marshal.h 16 KB


  1. #ifndef PUTTY_MARSHAL_H
  2. #define PUTTY_MARSHAL_H
  3. #include "defs.h"
  4. #include <stdio.h>
  5. #include <stdarg.h>
  6. /*
  7. * A sort of 'abstract base class' or 'interface' or 'trait' which is
  8. * the common feature of all types that want to accept data formatted
  9. * using the SSH binary conventions of uint32, string, mpint etc.
  10. */
  11. struct BinarySink {
  12. void (*write)(BinarySink *sink, const void *data, size_t len);
  13. void (*writefmtv)(BinarySink *sink, const char *fmt, va_list ap);
  14. BinarySink *binarysink_;
  15. };
  16. /*
  17. * To define a structure type as a valid target for binary formatted
  18. * data, put 'BinarySink_IMPLEMENTATION' in its declaration, and when
  19. * an instance is set up, use 'BinarySink_INIT' to initialise the
  20. * 'base class' state, providing a function pointer to be the
  21. * implementation of the write() call above.
  22. */
  23. #define BinarySink_IMPLEMENTATION BinarySink binarysink_[1]
  24. #define BinarySink_INIT(obj, writefn) \
  25. ((obj)->binarysink_->write = (writefn), \
  26. (obj)->binarysink_->writefmtv = NULL, \
  27. (obj)->binarysink_->binarysink_ = (obj)->binarysink_)
  28. /*
  29. * To define a larger structure type as a valid BinarySink in such a
  30. * way that it will delegate the write method to some other object,
  31. * put 'BinarySink_DELEGATE_IMPLEMENTATION' in its declaration, and
  32. * when an instance is set up, use 'BinarySink_DELEGATE_INIT' to point
  33. * at the object it wants to delegate to.
  34. *
  35. * In such a delegated structure, you might sometimes want to have the
  36. * delegation stop being valid (e.g. it might be delegating to an
  37. * object that only sometimes exists). You can null out the delegate
  38. * pointer using BinarySink_DELEGATE_CLEAR.
  39. */
  40. #define BinarySink_DELEGATE_IMPLEMENTATION BinarySink *binarysink_
  41. #define BinarySink_DELEGATE_INIT(obj, othersink) \
  42. ((obj)->binarysink_ = BinarySink_UPCAST(othersink))
  43. #define BinarySink_DELEGATE_CLEAR(obj) ((obj)->binarysink_ = NULL)
  44. /*
  45. * The implementing type's write function will want to downcast its
  46. * 'BinarySink *' parameter back to the more specific type. Also,
  47. * sometimes you'll want to upcast a pointer to a particular
  48. * implementing type into an abstract 'BinarySink *' to pass to
  49. * generic subroutines not defined in this file. These macros do that
  50. * job.
  51. *
  52. * Importantly, BinarySink_UPCAST can also be applied to a BinarySink
  53. * * itself (and leaves it unchanged). That's achieved by a small
  54. * piece of C trickery: implementing structures and the BinarySink
  55. * structure itself both contain a field called binarysink_, but in
  56. * implementing objects it's a BinarySink[1] whereas in the abstract
  57. * type it's a 'BinarySink *' pointing back to the same structure,
  58. * meaning that you can say 'foo->binarysink_' in either case and get
  59. * a pointer type by different methods.
  60. */
  61. #define BinarySink_DOWNCAST(object, type) \
  62. TYPECHECK((object) == ((type *)0)->binarysink_, \
  63. ((type *)(((char *)(object)) - offsetof(type, binarysink_))))
  64. #define BinarySink_UPCAST(object) \
  65. TYPECHECK((object)->binarysink_ == (BinarySink *)0, \
  66. (object)->binarysink_)
  67. /*
  68. * If you structure-copy an object that's implementing BinarySink,
  69. * then that tricky self-pointer in its trait subobject will point to
  70. * the wrong place. You could call BinarySink_INIT again, but this
  71. * macro is terser and does all that's needed to fix up the copied
  72. * object.
  73. */
  74. #define BinarySink_COPIED(obj) \
  75. ((obj)->binarysink_->binarysink_ = (obj)->binarysink_)
  76. /*
  77. * The put_* macros are the main client to this system. Any structure
  78. * which implements the BinarySink 'trait' is valid for use as the
  79. * first parameter of any of these put_* macros.
  80. */
  81. /* Basic big-endian integer types. */
  82. #define put_byte(bs, val) \
  83. BinarySink_put_byte(BinarySink_UPCAST(bs), val)
  84. #define put_uint16(bs, val) \
  85. BinarySink_put_uint16(BinarySink_UPCAST(bs), val)
  86. #define put_uint32(bs, val) \
  87. BinarySink_put_uint32(BinarySink_UPCAST(bs), val)
  88. #define put_uint64(bs, val) \
  89. BinarySink_put_uint64(BinarySink_UPCAST(bs), val)
  90. /* SSH booleans, encoded as a single byte storing either 0 or 1. */
  91. #define put_bool(bs, val) \
  92. BinarySink_put_bool(BinarySink_UPCAST(bs), val)
  93. /* SSH strings, with a leading uint32 length field. 'stringz' is a
  94. * convenience function that takes an ordinary C zero-terminated
  95. * string as input. 'stringsb' takes a strbuf * as input, and
  96. * finalises it as a side effect (handy for multi-level marshalling in
  97. * which you use these same functions to format an inner blob of data
  98. * that then gets wrapped into a string container in an outer one). */
  99. #define put_string(bs, val, len) \
  100. BinarySink_put_string(BinarySink_UPCAST(bs),val,len)
  101. #define put_stringpl(bs, ptrlen) \
  102. BinarySink_put_stringpl(BinarySink_UPCAST(bs),ptrlen)
  103. #define put_stringz(bs, val) \
  104. BinarySink_put_stringz(BinarySink_UPCAST(bs), val)
  105. #define put_stringsb(bs, val) \
  106. BinarySink_put_stringsb(BinarySink_UPCAST(bs), val)
  107. /* Other string outputs: 'asciz' emits the string data directly into
  108. * the output including the terminating \0, and 'pstring' emits the
  109. * string in Pascal style with a leading _one_-byte length field.
  110. * pstring can fail if the string is too long. */
  111. #define put_asciz(bs, val) \
  112. BinarySink_put_asciz(BinarySink_UPCAST(bs), val)
  113. #define put_pstring(bs, val) \
  114. BinarySink_put_pstring(BinarySink_UPCAST(bs), val)
  115. /* Multiprecision integers, in both the SSH-1 and SSH-2 formats. */
  116. #define put_mp_ssh1(bs, val) \
  117. BinarySink_put_mp_ssh1(BinarySink_UPCAST(bs), val)
  118. #define put_mp_ssh2(bs, val) \
  119. BinarySink_put_mp_ssh2(BinarySink_UPCAST(bs), val)
  120. /* Padding with a specified byte. */
  121. #define put_padding(bs, len, padbyte) \
  122. BinarySink_put_padding(BinarySink_UPCAST(bs), len, padbyte)
  123. /* Fallback: just emit raw data bytes, using a syntax that matches the
  124. * rest of these macros. */
  125. #define put_data(bs, val, len) \
  126. BinarySink_put_data(BinarySink_UPCAST(bs), val, len)
  127. #define put_datapl(bs, pl) \
  128. BinarySink_put_datapl(BinarySink_UPCAST(bs), pl)
  129. #define put_dataz(bs, val) \
  130. BinarySink_put_datapl(BinarySink_UPCAST(bs), ptrlen_from_asciz(val))
  131. #define put_datalit(bs, val) \
  132. BinarySink_put_datapl(BinarySink_UPCAST(bs), PTRLEN_LITERAL(val))
  133. /* Emit printf-formatted data, with no terminator. */
  134. #define put_fmt(bs, ...) \
  135. BinarySink_put_fmt(BinarySink_UPCAST(bs), __VA_ARGS__)
  136. #define put_fmtv(bs, fmt, ap) \
  137. BinarySink_put_fmtv(BinarySink_UPCAST(bs), fmt, ap)
  138. /* More complicated function implemented in write_c_string_literal.c */
  139. #define put_c_string_literal(bs, str) \
  140. BinarySink_put_c_string_literal(BinarySink_UPCAST(bs), str)
  141. /* More complicated function implemented in encode_utf8.c */
  142. #define put_utf8_char(bs, c) \
  143. BinarySink_put_utf8_char(BinarySink_UPCAST(bs), c)
  144. /* More complicated functions still implemented in <platform>/unicode.c */
  145. #define put_mb_to_wc(bs, codepage, mbstr, mblen) \
  146. BinarySink_put_mb_to_wc(BinarySink_UPCAST(bs), codepage, mbstr, mblen)
  147. #define put_wc_to_mb(bs, codepage, wcstr, wclen, def) \
  148. BinarySink_put_wc_to_mb(BinarySink_UPCAST(bs), codepage, wcstr, wclen, def)
  149. /*
  150. * The underlying real C functions that implement most of those
  151. * macros. Generally you won't want to call these directly, because
  152. * they have such cumbersome names; you call the wrapper macros above
  153. * instead.
  154. *
  155. * A few functions whose wrapper macros are defined above are actually
  156. * declared in other headers, so as to guarantee that the
  157. * declaration(s) of their other parameter type(s) are in scope.
  158. */
  159. void BinarySink_put_data(BinarySink *, const void *data, size_t len);
  160. void BinarySink_put_datapl(BinarySink *, ptrlen);
  161. void BinarySink_put_padding(BinarySink *, size_t len, unsigned char padbyte);
  162. void BinarySink_put_byte(BinarySink *, unsigned char);
  163. void BinarySink_put_bool(BinarySink *, bool);
  164. void BinarySink_put_uint16(BinarySink *, unsigned long);
  165. void BinarySink_put_uint32(BinarySink *, unsigned long);
  166. void BinarySink_put_uint64(BinarySink *, uint64_t);
  167. void BinarySink_put_string(BinarySink *, const void *data, size_t len);
  168. void BinarySink_put_stringpl(BinarySink *, ptrlen);
  169. void BinarySink_put_stringz(BinarySink *, const char *str);
  170. void BinarySink_put_stringsb(BinarySink *, strbuf *);
  171. void BinarySink_put_asciz(BinarySink *, const char *str);
  172. bool BinarySink_put_pstring(BinarySink *, const char *str);
  173. void BinarySink_put_mp_ssh1(BinarySink *bs, mp_int *x);
  174. void BinarySink_put_mp_ssh2(BinarySink *bs, mp_int *x);
  175. void BinarySink_put_fmt(BinarySink *, const char *fmt, ...) PRINTF_LIKE(2, 3);
  176. void BinarySink_put_fmtv(BinarySink *, const char *fmt, va_list ap);
  177. void BinarySink_put_c_string_literal(BinarySink *, ptrlen);
  178. void BinarySink_put_utf8_char(BinarySink *, unsigned);
  179. /* put_mb_to_wc / put_wc_to_mb return false if the codepage is invalid */
  180. bool BinarySink_put_mb_to_wc(
  181. BinarySink *bs, int codepage, const char *mbstr, int mblen);
  182. bool BinarySink_put_wc_to_mb(
  183. BinarySink *bs, int codepage, const wchar_t *wcstr, int wclen,
  184. const char *defchr);
  185. /* ---------------------------------------------------------------------- */
  186. /*
  187. * A complementary trait structure for _un_-marshalling.
  188. *
  189. * This structure contains client-visible data fields rather than
  190. * methods, because that seemed more useful than leaving it totally
  191. * opaque. But it's still got the self-pointer system that will allow
  192. * the set of get_* macros to target one of these itself or any other
  193. * type that 'derives' from it. So, for example, an SSH packet
  194. * structure can act as a BinarySource while also having additional
  195. * fields like the packet type.
  196. */
  197. typedef enum BinarySourceError {
  198. BSE_NO_ERROR,
  199. BSE_OUT_OF_DATA,
  200. BSE_INVALID
  201. } BinarySourceError;
  202. struct BinarySource {
  203. /*
  204. * (data, len) is the data block being decoded. pos is the current
  205. * position within the block.
  206. */
  207. const void *data;
  208. size_t pos, len;
  209. /*
  210. * 'err' indicates whether a decoding error has happened at any
  211. * point. Once this has been set to something other than
  212. * BSE_NO_ERROR, it shouldn't be changed by any unmarshalling
  213. * function. So you can safely do a long sequence of get_foo()
  214. * operations and then test err just once at the end, rather than
  215. * having to conditionalise every single get.
  216. *
  217. * The unmarshalling functions should always return some value,
  218. * even if a decoding error occurs. Generally on error they'll
  219. * return zero (if numeric) or the empty string (if string-based),
  220. * or some other appropriate default value for more complicated
  221. * types.
  222. *
  223. * If the usual return value is dynamically allocated (e.g. a
  224. * bignum, or a normal C 'char *' string), then the error value is
  225. * also dynamic in the same way. So you have to free exactly the
  226. * same set of things whether or not there was a decoding error,
  227. * which simplifies exit paths - for example, you could call a big
  228. * pile of get_foo functions, then put the actual handling of the
  229. * results under 'if (!get_err(src))', and then free everything
  230. * outside that if.
  231. */
  232. BinarySourceError err;
  233. /*
  234. * Self-pointer for the implicit derivation trick, same as
  235. * BinarySink above.
  236. */
  237. BinarySource *binarysource_;
  238. };
  239. /*
  240. * Implementation macros, similar to BinarySink.
  241. */
  242. #define BinarySource_IMPLEMENTATION BinarySource binarysource_[1]
  243. static inline void BinarySource_INIT__(BinarySource *src, ptrlen data)
  244. {
  245. src->data = data.ptr;
  246. src->len = data.len;
  247. src->pos = 0;
  248. src->err = BSE_NO_ERROR;
  249. src->binarysource_ = src;
  250. }
  251. #define BinarySource_BARE_INIT_PL(obj, pl) \
  252. TYPECHECK(&(obj)->binarysource_ == (BinarySource **)0, \
  253. BinarySource_INIT__(obj, pl))
  254. #define BinarySource_BARE_INIT(obj, data_, len_) \
  255. BinarySource_BARE_INIT_PL(obj, make_ptrlen(data_, len_))
  256. #define BinarySource_INIT_PL(obj, pl) \
  257. TYPECHECK(&(obj)->binarysource_ == (BinarySource (*)[1])0, \
  258. BinarySource_INIT__(BinarySource_UPCAST(obj), pl))
  259. #define BinarySource_INIT(obj, data_, len_) \
  260. BinarySource_INIT_PL(obj, make_ptrlen(data_, len_))
  261. #define BinarySource_DOWNCAST(object, type) \
  262. TYPECHECK((object) == ((type *)0)->binarysource_, \
  263. ((type *)(((char *)(object)) - offsetof(type, binarysource_))))
  264. #define BinarySource_UPCAST(object) \
  265. TYPECHECK((object)->binarysource_ == (BinarySource *)0, \
  266. (object)->binarysource_)
  267. #define BinarySource_COPIED(obj) \
  268. ((obj)->binarysource_->binarysource_ = (obj)->binarysource_)
  269. #define BinarySource_REWIND_TO(src, pos) \
  270. BinarySource_REWIND_TO__((src)->binarysource_, pos)
  271. #define BinarySource_REWIND(src) \
  272. BinarySource_REWIND_TO__((src)->binarysource_, 0)
  273. #define get_data(src, len) \
  274. BinarySource_get_data(BinarySource_UPCAST(src), len)
  275. #define get_byte(src) \
  276. BinarySource_get_byte(BinarySource_UPCAST(src))
  277. #define get_bool(src) \
  278. BinarySource_get_bool(BinarySource_UPCAST(src))
  279. #define get_uint16(src) \
  280. BinarySource_get_uint16(BinarySource_UPCAST(src))
  281. #define get_uint32(src) \
  282. BinarySource_get_uint32(BinarySource_UPCAST(src))
  283. #define get_uint64(src) \
  284. BinarySource_get_uint64(BinarySource_UPCAST(src))
  285. #define get_string(src) \
  286. BinarySource_get_string(BinarySource_UPCAST(src))
  287. #define get_asciz(src) \
  288. BinarySource_get_asciz(BinarySource_UPCAST(src))
  289. #define get_chars(src, include) \
  290. BinarySource_get_chars(BinarySource_UPCAST(src), include)
  291. #define get_nonchars(src, exclude) \
  292. BinarySource_get_nonchars(BinarySource_UPCAST(src), exclude)
  293. #define get_chomped_line(src) \
  294. BinarySource_get_chomped_line(BinarySource_UPCAST(src))
  295. #define get_pstring(src) \
  296. BinarySource_get_pstring(BinarySource_UPCAST(src))
  297. #define get_mp_ssh1(src) \
  298. BinarySource_get_mp_ssh1(BinarySource_UPCAST(src))
  299. #define get_mp_ssh2(src) \
  300. BinarySource_get_mp_ssh2(BinarySource_UPCAST(src))
  301. #define get_rsa_ssh1_pub(src, rsa, order) \
  302. BinarySource_get_rsa_ssh1_pub(BinarySource_UPCAST(src), rsa, order)
  303. #define get_rsa_ssh1_priv(src, rsa) \
  304. BinarySource_get_rsa_ssh1_priv(BinarySource_UPCAST(src), rsa)
  305. #define get_rsa_ssh1_priv_agent(src) \
  306. BinarySource_get_rsa_ssh1_priv_agent(BinarySource_UPCAST(src))
  307. #define get_err(src) (BinarySource_UPCAST(src)->err)
  308. #define get_avail(src) (BinarySource_UPCAST(src)->len - \
  309. BinarySource_UPCAST(src)->pos)
  310. #define get_ptr(src) \
  311. ((const void *)( \
  312. (const unsigned char *)(BinarySource_UPCAST(src)->data) + \
  313. BinarySource_UPCAST(src)->pos))
  314. ptrlen BinarySource_get_data(BinarySource *, size_t);
  315. unsigned char BinarySource_get_byte(BinarySource *);
  316. bool BinarySource_get_bool(BinarySource *);
  317. unsigned BinarySource_get_uint16(BinarySource *);
  318. unsigned long BinarySource_get_uint32(BinarySource *);
  319. uint64_t BinarySource_get_uint64(BinarySource *);
  320. ptrlen BinarySource_get_string(BinarySource *);
  321. const char *BinarySource_get_asciz(BinarySource *);
  322. ptrlen BinarySource_get_chars(BinarySource *, const char *include_set);
  323. ptrlen BinarySource_get_nonchars(BinarySource *, const char *exclude_set);
  324. ptrlen BinarySource_get_chomped_line(BinarySource *);
  325. ptrlen BinarySource_get_pstring(BinarySource *);
  326. mp_int *BinarySource_get_mp_ssh1(BinarySource *src);
  327. mp_int *BinarySource_get_mp_ssh2(BinarySource *src);
  328. void BinarySource_REWIND_TO__(BinarySource *src, size_t pos);
  329. /*
  330. * A couple of useful standard BinarySink implementations, which live
  331. * as sensibly here as anywhere else: one that makes a BinarySink
  332. * whose effect is to write to a stdio stream, and one whose effect is
  333. * to append to a bufchain.
  334. */
  335. struct stdio_sink {
  336. FILE *fp;
  337. BinarySink_IMPLEMENTATION;
  338. };
  339. struct bufchain_sink {
  340. bufchain *ch;
  341. BinarySink_IMPLEMENTATION;
  342. };
  343. struct buffer_sink {
  344. char *out;
  345. size_t space;
  346. bool overflowed;
  347. BinarySink_IMPLEMENTATION;
  348. };
  349. void stdio_sink_init(stdio_sink *sink, FILE *fp);
  350. void bufchain_sink_init(bufchain_sink *sink, bufchain *ch);
  351. void buffer_sink_init(buffer_sink *sink, void *buffer, size_t len);
  352. #endif /* PUTTY_MARSHAL_H */