|
|
| version 1.49, 2007/07/06 15:06:28 | version 1.78, 2015/10/06 22:20:50 |
|---|---|
| Line 1 | Line 1 |
| /** @file | /** @file |
| Parser: @b math parser class. | Parser: @b math parser class. |
| Copyright(c) 2001-2005 ArtLebedev Group(http://www.artlebedev.com) | Copyright (c) 2001-2012 Art. Lebedev Studio (http://www.artlebedev.com) |
| Author: Alexandr Petrosian <paf@design.ru>(http://paf.design.ru) | Author: Alexandr Petrosian <paf@design.ru>(http://paf.design.ru) |
| portions from gen_uuid.c, | portions from gen_uuid.c, |
| Copyright (C) 1996, 1997, 1998, 1999 Theodore Ts'o. | Copyright (C) 1996, 1997, 1998, 1999 Theodore Ts'o. |
| */ | */ |
| static const char * const IDENT_MATH_C="$Date$"; | |
| #include "pa_vmethod_frame.h" | #include "pa_vmethod_frame.h" |
| #include "pa_common.h" | #include "pa_common.h" |
| #include "pa_vint.h" | #include "pa_vint.h" |
| #include "pa_vmath.h" | #include "pa_vmath.h" |
| #include "pa_vfile.h" | |
| #include "pa_request.h" | #include "pa_request.h" |
| #include "pa_md5.h" | #include "pa_md5.h" |
| #include "pa_threads.h" | #include "pa_sha2.h" |
| #include "pa_random.h" | |
| #ifdef WIN32 | |
| # define _WIN32_WINNT 0x400 | |
| # include <windows.h> | |
| # include <wincrypt.h> | |
| #endif | |
| #ifdef HAVE_CRYPT | #ifdef HAVE_CRYPT |
| # ifdef HAVE_CRYPT_H | extern "C" char *crypt(const char* , const char* ); |
| # include <crypt.h> | |
| # endif | |
| #else | |
| extern char *crypt(const char* , const char* ); | |
| #endif | #endif |
| volatile const char * IDENT_MATH_C="$Id$"; | |
| // defines | // defines |
| #define MAX_SALT 8 | #define MAX_SALT 8 |
| Line 50 public: // Methoded | Line 42 public: // Methoded |
| DECLARE_CLASS_VAR(math, 0 /*fictive*/, new MMath); | DECLARE_CLASS_VAR(math, 0 /*fictive*/, new MMath); |
| #ifdef WIN32 | |
| class Random_provider { | |
| HCRYPTPROV fhProv; | |
| void acquire() { | |
| SYNCHRONIZED; | |
| if(fhProv) | |
| return; | |
| if(!CryptAcquireContext(&fhProv, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT)) | |
| throw Exception(0, | |
| 0, | |
| "CryptAcquireContext failed"); | |
| } | |
| void release() { | |
| if(fhProv) | |
| CryptReleaseContext(fhProv, 0); | |
| } | |
| public: | |
| Random_provider(): fhProv(0) {} | |
| ~Random_provider() { release(); } | |
| void generate(void *buffer, size_t size) { | |
| acquire(); | |
| if(!CryptGenRandom(fhProv, size, (BYTE*)buffer)) | |
| throw Exception(0, | |
| 0, | |
| "CryptGenRandom failed"); | |
| } | |
| } | |
| random_provider; | |
| #else | |
| /// from gen_uuid.c | |
| static int get_random_fd(void) | |
| { | |
| struct timeval tv; | |
| static int fd = -2; | |
| int i; | |
| if (fd == -2) { | |
| gettimeofday(&tv, 0); | |
| fd = open("/dev/urandom", O_RDONLY); | |
| if (fd == -1) | |
| fd = open("/dev/random", O_RDONLY | O_NONBLOCK); | |
| srand((getpid() << 16) ^ getuid() ^ tv.tv_sec ^ tv.tv_usec); | |
| } | |
| /* Crank the random number generator a few times */ | |
| gettimeofday(&tv, 0); | |
| for (i = (tv.tv_sec ^ tv.tv_usec) & 0x1F; i > 0; i--) | |
| rand(); | |
| return fd; | |
| } | |
| /* | |
| * Generate a series of random bytes. Use /dev/urandom if possible, | |
| * and if not, use srandom/random. | |
| */ | |
| static void get_random_bytes(void *buf, int nbytes) | |
| { | |
| int i, fd = get_random_fd(); | |
| int lose_counter = 0; | |
| char *cp = (char *) buf; | |
| if (fd >= 0) { | |
| while (nbytes > 0) { | |
| i = read(fd, cp, nbytes); | |
| if (i <= 0) { | |
| if (lose_counter++ > 16) | |
| break; | |
| continue; | |
| } | |
| nbytes -= i; | |
| cp += i; | |
| lose_counter = 0; | |
| } | |
| } | |
| /* XXX put something better here if no /dev/random! */ | |
| for (i = 0; i < nbytes; i++) | |
| *cp++ = rand() & 0xFF; | |
| return; | |
| } | |
| #endif | |
| // helpers | |
| static void random(void *buffer, size_t size) { | |
| #ifdef WIN32 | |
| random_provider.generate(buffer, size); | |
| #else | |
| get_random_bytes(buffer, size); | |
| #endif | |
| } | |
| // methods | // methods |
| #define MAX_UINT 0xFFFFFFFFu | |
| static inline int _random(uint top) { | |
| uint raw; | |
| random(&raw, sizeof(raw)); | |
| return int(double(raw) / MAX_UINT * top ); | |
| } | |
| static void _random(Request& r, MethodParams& params) { | static void _random(Request& r, MethodParams& params) { |
| double top=params.as_double(0, "range must be expression", r); | double top=params.as_double(0, "range must be expression", r); |
| if(top<=0 || top>MAX_UINT) | if(top<=0 || top>MAX_UINT) |
| Line 189 static void math1(Request& r, MethodPara | Line 70 static void math1(Request& r, MethodPara |
| static void _##name(Request& r, MethodParams& params) {\ | static void _##name(Request& r, MethodParams& params) {\ |
| math1(r, params, &name);\ | math1(r, params, &name);\ |
| } | } |
| #define MATH1P(name_parser, name_c) \ | #define MATH1P(name_parser, name_c) \ |
| static void _##name_parser(Request& r, MethodParams& params) {\ | static void _##name_parser(Request& r, MethodParams& params) {\ |
| math1(r, params, &name_c);\ | math1(r, params, &name_c);\ |
| } | } |
| MATH1(round); MATH1(floor); MATH1P(ceiling, ceil); | |
| MATH1(trunc); MATH1(frac); | MATH1(round) |
| MATH1P(abs, fabs); MATH1(sign); | MATH1(floor) |
| MATH1(exp); | MATH1P(ceiling, ceil) |
| MATH1(log); MATH1(log10); | MATH1(trunc) |
| MATH1(sin); MATH1(asin); | MATH1(frac) |
| MATH1(cos); MATH1(acos); | MATH1P(abs, fabs) |
| MATH1(tan); MATH1(atan); | MATH1(sign) |
| MATH1(degrees); MATH1(radians); | MATH1(exp) |
| MATH1(sqrt); | MATH1(log) |
| MATH1(log10) | |
| MATH1(sin) | |
| MATH1(asin) | |
| MATH1(cos) | |
| MATH1(acos) | |
| MATH1(tan) | |
| MATH1(atan) | |
| MATH1(degrees) | |
| MATH1(radians) | |
| MATH1(sqrt) | |
| typedef double (*math2_func_ptr)(double, double); | typedef double (*math2_func_ptr)(double, double); |
| Line 217 static void math2(Request& r, MethodPara | Line 109 static void math2(Request& r, MethodPara |
| static void _##name(Request& r, MethodParams& params) {\ | static void _##name(Request& r, MethodParams& params) {\ |
| math2(r, params, &name);\ | math2(r, params, &name);\ |
| } | } |
| MATH2(pow); | |
| inline bool is_salt_body_char(int c) { | MATH2(pow) |
| return isalnum(c) || c == '.' || c=='/'; | |
| inline bool is_salt_body_char(unsigned char c) { | |
| return pa_isalnum(c) || c == '.' || c=='/'; | |
| } | } |
| static size_t calc_prefix_size(const char* salt) { | static size_t calc_prefix_size(const char* salt) { |
| if(strlen(salt)) { | if(strlen(salt)) { |
| if(!is_salt_body_char((unsigned char)salt[0])) { // $... {... | if(!is_salt_body_char((unsigned char)salt[0])) { // $... {... |
| Line 254 static void _crypt(Request& r, MethodPar | Line 148 static void _crypt(Request& r, MethodPar |
| } else | } else |
| normal_salt=maybe_bodyless_salt; | normal_salt=maybe_bodyless_salt; |
| /* FreeBSD style MD5 string | /* FreeBSD style MD5 string |
| */ | */ |
| if(strncmp(normal_salt, PA_MD5PW_ID, PA_MD5PW_IDLEN) == 0) { | if(strncmp(normal_salt, PA_MD5PW_ID, PA_MD5PW_IDLEN) == 0) { |
| const size_t sample_size=120; | const size_t sample_size=120; |
| char *sample_buf=new(PointerFreeGC) char[sample_size]; | char *sample_buf=new(PointerFreeGC) char[sample_size]; |
| pa_MD5Encode((const unsigned char *)password, | pa_MD5Encode((const unsigned char *)password, |
| (const unsigned char *)normal_salt, sample_buf, sample_size); | (const unsigned char *)normal_salt, sample_buf, sample_size); |
| String sample(sample_buf); | String sample(sample_buf); |
| r.write_pass_lang(sample); | r.write_pass_lang(sample); |
| } else { | } else { |
| #ifdef HAVE_CRYPT | #ifdef HAVE_CRYPT |
| const char* static_sample_buf=crypt(password, normal_salt); | const char* static_sample_buf=crypt(password, normal_salt); |
| if(!static_sample_buf // nothing generated | if(!static_sample_buf // nothing generated |
| Line 283 static void _crypt(Request& r, MethodPar | Line 177 static void _crypt(Request& r, MethodPar |
| } | } |
| static void _md5(Request& r, MethodParams& params) { | static void _md5(Request& r, MethodParams& params) { |
| const char *string=params.as_string(0, "parameter must be string").cstr(); | const char *string=params.as_string(0, PARAMETER_MUST_BE_STRING).cstr_to_string_body_untaint(String::L_AS_IS, r.connection(false), &r.charsets).cstr(); |
| PA_MD5_CTX context; | PA_MD5_CTX context; |
| unsigned char digest[16]; | unsigned char digest[16]; |
| Line 297 static void _md5(Request& r, MethodParam | Line 191 static void _md5(Request& r, MethodParam |
| //SHA-1: | //SHA-1: |
| struct SHA1Context | struct SHA1Context { |
| { | unsigned Message_Digest[5], Length_Low, Length_High; |
| unsigned Message_Digest[5], Length_Low, Length_High; | unsigned int Message_Block[64]; |
| unsigned char Message_Block[64]; | int Message_Block_Index, Computed, Corrupted; |
| int Message_Block_Index, Computed, Corrupted; | }; |
| }; | |
| #define SHA1CircularShift(bits,word) ((((word) << (bits)) & 0xFFFFFFFF)|((word) >> (32-(bits)))) | #define SHA1CircularShift(bits,word) ((((word) << (bits)) & 0xFFFFFFFF)|((word) >> (32-(bits)))) |
| void SHA1ProcessMessageBlock(SHA1Context *); | void SHA1ProcessMessageBlock(SHA1Context *); |
| void SHA1PadMessage(SHA1Context *); | void SHA1PadMessage(SHA1Context *); |
| void SHA1Reset(SHA1Context *context) | void SHA1Reset(SHA1Context *context) { |
| { | context->Length_Low = context->Length_High = context->Message_Block_Index = 0; |
| context->Length_Low = context->Length_High = context->Message_Block_Index = 0; | context->Message_Digest[0] = 0x67452301; |
| context->Message_Digest[0] = 0x67452301; | context->Message_Digest[1] = 0xEFCDAB89; |
| context->Message_Digest[1] = 0xEFCDAB89; | context->Message_Digest[2] = 0x98BADCFE; |
| context->Message_Digest[2] = 0x98BADCFE; | context->Message_Digest[3] = 0x10325476; |
| context->Message_Digest[3] = 0x10325476; | context->Message_Digest[4] = 0xC3D2E1F0; |
| context->Message_Digest[4] = 0xC3D2E1F0; | context->Computed = context->Corrupted = 0; |
| context->Computed = context->Corrupted = 0; | } |
| } | |
| int SHA1Result(SHA1Context *context) { | |
| int SHA1Result(SHA1Context *context) | if (context->Corrupted) |
| { | return 0; |
| if (context->Corrupted) | if (!context->Computed) { |
| return 0; | SHA1PadMessage(context); |
| if (!context->Computed) | context->Computed = 1; |
| { | } |
| SHA1PadMessage(context); | return 1; |
| context->Computed = 1; | } |
| } | |
| return 1; | void SHA1Input(SHA1Context *context, const unsigned char *message_array, unsigned length) { |
| } | if (!length) |
| return; | |
| void SHA1Input (SHA1Context *context, const unsigned char *message_array, unsigned length) | if (context->Computed || context->Corrupted) { |
| { | context->Corrupted = 1; |
| if (!length) | return; |
| return; | } |
| if (context->Computed || context->Corrupted) | |
| { | while(length-- && !context->Corrupted) { |
| context->Corrupted = 1; | context->Message_Block[context->Message_Block_Index++] = (*message_array & 0xFF); |
| return; | context->Length_Low += 8; |
| } | context->Length_Low &= 0xFFFFFFFF; |
| if (!context->Length_Low && !(context->Length_High=((1+context->Length_High)&0xFFFFFFFF))) | |
| while(length-- && !context->Corrupted) | context->Corrupted = 1; // too long message |
| { | if (context->Message_Block_Index == 64) |
| context->Message_Block[context->Message_Block_Index++] = (*message_array & 0xFF); | SHA1ProcessMessageBlock(context); |
| context->Length_Low += 8; | message_array++; |
| context->Length_Low &= 0xFFFFFFFF; | } |
| if (!context->Length_Low && !(context->Length_High=((1+context->Length_High)&0xFFFFFFFF))) | } |
| context->Corrupted = 1; // too long message | |
| if (context->Message_Block_Index == 64) | void SHA1ProcessMessageBlock(SHA1Context *context) { |
| SHA1ProcessMessageBlock(context); | const unsigned K[] = {0x5A827999, 0x6ED9EBA1, 0x8F1BBCDC, 0xCA62C1D6 }; |
| message_array++; | int t; |
| } | unsigned temp, W[80], buf[5]; |
| } | unsigned &A=buf[0], &B=buf[1], &C=buf[2], &D=buf[3], &E=buf[4]; |
| void SHA1ProcessMessageBlock(SHA1Context *context) | for(t = 0; t < 16; t++) |
| { | W[t] = (((unsigned) context->Message_Block[t * 4]) << 24) | (((unsigned) context->Message_Block[t * 4 + 1]) << 16) | (((unsigned) context->Message_Block[t * 4 + 2]) << 8) | ((unsigned) context->Message_Block[t * 4 + 3]); |
| const unsigned K[] = {0x5A827999, 0x6ED9EBA1, 0x8F1BBCDC, 0xCA62C1D6 }; | |
| int t; | for(t = 16; t < 80; t++) |
| unsigned temp, W[80], buf[5]; | W[t] = SHA1CircularShift(1,W[t-3] ^ W[t-8] ^ W[t-14] ^ W[t-16]); |
| unsigned &A=buf[0], &B=buf[1], &C=buf[2], &D=buf[3], &E=buf[4]; | |
| for(t = 0; t < 16; t++) | memcpy (buf, context->Message_Digest, sizeof(buf)); |
| W[t] = (((unsigned) context->Message_Block[t * 4]) << 24) | (((unsigned) context->Message_Block[t * 4 + 1]) << 16) | (((unsigned) context->Message_Block[t * 4 + 2]) << 8) | ((unsigned) context->Message_Block[t * 4 + 3]); | for(t = 0; t < 20; t++) { |
| for(t = 16; t < 80; t++) | temp = (SHA1CircularShift(5,A) + ((B & C) | ((~B) & D)) + E + W[t] + K[0]) & 0xFFFFFFFF; |
| W[t] = SHA1CircularShift(1,W[t-3] ^ W[t-8] ^ W[t-14] ^ W[t-16]); | E = D; D = C; |
| C = SHA1CircularShift(30,B); | |
| memcpy (buf, context->Message_Digest, sizeof(buf)); | B = A; A = temp; |
| for(t = 0; t < 20; t++) | } |
| { | |
| temp = (SHA1CircularShift(5,A) + ((B & C) | ((~B) & D)) + E + W[t] + K[0]) & 0xFFFFFFFF; | for(t = 20; t < 40; t++) { |
| E = D; D = C; | temp = (SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[1]) & 0xFFFFFFFF; |
| C = SHA1CircularShift(30,B); | E = D; D = C; |
| B = A; A = temp; | C = SHA1CircularShift(30,B); |
| } | B = A; A = temp; |
| } | |
| for(t = 20; t < 40; t++) | |
| { | for(t = 40; t < 60; t++) { |
| temp = (SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[1]) & 0xFFFFFFFF; | temp = (SHA1CircularShift(5,A) + ((B & C) | (B & D) | (C & D)) + E + W[t] + K[2]) & 0xFFFFFFFF; |
| E = D; D = C; | E = D; D = C; |
| C = SHA1CircularShift(30,B); | C = SHA1CircularShift(30,B); |
| B = A; A = temp; | B = A; A = temp; |
| } | } |
| for(t = 40; t < 60; t++) | for(t = 60; t < 80; t++) { |
| { | temp = (SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[3]) & 0xFFFFFFFF; |
| temp = (SHA1CircularShift(5,A) + ((B & C) | (B & D) | (C & D)) + E + W[t] + K[2]) & 0xFFFFFFFF; | E = D; D = C; |
| E = D; D = C; | C = SHA1CircularShift(30,B); |
| C = SHA1CircularShift(30,B); | B = A; A = temp; |
| B = A; A = temp; | } |
| } | |
| for (t = 0; t < 5; t++) | |
| for(t = 60; t < 80; t++) | context->Message_Digest[t] = (context->Message_Digest[t] + buf[t]) & 0xFFFFFFFF; |
| { | |
| temp = (SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[3]) & 0xFFFFFFFF; | context->Message_Block_Index = 0; |
| E = D; D = C; | } |
| C = SHA1CircularShift(30,B); | |
| B = A; A = temp; | void SHA1PadMessage(SHA1Context *context) { |
| } | context->Message_Block[context->Message_Block_Index++] = 0x80; |
| if (context->Message_Block_Index > 56) { | |
| for (t = 0; t < 5; t++) | //was 55, one shift |
| context->Message_Digest[t] = (context->Message_Digest[t] + buf[t]) & 0xFFFFFFFF; | while(context->Message_Block_Index < 64) |
| context->Message_Block_Index = 0; | context->Message_Block[context->Message_Block_Index++] = 0; |
| } | SHA1ProcessMessageBlock(context); |
| while(context->Message_Block_Index < 56) | |
| void SHA1PadMessage(SHA1Context *context) | context->Message_Block[context->Message_Block_Index++] = 0; |
| { | } else |
| context->Message_Block[context->Message_Block_Index++] = 0x80; | while(context->Message_Block_Index < 56) |
| if (context->Message_Block_Index > 56) //was 55, one shift | context->Message_Block[context->Message_Block_Index++] = 0; |
| { | context->Message_Block[56] = (context->Length_High >> 24) & 0xFF; |
| while(context->Message_Block_Index < 64) | context->Message_Block[57] = (context->Length_High >> 16) & 0xFF; |
| context->Message_Block[context->Message_Block_Index++] = 0; | context->Message_Block[58] = (context->Length_High >> 8) & 0xFF; |
| SHA1ProcessMessageBlock(context); | context->Message_Block[59] = (context->Length_High) & 0xFF; |
| while(context->Message_Block_Index < 56) | context->Message_Block[60] = (context->Length_Low >> 24) & 0xFF; |
| context->Message_Block[context->Message_Block_Index++] = 0; | context->Message_Block[61] = (context->Length_Low >> 16) & 0xFF; |
| } | context->Message_Block[62] = (context->Length_Low >> 8) & 0xFF; |
| else | context->Message_Block[63] = (context->Length_Low) & 0xFF; |
| while(context->Message_Block_Index < 56) | SHA1ProcessMessageBlock(context); |
| context->Message_Block[context->Message_Block_Index++] = 0; | } |
| context->Message_Block[56] = (context->Length_High >> 24) & 0xFF; | |
| context->Message_Block[57] = (context->Length_High >> 16) & 0xFF; | #ifdef PA_BIG_ENDIAN |
| context->Message_Block[58] = (context->Length_High >> 8) & 0xFF; | #define SWAP(n) (n) |
| context->Message_Block[59] = (context->Length_High) & 0xFF; | #else |
| context->Message_Block[60] = (context->Length_Low >> 24) & 0xFF; | #define SWAP(n) (((n) << 24) | (((n) & 0xff00) << 8) | (((n) >> 8) & 0xff00) | ((n) >> 24)) |
| context->Message_Block[61] = (context->Length_Low >> 16) & 0xFF; | #endif |
| context->Message_Block[62] = (context->Length_Low >> 8) & 0xFF; | |
| context->Message_Block[63] = (context->Length_Low) & 0xFF; | void SHA1ReadDigest(void *buf, SHA1Context *c) |
| SHA1ProcessMessageBlock(context); | { |
| } | if(!SHA1Result(c)) |
| throw Exception (PARSER_RUNTIME, 0, "Can not compute SHA1"); | |
| static void _sha1(Request& r, MethodParams& params) | ((uint32_t *)buf)[0] = SWAP(c->Message_Digest[0]); |
| { | ((uint32_t *)buf)[1] = SWAP(c->Message_Digest[1]); |
| const char *string = params.as_string(0, "parameter must be string").cstr(); | ((uint32_t *)buf)[2] = SWAP(c->Message_Digest[2]); |
| ((uint32_t *)buf)[3] = SWAP(c->Message_Digest[3]); | |
| SHA1Context c; | ((uint32_t *)buf)[4] = SWAP(c->Message_Digest[4]); |
| SHA1Reset (&c); | } |
| SHA1Input (&c, (const unsigned char*)string, strlen(string)); | |
| if (!SHA1Result (&c)) | static void _sha1(Request& r, MethodParams& params) { |
| throw Exception ("parser.runtime", 0, "Cannot compute SHA1"); | const char *string = params.as_string(0, PARAMETER_MUST_BE_STRING).cstr_to_string_body_untaint(String::L_AS_IS, r.connection(false), &r.charsets).cstr(); |
| char digest[128]; | SHA1Context c; |
| sprintf(digest, "%08x%08x%08x%08x%08x", c.Message_Digest[0], c.Message_Digest[1], c.Message_Digest[2], c.Message_Digest[3], c.Message_Digest[4]); | unsigned char digest[20]; |
| SHA1Reset (&c); | |
| char *ret = new(PointerFreeGC) char[strlen(digest)+1]; | SHA1Input (&c, (const unsigned char*)string, strlen(string)); |
| strcpy(ret, digest); | SHA1ReadDigest(digest, &c); |
| r.write_pass_lang(*new String(ret, 0, false)); | |
| } | r.write_pass_lang(*new String(hex_string(digest, sizeof(digest), false))); |
| } | |
| /// to hell with extra bytes on 64bit platforms | void memxor(char *dest, const char *src, size_t n){ |
| struct uuid { | for (;n>0;n--) *dest++ ^= *src++; |
| unsigned int time_low; | } |
| unsigned short time_mid; | |
| unsigned short time_hi_and_version; | #define IPAD 0x36 |
| unsigned short clock_seq; | #define OPAD 0x5c |
| unsigned char node[6]; | |
| }; | #define HMAC(key,init,update,final,blocklen,digestlen){ \ |
| unsigned char tempdigest[digestlen], keydigest[digestlen]; \ | |
| size_t keylen=strlen(key); \ | |
| /* Reduce the key's size, so that it becomes <= blocklen bytes. */ \ | |
| if (keylen > blocklen){ \ | |
| init(&c); \ | |
| update(&c,(const unsigned char*)hmac, keylen); \ | |
| final(keydigest, &c); \ | |
| key = (char *)keydigest; \ | |
| keylen = digestlen; \ | |
| } \ | |
| /* Compute TEMP from KEY and STRING. */ \ | |
| char block[blocklen]; \ | |
| memset (block, IPAD, blocklen); \ | |
| memxor (block, key, keylen); \ | |
| init(&c); \ | |
| update(&c, (const unsigned char*)block, blocklen); \ | |
| update(&c, (const unsigned char*)data.str, data.length); \ | |
| final(tempdigest, &c); \ | |
| /* Compute result from KEY and TEMP. */ \ | |
| memset (block, OPAD, blocklen); \ | |
| memxor (block, key, keylen); \ | |
| init(&c); \ | |
| update(&c, (const unsigned char*)block, blocklen); \ | |
| update(&c, (const unsigned char*)tempdigest, digestlen); \ | |
| } | |
| static void _digest(Request& r, MethodParams& params) { | |
| const String &smethod = params.as_string(0, PARAMETER_MUST_BE_STRING); | |
| Value& vdata=params.as_no_junction(1, "parameter must be string or file"); | |
| String::C data; | |
| if(const String* sdata=vdata.get_string()){ | |
| String::Body body=sdata->cstr_to_string_body_untaint(String::L_AS_IS, r.connection(false), &r.charsets); // explode content, honor tainting changes | |
| data=String::C(body.cstr(), body.length()); | |
| } else { | |
| VFile *file=vdata.as_vfile(String::L_AS_IS); | |
| data=String::C(file->value_ptr(),file->value_size()); | |
| } | |
| enum Method { M_MD5, M_SHA1, M_SHA256, M_SHA512 } method; | |
| if (smethod == "md5") method = M_MD5; | |
| else if (smethod == "sha1" ) method = M_SHA1; | |
| else if (smethod == "sha256" ) method = M_SHA256; | |
| else if (smethod == "sha512" ) method = M_SHA512; | |
| else throw Exception(PARSER_RUNTIME, &smethod, "must be 'md5' or 'sha1'"); | |
| const char *hmac=0; | |
| enum Format { F_HEX, F_BASE64 } format = F_HEX; | |
| if(params.count() == 3) | |
| if(HashStringValue* options=params.as_hash(2)) { | |
| int valid_options=0; | |
| if(Value* value=options->get("hmac")) { | |
| hmac=value->as_string().cstr(); | |
| valid_options++; | |
| } | |
| if(Value* value=options->get("format")) { | |
| const String& sformat=value->as_string(); | |
| if (sformat == "hex") format = F_HEX; | |
| else if (sformat == "base64" ) format = F_BASE64; | |
| else throw Exception(PARSER_RUNTIME, &sformat, "must be 'hex' or 'base64'"); | |
| valid_options++; | |
| } | |
| if(valid_options!=options->count()) | |
| throw Exception(PARSER_RUNTIME, 0, CALLED_WITH_INVALID_OPTION); | |
| } | |
| String::C digest; | |
| if(method == M_MD5){ | |
| PA_MD5_CTX c; | |
| if(hmac){ | |
| HMAC(hmac, pa_MD5Init, pa_MD5Update, pa_MD5Final, 64, 16); | |
| } else { | |
| pa_MD5Init(&c); | |
| pa_MD5Update(&c, (const unsigned char*)data.str, data.length); | |
| } | |
| char *str=(char *)pa_malloc(16); | |
| pa_MD5Final((unsigned char *)str, &c); | |
| digest = String::C(str, 16); | |
| } | |
| if(method == M_SHA1){ | |
| SHA1Context c; | |
| if(hmac){ | |
| HMAC(hmac, SHA1Reset, SHA1Input, SHA1ReadDigest, 64, 20); | |
| } else { | |
| SHA1Reset(&c); | |
| SHA1Input(&c, (const unsigned char*)data.str, data.length); | |
| } | |
| char *str=(char *)pa_malloc(20); | |
| SHA1ReadDigest(str, &c); | |
| digest = String::C(str, 20); | |
| } | |
| if(method == M_SHA256){ | |
| SHA256_CTX c; | |
| if(hmac){ | |
| HMAC(hmac, pa_SHA256_Init, pa_SHA256_Update, pa_SHA256_Final, 64, SHA256_DIGEST_LENGTH); | |
| } else { | |
| pa_SHA256_Init(&c); | |
| pa_SHA256_Update(&c, (const unsigned char*)data.str, data.length); | |
| } | |
| char *str=(char *)pa_malloc(SHA256_DIGEST_LENGTH); | |
| pa_SHA256_Final((unsigned char *)str, &c); | |
| digest = String::C(str, SHA256_DIGEST_LENGTH); | |
| } | |
| if(method == M_SHA512){ | |
| SHA512_CTX c; | |
| if(hmac){ | |
| HMAC(hmac, pa_SHA512_Init, pa_SHA512_Update, pa_SHA512_Final, 128, SHA512_DIGEST_LENGTH); | |
| } else { | |
| pa_SHA512_Init(&c); | |
| pa_SHA512_Update(&c, (const unsigned char*)data.str, data.length); | |
| } | |
| char *str=(char *)pa_malloc(SHA512_DIGEST_LENGTH); | |
| pa_SHA512_Final((unsigned char *)str, &c); | |
| digest = String::C(str, SHA512_DIGEST_LENGTH); | |
| } | |
| if(format == F_HEX){ | |
| r.write_pass_lang(*new String(hex_string((unsigned char *)digest.str, digest.length, false))); | |
| } | |
| if(format == F_BASE64){ | |
| r.write_pass_lang(*new String(pa_base64_encode(digest.str, digest.length))); | |
| } | |
| } | |
| static void _uuid(Request& r, MethodParams& /*params*/) { | static void _uuid(Request& r, MethodParams& /*params*/) { |
| uuid uuid=get_uuid(); | |
| const size_t bufsize=36+1/*zero-teminator*/+1/*for faulty snprintfs*/; | |
| char* cstr=new(PointerFreeGC) char[bufsize]; | |
| // random | snprintf(cstr, bufsize, |
| struct uuid uuid; | "%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X", |
| random(&uuid, sizeof(uuid)); | uuid.time_low, uuid.time_mid, uuid.time_hi_and_version, |
| uuid.clock_seq >> 8, uuid.clock_seq & 0xFF, | |
| // http://www.opengroup.org/onlinepubs/9629399/apdxa.htm#tagtcjh_35 | uuid.node[0], uuid.node[1], uuid.node[2], |
| // ~ | uuid.node[3], uuid.node[4], uuid.node[5]); |
| // version = DCE Security version, with embedded POSIX UIDs. | |
| // variant = DCE | |
| // | |
| // DCE=Distributed Computing Environment | |
| // http://www.opengroup.org/dce/ | |
| // | |
| // they say this influences comparison&such, | |
| // but could not figure out how, hence structure layout specified strictly | |
| // anyhow, uuidgen on Win32 yield those values | |
| // | |
| // xxxxxxxx-xxxx-4xxx-{8,9,A,B}xxx-xxxxxxxxxxxx | |
| uuid.clock_seq = (uuid.clock_seq & 0x3FFF) | 0x8000; | |
| uuid.time_hi_and_version = (uuid.time_hi_and_version & 0x0FFF) | 0x4000; | |
| // format | |
| const int uuid_cstr_bufsize=36+1/*for zero-teminator*/+1/*for faulty snprintfs*/; | |
| char *uuid_cstr=new(PointerFreeGC) char[uuid_cstr_bufsize]; | |
| snprintf(uuid_cstr, uuid_cstr_bufsize, | |
| "%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X", | |
| uuid.time_low, uuid.time_mid, uuid.time_hi_and_version, | |
| uuid.clock_seq >> 8, uuid.clock_seq & 0xFF, | |
| uuid.node[0], uuid.node[1], uuid.node[2], | |
| uuid.node[3], uuid.node[4], uuid.node[5]); | |
| r.write_pass_lang(*new String(uuid_cstr)); | r.write_pass_lang(*new String(cstr)); |
| } | } |
| static void _uid64(Request& r, MethodParams& /*params*/) { | static void _uid64(Request& r, MethodParams& /*params*/) { |
| Line 499 static void _uid64(Request& r, MethodPar | Line 504 static void _uid64(Request& r, MethodPar |
| } | } |
| static void _crc32(Request& r, MethodParams& params) { | static void _crc32(Request& r, MethodParams& params) { |
| const char *string=params.as_string(0, "parameter must be string").cstr(); | const char *string=params.as_string(0, PARAMETER_MUST_BE_STRING).cstr(); |
| r.write_no_lang(*new VInt(pa_crc32(string, strlen(string)))); | r.write_no_lang(*new VInt(pa_crc32(string, strlen(string)))); |
| } | } |
| static void _long2ip(Request& r, MethodParams& params) { | static void toBase(unsigned long long int value, unsigned int base, char*& ptr){ |
| unsigned long l=(unsigned long)trunc(params.as_double(0, "parameter must be expression", r)); | static const char* hex="0123456789ABCDEF"; |
| static const int ip_cstr_bufsize=15+1+1; | int rest = value % base; |
| char* ip_cstr=new(PointerFreeGC) char[ip_cstr_bufsize]; | if(value >= base) |
| toBase( (value-rest)/base, base, ptr); | |
| snprintf(ip_cstr, ip_cstr_bufsize, "%d.%d.%d.%d", | *ptr++=(char)hex[rest]; |
| (l>>24) & 0xFF, | } |
| (l>>16) & 0xFF, | |
| (l>>8) & 0xFF, | static void _convert(Request& r, MethodParams& params) { |
| l & 0xFF); | const char *str=params.as_string(0, PARAMETER_MUST_BE_STRING).cstr(); |
| int base_from=params.as_int(1, "base from must be integer", r); | |
| if(base_from < 2 || base_from > 16) | |
| throw Exception(PARSER_RUNTIME, 0, "base from must be an integer from 2 to 16"); | |
| int base_to=params.as_int(2, "base to must be integer", r); | |
| if(base_to < 2 || base_to > 16) | |
| throw Exception(PARSER_RUNTIME, 0, "base to must be an integer from 2 to 16"); | |
| r.write_no_lang(*new String(ip_cstr)); | while(isspace(*str)) |
| str++; | |
| if(!*str) | |
| return; | |
| bool negative=false; | |
| if(str[0]=='-') { | |
| negative=true; | |
| str++; | |
| } else if(str[0]=='+') { | |
| str++; | |
| } | |
| unsigned long long int value=pa_atoul(str, base_from); | |
| char result_cstr[sizeof(unsigned long long int)*8+1/*minus for negative number*/+1/*terminator*/]; | |
| char* ptr=result_cstr; | |
| if(negative) | |
| *ptr++='-'; | |
| toBase(value, base_to, ptr); | |
| *ptr=0; | |
| r.write_pass_lang(*new String(pa_strdup(result_cstr))); | |
| } | } |
| // constructor | // constructor |
| Line 551 MMath::MMath(): Methoded("math") { | Line 587 MMath::MMath(): Methoded("math") { |
| // ^math:sha1[string] | // ^math:sha1[string] |
| ADD1(sha1); | ADD1(sha1); |
| // ^math:digest[method;string|file;options] | |
| add_native_method("digest", Method::CT_STATIC, _digest, 2, 3); | |
| // ^math:crc32[string] | // ^math:crc32[string] |
| ADD1(crc32); | ADD1(crc32); |
| ADD1(long2ip); | |
| // ^math:uuid[] | // ^math:uuid[] |
| ADD0(uuid); | ADD0(uuid); |
| // ^math:uid64[] | // ^math:uid64[] |
| ADD0(uid64); | ADD0(uid64); |
| // ^math:convert[number](base-from;base-to) | |
| add_native_method("convert", Method::CT_STATIC, _convert, 3, 3); | |
| } | } |