2002-09-03 13:52:59 +02:00
|
|
|
/***************************************************************************
|
2004-02-23 09:22:43 +01:00
|
|
|
* _ _ ____ _
|
|
|
|
* Project ___| | | | _ \| |
|
|
|
|
* / __| | | | |_) | |
|
|
|
|
* | (__| |_| | _ <| |___
|
2001-08-03 15:51:44 +02:00
|
|
|
* \___|\___/|_| \_\_____|
|
|
|
|
*
|
2014-07-25 08:24:03 +02:00
|
|
|
* Copyright (C) 1998 - 2014, Daniel Stenberg, <daniel@haxx.se>, et al.
|
2001-08-03 15:51:44 +02:00
|
|
|
*
|
2002-09-03 13:52:59 +02:00
|
|
|
* This software is licensed as described in the file COPYING, which
|
|
|
|
* you should have received as part of this distribution. The terms
|
|
|
|
* are also available at http://curl.haxx.se/docs/copyright.html.
|
2004-02-23 09:22:43 +01:00
|
|
|
*
|
2001-08-03 15:51:44 +02:00
|
|
|
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
|
|
|
|
* copies of the Software, and permit persons to whom the Software is
|
2002-09-03 13:52:59 +02:00
|
|
|
* furnished to do so, under the terms of the COPYING file.
|
2001-08-03 15:51:44 +02:00
|
|
|
*
|
|
|
|
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
|
|
|
|
* KIND, either express or implied.
|
|
|
|
*
|
2002-09-03 13:52:59 +02:00
|
|
|
***************************************************************************/
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2011-04-17 23:03:33 +02:00
|
|
|
/* Base64 encoding/decoding */
|
2000-09-28 10:01:52 +02:00
|
|
|
|
2013-01-06 19:06:49 +01:00
|
|
|
#include "curl_setup.h"
|
2001-08-24 09:39:50 +02:00
|
|
|
|
2001-08-14 11:25:15 +02:00
|
|
|
#define _MPRINTF_REPLACE /* use our functions only */
|
|
|
|
#include <curl/mprintf.h>
|
|
|
|
|
2013-01-04 02:50:28 +01:00
|
|
|
#include "urldata.h" /* for the SessionHandle definition */
|
|
|
|
#include "warnless.h"
|
2008-08-17 02:25:38 +02:00
|
|
|
#include "curl_base64.h"
|
2009-04-21 13:46:16 +02:00
|
|
|
#include "curl_memory.h"
|
2013-01-04 02:50:28 +01:00
|
|
|
#include "non-ascii.h"
|
2000-09-28 10:01:52 +02:00
|
|
|
|
2013-01-04 02:50:28 +01:00
|
|
|
/* include memdebug.h last */
|
|
|
|
#include "memdebug.h"
|
2004-05-11 13:30:23 +02:00
|
|
|
|
2007-01-04 00:04:38 +01:00
|
|
|
/* ---- Base64 Encoding/Decoding Table --- */
|
2014-07-25 08:24:03 +02:00
|
|
|
static const char base64[]=
|
2007-01-04 00:04:38 +01:00
|
|
|
"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
|
2000-10-09 13:12:34 +02:00
|
|
|
|
2014-07-25 08:24:03 +02:00
|
|
|
/* The Base 64 encoding with an URL and filename safe alphabet, RFC 4648
|
|
|
|
section 5 */
|
|
|
|
static const char base64url[]=
|
|
|
|
"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_";
|
|
|
|
|
2013-12-01 12:05:11 +01:00
|
|
|
static size_t decodeQuantum(unsigned char *dest, const char *src)
|
1999-12-29 15:20:26 +01:00
|
|
|
{
|
2013-12-01 12:05:11 +01:00
|
|
|
size_t padding = 0;
|
2010-02-21 20:59:09 +01:00
|
|
|
const char *s, *p;
|
|
|
|
unsigned long i, v, x = 0;
|
2007-01-04 00:04:38 +01:00
|
|
|
|
2010-02-21 20:59:09 +01:00
|
|
|
for(i = 0, s = src; i < 4; i++, s++) {
|
|
|
|
v = 0;
|
2013-12-01 12:05:11 +01:00
|
|
|
|
|
|
|
if(*s == '=') {
|
2003-01-06 13:41:33 +01:00
|
|
|
x = (x << 6);
|
2013-12-01 12:05:11 +01:00
|
|
|
padding++;
|
|
|
|
}
|
|
|
|
else {
|
2014-07-25 08:24:03 +02:00
|
|
|
p = base64;
|
2013-12-01 12:05:11 +01:00
|
|
|
|
|
|
|
while(*p && (*p != *s)) {
|
|
|
|
v++;
|
|
|
|
p++;
|
|
|
|
}
|
|
|
|
|
|
|
|
if(*p == *s)
|
|
|
|
x = (x << 6) + v;
|
|
|
|
else
|
|
|
|
return 0;
|
|
|
|
}
|
2001-08-03 15:51:44 +02:00
|
|
|
}
|
|
|
|
|
2013-12-01 17:40:55 +01:00
|
|
|
if(padding < 1)
|
2013-12-01 14:47:11 +01:00
|
|
|
dest[2] = curlx_ultouc(x & 0xFFUL);
|
|
|
|
|
2004-03-01 13:54:59 +01:00
|
|
|
x >>= 8;
|
2013-12-01 17:40:55 +01:00
|
|
|
if(padding < 2)
|
2013-12-01 14:47:11 +01:00
|
|
|
dest[1] = curlx_ultouc(x & 0xFFUL);
|
|
|
|
|
2004-03-01 13:54:59 +01:00
|
|
|
x >>= 8;
|
2012-03-22 02:40:19 +01:00
|
|
|
dest[0] = curlx_ultouc(x & 0xFFUL);
|
2013-12-01 12:05:11 +01:00
|
|
|
|
|
|
|
return 3 - padding;
|
2000-09-28 10:01:52 +02:00
|
|
|
}
|
1999-12-29 15:20:26 +01:00
|
|
|
|
2004-02-23 09:22:43 +01:00
|
|
|
/*
|
|
|
|
* Curl_base64_decode()
|
|
|
|
*
|
2011-08-24 08:07:36 +02:00
|
|
|
* Given a base64 NUL-terminated string at src, decode it and return a
|
|
|
|
* pointer in *outptr to a newly allocated memory area holding decoded
|
|
|
|
* data. Size of decoded data is returned in variable pointed by outlen.
|
|
|
|
*
|
|
|
|
* Returns CURLE_OK on success, otherwise specific error code. Function
|
|
|
|
* output shall not be considered valid unless CURLE_OK is returned.
|
|
|
|
*
|
|
|
|
* When decoded data length is 0, returns NULL in *outptr.
|
2011-06-10 14:40:46 +02:00
|
|
|
*
|
|
|
|
* @unittest: 1302
|
2001-08-03 15:51:44 +02:00
|
|
|
*/
|
2011-08-24 08:07:36 +02:00
|
|
|
CURLcode Curl_base64_decode(const char *src,
|
|
|
|
unsigned char **outptr, size_t *outlen)
|
2000-09-28 10:01:52 +02:00
|
|
|
{
|
2013-12-01 14:47:11 +01:00
|
|
|
size_t srclen = 0;
|
2010-02-20 02:15:10 +01:00
|
|
|
size_t length = 0;
|
2013-12-01 14:47:11 +01:00
|
|
|
size_t padding = 0;
|
2010-02-20 02:15:10 +01:00
|
|
|
size_t i;
|
2013-12-01 12:05:11 +01:00
|
|
|
size_t result;
|
2010-02-20 02:15:10 +01:00
|
|
|
size_t numQuantums;
|
|
|
|
size_t rawlen = 0;
|
2013-12-01 12:05:11 +01:00
|
|
|
unsigned char *pos;
|
2005-02-22 13:10:30 +01:00
|
|
|
unsigned char *newstr;
|
|
|
|
|
|
|
|
*outptr = NULL;
|
2011-08-24 08:07:36 +02:00
|
|
|
*outlen = 0;
|
2013-12-01 14:47:11 +01:00
|
|
|
srclen = strlen(src);
|
2004-02-23 09:22:43 +01:00
|
|
|
|
2013-10-30 08:31:22 +01:00
|
|
|
/* Check the length of the input string is valid */
|
2013-12-01 14:47:11 +01:00
|
|
|
if(!srclen || srclen % 4)
|
2013-10-30 08:31:22 +01:00
|
|
|
return CURLE_BAD_CONTENT_ENCODING;
|
|
|
|
|
|
|
|
/* Find the position of any = padding characters */
|
2001-08-03 15:51:44 +02:00
|
|
|
while((src[length] != '=') && src[length])
|
|
|
|
length++;
|
2013-10-30 08:31:22 +01:00
|
|
|
|
2005-03-01 00:54:17 +01:00
|
|
|
/* A maximum of two = padding characters is allowed */
|
|
|
|
if(src[length] == '=') {
|
2013-12-01 14:47:11 +01:00
|
|
|
padding++;
|
|
|
|
if(src[length + 1] == '=')
|
|
|
|
padding++;
|
2005-03-01 00:54:17 +01:00
|
|
|
}
|
2013-10-30 09:11:10 +01:00
|
|
|
|
2013-10-30 08:31:22 +01:00
|
|
|
/* Check the = padding characters weren't part way through the input */
|
2013-12-01 14:47:11 +01:00
|
|
|
if(length + padding != srclen)
|
2013-10-30 08:31:22 +01:00
|
|
|
return CURLE_BAD_CONTENT_ENCODING;
|
2004-02-23 09:22:43 +01:00
|
|
|
|
2013-10-30 08:31:22 +01:00
|
|
|
/* Calculate the number of quantums */
|
2013-12-01 14:47:11 +01:00
|
|
|
numQuantums = srclen / 4;
|
2005-03-01 00:54:17 +01:00
|
|
|
|
2013-10-30 08:31:22 +01:00
|
|
|
/* Calculate the size of the decoded string */
|
2013-12-01 14:47:11 +01:00
|
|
|
rawlen = (numQuantums * 3) - padding;
|
2004-02-23 09:22:43 +01:00
|
|
|
|
2013-11-30 20:09:09 +01:00
|
|
|
/* Allocate our buffer including room for a zero terminator */
|
|
|
|
newstr = malloc(rawlen + 1);
|
2005-02-22 13:10:30 +01:00
|
|
|
if(!newstr)
|
2011-08-24 08:07:36 +02:00
|
|
|
return CURLE_OUT_OF_MEMORY;
|
2005-02-22 13:10:30 +01:00
|
|
|
|
2013-12-01 12:05:11 +01:00
|
|
|
pos = newstr;
|
2005-02-22 13:10:30 +01:00
|
|
|
|
2013-12-01 14:47:11 +01:00
|
|
|
/* Decode the quantums */
|
|
|
|
for(i = 0; i < numQuantums; i++) {
|
2013-12-01 12:05:11 +01:00
|
|
|
result = decodeQuantum(pos, src);
|
|
|
|
if(!result) {
|
|
|
|
Curl_safefree(newstr);
|
|
|
|
|
|
|
|
return CURLE_BAD_CONTENT_ENCODING;
|
|
|
|
}
|
|
|
|
|
|
|
|
pos += result;
|
|
|
|
src += 4;
|
2000-09-28 10:01:52 +02:00
|
|
|
}
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2013-11-30 20:09:09 +01:00
|
|
|
/* Zero terminate */
|
2013-12-01 14:47:11 +01:00
|
|
|
*pos = '\0';
|
2011-08-24 08:07:36 +02:00
|
|
|
|
2013-12-01 12:05:11 +01:00
|
|
|
/* Return the decoded data */
|
|
|
|
*outptr = newstr;
|
2013-11-30 20:09:09 +01:00
|
|
|
*outlen = rawlen;
|
2011-08-24 08:07:36 +02:00
|
|
|
|
|
|
|
return CURLE_OK;
|
2000-09-28 10:01:52 +02:00
|
|
|
}
|
2000-09-21 10:46:44 +02:00
|
|
|
|
2014-07-25 08:24:03 +02:00
|
|
|
static CURLcode base64_encode(const char *table64,
|
|
|
|
struct SessionHandle *data,
|
|
|
|
const char *inputbuff, size_t insize,
|
|
|
|
char **outptr, size_t *outlen)
|
2000-09-28 10:01:52 +02:00
|
|
|
{
|
2011-08-24 08:07:36 +02:00
|
|
|
CURLcode error;
|
2001-08-03 15:51:44 +02:00
|
|
|
unsigned char ibuf[3];
|
|
|
|
unsigned char obuf[4];
|
|
|
|
int i;
|
|
|
|
int inputparts;
|
|
|
|
char *output;
|
|
|
|
char *base64data;
|
2007-02-01 13:23:00 +01:00
|
|
|
char *convbuf = NULL;
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2009-06-05 01:55:56 +02:00
|
|
|
const char *indata = inputbuff;
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2011-08-24 08:07:36 +02:00
|
|
|
*outptr = NULL;
|
|
|
|
*outlen = 0;
|
2004-05-12 15:23:17 +02:00
|
|
|
|
2001-08-03 15:51:44 +02:00
|
|
|
if(0 == insize)
|
|
|
|
insize = strlen(indata);
|
|
|
|
|
2008-09-06 07:29:05 +02:00
|
|
|
base64data = output = malloc(insize*4/3+4);
|
2001-08-03 15:51:44 +02:00
|
|
|
if(NULL == output)
|
2011-08-24 08:07:36 +02:00
|
|
|
return CURLE_OUT_OF_MEMORY;
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2007-01-04 00:04:38 +01:00
|
|
|
/*
|
|
|
|
* The base64 data needs to be created using the network encoding
|
|
|
|
* not the host encoding. And we can't change the actual input
|
|
|
|
* so we copy it to a buffer, translate it, and use that instead.
|
|
|
|
*/
|
2011-08-24 08:07:36 +02:00
|
|
|
error = Curl_convert_clone(data, indata, insize, &convbuf);
|
|
|
|
if(error) {
|
2011-05-23 16:55:49 +02:00
|
|
|
free(output);
|
2011-08-24 08:07:36 +02:00
|
|
|
return error;
|
2011-05-23 16:55:49 +02:00
|
|
|
}
|
2011-04-20 00:48:20 +02:00
|
|
|
|
|
|
|
if(convbuf)
|
|
|
|
indata = (char *)convbuf;
|
2007-01-04 00:04:38 +01:00
|
|
|
|
2001-08-03 15:51:44 +02:00
|
|
|
while(insize > 0) {
|
2011-04-20 15:17:42 +02:00
|
|
|
for(i = inputparts = 0; i < 3; i++) {
|
2003-02-13 19:30:10 +01:00
|
|
|
if(insize > 0) {
|
2001-08-03 15:51:44 +02:00
|
|
|
inputparts++;
|
2010-02-20 20:51:02 +01:00
|
|
|
ibuf[i] = (unsigned char) *indata;
|
2001-08-03 15:51:44 +02:00
|
|
|
indata++;
|
|
|
|
insize--;
|
|
|
|
}
|
1999-12-29 15:20:26 +01:00
|
|
|
else
|
2001-08-03 15:51:44 +02:00
|
|
|
ibuf[i] = 0;
|
1999-12-29 15:20:26 +01:00
|
|
|
}
|
2004-02-23 09:22:43 +01:00
|
|
|
|
2006-07-19 23:14:02 +02:00
|
|
|
obuf[0] = (unsigned char) ((ibuf[0] & 0xFC) >> 2);
|
|
|
|
obuf[1] = (unsigned char) (((ibuf[0] & 0x03) << 4) | \
|
|
|
|
((ibuf[1] & 0xF0) >> 4));
|
|
|
|
obuf[2] = (unsigned char) (((ibuf[1] & 0x0F) << 2) | \
|
|
|
|
((ibuf[2] & 0xC0) >> 6));
|
|
|
|
obuf[3] = (unsigned char) (ibuf[2] & 0x3F);
|
2001-08-03 15:51:44 +02:00
|
|
|
|
|
|
|
switch(inputparts) {
|
|
|
|
case 1: /* only one byte read */
|
2004-06-24 13:54:11 +02:00
|
|
|
snprintf(output, 5, "%c%c==",
|
|
|
|
table64[obuf[0]],
|
|
|
|
table64[obuf[1]]);
|
2001-08-03 15:51:44 +02:00
|
|
|
break;
|
|
|
|
case 2: /* two bytes read */
|
2004-06-24 13:54:11 +02:00
|
|
|
snprintf(output, 5, "%c%c%c=",
|
|
|
|
table64[obuf[0]],
|
|
|
|
table64[obuf[1]],
|
|
|
|
table64[obuf[2]]);
|
2001-08-03 15:51:44 +02:00
|
|
|
break;
|
|
|
|
default:
|
2004-06-24 13:54:11 +02:00
|
|
|
snprintf(output, 5, "%c%c%c%c",
|
|
|
|
table64[obuf[0]],
|
|
|
|
table64[obuf[1]],
|
|
|
|
table64[obuf[2]],
|
|
|
|
table64[obuf[3]] );
|
2001-08-03 15:51:44 +02:00
|
|
|
break;
|
1999-12-29 15:20:26 +01:00
|
|
|
}
|
2001-08-03 15:51:44 +02:00
|
|
|
output += 4;
|
1999-12-29 15:20:26 +01:00
|
|
|
}
|
2011-08-24 08:07:36 +02:00
|
|
|
*output = '\0';
|
|
|
|
*outptr = base64data; /* return pointer to new data, allocated memory */
|
2001-08-03 15:51:44 +02:00
|
|
|
|
2011-04-20 00:48:20 +02:00
|
|
|
if(convbuf)
|
2007-01-04 00:04:38 +01:00
|
|
|
free(convbuf);
|
2011-04-20 00:48:20 +02:00
|
|
|
|
2011-08-24 08:07:36 +02:00
|
|
|
*outlen = strlen(base64data); /* return the length of the new data */
|
|
|
|
|
|
|
|
return CURLE_OK;
|
2001-08-03 15:51:44 +02:00
|
|
|
}
|
2014-07-25 08:24:03 +02:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Curl_base64_encode()
|
|
|
|
*
|
|
|
|
* Given a pointer to an input buffer and an input size, encode it and
|
|
|
|
* return a pointer in *outptr to a newly allocated memory area holding
|
|
|
|
* encoded data. Size of encoded data is returned in variable pointed by
|
|
|
|
* outlen.
|
|
|
|
*
|
|
|
|
* Input length of 0 indicates input buffer holds a NUL-terminated string.
|
|
|
|
*
|
|
|
|
* Returns CURLE_OK on success, otherwise specific error code. Function
|
|
|
|
* output shall not be considered valid unless CURLE_OK is returned.
|
|
|
|
*
|
|
|
|
* When encoded data length is 0, returns NULL in *outptr.
|
|
|
|
*
|
|
|
|
* @unittest: 1302
|
|
|
|
*/
|
|
|
|
CURLcode Curl_base64_encode(struct SessionHandle *data,
|
|
|
|
const char *inputbuff, size_t insize,
|
|
|
|
char **outptr, size_t *outlen)
|
|
|
|
{
|
|
|
|
return base64_encode(base64, data, inputbuff, insize, outptr, outlen);
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Curl_base64url_encode()
|
|
|
|
*
|
|
|
|
* Given a pointer to an input buffer and an input size, encode it and
|
|
|
|
* return a pointer in *outptr to a newly allocated memory area holding
|
|
|
|
* encoded data. Size of encoded data is returned in variable pointed by
|
|
|
|
* outlen.
|
|
|
|
*
|
|
|
|
* Input length of 0 indicates input buffer holds a NUL-terminated string.
|
|
|
|
*
|
|
|
|
* Returns CURLE_OK on success, otherwise specific error code. Function
|
|
|
|
* output shall not be considered valid unless CURLE_OK is returned.
|
|
|
|
*
|
|
|
|
* When encoded data length is 0, returns NULL in *outptr.
|
|
|
|
*
|
2014-07-25 08:38:16 +02:00
|
|
|
* @unittest: 1302
|
2014-07-25 08:24:03 +02:00
|
|
|
*/
|
|
|
|
CURLcode Curl_base64url_encode(struct SessionHandle *data,
|
|
|
|
const char *inputbuff, size_t insize,
|
|
|
|
char **outptr, size_t *outlen)
|
|
|
|
{
|
|
|
|
return base64_encode(base64url, data, inputbuff, insize, outptr, outlen);
|
|
|
|
}
|
2001-08-03 15:51:44 +02:00
|
|
|
/* ---- End of Base64 Encoding ---- */
|