summaryrefslogtreecommitdiffabout
path: root/lib/util.cc
Unidiff
Diffstat (limited to 'lib/util.cc') (more/less context) (ignore whitespace changes)
-rw-r--r--lib/util.cc4
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/util.cc b/lib/util.cc
index 3e7f3aa..b702291 100644
--- a/lib/util.cc
+++ b/lib/util.cc
@@ -1,525 +1,525 @@
1#include <errno.h> 1#include <errno.h>
2#include <cassert> 2#include <cassert>
3#include <cctype> 3#include <cctype>
4#include <cstring> 4#include <cstring>
5#include <vector> 5#include <vector>
6#include <string> 6#include <string>
7#include <stack> 7#include <stack>
8#include <algorithm> 8#include <algorithm>
9#include <openssl/bio.h> 9#include <openssl/bio.h>
10#include <openssl/evp.h> 10#include <openssl/evp.h>
11#include <openssl/sha.h> 11#include <openssl/sha.h>
12#include <openssl/hmac.h> 12#include <openssl/hmac.h>
13#include <opkele/util.h> 13#include <opkele/util.h>
14#include <opkele/exception.h> 14#include <opkele/exception.h>
15#include <opkele/data.h> 15#include <opkele/data.h>
16#include <opkele/debug.h> 16#include <opkele/debug.h>
17 17
18#include <config.h> 18#include <config.h>
19#ifdef HAVE_DEMANGLE 19#ifdef HAVE_DEMANGLE
20# include <cxxabi.h> 20# include <cxxabi.h>
21#endif 21#endif
22 22
23namespace opkele { 23namespace opkele {
24 using namespace std; 24 using namespace std;
25 25
26 namespace util { 26 namespace util {
27 27
28 /* 28 /*
29 * base64 29 * base64
30 */ 30 */
31 string encode_base64(const void *data,size_t length) { 31 string encode_base64(const void *data,size_t length) {
32 BIO *b64 = 0, *bmem = 0; 32 BIO *b64 = 0, *bmem = 0;
33 try { 33 try {
34 b64 = BIO_new(BIO_f_base64()); 34 b64 = BIO_new(BIO_f_base64());
35 if(!b64) 35 if(!b64)
36 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() base64 encoder"); 36 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() base64 encoder");
37 BIO_set_flags(b64,BIO_FLAGS_BASE64_NO_NL); 37 BIO_set_flags(b64,BIO_FLAGS_BASE64_NO_NL);
38 bmem = BIO_new(BIO_s_mem()); 38 bmem = BIO_new(BIO_s_mem());
39 BIO_set_flags(b64,BIO_CLOSE); 39 BIO_set_flags(b64,BIO_CLOSE);
40 if(!bmem) 40 if(!bmem)
41 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() memory buffer"); 41 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() memory buffer");
42 BIO_push(b64,bmem); 42 BIO_push(b64,bmem);
43 if(((size_t)BIO_write(b64,data,length))!=length) 43 if(((size_t)BIO_write(b64,data,length))!=length)
44 throw exception_openssl(OPKELE_CP_ "failed to BIO_write()"); 44 throw exception_openssl(OPKELE_CP_ "failed to BIO_write()");
45 if(BIO_flush(b64)!=1) 45 if(BIO_flush(b64)!=1)
46 throw exception_openssl(OPKELE_CP_ "failed to BIO_flush()"); 46 throw exception_openssl(OPKELE_CP_ "failed to BIO_flush()");
47 char *rvd; 47 char *rvd;
48 long rvl = BIO_get_mem_data(bmem,&rvd); 48 long rvl = BIO_get_mem_data(bmem,&rvd);
49 string rv(rvd,rvl); 49 string rv(rvd,rvl);
50 BIO_free_all(b64); 50 BIO_free_all(b64);
51 return rv; 51 return rv;
52 }catch(...) { 52 }catch(...) {
53 if(b64) BIO_free_all(b64); 53 if(b64) BIO_free_all(b64);
54 throw; 54 throw;
55 } 55 }
56 } 56 }
57 57
58 void decode_base64(const string& data,vector<unsigned char>& rv) { 58 void decode_base64(const string& data,vector<unsigned char>& rv) {
59 BIO *b64 = 0, *bmem = 0; 59 BIO *b64 = 0, *bmem = 0;
60 rv.clear(); 60 rv.clear();
61 try { 61 try {
62 bmem = BIO_new_mem_buf((void*)data.data(),data.size()); 62 bmem = BIO_new_mem_buf((void*)data.data(),data.size());
63 if(!bmem) 63 if(!bmem)
64 throw exception_openssl(OPKELE_CP_ "failed to BIO_new_mem_buf()"); 64 throw exception_openssl(OPKELE_CP_ "failed to BIO_new_mem_buf()");
65 b64 = BIO_new(BIO_f_base64()); 65 b64 = BIO_new(BIO_f_base64());
66 if(!b64) 66 if(!b64)
67 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() base64 decoder"); 67 throw exception_openssl(OPKELE_CP_ "failed to BIO_new() base64 decoder");
68 BIO_set_flags(b64,BIO_FLAGS_BASE64_NO_NL); 68 BIO_set_flags(b64,BIO_FLAGS_BASE64_NO_NL);
69 BIO_push(b64,bmem); 69 BIO_push(b64,bmem);
70 unsigned char tmp[512]; 70 unsigned char tmp[512];
71 size_t rb = 0; 71 size_t rb = 0;
72 while((rb=BIO_read(b64,tmp,sizeof(tmp)))>0) 72 while((rb=BIO_read(b64,tmp,sizeof(tmp)))>0)
73 rv.insert(rv.end(),tmp,&tmp[rb]); 73 rv.insert(rv.end(),tmp,&tmp[rb]);
74 BIO_free_all(b64); 74 BIO_free_all(b64);
75 }catch(...) { 75 }catch(...) {
76 if(b64) BIO_free_all(b64); 76 if(b64) BIO_free_all(b64);
77 throw; 77 throw;
78 } 78 }
79 } 79 }
80 80
81 /* 81 /*
82 * big numerics 82 * big numerics
83 */ 83 */
84 84
85 BIGNUM *base64_to_bignum(const string& b64) { 85 BIGNUM *base64_to_bignum(const string& b64) {
86 vector<unsigned char> bin; 86 vector<unsigned char> bin;
87 decode_base64(b64,bin); 87 decode_base64(b64,bin);
88 BIGNUM *rv = BN_bin2bn(&(bin.front()),bin.size(),0); 88 BIGNUM *rv = BN_bin2bn(&(bin.front()),bin.size(),0);
89 if(!rv) 89 if(!rv)
90 throw failed_conversion(OPKELE_CP_ "failed to BN_bin2bn()"); 90 throw failed_conversion(OPKELE_CP_ "failed to BN_bin2bn()");
91 return rv; 91 return rv;
92 } 92 }
93 93
94 BIGNUM *dec_to_bignum(const string& dec) { 94 BIGNUM *dec_to_bignum(const string& dec) {
95 BIGNUM *rv = 0; 95 BIGNUM *rv = 0;
96 if(!BN_dec2bn(&rv,dec.c_str())) 96 if(!BN_dec2bn(&rv,dec.c_str()))
97 throw failed_conversion(OPKELE_CP_ "failed to BN_dec2bn()"); 97 throw failed_conversion(OPKELE_CP_ "failed to BN_dec2bn()");
98 return rv; 98 return rv;
99 } 99 }
100 100
101 string bignum_to_base64(const BIGNUM *bn) { 101 string bignum_to_base64(const BIGNUM *bn) {
102 vector<unsigned char> bin(BN_num_bytes(bn)+1); 102 vector<unsigned char> bin(BN_num_bytes(bn)+1);
103 unsigned char *binptr = &(bin.front())+1; 103 unsigned char *binptr = &(bin.front())+1;
104 int l = BN_bn2bin(bn,binptr); 104 int l = BN_bn2bin(bn,binptr);
105 if(l && (*binptr)&0x80){ 105 if(l && (*binptr)&0x80){
106 (*(--binptr)) = 0; ++l; 106 (*(--binptr)) = 0; ++l;
107 } 107 }
108 return encode_base64(binptr,l); 108 return encode_base64(binptr,l);
109 } 109 }
110 110
111 /* 111 /*
112 * w3c times 112 * w3c times
113 */ 113 */
114 114
115 string time_to_w3c(time_t t) { 115 string time_to_w3c(time_t t) {
116 struct tm tm_t; 116 struct tm tm_t;
117 if(!gmtime_r(&t,&tm_t)) 117 if(!gmtime_r(&t,&tm_t))
118 throw failed_conversion(OPKELE_CP_ "failed to BN_dec2bn()"); 118 throw failed_conversion(OPKELE_CP_ "failed to BN_dec2bn()");
119 char rv[25]; 119 char rv[25];
120 if(!strftime(rv,sizeof(rv)-1,"%Y-%m-%dT%H:%M:%SZ",&tm_t)) 120 if(!strftime(rv,sizeof(rv)-1,"%Y-%m-%dT%H:%M:%SZ",&tm_t))
121 throw failed_conversion(OPKELE_CP_ "failed to strftime()"); 121 throw failed_conversion(OPKELE_CP_ "failed to strftime()");
122 return rv; 122 return rv;
123 } 123 }
124 124
125 time_t w3c_to_time(const string& w) { 125 time_t w3c_to_time(const string& w) {
126 int fraction; 126 int fraction;
127 struct tm tm_t; 127 struct tm tm_t;
128 memset(&tm_t,0,sizeof(tm_t)); 128 memset(&tm_t,0,sizeof(tm_t));
129 if( ( 129 if( (
130 sscanf( 130 sscanf(
131 w.c_str(), 131 w.c_str(),
132 "%04d-%02d-%02dT%02d:%02d:%02dZ", 132 "%04d-%02d-%02dT%02d:%02d:%02dZ",
133 &tm_t.tm_year,&tm_t.tm_mon,&tm_t.tm_mday, 133 &tm_t.tm_year,&tm_t.tm_mon,&tm_t.tm_mday,
134 &tm_t.tm_hour,&tm_t.tm_min,&tm_t.tm_sec 134 &tm_t.tm_hour,&tm_t.tm_min,&tm_t.tm_sec
135 ) != 6 135 ) != 6
136 ) && ( 136 ) && (
137 sscanf( 137 sscanf(
138 w.c_str(), 138 w.c_str(),
139 "%04d-%02d-%02dT%02d:%02d:%02d.%03dZ", 139 "%04d-%02d-%02dT%02d:%02d:%02d.%03dZ",
140 &tm_t.tm_year,&tm_t.tm_mon,&tm_t.tm_mday, 140 &tm_t.tm_year,&tm_t.tm_mon,&tm_t.tm_mday,
141 &tm_t.tm_hour,&tm_t.tm_min,&tm_t.tm_sec, 141 &tm_t.tm_hour,&tm_t.tm_min,&tm_t.tm_sec,
142 &fraction 142 &fraction
143 ) != 7 143 ) != 7
144 ) ) 144 ) )
145 throw failed_conversion(OPKELE_CP_ "failed to sscanf()"); 145 throw failed_conversion(OPKELE_CP_ "failed to sscanf()");
146 tm_t.tm_mon--; 146 tm_t.tm_mon--;
147 tm_t.tm_year-=1900; 147 tm_t.tm_year-=1900;
148 time_t rv = mktime(&tm_t); 148 time_t rv = mktime(&tm_t);
149 if(rv==(time_t)-1) 149 if(rv==(time_t)-1)
150 throw failed_conversion(OPKELE_CP_ "failed to mktime()"); 150 throw failed_conversion(OPKELE_CP_ "failed to mktime()");
151 return rv-timezone; 151 return rv-timezone;
152 } 152 }
153 153
154 /* 154 /*
155 * 155 *
156 */ 156 */
157 157
158 static inline bool isrfc3986unreserved(int c) { 158 static inline bool isrfc3986unreserved(int c) {
159 if(c<'-') return false; 159 if(c<'-') return false;
160 if(c<='.') return true; 160 if(c<='.') return true;
161 if(c<'0') return false; if(c<='9') return true; 161 if(c<'0') return false; if(c<='9') return true;
162 if(c<'A') return false; if(c<='Z') return true; 162 if(c<'A') return false; if(c<='Z') return true;
163 if(c<'_') return false; 163 if(c<'_') return false;
164 if(c=='_') return true; 164 if(c=='_') return true;
165 if(c<'a') return false; if(c<='z') return true; 165 if(c<'a') return false; if(c<='z') return true;
166 if(c=='~') return true; 166 if(c=='~') return true;
167 return false; 167 return false;
168 } 168 }
169 169
170 struct __url_encoder : public unary_function<char,void> { 170 struct __url_encoder : public unary_function<char,void> {
171 public: 171 public:
172 string& rv; 172 string& rv;
173 173
174 __url_encoder(string& r) : rv(r) { } 174 __url_encoder(string& r) : rv(r) { }
175 175
176 result_type operator()(argument_type c) { 176 result_type operator()(argument_type c) {
177 if(isrfc3986unreserved(c)) 177 if(isrfc3986unreserved(c))
178 rv += c; 178 rv += c;
179 else{ 179 else{
180 char tmp[4]; 180 char tmp[4];
181 snprintf(tmp,sizeof(tmp),"%%%02X", 181 snprintf(tmp,sizeof(tmp),"%%%02X",
182 (c&0xff)); 182 (c&0xff));
183 rv += tmp; 183 rv += tmp;
184 } 184 }
185 } 185 }
186 }; 186 };
187 187
188 string url_encode(const string& str) { 188 string url_encode(const string& str) {
189 string rv; 189 string rv;
190 for_each(str.begin(),str.end(), 190 for_each(str.begin(),str.end(),
191 __url_encoder(rv)); 191 __url_encoder(rv));
192 return rv; 192 return rv;
193 } 193 }
194 194
195 string url_decode(const string& str) { 195 string url_decode(const string& str) {
196 string rv; 196 string rv;
197 back_insert_iterator<string> ii(rv); 197 back_insert_iterator<string> ii(rv);
198 for(string::const_iterator i=str.begin(),ie=str.end(); 198 for(string::const_iterator i=str.begin(),ie=str.end();
199 i!=ie;++i) { 199 i!=ie;++i) {
200 switch(*i) { 200 switch(*i) {
201 case '+': 201 case '+':
202 *(ii++) = ' '; break; 202 *(ii++) = ' '; break;
203 case '%': 203 case '%':
204 ++i; 204 ++i;
205 static char tmp[3] = {0,0,0}; 205 static char tmp[3] = {0,0,0};
206 if(i==ie) 206 if(i==ie)
207 throw failed_conversion(OPKELE_CP_ "trailing percent in the url-encoded string"); 207 throw failed_conversion(OPKELE_CP_ "trailing percent in the url-encoded string");
208 tmp[0] == *(i++); 208 tmp[0] = *(i++);
209 if(i==ie) 209 if(i==ie)
210 throw failed_conversion(OPKELE_CP_ "not enough hexadecimals after the percent sign in url-encoded string"); 210 throw failed_conversion(OPKELE_CP_ "not enough hexadecimals after the percent sign in url-encoded string");
211 tmp[1] == *i; 211 tmp[1] = *i;
212 if(!(isxdigit(tmp[0]) && isxdigit(tmp[1]))) 212 if(!(isxdigit(tmp[0]) && isxdigit(tmp[1])))
213 throw failed_conversion(OPKELE_CP_ "non-hex follows percent in url-encoded string"); 213 throw failed_conversion(OPKELE_CP_ "non-hex follows percent in url-encoded string");
214 *(ii++) = strtol(tmp,0,16); 214 *(ii++) = strtol(tmp,0,16);
215 break; 215 break;
216 default: 216 default:
217 *(ii++) = *i; break; 217 *(ii++) = *i; break;
218 } 218 }
219 } 219 }
220 return rv; 220 return rv;
221 } 221 }
222 222
223 string attr_escape(const string& str) { 223 string attr_escape(const string& str) {
224 static const char *unsafechars = "<>&\n\"'"; 224 static const char *unsafechars = "<>&\n\"'";
225 string rv; 225 string rv;
226 string::size_type p=0; 226 string::size_type p=0;
227 while(true) { 227 while(true) {
228 string::size_type us = str.find_first_of(unsafechars,p); 228 string::size_type us = str.find_first_of(unsafechars,p);
229 if(us==string::npos) { 229 if(us==string::npos) {
230 if(p!=str.length()) 230 if(p!=str.length())
231 rv.append(str,p,str.length()-p); 231 rv.append(str,p,str.length()-p);
232 return rv; 232 return rv;
233 } 233 }
234 rv.append(str,p,us-p); 234 rv.append(str,p,us-p);
235 rv += "&#"; 235 rv += "&#";
236 rv += long_to_string((long)str[us]); 236 rv += long_to_string((long)str[us]);
237 rv += ';'; 237 rv += ';';
238 p = us+1; 238 p = us+1;
239 } 239 }
240 } 240 }
241 241
242 string long_to_string(long l) { 242 string long_to_string(long l) {
243 char rv[32]; 243 char rv[32];
244 int r=snprintf(rv,sizeof(rv),"%ld",l); 244 int r=snprintf(rv,sizeof(rv),"%ld",l);
245 if(r<0 || r>=(int)sizeof(rv)) 245 if(r<0 || r>=(int)sizeof(rv))
246 throw failed_conversion(OPKELE_CP_ "failed to snprintf()"); 246 throw failed_conversion(OPKELE_CP_ "failed to snprintf()");
247 return rv; 247 return rv;
248 } 248 }
249 249
250 long string_to_long(const string& s) { 250 long string_to_long(const string& s) {
251 char *endptr = 0; 251 char *endptr = 0;
252 long rv = strtol(s.c_str(),&endptr,10); 252 long rv = strtol(s.c_str(),&endptr,10);
253 if((!endptr) || endptr==s.c_str()) 253 if((!endptr) || endptr==s.c_str())
254 throw failed_conversion(OPKELE_CP_ "failed to strtol()"); 254 throw failed_conversion(OPKELE_CP_ "failed to strtol()");
255 return rv; 255 return rv;
256 } 256 }
257 257
258 /* 258 /*
259 * Normalize URL according to the rules, described in rfc 3986, section 6 259 * Normalize URL according to the rules, described in rfc 3986, section 6
260 * 260 *
261 * - uppercase hex triplets (e.g. %ab -> %AB) 261 * - uppercase hex triplets (e.g. %ab -> %AB)
262 * - lowercase scheme and host 262 * - lowercase scheme and host
263 * - decode %-encoded characters, specified as unreserved in rfc 3986, section 2.3, 263 * - decode %-encoded characters, specified as unreserved in rfc 3986, section 2.3,
264 * that is - [:alpha:][:digit:]._~- 264 * that is - [:alpha:][:digit:]._~-
265 * - remove dot segments 265 * - remove dot segments
266 * - remove empty and default ports 266 * - remove empty and default ports
267 * - if there's no path component, add '/' 267 * - if there's no path component, add '/'
268 */ 268 */
269 string rfc_3986_normalize_uri(const string& uri) { 269 string rfc_3986_normalize_uri(const string& uri) {
270 string rv; 270 string rv;
271 string::size_type ns = uri.find_first_not_of(data::_whitespace_chars); 271 string::size_type ns = uri.find_first_not_of(data::_whitespace_chars);
272 if(ns==string::npos) 272 if(ns==string::npos)
273 throw bad_input(OPKELE_CP_ "Can't normalize empty URI"); 273 throw bad_input(OPKELE_CP_ "Can't normalize empty URI");
274 string::size_type colon = uri.find(':',ns); 274 string::size_type colon = uri.find(':',ns);
275 if(colon==string::npos) 275 if(colon==string::npos)
276 throw bad_input(OPKELE_CP_ "No scheme specified in URI"); 276 throw bad_input(OPKELE_CP_ "No scheme specified in URI");
277 transform( 277 transform(
278 uri.begin()+ns, uri.begin()+colon+1, 278 uri.begin()+ns, uri.begin()+colon+1,
279 back_inserter(rv), ::tolower ); 279 back_inserter(rv), ::tolower );
280 bool s; 280 bool s;
281 string::size_type ul = uri.find_last_not_of(data::_whitespace_chars)+1; 281 string::size_type ul = uri.find_last_not_of(data::_whitespace_chars)+1;
282 if(ul <= (colon+3)) 282 if(ul <= (colon+3))
283 throw bad_input(OPKELE_CP_ "Unexpected end of URI being normalized encountered"); 283 throw bad_input(OPKELE_CP_ "Unexpected end of URI being normalized encountered");
284 if(uri[colon+1]!='/' || uri[colon+2]!='/') 284 if(uri[colon+1]!='/' || uri[colon+2]!='/')
285 throw bad_input(OPKELE_CP_ "Unexpected input in URI being normalized after scheme component"); 285 throw bad_input(OPKELE_CP_ "Unexpected input in URI being normalized after scheme component");
286 if(rv=="http:") 286 if(rv=="http:")
287 s = false; 287 s = false;
288 else if(rv=="https:") 288 else if(rv=="https:")
289 s = true; 289 s = true;
290 else{ 290 else{
291 /* TODO: support more schemes. e.g. xri. How do we normalize 291 /* TODO: support more schemes. e.g. xri. How do we normalize
292 * xri? 292 * xri?
293 */ 293 */
294 rv.append(uri,colon+1,ul-colon-1); 294 rv.append(uri,colon+1,ul-colon-1);
295 return rv; 295 return rv;
296 } 296 }
297 rv += "//"; 297 rv += "//";
298 string::size_type interesting = uri.find_first_of(":/#?",colon+3); 298 string::size_type interesting = uri.find_first_of(":/#?",colon+3);
299 if(interesting==string::npos) { 299 if(interesting==string::npos) {
300 transform( 300 transform(
301 uri.begin()+colon+3,uri.begin()+ul, 301 uri.begin()+colon+3,uri.begin()+ul,
302 back_inserter(rv), ::tolower ); 302 back_inserter(rv), ::tolower );
303 rv += '/'; return rv; 303 rv += '/'; return rv;
304 } 304 }
305 transform( 305 transform(
306 uri.begin()+colon+3,uri.begin()+interesting, 306 uri.begin()+colon+3,uri.begin()+interesting,
307 back_inserter(rv), ::tolower ); 307 back_inserter(rv), ::tolower );
308 bool qf = false; 308 bool qf = false;
309 char ic = uri[interesting]; 309 char ic = uri[interesting];
310 if(ic==':') { 310 if(ic==':') {
311 string::size_type ni = uri.find_first_of("/#?%",interesting+1); 311 string::size_type ni = uri.find_first_of("/#?%",interesting+1);
312 const char *nptr = uri.data()+interesting+1; 312 const char *nptr = uri.data()+interesting+1;
313 char *eptr = 0; 313 char *eptr = 0;
314 long port = strtol(nptr,&eptr,10); 314 long port = strtol(nptr,&eptr,10);
315 if( (port>0) && (port<65535) && port!=(s?443:80) ) { 315 if( (port>0) && (port<65535) && port!=(s?443:80) ) {
316 char tmp[8]; 316 char tmp[8];
317 snprintf(tmp,sizeof(tmp),":%ld",port); 317 snprintf(tmp,sizeof(tmp),":%ld",port);
318 rv += tmp; 318 rv += tmp;
319 } 319 }
320 if(ni==string::npos) { 320 if(ni==string::npos) {
321 rv += '/'; return rv; 321 rv += '/'; return rv;
322 } 322 }
323 interesting = ni; 323 interesting = ni;
324 }else if(ic!='/') { 324 }else if(ic!='/') {
325 rv += '/'; rv += ic; 325 rv += '/'; rv += ic;
326 qf = true; 326 qf = true;
327 ++interesting; 327 ++interesting;
328 } 328 }
329 string::size_type n = interesting; 329 string::size_type n = interesting;
330 char tmp[3] = { 0,0,0 }; 330 char tmp[3] = { 0,0,0 };
331 stack<string::size_type> psegs; psegs.push(rv.length()); 331 stack<string::size_type> psegs; psegs.push(rv.length());
332 string pseg; 332 string pseg;
333 for(;n<ul;) { 333 for(;n<ul;) {
334 string::size_type unsafe = uri.find_first_of(qf?"%":"%/?#",n); 334 string::size_type unsafe = uri.find_first_of(qf?"%":"%/?#",n);
335 if(unsafe==string::npos) { 335 if(unsafe==string::npos) {
336 pseg.append(uri,n,ul-n-1); n = ul-1; 336 pseg.append(uri,n,ul-n-1); n = ul-1;
337 }else{ 337 }else{
338 pseg.append(uri,n,unsafe-n); 338 pseg.append(uri,n,unsafe-n);
339 n = unsafe; 339 n = unsafe;
340 } 340 }
341 char c = uri[n++]; 341 char c = uri[n++];
342 if(c=='%') { 342 if(c=='%') {
343 if((n+1)>=ul) 343 if((n+1)>=ul)
344 throw bad_input(OPKELE_CP_ "Unexpected end of URI encountered while parsing percent-encoded character"); 344 throw bad_input(OPKELE_CP_ "Unexpected end of URI encountered while parsing percent-encoded character");
345 tmp[0] = uri[n++]; 345 tmp[0] = uri[n++];
346 tmp[1] = uri[n++]; 346 tmp[1] = uri[n++];
347 if(!( isxdigit(tmp[0]) && isxdigit(tmp[1]) )) 347 if(!( isxdigit(tmp[0]) && isxdigit(tmp[1]) ))
348 throw bad_input(OPKELE_CP_ "Invalid percent-encoded character in URI being normalized"); 348 throw bad_input(OPKELE_CP_ "Invalid percent-encoded character in URI being normalized");
349 int cc = strtol(tmp,0,16); 349 int cc = strtol(tmp,0,16);
350 if( isalpha(cc) || isdigit(cc) || strchr("._~-",cc) ) 350 if( isalpha(cc) || isdigit(cc) || strchr("._~-",cc) )
351 pseg += cc; 351 pseg += cc;
352 else{ 352 else{
353 pseg += '%'; 353 pseg += '%';
354 pseg += toupper(tmp[0]); pseg += toupper(tmp[1]); 354 pseg += toupper(tmp[0]); pseg += toupper(tmp[1]);
355 } 355 }
356 }else if(qf) { 356 }else if(qf) {
357 rv += pseg; rv += c; 357 rv += pseg; rv += c;
358 pseg.clear(); 358 pseg.clear();
359 }else if(n>=ul || strchr("?/#",c)) { 359 }else if(n>=ul || strchr("?/#",c)) {
360 if(pseg.empty() || pseg==".") { 360 if(pseg.empty() || pseg==".") {
361 }else if(pseg=="..") { 361 }else if(pseg=="..") {
362 if(psegs.size()>1) { 362 if(psegs.size()>1) {
363 rv.resize(psegs.top()); psegs.pop(); 363 rv.resize(psegs.top()); psegs.pop();
364 } 364 }
365 }else{ 365 }else{
366 psegs.push(rv.length()); 366 psegs.push(rv.length());
367 if(c!='/') { 367 if(c!='/') {
368 pseg += c; 368 pseg += c;
369 qf = true; 369 qf = true;
370 } 370 }
371 rv += '/'; rv += pseg; 371 rv += '/'; rv += pseg;
372 } 372 }
373 if(c=='/' && (n>=ul || strchr("?#",uri[n])) ) { 373 if(c=='/' && (n>=ul || strchr("?#",uri[n])) ) {
374 rv += '/'; 374 rv += '/';
375 if(n<ul) 375 if(n<ul)
376 qf = true; 376 qf = true;
377 }else if(strchr("?#",c)) { 377 }else if(strchr("?#",c)) {
378 if(psegs.size()==1 && psegs.top()==rv.length()) 378 if(psegs.size()==1 && psegs.top()==rv.length())
379 rv += '/'; 379 rv += '/';
380 if(pseg.empty()) 380 if(pseg.empty())
381 rv += c; 381 rv += c;
382 qf = true; 382 qf = true;
383 } 383 }
384 pseg.clear(); 384 pseg.clear();
385 }else{ 385 }else{
386 pseg += c; 386 pseg += c;
387 } 387 }
388 } 388 }
389 if(!pseg.empty()) { 389 if(!pseg.empty()) {
390 if(!qf) rv += '/'; 390 if(!qf) rv += '/';
391 rv += pseg; 391 rv += pseg;
392 } 392 }
393 return rv; 393 return rv;
394 } 394 }
395 395
396 string& strip_uri_fragment_part(string& u) { 396 string& strip_uri_fragment_part(string& u) {
397 string::size_type q = u.find('?'), f = u.find('#'); 397 string::size_type q = u.find('?'), f = u.find('#');
398 if(q==string::npos) { 398 if(q==string::npos) {
399 if(f!=string::npos) 399 if(f!=string::npos)
400 u.erase(f); 400 u.erase(f);
401 }else{ 401 }else{
402 if(f!=string::npos) { 402 if(f!=string::npos) {
403 if(f<q) 403 if(f<q)
404 u.erase(f,q-f); 404 u.erase(f,q-f);
405 else 405 else
406 u.erase(f); 406 u.erase(f);
407 } 407 }
408 } 408 }
409 return u; 409 return u;
410 } 410 }
411 411
412 bool uri_matches_realm(const string& uri,const string& realm) { 412 bool uri_matches_realm(const string& uri,const string& realm) {
413 string nrealm = opkele::util::rfc_3986_normalize_uri(realm); 413 string nrealm = opkele::util::rfc_3986_normalize_uri(realm);
414 string nu = opkele::util::rfc_3986_normalize_uri(uri); 414 string nu = opkele::util::rfc_3986_normalize_uri(uri);
415 string::size_type pr = nrealm.find("://"); 415 string::size_type pr = nrealm.find("://");
416 string::size_type pu = nu.find("://"); 416 string::size_type pu = nu.find("://");
417 assert(!(pr==string::npos || pu==string::npos)); 417 assert(!(pr==string::npos || pu==string::npos));
418 pr += sizeof("://")-1; 418 pr += sizeof("://")-1;
419 pu += sizeof("://")-1; 419 pu += sizeof("://")-1;
420 if(!strncmp(nrealm.c_str()+pr,"*.",2)) { 420 if(!strncmp(nrealm.c_str()+pr,"*.",2)) {
421 pr = nrealm.find('.',pr); 421 pr = nrealm.find('.',pr);
422 pu = nu.find('.',pu); 422 pu = nu.find('.',pu);
423 assert(pr!=string::npos); 423 assert(pr!=string::npos);
424 if(pu==string::npos) 424 if(pu==string::npos)
425 return false; 425 return false;
426 // TODO: check for overgeneralized realm 426 // TODO: check for overgeneralized realm
427 } 427 }
428 string::size_type lr = nrealm.length(); 428 string::size_type lr = nrealm.length();
429 string::size_type lu = nu.length(); 429 string::size_type lu = nu.length();
430 if( (lu-pu) < (lr-pr) ) 430 if( (lu-pu) < (lr-pr) )
431 return false; 431 return false;
432 pair<const char*,const char*> mp = mismatch( 432 pair<const char*,const char*> mp = mismatch(
433 nrealm.c_str()+pr,nrealm.c_str()+lr, 433 nrealm.c_str()+pr,nrealm.c_str()+lr,
434 nu.c_str()+pu); 434 nu.c_str()+pu);
435 if( (*(mp.first-1))!='/' 435 if( (*(mp.first-1))!='/'
436 && !strchr("/?#",*mp.second) ) 436 && !strchr("/?#",*mp.second) )
437 return false; 437 return false;
438 return true; 438 return true;
439 } 439 }
440 440
441 string abi_demangle(const char *mn) { 441 string abi_demangle(const char *mn) {
442#ifndef HAVE_DEMANGLE 442#ifndef HAVE_DEMANGLE
443 return mn; 443 return mn;
444#else /* !HAVE_DEMANGLE */ 444#else /* !HAVE_DEMANGLE */
445 int dstat; 445 int dstat;
446 char *demangled = abi::__cxa_demangle(mn,0,0,&dstat); 446 char *demangled = abi::__cxa_demangle(mn,0,0,&dstat);
447 if(dstat) 447 if(dstat)
448 return mn; 448 return mn;
449 string rv = demangled; 449 string rv = demangled;
450 free(demangled); 450 free(demangled);
451 return rv; 451 return rv;
452#endif /* !HAVE_DEMANGLE */ 452#endif /* !HAVE_DEMANGLE */
453 } 453 }
454 454
455 string base64_signature(const assoc_t& assoc,const basic_openid_message& om) { 455 string base64_signature(const assoc_t& assoc,const basic_openid_message& om) {
456 const string& slist = om.get_field("signed"); 456 const string& slist = om.get_field("signed");
457 string kv; 457 string kv;
458 string::size_type p=0; 458 string::size_type p=0;
459 while(true) { 459 while(true) {
460 string::size_type co = slist.find(',',p); 460 string::size_type co = slist.find(',',p);
461 string f = (co==string::npos) 461 string f = (co==string::npos)
462 ?slist.substr(p):slist.substr(p,co-p); 462 ?slist.substr(p):slist.substr(p,co-p);
463 kv += f; 463 kv += f;
464 kv += ':'; 464 kv += ':';
465 kv += om.get_field(f); 465 kv += om.get_field(f);
466 kv += '\n'; 466 kv += '\n';
467 if(co==string::npos) break; 467 if(co==string::npos) break;
468 p = co+1; 468 p = co+1;
469 } 469 }
470 const secret_t& secret = assoc->secret(); 470 const secret_t& secret = assoc->secret();
471 const EVP_MD *evpmd; 471 const EVP_MD *evpmd;
472 const string& at = assoc->assoc_type(); 472 const string& at = assoc->assoc_type();
473 if(at=="HMAC-SHA256") 473 if(at=="HMAC-SHA256")
474 evpmd = EVP_sha256(); 474 evpmd = EVP_sha256();
475 else if(at=="HMAC-SHA1") 475 else if(at=="HMAC-SHA1")
476 evpmd = EVP_sha1(); 476 evpmd = EVP_sha1();
477 else 477 else
478 throw unsupported(OPKELE_CP_ "unknown association type"); 478 throw unsupported(OPKELE_CP_ "unknown association type");
479 unsigned int md_len = 0; 479 unsigned int md_len = 0;
480 unsigned char md[SHA256_DIGEST_LENGTH]; 480 unsigned char md[SHA256_DIGEST_LENGTH];
481 HMAC(evpmd, 481 HMAC(evpmd,
482 &(secret.front()),secret.size(), 482 &(secret.front()),secret.size(),
483 (const unsigned char*)kv.data(),kv.length(), 483 (const unsigned char*)kv.data(),kv.length(),
484 md,&md_len); 484 md,&md_len);
485 return encode_base64(md,md_len); 485 return encode_base64(md,md_len);
486 } 486 }
487 487
488 string normalize_identifier(const string& usi,bool strip_fragment) { 488 string normalize_identifier(const string& usi,bool strip_fragment) {
489 if(usi.empty()) 489 if(usi.empty())
490 return usi; 490 return usi;
491 string rv; 491 string rv;
492 string::size_type fsc = usi.find_first_not_of(data::_whitespace_chars); 492 string::size_type fsc = usi.find_first_not_of(data::_whitespace_chars);
493 if(fsc==string::npos) 493 if(fsc==string::npos)
494 return rv; 494 return rv;
495 string::size_type lsc = usi.find_last_not_of(data::_whitespace_chars); 495 string::size_type lsc = usi.find_last_not_of(data::_whitespace_chars);
496 assert(lsc!=string::npos); 496 assert(lsc!=string::npos);
497 if(!strncasecmp(usi.c_str()+fsc,"xri://",sizeof("xri://")-1)) 497 if(!strncasecmp(usi.c_str()+fsc,"xri://",sizeof("xri://")-1))
498 fsc += sizeof("xri://")-1; 498 fsc += sizeof("xri://")-1;
499 if( (fsc+1) >= lsc ) 499 if( (fsc+1) >= lsc )
500 return rv; 500 return rv;
501 rv.assign(usi,fsc,lsc-fsc+1); 501 rv.assign(usi,fsc,lsc-fsc+1);
502 if(strchr(data::_iname_leaders,rv[0])) { 502 if(strchr(data::_iname_leaders,rv[0])) {
503 /* TODO: further normalize xri identity, fold case or 503 /* TODO: further normalize xri identity, fold case or
504 * whatever... */ 504 * whatever... */
505 }else{ 505 }else{
506 if(rv.find("://")==string::npos) 506 if(rv.find("://")==string::npos)
507 rv.insert(0,"http://"); 507 rv.insert(0,"http://");
508 if(strip_fragment) { 508 if(strip_fragment) {
509 string::size_type fp = rv.find('#'); 509 string::size_type fp = rv.find('#');
510 if(fp!=string::npos) { 510 if(fp!=string::npos) {
511 string::size_type qp = rv.find('?'); 511 string::size_type qp = rv.find('?');
512 if(qp==string::npos || qp<fp) 512 if(qp==string::npos || qp<fp)
513 rv.erase(fp); 513 rv.erase(fp);
514 else if(qp>fp) 514 else if(qp>fp)
515 rv.erase(fp,qp-fp); 515 rv.erase(fp,qp-fp);
516 } 516 }
517 } 517 }
518 rv = rfc_3986_normalize_uri(rv); 518 rv = rfc_3986_normalize_uri(rv);
519 } 519 }
520 return rv; 520 return rv;
521 } 521 }
522 522
523 } 523 }
524 524
525} 525}