53 * Deleted unused size parameter from filter_popups()
55 * Revision 1.8 2001/07/30 22:08:36 jongfoster
56 * Tidying up #defines:
57 * - All feature #defines are now of the form FEATURE_xxx
58 * - Permanently turned off WIN_GUI_EDIT
59 * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS
61 * Revision 1.7 2001/07/20 19:29:25 haroon
62 * - In v1.5 forgot to add that I implemented LOG_LEVEL_POPUPS in errlog.c,
63 * errlog.h and killpopup.c. In that case, it is superfluous to have define for
64 * POPUP_VERBOSE, so I removed the defines and logging is now done
65 * via log_error(LOG_LEVEL_POPUPS, ....)
67 * Revision 1.6 2001/07/19 19:11:35 haroon
68 * - Implemented Guy's idea of replacing window.open( with 1;''.concat(
69 * - Implemented Guy's idea of replacing .resizeTo( with .scrollTo(
71 * Revision 1.5 2001/07/18 15:02:52 haroon
72 * improved nuking of window.open
74 * Revision 1.4 2001/06/29 13:29:55 oes
75 * Added FIXMEs (and didn't repair, hehe)
77 * Revision 1.3 2001/05/22 18:56:28 oes
80 * Revision 1.2 2001/05/20 01:21:20 jongfoster
81 * Version 2.9.4 checkin.
82 * - Merged popupfile and cookiefile, and added control over PCRS
83 * filtering, in new "permissionsfile".
84 * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration
85 * file error you now get a message box (in the Win32 GUI) rather
86 * than the program exiting with no explanation.
87 * - Made killpopup use the PCRS MIME-type checking and HTTP-header
89 * - Removed tabs from "config"
90 * - Moved duplicated url parsing code in "loaders.c" to a new funcition.
91 * - Bumped up version number.
93 * Revision 1.1.1.1 2001/05/15 13:58:58 oes
94 * Initial import of version 2.9.3 source tree
97 *********************************************************************/
104 #include <sys/types.h>
107 #include <sys/stat.h>
110 #if !defined(_WIN32) && !defined(__OS2__)
115 #include "killpopup.h"
118 const char killpopup_h_rcs[] = KILLPOPUP_H_VERSION;
120 #ifdef FEATURE_KILL_POPUPS
122 /*********************************************************************
124 * Function : filter_popups
126 * Description : Filter the block of data that's been read from the server
127 * for javascript popup code and replace by syntactically
128 * neutral code of the same size.
129 * Raise the CSP_FLAG_MODIFIED flag on success.
132 * 1 : buff = Buffer to scan and modify. Null terminated.
133 * 2 : csp = Client state pointer
137 *********************************************************************/
138 void filter_popups(char *buff, struct client_state *csp)
140 char *start_p = NULL;
141 char *close_p = NULL;
145 * replace the window.open( with a harmless JavaScript replacement
146 * (notice the two single quotes)
148 while ((start_p = strstr(buff, "window.open(")) != NULL)
152 strncpy(start_p, "1;''.concat(", 12);
153 log_error(LOG_LEVEL_POPUPS, "Blocked popup window open");
154 csp->flags |= CSP_FLAG_MODIFIED;
159 * replace the .resizeTo( with a harmless JavaScript replacement
161 while ((start_p = strstr(buff, ".resizeTo(")) != NULL)
165 strncpy(start_p, ".scrollTo(", 10);
166 log_error(LOG_LEVEL_POPUPS, "Blocked popup window resize");
167 csp->flags |= CSP_FLAG_MODIFIED;
172 * Filter onUnload and onExit
174 start_p = strstr(buff, "<body");
175 if (!start_p) start_p = strstr(buff, "<BODY");
176 if (!start_p) start_p = strstr(buff, "<Body");
177 if (!start_p) start_p = strstr(buff, "<BOdy");
180 close_p = strchr(start_p, '>');
183 /* we are now between <body and the ending > */
184 p = strstr(start_p, "onUnload");
187 strncpy(p, "_nU_", 4);
188 csp->flags |= CSP_FLAG_MODIFIED;
190 p = strstr(start_p, "onExit");
193 strncpy(p, "_nE_", 4);
194 csp->flags |= CSP_FLAG_MODIFIED;
201 #endif /* def FEATURE_KILL_POPUPS */