#include "lib.h"

#include "array.h"

#include "str.h"

#include "net.h"

#include "uri-util.h"

#include <ctype.h>

#define URI_MAX_SCHEME_NAME_LEN 64

#define CHAR_MASK_UNRESERVED (1<<0)

#define CHAR_MASK_SUB_DELIMS (1<<1)

#define CHAR_MASK_PCHAR ((1<<0)|(1<<1)|(1<<3))

#define CHAR_MASK_PFCHAR ((1<<0)|(1<<1)|(1<<3)|(1<<5))

#define CHAR_MASK_UCHAR ((1<<0)|(1<<1)|(1<<4))

#define CHAR_MASK_QCHAR ((1<<0)|(1<<1)|(1<<3)|(1<<5)|(1<<6))

static unsigned const char _uri_char_lookup[256] = {

0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, // 00

0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, // 10

0, 2, 0, 4, 2, 0, 2, 2, 2, 2, 2, 2, 2, 1, 1, 36, // 20

1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 28, 2, 0, 2, 0, 68, // 30

12, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, // 40

1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 4, 0, 4, 0, 1, // 50

0, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, // 60

1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 0, 0, 0, 1, 0, // 70

};

static inline int _decode_hex_digit(const unsigned char digit)

{

switch (digit) {

case '0': case '1': case '2': case '3': case '4':

case '5': case '6': case '7': case '8': case '9':

return digit - '0';

case 'a': case 'b': case 'c': case 'd': case 'e': case 'f':

return digit - 'a' + 0x0a;

case 'A': case 'B': case 'C': case 'D': case 'E': case 'F':

return digit - 'A' + 0x0A;

}

return -1;

}

static int ATTR_NULL(3)

uri_parse_pct_encoded(struct uri_parser *parser, const unsigned char **p,

const unsigned char *pend, unsigned char *ch_r)

{

int value;

if (**p == 0 || *(*p+1) == 0 || (pend != NULL && *p+1 >= pend)) {

parser->error = "Unexpected URI boundary after '%'";

return -1;

}

if ((value = _decode_hex_digit(**p)) < 0) {

parser->error = t_strdup_printf(

"Expecting hex digit after '%%', but found '%c'", **p);

return -1;

}

*ch_r = (value & 0x0f) << 4;

*p += 1;

if ((value = _decode_hex_digit(**p)) < 0) {

parser->error = t_strdup_printf(

"Expecting hex digit after '%%%c', but found '%c'", *((*p)-1), **p);

return -1;

}

*ch_r |= (value & 0x0f);

*p += 1;

if (*ch_r == '\0') {

parser->error =

"Percent encoding is not allowed to encode NUL character";

return -1;

}

return 1;

}

static int

uri_parse_unreserved_char(struct uri_parser *parser, unsigned char *ch_r)

{

if (*parser->cur == '%') {

parser->cur++;

if (uri_parse_pct_encoded(parser, &parser->cur,

parser->end, ch_r) <= 0)

return -1;

return 1;

}

if ((*parser->cur & 0x80) != 0)

return 0;

if ((_uri_char_lookup[*parser->cur] & CHAR_MASK_UNRESERVED) != 0) {

*ch_r = *parser->cur;

parser->cur++;

return 1;

}

return 0;

}

int uri_parse_unreserved(struct uri_parser *parser, string_t *part)

{

int len = 0;

while (parser->cur < parser->end) {

int ret;

unsigned char ch = 0;

if ((ret = uri_parse_unreserved_char(parser, &ch)) < 0)

return -1;

if (ret == 0)

break;

if (part != NULL)

str_append_c(part, ch);

len++;

}

return len > 0 ? 1 : 0;

}

bool uri_data_decode(struct uri_parser *parser, const char *data,

const char *until, const char **decoded_r)

{

const unsigned char *p = (const unsigned char *)data;

const unsigned char *pend = (const unsigned char *)until;

string_t *decoded;

if (pend == NULL) {

/* NULL means unlimited; solely rely on '\0' */

pend = (const unsigned char *)(size_t)-1;

}

if (p >= pend || *p == '\0') {

if (decoded_r != NULL)

*decoded_r = "";

return TRUE;

}

decoded = uri_parser_get_tmpbuf(parser, 256);

while (p < pend && *p != '\0') {

unsigned char ch;

if (*p == '%') {

p++;

if (uri_parse_pct_encoded(parser, &p, NULL, &ch) <= 0)

return FALSE;

str_append_c(decoded, ch);

} else {

str_append_c(decoded, *p);

p++;

}

}

if (decoded_r != NULL)

*decoded_r = t_strdup(str_c(decoded));

return TRUE;

}

int uri_cut_scheme(const char **uri_p, const char **scheme_r)

{

const char *p = *uri_p;

size_t len = 1;

/* RFC 3968:

if (!i_isalpha(*p))

return -1;

p++;

while (len < URI_MAX_SCHEME_NAME_LEN && *p != '\0') {

if (!i_isalnum(*p) && *p != '+' && *p != '-' && *p != '.')

break;

p++;

len++;

}

if (*p != ':')

return -1;

*scheme_r = t_strdup_until(*uri_p, p);

*uri_p = p + 1;

return 0;

}

int uri_parse_scheme(struct uri_parser *parser, const char **scheme_r)

{

const char *p;

if (parser->cur >= parser->end)

return 0;

p = (const char *)parser->cur;

if (uri_cut_scheme(&p, scheme_r) < 0)

return 0;

parser->cur = (const unsigned char *)p;

return 1;

}

static int

uri_parse_dec_octet(struct uri_parser *parser, string_t *literal,

uint8_t *octet_r)

{

uint8_t octet = 0;

int count = 0;

/* RFC 3986:

while (parser->cur < parser->end && i_isdigit(*parser->cur)) {

uint8_t prev = octet;

octet = octet * 10 + (parser->cur[0] - '0');

if (octet < prev)

return -1;

if (literal != NULL)

str_append_c(literal, *parser->cur);

parser->cur++;

count++;

}

if (count > 0) {

*octet_r = octet;

return 1;

}

return 0;

}

static int

uri_parse_ipv4address(struct uri_parser *parser, string_t *literal,

struct in_addr *ip4_r)

{

uint8_t octet;

uint32_t ip = 0;

int ret;

int i;

/* RFC 3986:

if ((ret = uri_parse_dec_octet(parser, literal, &octet)) <= 0)

return ret;

ip = octet;

for (i = 0; i < 3 && parser->cur < parser->end; i++) {

if (*parser->cur != '.')

return -1;

if (literal != NULL)

str_append_c(literal, '.');

parser->cur++;

if ((ret = uri_parse_dec_octet(parser, literal, &octet)) <= 0)

return -1;

ip = (ip << 8) + octet;

}

if (ip4_r != NULL)

ip4_r->s_addr = htonl(ip);

return 1;

}

static int uri_parse_reg_name(struct uri_parser *parser, string_t *reg_name)

{

int len = 0;

/* RFC 3986:

while (parser->cur < parser->end) {

int ret;

unsigned char c;

/* unreserved / pct-encoded */

if ((ret = uri_parse_unreserved_char(parser, &c)) < 0)

return -1;

if (ret > 0) {

if (reg_name != NULL)

str_append_c(reg_name, c);

len++;

continue;

}

/* sub-delims */

c = *parser->cur;

if ((c & 0x80) == 0 && (_uri_char_lookup[c] & CHAR_MASK_SUB_DELIMS) != 0) {

if (reg_name != NULL)

str_append_c(reg_name, *parser->cur);

parser->cur++;

len++;

continue;

}

break;

}

return len > 0 ? 1 : 0;

}

#ifdef HAVE_IPV6

static int

uri_parse_ip_literal(struct uri_parser *parser, string_t *literal,

struct in6_addr *ip6_r)

{

const unsigned char *p;

const char *address;

int ret;

/* IP-literal = "[" ( IPv6address / IPvFuture ) "]"

/* "[" already verified */

/* Scan for end of address */

for (p = parser->cur+1; p < parser->end; p++) {

if (*p == ']')

break;

}

if (p >= parser->end || *p != ']') {

parser->error = "Expecting ']' at end of IP-literal";

return -1;

}

if (literal != NULL)

str_append_n(literal, parser->cur, p-parser->cur+1);

address = t_strdup_until(parser->cur+1, p);

parser->cur = p + 1;

if (*address == '\0') {

parser->error = "Empty IPv6 host address";

return -1;

}

if (*address == 'v') {

parser->error = t_strdup_printf(

"Future IP host address '%s' not supported", address);

return -1;

}

if ((ret = inet_pton(AF_INET6, address, ip6_r)) <= 0) {

parser->error = t_strdup_printf(

"Invalid IPv6 host address '%s'", address);

return -1;

}

return 1;

}

#endif

static int uri_parse_host(struct uri_parser *parser, struct uri_authority *auth)

{

const unsigned char *preserve;

struct in_addr ip4;

struct in6_addr ip6;

string_t *literal = NULL;

int ret;

/* RFC 3986:

literal = uri_parser_get_tmpbuf(parser, 256);

/* IP-literal / */

if (parser->cur < parser->end && *parser->cur == '[') {

#ifdef HAVE_IPV6

if ((ret=uri_parse_ip_literal(parser, literal, &ip6)) <= 0)

return -1;

if (auth != NULL) {

auth->host_literal = t_strdup(str_c(literal));

auth->host_ip.family = AF_INET6;

auth->host_ip.u.ip6 = ip6;

auth->have_host_ip = TRUE;

}

return 1;

#else

parser->error = "IPv6 host address is not supported";

return -1;

#endif

}

/* IPv4address /

preserve = parser->cur;

if ((ret = uri_parse_ipv4address(parser, literal, &ip4)) > 0) {

if (auth != NULL) {

auth->host_literal = t_strdup(str_c(literal));

auth->host_ip.family = AF_INET;

auth->host_ip.u.ip4 = ip4;

auth->have_host_ip = TRUE;

}

return ret;

}

parser->cur = preserve;

str_truncate(literal, 0);

/* reg-name */

if ((ret = uri_parse_reg_name(parser, literal)) != 0) {

if (ret > 0 && auth != NULL) {

auth->host_literal = t_strdup(str_c(literal));

auth->have_host_ip = FALSE;

}

return ret;

}

return 0;

}

static int uri_parse_port(struct uri_parser *parser, struct uri_authority *auth)

{

unsigned long port = 0;

int count = 0;

/* RFC 3986:

while (parser->cur < parser->end && i_isdigit(*parser->cur)) {

port = port * 10 + (parser->cur[0] - '0');

if (port > (in_port_t)-1) {

parser->error = "Port number is too high";

return -1;

}

parser->cur++;

count++;

}

if (count > 0) {

if (auth != NULL) {

auth->port = port;

auth->have_port = TRUE;

}

return 1;

}

return 0;

}

int uri_parse_authority(struct uri_parser *parser,

struct uri_authority *auth)

{

const unsigned char *p;

int ret;

/*

if (auth != NULL)

memset(auth, 0, sizeof(*auth));

/* Scan ahead to check whether there is a [userinfo "@"] uri component */

for (p = parser->cur; p < parser->end; p++){

/* refuse 8bit characters */

if ((*p & 0x80) != 0)

break;

/* break at first delimiter */

if (*p != '%' && (_uri_char_lookup[*p] & CHAR_MASK_UCHAR) == 0)

break;

}

/* Extract userinfo */

if (p < parser->end && *p == '@') {

if (auth != NULL)

auth->enc_userinfo = t_strdup_until(parser->cur, p);

parser->cur = p+1;

}

/* host */

if ((ret = uri_parse_host(parser, auth)) <= 0) {

if (ret == 0) {

if (p == parser->end || *p == ':' || *p == '/')

parser->error = "Missing 'host' component";

else

parser->error = "Invalid 'host' component";

return -1;

}

return ret;

}

/* [":" ... */

if (parser->cur >= parser->end || *parser->cur != ':')

return 1;

parser->cur++;

/* ... port] */

if ((ret = uri_parse_port(parser, auth)) < 0)

return ret;

return 1;

}

int uri_parse_slashslash_authority(struct uri_parser *parser,

struct uri_authority *auth)

{

/* "//" authority */

if ((parser->end - parser->cur) <= 2 || parser->cur[0] != '/' ||

parser->cur[1] != '/')

return 0;

parser->cur += 2;

return uri_parse_authority(parser, auth);

}

int uri_parse_path_segment(struct uri_parser *parser, const char **segment_r)

{

const unsigned char *p = parser->cur;

while (p < parser->end) {

if (*p == '%') {

p++;

continue;

}

if ((*p & 0x80) != 0 || (_uri_char_lookup[*p] & CHAR_MASK_PCHAR) == 0)

break;

p++;

}

if (p == parser->cur)

return 0;

if (segment_r != NULL)

*segment_r = t_strdup_until(parser->cur, p);

parser->cur = p;

return 1;

}

int uri_parse_path(struct uri_parser *parser,

int *relative_r, const char *const **path_r)

{

const unsigned char *pbegin = parser->cur;

ARRAY_TYPE(const_string) segments;

const char *segment = NULL;

unsigned int count;

int relative = 1;

int ret;

t_array_init(&segments, 16);

/* check for a leading '/' and indicate absolute path

if (parser->cur < parser->end && *parser->cur == '/') {

parser->cur++;

relative = 0;

}

/* parse first segment */

if ((ret = uri_parse_path_segment(parser, &segment)) < 0)

return -1;

for (;;) {

if (ret > 0) {

/* strip dot segments */

if (segment[0] == '.') {

if (segment[1] == '.') {

if (segment[2] == '\0') {

/* '..' -> skip and... */

segment = NULL;

/* ... pop last segment (if any) */

count = array_count(&segments);

if (count > 0) {

array_delete(&segments, count-1, 1);

} else if ( relative > 0 ) {

relative++;

}

}

} else if (segment[1] == '\0') {

/* '.' -> skip */

segment = NULL;

}

}

} else {

segment = "";

}

if (segment != NULL)

array_append(&segments, &segment, 1);

if (parser->cur >= parser->end || *parser->cur != '/')

break;

parser->cur++;

/* parse next path segment */

if ((ret = uri_parse_path_segment(parser, &segment)) < 0)

return -1;

}

*path_r = NULL;

*relative_r = relative;

if (parser->cur == pbegin) {

/* path part of URI is empty */

return 0;

}

/* special treatment for a trailing '..' or '.' */

if (segment == NULL) {

segment = "";

array_append(&segments, &segment, 1);

}

array_append_zero(&segments);

*path_r = array_get(&segments, &count);

return 1;

}

int uri_parse_query(struct uri_parser *parser, const char **query_r)

{

const unsigned char *p = parser->cur;

/* RFC 3986:

if (p >= parser->end || *p != '?')

return 0;

p++;

while (p < parser->end) {

if (*p == '%') {

p++;

continue;

}

if ((*p & 0x80) != 0 || (_uri_char_lookup[*p] & CHAR_MASK_QCHAR) == 0)

break;

p++;

}

if (query_r != NULL)

*query_r = t_strdup_until(parser->cur+1, p);

parser->cur = p;

return 1;

}

int uri_parse_fragment(struct uri_parser *parser, const char **fragment_r)

{

const unsigned char *p = parser->cur;

/* RFC 3986:

if (p >= parser->end || *p != '#')

return 0;

p++;

while (p < parser->end) {

if (*p == '%') {

p++;

continue;

}

if ((*p & 0x80) != 0 || (_uri_char_lookup[*p] & CHAR_MASK_QCHAR) == 0)

break;

p++;

}

if (fragment_r != NULL)

*fragment_r = t_strdup_until(parser->cur+1, p);

parser->cur = p;

return 1;

}

void uri_parser_init(struct uri_parser *parser, pool_t pool, const char *data)

{

parser->pool = pool;

parser->begin = parser->cur = (unsigned char *)data;

parser->end = (unsigned char *)data + strlen(data);

parser->error = NULL;

parser->tmpbuf = NULL;

}

string_t *uri_parser_get_tmpbuf(struct uri_parser *parser, size_t size)

{

if (parser->tmpbuf == NULL)

parser->tmpbuf = t_str_new(size);

else

str_truncate(parser->tmpbuf, 0);

return parser->tmpbuf;

}

static void

uri_data_encode(string_t *out, const unsigned char esc_table[256],

unsigned char esc_mask, const char *esc_extra, const char *data)

{

const unsigned char *p = (const unsigned char *)data;

while (*p != '\0') {

if ((*p & 0x80) != 0 || (esc_table[*p] & esc_mask) == 0 ||

strchr(esc_extra, (char)*p) != NULL) {

str_printfa(out, "%%%02x", *p);

} else {

str_append_c(out, *p);

}

p++;

}

}

void uri_append_scheme(string_t *out, const char *scheme)

{

str_append(out, scheme);

str_append_c(out, ':');

}

void uri_append_user_data(string_t *out, const char *esc,

const char *data)

{

uri_data_encode(out, _uri_char_lookup, CHAR_MASK_UCHAR, esc, data);

}

void uri_append_userinfo(string_t *out, const char *userinfo)

{

uri_append_user_data(out, "", userinfo);

str_append_c(out, '@');

}

void uri_append_host_name(string_t *out, const char *name)

{

uri_data_encode(out, _uri_char_lookup,

CHAR_MASK_UNRESERVED | CHAR_MASK_SUB_DELIMS, "", name);

}

void uri_append_host_ip(string_t *out, const struct ip_addr *host_ip)

{

const char *addr = net_ip2addr(host_ip);

if (host_ip->family == AF_INET) {

str_append(out, addr);

return;

}

i_assert(host_ip->family == AF_INET6);

str_append_c(out, '[');

str_append(out, addr);

str_append_c(out, ']');

}

void uri_append_port(string_t *out, in_port_t port)

{

str_printfa(out, ":%u", port);

}

void uri_append_path_segment_data(string_t *out, const char *esc,

const char *data)

{

uri_data_encode(out, _uri_char_lookup, CHAR_MASK_PCHAR, esc, data);

}

void uri_append_path_segment(string_t *out, const char *segment)

{

str_append_c(out, '/');

if (*segment != '\0')

uri_append_path_data(out, "", segment);

}

void uri_append_path_data(string_t *out, const char *esc,

const char *data)

{

uri_data_encode(out, _uri_char_lookup, CHAR_MASK_PFCHAR, esc, data);

}

void uri_append_path(string_t *out, const char *path)

{

str_append_c(out, '/');

if (*path != '\0')

uri_append_path_data(out, "", path);

}

void uri_append_query_data(string_t *out, const char *esc,

const char *data)

{

uri_data_encode(out, _uri_char_lookup, CHAR_MASK_QCHAR, esc, data);

}

void uri_append_query(string_t *out, const char *query)

{

str_append_c(out, '?');

if (*query != '\0')

uri_append_query_data(out, "", query);

}

void uri_append_fragment_data(string_t *out, const char *esc,

const char *data)

{

uri_data_encode(out, _uri_char_lookup, CHAR_MASK_QCHAR, esc, data);

}

void uri_append_fragment(string_t *out, const char *fragment)

{

str_append_c(out, '#');

if (*fragment != '\0')

uri_append_fragment_data(out, "", fragment);

}