| blob | 86ccbc8fb1c7fb8b8dbe624b3dbba456fe711b5b |
1 /*
2 * utf_validate.c: Validate a UTF-8 string
3 *
4 * ====================================================================
5 * Licensed to the Apache Software Foundation (ASF) under one
6 * or more contributor license agreements. See the NOTICE file
7 * distributed with this work for additional information
8 * regarding copyright ownership. The ASF licenses this file
9 * to you under the Apache License, Version 2.0 (the
10 * "License"); you may not use this file except in compliance
11 * with the License. You may obtain a copy of the License at
12 *
13 * http://www.apache.org/licenses/LICENSE-2.0
14 *
15 * Unless required by applicable law or agreed to in writing,
16 * software distributed under the License is distributed on an
17 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
18 * KIND, either express or implied. See the License for the
19 * specific language governing permissions and limitations
20 * under the License.
21 * ====================================================================
22 */
24 /* Validate a UTF-8 string according to the rules in
25 *
26 * Table 3-6. Well-Formed UTF-8 Bytes Sequences
27 *
28 * in
29 *
30 * The Unicode Standard, Version 4.0
31 *
32 * which is available at
33 *
34 * http://www.unicode.org/
35 *
36 * UTF-8 was originally defined in RFC-2279, Unicode's "well-formed UTF-8"
37 * is a subset of that enconding. The Unicode enconding prohibits things
38 * like non-shortest encodings (some characters can be represented by more
39 * than one multi-byte encoding) and the encodings for the surrogate code
40 * points. RFC-3629 superceeds RFC-2279 and adopts the same well-formed
41 * rules as Unicode. This is the ABNF in RFC-3629 that describes
42 * well-formed UTF-8 rules:
43 *
44 * UTF8-octets = *( UTF8-char )
45 * UTF8-char = UTF8-1 / UTF8-2 / UTF8-3 / UTF8-4
46 * UTF8-1 = %x00-7F
47 * UTF8-2 = %xC2-DF UTF8-tail
48 * UTF8-3 = %xE0 %xA0-BF UTF8-tail /
49 * %xE1-EC 2( UTF8-tail ) /
50 * %xED %x80-9F UTF8-tail /
51 * %xEE-EF 2( UTF8-tail )
52 * UTF8-4 = %xF0 %x90-BF 2( UTF8-tail ) /
53 * %xF1-F3 3( UTF8-tail ) /
54 * %xF4 %x80-8F 2( UTF8-tail )
55 * UTF8-tail = %x80-BF
56 *
57 */
63 /* Lookup table to categorise each octet in the string. */
88 };
90 /* Machine states */
91 #define FSM_START 0
92 #define FSM_80BF 1
93 #define FSM_A0BF 2
94 #define FSM_80BF80BF 3
95 #define FSM_809F 4
96 #define FSM_90BF 5
97 #define FSM_80BF80BF80BF 6
98 #define FSM_808F 7
99 #define FSM_ERROR 8
101 /* In the FSM it appears that categories 0xc0-0xc1 and 0xf5-0xff make the
102 same transitions, as do categories 0xe1-0xec and 0xee-0xef. I wonder if
103 there is any great benefit in combining categories? It would reduce the
104 memory footprint of the transition table by 16 bytes, but might it be
105 harder to understand? */
107 /* Machine transition table */
109 /* FSM_START */
125 /* FSM_80BF */
141 /* FSM_A0BF */
157 /* FSM_80BF80BF */
173 /* FSM_809F */
189 /* FSM_90BF */
205 /* FSM_80BF80BF80BF */
221 /* FSM_808F */
237 /* FSM_ERROR */
252 };
254 /* Scan MAX_LEN bytes in *DATA for chars that are not in the octet
255 * category 0 (FSM_START). Return the position of the first such char
256 * or DATA + MAX_LEN if all were cat 0.
257 */
260 {
261 #if !SVN_UNALIGNED_ACCESS_IS_OK
263 /* On some systems, we need to make sure that buf is properly aligned
264 * for chunky data access.
265 */
267 {
276 }
278 #endif
280 /* Scan the input one machine word at a time. */
286 /* The remaining odd bytes will be examined the naive way: */
292 }
294 /* Scan the C string in *DATA for chars that are not in the octet
295 * category 0 (FSM_START). Return the position of either the such
296 * char or of the terminating NUL.
297 */
300 {
301 /* We need to make sure that BUF is properly aligned for chunky data
302 * access because we don't know the string's length. Unaligned chunk
303 * read access beyond the NUL terminator could therefore result in a
304 * segfault.
305 */
310 /* Scan the input one machine word at a time. */
311 #ifndef SVN_UTF_NO_UNINITIALISED_ACCESS
312 /* This may read allocated but initialised bytes beyond the
313 terminating null. Any such bytes are always readable and this
314 code operates correctly whatever the uninitialised values happen
315 to be. However memory checking tools such as valgrind and GCC
316 4.8's address santitizer will object so this bit of code can be
317 disabled at compile time. */
319 {
320 /* Check for non-ASCII chars: */
325 /* This is the well-known strlen test: */
329 }
330 #endif
332 /* The remaining odd bytes will be examined the naive way: */
338 }
342 {
349 {
355 }
357 }
359 svn_boolean_t
361 {
370 {
374 }
376 }
378 svn_boolean_t
380 {
390 {
394 }
396 }
400 {
407 {
410 {
432 else
438 else
444 else
450 else
456 else
462 else
468 else
474 else
480 }
483 }
485 }