me/omegafox
1
0
Fork 0
mirror of https://forge.fsky.io/oneflux/omegafox.git synced 2026-02-10 07:02:03 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: Support for passing certificates & cert files

Browse source
This commit is contained in:
daijro 2025-03-15 04:30:23 -05:00
parent c390b260b5
commit 3bf91de311
4 changed files with 96 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Makefile
View file

@ -196,7 +196,7 @@ run-pw:
run: run:
cd $(cf_source_dir) \ cd $(cf_source_dir) \
&& rm -rf ~/.camoufox $(cf_source_dir)/obj-x86_64-pc-linux-gnu/tmp/profile-default \ && rm -rf ~/.camoufox obj-x86_64-pc-linux-gnu/tmp/profile-default \
&& CAMOU_CONFIG=$${CAMOU_CONFIG:-'{}'} \ && CAMOU_CONFIG=$${CAMOU_CONFIG:-'{}'} \
&& CAMOU_CONFIG="$${CAMOU_CONFIG%?}, \"debug\": true}" ./mach run $(args) && CAMOU_CONFIG="$${CAMOU_CONFIG%?}, \"debug\": true}" ./mach run $(args)

96
patches/browser-init.patch
View file

@ -1,5 +1,5 @@
diff --git a/browser/base/content/browser-init.js b/browser/base/content/browser-init.js diff --git a/browser/base/content/browser-init.js b/browser/base/content/browser-init.js
index bb91ab8cfa..7496eb9a58 100644 index 1cfa4b8497..bdf8d7202e 100644
--- a/browser/base/content/browser-init.js --- a/browser/base/content/browser-init.js
+++ b/browser/base/content/browser-init.js +++ b/browser/base/content/browser-init.js
@@ -3,6 +3,16 @@ @@ -3,6 +3,16 @@
@ -28,7 +28,7 @@ index bb91ab8cfa..7496eb9a58 100644
// When the fingerprinting resistance is enabled, making sure that we don't // When the fingerprinting resistance is enabled, making sure that we don't
// have a maximum window to interfere with generating rounded window dimensions. // have a maximum window to interfere with generating rounded window dimensions.
document.documentElement.setAttribute("sizemode", "normal"); document.documentElement.setAttribute("sizemode", "normal");
@@ -276,6 +286,22 @@ var gBrowserInit = { @@ -310,6 +320,22 @@ var gBrowserInit = {
// Update UI if browser is under remote control. // Update UI if browser is under remote control.
gRemoteControl.updateVisualCue(); gRemoteControl.updateVisualCue();
@ -51,7 +51,7 @@ index bb91ab8cfa..7496eb9a58 100644
// If we are given a tab to swap in, take care of it before first paint to // If we are given a tab to swap in, take care of it before first paint to
// avoid an about:blank flash. // avoid an about:blank flash.
let tabToAdopt = this.getTabToAdopt(); let tabToAdopt = this.getTabToAdopt();
@@ -311,6 +337,31 @@ var gBrowserInit = { @@ -345,6 +371,31 @@ var gBrowserInit = {
} }
} }
@ -83,7 +83,7 @@ index bb91ab8cfa..7496eb9a58 100644
// Wait until chrome is painted before executing code not critical to making the window visible // Wait until chrome is painted before executing code not critical to making the window visible
this._boundDelayedStartup = this._delayedStartup.bind(this); this._boundDelayedStartup = this._delayedStartup.bind(this);
window.addEventListener("MozAfterPaint", this._boundDelayedStartup); window.addEventListener("MozAfterPaint", this._boundDelayedStartup);
@@ -332,9 +383,66 @@ var gBrowserInit = { @@ -366,9 +417,152 @@ var gBrowserInit = {
)?.removeAttribute("key"); )?.removeAttribute("key");
} }
@ -134,12 +134,98 @@ index bb91ab8cfa..7496eb9a58 100644
+ if (addonPaths?.length) { + if (addonPaths?.length) {
+ Promise.all(addonPaths.map(path => this.installTemporaryAddon(path))) + Promise.all(addonPaths.map(path => this.installTemporaryAddon(path)))
+ .then(addons => ChromeUtils.camouDebug("Installed " + addons.length + " addon(s)")) + .then(addons => ChromeUtils.camouDebug("Installed " + addons.length + " addon(s)"))
+ .catch(e => ChromeUtils.camouDebug("Failed to install addons:", e)); + .catch(e => ChromeUtils.camouDebug("Failed to install addons: " + e));
+ }
+
+ // Certificate handling
+ let certsPaths = ChromeUtils.camouGetStringList("certificatePaths");
+ let certsRaw = ChromeUtils.camouGetStringList("certificates");
+
+ if (certsPaths?.length || certsRaw?.length) {
+ ChromeUtils.camouDebug("Found certificates to import");
+ // Set up certificate database
+ var certdb = Cc["@mozilla.org/security/x509certdb;1"].getService(Ci.nsIX509CertDB);
+ var certdb2 = certdb;
+ try {
+ certdb2 = Cc["@mozilla.org/security/x509certdb;1"].getService(Ci.nsIX509CertDB2);
+ } catch (e) {}
+
+ // Handle certificate files if any
+ if (certsPaths?.length) {
+ ChromeUtils.camouDebug("Processing " + certsPaths.length + " certificate files");
+ Promise.all(certsPaths.map(path => this.readCertFile(path)))
+ .then(certDataArray => {
+ // Import each certificate using map
+ certDataArray.map(certData =>
+ this.importCertificate(certdb2, certData, "from file")
+ );
+ })
+ .catch(e => ChromeUtils.camouDebug("Failed to read certificate files: " + e));
+ }
+
+ // Handle raw certificate strings if any
+ if (certsRaw?.length) {
+ ChromeUtils.camouDebug("Processing " + certsRaw.length + " raw certificates");
+ // Process all raw certificates using map
+ certsRaw.map(rawCert => {
+ try {
+ let certData = this.processRawCertificate(rawCert);
+ ChromeUtils.camouDebug("Importing raw certificate: " + certData);
+ this.importCertificate(certdb2, certData, "raw");
+ } catch (e) {
+ ChromeUtils.camouDebug("Failed to process raw certificate: " + e);
+ }
+ });
+ }
+ } + }
+ +
this._loadHandled = true; this._loadHandled = true;
}, },
+ importCertificate(certdb, certData, source) {
+ try {
+ certdb.addCertFromBase64(certData, "C,C,C", "");
+ ChromeUtils.camouDebug("Successfully imported " + source + " certificate");
+ } catch (e) {
+ ChromeUtils.camouDebug("Failed to import " + source + " certificate: " + e);
+ }
+ },
+
+ processRawCertificate(content) {
+ // Process the certificate content (remove markers and newlines)
+ return content.replace(/\-{5}[\w]+\s[\w]+\-{5}/g, "").replace(/\s/g, "");
+ },
+
+ async readCertFile(path) {
+ try {
+ ChromeUtils.camouDebug("Reading certificate file: " + path);
+ const file = new FileUtils.File(path);
+ const ioService = Cc["@mozilla.org/network/io-service;1"].getService(Ci.nsIIOService);
+ const channel = ioService.newChannelFromURI(
+ ioService.newFileURI(file),
+ null,
+ Services.scriptSecurityManager.getSystemPrincipal(),
+ null,
+ Ci.nsILoadInfo.SEC_ALLOW_CROSS_ORIGIN_SEC_CONTEXT_IS_NULL,
+ Ci.nsIContentPolicy.TYPE_OTHER
+ );
+
+ const inputStream = Cc["@mozilla.org/scriptableinputstream;1"]
+ .createInstance(Ci.nsIScriptableInputStream);
+ const input = channel.open();
+ inputStream.init(input);
+
+ let content = inputStream.read(input.available());
+ inputStream.close();
+ input.close();
+
+ return this.processRawCertificate(content);
+ } catch (e) {
+ ChromeUtils.camouDebug("Error reading certificate file: " + e);
+ throw e;
+ }
+ },
+
+ async installTemporaryAddon(addonPath) { + async installTemporaryAddon(addonPath) {
+ const addonFile = new FileUtils.File(addonPath); + const addonFile = new FileUtils.File(addonPath);
+ const addon = await AddonManager.installTemporaryAddon(addonFile); + const addon = await AddonManager.installTemporaryAddon(addonFile);

2
settings/camoucfg.jvv
View file

@ -302,5 +302,7 @@
"disableTheming": "bool", "disableTheming": "bool",
"memorysaver": "bool", "memorysaver": "bool",
"addons": "array[str]", "addons": "array[str]",
"certificatePaths": "array[str]",
"certificates": "array[str]",
"debug": "bool" "debug": "bool"
} }

2
settings/properties.json
View file

@ -101,5 +101,7 @@
{ "property": "disableTheming", "type": "bool" }, { "property": "disableTheming", "type": "bool" },
{ "property": "memorysaver", "type": "bool" }, { "property": "memorysaver", "type": "bool" },
{ "property": "addons", "type": "array" }, { "property": "addons", "type": "array" },
{ "property": "certificatePaths", "type": "array" },
{ "property": "certificates", "type": "array" },
{ "property": "debug", "type": "bool" } { "property": "debug", "type": "bool" }
] ]