Source/WebCore/loader/cache/CachedResourceRequest.cpp - WebKit - Git at Google

 /*
  * Copyright (C) 2012 Google, Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
  * are met:
  * 1. Redistributions of source code must retain the above copyright
  *    notice, this list of conditions and the following disclaimer.
  * 2. Redistributions in binary form must reproduce the above copyright
  *    notice, this list of conditions and the following disclaimer in the
  *    documentation and/or other materials provided with the distribution.
  *
  * THIS SOFTWARE IS PROVIDED BY GOOGLE INC. ``AS IS'' AND ANY
  * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL APPLE INC. OR
  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
  * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
  * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
  * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
  * OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
  * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */

 #include "config.h"
 #include "CachedResourceRequest.h"

 #include "CachedResourceLoader.h"
 #include "ContentExtensionActions.h"
 #include "CrossOriginAccessControl.h"
 #include "Document.h"
 #include "Element.h"
 #include "HTTPHeaderValues.h"
 #include "MemoryCache.h"
 #include <wtf/NeverDestroyed.h>

 namespace WebCore {

 CachedResourceRequest::CachedResourceRequest(ResourceRequest&& resourceRequest, const ResourceLoaderOptions& options, Optional<ResourceLoadPriority> priority, String&& charset)
     : m_resourceRequest(WTFMove(resourceRequest))
     , m_charset(WTFMove(charset))
     , m_options(options)
     , m_priority(priority)
 {
 }

 void CachedResourceRequest::setInitiator(PassRefPtr<Element> element)
 {
     ASSERT(!m_initiatorElement && m_initiatorName.isEmpty());
     m_initiatorElement = element;
 }

 void CachedResourceRequest::setInitiator(const AtomicString& name)
 {
     ASSERT(!m_initiatorElement && m_initiatorName.isEmpty());
     m_initiatorName = name;
 }

 const AtomicString& CachedResourceRequest::initiatorName() const
 {
     if (m_initiatorElement)
         return m_initiatorElement->localName();
     if (!m_initiatorName.isEmpty())
         return m_initiatorName;

     static NeverDestroyed<AtomicString> defaultName("resource", AtomicString::ConstructFromLiteral);
     return defaultName;
 }

 void CachedResourceRequest::setAsPotentiallyCrossOrigin(const String& mode, Document& document)
 {
     ASSERT(m_options.mode == FetchOptions::Mode::NoCors);
     ASSERT(document.securityOrigin());

     m_origin = document.securityOrigin();

     if (mode.isNull())
         return;
     m_options.mode = FetchOptions::Mode::Cors;
     m_options.credentials = equalLettersIgnoringASCIICase(mode, "use-credentials") ? FetchOptions::Credentials::Include : FetchOptions::Credentials::SameOrigin;
     m_options.allowCredentials = equalLettersIgnoringASCIICase(mode, "use-credentials") ? AllowStoredCredentials : DoNotAllowStoredCredentials;

     WebCore::updateRequestForAccessControl(m_resourceRequest, *document.securityOrigin(), m_options.allowCredentials);
 }

 void CachedResourceRequest::updateForAccessControl(Document& document)
 {
     ASSERT(m_options.mode == FetchOptions::Mode::Cors);
     ASSERT(document.securityOrigin());

     m_origin = document.securityOrigin();
     WebCore::updateRequestForAccessControl(m_resourceRequest, *document.securityOrigin(), m_options.allowCredentials);
 }

 void CachedResourceRequest::upgradeInsecureRequestIfNeeded(Document& document)
 {
     URL url = m_resourceRequest.url();

     ASSERT(document.contentSecurityPolicy());
     document.contentSecurityPolicy()->upgradeInsecureRequestIfNeeded(url, ContentSecurityPolicy::InsecureRequestType::Load);

     if (url == m_resourceRequest.url())
         return;

     m_resourceRequest.setURL(url);
 }

 #if ENABLE(CACHE_PARTITIONING)
 void CachedResourceRequest::setDomainForCachePartition(Document& document)
 {
     ASSERT(document.topOrigin());
     m_resourceRequest.setDomainForCachePartition(document.topOrigin()->domainForCachePartition());
 }
 #endif

 static inline String acceptHeaderValueFromType(CachedResource::Type type)
 {
     switch (type) {
     case CachedResource::Type::MainResource:
         return ASCIILiteral("text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8");
     case CachedResource::Type::ImageResource:
         return ASCIILiteral("image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5");
     case CachedResource::Type::CSSStyleSheet:
         return ASCIILiteral("text/css,*/*;q=0.1");
     case CachedResource::Type::SVGDocumentResource:
         return ASCIILiteral("image/svg+xml");
 #if ENABLE(XSLT)
     case CachedResource::Type::XSLStyleSheet:
         // FIXME: This should accept more general xml formats */*+xml, image/svg+xml for example.
         return ASCIILiteral("text/xml,application/xml,application/xhtml+xml,text/xsl,application/rss+xml,application/atom+xml");
 #endif
     default:
         return ASCIILiteral("*/*");
     }
 }

 void CachedResourceRequest::setAcceptHeaderIfNone(CachedResource::Type type)
 {
     if (!m_resourceRequest.hasHTTPHeader(HTTPHeaderName::Accept))
         m_resourceRequest.setHTTPHeaderField(HTTPHeaderName::Accept, acceptHeaderValueFromType(type));
 }

 void CachedResourceRequest::updateAccordingCacheMode()
 {
     if (m_options.cache == FetchOptions::Cache::Default
         && (m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfModifiedSince)
             || m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfNoneMatch)
             || m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfUnmodifiedSince)
             || m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfMatch)
             || m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfRange)))
         m_options.cache = FetchOptions::Cache::NoStore;

     switch (m_options.cache) {
     case FetchOptions::Cache::NoCache:
         m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
         m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::maxAge0());
         break;
     case FetchOptions::Cache::NoStore:
         m_options.cachingPolicy = CachingPolicy::DisallowCaching;
         m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
         m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::Pragma, HTTPHeaderValues::noCache());
         m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::noCache());
         break;
     case FetchOptions::Cache::Reload:
         m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
         m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::Pragma, HTTPHeaderValues::noCache());
         m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::noCache());
         break;
     case FetchOptions::Cache::Default:
         break;
     case FetchOptions::Cache::ForceCache:
         m_resourceRequest.setCachePolicy(ReturnCacheDataElseLoad);
         break;
     case FetchOptions::Cache::OnlyIfCached:
         m_resourceRequest.setCachePolicy(ReturnCacheDataDontLoad);
         break;
     }
 }

 void CachedResourceRequest::removeFragmentIdentifierIfNeeded()
 {
     URL url = MemoryCache::removeFragmentIdentifierIfNeeded(m_resourceRequest.url());
     if (url.string() != m_resourceRequest.url())
         m_resourceRequest.setURL(url);
 }

 #if ENABLE(CONTENT_EXTENSIONS)
 void CachedResourceRequest::applyBlockedStatus(const ContentExtensions::BlockedStatus& blockedStatus)
 {
     ContentExtensions::applyBlockedStatusToRequest(blockedStatus, m_resourceRequest);
 }
 #endif

 } // namespace WebCore
	/*
	* Copyright (C) 2012 Google, Inc. All rights reserved.
	*
	* Redistribution and use in source and binary forms, with or without
	* modification, are permitted provided that the following conditions
	* are met:
	* 1. Redistributions of source code must retain the above copyright
	* notice, this list of conditions and the following disclaimer.
	* 2. Redistributions in binary form must reproduce the above copyright
	* notice, this list of conditions and the following disclaimer in the
	* documentation and/or other materials provided with the distribution.
	*
	* THIS SOFTWARE IS PROVIDED BY GOOGLE INC. ``AS IS'' AND ANY
	* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR
	* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
	* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
	* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
	* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
	* OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
	* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	*/

	#include "config.h"
	#include "CachedResourceRequest.h"

	#include "CachedResourceLoader.h"
	#include "ContentExtensionActions.h"
	#include "CrossOriginAccessControl.h"
	#include "Document.h"
	#include "Element.h"
	#include "HTTPHeaderValues.h"
	#include "MemoryCache.h"
	#include <wtf/NeverDestroyed.h>

	namespace WebCore {

	CachedResourceRequest::CachedResourceRequest(ResourceRequest&& resourceRequest, const ResourceLoaderOptions& options, Optional<ResourceLoadPriority> priority, String&& charset)
	: m_resourceRequest(WTFMove(resourceRequest))
	, m_charset(WTFMove(charset))
	, m_options(options)
	, m_priority(priority)
	{
	}

	void CachedResourceRequest::setInitiator(PassRefPtr<Element> element)
	{
	ASSERT(!m_initiatorElement && m_initiatorName.isEmpty());
	m_initiatorElement = element;
	}

	void CachedResourceRequest::setInitiator(const AtomicString& name)
	{
	ASSERT(!m_initiatorElement && m_initiatorName.isEmpty());
	m_initiatorName = name;
	}

	const AtomicString& CachedResourceRequest::initiatorName() const
	{
	if (m_initiatorElement)
	return m_initiatorElement->localName();
	if (!m_initiatorName.isEmpty())
	return m_initiatorName;

	static NeverDestroyed<AtomicString> defaultName("resource", AtomicString::ConstructFromLiteral);
	return defaultName;
	}

	void CachedResourceRequest::setAsPotentiallyCrossOrigin(const String& mode, Document& document)
	{
	ASSERT(m_options.mode == FetchOptions::Mode::NoCors);
	ASSERT(document.securityOrigin());

	m_origin = document.securityOrigin();

	if (mode.isNull())
	return;
	m_options.mode = FetchOptions::Mode::Cors;
	m_options.credentials = equalLettersIgnoringASCIICase(mode, "use-credentials") ? FetchOptions::Credentials::Include : FetchOptions::Credentials::SameOrigin;
	m_options.allowCredentials = equalLettersIgnoringASCIICase(mode, "use-credentials") ? AllowStoredCredentials : DoNotAllowStoredCredentials;

	WebCore::updateRequestForAccessControl(m_resourceRequest, *document.securityOrigin(), m_options.allowCredentials);
	}

	void CachedResourceRequest::updateForAccessControl(Document& document)
	{
	ASSERT(m_options.mode == FetchOptions::Mode::Cors);
	ASSERT(document.securityOrigin());

	m_origin = document.securityOrigin();
	WebCore::updateRequestForAccessControl(m_resourceRequest, *document.securityOrigin(), m_options.allowCredentials);
	}

	void CachedResourceRequest::upgradeInsecureRequestIfNeeded(Document& document)
	{
	URL url = m_resourceRequest.url();

	ASSERT(document.contentSecurityPolicy());
	document.contentSecurityPolicy()->upgradeInsecureRequestIfNeeded(url, ContentSecurityPolicy::InsecureRequestType::Load);

	if (url == m_resourceRequest.url())
	return;

	m_resourceRequest.setURL(url);
	}

	#if ENABLE(CACHE_PARTITIONING)
	void CachedResourceRequest::setDomainForCachePartition(Document& document)
	{
	ASSERT(document.topOrigin());
	m_resourceRequest.setDomainForCachePartition(document.topOrigin()->domainForCachePartition());
	}
	#endif

	static inline String acceptHeaderValueFromType(CachedResource::Type type)
	{
	switch (type) {
	case CachedResource::Type::MainResource:
	return ASCIILiteral("text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8");
	case CachedResource::Type::ImageResource:
	return ASCIILiteral("image/png,image/svg+xml,image/;q=0.8,/*;q=0.5");
	case CachedResource::Type::CSSStyleSheet:
	return ASCIILiteral("text/css,/;q=0.1");
	case CachedResource::Type::SVGDocumentResource:
	return ASCIILiteral("image/svg+xml");
	#if ENABLE(XSLT)
	case CachedResource::Type::XSLStyleSheet:
	// FIXME: This should accept more general xml formats /+xml, image/svg+xml for example.
	return ASCIILiteral("text/xml,application/xml,application/xhtml+xml,text/xsl,application/rss+xml,application/atom+xml");
	#endif
	default:
	return ASCIILiteral("/");
	}
	}

	void CachedResourceRequest::setAcceptHeaderIfNone(CachedResource::Type type)
	{
	if (!m_resourceRequest.hasHTTPHeader(HTTPHeaderName::Accept))
	m_resourceRequest.setHTTPHeaderField(HTTPHeaderName::Accept, acceptHeaderValueFromType(type));
	}

	void CachedResourceRequest::updateAccordingCacheMode()
	{
	if (m_options.cache == FetchOptions::Cache::Default
	&& (m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfModifiedSince)
	\|\| m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfNoneMatch)
	\|\| m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfUnmodifiedSince)
	\|\| m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfMatch)
	\|\| m_resourceRequest.hasHTTPHeaderField(HTTPHeaderName::IfRange)))
	m_options.cache = FetchOptions::Cache::NoStore;

	switch (m_options.cache) {
	case FetchOptions::Cache::NoCache:
	m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
	m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::maxAge0());
	break;
	case FetchOptions::Cache::NoStore:
	m_options.cachingPolicy = CachingPolicy::DisallowCaching;
	m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
	m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::Pragma, HTTPHeaderValues::noCache());
	m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::noCache());
	break;
	case FetchOptions::Cache::Reload:
	m_resourceRequest.setCachePolicy(ReloadIgnoringCacheData);
	m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::Pragma, HTTPHeaderValues::noCache());
	m_resourceRequest.addHTTPHeaderFieldIfNotPresent(HTTPHeaderName::CacheControl, HTTPHeaderValues::noCache());
	break;
	case FetchOptions::Cache::Default:
	break;
	case FetchOptions::Cache::ForceCache:
	m_resourceRequest.setCachePolicy(ReturnCacheDataElseLoad);
	break;
	case FetchOptions::Cache::OnlyIfCached:
	m_resourceRequest.setCachePolicy(ReturnCacheDataDontLoad);
	break;
	}
	}

	void CachedResourceRequest::removeFragmentIdentifierIfNeeded()
	{
	URL url = MemoryCache::removeFragmentIdentifierIfNeeded(m_resourceRequest.url());
	if (url.string() != m_resourceRequest.url())
	m_resourceRequest.setURL(url);
	}

	#if ENABLE(CONTENT_EXTENSIONS)
	void CachedResourceRequest::applyBlockedStatus(const ContentExtensions::BlockedStatus& blockedStatus)
	{
	ContentExtensions::applyBlockedStatusToRequest(blockedStatus, m_resourceRequest);
	}
	#endif

	} // namespace WebCore