1 /* -*- mode: C; c-file-style: "gnu" -*- */
2 /* dbus-string.c String utility class (internal to D-BUS implementation)
4 * Copyright (C) 2002, 2003, 2004, 2005 Red Hat, Inc.
6 * Licensed under the Academic Free License version 2.1
8 * This program is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU General Public License as published by
10 * the Free Software Foundation; either version 2 of the License, or
11 * (at your option) any later version.
13 * This program is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 * GNU General Public License for more details.
18 * You should have received a copy of the GNU General Public License
19 * along with this program; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
24 #include "dbus-internals.h"
25 #include "dbus-string.h"
26 /* we allow a system header here, for speed/convenience */
30 #define DBUS_CAN_USE_DBUS_STRING_PRIVATE 1
31 #include "dbus-string-private.h"
32 #include "dbus-marshal-basic.h" /* probably should be removed by moving the usage of DBUS_TYPE
33 * into the marshaling-related files
35 /* for DBUS_VA_COPY */
36 #include "dbus-sysdeps.h"
39 * @defgroup DBusString string class
40 * @ingroup DBusInternals
41 * @brief DBusString data structure
43 * Types and functions related to DBusString. DBusString is intended
44 * to be a string class that makes it hard to mess up security issues
45 * (and just in general harder to write buggy code). It should be
46 * used (or extended and then used) rather than the libc stuff in
47 * string.h. The string class is a bit inconvenient at spots because
48 * it handles out-of-memory failures and tries to be extra-robust.
50 * A DBusString has a maximum length set at initialization time; this
51 * can be used to ensure that a buffer doesn't get too big. The
52 * _dbus_string_lengthen() method checks for overflow, and for max
53 * length being exceeded.
55 * Try to avoid conversion to a plain C string, i.e. add methods on
56 * the string object instead, only convert to C string when passing
57 * things out to the public API. In particular, no sprintf, strcpy,
58 * strcat, any of that should be used. The GString feature of
59 * accepting negative numbers for "length of string" is also absent,
60 * because it could keep us from detecting bogus huge lengths. i.e. if
61 * we passed in some bogus huge length it would be taken to mean
62 * "current length of string" instead of "broken crack"
64 * @todo #DBusString needs a lot of cleaning up; some of the
65 * API is no longer used, and the API is pretty inconsistent.
66 * In particular all the "append" APIs, especially those involving
67 * alignment but probably lots of them, are no longer used by the
68 * marshaling code which always does "inserts" now.
72 * @addtogroup DBusString
77 fixup_alignment (DBusRealString *real)
81 unsigned int old_align_offset;
83 /* we have to have extra space in real->allocated for the align offset and nul byte */
84 _dbus_assert (real->len <= real->allocated - _DBUS_STRING_ALLOCATION_PADDING);
86 old_align_offset = real->align_offset;
87 real_block = real->str - old_align_offset;
89 aligned = _DBUS_ALIGN_ADDRESS (real_block, 8);
91 real->align_offset = aligned - real_block;
94 if (old_align_offset != real->align_offset)
96 /* Here comes the suck */
97 memmove (real_block + real->align_offset,
98 real_block + old_align_offset,
102 _dbus_assert (real->align_offset < 8);
103 _dbus_assert (_DBUS_ALIGN_ADDRESS (real->str, 8) == real->str);
107 undo_alignment (DBusRealString *real)
109 if (real->align_offset != 0)
111 memmove (real->str - real->align_offset,
115 real->str = real->str - real->align_offset;
116 real->align_offset = 0;
121 * Initializes a string that can be up to the given allocation size
122 * before it has to realloc. The string starts life with zero length.
123 * The string must eventually be freed with _dbus_string_free().
125 * @param str memory to hold the string
126 * @param allocate_size amount to preallocate
127 * @returns #TRUE on success, #FALSE if no memory
130 _dbus_string_init_preallocated (DBusString *str,
133 DBusRealString *real;
135 _dbus_assert (str != NULL);
137 _dbus_assert (sizeof (DBusString) == sizeof (DBusRealString));
139 real = (DBusRealString*) str;
141 /* It's very important not to touch anything
142 * other than real->str if we're going to fail,
143 * since we also use this function to reset
144 * an existing string, e.g. in _dbus_string_steal_data()
147 real->str = dbus_malloc (_DBUS_STRING_ALLOCATION_PADDING + allocate_size);
148 if (real->str == NULL)
151 real->allocated = _DBUS_STRING_ALLOCATION_PADDING + allocate_size;
153 real->str[real->len] = '\0';
155 real->max_length = _DBUS_STRING_MAX_MAX_LENGTH;
156 real->constant = FALSE;
157 real->locked = FALSE;
158 real->invalid = FALSE;
159 real->align_offset = 0;
161 fixup_alignment (real);
167 * Initializes a string. The string starts life with zero length. The
168 * string must eventually be freed with _dbus_string_free().
170 * @param str memory to hold the string
171 * @returns #TRUE on success, #FALSE if no memory
174 _dbus_string_init (DBusString *str)
176 return _dbus_string_init_preallocated (str, 0);
179 #ifdef DBUS_BUILD_TESTS
180 /* The max length thing is sort of a historical artifact
181 * from a feature that turned out to be dumb; perhaps
182 * we should purge it entirely. The problem with
183 * the feature is that it looks like memory allocation
184 * failure, but is not a transient or resolvable failure.
187 set_max_length (DBusString *str,
190 DBusRealString *real;
192 real = (DBusRealString*) str;
194 real->max_length = max_length;
196 #endif /* DBUS_BUILD_TESTS */
199 * Initializes a constant string. The value parameter is not copied
200 * (should be static), and the string may never be modified.
201 * It is safe but not necessary to call _dbus_string_free()
202 * on a const string. The string has a length limit of MAXINT - 8.
204 * @param str memory to use for the string
205 * @param value a string to be stored in str (not copied!!!)
208 _dbus_string_init_const (DBusString *str,
211 _dbus_assert (value != NULL);
213 _dbus_string_init_const_len (str, value,
218 * Initializes a constant string with a length. The value parameter is
219 * not copied (should be static), and the string may never be
220 * modified. It is safe but not necessary to call _dbus_string_free()
223 * @param str memory to use for the string
224 * @param value a string to be stored in str (not copied!!!)
225 * @param len the length to use
228 _dbus_string_init_const_len (DBusString *str,
232 DBusRealString *real;
234 _dbus_assert (str != NULL);
235 _dbus_assert (value != NULL);
236 _dbus_assert (len <= _DBUS_STRING_MAX_MAX_LENGTH);
237 _dbus_assert (len >= 0);
239 real = (DBusRealString*) str;
241 real->str = (char*) value;
243 real->allocated = real->len + _DBUS_STRING_ALLOCATION_PADDING; /* a lie, just to avoid special-case assertions... */
244 real->max_length = real->len + 1;
245 real->constant = TRUE;
247 real->invalid = FALSE;
248 real->align_offset = 0;
250 /* We don't require const strings to be 8-byte aligned as the
251 * memory is coming from elsewhere.
256 * Frees a string created by _dbus_string_init().
258 * @param str memory where the string is stored.
261 _dbus_string_free (DBusString *str)
263 DBusRealString *real = (DBusRealString*) str;
264 DBUS_GENERIC_STRING_PREAMBLE (real);
268 dbus_free (real->str - real->align_offset);
270 real->invalid = TRUE;
273 #ifdef DBUS_BUILD_TESTS
274 /* Not using this feature at the moment,
275 * so marked DBUS_BUILD_TESTS-only
278 * Locks a string such that any attempts to change the string will
279 * result in aborting the program. Also, if the string is wasting a
280 * lot of memory (allocation is sufficiently larger than what the
281 * string is really using), _dbus_string_lock() will realloc the
282 * string's data to "compact" it.
284 * @param str the string to lock.
287 _dbus_string_lock (DBusString *str)
289 DBUS_LOCKED_STRING_PREAMBLE (str); /* can lock multiple times */
293 /* Try to realloc to avoid excess memory usage, since
294 * we know we won't change the string further
297 if (real->allocated - MAX_WASTE > real->len)
302 new_allocated = real->len + _DBUS_STRING_ALLOCATION_PADDING;
304 new_str = dbus_realloc (real->str - real->align_offset,
308 real->str = new_str + real->align_offset;
309 real->allocated = new_allocated;
310 fixup_alignment (real);
314 #endif /* DBUS_BUILD_TESTS */
317 reallocate_for_length (DBusRealString *real,
323 /* at least double our old allocation to avoid O(n), avoiding
326 if (real->allocated > (_DBUS_STRING_MAX_MAX_LENGTH + _DBUS_STRING_ALLOCATION_PADDING) / 2)
327 new_allocated = _DBUS_STRING_MAX_MAX_LENGTH + _DBUS_STRING_ALLOCATION_PADDING;
329 new_allocated = real->allocated * 2;
331 /* if you change the code just above here, run the tests without
332 * the following assert-only hack before you commit
334 /* This is keyed off asserts in addition to tests so when you
335 * disable asserts to profile, you don't get this destroyer
338 #ifdef DBUS_DISABLE_ASSERT
340 #ifdef DBUS_BUILD_TESTS
341 new_allocated = 0; /* ensure a realloc every time so that we go
342 * through all malloc failure codepaths
344 #endif /* DBUS_BUILD_TESTS */
345 #endif /* !DBUS_DISABLE_ASSERT */
347 /* But be sure we always alloc at least space for the new length */
348 new_allocated = MAX (new_allocated,
349 new_length + _DBUS_STRING_ALLOCATION_PADDING);
351 _dbus_assert (new_allocated >= real->allocated); /* code relies on this */
352 new_str = dbus_realloc (real->str - real->align_offset, new_allocated);
353 if (_DBUS_UNLIKELY (new_str == NULL))
356 real->str = new_str + real->align_offset;
357 real->allocated = new_allocated;
358 fixup_alignment (real);
364 set_length (DBusRealString *real,
367 /* Note, we are setting the length not including nul termination */
369 /* exceeding max length is the same as failure to allocate memory */
370 if (_DBUS_UNLIKELY (new_length > real->max_length))
372 else if (new_length > (real->allocated - _DBUS_STRING_ALLOCATION_PADDING) &&
373 _DBUS_UNLIKELY (!reallocate_for_length (real, new_length)))
377 real->len = new_length;
378 real->str[new_length] = '\0';
385 DBusRealString *dest,
391 if (len > dest->max_length - dest->len)
392 return FALSE; /* detected overflow of dest->len + len below */
394 if (!set_length (dest, dest->len + len))
397 memmove (dest->str + insert_at + len,
398 dest->str + insert_at,
399 dest->len - len - insert_at);
404 #ifndef _dbus_string_get_data
406 * Gets the raw character buffer from the string. The returned buffer
407 * will be nul-terminated, but note that strings may contain binary
408 * data so there may be extra nul characters prior to the termination.
409 * This function should be little-used, extend DBusString or add
410 * stuff to dbus-sysdeps.c instead. It's an error to use this
411 * function on a const string.
413 * @param str the string
417 _dbus_string_get_data (DBusString *str)
419 DBUS_STRING_PREAMBLE (str);
423 #endif /* _dbus_string_get_data */
425 /* only do the function if we don't have the macro */
426 #ifndef _dbus_string_get_const_data
428 * Gets the raw character buffer from a const string.
430 * @param str the string
431 * @returns the string data
434 _dbus_string_get_const_data (const DBusString *str)
436 DBUS_CONST_STRING_PREAMBLE (str);
440 #endif /* _dbus_string_get_const_data */
443 * Gets a sub-portion of the raw character buffer from the
444 * string. The "len" field is required simply for error
445 * checking, to be sure you don't try to use more
446 * string than exists. The nul termination of the
447 * returned buffer remains at the end of the entire
448 * string, not at start + len.
450 * @param str the string
451 * @param start byte offset to return
452 * @param len length of segment to return
453 * @returns the string data
456 _dbus_string_get_data_len (DBusString *str,
460 DBUS_STRING_PREAMBLE (str);
461 _dbus_assert (start >= 0);
462 _dbus_assert (len >= 0);
463 _dbus_assert (start <= real->len);
464 _dbus_assert (len <= real->len - start);
466 return real->str + start;
469 /* only do the function if we don't have the macro */
470 #ifndef _dbus_string_get_const_data_len
472 * const version of _dbus_string_get_data_len().
474 * @param str the string
475 * @param start byte offset to return
476 * @param len length of segment to return
477 * @returns the string data
480 _dbus_string_get_const_data_len (const DBusString *str,
484 DBUS_CONST_STRING_PREAMBLE (str);
485 _dbus_assert (start >= 0);
486 _dbus_assert (len >= 0);
487 _dbus_assert (start <= real->len);
488 _dbus_assert (len <= real->len - start);
490 return real->str + start;
492 #endif /* _dbus_string_get_const_data_len */
494 /* only do the function if we don't have the macro */
495 #ifndef _dbus_string_set_byte
497 * Sets the value of the byte at the given position.
499 * @param str the string
500 * @param i the position
501 * @param byte the new value
504 _dbus_string_set_byte (DBusString *str,
508 DBUS_STRING_PREAMBLE (str);
509 _dbus_assert (i < real->len);
510 _dbus_assert (i >= 0);
514 #endif /* _dbus_string_set_byte */
516 /* only have the function if we didn't create a macro */
517 #ifndef _dbus_string_get_byte
519 * Gets the byte at the given position. It is
520 * allowed to ask for the nul byte at the end of
523 * @param str the string
524 * @param start the position
525 * @returns the byte at that position
528 _dbus_string_get_byte (const DBusString *str,
531 DBUS_CONST_STRING_PREAMBLE (str);
532 _dbus_assert (start <= real->len);
533 _dbus_assert (start >= 0);
535 return real->str[start];
537 #endif /* _dbus_string_get_byte */
540 * Inserts a number of bytes of a given value at the
543 * @param str the string
544 * @param i the position
545 * @param n_bytes number of bytes
546 * @param byte the value to insert
547 * @returns #TRUE on success
550 _dbus_string_insert_bytes (DBusString *str,
555 DBUS_STRING_PREAMBLE (str);
556 _dbus_assert (i <= real->len);
557 _dbus_assert (i >= 0);
558 _dbus_assert (n_bytes >= 0);
563 if (!open_gap (n_bytes, real, i))
566 memset (real->str + i, byte, n_bytes);
572 * Inserts a single byte at the given position.
574 * @param str the string
575 * @param i the position
576 * @param byte the value to insert
577 * @returns #TRUE on success
580 _dbus_string_insert_byte (DBusString *str,
584 DBUS_STRING_PREAMBLE (str);
585 _dbus_assert (i <= real->len);
586 _dbus_assert (i >= 0);
588 if (!open_gap (1, real, i))
597 * Like _dbus_string_get_data(), but removes the
598 * gotten data from the original string. The caller
599 * must free the data returned. This function may
600 * fail due to lack of memory, and return #FALSE.
602 * @param str the string
603 * @param data_return location to return the buffer
604 * @returns #TRUE on success
607 _dbus_string_steal_data (DBusString *str,
611 DBUS_STRING_PREAMBLE (str);
612 _dbus_assert (data_return != NULL);
614 undo_alignment (real);
616 *data_return = real->str;
618 old_max_length = real->max_length;
620 /* reset the string */
621 if (!_dbus_string_init (str))
623 /* hrm, put it back then */
624 real->str = *data_return;
626 fixup_alignment (real);
630 real->max_length = old_max_length;
635 #ifdef DBUS_BUILD_TESTS
637 * Like _dbus_string_get_data_len(), but removes the gotten data from
638 * the original string. The caller must free the data returned. This
639 * function may fail due to lack of memory, and return #FALSE.
640 * The returned string is nul-terminated and has length len.
642 * @todo this function is broken because on failure it
643 * may corrupt the source string.
645 * @param str the string
646 * @param data_return location to return the buffer
647 * @param start the start of segment to steal
648 * @param len the length of segment to steal
649 * @returns #TRUE on success
652 _dbus_string_steal_data_len (DBusString *str,
658 DBUS_STRING_PREAMBLE (str);
659 _dbus_assert (data_return != NULL);
660 _dbus_assert (start >= 0);
661 _dbus_assert (len >= 0);
662 _dbus_assert (start <= real->len);
663 _dbus_assert (len <= real->len - start);
665 if (!_dbus_string_init (&dest))
668 set_max_length (&dest, real->max_length);
670 if (!_dbus_string_move_len (str, start, len, &dest, 0))
672 _dbus_string_free (&dest);
676 _dbus_warn ("Broken code in _dbus_string_steal_data_len(), see @todo, FIXME\n");
677 if (!_dbus_string_steal_data (&dest, data_return))
679 _dbus_string_free (&dest);
683 _dbus_string_free (&dest);
686 #endif /* DBUS_BUILD_TESTS */
689 * Copies the data from the string into a char*
691 * @param str the string
692 * @param data_return place to return the data
693 * @returns #TRUE on success, #FALSE on no memory
696 _dbus_string_copy_data (const DBusString *str,
699 DBUS_CONST_STRING_PREAMBLE (str);
700 _dbus_assert (data_return != NULL);
702 *data_return = dbus_malloc (real->len + 1);
703 if (*data_return == NULL)
706 memcpy (*data_return, real->str, real->len + 1);
711 #ifdef DBUS_BUILD_TESTS
713 * Copies a segment of the string into a char*
715 * @param str the string
716 * @param data_return place to return the data
717 * @param start start index
718 * @param len length to copy
719 * @returns #FALSE if no memory
722 _dbus_string_copy_data_len (const DBusString *str,
729 DBUS_CONST_STRING_PREAMBLE (str);
730 _dbus_assert (data_return != NULL);
731 _dbus_assert (start >= 0);
732 _dbus_assert (len >= 0);
733 _dbus_assert (start <= real->len);
734 _dbus_assert (len <= real->len - start);
736 if (!_dbus_string_init (&dest))
739 set_max_length (&dest, real->max_length);
741 if (!_dbus_string_copy_len (str, start, len, &dest, 0))
743 _dbus_string_free (&dest);
747 if (!_dbus_string_steal_data (&dest, data_return))
749 _dbus_string_free (&dest);
753 _dbus_string_free (&dest);
756 #endif /* DBUS_BUILD_TESTS */
758 /* Only have the function if we don't have the macro */
759 #ifndef _dbus_string_get_length
761 * Gets the length of a string (not including nul termination).
763 * @returns the length.
766 _dbus_string_get_length (const DBusString *str)
768 DBUS_CONST_STRING_PREAMBLE (str);
772 #endif /* !_dbus_string_get_length */
775 * Makes a string longer by the given number of bytes. Checks whether
776 * adding additional_length to the current length would overflow an
777 * integer, and checks for exceeding a string's max length.
778 * The new bytes are not initialized, other than nul-terminating
779 * the end of the string. The uninitialized bytes may contain
780 * nul bytes or other junk.
782 * @param str a string
783 * @param additional_length length to add to the string.
784 * @returns #TRUE on success.
787 _dbus_string_lengthen (DBusString *str,
788 int additional_length)
790 DBUS_STRING_PREAMBLE (str);
791 _dbus_assert (additional_length >= 0);
793 if (_DBUS_UNLIKELY (additional_length > real->max_length - real->len))
794 return FALSE; /* would overflow */
796 return set_length (real,
797 real->len + additional_length);
801 * Makes a string shorter by the given number of bytes.
803 * @param str a string
804 * @param length_to_remove length to remove from the string.
807 _dbus_string_shorten (DBusString *str,
808 int length_to_remove)
810 DBUS_STRING_PREAMBLE (str);
811 _dbus_assert (length_to_remove >= 0);
812 _dbus_assert (length_to_remove <= real->len);
815 real->len - length_to_remove);
819 * Sets the length of a string. Can be used to truncate or lengthen
820 * the string. If the string is lengthened, the function may fail and
821 * return #FALSE. Newly-added bytes are not initialized, as with
822 * _dbus_string_lengthen().
824 * @param str a string
825 * @param length new length of the string.
826 * @returns #FALSE on failure.
829 _dbus_string_set_length (DBusString *str,
832 DBUS_STRING_PREAMBLE (str);
833 _dbus_assert (length >= 0);
835 return set_length (real, length);
839 align_insert_point_then_open_gap (DBusString *str,
844 unsigned long new_len; /* ulong to avoid _DBUS_ALIGN_VALUE overflow */
845 unsigned long gap_pos;
848 DBUS_STRING_PREAMBLE (str);
849 _dbus_assert (alignment >= 1);
850 _dbus_assert (alignment <= 8); /* it has to be a bug if > 8 */
852 insert_at = *insert_at_p;
854 _dbus_assert (insert_at <= real->len);
856 gap_pos = _DBUS_ALIGN_VALUE (insert_at, alignment);
857 new_len = real->len + (gap_pos - insert_at) + gap_size;
859 if (_DBUS_UNLIKELY (new_len > (unsigned long) real->max_length))
862 delta = new_len - real->len;
863 _dbus_assert (delta >= 0);
865 if (delta == 0) /* only happens if gap_size == 0 and insert_at is aligned already */
867 _dbus_assert (((unsigned long) *insert_at_p) == gap_pos);
871 if (_DBUS_UNLIKELY (!open_gap (new_len - real->len,
875 /* nul the padding if we had to add any padding */
876 if (gap_size < delta)
878 memset (&real->str[insert_at], '\0',
879 gap_pos - insert_at);
882 *insert_at_p = gap_pos;
888 align_length_then_lengthen (DBusString *str,
890 int then_lengthen_by)
894 insert_at = _dbus_string_get_length (str);
896 return align_insert_point_then_open_gap (str,
898 alignment, then_lengthen_by);
902 * Align the length of a string to a specific alignment (typically 4 or 8)
903 * by appending nul bytes to the string.
905 * @param str a string
906 * @param alignment the alignment
907 * @returns #FALSE if no memory
910 _dbus_string_align_length (DBusString *str,
913 return align_length_then_lengthen (str, alignment, 0);
917 * Preallocate extra_bytes such that a future lengthening of the
918 * string by extra_bytes is guaranteed to succeed without an out of
921 * @param str a string
922 * @param extra_bytes bytes to alloc
923 * @returns #FALSE if no memory
926 _dbus_string_alloc_space (DBusString *str,
929 if (!_dbus_string_lengthen (str, extra_bytes))
931 _dbus_string_shorten (str, extra_bytes);
937 append (DBusRealString *real,
944 if (!_dbus_string_lengthen ((DBusString*)real, buffer_len))
947 memcpy (real->str + (real->len - buffer_len),
955 * Appends a nul-terminated C-style string to a DBusString.
957 * @param str the DBusString
958 * @param buffer the nul-terminated characters to append
959 * @returns #FALSE if not enough memory.
962 _dbus_string_append (DBusString *str,
965 unsigned long buffer_len;
967 DBUS_STRING_PREAMBLE (str);
968 _dbus_assert (buffer != NULL);
970 buffer_len = strlen (buffer);
971 if (buffer_len > (unsigned long) real->max_length)
974 return append (real, buffer, buffer_len);
978 /** assign 4 bytes from one string to another */
979 #define ASSIGN_4_OCTETS(p, octets) \
980 *((dbus_uint32_t*)(p)) = *((dbus_uint32_t*)(octets));
982 #ifdef DBUS_HAVE_INT64
983 /** assign 8 bytes from one string to another */
984 #define ASSIGN_8_OCTETS(p, octets) \
985 *((dbus_uint64_t*)(p)) = *((dbus_uint64_t*)(octets));
987 /** assign 8 bytes from one string to another */
988 #define ASSIGN_8_OCTETS(p, octets) \
1002 _dbus_assert (b == p + 8); \
1004 #endif /* DBUS_HAVE_INT64 */
1006 #ifdef DBUS_BUILD_TESTS
1008 * Appends 4 bytes aligned on a 4 byte boundary
1009 * with any alignment padding initialized to 0.
1011 * @param str the DBusString
1012 * @param octets 4 bytes to append
1013 * @returns #FALSE if not enough memory.
1016 _dbus_string_append_4_aligned (DBusString *str,
1017 const unsigned char octets[4])
1019 DBUS_STRING_PREAMBLE (str);
1021 if (!align_length_then_lengthen (str, 4, 4))
1024 ASSIGN_4_OCTETS (real->str + (real->len - 4), octets);
1028 #endif /* DBUS_BUILD_TESTS */
1030 #ifdef DBUS_BUILD_TESTS
1032 * Appends 8 bytes aligned on an 8 byte boundary
1033 * with any alignment padding initialized to 0.
1035 * @param str the DBusString
1036 * @param octets 8 bytes to append
1037 * @returns #FALSE if not enough memory.
1040 _dbus_string_append_8_aligned (DBusString *str,
1041 const unsigned char octets[8])
1043 DBUS_STRING_PREAMBLE (str);
1045 if (!align_length_then_lengthen (str, 8, 8))
1048 ASSIGN_8_OCTETS (real->str + (real->len - 8), octets);
1052 #endif /* DBUS_BUILD_TESTS */
1055 * Inserts 4 bytes aligned on a 4 byte boundary
1056 * with any alignment padding initialized to 0.
1058 * @param str the DBusString
1059 * @param insert_at where to insert
1060 * @param octets 4 bytes to insert
1061 * @returns #FALSE if not enough memory.
1064 _dbus_string_insert_4_aligned (DBusString *str,
1066 const unsigned char octets[4])
1068 DBUS_STRING_PREAMBLE (str);
1070 if (!align_insert_point_then_open_gap (str, &insert_at, 4, 4))
1073 ASSIGN_4_OCTETS (real->str + insert_at, octets);
1079 * Inserts 8 bytes aligned on an 8 byte boundary
1080 * with any alignment padding initialized to 0.
1082 * @param str the DBusString
1083 * @param insert_at where to insert
1084 * @param octets 8 bytes to insert
1085 * @returns #FALSE if not enough memory.
1088 _dbus_string_insert_8_aligned (DBusString *str,
1090 const unsigned char octets[8])
1092 DBUS_STRING_PREAMBLE (str);
1094 if (!align_insert_point_then_open_gap (str, &insert_at, 8, 8))
1097 _dbus_assert (_DBUS_ALIGN_VALUE (insert_at, 8) == (unsigned) insert_at);
1099 ASSIGN_8_OCTETS (real->str + insert_at, octets);
1106 * Inserts padding at *insert_at such to align it to the given
1107 * boundary. Initializes the padding to nul bytes. Sets *insert_at
1108 * to the aligned position.
1110 * @param str the DBusString
1111 * @param insert_at location to be aligned
1112 * @param alignment alignment boundary (1, 4, or 8)
1113 * @returns #FALSE if not enough memory.
1116 _dbus_string_insert_alignment (DBusString *str,
1120 DBUS_STRING_PREAMBLE (str);
1122 if (!align_insert_point_then_open_gap (str, insert_at, alignment, 0))
1125 _dbus_assert (_DBUS_ALIGN_VALUE (*insert_at, alignment) == (unsigned) *insert_at);
1131 * Appends a printf-style formatted string
1132 * to the #DBusString.
1134 * @param str the string
1135 * @param format printf format
1136 * @param args variable argument list
1137 * @returns #FALSE if no memory
1140 _dbus_string_append_printf_valist (DBusString *str,
1148 DBUS_STRING_PREAMBLE (str);
1150 DBUS_VA_COPY (args_copy, args);
1152 /* Measure the message length without terminating nul */
1153 len = vsnprintf (&c, 1, format, args);
1155 if (!_dbus_string_lengthen (str, len))
1157 /* don't leak the copy */
1162 vsprintf (real->str + (real->len - len),
1171 * Appends a printf-style formatted string
1172 * to the #DBusString.
1174 * @param str the string
1175 * @param format printf format
1176 * @returns #FALSE if no memory
1179 _dbus_string_append_printf (DBusString *str,
1186 va_start (args, format);
1187 retval = _dbus_string_append_printf_valist (str, format, args);
1194 * Appends block of bytes with the given length to a DBusString.
1196 * @param str the DBusString
1197 * @param buffer the bytes to append
1198 * @param len the number of bytes to append
1199 * @returns #FALSE if not enough memory.
1202 _dbus_string_append_len (DBusString *str,
1206 DBUS_STRING_PREAMBLE (str);
1207 _dbus_assert (buffer != NULL);
1208 _dbus_assert (len >= 0);
1210 return append (real, buffer, len);
1214 * Appends a single byte to the string, returning #FALSE
1215 * if not enough memory.
1217 * @param str the string
1218 * @param byte the byte to append
1219 * @returns #TRUE on success
1222 _dbus_string_append_byte (DBusString *str,
1225 DBUS_STRING_PREAMBLE (str);
1227 if (!set_length (real, real->len + 1))
1230 real->str[real->len-1] = byte;
1235 #ifdef DBUS_BUILD_TESTS
1237 * Appends a single Unicode character, encoding the character
1240 * @param str the string
1241 * @param ch the Unicode character
1244 _dbus_string_append_unichar (DBusString *str,
1252 DBUS_STRING_PREAMBLE (str);
1254 /* this code is from GLib but is pretty standard I think */
1263 else if (ch < 0x800)
1268 else if (ch < 0x10000)
1273 else if (ch < 0x200000)
1278 else if (ch < 0x4000000)
1289 if (len > (real->max_length - real->len))
1290 return FALSE; /* real->len + len would overflow */
1292 if (!set_length (real, real->len + len))
1295 out = real->str + (real->len - len);
1297 for (i = len - 1; i > 0; --i)
1299 out[i] = (ch & 0x3f) | 0x80;
1302 out[0] = ch | first;
1306 #endif /* DBUS_BUILD_TESTS */
1309 delete (DBusRealString *real,
1316 memmove (real->str + start, real->str + start + len, real->len - (start + len));
1318 real->str[real->len] = '\0';
1322 * Deletes a segment of a DBusString with length len starting at
1323 * start. (Hint: to clear an entire string, setting length to 0
1324 * with _dbus_string_set_length() is easier.)
1326 * @param str the DBusString
1327 * @param start where to start deleting
1328 * @param len the number of bytes to delete
1331 _dbus_string_delete (DBusString *str,
1335 DBUS_STRING_PREAMBLE (str);
1336 _dbus_assert (start >= 0);
1337 _dbus_assert (len >= 0);
1338 _dbus_assert (start <= real->len);
1339 _dbus_assert (len <= real->len - start);
1341 delete (real, start, len);
1345 copy (DBusRealString *source,
1348 DBusRealString *dest,
1354 if (!open_gap (len, dest, insert_at))
1357 memcpy (dest->str + insert_at,
1358 source->str + start,
1365 * Checks assertions for two strings we're copying a segment between,
1366 * and declares real_source/real_dest variables.
1368 * @param source the source string
1369 * @param start the starting offset
1370 * @param dest the dest string
1371 * @param insert_at where the copied segment is inserted
1373 #define DBUS_STRING_COPY_PREAMBLE(source, start, dest, insert_at) \
1374 DBusRealString *real_source = (DBusRealString*) source; \
1375 DBusRealString *real_dest = (DBusRealString*) dest; \
1376 _dbus_assert ((source) != (dest)); \
1377 DBUS_GENERIC_STRING_PREAMBLE (real_source); \
1378 DBUS_GENERIC_STRING_PREAMBLE (real_dest); \
1379 _dbus_assert (!real_dest->constant); \
1380 _dbus_assert (!real_dest->locked); \
1381 _dbus_assert ((start) >= 0); \
1382 _dbus_assert ((start) <= real_source->len); \
1383 _dbus_assert ((insert_at) >= 0); \
1384 _dbus_assert ((insert_at) <= real_dest->len)
1387 * Moves the end of one string into another string. Both strings
1388 * must be initialized, valid strings.
1390 * @param source the source string
1391 * @param start where to chop off the source string
1392 * @param dest the destination string
1393 * @param insert_at where to move the chopped-off part of source string
1394 * @returns #FALSE if not enough memory
1397 _dbus_string_move (DBusString *source,
1402 DBusRealString *real_source = (DBusRealString*) source;
1403 _dbus_assert (start <= real_source->len);
1405 return _dbus_string_move_len (source, start,
1406 real_source->len - start,
1411 * Like _dbus_string_move(), but does not delete the section
1412 * of the source string that's copied to the dest string.
1414 * @param source the source string
1415 * @param start where to start copying the source string
1416 * @param dest the destination string
1417 * @param insert_at where to place the copied part of source string
1418 * @returns #FALSE if not enough memory
1421 _dbus_string_copy (const DBusString *source,
1426 DBUS_STRING_COPY_PREAMBLE (source, start, dest, insert_at);
1428 return copy (real_source, start,
1429 real_source->len - start,
1435 * Like _dbus_string_move(), but can move a segment from
1436 * the middle of the source string.
1438 * @todo this doesn't do anything with max_length field.
1439 * we should probably just kill the max_length field though.
1441 * @param source the source string
1442 * @param start first byte of source string to move
1443 * @param len length of segment to move
1444 * @param dest the destination string
1445 * @param insert_at where to move the bytes from the source string
1446 * @returns #FALSE if not enough memory
1449 _dbus_string_move_len (DBusString *source,
1456 DBUS_STRING_COPY_PREAMBLE (source, start, dest, insert_at);
1457 _dbus_assert (len >= 0);
1458 _dbus_assert ((start + len) <= real_source->len);
1465 else if (start == 0 &&
1466 len == real_source->len &&
1467 real_dest->len == 0)
1469 /* Short-circuit moving an entire existing string to an empty string
1470 * by just swapping the buffers.
1472 /* we assume ->constant doesn't matter as you can't have
1473 * a constant string involved in a move.
1475 #define ASSIGN_DATA(a, b) do { \
1476 (a)->str = (b)->str; \
1477 (a)->len = (b)->len; \
1478 (a)->allocated = (b)->allocated; \
1479 (a)->align_offset = (b)->align_offset; \
1484 ASSIGN_DATA (&tmp, real_source);
1485 ASSIGN_DATA (real_source, real_dest);
1486 ASSIGN_DATA (real_dest, &tmp);
1492 if (!copy (real_source, start, len,
1497 delete (real_source, start,
1505 * Like _dbus_string_copy(), but can copy a segment from the middle of
1506 * the source string.
1508 * @param source the source string
1509 * @param start where to start copying the source string
1510 * @param len length of segment to copy
1511 * @param dest the destination string
1512 * @param insert_at where to place the copied segment of source string
1513 * @returns #FALSE if not enough memory
1516 _dbus_string_copy_len (const DBusString *source,
1522 DBUS_STRING_COPY_PREAMBLE (source, start, dest, insert_at);
1523 _dbus_assert (len >= 0);
1524 _dbus_assert (start <= real_source->len);
1525 _dbus_assert (len <= real_source->len - start);
1527 return copy (real_source, start, len,
1533 * Replaces a segment of dest string with a segment of source string.
1535 * @todo optimize the case where the two lengths are the same, and
1536 * avoid memmoving the data in the trailing part of the string twice.
1538 * @todo avoid inserting the source into dest, then deleting
1539 * the replaced chunk of dest (which creates a potentially large
1540 * intermediate string). Instead, extend the replaced chunk
1541 * of dest with padding to the same size as the source chunk,
1542 * then copy in the source bytes.
1544 * @param source the source string
1545 * @param start where to start copying the source string
1546 * @param len length of segment to copy
1547 * @param dest the destination string
1548 * @param replace_at start of segment of dest string to replace
1549 * @param replace_len length of segment of dest string to replace
1550 * @returns #FALSE if not enough memory
1554 _dbus_string_replace_len (const DBusString *source,
1561 DBUS_STRING_COPY_PREAMBLE (source, start, dest, replace_at);
1562 _dbus_assert (len >= 0);
1563 _dbus_assert (start <= real_source->len);
1564 _dbus_assert (len <= real_source->len - start);
1565 _dbus_assert (replace_at >= 0);
1566 _dbus_assert (replace_at <= real_dest->len);
1567 _dbus_assert (replace_len <= real_dest->len - replace_at);
1569 if (!copy (real_source, start, len,
1570 real_dest, replace_at))
1573 delete (real_dest, replace_at + len, replace_len);
1578 /* Unicode macros and utf8_validate() from GLib Owen Taylor, Havoc
1579 * Pennington, and Tom Tromey are the authors and authorized relicense.
1582 /** computes length and mask of a unicode character
1583 * @param Char the char
1584 * @param Mask the mask variable to assign to
1585 * @param Len the length variable to assign to
1587 #define UTF8_COMPUTE(Char, Mask, Len) \
1593 else if ((Char & 0xe0) == 0xc0) \
1598 else if ((Char & 0xf0) == 0xe0) \
1603 else if ((Char & 0xf8) == 0xf0) \
1608 else if ((Char & 0xfc) == 0xf8) \
1613 else if ((Char & 0xfe) == 0xfc) \
1625 * computes length of a unicode character in UTF-8
1626 * @param Char the char
1628 #define UTF8_LENGTH(Char) \
1629 ((Char) < 0x80 ? 1 : \
1630 ((Char) < 0x800 ? 2 : \
1631 ((Char) < 0x10000 ? 3 : \
1632 ((Char) < 0x200000 ? 4 : \
1633 ((Char) < 0x4000000 ? 5 : 6)))))
1636 * Gets a UTF-8 value.
1638 * @param Result variable for extracted unicode char.
1639 * @param Chars the bytes to decode
1640 * @param Count counter variable
1641 * @param Mask mask for this char
1642 * @param Len length for this char in bytes
1644 #define UTF8_GET(Result, Chars, Count, Mask, Len) \
1645 (Result) = (Chars)[0] & (Mask); \
1646 for ((Count) = 1; (Count) < (Len); ++(Count)) \
1648 if (((Chars)[(Count)] & 0xc0) != 0x80) \
1654 (Result) |= ((Chars)[(Count)] & 0x3f); \
1658 * Check whether a unicode char is in a valid range.
1660 * @param Char the character
1662 #define UNICODE_VALID(Char) \
1663 ((Char) < 0x110000 && \
1664 (((Char) & 0xFFFFF800) != 0xD800) && \
1665 ((Char) < 0xFDD0 || (Char) > 0xFDEF) && \
1666 ((Char) & 0xFFFF) != 0xFFFF)
1668 #ifdef DBUS_BUILD_TESTS
1670 * Gets a unicode character from a UTF-8 string. Does no validation;
1671 * you must verify that the string is valid UTF-8 in advance and must
1672 * pass in the start of a character.
1674 * @param str the string
1675 * @param start the start of the UTF-8 character.
1676 * @param ch_return location to return the character
1677 * @param end_return location to return the byte index of next character
1680 _dbus_string_get_unichar (const DBusString *str,
1682 dbus_unichar_t *ch_return,
1686 dbus_unichar_t result;
1689 DBUS_CONST_STRING_PREAMBLE (str);
1690 _dbus_assert (start >= 0);
1691 _dbus_assert (start <= real->len);
1696 *end_return = real->len;
1699 p = real->str + start;
1702 UTF8_COMPUTE (c, mask, len);
1705 UTF8_GET (result, p, i, mask, len);
1707 if (result == (dbus_unichar_t)-1)
1711 *ch_return = result;
1713 *end_return = start + len;
1715 #endif /* DBUS_BUILD_TESTS */
1718 * Finds the given substring in the string,
1719 * returning #TRUE and filling in the byte index
1720 * where the substring was found, if it was found.
1721 * Returns #FALSE if the substring wasn't found.
1722 * Sets *start to the length of the string if the substring
1725 * @param str the string
1726 * @param start where to start looking
1727 * @param substr the substring
1728 * @param found return location for where it was found, or #NULL
1729 * @returns #TRUE if found
1732 _dbus_string_find (const DBusString *str,
1737 return _dbus_string_find_to (str, start,
1738 ((const DBusRealString*)str)->len,
1743 * Finds the given substring in the string,
1744 * up to a certain position,
1745 * returning #TRUE and filling in the byte index
1746 * where the substring was found, if it was found.
1747 * Returns #FALSE if the substring wasn't found.
1748 * Sets *start to the length of the string if the substring
1751 * @param str the string
1752 * @param start where to start looking
1753 * @param end where to stop looking
1754 * @param substr the substring
1755 * @param found return location for where it was found, or #NULL
1756 * @returns #TRUE if found
1759 _dbus_string_find_to (const DBusString *str,
1766 DBUS_CONST_STRING_PREAMBLE (str);
1767 _dbus_assert (substr != NULL);
1768 _dbus_assert (start <= real->len);
1769 _dbus_assert (start >= 0);
1770 _dbus_assert (substr != NULL);
1771 _dbus_assert (end <= real->len);
1772 _dbus_assert (start <= end);
1774 /* we always "find" an empty string */
1775 if (*substr == '\0')
1785 if (real->str[i] == substr[0])
1791 if (substr[j - i] == '\0')
1793 else if (real->str[j] != substr[j - i])
1799 if (substr[j - i] == '\0')
1817 * Finds a blank (space or tab) in the string. Returns #TRUE
1818 * if found, #FALSE otherwise. If a blank is not found sets
1819 * *found to the length of the string.
1821 * @param str the string
1822 * @param start byte index to start looking
1823 * @param found place to store the location of the first blank
1824 * @returns #TRUE if a blank was found
1827 _dbus_string_find_blank (const DBusString *str,
1832 DBUS_CONST_STRING_PREAMBLE (str);
1833 _dbus_assert (start <= real->len);
1834 _dbus_assert (start >= 0);
1837 while (i < real->len)
1839 if (real->str[i] == ' ' ||
1840 real->str[i] == '\t')
1857 * Skips blanks from start, storing the first non-blank in *end
1858 * (blank is space or tab).
1860 * @param str the string
1861 * @param start where to start
1862 * @param end where to store the first non-blank byte index
1865 _dbus_string_skip_blank (const DBusString *str,
1870 DBUS_CONST_STRING_PREAMBLE (str);
1871 _dbus_assert (start <= real->len);
1872 _dbus_assert (start >= 0);
1875 while (i < real->len)
1877 if (!(real->str[i] == ' ' ||
1878 real->str[i] == '\t'))
1884 _dbus_assert (i == real->len || !(real->str[i] == ' ' ||
1885 real->str[i] == '\t'));
1892 * Assigns a newline-terminated or \\r\\n-terminated line from the front
1893 * of the string to the given dest string. The dest string's previous
1894 * contents are deleted. If the source string contains no newline,
1895 * moves the entire source string to the dest string.
1897 * @todo owen correctly notes that this is a stupid function (it was
1898 * written purely for test code,
1899 * e.g. dbus-message-builder.c). Probably should be enforced as test
1900 * code only with #ifdef DBUS_BUILD_TESTS
1902 * @param source the source string
1903 * @param dest the destination string (contents are replaced)
1904 * @returns #FALSE if no memory, or source has length 0
1907 _dbus_string_pop_line (DBusString *source,
1911 dbus_bool_t have_newline;
1913 _dbus_string_set_length (dest, 0);
1916 if (_dbus_string_find (source, 0, "\n", &eol))
1918 have_newline = TRUE;
1919 eol += 1; /* include newline */
1923 eol = _dbus_string_get_length (source);
1924 have_newline = FALSE;
1928 return FALSE; /* eof */
1930 if (!_dbus_string_move_len (source, 0, eol,
1936 /* dump the newline and the \r if we have one */
1939 dbus_bool_t have_cr;
1941 _dbus_assert (_dbus_string_get_length (dest) > 0);
1943 if (_dbus_string_get_length (dest) > 1 &&
1944 _dbus_string_get_byte (dest,
1945 _dbus_string_get_length (dest) - 2) == '\r')
1950 _dbus_string_set_length (dest,
1951 _dbus_string_get_length (dest) -
1958 #ifdef DBUS_BUILD_TESTS
1960 * Deletes up to and including the first blank space
1963 * @param str the string
1966 _dbus_string_delete_first_word (DBusString *str)
1970 if (_dbus_string_find_blank (str, 0, &i))
1971 _dbus_string_skip_blank (str, i, &i);
1973 _dbus_string_delete (str, 0, i);
1977 #ifdef DBUS_BUILD_TESTS
1979 * Deletes any leading blanks in the string
1981 * @param str the string
1984 _dbus_string_delete_leading_blanks (DBusString *str)
1988 _dbus_string_skip_blank (str, 0, &i);
1991 _dbus_string_delete (str, 0, i);
1996 * Tests two DBusString for equality.
1998 * @todo memcmp is probably faster
2000 * @param a first string
2001 * @param b second string
2002 * @returns #TRUE if equal
2005 _dbus_string_equal (const DBusString *a,
2006 const DBusString *b)
2008 const unsigned char *ap;
2009 const unsigned char *bp;
2010 const unsigned char *a_end;
2011 const DBusRealString *real_a = (const DBusRealString*) a;
2012 const DBusRealString *real_b = (const DBusRealString*) b;
2013 DBUS_GENERIC_STRING_PREAMBLE (real_a);
2014 DBUS_GENERIC_STRING_PREAMBLE (real_b);
2016 if (real_a->len != real_b->len)
2021 a_end = real_a->str + real_a->len;
2034 #ifdef DBUS_BUILD_TESTS
2036 * Tests two DBusString for equality up to the given length.
2037 * The strings may be shorter than the given length.
2039 * @todo write a unit test
2041 * @todo memcmp is probably faster
2043 * @param a first string
2044 * @param b second string
2045 * @param len the maximum length to look at
2046 * @returns #TRUE if equal for the given number of bytes
2049 _dbus_string_equal_len (const DBusString *a,
2050 const DBusString *b,
2053 const unsigned char *ap;
2054 const unsigned char *bp;
2055 const unsigned char *a_end;
2056 const DBusRealString *real_a = (const DBusRealString*) a;
2057 const DBusRealString *real_b = (const DBusRealString*) b;
2058 DBUS_GENERIC_STRING_PREAMBLE (real_a);
2059 DBUS_GENERIC_STRING_PREAMBLE (real_b);
2061 if (real_a->len != real_b->len &&
2062 (real_a->len < len || real_b->len < len))
2067 a_end = real_a->str + MIN (real_a->len, len);
2079 #endif /* DBUS_BUILD_TESTS */
2082 * Tests two sub-parts of two DBusString for equality. The specified
2083 * range of the first string must exist; the specified start position
2084 * of the second string must exist.
2086 * @todo write a unit test
2088 * @todo memcmp is probably faster
2090 * @param a first string
2091 * @param a_start where to start substring in first string
2092 * @param a_len length of substring in first string
2093 * @param b second string
2094 * @param b_start where to start substring in second string
2095 * @returns #TRUE if the two substrings are equal
2098 _dbus_string_equal_substring (const DBusString *a,
2101 const DBusString *b,
2104 const unsigned char *ap;
2105 const unsigned char *bp;
2106 const unsigned char *a_end;
2107 const DBusRealString *real_a = (const DBusRealString*) a;
2108 const DBusRealString *real_b = (const DBusRealString*) b;
2109 DBUS_GENERIC_STRING_PREAMBLE (real_a);
2110 DBUS_GENERIC_STRING_PREAMBLE (real_b);
2111 _dbus_assert (a_start >= 0);
2112 _dbus_assert (a_len >= 0);
2113 _dbus_assert (a_start <= real_a->len);
2114 _dbus_assert (a_len <= real_a->len - a_start);
2115 _dbus_assert (b_start >= 0);
2116 _dbus_assert (b_start <= real_b->len);
2118 if (a_len > real_b->len - b_start)
2121 ap = real_a->str + a_start;
2122 bp = real_b->str + b_start;
2133 _dbus_assert (bp <= (real_b->str + real_b->len));
2139 * Checks whether a string is equal to a C string.
2141 * @param a the string
2142 * @param c_str the C string
2143 * @returns #TRUE if equal
2146 _dbus_string_equal_c_str (const DBusString *a,
2149 const unsigned char *ap;
2150 const unsigned char *bp;
2151 const unsigned char *a_end;
2152 const DBusRealString *real_a = (const DBusRealString*) a;
2153 DBUS_GENERIC_STRING_PREAMBLE (real_a);
2154 _dbus_assert (c_str != NULL);
2157 bp = (const unsigned char*) c_str;
2158 a_end = real_a->str + real_a->len;
2159 while (ap != a_end && *bp)
2168 if (ap != a_end || *bp)
2174 #ifdef DBUS_BUILD_TESTS
2176 * Checks whether a string starts with the given C string.
2178 * @param a the string
2179 * @param c_str the C string
2180 * @returns #TRUE if string starts with it
2183 _dbus_string_starts_with_c_str (const DBusString *a,
2186 const unsigned char *ap;
2187 const unsigned char *bp;
2188 const unsigned char *a_end;
2189 const DBusRealString *real_a = (const DBusRealString*) a;
2190 DBUS_GENERIC_STRING_PREAMBLE (real_a);
2191 _dbus_assert (c_str != NULL);
2194 bp = (const unsigned char*) c_str;
2195 a_end = real_a->str + real_a->len;
2196 while (ap != a_end && *bp)
2210 #endif /* DBUS_BUILD_TESTS */
2213 * Encodes a string in hex, the way MD5 and SHA-1 are usually
2214 * encoded. (Each byte is two hex digits.)
2216 * @param source the string to encode
2217 * @param start byte index to start encoding
2218 * @param dest string where encoded data should be placed
2219 * @param insert_at where to place encoded data
2220 * @returns #TRUE if encoding was successful, #FALSE if no memory etc.
2223 _dbus_string_hex_encode (const DBusString *source,
2229 const char hexdigits[16] = {
2230 '0', '1', '2', '3', '4', '5', '6', '7', '8', '9',
2231 'a', 'b', 'c', 'd', 'e', 'f'
2233 const unsigned char *p;
2234 const unsigned char *end;
2237 _dbus_assert (start <= _dbus_string_get_length (source));
2239 if (!_dbus_string_init (&result))
2244 p = (const unsigned char*) _dbus_string_get_const_data (source);
2245 end = p + _dbus_string_get_length (source);
2250 if (!_dbus_string_append_byte (&result,
2251 hexdigits[(*p >> 4)]))
2254 if (!_dbus_string_append_byte (&result,
2255 hexdigits[(*p & 0x0f)]))
2261 if (!_dbus_string_move (&result, 0, dest, insert_at))
2267 _dbus_string_free (&result);
2272 * Decodes a string from hex encoding.
2274 * @param source the string to decode
2275 * @param start byte index to start decode
2276 * @param end_return return location of the end of the hex data, or #NULL
2277 * @param dest string where decoded data should be placed
2278 * @param insert_at where to place decoded data
2279 * @returns #TRUE if decoding was successful, #FALSE if no memory.
2282 _dbus_string_hex_decode (const DBusString *source,
2289 const unsigned char *p;
2290 const unsigned char *end;
2292 dbus_bool_t high_bits;
2294 _dbus_assert (start <= _dbus_string_get_length (source));
2296 if (!_dbus_string_init (&result))
2302 p = (const unsigned char*) _dbus_string_get_const_data (source);
2303 end = p + _dbus_string_get_length (source);
2372 if (!_dbus_string_append_byte (&result,
2381 len = _dbus_string_get_length (&result);
2383 b = _dbus_string_get_byte (&result, len - 1);
2387 _dbus_string_set_byte (&result, len - 1, b);
2390 high_bits = !high_bits;
2396 if (!_dbus_string_move (&result, 0, dest, insert_at))
2400 *end_return = p - (const unsigned char*) _dbus_string_get_const_data (source);
2405 _dbus_string_free (&result);
2410 * Checks that the given range of the string is valid ASCII with no
2411 * nul bytes. If the given range is not entirely contained in the
2412 * string, returns #FALSE.
2414 * @todo this is inconsistent with most of DBusString in that
2415 * it allows a start,len range that extends past the string end.
2417 * @param str the string
2418 * @param start first byte index to check
2419 * @param len number of bytes to check
2420 * @returns #TRUE if the byte range exists and is all valid ASCII
2423 _dbus_string_validate_ascii (const DBusString *str,
2427 const unsigned char *s;
2428 const unsigned char *end;
2429 DBUS_CONST_STRING_PREAMBLE (str);
2430 _dbus_assert (start >= 0);
2431 _dbus_assert (start <= real->len);
2432 _dbus_assert (len >= 0);
2434 if (len > real->len - start)
2437 s = real->str + start;
2441 if (_DBUS_UNLIKELY (!_DBUS_ISASCII (*s)))
2451 * Checks that the given range of the string is valid UTF-8. If the
2452 * given range is not entirely contained in the string, returns
2453 * #FALSE. If the string contains any nul bytes in the given range,
2454 * returns #FALSE. If the start and start+len are not on character
2455 * boundaries, returns #FALSE.
2457 * @todo this is inconsistent with most of DBusString in that
2458 * it allows a start,len range that extends past the string end.
2460 * @param str the string
2461 * @param start first byte index to check
2462 * @param len number of bytes to check
2463 * @returns #TRUE if the byte range exists and is all valid UTF-8
2466 _dbus_string_validate_utf8 (const DBusString *str,
2470 const unsigned char *p;
2471 const unsigned char *end;
2472 DBUS_CONST_STRING_PREAMBLE (str);
2473 _dbus_assert (start >= 0);
2474 _dbus_assert (start <= real->len);
2475 _dbus_assert (len >= 0);
2477 /* we are doing _DBUS_UNLIKELY() here which might be
2478 * dubious in a generic library like GLib, but in D-BUS
2479 * we know we're validating messages and that it would
2480 * only be evil/broken apps that would have invalid
2481 * UTF-8. Also, this function seems to be a performance
2482 * bottleneck in profiles.
2485 if (_DBUS_UNLIKELY (len > real->len - start))
2488 p = real->str + start;
2493 int i, mask, char_len;
2494 dbus_unichar_t result;
2496 /* nul bytes considered invalid */
2500 /* Special-case ASCII; this makes us go a lot faster in
2501 * D-BUS profiles where we are typically validating
2502 * function names and such. We have to know that
2503 * all following checks will pass for ASCII though,
2504 * comments follow ...
2512 UTF8_COMPUTE (*p, mask, char_len);
2514 if (_DBUS_UNLIKELY (char_len == 0)) /* ASCII: char_len == 1 */
2517 /* check that the expected number of bytes exists in the remaining length */
2518 if (_DBUS_UNLIKELY ((end - p) < char_len)) /* ASCII: p < end and char_len == 1 */
2521 UTF8_GET (result, p, i, mask, char_len);
2523 /* Check for overlong UTF-8 */
2524 if (_DBUS_UNLIKELY (UTF8_LENGTH (result) != char_len)) /* ASCII: UTF8_LENGTH == 1 */
2527 /* The UNICODE_VALID check below will catch this */
2528 if (_DBUS_UNLIKELY (result == (dbus_unichar_t)-1)) /* ASCII: result = ascii value */
2532 if (_DBUS_UNLIKELY (!UNICODE_VALID (result))) /* ASCII: always valid */
2535 /* UNICODE_VALID should have caught it */
2536 _dbus_assert (result != (dbus_unichar_t)-1);
2541 /* See that we covered the entire length if a length was
2544 if (_DBUS_UNLIKELY (p != end))
2551 * Checks that the given range of the string is all nul bytes. If the
2552 * given range is not entirely contained in the string, returns
2555 * @todo this is inconsistent with most of DBusString in that
2556 * it allows a start,len range that extends past the string end.
2558 * @param str the string
2559 * @param start first byte index to check
2560 * @param len number of bytes to check
2561 * @returns #TRUE if the byte range exists and is all nul bytes
2564 _dbus_string_validate_nul (const DBusString *str,
2568 const unsigned char *s;
2569 const unsigned char *end;
2570 DBUS_CONST_STRING_PREAMBLE (str);
2571 _dbus_assert (start >= 0);
2572 _dbus_assert (len >= 0);
2573 _dbus_assert (start <= real->len);
2575 if (len > real->len - start)
2578 s = real->str + start;
2582 if (_DBUS_UNLIKELY (*s != '\0'))
2591 * Clears all allocated bytes in the string to zero.
2593 * @param str the string
2596 _dbus_string_zero (DBusString *str)
2598 DBUS_STRING_PREAMBLE (str);
2600 memset (real->str - real->align_offset, '\0', real->allocated);
2604 /* tests are in dbus-string-util.c */