| blob | 1b87b4fc2bf38672baefa2572e426763bab6d38f |
1 /* Copyright (c) 2001, Matej Pfajfar.
2 * Copyright (c) 2001-2004, Roger Dingledine.
3 * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
4 * Copyright (c) 2007-2021, The Tor Project, Inc. */
5 /* See LICENSE for licensing information */
7 /**
8 * \file binascii.c
9 *
10 * \brief Miscellaneous functions for encoding and decoding various things
11 * in base{16,32,64}.
12 */
24 #include <stddef.h>
25 #include <string.h>
26 #include <stdlib.h>
28 /** Return a pointer to a NUL-terminated hexadecimal string encoding
29 * the first <b>fromlen</b> bytes of <b>from</b>. (fromlen must be \<= 32.) The
30 * result does not need to be deallocated, but repeated calls to
31 * hex_str will trash old results.
32 */
35 {
41 }
43 /* Return the base32 encoded size in bytes using the source length srclen.
44 *
45 * (WATCH OUT: This API counts the terminating NUL byte, but
46 * base64_encode_size does not.)
47 */
48 size_t
50 {
56 }
58 /** Implements base32 encoding as in RFC 4648. */
59 void
61 {
66 /* We need enough space for the encoded data and the extra NUL byte. */
70 /* Make sure we leave no uninitialized data in the destination buffer. */
74 /* set v to the 16-bit value starting at src[bits/8], 0-padded. */
79 /* set u to the 5-bit value at the bit'th bit of buf. */
82 }
84 }
86 /** Implements base32 decoding as in RFC 4648.
87 * Return the number of bytes decoded if successful; -1 otherwise.
88 */
89 int
91 {
92 /* XXXX we might want to rewrite this along the lines of base64_decode, if
93 * it ever shows up in the profile. */
103 /* Make sure we leave no uninitialized data in the destination buffer. */
106 /* Convert base32 encoded chars to the 5-bit values that they represent. */
116 }
117 }
119 /* Assemble result byte-wise by applying five possible cases. */
144 }
145 }
151 }
153 #define BASE64_OPENSSL_LINELEN 64
155 /** Return the Base64 encoded size of <b>srclen</b> bytes of data in
156 * bytes.
157 *
158 * (WATCH OUT: This API <em>does not</em> count the terminating NUL byte,
159 * but base32_encoded_size does.)
160 *
161 * If <b>flags</b>&BASE64_ENCODE_MULTILINE is true, return the size
162 * of the encoded output as multiline output (64 character, `\n' terminated
163 * lines).
164 */
165 size_t
167 {
170 /* Use INT_MAX for overflow checking because base64_encode() returns int. */
180 }
182 /** Return an upper bound on the number of bytes that might be needed to hold
183 * the data from decoding the base64 string <b>srclen</b>. This is only an
184 * upper bound, since some part of the base64 string might be padding or
185 * space. */
186 size_t
188 {
192 }
194 /** Internal table mapping 6 bit values to the Base64 alphabet. */
204 };
206 /** Base64 encode <b>srclen</b> bytes of data from <b>src</b>. Write
207 * the result into <b>dest</b>, if it will fit within <b>destlen</b>
208 * bytes. Return the number of bytes written on success; -1 if
209 * destlen is too short, or other failure.
210 *
211 * If <b>flags</b>&BASE64_ENCODE_MULTILINE is true, return encoded
212 * output in multiline format (64 character, `\n' terminated lines).
213 */
214 int
217 {
229 /* Ensure that there is sufficient space, including the NUL. */
238 /* Make sure we leave no uninitialized data in the destination buffer. */
241 /* XXX/Yawning: If this ends up being too slow, this can be sped up
242 * by separating the multiline format case and the normal case, and
243 * processing 48 bytes of input at a time when newlines are desired.
244 */
245 #define ENCODE_CHAR(ch) \
246 STMT_BEGIN \
247 *d++ = ch; \
248 if (flags & BASE64_ENCODE_MULTILINE) { \
249 if (++linelen % BASE64_OPENSSL_LINELEN == 0) { \
250 linelen = 0; \
252 } \
253 } \
254 STMT_END
256 #define ENCODE_N(idx) \
257 ENCODE_CHAR(base64_encode_table[(n >> ((3 - idx) * 6)) & 0x3f])
261 /* Iterate over all the bytes in src. Each one will add 8 bits to the
262 * value we're encoding. Accumulate bits in <b>n</b>, and whenever we
263 * have 24 bits, batch them into 4 bytes and flush those bytes to dest.
264 */
274 }
275 }
278 /* 0 leftover bits, no padding to add. */
281 /* 8 leftover bits, pad to 12 bits, write the 2 6-bit values followed
282 * by 2 padding characters.
283 */
291 /* 16 leftover bits, pad to 18 bits, write the 3 6-bit values followed
292 * by 1 padding character.
293 */
300 // LCOV_EXCL_START -- we can't reach this point, because we enforce
301 // 0 <= ncov_idx < 3 in the loop above.
303 /* Something went catastrophically wrong. */
306 // LCOV_EXCL_STOP
307 }
309 #undef ENCODE_N
310 #undef ENCODE_PAD
311 #undef ENCODE_CHAR
313 /* Multiline output always includes at least one newline. */
322 }
324 /** As base64_encode, but do not add any internal spaces, and remove external
325 * padding from the output stream.
326 * dest must be at least base64_encode_size(srclen, 0), including space for
327 * the removed external padding. */
328 int
331 {
343 }
344 }
350 }
352 #undef BASE64_OPENSSL_LINELEN
354 /** @{ */
355 /** Special values used for the base64_decode_table */
356 #define X 255
357 #define SP 64
358 #define PAD 65
359 /** @} */
360 /** Internal table mapping byte values to what they represent in base64.
361 * Numbers 0..63 are 6-bit integers. SPs are spaces, and should be
362 * skipped. Xs are invalid and must not appear in base64. PAD indicates
363 * end-of-string. */
381 };
383 /** Base64 decode <b>srclen</b> bytes of data from <b>src</b>. Write
384 * the result into <b>dest</b>, if it will fit within <b>destlen</b>
385 * bytes. Return the number of bytes written on success; -1 if
386 * destlen is too short, or other failure.
387 *
388 * NOTE 1: destlen is checked conservatively, as though srclen contained no
389 * spaces or padding.
390 *
391 * NOTE 2: This implementation does not check for the correct number of
392 * padding "=" characters at the end of the string, and does not check
393 * for internal padding characters.
394 */
395 int
397 {
406 /* Make sure we leave no uninitialized data in the destination buffer. */
409 /* Iterate over all the bytes in src. Each one will add 0 or 6 bits to the
410 * value we're decoding. Accumulate bits in <b>n</b>, and whenever we have
411 * 24 bits, batch them into 3 bytes and flush those bytes to dest.
412 */
418 /* This character isn't allowed in base64. */
421 /* This character is whitespace, and has no effect. */
424 /* We've hit an = character: the data is over. */
427 /* We have an actual 6-bit value. Append it to the bits in n. */
430 /* We've accumulated 24 bits in n. Flush them. */
438 }
439 }
440 }
441 end_of_loop:
442 /* If we have leftover bits, we need to cope. */
446 /* No leftover bits. We win. */
449 /* 6 leftover bits. That's invalid; we can't form a byte out of that. */
452 /* 12 leftover bits: The last 4 are padding and the first 8 are data. */
458 /* 18 leftover bits: The last 2 are padding and the first 16 are data. */
463 }
468 }
469 #undef X
470 #undef SP
471 #undef PAD
473 /** Encode the <b>srclen</b> bytes at <b>src</b> in a NUL-terminated,
474 * uppercase hexadecimal string; store it in the <b>destlen</b>-byte buffer
475 * <b>dest</b>.
476 */
477 void
479 {
487 /* Make sure we leave no uninitialized data in the destination buffer. */
496 }
498 }
500 /** Given a hexadecimal string of <b>srclen</b> bytes in <b>src</b>, decode
501 * it and store the result in the <b>destlen</b>-byte buffer at <b>dest</b>.
502 * Return the number of bytes decoded on success, -1 on failure. If
503 * <b>destlen</b> is greater than INT_MAX or less than half of
504 * <b>srclen</b>, -1 is returned. */
505 int
507 {
517 /* Make sure we leave no uninitialized data in the destination buffer. */
529 }
534 }