Changeset 179933 in webkit

Timestamp:

Feb 11, 2015 10:03:42 AM (9 years ago)

Author:

ap@apple.com

Message:

URL::setUser and URL::setPass don't percent encode
​https://bugs.webkit.org/show_bug.cgi?id=141453
rdar://problem/14844503&16551802&19623145

Reviewed by Darin Adler.

Source/WebCore:

Tests: fast/url/url-credentials-escaping.html

http/tests/xmlhttprequest/basic-auth-credentials-escaping.html

Start adding some code that performs escaping in a way that matches the URL Standard.
Right now, it's only used where we failed to do any escaping at all, and over time,
we'll be moving towards a new implementation.

• html/URLUtils.h:

(WebCore::URLUtils<T>::username):
(WebCore::URLUtils<T>::password):

• platform/URL.cpp:

(WebCore::isSchemeFirstChar):
(WebCore::URL::user):
(WebCore::URL::pass):
(WebCore::URL::encodedUser):
(WebCore::URL::encodedPass):
(WebCore::URL::setUser):
(WebCore::URL::setPass):
(WebCore::encodeWithURLEscapeSequences):

• platform/URL.h:

LayoutTests:

• fast/url/url-credentials-escaping-expected.txt: Added.
• fast/url/url-credentials-escaping.html: Added.

This change is most directly testable via URL API.

• http/tests/xmlhttprequest/basic-auth-credentials-escaping-expected.txt: Added.
• http/tests/xmlhttprequest/basic-auth-credentials-escaping.html: Added.

Verify that this doesn't break XMLHttpRequest authentication.

• fast/dom/DOMURL/invalid-url-getters-expected.txt: Removed.
• fast/dom/DOMURL/invalid-url-getters.html: Removed.
• fast/dom/DOMURL/url-origin-expected.txt:
• fast/dom/DOMURL/url-origin.html:

Removed tests for invalid URLs, there is no such thing with URL API.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/fast/dom/DOMURL/invalid-url-getters-expected.txt (deleted)
• LayoutTests/fast/dom/DOMURL/invalid-url-getters.html (deleted)
• LayoutTests/fast/dom/DOMURL/url-origin-expected.txt (modified) (1 diff)
• LayoutTests/fast/dom/DOMURL/url-origin.html (modified) (2 diffs)
• LayoutTests/fast/url/url-credentials-escaping-expected.txt (added)
• LayoutTests/fast/url/url-credentials-escaping.html (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-credentials-escaping-expected.txt (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-credentials-escaping.html (added)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/html/URLUtils.h (modified) (2 diffs)
• Source/WebCore/platform/URL.cpp (modified) (8 diffs)
• Source/WebCore/platform/URL.h (modified) (2 diffs)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2015-02-10  Alexey Proskuryakov  <ap@apple.com>
+
+        URL::setUser and URL::setPass don't percent encode
+        https://bugs.webkit.org/show_bug.cgi?id=141453
+        rdar://problem/14844503&16551802&19623145
+
+        Reviewed by Darin Adler.
+
+        * fast/url/url-credentials-escaping-expected.txt: Added.
+        * fast/url/url-credentials-escaping.html: Added.
+        This change is most directly testable via URL API.
+
+        * http/tests/xmlhttprequest/basic-auth-credentials-escaping-expected.txt: Added.
+        * http/tests/xmlhttprequest/basic-auth-credentials-escaping.html: Added.
+        Verify that this doesn't break XMLHttpRequest authentication.
+
+        * fast/dom/DOMURL/invalid-url-getters-expected.txt: Removed.
+        * fast/dom/DOMURL/invalid-url-getters.html: Removed.
+        * fast/dom/DOMURL/url-origin-expected.txt:
+        * fast/dom/DOMURL/url-origin.html:
+        Removed tests for invalid URLs, there is no such thing with URL API.
+
 2015-02-11  Commit Queue  <commit-queue@webkit.org>
 

trunk/LayoutTests/fast/dom/DOMURL/url-origin-expected.txt

@@ -5 +5 @@
 file:///home/abarth => file://
 data:text/html,<b>foo</b> => null
-http://@@@www.example.com/bar => null
 

trunk/LayoutTests/fast/dom/DOMURL/url-origin.html

@@ -5 +5 @@
 if (window.testRunner)
     testRunner.dumpAsText();
-
-var invalidURL = new URL("http://www.example.com/bar")
-invalidURL.username = "@@";
 
 var cases = [
@@ -16 +13 @@
     new URL("file:///home/abarth"),
     new URL("data:text/html,<b>foo</b>"),
-    invalidURL
 ];
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2015-02-10  Alexey Proskuryakov  <ap@apple.com>
+
+        URL::setUser and URL::setPass don't percent encode
+        https://bugs.webkit.org/show_bug.cgi?id=141453
+        rdar://problem/14844503&16551802&19623145
+
+        Reviewed by Darin Adler.
+
+        Tests: fast/url/url-credentials-escaping.html
+               http/tests/xmlhttprequest/basic-auth-credentials-escaping.html
+
+        Start adding some code that performs escaping in a way that matches the URL Standard.
+        Right now, it's only used where we failed to do any escaping at all, and over time,
+        we'll be moving towards a new implementation.
+
+        * html/URLUtils.h:
+        (WebCore::URLUtils<T>::username):
+        (WebCore::URLUtils<T>::password):
+        * platform/URL.cpp:
+        (WebCore::isSchemeFirstChar):
+        (WebCore::URL::user):
+        (WebCore::URL::pass):
+        (WebCore::URL::encodedUser):
+        (WebCore::URL::encodedPass):
+        (WebCore::URL::setUser):
+        (WebCore::URL::setPass):
+        (WebCore::encodeWithURLEscapeSequences):
+        * platform/URL.h:
+
 2015-02-11  Alex Christensen  <achristensen@webkit.org>
 

trunk/Source/WebCore/html/URLUtils.h

@@ -99 +99 @@
 String URLUtils<T>::username() const
 {
-    return href().user();
+    return href().encodedUser();
 }
 
@@ -113 +113 @@
 String URLUtils<T>::password() const
 {
-    return href().pass();
+    return href().encodedPass();
 }
 

trunk/Source/WebCore/platform/URL.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2004, 2007, 2008, 2011, 2012, 2013 Apple Inc. All rights reserved.
+ * Copyright (C) 2004, 2007, 2008, 2011, 2012, 2013, 2015 Apple Inc. All rights reserved.
  * Copyright (C) 2012 Research In Motion Limited. All rights reserved.
  *
@@ -234 +234 @@
 };
 
+enum PercentEncodeCharacterClass {
+    // Class names match the URL Standard; each class is a superset of the previous one.
+    PercentEncodeSimple = 255,
+    PercentEncodeDefault = 127,
+    PercentEncodePassword = 63,
+    PercentEncodeUsername = 31,
+};
+
+static const unsigned char percentEncodeClassTable[256] = {
+    /* 0 nul */ PercentEncodeSimple,    /* 1 soh */ PercentEncodeSimple,    /* 2 stx */ PercentEncodeSimple,    /* 3 etx */ PercentEncodeSimple,
+    /* 4 eot */ PercentEncodeSimple,    /* 5 enq */ PercentEncodeSimple,    /* 6 ack */ PercentEncodeSimple,    /* 7 bel */ PercentEncodeSimple,
+    /* 8 bs */ PercentEncodeSimple,     /* 9 ht */ PercentEncodeSimple,     /* 10 nl */ PercentEncodeSimple,    /* 11 vt */ PercentEncodeSimple,
+    /* 12 np */ PercentEncodeSimple,    /* 13 cr */ PercentEncodeSimple,    /* 14 so */ PercentEncodeSimple,    /* 15 si */ PercentEncodeSimple,
+    /* 16 dle */ PercentEncodeSimple,   /* 17 dc1 */ PercentEncodeSimple,   /* 18 dc2 */ PercentEncodeSimple,   /* 19 dc3 */ PercentEncodeSimple,
+    /* 20 dc4 */ PercentEncodeSimple,   /* 21 nak */ PercentEncodeSimple,   /* 22 syn */ PercentEncodeSimple,   /* 23 etb */ PercentEncodeSimple,
+    /* 24 can */ PercentEncodeSimple,   /* 25 em */ PercentEncodeSimple,    /* 26 sub */ PercentEncodeSimple,   /* 27 esc */ PercentEncodeSimple,
+    /* 28 fs */ PercentEncodeSimple,    /* 29 gs */ PercentEncodeSimple,    /* 30 rs */ PercentEncodeSimple,    /* 31 us */ PercentEncodeSimple,
+    /* 32 sp */ PercentEncodeDefault,
+    /* 33  ! */ 0,
+    /* 34  " */ PercentEncodeDefault,
+    /* 35  # */ PercentEncodeDefault,
+    /* 36  $ */ 0,
+    /* 37  % */ 0,
+    /* 38  & */ 0,
+    /* 39  ' */ 0,
+    /* 40  ( */ 0,
+    /* 41  ) */ 0,
+    /* 42  * */ 0,
+    /* 43  + */ 0,
+    /* 44  , */ 0,
+    /* 45  - */ 0,
+    /* 46  . */ 0,
+    /* 47  / */ PercentEncodePassword,
+    /* 48  0 */ 0,    /* 49  1 */ 0,    /* 50  2 */ 0,    /* 51  3 */ 0,
+    /* 52  4 */ 0,    /* 53  5 */ 0,    /* 54  6 */ 0,    /* 55  7 */ 0,
+    /* 56  8 */ 0,    /* 57  9 */ 0,
+    /* 58  : */ PercentEncodeUsername,
+    /* 59  ; */ 0,
+    /* 60  < */ PercentEncodeDefault,
+    /* 61  = */ 0,
+    /* 62  > */ PercentEncodeDefault,
+    /* 63  ? */ PercentEncodeDefault,
+    /* 64  @ */ PercentEncodePassword,
+    /* 65  A */ 0,    /* 66  B */ 0,    /* 67  C */ 0,    /* 68  D */ 0,
+    /* 69  E */ 0,    /* 70  F */ 0,    /* 71  G */ 0,    /* 72  H */ 0,
+    /* 73  I */ 0,    /* 74  J */ 0,    /* 75  K */ 0,    /* 76  L */ 0,
+    /* 77  M */ 0,    /* 78  N */ 0,    /* 79  O */ 0,    /* 80  P */ 0,
+    /* 81  Q */ 0,    /* 82  R */ 0,    /* 83  S */ 0,    /* 84  T */ 0,
+    /* 85  U */ 0,    /* 86  V */ 0,    /* 87  W */ 0,    /* 88  X */ 0,
+    /* 89  Y */ 0,    /* 90  Z */ 0,
+    /* 91  [ */ 0,
+    /* 92  \ */ PercentEncodePassword,
+    /* 93  ] */ 0,
+    /* 94  ^ */ 0,
+    /* 95  _ */ 0,
+    /* 96  ` */ PercentEncodeDefault,
+    /* 97  a */ 0,    /* 98  b */ 0,    /* 99  c */ 0,    /* 100  d */ 0,
+    /* 101  e */ 0,    /* 102  f */ 0,    /* 103  g */ 0,    /* 104  h */ 0,
+    /* 105  i */ 0,    /* 106  j */ 0,    /* 107  k */ 0,    /* 108  l */ 0,
+    /* 109  m */ 0,    /* 110  n */ 0,    /* 111  o */ 0,    /* 112  p */ 0,
+    /* 113  q */ 0,    /* 114  r */ 0,    /* 115  s */ 0,    /* 116  t */ 0,
+    /* 117  u */ 0,    /* 118  v */ 0,    /* 119  w */ 0,    /* 120  x */ 0,
+    /* 121  y */ 0,    /* 122  z */ 0,
+    /* 123  { */ 0,
+    /* 124  | */ 0,
+    /* 125  } */ 0,
+    /* 126  ~ */ 0,
+    /* 127 del */ PercentEncodeSimple,
+    /* 128 */ PercentEncodeSimple, /* 129 */ PercentEncodeSimple, /* 130 */ PercentEncodeSimple, /* 131 */ PercentEncodeSimple,
+    /* 132 */ PercentEncodeSimple, /* 133 */ PercentEncodeSimple, /* 134 */ PercentEncodeSimple, /* 135 */ PercentEncodeSimple,
+    /* 136 */ PercentEncodeSimple, /* 137 */ PercentEncodeSimple, /* 138 */ PercentEncodeSimple, /* 139 */ PercentEncodeSimple,
+    /* 140 */ PercentEncodeSimple, /* 141 */ PercentEncodeSimple, /* 142 */ PercentEncodeSimple, /* 143 */ PercentEncodeSimple,
+    /* 144 */ PercentEncodeSimple, /* 145 */ PercentEncodeSimple, /* 146 */ PercentEncodeSimple, /* 147 */ PercentEncodeSimple,
+    /* 148 */ PercentEncodeSimple, /* 149 */ PercentEncodeSimple, /* 150 */ PercentEncodeSimple, /* 151 */ PercentEncodeSimple,
+    /* 152 */ PercentEncodeSimple, /* 153 */ PercentEncodeSimple, /* 154 */ PercentEncodeSimple, /* 155 */ PercentEncodeSimple,
+    /* 156 */ PercentEncodeSimple, /* 157 */ PercentEncodeSimple, /* 158 */ PercentEncodeSimple, /* 159 */ PercentEncodeSimple,
+    /* 160 */ PercentEncodeSimple, /* 161 */ PercentEncodeSimple, /* 162 */ PercentEncodeSimple, /* 163 */ PercentEncodeSimple,
+    /* 164 */ PercentEncodeSimple, /* 165 */ PercentEncodeSimple, /* 166 */ PercentEncodeSimple, /* 167 */ PercentEncodeSimple,
+    /* 168 */ PercentEncodeSimple, /* 169 */ PercentEncodeSimple, /* 170 */ PercentEncodeSimple, /* 171 */ PercentEncodeSimple,
+    /* 172 */ PercentEncodeSimple, /* 173 */ PercentEncodeSimple, /* 174 */ PercentEncodeSimple, /* 175 */ PercentEncodeSimple,
+    /* 176 */ PercentEncodeSimple, /* 177 */ PercentEncodeSimple, /* 178 */ PercentEncodeSimple, /* 179 */ PercentEncodeSimple,
+    /* 180 */ PercentEncodeSimple, /* 181 */ PercentEncodeSimple, /* 182 */ PercentEncodeSimple, /* 183 */ PercentEncodeSimple,
+    /* 184 */ PercentEncodeSimple, /* 185 */ PercentEncodeSimple, /* 186 */ PercentEncodeSimple, /* 187 */ PercentEncodeSimple,
+    /* 188 */ PercentEncodeSimple, /* 189 */ PercentEncodeSimple, /* 190 */ PercentEncodeSimple, /* 191 */ PercentEncodeSimple,
+    /* 192 */ PercentEncodeSimple, /* 193 */ PercentEncodeSimple, /* 194 */ PercentEncodeSimple, /* 195 */ PercentEncodeSimple,
+    /* 196 */ PercentEncodeSimple, /* 197 */ PercentEncodeSimple, /* 198 */ PercentEncodeSimple, /* 199 */ PercentEncodeSimple,
+    /* 200 */ PercentEncodeSimple, /* 201 */ PercentEncodeSimple, /* 202 */ PercentEncodeSimple, /* 203 */ PercentEncodeSimple,
+    /* 204 */ PercentEncodeSimple, /* 205 */ PercentEncodeSimple, /* 206 */ PercentEncodeSimple, /* 207 */ PercentEncodeSimple,
+    /* 208 */ PercentEncodeSimple, /* 209 */ PercentEncodeSimple, /* 210 */ PercentEncodeSimple, /* 211 */ PercentEncodeSimple,
+    /* 212 */ PercentEncodeSimple, /* 213 */ PercentEncodeSimple, /* 214 */ PercentEncodeSimple, /* 215 */ PercentEncodeSimple,
+    /* 216 */ PercentEncodeSimple, /* 217 */ PercentEncodeSimple, /* 218 */ PercentEncodeSimple, /* 219 */ PercentEncodeSimple,
+    /* 220 */ PercentEncodeSimple, /* 221 */ PercentEncodeSimple, /* 222 */ PercentEncodeSimple, /* 223 */ PercentEncodeSimple,
+    /* 224 */ PercentEncodeSimple, /* 225 */ PercentEncodeSimple, /* 226 */ PercentEncodeSimple, /* 227 */ PercentEncodeSimple,
+    /* 228 */ PercentEncodeSimple, /* 229 */ PercentEncodeSimple, /* 230 */ PercentEncodeSimple, /* 231 */ PercentEncodeSimple,
+    /* 232 */ PercentEncodeSimple, /* 233 */ PercentEncodeSimple, /* 234 */ PercentEncodeSimple, /* 235 */ PercentEncodeSimple,
+    /* 236 */ PercentEncodeSimple, /* 237 */ PercentEncodeSimple, /* 238 */ PercentEncodeSimple, /* 239 */ PercentEncodeSimple,
+    /* 240 */ PercentEncodeSimple, /* 241 */ PercentEncodeSimple, /* 242 */ PercentEncodeSimple, /* 243 */ PercentEncodeSimple,
+    /* 244 */ PercentEncodeSimple, /* 245 */ PercentEncodeSimple, /* 246 */ PercentEncodeSimple, /* 247 */ PercentEncodeSimple,
+    /* 248 */ PercentEncodeSimple, /* 249 */ PercentEncodeSimple, /* 250 */ PercentEncodeSimple, /* 251 */ PercentEncodeSimple,
+    /* 252 */ PercentEncodeSimple, /* 253 */ PercentEncodeSimple, /* 254 */ PercentEncodeSimple, /* 255 */ PercentEncodeSimple
+};
+
 static int copyPathRemovingDots(char* dst, const char* src, int srcStart, int srcEnd);
 static void encodeRelativeString(const String& rel, const TextEncoding&, CharBuffer& ouput);
@@ -256 +358 @@
     return (character | 0x20) == schemeCharacter;
 }
+
+String encodeWithURLEscapeSequences(const String& notEncodedString, PercentEncodeCharacterClass whatToEncode);
 
 // Copies the source to the destination, assuming all the source characters are
@@ -599 +703 @@
 }
 
+String URL::user() const
+{
+    return decodeURLEscapeSequences(m_string.substring(m_userStart, m_userEnd - m_userStart));
+}
+
 String URL::pass() const
 {
@@ -604 +713 @@
         return String();
 
-    return decodeURLEscapeSequences(m_string.substring(m_userEnd + 1, m_passwordEnd - m_userEnd - 1)); 
-}
-
-String URL::user() const
-{
-    return decodeURLEscapeSequences(m_string.substring(m_userStart, m_userEnd - m_userStart));
+    return decodeURLEscapeSequences(m_string.substring(m_userEnd + 1, m_passwordEnd - m_userEnd - 1));
+}
+
+String URL::encodedUser() const
+{
+    return m_string.substring(m_userStart, m_userEnd - m_userStart);
+}
+
+String URL::encodedPass() const
+{
+    if (m_passwordEnd == m_userEnd)
+        return String();
+
+    return m_string.substring(m_userEnd + 1, m_passwordEnd - m_userEnd - 1);
 }
 
@@ -763 +880 @@
     int end = m_userEnd;
     if (!user.isEmpty()) {
-        String u = user;
+        String u = encodeWithURLEscapeSequences(user, PercentEncodeUsername);
         if (m_userStart == m_schemeEnd + 1)
             u = "//" + u;
@@ -785 +902 @@
         return;
 
-    // FIXME: Non-ASCII characters must be encoded and escaped to match parse() expectations,
-    // and to avoid changing more than just the user password.
-
     int end = m_passwordEnd;
     if (!password.isEmpty()) {
-        String p = ":" + password + "@";
+        String p = ":" + encodeWithURLEscapeSequences(password, PercentEncodePassword) + "@";
         if (m_userEnd == m_schemeEnd + 1)
             p = "//" + p;
@@ -1477 +1591 @@
 
     return true;
+}
+
+String encodeWithURLEscapeSequences(const String& notEncodedString, PercentEncodeCharacterClass whatToEncode)
+{
+    CString asUTF8 = notEncodedString.utf8();
+
+    CharBuffer buffer(asUTF8.length() * 3 + 1);
+    char* p = buffer.data();
+
+    const char* str = asUTF8.data();
+    const char* strEnd = str + asUTF8.length();
+    while (str < strEnd) {
+        unsigned char c = *str++;
+        if (percentEncodeClassTable[c] >= whatToEncode)
+            appendEscapedChar(p, c);
+        else
+            *p++ = c;
+    }
+
+    ASSERT(p - buffer.data() <= static_cast<int>(buffer.size()));
+
+    return String(buffer.data(), p - buffer.data());
 }
 

trunk/Source/WebCore/platform/URL.h

@@ -114 +114 @@
     WEBCORE_EXPORT bool hasFragmentIdentifier() const;
 
+    // Unlike user() and pass(), these functions don't decode escape sequences.
+    // This is necessary for accurate round-tripping, because encoding doesn't encode '%' characters.
+    String encodedUser() const;
+    String encodedPass() const;
+
     WEBCORE_EXPORT String baseAsString() const;
 
@@ -254 +259 @@
 String decodeURLEscapeSequences(const String&, const TextEncoding&);
 
+// FIXME: This is a wrong concept to expose, different parts of a URL need different escaping per the URL Standard.
 WEBCORE_EXPORT String encodeWithURLEscapeSequences(const String&);