1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "content/renderer/pepper/content_renderer_pepper_host_factory.h"
#include <utility>
#include "base/logging.h"
#include "base/memory/ptr_util.h"
#include "base/strings/string_util.h"
#include "build/build_config.h"
#include "content/common/content_switches_internal.h"
#include "content/public/common/content_client.h"
#include "content/public/renderer/content_renderer_client.h"
#include "content/renderer/pepper/pepper_audio_encoder_host.h"
#include "content/renderer/pepper/pepper_audio_input_host.h"
#include "content/renderer/pepper/pepper_audio_output_host.h"
#include "content/renderer/pepper/pepper_camera_device_host.h"
#include "content/renderer/pepper/pepper_compositor_host.h"
#include "content/renderer/pepper/pepper_file_chooser_host.h"
#include "content/renderer/pepper/pepper_file_ref_renderer_host.h"
#include "content/renderer/pepper/pepper_file_system_host.h"
#include "content/renderer/pepper/pepper_graphics_2d_host.h"
#include "content/renderer/pepper/pepper_media_stream_video_track_host.h"
#include "content/renderer/pepper/pepper_plugin_instance_impl.h"
#include "content/renderer/pepper/pepper_url_loader_host.h"
#include "content/renderer/pepper/pepper_video_capture_host.h"
#include "content/renderer/pepper/pepper_video_decoder_host.h"
#include "content/renderer/pepper/pepper_video_destination_host.h"
#include "content/renderer/pepper/pepper_video_encoder_host.h"
#include "content/renderer/pepper/pepper_video_source_host.h"
#include "content/renderer/pepper/pepper_websocket_host.h"
#include "content/renderer/pepper/ppb_image_data_impl.h"
#include "content/renderer/pepper/renderer_ppapi_host_impl.h"
#include "media/media_features.h"
#include "ppapi/host/resource_host.h"
#include "ppapi/proxy/ppapi_message_utils.h"
#include "ppapi/proxy/ppapi_messages.h"
#include "ppapi/proxy/serialized_structs.h"
#include "ppapi/shared_impl/ppb_image_data_shared.h"
#include "services/service_manager/sandbox/switches.h"
#include "third_party/WebKit/public/platform/WebURL.h"
#include "third_party/WebKit/public/web/WebDocument.h"
#include "third_party/WebKit/public/web/WebPluginContainer.h"
#if defined(OS_WIN)
#include "base/win/windows_version.h"
#endif
using ppapi::host::ResourceHost;
using ppapi::UnpackMessage;
namespace content {
namespace {
#if BUILDFLAG(ENABLE_WEBRTC)
bool CanUseMediaStreamAPI(const RendererPpapiHost* host, PP_Instance instance) {
blink::WebPluginContainer* container =
host->GetContainerForInstance(instance);
if (!container)
return false;
GURL document_url = container->GetDocument().Url();
ContentRendererClient* content_renderer_client =
GetContentClient()->renderer();
return content_renderer_client->AllowPepperMediaStreamAPI(document_url);
}
#endif // BUILDFLAG(ENABLE_WEBRTC)
static bool CanUseCameraDeviceAPI(const RendererPpapiHost* host,
PP_Instance instance) {
blink::WebPluginContainer* container =
host->GetContainerForInstance(instance);
if (!container)
return false;
GURL document_url = container->GetDocument().Url();
ContentRendererClient* content_renderer_client =
GetContentClient()->renderer();
return content_renderer_client->IsPluginAllowedToUseCameraDeviceAPI(
document_url);
}
bool CanUseCompositorAPI(const RendererPpapiHost* host, PP_Instance instance) {
blink::WebPluginContainer* container =
host->GetContainerForInstance(instance);
if (!container)
return false;
GURL document_url = container->GetDocument().Url();
ContentRendererClient* content_renderer_client =
GetContentClient()->renderer();
return content_renderer_client->IsPluginAllowedToUseCompositorAPI(
document_url);
}
} // namespace
ContentRendererPepperHostFactory::ContentRendererPepperHostFactory(
RendererPpapiHostImpl* host)
: host_(host) {}
ContentRendererPepperHostFactory::~ContentRendererPepperHostFactory() {}
std::unique_ptr<ResourceHost>
ContentRendererPepperHostFactory::CreateResourceHost(
ppapi::host::PpapiHost* host,
PP_Resource resource,
PP_Instance instance,
const IPC::Message& message) {
DCHECK(host == host_->GetPpapiHost());
// Make sure the plugin is giving us a valid instance for this resource.
if (!host_->IsValidInstance(instance))
return nullptr;
PepperPluginInstanceImpl* instance_impl =
host_->GetPluginInstanceImpl(instance);
if (!instance_impl->render_frame())
return nullptr;
// Public interfaces.
switch (message.type()) {
case PpapiHostMsg_Compositor_Create::ID: {
if (!CanUseCompositorAPI(host_, instance))
return nullptr;
return std::make_unique<PepperCompositorHost>(host_, instance, resource);
}
case PpapiHostMsg_FileRef_CreateForFileAPI::ID: {
PP_Resource file_system;
std::string internal_path;
if (!UnpackMessage<PpapiHostMsg_FileRef_CreateForFileAPI>(
message, &file_system, &internal_path)) {
NOTREACHED();
return nullptr;
}
return std::make_unique<PepperFileRefRendererHost>(
host_, instance, resource, file_system, internal_path);
}
case PpapiHostMsg_FileSystem_Create::ID: {
PP_FileSystemType file_system_type;
if (!UnpackMessage<PpapiHostMsg_FileSystem_Create>(message,
&file_system_type)) {
NOTREACHED();
return nullptr;
}
return std::make_unique<PepperFileSystemHost>(host_, instance, resource,
file_system_type);
}
case PpapiHostMsg_Graphics2D_Create::ID: {
PP_Size size;
PP_Bool is_always_opaque;
if (!UnpackMessage<PpapiHostMsg_Graphics2D_Create>(
message, &size, &is_always_opaque)) {
NOTREACHED();
return nullptr;
}
ppapi::PPB_ImageData_Shared::ImageDataType image_type =
ppapi::PPB_ImageData_Shared::PLATFORM;
#if defined(OS_WIN)
// If Win32K lockdown mitigations are enabled for Windows 8 and beyond
// we use the SIMPLE image data type as the PLATFORM image data type
// calls GDI functions to create DIB sections etc which fail in Win32K
// lockdown mode.
// TODO(ananta)
// Look into whether this causes a loss of functionality. From cursory
// testing things seem to work well.
if (service_manager::IsWin32kLockdownEnabled())
image_type = ppapi::PPB_ImageData_Shared::SIMPLE;
#endif
scoped_refptr<PPB_ImageData_Impl> image_data(new PPB_ImageData_Impl(
instance, image_type));
return base::WrapUnique(PepperGraphics2DHost::Create(
host_, instance, resource, size, is_always_opaque, image_data));
}
case PpapiHostMsg_URLLoader_Create::ID:
return std::make_unique<PepperURLLoaderHost>(host_, false, instance,
resource);
case PpapiHostMsg_VideoDecoder_Create::ID:
return std::make_unique<PepperVideoDecoderHost>(host_, instance,
resource);
case PpapiHostMsg_VideoEncoder_Create::ID:
return std::make_unique<PepperVideoEncoderHost>(host_, instance,
resource);
case PpapiHostMsg_WebSocket_Create::ID:
return std::make_unique<PepperWebSocketHost>(host_, instance, resource);
#if BUILDFLAG(ENABLE_WEBRTC)
case PpapiHostMsg_MediaStreamVideoTrack_Create::ID:
return std::make_unique<PepperMediaStreamVideoTrackHost>(host_, instance,
resource);
// These private MediaStream interfaces are exposed as if they were public
// so they can be used by NaCl plugins. However, they are available only
// for whitelisted apps.
case PpapiHostMsg_VideoDestination_Create::ID:
if (CanUseMediaStreamAPI(host_, instance))
return std::make_unique<PepperVideoDestinationHost>(host_, instance,
resource);
case PpapiHostMsg_VideoSource_Create::ID:
if (CanUseMediaStreamAPI(host_, instance))
return std::make_unique<PepperVideoSourceHost>(host_, instance,
resource);
#endif // BUILDFLAG(ENABLE_WEBRTC)
}
// Dev interfaces.
if (GetPermissions().HasPermission(ppapi::PERMISSION_DEV)) {
switch (message.type()) {
case PpapiHostMsg_AudioEncoder_Create::ID:
return std::make_unique<PepperAudioEncoderHost>(host_, instance,
resource);
case PpapiHostMsg_AudioInput_Create::ID:
return std::make_unique<PepperAudioInputHost>(host_, instance,
resource);
case PpapiHostMsg_AudioOutput_Create::ID:
return std::make_unique<PepperAudioOutputHost>(host_, instance,
resource);
case PpapiHostMsg_FileChooser_Create::ID:
return std::make_unique<PepperFileChooserHost>(host_, instance,
resource);
case PpapiHostMsg_VideoCapture_Create::ID: {
std::unique_ptr<PepperVideoCaptureHost> host(
new PepperVideoCaptureHost(host_, instance, resource));
return host->Init() ? std::move(host) : nullptr;
}
}
}
// Permissions of the following interfaces are available for whitelisted apps
// which may not have access to the other private interfaces.
if (message.type() == PpapiHostMsg_CameraDevice_Create::ID) {
if (!GetPermissions().HasPermission(ppapi::PERMISSION_PRIVATE) &&
!CanUseCameraDeviceAPI(host_, instance))
return nullptr;
std::unique_ptr<PepperCameraDeviceHost> host(
new PepperCameraDeviceHost(host_, instance, resource));
return host->Init() ? std::move(host) : nullptr;
}
return nullptr;
}
const ppapi::PpapiPermissions&
ContentRendererPepperHostFactory::GetPermissions() const {
return host_->GetPpapiHost()->permissions();
}
} // namespace content
|
