1 /* 2 * Copyright (C) 2006 Alexey Proskuryakov (ap@webkit.org) 3 * Copyright (C) 2009 Google Inc. All rights reserved. 4 * Copyright (C) 2011 Apple Inc. All Rights Reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. Neither the name of Apple Computer, Inc. ("Apple") nor the names of 16 * its contributors may be used to endorse or promote products derived 17 * from this software without specific prior written permission. 18 * 19 * THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY 20 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 21 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE 22 * DISCLAIMED. IN NO EVENT SHALL APPLE OR ITS CONTRIBUTORS BE LIABLE FOR ANY 23 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES 24 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 25 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND 26 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 28 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 29 */ 30 31 #ifndef HTTPParsers_h 32 #define HTTPParsers_h 33 34 #include "platform/PlatformExport.h" 35 #include "wtf/Forward.h" 36 #include "wtf/Vector.h" 37 38 namespace WebCore { 39 40 class HTTPHeaderMap; 41 class ResourceResponseBase; 42 43 typedef enum { 44 ContentDispositionNone, 45 ContentDispositionInline, 46 ContentDispositionAttachment, 47 ContentDispositionOther 48 } ContentDispositionType; 49 50 enum ContentTypeOptionsDisposition { 51 ContentTypeOptionsNone, 52 ContentTypeOptionsNosniff 53 }; 54 55 enum XFrameOptionsDisposition { 56 XFrameOptionsNone, 57 XFrameOptionsDeny, 58 XFrameOptionsSameOrigin, 59 XFrameOptionsAllowAll, 60 XFrameOptionsInvalid, 61 XFrameOptionsConflict 62 }; 63 64 // Be sure to update the behavior of XSSAuditor::combineXSSProtectionHeaderAndCSP whenever you change this enum's content or ordering. 65 enum ReflectedXSSDisposition { 66 ReflectedXSSUnset = 0, 67 AllowReflectedXSS, 68 ReflectedXSSInvalid, 69 FilterReflectedXSS, 70 BlockReflectedXSS 71 }; 72 73 PLATFORM_EXPORT ContentDispositionType contentDispositionType(const String&); 74 PLATFORM_EXPORT bool isValidHTTPHeaderValue(const String&); 75 PLATFORM_EXPORT bool isValidHTTPToken(const String&); 76 PLATFORM_EXPORT bool parseHTTPRefresh(const String& refresh, bool fromHttpEquivMeta, double& delay, String& url); 77 PLATFORM_EXPORT double parseDate(const String&); 78 PLATFORM_EXPORT String filenameFromHTTPContentDisposition(const String&); 79 PLATFORM_EXPORT AtomicString extractMIMETypeFromMediaType(const AtomicString&); 80 PLATFORM_EXPORT String extractCharsetFromMediaType(const String&); 81 PLATFORM_EXPORT void findCharsetInMediaType(const String& mediaType, unsigned& charsetPos, unsigned& charsetLen, unsigned start = 0); 82 PLATFORM_EXPORT ReflectedXSSDisposition parseXSSProtectionHeader(const String& header, String& failureReason, unsigned& failurePosition, String& reportURL); 83 PLATFORM_EXPORT String extractReasonPhraseFromHTTPStatusLine(const String&); 84 PLATFORM_EXPORT XFrameOptionsDisposition parseXFrameOptionsHeader(const String&); 85 86 // -1 could be set to one of the return parameters to indicate the value is not specified. 87 PLATFORM_EXPORT bool parseRange(const String&, long long& rangeOffset, long long& rangeEnd, long long& rangeSuffixLength); 88 89 PLATFORM_EXPORT ContentTypeOptionsDisposition parseContentTypeOptionsHeader(const String& header); 90 91 // Parsing Complete HTTP Messages. 92 enum HTTPVersion { Unknown, HTTP_1_0, HTTP_1_1 }; 93 PLATFORM_EXPORT size_t parseHTTPRequestLine(const char* data, size_t length, String& failureReason, String& method, String& url, HTTPVersion&); 94 PLATFORM_EXPORT size_t parseHTTPHeader(const char* data, size_t length, String& failureReason, AtomicString& nameStr, AtomicString& valueStr); 95 PLATFORM_EXPORT size_t parseHTTPRequestBody(const char* data, size_t length, Vector<unsigned char>& body); 96 97 } 98 99 #endif 100