mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-17 22:56:18 +03:00
64 lines
1.6 KiB
C++
64 lines
1.6 KiB
C++
/*
|
|
* ModSecurity, http://www.modsecurity.org/
|
|
* Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
|
|
*
|
|
* You may not use this file except in compliance with
|
|
* the License. You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* If any of the files related to licensing are missing or if you have any
|
|
* other questions related to licensing please contact Trustwave Holdings, Inc.
|
|
* directly using the email address security@modsecurity.org.
|
|
*
|
|
*/
|
|
|
|
#include <string>
|
|
#include <iostream>
|
|
|
|
|
|
#ifndef SRC_REQUEST_BODY_PROCESSOR_MULTIPART_H_
|
|
#define SRC_REQUEST_BODY_PROCESSOR_MULTIPART_H_
|
|
|
|
#include "modsecurity/transaction.h"
|
|
|
|
namespace modsecurity {
|
|
namespace RequestBodyProcessor {
|
|
|
|
class Multipart {
|
|
public:
|
|
Multipart(std::string header, Transaction *transaction);
|
|
bool init();
|
|
|
|
bool boundaryContainsOnlyValidCharacters();
|
|
bool conuntBoundaryParameters();
|
|
bool process(std::string data);
|
|
void checkForCrlfLf(const std::string &blob);
|
|
|
|
transaction::Variables variables;
|
|
|
|
bool crlf;
|
|
bool containsDataAfter;
|
|
bool containsDataBefore;
|
|
bool lf;
|
|
bool boundaryStartsWithWhiteSpace;
|
|
bool boundaryIsQuoted;
|
|
bool missingSemicolon;
|
|
bool invalidQuote;
|
|
#ifndef NO_LOGS
|
|
void debug(int a, std::string str) {
|
|
m_transaction->debug(a, str);
|
|
}
|
|
#endif
|
|
|
|
private:
|
|
std::string m_boundary;
|
|
std::string m_header;
|
|
Transaction *m_transaction;
|
|
};
|
|
|
|
} // namespace RequestBodyProcessor
|
|
} // namespace modsecurity
|
|
|
|
#endif // SRC_REQUEST_BODY_PROCESSOR_MULTIPART_H_
|