Nuke the code specific to NetBSD/OpenBSD/FreeBSD at first. I doubt anyone
[dragonfly/vkernel-mp.git] / crypto / openssh-4 / match.c
blobe3c993073fd80799073a935c667d184c57dcf3b9
1 /* $OpenBSD: match.c,v 1.26 2006/08/03 03:34:42 deraadt Exp $ */
2 /*
3 * Author: Tatu Ylonen <ylo@cs.hut.fi>
4 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5 * All rights reserved
6 * Simple pattern matching, with '*' and '?' as wildcards.
8 * As far as I am concerned, the code I have written for this software
9 * can be used freely for any purpose. Any derived versions of this
10 * software must be clearly marked as such, and if the derived work is
11 * incompatible with the protocol description in the RFC file, it must be
12 * called by a name other than "ssh" or "Secure Shell".
15 * Copyright (c) 2000 Markus Friedl. All rights reserved.
17 * Redistribution and use in source and binary forms, with or without
18 * modification, are permitted provided that the following conditions
19 * are met:
20 * 1. Redistributions of source code must retain the above copyright
21 * notice, this list of conditions and the following disclaimer.
22 * 2. Redistributions in binary form must reproduce the above copyright
23 * notice, this list of conditions and the following disclaimer in the
24 * documentation and/or other materials provided with the distribution.
26 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
27 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
28 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
29 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
30 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
31 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
32 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
33 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
34 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
38 #include "includes.h"
40 #include <sys/types.h>
42 #include <ctype.h>
43 #include <string.h>
45 #include "xmalloc.h"
46 #include "match.h"
49 * Returns true if the given string matches the pattern (which may contain ?
50 * and * as wildcards), and zero if it does not match.
53 int
54 match_pattern(const char *s, const char *pattern)
56 for (;;) {
57 /* If at end of pattern, accept if also at end of string. */
58 if (!*pattern)
59 return !*s;
61 if (*pattern == '*') {
62 /* Skip the asterisk. */
63 pattern++;
65 /* If at end of pattern, accept immediately. */
66 if (!*pattern)
67 return 1;
69 /* If next character in pattern is known, optimize. */
70 if (*pattern != '?' && *pattern != '*') {
72 * Look instances of the next character in
73 * pattern, and try to match starting from
74 * those.
76 for (; *s; s++)
77 if (*s == *pattern &&
78 match_pattern(s + 1, pattern + 1))
79 return 1;
80 /* Failed. */
81 return 0;
84 * Move ahead one character at a time and try to
85 * match at each position.
87 for (; *s; s++)
88 if (match_pattern(s, pattern))
89 return 1;
90 /* Failed. */
91 return 0;
94 * There must be at least one more character in the string.
95 * If we are at the end, fail.
97 if (!*s)
98 return 0;
100 /* Check if the next character of the string is acceptable. */
101 if (*pattern != '?' && *pattern != *s)
102 return 0;
104 /* Move to the next character, both in string and in pattern. */
105 s++;
106 pattern++;
108 /* NOTREACHED */
112 * Tries to match the string against the
113 * comma-separated sequence of subpatterns (each possibly preceded by ! to
114 * indicate negation). Returns -1 if negation matches, 1 if there is
115 * a positive match, 0 if there is no match at all.
119 match_pattern_list(const char *string, const char *pattern, u_int len,
120 int dolower)
122 char sub[1024];
123 int negated;
124 int got_positive;
125 u_int i, subi;
127 got_positive = 0;
128 for (i = 0; i < len;) {
129 /* Check if the subpattern is negated. */
130 if (pattern[i] == '!') {
131 negated = 1;
132 i++;
133 } else
134 negated = 0;
137 * Extract the subpattern up to a comma or end. Convert the
138 * subpattern to lowercase.
140 for (subi = 0;
141 i < len && subi < sizeof(sub) - 1 && pattern[i] != ',';
142 subi++, i++)
143 sub[subi] = dolower && isupper(pattern[i]) ?
144 (char)tolower(pattern[i]) : pattern[i];
145 /* If subpattern too long, return failure (no match). */
146 if (subi >= sizeof(sub) - 1)
147 return 0;
149 /* If the subpattern was terminated by a comma, skip the comma. */
150 if (i < len && pattern[i] == ',')
151 i++;
153 /* Null-terminate the subpattern. */
154 sub[subi] = '\0';
156 /* Try to match the subpattern against the string. */
157 if (match_pattern(string, sub)) {
158 if (negated)
159 return -1; /* Negative */
160 else
161 got_positive = 1; /* Positive */
166 * Return success if got a positive match. If there was a negative
167 * match, we have already returned -1 and never get here.
169 return got_positive;
173 * Tries to match the host name (which must be in all lowercase) against the
174 * comma-separated sequence of subpatterns (each possibly preceded by ! to
175 * indicate negation). Returns -1 if negation matches, 1 if there is
176 * a positive match, 0 if there is no match at all.
179 match_hostname(const char *host, const char *pattern, u_int len)
181 return match_pattern_list(host, pattern, len, 1);
185 * returns 0 if we get a negative match for the hostname or the ip
186 * or if we get no match at all. returns 1 otherwise.
189 match_host_and_ip(const char *host, const char *ipaddr,
190 const char *patterns)
192 int mhost, mip;
194 /* negative ipaddr match */
195 if ((mip = match_hostname(ipaddr, patterns, strlen(patterns))) == -1)
196 return 0;
197 /* negative hostname match */
198 if ((mhost = match_hostname(host, patterns, strlen(patterns))) == -1)
199 return 0;
200 /* no match at all */
201 if (mhost == 0 && mip == 0)
202 return 0;
203 return 1;
207 * match user, user@host_or_ip, user@host_or_ip_list against pattern
210 match_user(const char *user, const char *host, const char *ipaddr,
211 const char *pattern)
213 char *p, *pat;
214 int ret;
216 if ((p = strchr(pattern,'@')) == NULL)
217 return match_pattern(user, pattern);
219 pat = xstrdup(pattern);
220 p = strchr(pat, '@');
221 *p++ = '\0';
223 if ((ret = match_pattern(user, pat)) == 1)
224 ret = match_host_and_ip(host, ipaddr, p);
225 xfree(pat);
227 return ret;
231 * Returns first item from client-list that is also supported by server-list,
232 * caller must xfree() returned string.
234 #define MAX_PROP 40
235 #define SEP ","
236 char *
237 match_list(const char *client, const char *server, u_int *next)
239 char *sproposals[MAX_PROP];
240 char *c, *s, *p, *ret, *cp, *sp;
241 int i, j, nproposals;
243 c = cp = xstrdup(client);
244 s = sp = xstrdup(server);
246 for ((p = strsep(&sp, SEP)), i=0; p && *p != '\0';
247 (p = strsep(&sp, SEP)), i++) {
248 if (i < MAX_PROP)
249 sproposals[i] = p;
250 else
251 break;
253 nproposals = i;
255 for ((p = strsep(&cp, SEP)), i=0; p && *p != '\0';
256 (p = strsep(&cp, SEP)), i++) {
257 for (j = 0; j < nproposals; j++) {
258 if (strcmp(p, sproposals[j]) == 0) {
259 ret = xstrdup(p);
260 if (next != NULL)
261 *next = (cp == NULL) ?
262 strlen(c) : (u_int)(cp - c);
263 xfree(c);
264 xfree(s);
265 return ret;
269 if (next != NULL)
270 *next = strlen(c);
271 xfree(c);
272 xfree(s);
273 return NULL;