15c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)/*
25c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * Copyright (C) 2010 Google Inc. All rights reserved.
35c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *
45c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * Redistribution and use in source and binary forms, with or without
55c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * modification, are permitted provided that the following conditions are
65c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * met:
75c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *
85c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *     * Redistributions of source code must retain the above copyright
95c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * notice, this list of conditions and the following disclaimer.
105c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *     * Redistributions in binary form must reproduce the above
115c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * copyright notice, this list of conditions and the following disclaimer
125c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * in the documentation and/or other materials provided with the
135c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * distribution.
145c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *     * Neither the name of Google Inc. nor the names of its
155c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * contributors may be used to endorse or promote products derived from
165c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * this software without specific prior written permission.
175c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) *
185c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
195c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
205c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
215c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
225c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
235c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
245c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
255c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
265c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
275c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
285c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
295c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles) */
305c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
315c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)#include "config.h"
3253e740f4a82e17f3ae59772501622dc354e42336Torne (Richard Coles)#include "modules/filesystem/DOMFilePath.h"
335c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
3453e740f4a82e17f3ae59772501622dc354e42336Torne (Richard Coles)#include "wtf/Vector.h"
3553e740f4a82e17f3ae59772501622dc354e42336Torne (Richard Coles)#include "wtf/text/CString.h"
3609380295ba73501a205346becac22c6978e4671dTorne (Richard Coles)#include "wtf/text/StringBuilder.h"
375c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
38c1847b1379d12d0e05df27436bf19a9b1bf12deaTorne (Richard Coles)namespace blink {
395c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
405c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)const char DOMFilePath::separator = '/';
415c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)const char DOMFilePath::root[] = "/";
425c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
435c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)String DOMFilePath::append(const String& base, const String& components)
445c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
455c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return ensureDirectoryPath(base) + components;
465c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
475c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
485c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)String DOMFilePath::ensureDirectoryPath(const String& path)
495c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
5009380295ba73501a205346becac22c6978e4671dTorne (Richard Coles)    if (!DOMFilePath::endsWithSeparator(path))
5109380295ba73501a205346becac22c6978e4671dTorne (Richard Coles)        return path + DOMFilePath::separator;
525c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return path;
535c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
545c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
555c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)String DOMFilePath::getName(const String& path)
565c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
575c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    int index = path.reverseFind(DOMFilePath::separator);
585c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (index != -1)
595c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return path.substring(index + 1);
605c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return path;
615c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
625c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
635c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)String DOMFilePath::getDirectory(const String& path)
645c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
655c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    int index = path.reverseFind(DOMFilePath::separator);
665c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (!index)
675c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return DOMFilePath::root;
685c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (index != -1)
695c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return path.substring(0, index);
705c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return ".";
715c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
725c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
735c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)bool DOMFilePath::isParentOf(const String& parent, const String& mayBeChild)
745c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
755c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    ASSERT(DOMFilePath::isAbsolute(parent));
765c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    ASSERT(DOMFilePath::isAbsolute(mayBeChild));
775c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (parent == DOMFilePath::root && mayBeChild != DOMFilePath::root)
785c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return true;
795c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (parent.length() >= mayBeChild.length() || !mayBeChild.startsWith(parent, false))
805c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return false;
815c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (mayBeChild[parent.length()] != DOMFilePath::separator)
825c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return false;
835c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return true;
845c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
855c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
865c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)String DOMFilePath::removeExtraParentReferences(const String& path)
875c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
885c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    ASSERT(DOMFilePath::isAbsolute(path));
895c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    Vector<String> components;
905c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    Vector<String> canonicalized;
915c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    path.split(DOMFilePath::separator, components);
925c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    for (size_t i = 0; i < components.size(); ++i) {
935c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        if (components[i] == ".")
945c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)            continue;
955c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        if (components[i] == "..") {
965c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)            if (canonicalized.size() > 0)
975c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)                canonicalized.removeLast();
985c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)            continue;
995c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        }
1005c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        canonicalized.append(components[i]);
1015c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    }
1025c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (canonicalized.isEmpty())
1035c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return DOMFilePath::root;
10409380295ba73501a205346becac22c6978e4671dTorne (Richard Coles)    StringBuilder result;
1055c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    for (size_t i = 0; i < canonicalized.size(); ++i) {
1065c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        result.append(DOMFilePath::separator);
1075c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        result.append(canonicalized[i]);
1085c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    }
10909380295ba73501a205346becac22c6978e4671dTorne (Richard Coles)    return result.toString();
1105c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
1115c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
1125c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)bool DOMFilePath::isValidPath(const String& path)
1135c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
1145c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (path.isEmpty() || path == DOMFilePath::root)
1155c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return true;
1165c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
1175c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    // Embedded NULs are not allowed.
11806f816c7c76bc45a15e452ade8a34e8af077693eTorne (Richard Coles)    if (path.find(static_cast<UChar>(0)) != WTF::kNotFound)
1195c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return false;
1205c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
1215c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    // While not [yet] restricted by the spec, '\\' complicates implementation for Chromium.
12206f816c7c76bc45a15e452ade8a34e8af077693eTorne (Richard Coles)    if (path.find('\\') != WTF::kNotFound)
1235c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return false;
1245c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
1255c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    // This method is only called on fully-evaluated absolute paths. Any sign of ".." or "." is likely an attempt to break out of the sandbox.
1265c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    Vector<String> components;
1275c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    path.split(DOMFilePath::separator, components);
1285c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    for (size_t i = 0; i < components.size(); ++i) {
1295c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        if (components[i] == ".")
1305c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)            return false;
1315c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        if (components[i] == "..")
1325c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)            return false;
1335c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    }
1345c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return true;
1355c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
1365c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
1375c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)bool DOMFilePath::isValidName(const String& name)
1385c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles){
1395c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (name.isEmpty())
1405c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return true;
1415c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    // '/' is not allowed in name.
1425c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    if (name.contains('/'))
1435c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)        return false;
1445c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)    return isValidPath(name);
1455c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)}
1465c87bf8b86a7c82ef50fb7a89697d8e02e2553beTorne (Richard Coles)
147c1847b1379d12d0e05df27436bf19a9b1bf12deaTorne (Richard Coles)} // namespace blink
148