[thirdparty/openssl.git] / crypto / punycode.c

/*
 * Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stddef.h>
#include <stdio.h>
#include <openssl/e_os2.h>
#include "crypto/punycode.h"
#include "internal/common.h" /* for HAS_PREFIX */

static const unsigned int base = 36;
static const unsigned int tmin = 1;
static const unsigned int tmax = 26;
static const unsigned int skew = 38;
static const unsigned int damp = 700;
static const unsigned int initial_bias = 72;
static const unsigned int initial_n = 0x80;
static const unsigned int maxint = 0xFFFFFFFF;
static const char delimiter = '-';

#define LABEL_BUF_SIZE 512

/*-
 * Pseudocode:
 *
 * function adapt(delta,numpoints,firsttime):
 *  if firsttime then let delta = delta div damp
 *  else let delta = delta div 2
 *  let delta = delta + (delta div numpoints)
 *  let k = 0
 *  while delta > ((base - tmin) * tmax) div 2 do begin
 *    let delta = delta div (base - tmin)
 *    let k = k + base
 *  end
 *  return k + (((base - tmin + 1) * delta) div (delta + skew))
 */

static int adapt(unsigned int delta, unsigned int numpoints,
                 unsigned int firsttime)
{
    unsigned int k = 0;

    delta = (firsttime) ? delta / damp : delta / 2;
    delta = delta + delta / numpoints;

    while (delta > ((base - tmin) * tmax) / 2) {
        delta = delta / (base - tmin);
        k = k + base;
    }

    return k + (((base - tmin + 1) * delta) / (delta + skew));
}

static ossl_inline int is_basic(unsigned int a)
{
    return (a < 0x80) ? 1 : 0;
}

/*-
 * code points    digit-values
 * ------------   ----------------------
 * 41..5A (A-Z) =  0 to 25, respectively
 * 61..7A (a-z) =  0 to 25, respectively
 * 30..39 (0-9) = 26 to 35, respectively
 */
static ossl_inline int digit_decoded(const unsigned char a)
{
    if (a >= 0x41 && a <= 0x5A)
        return a - 0x41;

    if (a >= 0x61 && a <= 0x7A)
        return a - 0x61;

    if (a >= 0x30 && a <= 0x39)
        return a - 0x30 + 26;

    return -1;
}

/*-
 * Pseudocode:
 *
 * function ossl_punycode_decode
 *  let n = initial_n
 *  let i = 0
 *  let bias = initial_bias
 *  let output = an empty string indexed from 0
 *  consume all code points before the last delimiter (if there is one)
 *    and copy them to output, fail on any non-basic code point
 *  if more than zero code points were consumed then consume one more
 *    (which will be the last delimiter)
 *  while the input is not exhausted do begin
 *    let oldi = i
 *    let w = 1
 *    for k = base to infinity in steps of base do begin
 *      consume a code point, or fail if there was none to consume
 *      let digit = the code point's digit-value, fail if it has none
 *      let i = i + digit * w, fail on overflow
 *      let t = tmin if k <= bias {+ tmin}, or
 *              tmax if k >= bias + tmax, or k - bias otherwise
 *      if digit < t then break
 *      let w = w * (base - t), fail on overflow
 *    end
 *    let bias = adapt(i - oldi, length(output) + 1, test oldi is 0?)
 *    let n = n + i div (length(output) + 1), fail on overflow
 *    let i = i mod (length(output) + 1)
 *    {if n is a basic code point then fail}
 *    insert n into output at position i
 *    increment i
 *  end
 */

int ossl_punycode_decode(const char *pEncoded, const size_t enc_len,
                         unsigned int *pDecoded, unsigned int *pout_length)
{
    unsigned int n = initial_n;
    unsigned int i = 0;
    unsigned int bias = initial_bias;
    size_t processed_in = 0, written_out = 0;
    unsigned int max_out = *pout_length;
    unsigned int basic_count = 0;
    unsigned int loop;

    for (loop = 0; loop < enc_len; loop++) {
        if (pEncoded[loop] == delimiter)
            basic_count = loop;
    }

    if (basic_count > 0) {
        if (basic_count > max_out)
            return 0;

        for (loop = 0; loop < basic_count; loop++) {
            if (is_basic(pEncoded[loop]) == 0)
                return 0;

            pDecoded[loop] = pEncoded[loop];
            written_out++;
        }
        processed_in = basic_count + 1;
    }

    for (loop = processed_in; loop < enc_len;) {
        unsigned int oldi = i;
        unsigned int w = 1;
        unsigned int k, t;
        int digit;

        for (k = base;; k += base) {
            if (loop >= enc_len)
                return 0;

            digit = digit_decoded(pEncoded[loop]);
            loop++;

            if (digit < 0)
                return 0;
            if ((unsigned int)digit > (maxint - i) / w)
                return 0;

            i = i + digit * w;
            t = (k <= bias) ? tmin : (k >= bias + tmax) ? tmax : k - bias;

            if ((unsigned int)digit < t)
                break;

            if (w > maxint / (base - t))
                return 0;
            w = w * (base - t);
        }

        bias = adapt(i - oldi, written_out + 1, (oldi == 0));
        if (i / (written_out + 1) > maxint - n)
            return 0;
        n = n + i / (written_out + 1);
        i %= (written_out + 1);

        if (written_out >= max_out)
            return 0;

        memmove(pDecoded + i + 1, pDecoded + i,
                (written_out - i) * sizeof(*pDecoded));
        pDecoded[i] = n;
        i++;
        written_out++;
    }

    *pout_length = written_out;
    return 1;
}

/*
 * Encode a code point using UTF-8
 * return number of bytes on success, 0 on failure
 * (also produces U+FFFD, which uses 3 bytes on failure)
 */
static int codepoint2utf8(unsigned char *out, unsigned long utf)
{
    if (utf <= 0x7F) {
        /* Plain ASCII */
        out[0] = (unsigned char)utf;
        out[1] = 0;
        return 1;
    } else if (utf <= 0x07FF) {
        /* 2-byte unicode */
        out[0] = (unsigned char)(((utf >> 6) & 0x1F) | 0xC0);
        out[1] = (unsigned char)(((utf >> 0) & 0x3F) | 0x80);
        out[2] = 0;
        return 2;
    } else if (utf <= 0xFFFF) {
        /* 3-byte unicode */
        out[0] = (unsigned char)(((utf >> 12) & 0x0F) | 0xE0);
        out[1] = (unsigned char)(((utf >> 6) & 0x3F) | 0x80);
        out[2] = (unsigned char)(((utf >> 0) & 0x3F) | 0x80);
        out[3] = 0;
        return 3;
    } else if (utf <= 0x10FFFF) {
        /* 4-byte unicode */
        out[0] = (unsigned char)(((utf >> 18) & 0x07) | 0xF0);
        out[1] = (unsigned char)(((utf >> 12) & 0x3F) | 0x80);
        out[2] = (unsigned char)(((utf >> 6) & 0x3F) | 0x80);
        out[3] = (unsigned char)(((utf >> 0) & 0x3F) | 0x80);
        out[4] = 0;
        return 4;
    } else {
        /* error - use replacement character */
        out[0] = (unsigned char)0xEF;
        out[1] = (unsigned char)0xBF;
        out[2] = (unsigned char)0xBD;
        out[3] = 0;
        return 0;
    }
}

/*-
 * Return values:
 * 1 - ok, *outlen contains valid buf length
 * 0 - ok but buf was too short, *outlen contains valid buf length
 * -1 - bad string passed
 */

int ossl_a2ulabel(const char *in, char *out, size_t *outlen)
{
    /*-
     * Domain name has some parts consisting of ASCII chars joined with dot.
     * If a part is shorter than 5 chars, it becomes U-label as is.
     * If it does not start with xn--,    it becomes U-label as is.
     * Otherwise we try to decode it.
     */
    char *outptr = out;
    const char *inptr = in;
    size_t size = 0, maxsize;
    int result = 1;
    unsigned int i, j;
    unsigned int buf[LABEL_BUF_SIZE];      /* It's a hostname */

    if (out == NULL) {
        result = 0;
        maxsize = 0;
    } else {
        maxsize = *outlen;
    }

#define PUSHC(c)                    \
    do                              \
        if (size++ < maxsize)       \
            *outptr++ = c;          \
        else                        \
            result = 0;             \
    while (0)

    while (1) {
        char *tmpptr = strchr(inptr, '.');
        size_t delta = tmpptr != NULL ? (size_t)(tmpptr - inptr) : strlen(inptr);

        if (!HAS_PREFIX(inptr, "xn--")) {
            for (i = 0; i < delta + 1; i++)
                PUSHC(inptr[i]);
        } else {
            unsigned int bufsize = LABEL_BUF_SIZE;

            if (ossl_punycode_decode(inptr + 4, delta - 4, buf, &bufsize) <= 0)
                return -1;

            for (i = 0; i < bufsize; i++) {
                unsigned char seed[6];
                size_t utfsize = codepoint2utf8(seed, buf[i]);

                if (utfsize == 0)
                    return -1;

                for (j = 0; j < utfsize; j++)
                    PUSHC(seed[j]);
            }

            PUSHC(tmpptr != NULL ? '.' : '\0');
        }

        if (tmpptr == NULL)
            break;

        inptr = tmpptr + 1;
    }
#undef PUSHC

    *outlen = size;
    return result;
}

/*-
 * a MUST be A-label
 * u MUST be U-label
 * Returns 0 if compared values are equal
 * 1 if not
 * -1 in case of errors
 */

int ossl_a2ucompare(const char *a, const char *u)
{
    char a_ulabel[LABEL_BUF_SIZE + 1];
    size_t a_size = sizeof(a_ulabel);

    if (ossl_a2ulabel(a, a_ulabel, &a_size) <= 0)
        return -1;

    return strcmp(a_ulabel, u) != 0;
}
Commit	Line	Data
4650f2b5	1	/*
eec0ad10	2	* Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
4650f2b5 DB	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	#include <stddef.h>
4650f2b5 DB	11	#include <stdio.h>
	12	#include <openssl/e_os2.h>
	13	#include "crypto/punycode.h"
af16097f	14	#include "internal/common.h" /* for HAS_PREFIX */
4650f2b5 DB	15
	16	static const unsigned int base = 36;
	17	static const unsigned int tmin = 1;
	18	static const unsigned int tmax = 26;
	19	static const unsigned int skew = 38;
	20	static const unsigned int damp = 700;
	21	static const unsigned int initial_bias = 72;
	22	static const unsigned int initial_n = 0x80;
	23	static const unsigned int maxint = 0xFFFFFFFF;
	24	static const char delimiter = '-';
	25
	26	#define LABEL_BUF_SIZE 512
	27
	28	/*-
	29	* Pseudocode:
	30	*
	31	* function adapt(delta,numpoints,firsttime):
	32	* if firsttime then let delta = delta div damp
	33	* else let delta = delta div 2
	34	* let delta = delta + (delta div numpoints)
	35	* let k = 0
	36	* while delta > ((base - tmin) * tmax) div 2 do begin
	37	* let delta = delta div (base - tmin)
	38	* let k = k + base
	39	* end
	40	* return k + (((base - tmin + 1) * delta) div (delta + skew))
	41	*/
	42
	43	static int adapt(unsigned int delta, unsigned int numpoints,
	44	unsigned int firsttime)
	45	{
	46	unsigned int k = 0;
	47
	48	delta = (firsttime) ? delta / damp : delta / 2;
	49	delta = delta + delta / numpoints;
	50
	51	while (delta > ((base - tmin) * tmax) / 2) {
	52	delta = delta / (base - tmin);
	53	k = k + base;
	54	}
	55
	56	return k + (((base - tmin + 1) * delta) / (delta + skew));
	57	}
	58
	59	static ossl_inline int is_basic(unsigned int a)
	60	{
	61	return (a < 0x80) ? 1 : 0;
	62	}
	63
	64	/*-
	65	* code points digit-values
	66	* ------------ ----------------------
	67	* 41..5A (A-Z) = 0 to 25, respectively
	68	* 61..7A (a-z) = 0 to 25, respectively
	69	* 30..39 (0-9) = 26 to 35, respectively
	70	*/
	71	static ossl_inline int digit_decoded(const unsigned char a)
	72	{
	73	if (a >= 0x41 && a <= 0x5A)
	74	return a - 0x41;
	75
	76	if (a >= 0x61 && a <= 0x7A)
	77	return a - 0x61;
	78
79	if (a >= 0x30 && a <= 0x39)
80	return a - 0x30 + 26;
81
82	return -1;
83	}
84
85	/*-
86	* Pseudocode:
87	*
88	* function ossl_punycode_decode
89	* let n = initial_n
90	* let i = 0
91	* let bias = initial_bias
92	* let output = an empty string indexed from 0
93	* consume all code points before the last delimiter (if there is one)
94	* and copy them to output, fail on any non-basic code point
95	* if more than zero code points were consumed then consume one more
96	* (which will be the last delimiter)
97	* while the input is not exhausted do begin
98	* let oldi = i
99	* let w = 1
100	* for k = base to infinity in steps of base do begin
101	* consume a code point, or fail if there was none to consume
102	* let digit = the code point's digit-value, fail if it has none
103	* let i = i + digit * w, fail on overflow
104	* let t = tmin if k <= bias {+ tmin}, or
105	* tmax if k >= bias + tmax, or k - bias otherwise
106	* if digit < t then break
107	* let w = w * (base - t), fail on overflow
108	* end
109	* let bias = adapt(i - oldi, length(output) + 1, test oldi is 0?)
110	* let n = n + i div (length(output) + 1), fail on overflow
111	* let i = i mod (length(output) + 1)
112	* {if n is a basic code point then fail}
113	* insert n into output at position i
114	* increment i
115	* end
116	*/
117
118	int ossl_punycode_decode(const char *pEncoded, const size_t enc_len,
119	unsigned int pDecoded, unsigned int pout_length)
120	{
121	unsigned int n = initial_n;
122	unsigned int i = 0;
123	unsigned int bias = initial_bias;
124	size_t processed_in = 0, written_out = 0;
125	unsigned int max_out = *pout_length;
4650f2b5 DB	126	unsigned int basic_count = 0;
	127	unsigned int loop;
	128
	129	for (loop = 0; loop < enc_len; loop++) {
	130	if (pEncoded[loop] == delimiter)
	131	basic_count = loop;
	132	}
	133
	134	if (basic_count > 0) {
	135	if (basic_count > max_out)
	136	return 0;
	137
	138	for (loop = 0; loop < basic_count; loop++) {
	139	if (is_basic(pEncoded[loop]) == 0)
	140	return 0;
	141
	142	pDecoded[loop] = pEncoded[loop];
	143	written_out++;
	144	}
	145	processed_in = basic_count + 1;
	146	}
	147
	148	for (loop = processed_in; loop < enc_len;) {
	149	unsigned int oldi = i;
	150	unsigned int w = 1;
	151	unsigned int k, t;
	152	int digit;
	153
	154	for (k = base;; k += base) {
	155	if (loop >= enc_len)
	156	return 0;
	157
	158	digit = digit_decoded(pEncoded[loop]);
	159	loop++;
	160
	161	if (digit < 0)
	162	return 0;
	163	if ((unsigned int)digit > (maxint - i) / w)
	164	return 0;
	165
	166	i = i + digit * w;
	167	t = (k <= bias) ? tmin : (k >= bias + tmax) ? tmax : k - bias;
	168
	169	if ((unsigned int)digit < t)
	170	break;
	171
	172	if (w > maxint / (base - t))
	173	return 0;
	174	w = w * (base - t);
	175	}
	176
	177	bias = adapt(i - oldi, written_out + 1, (oldi == 0));
	178	if (i / (written_out + 1) > maxint - n)
	179	return 0;
	180	n = n + i / (written_out + 1);
	181	i %= (written_out + 1);
	182
3b421ebc	183	if (written_out >= max_out)
4650f2b5 DB	184	return 0;
	185
	186	memmove(pDecoded + i + 1, pDecoded + i,
680e65b9	187	(written_out - i) * sizeof(*pDecoded));
4650f2b5 DB	188	pDecoded[i] = n;
	189	i++;
	190	written_out++;
	191	}
	192
	193	*pout_length = written_out;
	194	return 1;
	195	}
	196
	197	/*
	198	* Encode a code point using UTF-8
	199	* return number of bytes on success, 0 on failure
	200	* (also produces U+FFFD, which uses 3 bytes on failure)
	201	*/
	202	static int codepoint2utf8(unsigned char *out, unsigned long utf)
	203	{
	204	if (utf <= 0x7F) {
	205	/* Plain ASCII */
	206	out[0] = (unsigned char)utf;
	207	out[1] = 0;
	208	return 1;
	209	} else if (utf <= 0x07FF) {
	210	/* 2-byte unicode */
	211	out[0] = (unsigned char)(((utf >> 6) & 0x1F) \| 0xC0);
	212	out[1] = (unsigned char)(((utf >> 0) & 0x3F) \| 0x80);
	213	out[2] = 0;
	214	return 2;
	215	} else if (utf <= 0xFFFF) {
	216	/* 3-byte unicode */
	217	out[0] = (unsigned char)(((utf >> 12) & 0x0F) \| 0xE0);
	218	out[1] = (unsigned char)(((utf >> 6) & 0x3F) \| 0x80);
	219	out[2] = (unsigned char)(((utf >> 0) & 0x3F) \| 0x80);
	220	out[3] = 0;
	221	return 3;
	222	} else if (utf <= 0x10FFFF) {
	223	/* 4-byte unicode */
	224	out[0] = (unsigned char)(((utf >> 18) & 0x07) \| 0xF0);
	225	out[1] = (unsigned char)(((utf >> 12) & 0x3F) \| 0x80);
	226	out[2] = (unsigned char)(((utf >> 6) & 0x3F) \| 0x80);
	227	out[3] = (unsigned char)(((utf >> 0) & 0x3F) \| 0x80);
	228	out[4] = 0;
	229	return 4;
	230	} else {
	231	/* error - use replacement character */
	232	out[0] = (unsigned char)0xEF;
	233	out[1] = (unsigned char)0xBF;
	234	out[2] = (unsigned char)0xBD;
	235	out[3] = 0;
	236	return 0;
	237	}
	238	}
	239
	240	/*-
	241	* Return values:
	242	* 1 - ok, *outlen contains valid buf length
	243	* 0 - ok but buf was too short, *outlen contains valid buf length
	244	* -1 - bad string passed
	245	*/
	246
	247	int ossl_a2ulabel(const char in, char out, size_t *outlen)
	248	{
	249	/*-
	250	* Domain name has some parts consisting of ASCII chars joined with dot.
	251	* If a part is shorter than 5 chars, it becomes U-label as is.
252	* If it does not start with xn--, it becomes U-label as is.
253	* Otherwise we try to decode it.
254	*/
255	char *outptr = out;
256	const char *inptr = in;
680e65b9	257	size_t size = 0, maxsize;
4650f2b5	258	int result = 1;
680e65b9	259	unsigned int i, j;
4650f2b5	260	unsigned int buf[LABEL_BUF_SIZE]; /* It's a hostname */
680e65b9 P	261
680e65b9 P	262	if (out == NULL) {
4650f2b5	263	result = 0;
680e65b9 P	264	maxsize = 0;
	265	} else {
	266	maxsize = *outlen;
	267	}
	268
	269	#define PUSHC(c) \
	270	do \
	271	if (size++ < maxsize) \
	272	*outptr++ = c; \
	273	else \
	274	result = 0; \
	275	while (0)
4650f2b5 DB	276
	277	while (1) {
	278	char *tmpptr = strchr(inptr, '.');
680e65b9	279	size_t delta = tmpptr != NULL ? (size_t)(tmpptr - inptr) : strlen(inptr);
4650f2b5	280
2ff286c2	281	if (!HAS_PREFIX(inptr, "xn--")) {
680e65b9 P	282	for (i = 0; i < delta + 1; i++)
680e65b9 P	283	PUSHC(inptr[i]);
4650f2b5 DB	284	} else {
4650f2b5 DB	285	unsigned int bufsize = LABEL_BUF_SIZE;
4650f2b5 DB	286
	287	if (ossl_punycode_decode(inptr + 4, delta - 4, buf, &bufsize) <= 0)
	288	return -1;
	289
	290	for (i = 0; i < bufsize; i++) {
	291	unsigned char seed[6];
	292	size_t utfsize = codepoint2utf8(seed, buf[i]);
680e65b9	293
4650f2b5 DB	294	if (utfsize == 0)
	295	return -1;
	296
680e65b9 P	297	for (j = 0; j < utfsize; j++)
680e65b9 P	298	PUSHC(seed[j]);
4650f2b5 DB	299	}
4650f2b5 DB	300
680e65b9	301	PUSHC(tmpptr != NULL ? '.' : '\0');
4650f2b5 DB	302	}
	303
	304	if (tmpptr == NULL)
	305	break;
	306
	307	inptr = tmpptr + 1;
	308	}
680e65b9	309	#undef PUSHC
4650f2b5	310
680e65b9	311	*outlen = size;
4650f2b5 DB	312	return result;
	313	}
	314
	315	/*-
	316	* a MUST be A-label
	317	* u MUST be U-label
	318	* Returns 0 if compared values are equal
	319	* 1 if not
	320	* -1 in case of errors
	321	*/
	322
	323	int ossl_a2ucompare(const char a, const char u)
	324	{
680e65b9	325	char a_ulabel[LABEL_BUF_SIZE + 1];
4650f2b5 DB	326	size_t a_size = sizeof(a_ulabel);
4650f2b5 DB	327
680e65b9	328	if (ossl_a2ulabel(a, a_ulabel, &a_size) <= 0)
4650f2b5	329	return -1;
4650f2b5	330
680e65b9	331	return strcmp(a_ulabel, u) != 0;
4650f2b5	332	}