Allow empty header value in the blink HTTP header parser.

Source/platform/network/HTTPParsers.cpp

 /*
  * Copyright (C) 2006 Alexey Proskuryakov (ap@webkit.org)
  * Copyright (C) 2006, 2007, 2008, 2009 Apple Inc. All rights reserved.
  * Copyright (C) 2009 Torch Mobile Inc. http://www.torchmobile.com/
  * Copyright (C) 2009 Google Inc. All rights reserved.
  * Copyright (C) 2011 Apple Inc. All Rights Reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
  * are met:
@@ skipping 589 matching lines @@
     else if (httpVersionString[7] == '0')
         httpVersion = HTTP_1_0;
     else if (httpVersionString[7] == '1')
         httpVersion = HTTP_1_1;
     else
         httpVersion = Unknown;
 
     return end - data;
 }
 
-size_t parseHTTPHeader(const char* start, size_t length, String& failureReason, AtomicString& nameStr, AtomicString& valueStr)
+static bool parseHTTPHeaderName(const char* s, size_t start, size_t size, String& failureReason, size_t* position, AtomicString* name)
 {
-    const char* p = start;
-    const char* end = start + length;
-
-    Vector<char> name;
-    Vector<char> value;
-    nameStr = nullAtom;
-    valueStr = nullAtom;
-
-    for (; p < end; p++) {
-        switch (*p) {
+    size_t nameBegin = start;
+    for (size_t i = start; i < size; ++i) {
+        switch (s[i]) {
         case '\r':
-            if (name.isEmpty()) {
-                if (p + 1 < end && *(p + 1) == '\n')
-                    return (p + 2) - start;
-                failureReason = "CR doesn't follow LF at " + trimInputSample(p, end - p);
-                return 0;
+            failureReason = "Unexpected CR in name at " + trimInputSample(&s[nameBegin], i - nameBegin);
+            return false;
+        case '\n':
+            failureReason = "Unexpected LF in name at " + trimInputSample(&s[nameBegin], i - nameBegin);
+            return false;
+        case ':':
+            if (i == nameBegin) {
+                failureReason = "Header name is missing";
+                return false;
             }
-            failureReason = "Unexpected CR in name at " + trimInputSample(name.data(), name.size());
-            return 0;
-        case '\n':
-            failureReason = "Unexpected LF in name at " + trimInputSample(name.data(), name.size());
-            return 0;
-        case ':':
-            break;
+            *name = AtomicString::fromUTF8(&s[nameBegin], i - nameBegin);
+            if (name->isNull()) {
+                failureReason = "Invalid UTF-8 sequence in header name";
+                return false;
+            }
+            *position = i;
+            return true;
         default:
-            name.append(*p);
-            continue;
-        }
-        if (*p == ':') {
-            ++p;
             break;
         }
     }
+    failureReason = "Unterminated header name";
+    return false;
+}
 
-    for (; p < end && *p == 0x20; p++) { }
+static bool parseHTTPHeaderValue(const char* s, size_t start, size_t size, String& failureReason, size_t* position, AtomicString* value)
+{
+    size_t i = start;
+    for (; i < size && s[i] == ' '; ++i) {
+    }
+    size_t valueBegin = i;
 
-    for (; p < end; p++) {
-        switch (*p) {
-        case '\r':
-            break;
-        case '\n':
-            failureReason = "Unexpected LF in value at " + trimInputSample(value.data(), value.size());
-            return 0;
-        default:
-            value.append(*p);
-        }
-        if (*p == '\r') {
-            ++p;
-            break;
+    for (; i < size && s[i] != '\r'; ++i) {
+        if (s[i] == '\n') {
+            failureReason = "Unexpected LF in value at " + trimInputSample(&s[valueBegin], i - valueBegin);
+            return false;
         }
     }
-    if (p >= end || *p != '\n') {
-        failureReason = "CR doesn't follow LF after value at " + trimInputSample(p, end - p);
+    if (i == size) {
+        failureReason = "Unterminated header value";
+        return false;
+    }
+
+    ASSERT(i < size && s[i] == '\r');
+    if (i + 1 >= size || s[i + 1] != '\n') {
+        failureReason = "LF doesn't follow CR after value at " + trimInputSample(&s[i + 1], size - i - 1);
+        return false;
+    }
+
+    *value = AtomicString::fromUTF8(&s[valueBegin], i - valueBegin);
+    if (i != valueBegin && value->isNull()) {
+        failureReason = "Invalid UTF-8 sequence in header value";
+        return false;

[tyoshino (SeeGerritForStatus), 2014/06/05 02:07:32]

nice!

+    }
+
+    *position = i + 1;
+    return true;
+}
+
+// Note that the header is already parsed and re-formatted in chromium side.
+// We assume that the input is more restricted than RFC2616.
+size_t parseHTTPHeader(const char* s, size_t size, String& failureReason, AtomicString& name, AtomicString& value)
+{
+    name = nullAtom;
+    value = nullAtom;
+    if (size >= 1 && s[0] == '\r') {
+        if (size >= 2 && s[1] == '\n') {
+            // Skip an empty line.
+            return 2;
+        }
+        failureReason = "LF doesn't follow CR at " + trimInputSample(0, size);
         return 0;
     }
-    nameStr = AtomicString::fromUTF8(name.data(), name.size());
-    valueStr = AtomicString::fromUTF8(value.data(), value.size());
-    if (nameStr.isNull()) {
-        failureReason = "Invalid UTF-8 sequence in header name";
+    size_t current = 0;
+    if (!parseHTTPHeaderName(s, current, size, failureReason, &current, &name)) {
         return 0;
     }
-    if (valueStr.isNull()) {
-        failureReason = "Invalid UTF-8 sequence in header value";
+    ASSERT(s[current] == ':');
+    ++current;
+
+    if (!parseHTTPHeaderValue(s, current, size, failureReason, &current, &value)) {
         return 0;
     }
-    return p - start;
+
+    return current;
 }
 
 size_t parseHTTPRequestBody(const char* data, size_t length, Vector<unsigned char>& body)
 {
     body.clear();
     body.append(data, length);
 
     return length;
 }
 
@@ skipping 133 matching lines @@
     if (!cacheControlHeader.containsNoCache) {
         // Handle Pragma: no-cache
         // This is deprecated and equivalent to Cache-control: no-cache
         // Don't bother tokenizing the value, it is not important
         cacheControlHeader.containsNoCache = pragmaValue.lower().contains(noCacheDirective);
     }
     return cacheControlHeader;
 }
 
 }