File indexing completed on 2024-12-22 05:36:47

 <?php
 /**
  * Zend Framework
  *
  * LICENSE
  *
  * This source file is subject to the new BSD license that is bundled
  * with this package in the file LICENSE.txt.
  * It is also available through the world-wide-web at this URL:
  * http://framework.zend.com/license/new-bsd
  * If you did not receive a copy of the license and are unable to
  * obtain it through the world-wide-web, please send an email
  * to license@zend.com so we can send you a copy immediately.
  *
  * @category   Zend
  * @package    Zend_Http
  * @subpackage Header
  * @version    $Id$
  * @copyright  Copyright (c) 2005-2015 Zend Technologies USA Inc. (http://www.zend.com)
  * @license    http://framework.zend.com/license/new-bsd     New BSD License
  */
 
 
 /**
  * @category   Zend
  * @package    Zend_Http
  * @subpackage Header
  * @copyright  Copyright (c) 2005-2015 Zend Technologies USA Inc. (http://www.zend.com)
  * @license    http://framework.zend.com/license/new-bsd     New BSD License
  */
 final class Zend_Http_Header_HeaderValue
 {
     /**
      * Private constructor; non-instantiable.
      */
     private function __construct()
     {
     }
 
     /**
      * Filter a header value
      *
      * Ensures CRLF header injection vectors are filtered.
      *
      * Per RFC 7230, only VISIBLE ASCII characters, spaces, and horizontal
      * tabs are allowed in values; only one whitespace character is allowed
      * between visible characters.
      *
      * @see http://en.wikipedia.org/wiki/HTTP_response_splitting
      * @param string $value
      * @return string
      */
     public static function filter($value)
     {
         $value  = (string) $value;
         $length = strlen($value);
         $string = '';
         for ($i = 0; $i < $length; $i += 1) {
             $ascii = ord($value[$i]);
 
             // Non-visible, non-whitespace characters
             // 9 === horizontal tab
             // 32-126, 128-254 === visible
             // 127 === DEL
             // 255 === null byte
             if (($ascii < 32 && $ascii !== 9)
                 || $ascii === 127
                 || $ascii > 254
             ) {
                 continue;
             }
 
             $string .= $value[$i];
         }
 
         return $string;
     }
 
     /**
      * Validate a header value.
      *
      * Per RFC 7230, only VISIBLE ASCII characters, spaces, and horizontal
      * tabs are allowed in values; only one whitespace character is allowed
      * between visible characters.
      *
      * @see http://en.wikipedia.org/wiki/HTTP_response_splitting
      * @param string $value
      * @return bool
      */
     public static function isValid($value)
     {
         $value  = (string) $value;
         $length = strlen($value);
         for ($i = 0; $i < $length; $i += 1) {
             $ascii = ord($value[$i]);
 
             // Non-visible, non-whitespace characters
             // 9 === horizontal tab
             // 32-126, 128-254 === visible
             // 127 === DEL
             // 255 === null byte
             if (($ascii < 32 && $ascii !== 9)
                 || $ascii === 127
                 || $ascii > 254
             ) {
                 return false;
             }
         }
 
         return true;
     }
 
     /**
      * Assert a header value is valid.
      *
      * @param string $value
      * @throws Exception\RuntimeException for invalid values
      * @return void
      */
     public static function assertValid($value)
     {
         if (! self::isValid($value)) {
             // require_once 'Zend/Http/Header/Exception/InvalidArgumentException.php';
             throw new Zend_Http_Header_Exception_InvalidArgumentException('Invalid header value');
         }
     }
 }