-
Stephan Bosch authoredStephan Bosch authored
managesieve-parser.c 16.23 KiB
/* Copyright (c) 2002-2010 Pigeonhole authors, see the included COPYING file
*/
#include "lib.h"
#include "istream.h"
#include "ostream.h"
#include "strescape.h"
#include "managesieve-parser.h"
#define is_linebreak(c) \
((c) == '\r' || (c) == '\n')
#define LIST_ALLOC_SIZE 7
enum arg_parse_type {
ARG_PARSE_NONE = 0,
ARG_PARSE_ATOM,
ARG_PARSE_STRING,
ARG_PARSE_LITERAL,
ARG_PARSE_LITERAL_DATA
};
struct managesieve_parser {
/* permanent */
pool_t pool;
struct istream *input;
struct ostream *output;
size_t max_line_size;
enum managesieve_parser_flags flags;
/* reset by managesieve_parser_reset(): */
size_t line_size;
struct managesieve_arg_list *root_list;
struct managesieve_arg_list *cur_list;
enum arg_parse_type cur_type;
size_t cur_pos; /* parser position in input buffer */
int str_first_escape; /* ARG_PARSE_STRING: index to first '\' */
uoff_t literal_size; /* ARG_PARSE_LITERAL: string size */
const char *error;
unsigned int literal_skip_crlf:1;
unsigned int literal_nonsync:1;
unsigned int eol:1;
unsigned int fatal_error:1;
};
/* @UNSAFE */
#define LIST_REALLOC(parser, old_list, new_size) \
p_realloc((parser)->pool, old_list, \
sizeof(struct managesieve_arg_list) + \
(old_list == NULL ? 0 : \
sizeof(struct managesieve_arg_list) * (old_list)->alloc), \
sizeof(struct managesieve_arg_list) * (new_size))
static void managesieve_args_realloc(struct managesieve_parser *parser, size_t size)
{
parser->cur_list = LIST_REALLOC(parser, parser->cur_list, size);
parser->cur_list->alloc = size;
parser->root_list = parser->cur_list;
}
struct managesieve_parser *
managesieve_parser_create(struct istream *input, struct ostream *output,
size_t max_line_size)
{
struct managesieve_parser *parser;
parser = i_new(struct managesieve_parser, 1);
parser->pool = pool_alloconly_create("MANAGESIEVE parser", 8192);
parser->input = input;
parser->output = output;
parser->max_line_size = max_line_size;
managesieve_args_realloc(parser, LIST_ALLOC_SIZE);
return parser;
}
void managesieve_parser_destroy(struct managesieve_parser **parser)
{
pool_unref(&(*parser)->pool);
i_free(*parser);
*parser = NULL;
}
void managesieve_parser_reset(struct managesieve_parser *parser)
{
p_clear(parser->pool);
parser->line_size = 0;
parser->root_list = NULL;
parser->cur_list = NULL;
parser->cur_type = ARG_PARSE_NONE;
parser->cur_pos = 0;
parser->str_first_escape = 0;
parser->literal_size = 0;
parser->error = NULL;
parser->literal_skip_crlf = FALSE;
parser->eol = FALSE;
managesieve_args_realloc(parser, LIST_ALLOC_SIZE);
}
const char *managesieve_parser_get_error(struct managesieve_parser *parser, bool *fatal)
{
*fatal = parser->fatal_error;
return parser->error;
}
/* skip over everything parsed so far, plus the following whitespace */
static int managesieve_parser_skip_to_next(struct managesieve_parser *parser,
const unsigned char **data,
size_t *data_size)
{
size_t i;
for (i = parser->cur_pos; i < *data_size; i++) {
if ((*data)[i] != ' ')
break;
}
parser->line_size += i;
i_stream_skip(parser->input, i);
parser->cur_pos = 0;
*data += i;
*data_size -= i;
return *data_size > 0;
}
static struct managesieve_arg *managesieve_arg_create(struct managesieve_parser *parser)
{ struct managesieve_arg *arg;
i_assert(parser->cur_list != NULL);
/* @UNSAFE */
if (parser->cur_list->size == parser->cur_list->alloc)
managesieve_args_realloc(parser, parser->cur_list->alloc * 2);
arg = &parser->cur_list->args[parser->cur_list->size];
parser->cur_list->size++;
return arg;
}
static void managesieve_parser_save_arg(struct managesieve_parser *parser,
const unsigned char *data, size_t size)
{
struct managesieve_arg *arg;
arg = managesieve_arg_create(parser);
switch (parser->cur_type) {
case ARG_PARSE_ATOM:
/* simply save the string */
arg->type = MANAGESIEVE_ARG_ATOM;
arg->_data.str = p_strndup(parser->pool, data, size);
break;
case ARG_PARSE_STRING:
/* data is quoted and may contain escapes. */
i_assert(size > 0);
arg->type = MANAGESIEVE_ARG_STRING;
arg->_data.str = p_strndup(parser->pool, data+1, size-1);
/* remove the escapes */
if (parser->str_first_escape >= 0 &&
(parser->flags & MANAGESIEVE_PARSE_FLAG_NO_UNESCAPE) == 0) {
/* -1 because we skipped the '"' prefix */
str_unescape(arg->_data.str +
parser->str_first_escape-1);
}
break;
case ARG_PARSE_LITERAL_DATA:
if ((parser->flags & MANAGESIEVE_PARSE_FLAG_LITERAL_SIZE) != 0) {
/* save literal size */
arg->type = MANAGESIEVE_ARG_LITERAL_SIZE;
arg->_data.literal_size = parser->literal_size;
} else if ((parser->flags &
MANAGESIEVE_PARSE_FLAG_LITERAL_TYPE) != 0) {
arg->type = MANAGESIEVE_ARG_LITERAL;
arg->_data.str = p_strndup(parser->pool, data, size);
} else {
arg->type = MANAGESIEVE_ARG_STRING;
arg->_data.str = p_strndup(parser->pool, data, size);
}
break;
default:
i_unreached();
}
parser->cur_type = ARG_PARSE_NONE;
}
static int is_valid_atom_char(struct managesieve_parser *parser, char chr)
{
if (IS_ATOM_SPECIAL((unsigned char)chr)) {
parser->error = "Invalid characters in atom";
return FALSE;
} else if ((chr & 0x80) != 0) {
parser->error = "8bit data in atom"; return FALSE;
}
return TRUE;
}
static int managesieve_parser_read_atom(struct managesieve_parser *parser,
const unsigned char *data, size_t data_size)
{
size_t i;
/* read until we've found space, CR or LF. */
for (i = parser->cur_pos; i < data_size; i++) {
if (data[i] == ' ' || data[i] == ')' ||
is_linebreak(data[i])) {
managesieve_parser_save_arg(parser, data, i);
break;
} else if (!is_valid_atom_char(parser, data[i]))
return FALSE;
}
parser->cur_pos = i;
return parser->cur_type == ARG_PARSE_NONE;
}
static int managesieve_parser_read_string(struct managesieve_parser *parser,
const unsigned char *data, size_t data_size)
{
size_t i;
int utf8_len;
/* QUOTED-CHAR = SAFE-UTF8-CHAR / "\" QUOTED-SPECIALS
* quoted = <"> *QUOTED-CHAR <">
* ;; limited to 1024 octets between the <">s
*/
/* read until we've found non-escaped ", CR or LF */
for (i = parser->cur_pos; i < data_size; i++) {
if (data[i] == '"') {
managesieve_parser_save_arg(parser, data, i);
i++; /* skip the trailing '"' too */
break;
}
if (data[i] == '\\') {
if (i+1 == data_size) {
/* known data ends with '\' - leave it to
next time as well if it happens to be \" */
break;
}
/* save the first escaped char */
if (parser->str_first_escape < 0)
parser->str_first_escape = i;
/* skip the escaped char */
i++;
if ( !IS_QUOTED_SPECIAL(data[i]) ) {
parser->error = "Escaped quoted-string character is not a QUOTED-SPECIAL.";
return FALSE;
}
continue;
}
/* Enforce valid UTF-8
*/
if ( (utf8_len = UTF8_LEN(data[i])) == 0 ) { parser->error = "String contains invalid character.";
return FALSE;
}
if ( utf8_len > 1 ) {
bool overlong = FALSE;
if ( (i+utf8_len-1) >= data_size ) {
/* Known data ends in the middle of a UTF-8 character;
* leave it to next time.
*/
break;
}
/* Check for overlong UTF-8 sequences */
switch (utf8_len) {
case 2:
if (!(data[i] & 0x1E)) overlong = TRUE;
break;
case 3:
if (!(data[i] & 0x0F) && !(data[i+1] & 0x20)) overlong = TRUE;
break;
case 4:
if (!(data[i] & 0x07) && !(data[i+1] & 0x30)) overlong = TRUE;
break;
case 5:
if (!(data[i] & 0x03) && !(data[i+1] & 0x38)) overlong = TRUE;
break;
case 6:
if (!(data[i] & 0x01) && !(data[i+1] & 0x3C)) overlong = TRUE;
break;
default:
i_unreached();
}
if ( overlong ) {
parser->error = "String contains invalid/overlong UTF-8 character.";
return FALSE;
}
i++;
utf8_len--;
/* Parse the series of UTF8_1 characters */
for (; utf8_len > 0; utf8_len--, i++ ) {
if (!IS_UTF8_1(data[i])) {
parser->error = "String contains invalid UTF-8 character.";
return FALSE;
}
}
}
}
parser->cur_pos = i;
return parser->cur_type == ARG_PARSE_NONE;
}
static int managesieve_parser_literal_end(struct managesieve_parser *parser)
{
if ((parser->flags & MANAGESIEVE_PARSE_FLAG_LITERAL_SIZE) == 0) {
if (parser->line_size >= parser->max_line_size ||
parser->literal_size >
parser->max_line_size - parser->line_size) {
/* too long string, abort. */
parser->error = "Literal size too large";
parser->fatal_error = TRUE;
return FALSE;
}
}
parser->cur_type = ARG_PARSE_LITERAL_DATA;
parser->literal_skip_crlf = TRUE;
parser->cur_pos = 0;
return TRUE;
}
static int managesieve_parser_read_literal(struct managesieve_parser *parser,
const unsigned char *data,
size_t data_size)
{
size_t i, prev_size;
/* expecting digits + "}" */
for (i = parser->cur_pos; i < data_size; i++) {
if (data[i] == '}') {
parser->line_size += i+1;
i_stream_skip(parser->input, i+1);
return managesieve_parser_literal_end(parser);
}
if (parser->literal_nonsync) {
parser->error = "Expecting '}' after '+'";
return FALSE;
}
if (data[i] == '+') {
parser->literal_nonsync = TRUE;
continue;
}
if (data[i] < '0' || data[i] > '9') {
parser->error = "Invalid literal size";
return FALSE;
}
prev_size = parser->literal_size;
parser->literal_size = parser->literal_size*10 + (data[i]-'0');
if (parser->literal_size < prev_size) {
/* wrapped around, abort. */
parser->error = "Literal size too large";
return FALSE;
}
}
parser->cur_pos = i;
return FALSE;
}
static int managesieve_parser_read_literal_data(struct managesieve_parser *parser,
const unsigned char *data,
size_t data_size)
{
if (parser->literal_skip_crlf) {
/* skip \r\n or \n, anything else gives an error */
if (data_size == 0)
return FALSE;
if (*data == '\r') {
parser->line_size++;
data++; data_size--;
i_stream_skip(parser->input, 1);
if (data_size == 0)
return FALSE;
}
if (*data != '\n') {
parser->error = "Missing LF after literal size";
return FALSE;
}
parser->line_size++;
data++; data_size--;
i_stream_skip(parser->input, 1);
parser->literal_skip_crlf = FALSE;
i_assert(parser->cur_pos == 0);
}
if ((parser->flags & MANAGESIEVE_PARSE_FLAG_LITERAL_SIZE) == 0) {
/* now we just wait until we've read enough data */
if (data_size < parser->literal_size) {
return FALSE;
} else {
managesieve_parser_save_arg(parser, data,
(size_t)parser->literal_size);
parser->cur_pos = (size_t)parser->literal_size;
return TRUE;
}
} else {
/* we want to save only literal size, not the literal itself. */
parser->eol = TRUE;
managesieve_parser_save_arg(parser, NULL, 0);
return TRUE;
}
}
/* Returns TRUE if argument was fully processed. Also returns TRUE if
an argument inside a list was processed. */
static int managesieve_parser_read_arg(struct managesieve_parser *parser)
{
const unsigned char *data;
size_t data_size;
data = i_stream_get_data(parser->input, &data_size);
if (data_size == 0)
return FALSE;
while (parser->cur_type == ARG_PARSE_NONE) {
/* we haven't started parsing yet */
if (!managesieve_parser_skip_to_next(parser, &data, &data_size))
return FALSE;
i_assert(parser->cur_pos == 0);
switch (data[0]) {
case '\r':
case '\n':
/* unexpected end of line */
parser->eol = TRUE;
return FALSE;
case '"':
parser->cur_type = ARG_PARSE_STRING;
parser->str_first_escape = -1;
break;
case '{':
parser->cur_type = ARG_PARSE_LITERAL;
parser->literal_size = 0;
parser->literal_nonsync = FALSE;
break;
default:
if (!is_valid_atom_char(parser, data[0]))
return FALSE;
parser->cur_type = ARG_PARSE_ATOM;
break;
}
parser->cur_pos++;
}
i_assert(data_size > 0);
switch (parser->cur_type) {
case ARG_PARSE_ATOM:
if (!managesieve_parser_read_atom(parser, data, data_size))
return FALSE;
break;
case ARG_PARSE_STRING:
if (!managesieve_parser_read_string(parser, data, data_size))
return FALSE;
break;
case ARG_PARSE_LITERAL:
if (!managesieve_parser_read_literal(parser, data, data_size))
return FALSE;
/* pass through to parsing data. since input->skip was
modified, we need to get the data start position again. */
data = i_stream_get_data(parser->input, &data_size);
/* fall through */
case ARG_PARSE_LITERAL_DATA:
if (!managesieve_parser_read_literal_data(parser, data, data_size))
return FALSE;
break;
default:
i_unreached();
}
i_assert(parser->cur_type == ARG_PARSE_NONE);
return TRUE;
}
/* ARG_PARSE_NONE checks that last argument isn't only partially parsed. */
#define IS_UNFINISHED(parser) \
((parser)->cur_type != ARG_PARSE_NONE || \
(parser)->cur_list != parser->root_list)
static int finish_line(struct managesieve_parser *parser, unsigned int count,
struct managesieve_arg **args)
{
parser->line_size += parser->cur_pos;
i_stream_skip(parser->input, parser->cur_pos);
parser->cur_pos = 0;
if (count >= parser->root_list->alloc) {
/* unused arguments must be NIL-filled. */
parser->root_list =
LIST_REALLOC(parser, parser->root_list, count+1);
parser->root_list->alloc = count+1;
}
parser->root_list->args[parser->root_list->size].type = MANAGESIEVE_ARG_EOL;
*args = parser->root_list->args;
return parser->root_list->size;
}
int managesieve_parser_read_args(struct managesieve_parser *parser, unsigned int count,
enum managesieve_parser_flags flags, struct managesieve_arg **args)
{
parser->flags = flags;
while (!parser->eol && (count == 0 || parser->root_list->size < count ||
IS_UNFINISHED(parser))) {
if (!managesieve_parser_read_arg(parser))
break;
if (parser->line_size > parser->max_line_size) {
parser->error = "MANAGESIEVE command line too large";
break;
}
}
if (parser->error != NULL) {
/* error, abort */
parser->line_size += parser->cur_pos;
i_stream_skip(parser->input, parser->cur_pos);
parser->cur_pos = 0;
*args = NULL;
return -1;
} else if ((!IS_UNFINISHED(parser) && count > 0 &&
parser->root_list->size >= count) || parser->eol) {
/* all arguments read / end of line. */
return finish_line(parser, count, args);
} else {
/* need more data */
*args = NULL;
return -2;
}
}
int managesieve_parser_finish_line(struct managesieve_parser *parser, unsigned int count,
enum managesieve_parser_flags flags,
struct managesieve_arg **args)
{
const unsigned char *data;
size_t data_size;
int ret;
ret = managesieve_parser_read_args(parser, count, flags, args);
if (ret == -2) {
/* we should have noticed end of everything except atom */
if (parser->cur_type == ARG_PARSE_ATOM) {
data = i_stream_get_data(parser->input, &data_size);
managesieve_parser_save_arg(parser, data, data_size);
}
}
return finish_line(parser, count, args);
}
const char *managesieve_parser_read_word(struct managesieve_parser *parser)
{
const unsigned char *data;
size_t i, data_size;
data = i_stream_get_data(parser->input, &data_size);
for (i = 0; i < data_size; i++) {
if (data[i] == ' ' || data[i] == '\r' || data[i] == '\n')
break;
}
if (i < data_size) {
data_size = i + (data[i] == ' ' ? 1 : 0);
parser->line_size += data_size;
i_stream_skip(parser->input, data_size);
return p_strndup(parser->pool, data, i);
} else {
return NULL;
}
}
const char *managesieve_arg_string(struct managesieve_arg *arg)
{
if (arg->type == MANAGESIEVE_ARG_STRING)
return arg->_data.str;
return NULL;
}
int managesieve_arg_number
(struct managesieve_arg *arg, uoff_t *number)
{
int i = 0;
const char *data;
*number = 0;
if (arg->type == MANAGESIEVE_ARG_ATOM) {
data = arg->_data.str;
while (data[i] != '\0') {
if (data[i] < '0' || data[i] > '9')
return -1;
*number = (*number)*10 + (data[i] -'0');
i++;
}
return 1;
}
return -1;
}
char *_managesieve_arg_str_error(const struct managesieve_arg *arg)
{
i_panic("Tried to access managesieve_arg type %d as string", arg->type);
return NULL;
}
uoff_t _managesieve_arg_literal_size_error(const struct managesieve_arg *arg)
{
i_panic("Tried to access managesieve_arg type %d as literal size", arg->type);
return 0;
}
struct managesieve_arg_list *_managesieve_arg_list_error(const struct managesieve_arg *arg)
{
i_panic("Tried to access managesieve_arg type %d as list", arg->type);
return NULL;
}