diff options
| author | Ivo Hinkelmann <ihi@openoffice.org> | 2007-11-21 15:46:49 +0000 |
|---|---|---|
| committer | Ivo Hinkelmann <ihi@openoffice.org> | 2007-11-21 15:46:49 +0000 |
| commit | 4d31ba8dd4a7d8c7df5a881c89650a9ff79ebf6b (patch) | |
| tree | 22192c24d8151a527d9847326ccebed59f320d78 /sfx2/source/doc/docmacromode.cxx | |
| parent | 3cc3f3bce85dee1e816d6844673a00c86eb8e1be (diff) | |
INTEGRATION: CWS dba24c (1.1.2); FILE ADDED
2007/10/24 10:24:25 fs 1.1.2.6: corrected hasMacroLibrary
2007/10/24 06:34:25 fs 1.1.2.5: #i10000#
2007/10/22 10:23:16 fs 1.1.2.4: #i52527#/#i73705#: checkForBrokenScriptingSignature->showBrokenSignatureWarning
2007/10/22 08:22:46 fs 1.1.2.3: #i52527#/#i73705#: allow getEmbeddedDocumentScripts to return NULL for the moment (DB docs do not yet have it)
2007/10/18 09:22:46 fs 1.1.2.2: in preparation of #i52527#/#i73705#: outsourced more code from SfxObjectShell into the dedicated DocumentMacroMode class
2007/10/16 08:21:52 fs 1.1.2.1: in preparation of #i52527# #i73705#: outsourced the object shell's MacroExecutionMode handling to a dedicated class
Diffstat (limited to 'sfx2/source/doc/docmacromode.cxx')
| -rw-r--r-- | sfx2/source/doc/docmacromode.cxx | 518 |
1 files changed, 518 insertions, 0 deletions
diff --git a/sfx2/source/doc/docmacromode.cxx b/sfx2/source/doc/docmacromode.cxx new file mode 100644 index 000000000000..7f37941a392a --- /dev/null +++ b/sfx2/source/doc/docmacromode.cxx @@ -0,0 +1,518 @@ +/************************************************************************* + * + * OpenOffice.org - a multi-platform office productivity suite + * + * $RCSfile: docmacromode.cxx,v $ + * + * $Revision: 1.2 $ + * + * last change: $Author: ihi $ $Date: 2007-11-21 16:46:49 $ + * + * The Contents of this file are made available subject to + * the terms of GNU Lesser General Public License Version 2.1. + * + * + * GNU Lesser General Public License Version 2.1 + * ============================================= + * Copyright 2005 by Sun Microsystems, Inc. + * 901 San Antonio Road, Palo Alto, CA 94303, USA + * + * This library is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License version 2.1, as published by the Free Software Foundation. + * + * This library is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public + * License along with this library; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place, Suite 330, Boston, + * MA 02111-1307 USA + * + ************************************************************************/ + +// MARKER(update_precomp.py): autogen include statement, do not remove +#include "precompiled_sfx2.hxx" + +#include "sfx2/docmacromode.hxx" +#include "sfx2/signaturestate.hxx" + +/** === begin UNO includes === **/ +#include <com/sun/star/document/MacroExecMode.hpp> +#include <com/sun/star/task/ErrorCodeRequest.hpp> +#include <com/sun/star/task/DocumentMacroConfirmationRequest.hpp> +#include <com/sun/star/task/InteractionClassification.hpp> +#include <com/sun/star/security/XDocumentDigitalSignatures.hpp> +/** === end UNO includes === **/ + +#include <comphelper/componentcontext.hxx> +#include <comphelper/processfactory.hxx> +#include <framework/interaction.hxx> +#include <osl/file.hxx> +#include <rtl/ref.hxx> +#include <svtools/securityoptions.hxx> +#include <svtools/sfxecode.hxx> +#include <tools/diagnose_ex.h> +#include <tools/urlobj.hxx> + +//........................................................................ +namespace sfx2 +{ +//........................................................................ + + /** === begin UNO using === **/ + using ::com::sun::star::uno::Reference; + using ::com::sun::star::task::XInteractionHandler; + using ::com::sun::star::uno::Any; + using ::com::sun::star::task::XInteractionHandler; + using ::com::sun::star::uno::Sequence; + using ::com::sun::star::task::XInteractionContinuation; + using ::com::sun::star::task::XInteractionRequest; + using ::com::sun::star::task::DocumentMacroConfirmationRequest; + using ::com::sun::star::task::ErrorCodeRequest; + using ::com::sun::star::uno::Exception; + using ::com::sun::star::security::XDocumentDigitalSignatures; + using ::com::sun::star::security::DocumentSignatureInformation; + using ::com::sun::star::embed::XStorage; + using ::com::sun::star::task::InteractionClassification_QUERY; + using ::com::sun::star::document::XEmbeddedScripts; + using ::com::sun::star::uno::UNO_SET_THROW; + using ::com::sun::star::script::XLibraryContainer; + using ::com::sun::star::container::XNameAccess; + using ::com::sun::star::uno::UNO_QUERY_THROW; + /** === end UNO using === **/ + namespace MacroExecMode = ::com::sun::star::document::MacroExecMode; + + //==================================================================== + //= DocumentMacroMode_Data + //==================================================================== + struct DocumentMacroMode_Data + { + IMacroDocumentAccess& rDocumentAccess; + sal_Int16 nMacroExecutionMode; + bool bMacroDisabledMessageShown; + bool bDocMacroDisabledMessageShown; + + DocumentMacroMode_Data( IMacroDocumentAccess& _rDocumentAccess ) + :rDocumentAccess( _rDocumentAccess ) + ,nMacroExecutionMode( -1 ) // "not initialized" + ,bMacroDisabledMessageShown( false ) + ,bDocMacroDisabledMessageShown( false ) + { + } + }; + + //==================================================================== + //= helper + //==================================================================== + namespace + { + //................................................................ + /** calls the given interaction handler with the given interaction request, offering + the two continuations "Approve" and "Abort" + + @return + <TRUE/> if and only if the given handler handled the the request, and the "Approve" + continuation was selected. + */ + bool lcl_callInterActionHandler( const Reference< XInteractionHandler >& _rxHandler, const Any& _rRequest ) + { + if ( !_rxHandler.is() ) + return false; + + try + { + Sequence< Reference< XInteractionContinuation > > aContinuations(2); + + ::rtl::Reference< ::framework::ContinuationAbort > pAbort( new ::framework::ContinuationAbort() ); + aContinuations[ 0 ] = pAbort.get(); + + ::rtl::Reference< ::framework::ContinuationApprove > pApprove( new ::framework::ContinuationApprove() ); + aContinuations[ 1 ] = pApprove.get(); + + Reference< XInteractionRequest > xRequest( new ::framework::InteractionRequest( _rRequest, aContinuations ) ); + _rxHandler->handle( xRequest ); + + if ( pApprove->isSelected() ) + return true; + } + catch( const Exception& ) + { + DBG_UNHANDLED_EXCEPTION(); + } + return false; + } + + //................................................................ + void lcl_showGeneralSfxErrorOnce( const Reference< XInteractionHandler >& _rxHandler, const sal_Int32 _nSfxErrorCode, bool& _rbAlreadyShown ) + { + if ( _rbAlreadyShown ) + return; + + ErrorCodeRequest aErrorCodeRequest; + aErrorCodeRequest.ErrCode = _nSfxErrorCode; + + _rbAlreadyShown = lcl_callInterActionHandler( _rxHandler, makeAny( aErrorCodeRequest ) ); + } + + //................................................................ + void lcl_showMacrosDisabledError( const Reference< XInteractionHandler >& _rxHandler, bool& _rbAlreadyShown ) + { + lcl_showGeneralSfxErrorOnce( _rxHandler, ERRCODE_SFX_MACROS_SUPPORT_DISABLED, _rbAlreadyShown ); + } + + //................................................................ + void lcl_showDocumentMacrosDisabledError( const Reference< XInteractionHandler >& _rxHandler, bool& _rbAlreadyShown ) + { + lcl_showGeneralSfxErrorOnce( _rxHandler, ERRCODE_SFX_DOCUMENT_MACRO_DISABLED, _rbAlreadyShown ); + } + + //................................................................ + bool lcl_showMacroWarning( const Reference< XInteractionHandler >& _rxHandler, + const ::rtl::OUString& _rDocumentLocation ) + { + DocumentMacroConfirmationRequest aRequest; + aRequest.DocumentURL = _rDocumentLocation; + return lcl_callInterActionHandler( _rxHandler, makeAny( aRequest ) ); + } + + //................................................................ + bool lcl_showMacroWarning( const Reference< XInteractionHandler >& _rxHandler, + const ::rtl::OUString& _rDocumentLocation, const Reference< XStorage >& _rxDocStor, + const Sequence< DocumentSignatureInformation >& _rDocSigInfo ) + { + DocumentMacroConfirmationRequest aRequest; + aRequest.DocumentURL = _rDocumentLocation; + aRequest.DocumentStorage = _rxDocStor; + aRequest.DocumentSignatureInformation = _rDocSigInfo; + aRequest.Classification = InteractionClassification_QUERY; + return lcl_callInterActionHandler( _rxHandler, makeAny( aRequest ) ); + } + } + + //==================================================================== + //= DocumentMacroMode + //==================================================================== + //-------------------------------------------------------------------- + DocumentMacroMode::DocumentMacroMode( IMacroDocumentAccess& _rDocumentAccess ) + :m_pData( new DocumentMacroMode_Data( _rDocumentAccess ) ) + { + } + + //-------------------------------------------------------------------- + DocumentMacroMode::~DocumentMacroMode() + { + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::allowMacroExecution() + { + m_pData->nMacroExecutionMode = MacroExecMode::ALWAYS_EXECUTE_NO_WARN; + return true; + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::disallowMacroExecution() + { + m_pData->nMacroExecutionMode = MacroExecMode::NEVER_EXECUTE; + return false; + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::adjustMacroMode( const Reference< XInteractionHandler >& _rxInteraction ) + { + if ( m_pData->nMacroExecutionMode < 0 ) // "not initialized" + m_pData->nMacroExecutionMode = m_pData->rDocumentAccess.getImposedMacroExecMode(); + + if ( SvtSecurityOptions().IsMacroDisabled() ) + { + // no macro should be executed at all + lcl_showMacrosDisabledError( _rxInteraction, m_pData->bMacroDisabledMessageShown ); + return disallowMacroExecution(); + } + + // get setting from configuration if required + enum AutoConfirmation + { + eNoAutoConfirm, + eAutoConfirmApprove, + eAutoConfirmReject + }; + AutoConfirmation eAutoConfirm( eNoAutoConfirm ); + + if ( ( m_pData->nMacroExecutionMode == MacroExecMode::USE_CONFIG ) + || ( m_pData->nMacroExecutionMode == MacroExecMode::USE_CONFIG_REJECT_CONFIRMATION ) + || ( m_pData->nMacroExecutionMode == MacroExecMode::USE_CONFIG_APPROVE_CONFIRMATION ) + ) + { + SvtSecurityOptions aOpt; + switch ( aOpt.GetMacroSecurityLevel() ) + { + case 3: + m_pData->nMacroExecutionMode = MacroExecMode::FROM_LIST_NO_WARN; + break; + case 2: + m_pData->nMacroExecutionMode = MacroExecMode::FROM_LIST_AND_SIGNED_WARN; + break; + case 1: + m_pData->nMacroExecutionMode = MacroExecMode::ALWAYS_EXECUTE; + break; + case 0: + m_pData->nMacroExecutionMode = MacroExecMode::ALWAYS_EXECUTE_NO_WARN; + break; + default: + OSL_ENSURE( false, "DocumentMacroMode::adjustMacroMode: unexpected macro security level!" ); + m_pData->nMacroExecutionMode = MacroExecMode::NEVER_EXECUTE; + } + + if ( m_pData->nMacroExecutionMode == MacroExecMode::USE_CONFIG_REJECT_CONFIRMATION ) + eAutoConfirm = eAutoConfirmReject; + else if ( m_pData->nMacroExecutionMode == MacroExecMode::USE_CONFIG_APPROVE_CONFIRMATION ) + eAutoConfirm = eAutoConfirmApprove; + } + + if ( m_pData->nMacroExecutionMode == MacroExecMode::NEVER_EXECUTE ) + return false; + + if ( m_pData->nMacroExecutionMode == MacroExecMode::ALWAYS_EXECUTE_NO_WARN ) + return true; + + try + { + ::rtl::OUString sReferrer( m_pData->rDocumentAccess.getDocumentLocation() ); + + // get document location from medium name and check whether it is a trusted one + ::comphelper::ComponentContext aContext( ::comphelper::getProcessServiceFactory() ); + Reference< XDocumentDigitalSignatures > xSignatures; + if ( aContext.createComponent( "com.sun.star.security.DocumentDigitalSignatures", xSignatures ) ) + { + INetURLObject aURLReferer( sReferrer ); + + ::rtl::OUString aLocation; + if ( aURLReferer.removeSegment() ) + aLocation = aURLReferer.GetMainURL( INetURLObject::NO_DECODE ); + + if ( aLocation.getLength() && xSignatures->isLocationTrusted( aLocation ) ) + { + return allowMacroExecution(); + } + } + + // at this point it is clear that the document is not in the secure location + if ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_NO_WARN ) + { + lcl_showDocumentMacrosDisabledError( _rxInteraction, m_pData->bDocMacroDisabledMessageShown ); + return disallowMacroExecution(); + } + + // check whether the document is signed with trusted certificate + if ( xSignatures.is() && m_pData->nMacroExecutionMode != MacroExecMode::FROM_LIST ) + { + Sequence< DocumentSignatureInformation > aScriptingSignatureInformations; + Reference < XStorage > xStore( m_pData->rDocumentAccess.getLastCommitDocumentStorage() ); + + sal_uInt16 nSignatureState = m_pData->rDocumentAccess.getScriptingSignatureState(); + if ( nSignatureState == SIGNATURESTATE_SIGNATURES_BROKEN ) + { + if ( m_pData->nMacroExecutionMode != MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN ) + { + m_pData->rDocumentAccess.showBrokenSignatureWarning( _rxInteraction ); + return disallowMacroExecution(); + } + } + else + { + if ( ( ( nSignatureState == SIGNATURESTATE_SIGNATURES_OK ) + || ( nSignatureState == SIGNATURESTATE_SIGNATURES_NOTVALIDATED ) + ) + && xStore.is() + ) + { + aScriptingSignatureInformations = + xSignatures->verifyScriptingContentSignatures( xStore, NULL ); + } + } + + sal_Int32 nNumOfInfos = aScriptingSignatureInformations.getLength(); + + // from now on sReferrer is the system file path + // sReferrer = INetURLObject::decode( sReferrer, '%', INetURLObject::DECODE_WITH_CHARSET ); + ::rtl::OUString aSystemFileURL; + if ( osl::FileBase::getSystemPathFromFileURL( sReferrer, aSystemFileURL ) == osl::FileBase::E_None ) + sReferrer = aSystemFileURL; + + if ( nNumOfInfos ) + { + for ( sal_Int32 i = 0; i < nNumOfInfos; i++ ) + if ( xSignatures->isAuthorTrusted( aScriptingSignatureInformations[i].Signer ) ) + { + // there's at least one author we trust which signed the doc + return allowMacroExecution(); + } + + if ( m_pData->nMacroExecutionMode != MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN ) + { + bool bApproved = lcl_showMacroWarning( _rxInteraction, + sReferrer, xStore, aScriptingSignatureInformations ); + return ( bApproved ? allowMacroExecution() : disallowMacroExecution() ); + } + } + } + + // at this point it is clear that the document is neither in secure location nor signed with trusted certificate + if ( ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN ) + || ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN ) + ) + { + if ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN ) + { + lcl_showDocumentMacrosDisabledError( _rxInteraction, m_pData->bDocMacroDisabledMessageShown ); + } + return disallowMacroExecution(); + } + } + catch ( Exception& ) + { + if ( ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_NO_WARN ) + || ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_WARN ) + || ( m_pData->nMacroExecutionMode == MacroExecMode::FROM_LIST_AND_SIGNED_NO_WARN ) + ) + { + return disallowMacroExecution(); + } + } + + // conformation is required + bool bSecure = sal_False; + + if ( eAutoConfirm == eNoAutoConfirm ) + { + ::rtl::OUString sReferrer( m_pData->rDocumentAccess.getDocumentLocation() ); + + ::rtl::OUString aSystemFileURL; + if ( osl::FileBase::getSystemPathFromFileURL( sReferrer, aSystemFileURL ) == osl::FileBase::E_None ) + sReferrer = aSystemFileURL; + + bSecure = lcl_showMacroWarning( _rxInteraction, sReferrer ); + } + else + bSecure = ( eAutoConfirm == eAutoConfirmApprove ); + + return ( bSecure ? allowMacroExecution() : disallowMacroExecution() ); + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::isMacroExecutionDisallowed() const + { + return m_pData->nMacroExecutionMode == MacroExecMode::NEVER_EXECUTE; + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::hasMacroLibrary() const + { + bool bHasMacroLib = false; + try + { + Reference< XEmbeddedScripts > xScripts( m_pData->rDocumentAccess.getEmbeddedDocumentScripts() ); + Reference< XLibraryContainer > xContainer; + if ( xScripts.is() ) + xContainer.set( xScripts->getBasicLibraries(), UNO_QUERY_THROW ); + + if ( xContainer.is() ) + { + // a library container exists; check if it's empty + + // if there are libraries except the "Standard" library + // we assume that they are not empty (because they have been created by the user) + if ( !xContainer->hasElements() ) + bHasMacroLib = false; + else + { + ::rtl::OUString aStdLibName( RTL_CONSTASCII_USTRINGPARAM( "Standard" ) ); + Sequence< ::rtl::OUString > aElements = xContainer->getElementNames(); + if ( aElements.getLength() ) + { + if ( aElements.getLength() > 1 || !aElements[0].equals( aStdLibName ) ) + bHasMacroLib = true; + else + { + // usually a "Standard" library is always present (design) + // for this reason we must check if it's empty + // + // Note: Since #i73229#, this is not true anymore. There's no default + // "Standard" lib anymore. Wouldn't it be time to get completely + // rid of the "Standard" thingie - this shouldn't be necessary + // anymore, should it? + // 2007-01-25 / frank.schoenheit@sun.com + Reference < XNameAccess > xLib; + Any aAny = xContainer->getByName( aStdLibName ); + aAny >>= xLib; + if ( xLib.is() ) + bHasMacroLib = xLib->hasElements(); + } + } + } + } + } + catch( const Exception& ) + { + DBG_UNHANDLED_EXCEPTION(); + } + + return bHasMacroLib; + } + + //-------------------------------------------------------------------- + bool DocumentMacroMode::storageHasMacros( const Reference< XStorage >& _rxStorage ) + { + bool bHasMacros = false; + if ( _rxStorage.is() ) + { + try + { + static const ::rtl::OUString s_sBasicStorageName( ::rtl::OUString::intern( RTL_CONSTASCII_USTRINGPARAM( "Basic" ) ) ); + static const ::rtl::OUString s_sScriptsStorageName( ::rtl::OUString::intern( RTL_CONSTASCII_USTRINGPARAM( "Scripts" ) ) ); + + bHasMacros =( ( _rxStorage->hasByName( s_sBasicStorageName ) + && _rxStorage->isStorageElement( s_sBasicStorageName ) + ) + || ( _rxStorage->hasByName( s_sScriptsStorageName ) + && _rxStorage->isStorageElement( s_sScriptsStorageName ) + ) + ); + } + catch ( const Exception& ) + { + DBG_UNHANDLED_EXCEPTION(); + } + } + return bHasMacros; + } + + //-------------------------------------------------------------------- + void DocumentMacroMode::checkMacrosOnLoading( const Reference< XInteractionHandler >& _rxInteraction ) + { + if ( SvtSecurityOptions().IsMacroDisabled() ) + { + // no macro should be executed at all + disallowMacroExecution(); + } + else + { + if ( m_pData->rDocumentAccess.documentStorageHasMacros() || hasMacroLibrary() ) + { + adjustMacroMode( _rxInteraction ); + } + else if ( !isMacroExecutionDisallowed() ) + { + // if macros will be added by the user later, the security check is obsolete + allowMacroExecution(); + } + } + } + +//........................................................................ +} // namespace sfx2 +//........................................................................ |