projects / exim.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Split long fakereject and fakedefer messages.
[exim.git] / src / src / string.c
1 /* $Cambridge: exim/src/src/string.c,v 1.12 2007/02/07 11:24:56 ph10 Exp $ */
2
3 /*************************************************
4 * Exim - an Internet mail transport agent *
5 *************************************************/
6
7 /* Copyright (c) University of Cambridge 1995 - 2007 */
8 /* See the file NOTICE for conditions of use and distribution. */
9
10 /* Miscellaneous string-handling functions. Some are not required for
11 utilities and tests, and are cut out by the COMPILE_UTILITY macro. */
12
13
14 #include "exim.h"
15
16
17 #ifndef COMPILE_UTILITY
18 /*************************************************
19 * Test for IP address *
20 *************************************************/
21
22 /* This used just to be a regular expression, but with IPv6 things are a bit
23 more complicated. If the address contains a colon, it is assumed to be a v6
24 address (assuming HAVE_IPV6 is set). If a mask is permitted and one is present,
25 and maskptr is not NULL, its offset is placed there.
26
27 Arguments:
28 s a string
29 maskptr NULL if no mask is permitted to follow
30 otherwise, points to an int where the offset of '/' is placed
31 if there is no / followed by trailing digits, *maskptr is set 0
32
33 Returns: 0 if the string is not a textual representation of an IP address
34 4 if it is an IPv4 address
35 6 if it is an IPv6 address
36 */
37
38 int
39 string_is_ip_address(uschar *s, int *maskptr)
40 {
41 int i;
42 int yield = 4;
43
44 /* If an optional mask is permitted, check for it. If found, pass back the
45 offset. */
46
47 if (maskptr != NULL)
48 {
49 uschar *ss = s + Ustrlen(s);
50 *maskptr = 0;
51 if (s != ss && isdigit(*(--ss)))
52 {
53 while (ss > s && isdigit(ss[-1])) ss--;
54 if (ss > s && *(--ss) == '/') *maskptr = ss - s;
55 }
56 }
57
58 /* A colon anywhere in the string => IPv6 address */
59
60 if (Ustrchr(s, ':') != NULL)
61 {
62 BOOL had_double_colon = FALSE;
63 BOOL v4end = FALSE;
64 int count = 0;
65
66 yield = 6;
67
68 /* An IPv6 address must start with hex digit or double colon. A single
69 colon is invalid. */
70
71 if (*s == ':' && *(++s) != ':') return 0;
72
73 /* Now read up to 8 components consisting of up to 4 hex digits each. There
74 may be one and only one appearance of double colon, which implies any number
75 of binary zero bits. The number of preceding components is held in count. */
76
77 for (count = 0; count < 8; count++)
78 {
79 /* If the end of the string is reached before reading 8 components, the
80 address is valid provided a double colon has been read. This also applies
81 if we hit the / that introduces a mask or the % that introduces the
82 interface specifier (scope id) of a link-local address. */
83
84 if (*s == 0 || *s == '%' || *s == '/') return had_double_colon? yield : 0;
85
86 /* If a component starts with an additional colon, we have hit a double
87 colon. This is permitted to appear once only, and counts as at least
88 one component. The final component may be of this form. */
89
90 if (*s == ':')
91 {
92 if (had_double_colon) return 0;
93 had_double_colon = TRUE;
94 s++;
95 continue;
96 }
97
98 /* If the remainder of the string contains a dot but no colons, we
99 can expect a trailing IPv4 address. This is valid if either there has
100 been no double-colon and this is the 7th component (with the IPv4 address
101 being the 7th & 8th components), OR if there has been a double-colon
102 and fewer than 6 components. */
103
104 if (Ustrchr(s, ':') == NULL && Ustrchr(s, '.') != NULL)
105 {
106 if ((!had_double_colon && count != 6) ||
107 (had_double_colon && count > 6)) return 0;
108 v4end = TRUE;
109 yield = 6;
110 break;
111 }
112
113 /* Check for at least one and not more than 4 hex digits for this
114 component. */
115
116 if (!isxdigit(*s++)) return 0;
117 if (isxdigit(*s) && isxdigit(*(++s)) && isxdigit(*(++s))) s++;
118
119 /* If the component is terminated by colon and there is more to
120 follow, skip over the colon. If there is no more to follow the address is
121 invalid. */
122
123 if (*s == ':' && *(++s) == 0) return 0;
124 }
125
126 /* If about to handle a trailing IPv4 address, drop through. Otherwise
127 all is well if we are at the end of the string or at the mask or at a percent
128 sign, which introduces the interface specifier (scope id) of a link local
129 address. */
130
131 if (!v4end)
132 return (*s == 0 || *s == '%' ||
133 (*s == '/' && maskptr != NULL && *maskptr != 0))? yield : 0;
134 }
135
136 /* Test for IPv4 address, which may be the tail-end of an IPv6 address. */
137
138 for (i = 0; i < 4; i++)
139 {
140 if (i != 0 && *s++ != '.') return 0;
141 if (!isdigit(*s++)) return 0;
142 if (isdigit(*s) && isdigit(*(++s))) s++;
143 }
144
145 return (*s == 0 || (*s == '/' && maskptr != NULL && *maskptr != 0))?
146 yield : 0;
147 }
148 #endif /* COMPILE_UTILITY */
149
150
151 /*************************************************
152 * Format message size *
153 *************************************************/
154
155 /* Convert a message size in bytes to printing form, rounding
156 according to the magnitude of the number. A value of zero causes
157 a string of spaces to be returned.
158
159 Arguments:
160 size the message size in bytes
161 buffer where to put the answer
162
163 Returns: pointer to the buffer
164 a string of exactly 5 characters is normally returned
165 */
166
167 uschar *
168 string_format_size(int size, uschar *buffer)
169 {
170 if (size == 0) Ustrcpy(CS buffer, " ");
171 else if (size < 1024) sprintf(CS buffer, "%5d", size);
172 else if (size < 10*1024)
173 sprintf(CS buffer, "%4.1fK", (double)size / 1024.0);
174 else if (size < 1024*1024)
175 sprintf(CS buffer, "%4dK", (size + 512)/1024);
176 else if (size < 10*1024*1024)
177 sprintf(CS buffer, "%4.1fM", (double)size / (1024.0 * 1024.0));
178 else
179 sprintf(CS buffer, "%4dM", (size + 512 * 1024)/(1024*1024));
180 return buffer;
181 }
182
183
184
185 #ifndef COMPILE_UTILITY
186 /*************************************************
187 * Convert a number to base 62 format *
188 *************************************************/
189
190 /* Convert a long integer into an ASCII base 62 string. For Cygwin the value of
191 BASE_62 is actually 36. Always return exactly 6 characters plus zero, in a
192 static area.
193
194 Argument: a long integer
195 Returns: pointer to base 62 string
196 */
197
198 uschar *
199 string_base62(unsigned long int value)
200 {
201 static uschar yield[7];
202 uschar *p = yield + sizeof(yield) - 1;
203 *p = 0;
204 while (p > yield)
205 {
206 *(--p) = base62_chars[value % BASE_62];
207 value /= BASE_62;
208 }
209 return yield;
210 }
211 #endif /* COMPILE_UTILITY */
212
213
214
215 #ifndef COMPILE_UTILITY
216 /*************************************************
217 * Interpret escape sequence *
218 *************************************************/
219
220 /* This function is called from several places where escape sequences are to be
221 interpreted in strings.
222
223 Arguments:
224 pp points a pointer to the initiating "\" in the string;
225 the pointer gets updated to point to the final character
226 Returns: the value of the character escape
227 */
228
229 int
230 string_interpret_escape(uschar **pp)
231 {
232 int ch;
233 uschar *p = *pp;
234 ch = *(++p);
235 if (isdigit(ch) && ch != '8' && ch != '9')
236 {
237 ch -= '0';
238 if (isdigit(p[1]) && p[1] != '8' && p[1] != '9')
239 {
240 ch = ch * 8 + *(++p) - '0';
241 if (isdigit(p[1]) && p[1] != '8' && p[1] != '9')
242 ch = ch * 8 + *(++p) - '0';
243 }
244 }
245 else switch(ch)
246 {
247 case 'n': ch = '\n'; break;
248 case 'r': ch = '\r'; break;
249 case 't': ch = '\t'; break;
250 case 'x':
251 ch = 0;
252 if (isxdigit(p[1]))
253 {
254 ch = ch * 16 +
255 Ustrchr(hex_digits, tolower(*(++p))) - hex_digits;
256 if (isxdigit(p[1])) ch = ch * 16 +
257 Ustrchr(hex_digits, tolower(*(++p))) - hex_digits;
258 }
259 break;
260 }
261 *pp = p;
262 return ch;
263 }
264 #endif /* COMPILE_UTILITY */
265
266
267
268 #ifndef COMPILE_UTILITY
269 /*************************************************
270 * Ensure string is printable *
271 *************************************************/
272
273 /* This function is called for critical strings. It checks for any
274 non-printing characters, and if any are found, it makes a new copy
275 of the string with suitable escape sequences. It is most often called by the
276 macro string_printing(), which sets allow_tab TRUE.
277
278 Arguments:
279 s the input string
280 allow_tab TRUE to allow tab as a printing character
281
282 Returns: string with non-printers encoded as printing sequences
283 */
284
285 uschar *
286 string_printing2(uschar *s, BOOL allow_tab)
287 {
288 int nonprintcount = 0;
289 int length = 0;
290 uschar *t = s;
291 uschar *ss, *tt;
292
293 while (*t != 0)
294 {
295 int c = *t++;
296 if (!mac_isprint(c) || (!allow_tab && c == '\t')) nonprintcount++;
297 length++;
298 }
299
300 if (nonprintcount == 0) return s;
301
302 /* Get a new block of store guaranteed big enough to hold the
303 expanded string. */
304
305 ss = store_get(length + nonprintcount * 4 + 1);
306
307 /* Copy everying, escaping non printers. */
308
309 t = s;
310 tt = ss;
311
312 while (*t != 0)
313 {
314 int c = *t;
315 if (mac_isprint(c) && (allow_tab || c != '\t')) *tt++ = *t++; else
316 {
317 *tt++ = '\\';
318 switch (*t)
319 {
320 case '\n': *tt++ = 'n'; break;
321 case '\r': *tt++ = 'r'; break;
322 case '\b': *tt++ = 'b'; break;
323 case '\v': *tt++ = 'v'; break;
324 case '\f': *tt++ = 'f'; break;
325 case '\t': *tt++ = 't'; break;
326 default: sprintf(CS tt, "%03o", *t); tt += 3; break;
327 }
328 t++;
329 }
330 }
331 *tt = 0;
332 return ss;
333 }
334 #endif /* COMPILE_UTILITY */
335
336
337
338
339 /*************************************************
340 * Copy and save string *
341 *************************************************/
342
343 /* This function assumes that memcpy() is faster than strcpy().
344
345 Argument: string to copy
346 Returns: copy of string in new store
347 */
348
349 uschar *
350 string_copy(uschar *s)
351 {
352 int len = Ustrlen(s) + 1;
353 uschar *ss = store_get(len);
354 memcpy(ss, s, len);
355 return ss;
356 }
357
358
359
360 /*************************************************
361 * Copy and save string in malloc'd store *
362 *************************************************/
363
364 /* This function assumes that memcpy() is faster than strcpy().
365
366 Argument: string to copy
367 Returns: copy of string in new store
368 */
369
370 uschar *
371 string_copy_malloc(uschar *s)
372 {
373 int len = Ustrlen(s) + 1;
374 uschar *ss = store_malloc(len);
375 memcpy(ss, s, len);
376 return ss;
377 }
378
379
380
381 /*************************************************
382 * Copy, lowercase and save string *
383 *************************************************/
384
385 /*
386 Argument: string to copy
387 Returns: copy of string in new store, with letters lowercased
388 */
389
390 uschar *
391 string_copylc(uschar *s)
392 {
393 uschar *ss = store_get(Ustrlen(s) + 1);
394 uschar *p = ss;
395 while (*s != 0) *p++ = tolower(*s++);
396 *p = 0;
397 return ss;
398 }
399
400
401
402 /*************************************************
403 * Copy and save string, given length *
404 *************************************************/
405
406 /* It is assumed the data contains no zeros. A zero is added
407 onto the end.
408
409 Arguments:
410 s string to copy
411 n number of characters
412
413 Returns: copy of string in new store
414 */
415
416 uschar *
417 string_copyn(uschar *s, int n)
418 {
419 uschar *ss = store_get(n + 1);
420 Ustrncpy(ss, s, n);
421 ss[n] = 0;
422 return ss;
423 }
424
425
426 /*************************************************
427 * Copy, lowercase, and save string, given length *
428 *************************************************/
429
430 /* It is assumed the data contains no zeros. A zero is added
431 onto the end.
432
433 Arguments:
434 s string to copy
435 n number of characters
436
437 Returns: copy of string in new store, with letters lowercased
438 */
439
440 uschar *
441 string_copynlc(uschar *s, int n)
442 {
443 uschar *ss = store_get(n + 1);
444 uschar *p = ss;
445 while (n-- > 0) *p++ = tolower(*s++);
446 *p = 0;
447 return ss;
448 }
449
450
451
452 /*************************************************
453 * Copy string if long, inserting newlines *
454 *************************************************/
455
456 /* If the given string is longer than 75 characters, it is copied, and within
457 the copy, certain space characters are converted into newlines.
458
459 Argument: pointer to the string
460 Returns: pointer to the possibly altered string
461 */
462
463 uschar *
464 string_split_message(uschar *msg)
465 {
466 uschar *s, *ss;
467
468 if (msg == NULL || Ustrlen(msg) <= 75) return msg;
469 s = ss = msg = string_copy(msg);
470
471 for (;;)
472 {
473 int i = 0;
474 while (i < 75 && *ss != 0 && *ss != '\n') ss++, i++;
475 if (*ss == 0) break;
476 if (*ss == '\n')
477 s = ++ss;
478 else
479 {
480 uschar *t = ss + 1;
481 uschar *tt = NULL;
482 while (--t > s + 35)
483 {
484 if (*t == ' ')
485 {
486 if (t[-1] == ':') { tt = t; break; }
487 if (tt == NULL) tt = t;
488 }
489 }
490
491 if (tt == NULL) /* Can't split behind - try ahead */
492 {
493 t = ss + 1;
494 while (*t != 0)
495 {
496 if (*t == ' ' || *t == '\n')
497 { tt = t; break; }
498 t++;
499 }
500 }
501
502 if (tt == NULL) break; /* Can't find anywhere to split */
503 *tt = '\n';
504 s = ss = tt+1;
505 }
506 }
507
508 return msg;
509 }
510
511
512
513 /*************************************************
514 * Copy returned DNS domain name, de-escaping *
515 *************************************************/
516
517 /* If a domain name contains top-bit characters, some resolvers return
518 the fully qualified name with those characters turned into escapes. The
519 convention is a backslash followed by _decimal_ digits. We convert these
520 back into the original binary values. This will be relevant when
521 allow_utf8_domains is set true and UTF-8 characters are used in domain
522 names. Backslash can also be used to escape other characters, though we
523 shouldn't come across them in domain names.
524
525 Argument: the domain name string
526 Returns: copy of string in new store, de-escaped
527 */
528
529 uschar *
530 string_copy_dnsdomain(uschar *s)
531 {
532 uschar *yield;
533 uschar *ss = yield = store_get(Ustrlen(s) + 1);
534
535 while (*s != 0)
536 {
537 if (*s != '\\')
538 {
539 *ss++ = *s++;
540 }
541 else if (isdigit(s[1]))
542 {
543 *ss++ = (s[1] - '0')*100 + (s[2] - '0')*10 + s[3] - '0';
544 s += 4;
545 }
546 else if (*(++s) != 0)
547 {
548 *ss++ = *s++;
549 }
550 }
551
552 *ss = 0;
553 return yield;
554 }
555
556
557 #ifndef COMPILE_UTILITY
558 /*************************************************
559 * Copy space-terminated or quoted string *
560 *************************************************/
561
562 /* This function copies from a string until its end, or until whitespace is
563 encountered, unless the string begins with a double quote, in which case the
564 terminating quote is sought, and escaping within the string is done. The length
565 of a de-quoted string can be no longer than the original, since escaping always
566 turns n characters into 1 character.
567
568 Argument: pointer to the pointer to the first character, which gets updated
569 Returns: the new string
570 */
571
572 uschar *
573 string_dequote(uschar **sptr)
574 {
575 uschar *s = *sptr;
576 uschar *t, *yield;
577
578 /* First find the end of the string */
579
580 if (*s != '\"')
581 {
582 while (*s != 0 && !isspace(*s)) s++;
583 }
584 else
585 {
586 s++;
587 while (*s != 0 && *s != '\"')
588 {
589 if (*s == '\\') (void)string_interpret_escape(&s);
590 s++;
591 }
592 if (*s != 0) s++;
593 }
594
595 /* Get enough store to copy into */
596
597 t = yield = store_get(s - *sptr + 1);
598 s = *sptr;
599
600 /* Do the copy */
601
602 if (*s != '\"')
603 {
604 while (*s != 0 && !isspace(*s)) *t++ = *s++;
605 }
606 else
607 {
608 s++;
609 while (*s != 0 && *s != '\"')
610 {
611 if (*s == '\\') *t++ = string_interpret_escape(&s);
612 else *t++ = *s;
613 s++;
614 }
615 if (*s != 0) s++;
616 }
617
618 /* Update the pointer and return the terminated copy */
619
620 *sptr = s;
621 *t = 0;
622 return yield;
623 }
624 #endif /* COMPILE_UTILITY */
625
626
627
628 /*************************************************
629 * Format a string and save it *
630 *************************************************/
631
632 /* The formatting is done by string_format, which checks the length of
633 everything.
634
635 Arguments:
636 format a printf() format - deliberately char * rather than uschar *
637 because it will most usually be a literal string
638 ... arguments for format
639
640 Returns: pointer to fresh piece of store containing sprintf'ed string
641 */
642
643 uschar *
644 string_sprintf(char *format, ...)
645 {
646 va_list ap;
647 uschar buffer[STRING_SPRINTF_BUFFER_SIZE];
648 va_start(ap, format);
649 if (!string_vformat(buffer, sizeof(buffer), format, ap))
650 log_write(0, LOG_MAIN|LOG_PANIC_DIE,
651 "string_sprintf expansion was longer than %d", sizeof(buffer));
652 va_end(ap);
653 return string_copy(buffer);
654 }
655
656
657
658 /*************************************************
659 * Case-independent strncmp() function *
660 *************************************************/
661
662 /*
663 Arguments:
664 s first string
665 t second string
666 n number of characters to compare
667
668 Returns: < 0, = 0, or > 0, according to the comparison
669 */
670
671 int
672 strncmpic(uschar *s, uschar *t, int n)
673 {
674 while (n--)
675 {
676 int c = tolower(*s++) - tolower(*t++);
677 if (c) return c;
678 }
679 return 0;
680 }
681
682
683 /*************************************************
684 * Case-independent strcmp() function *
685 *************************************************/
686
687 /*
688 Arguments:
689 s first string
690 t second string
691
692 Returns: < 0, = 0, or > 0, according to the comparison
693 */
694
695 int
696 strcmpic(uschar *s, uschar *t)
697 {
698 while (*s != 0)
699 {
700 int c = tolower(*s++) - tolower(*t++);
701 if (c != 0) return c;
702 }
703 return *t;
704 }
705
706
707 /*************************************************
708 * Case-independent strstr() function *
709 *************************************************/
710
711 /* The third argument specifies whether whitespace is required
712 to follow the matched string.
713
714 Arguments:
715 s string to search
716 t substring to search for
717 space_follows if TRUE, match only if whitespace follows
718
719 Returns: pointer to substring in string, or NULL if not found
720 */
721
722 uschar *
723 strstric(uschar *s, uschar *t, BOOL space_follows)
724 {
725 uschar *p = t;
726 uschar *yield = NULL;
727 int cl = tolower(*p);
728 int cu = toupper(*p);
729
730 while (*s)
731 {
732 if (*s == cl || *s == cu)
733 {
734 if (yield == NULL) yield = s;
735 if (*(++p) == 0)
736 {
737 if (!space_follows || s[1] == ' ' || s[1] == '\n' ) return yield;
738 yield = NULL;
739 p = t;
740 }
741 cl = tolower(*p);
742 cu = toupper(*p);
743 s++;
744 }
745 else if (yield != NULL)
746 {
747 yield = NULL;
748 p = t;
749 cl = tolower(*p);
750 cu = toupper(*p);
751 }
752 else s++;
753 }
754 return NULL;
755 }
756
757
758
759 #ifndef COMPILE_UTILITY
760 /*************************************************
761 * Get next string from separated list *
762 *************************************************/
763
764 /* Leading and trailing space is removed from each item. The separator in the
765 list is controlled by the int pointed to by the separator argument as follows:
766
767 If its value is > 0 it is used as the delimiter.
768 (If its value is actually > UCHAR_MAX there is only one item in the list.
769 This is used for some cases when called via functions that sometimes
770 plough through lists, and sometimes are given single items.)
771 If its value is <= 0, the string is inspected for a leading <x, where
772 x is an ispunct() value. If found, it is used as the delimiter. If not
773 found: (a) if separator == 0, ':' is used
774 (b) if separator <0, then -separator is used
775 In all cases the value of the separator that is used is written back to
776 the int so that it is used on subsequent calls as we progress through
777 the list.
778
779 The separator can always be represented in the string by doubling.
780
781 Arguments:
782 listptr points to a pointer to the current start of the list; the
783 pointer gets updated to point after the end of the next item
784 separator a pointer to the separator character in an int (see above)
785 buffer where to put a copy of the next string in the list; or
786 NULL if the next string is returned in new memory
787 buflen when buffer is not NULL, the size of buffer; otherwise ignored
788
789 Returns: pointer to buffer, containing the next substring,
790 or NULL if no more substrings
791 */
792
793 uschar *
794 string_nextinlist(uschar **listptr, int *separator, uschar *buffer, int buflen)
795 {
796 register int p = 0;
797 register int sep = *separator;
798 register uschar *s = *listptr;
799
800 if (s == NULL) return NULL;
801 while (isspace(*s)) s++;
802
803 if (sep <= 0)
804 {
805 if (*s == '<' && ispunct(s[1]))
806 {
807 sep = s[1];
808 s += 2;
809 while (isspace(*s)) s++;
810 }
811 else
812 {
813 sep = (sep == 0)? ':' : -sep;
814 }
815 *separator = sep;
816 }
817
818 if (*s == 0) return NULL;
819
820 /* Handle the case when a buffer is provided. */
821
822 if (buffer != NULL)
823 {
824 for (; *s != 0; s++)
825 {
826 if (*s == sep && *(++s) != sep) break;
827 if (p < buflen - 1) buffer[p++] = *s;
828 }
829 while (p > 0 && isspace(buffer[p-1])) p--;
830 buffer[p] = 0;
831 }
832
833 /* Handle the case when a buffer is not provided. */
834
835 else
836 {
837 /* We know that *s != 0 at this point. However, it might be pointing to a
838 separator, which could indicate an empty string, or could be doubled to
839 indicate a separator character as data at the start of a string. */
840
841 if (*s == sep)
842 {
843 s++;
844 if (*s != sep) buffer = string_copy(US"");
845 }
846
847 if (buffer == NULL)
848 {
849 int size = 0;
850 int ptr = 0;
851 uschar *ss;
852 for (;;)
853 {
854 for (ss = s + 1; *ss != 0 && *ss != sep; ss++);
855 buffer = string_cat(buffer, &size, &ptr, s, ss-s);
856 s = ss;
857 if (*s == 0 || *(++s) != sep) break;
858 }
859 while (ptr > 0 && isspace(buffer[ptr-1])) ptr--;
860 buffer[ptr] = 0;
861 }
862 }
863
864 /* Update the current pointer and return the new string */
865
866 *listptr = s;
867 return buffer;
868 }
869 #endif /* COMPILE_UTILITY */
870
871
872
873 #ifndef COMPILE_UTILITY
874 /*************************************************
875 * Add chars to string *
876 *************************************************/
877
878 /* This function is used when building up strings of unknown length. Room is
879 always left for a terminating zero to be added to the string that is being
880 built. This function does not require the string that is being added to be NUL
881 terminated, because the number of characters to add is given explicitly. It is
882 sometimes called to extract parts of other strings.
883
884 Arguments:
885 string points to the start of the string that is being built, or NULL
886 if this is a new string that has no contents yet
887 size points to a variable that holds the current capacity of the memory
888 block (updated if changed)
889 ptr points to a variable that holds the offset at which to add
890 characters, updated to the new offset
891 s points to characters to add
892 count count of characters to add; must not exceed the length of s, if s
893 is a C string
894
895 If string is given as NULL, *size and *ptr should both be zero.
896
897 Returns: pointer to the start of the string, changed if copied for expansion.
898 Note that a NUL is not added, though space is left for one. This is
899 because string_cat() is often called multiple times to build up a
900 string - there's no point adding the NUL till the end.
901 */
902
903 uschar *
904 string_cat(uschar *string, int *size, int *ptr, const uschar *s, int count)
905 {
906 int p = *ptr;
907
908 if (p + count >= *size)
909 {
910 int oldsize = *size;
911
912 /* Mostly, string_cat() is used to build small strings of a few hundred
913 characters at most. There are times, however, when the strings are very much
914 longer (for example, a lookup that returns a vast number of alias addresses).
915 To try to keep things reasonable, we use increments whose size depends on the
916 existing length of the string. */
917
918 int inc = (oldsize < 4096)? 100 : 1024;
919 while (*size <= p + count) *size += inc;
920
921 /* New string */
922
923 if (string == NULL) string = store_get(*size);
924
925 /* Try to extend an existing allocation. If the result of calling
926 store_extend() is false, either there isn't room in the current memory block,
927 or this string is not the top item on the dynamic store stack. We then have
928 to get a new chunk of store and copy the old string. When building large
929 strings, it is helpful to call store_release() on the old string, to release
930 memory blocks that have become empty. (The block will be freed if the string
931 is at its start.) However, we can do this only if we know that the old string
932 was the last item on the dynamic memory stack. This is the case if it matches
933 store_last_get. */
934
935 else if (!store_extend(string, oldsize, *size))
936 {
937 BOOL release_ok = store_last_get[store_pool] == string;
938 uschar *newstring = store_get(*size);
939 memcpy(newstring, string, p);
940 if (release_ok) store_release(string);
941 string = newstring;
942 }
943 }
944
945 /* Because we always specify the exact number of characters to copy, we can
946 use memcpy(), which is likely to be more efficient than strncopy() because the
947 latter has to check for zero bytes. */
948
949 memcpy(string + p, s, count);
950 *ptr = p + count;
951 return string;
952 }
953 #endif /* COMPILE_UTILITY */
954
955
956
957 #ifndef COMPILE_UTILITY
958 /*************************************************
959 * Append strings to another string *
960 *************************************************/
961
962 /* This function can be used to build a string from many other strings.
963 It calls string_cat() to do the dirty work.
964
965 Arguments:
966 string points to the start of the string that is being built, or NULL
967 if this is a new string that has no contents yet
968 size points to a variable that holds the current capacity of the memory
969 block (updated if changed)
970 ptr points to a variable that holds the offset at which to add
971 characters, updated to the new offset
972 count the number of strings to append
973 ... "count" uschar* arguments, which must be valid zero-terminated
974 C strings
975
976 Returns: pointer to the start of the string, changed if copied for expansion.
977 The string is not zero-terminated - see string_cat() above.
978 */
979
980 uschar *
981 string_append(uschar *string, int *size, int *ptr, int count, ...)
982 {
983 va_list ap;
984 int i;
985
986 va_start(ap, count);
987 for (i = 0; i < count; i++)
988 {
989 uschar *t = va_arg(ap, uschar *);
990 string = string_cat(string, size, ptr, t, Ustrlen(t));
991 }
992 va_end(ap);
993
994 return string;
995 }
996 #endif
997
998
999
1000 /*************************************************
1001 * Format a string with length checks *
1002 *************************************************/
1003
1004 /* This function is used to format a string with checking of the length of the
1005 output for all conversions. It protects Exim from absent-mindedness when
1006 calling functions like debug_printf and string_sprintf, and elsewhere. There
1007 are two different entry points to what is actually the same function, depending
1008 on whether the variable length list of data arguments are given explicitly or
1009 as a va_list item.
1010
1011 The formats are the usual printf() ones, with some omissions (never used) and
1012 two additions for strings: %S forces lower case, and %#s or %#S prints nothing
1013 for a NULL string. Without the # "NULL" is printed (useful in debugging). There
1014 is also the addition of %D, which inserts the date in the form used for
1015 datestamped log files.
1016
1017 Arguments:
1018 buffer a buffer in which to put the formatted string
1019 buflen the length of the buffer
1020 format the format string - deliberately char * and not uschar *
1021 ... or ap variable list of supplementary arguments
1022
1023 Returns: TRUE if the result fitted in the buffer
1024 */
1025
1026 BOOL
1027 string_format(uschar *buffer, int buflen, char *format, ...)
1028 {
1029 BOOL yield;
1030 va_list ap;
1031 va_start(ap, format);
1032 yield = string_vformat(buffer, buflen, format, ap);
1033 va_end(ap);
1034 return yield;
1035 }
1036
1037
1038 BOOL
1039 string_vformat(uschar *buffer, int buflen, char *format, va_list ap)
1040 {
1041 enum { L_NORMAL, L_SHORT, L_LONG, L_LONGLONG, L_LONGDOUBLE };
1042
1043 BOOL yield = TRUE;
1044 int width, precision;
1045 char *fp = format; /* Deliberately not unsigned */
1046 uschar *p = buffer;
1047 uschar *last = buffer + buflen - 1;
1048
1049 string_datestamp_offset = -1; /* Datestamp not inserted */
1050
1051 /* Scan the format and handle the insertions */
1052
1053 while (*fp != 0)
1054 {
1055 int length = L_NORMAL;
1056 int *nptr;
1057 int slen;
1058 char *null = "NULL"; /* ) These variables */
1059 char *item_start, *s; /* ) are deliberately */
1060 char newformat[16]; /* ) not unsigned */
1061
1062 /* Non-% characters just get copied verbatim */
1063
1064 if (*fp != '%')
1065 {
1066 if (p >= last) { yield = FALSE; break; }
1067 *p++ = (uschar)*fp++;
1068 continue;
1069 }
1070
1071 /* Deal with % characters. Pick off the width and precision, for checking
1072 strings, skipping over the flag and modifier characters. */
1073
1074 item_start = fp;
1075 width = precision = -1;
1076
1077 if (strchr("-+ #0", *(++fp)) != NULL)
1078 {
1079 if (*fp == '#') null = "";
1080 fp++;
1081 }
1082
1083 if (isdigit((uschar)*fp))
1084 {
1085 width = *fp++ - '0';
1086 while (isdigit((uschar)*fp)) width = width * 10 + *fp++ - '0';
1087 }
1088 else if (*fp == '*')
1089 {
1090 width = va_arg(ap, int);
1091 fp++;
1092 }
1093
1094 if (*fp == '.')
1095 {
1096 if (*(++fp) == '*')
1097 {
1098 precision = va_arg(ap, int);
1099 fp++;
1100 }
1101 else
1102 {
1103 precision = 0;
1104 while (isdigit((uschar)*fp))
1105 precision = precision*10 + *fp++ - '0';
1106 }
1107 }
1108
1109 /* Skip over 'h', 'L', 'l', and 'll', remembering the item length */
1110
1111 if (*fp == 'h')
1112 { fp++; length = L_SHORT; }
1113 else if (*fp == 'L')
1114 { fp++; length = L_LONGDOUBLE; }
1115 else if (*fp == 'l')
1116 {
1117 if (fp[1] == 'l')
1118 {
1119 fp += 2;
1120 length = L_LONGLONG;
1121 }
1122 else
1123 {
1124 fp++;
1125 length = L_LONG;
1126 }
1127 }
1128
1129 /* Handle each specific format type. */
1130
1131 switch (*fp++)
1132 {
1133 case 'n':
1134 nptr = va_arg(ap, int *);
1135 *nptr = p - buffer;
1136 break;
1137
1138 case 'd':
1139 case 'o':
1140 case 'u':
1141 case 'x':
1142 case 'X':
1143 if (p >= last - ((length > L_LONG)? 24 : 12))
1144 { yield = FALSE; goto END_FORMAT; }
1145 strncpy(newformat, item_start, fp - item_start);
1146 newformat[fp - item_start] = 0;
1147
1148 /* Short int is promoted to int when passing through ..., so we must use
1149 int for va_arg(). */
1150
1151 switch(length)
1152 {
1153 case L_SHORT:
1154 case L_NORMAL: sprintf(CS p, newformat, va_arg(ap, int)); break;
1155 case L_LONG: sprintf(CS p, newformat, va_arg(ap, long int)); break;
1156 case L_LONGLONG: sprintf(CS p, newformat, va_arg(ap, LONGLONG_T)); break;
1157 }
1158 while (*p) p++;
1159 break;
1160
1161 case 'p':
1162 if (p >= last - 24) { yield = FALSE; goto END_FORMAT; }
1163 strncpy(newformat, item_start, fp - item_start);
1164 newformat[fp - item_start] = 0;
1165 sprintf(CS p, newformat, va_arg(ap, void *));
1166 while (*p) p++;
1167 break;
1168
1169 /* %f format is inherently insecure if the numbers that it may be
1170 handed are unknown (e.g. 1e300). However, in Exim, %f is used for
1171 printing load averages, and these are actually stored as integers
1172 (load average * 1000) so the size of the numbers is constrained.
1173 It is also used for formatting sending rates, where the simplicity
1174 of the format prevents overflow. */
1175
1176 case 'f':
1177 case 'e':
1178 case 'E':
1179 case 'g':
1180 case 'G':
1181 if (precision < 0) precision = 6;
1182 if (p >= last - precision - 8) { yield = FALSE; goto END_FORMAT; }
1183 strncpy(newformat, item_start, fp - item_start);
1184 newformat[fp-item_start] = 0;
1185 if (length == L_LONGDOUBLE)
1186 sprintf(CS p, newformat, va_arg(ap, long double));
1187 else
1188 sprintf(CS p, newformat, va_arg(ap, double));
1189 while (*p) p++;
1190 break;
1191
1192 /* String types */
1193
1194 case '%':
1195 if (p >= last) { yield = FALSE; goto END_FORMAT; }
1196 *p++ = '%';
1197 break;
1198
1199 case 'c':
1200 if (p >= last) { yield = FALSE; goto END_FORMAT; }
1201 *p++ = va_arg(ap, int);
1202 break;
1203
1204 case 'D': /* Insert datestamp for log file names */
1205 s = CS tod_stamp(tod_log_datestamp);
1206 string_datestamp_offset = p - buffer; /* Passed back via global */
1207 goto INSERT_STRING;
1208
1209 case 's':
1210 case 'S': /* Forces *lower* case */
1211 s = va_arg(ap, char *);
1212
1213 INSERT_STRING: /* Come to from %D above */
1214 if (s == NULL) s = null;
1215 slen = Ustrlen(s);
1216
1217 /* If the width is specified, check that there is a precision
1218 set; if not, set it to the width to prevent overruns of long
1219 strings. */
1220
1221 if (width >= 0)
1222 {
1223 if (precision < 0) precision = width;
1224 }
1225
1226 /* If a width is not specified and the precision is specified, set
1227 the width to the precision, or the string length if shorted. */
1228
1229 else if (precision >= 0)
1230 {
1231 width = (precision < slen)? precision : slen;
1232 }
1233
1234 /* If neither are specified, set them both to the string length. */
1235
1236 else width = precision = slen;
1237
1238 /* Check string space, and add the string to the buffer if ok. If
1239 not OK, add part of the string (debugging uses this to show as
1240 much as possible). */
1241
1242 if (p >= last - width)
1243 {
1244 yield = FALSE;
1245 width = precision = last - p - 1;
1246 }
1247 sprintf(CS p, "%*.*s", width, precision, s);
1248 if (fp[-1] == 'S')
1249 while (*p) { *p = tolower(*p); p++; }
1250 else
1251 while (*p) p++;
1252 if (!yield) goto END_FORMAT;
1253 break;
1254
1255 /* Some things are never used in Exim; also catches junk. */
1256
1257 default:
1258 strncpy(newformat, item_start, fp - item_start);
1259 newformat[fp-item_start] = 0;
1260 log_write(0, LOG_MAIN|LOG_PANIC_DIE, "string_format: unsupported type "
1261 "in \"%s\" in \"%s\"", newformat, format);
1262 break;
1263 }
1264 }
1265
1266 /* Ensure string is complete; return TRUE if got to the end of the format */
1267
1268 END_FORMAT:
1269
1270 *p = 0;
1271 return yield;
1272 }
1273
1274
1275
1276 #ifndef COMPILE_UTILITY
1277 /*************************************************
1278 * Generate an "open failed" message *
1279 *************************************************/
1280
1281 /* This function creates a message after failure to open a file. It includes a
1282 string supplied as data, adds the strerror() text, and if the failure was
1283 "Permission denied", reads and includes the euid and egid.
1284
1285 Arguments:
1286 eno the value of errno after the failure
1287 format a text format string - deliberately not uschar *
1288 ... arguments for the format string
1289
1290 Returns: a message, in dynamic store
1291 */
1292
1293 uschar *
1294 string_open_failed(int eno, char *format, ...)
1295 {
1296 va_list ap;
1297 uschar buffer[1024];
1298
1299 Ustrcpy(buffer, "failed to open ");
1300 va_start(ap, format);
1301
1302 /* Use the checked formatting routine to ensure that the buffer
1303 does not overflow. It should not, since this is called only for internally
1304 specified messages. If it does, the message just gets truncated, and there
1305 doesn't seem much we can do about that. */
1306
1307 (void)string_vformat(buffer+15, sizeof(buffer) - 15, format, ap);
1308
1309 return (eno == EACCES)?
1310 string_sprintf("%s: %s (euid=%ld egid=%ld)", buffer, strerror(eno),
1311 (long int)geteuid(), (long int)getegid()) :
1312 string_sprintf("%s: %s", buffer, strerror(eno));
1313 }
1314 #endif /* COMPILE_UTILITY */
1315
1316
1317
1318 #ifndef COMPILE_UTILITY
1319 /*************************************************
1320 * Generate local prt for logging *
1321 *************************************************/
1322
1323 /* This function is a subroutine for use in string_log_address() below.
1324
1325 Arguments:
1326 addr the address being logged
1327 yield the current dynamic buffer pointer
1328 sizeptr points to current size
1329 ptrptr points to current insert pointer
1330
1331 Returns: the new value of the buffer pointer
1332 */
1333
1334 static uschar *
1335 string_get_localpart(address_item *addr, uschar *yield, int *sizeptr,
1336 int *ptrptr)
1337 {
1338 if (testflag(addr, af_include_affixes) && addr->prefix != NULL)
1339 yield = string_cat(yield, sizeptr, ptrptr, addr->prefix,
1340 Ustrlen(addr->prefix));
1341 yield = string_cat(yield, sizeptr, ptrptr, addr->local_part,
1342 Ustrlen(addr->local_part));
1343 if (testflag(addr, af_include_affixes) && addr->suffix != NULL)
1344 yield = string_cat(yield, sizeptr, ptrptr, addr->suffix,
1345 Ustrlen(addr->suffix));
1346 return yield;
1347 }
1348
1349
1350 /*************************************************
1351 * Generate log address list *
1352 *************************************************/
1353
1354 /* This function generates a list consisting of an address and its parents, for
1355 use in logging lines. For saved onetime aliased addresses, the onetime parent
1356 field is used. If the address was delivered by a transport with rcpt_include_
1357 affixes set, the af_include_affixes bit will be set in the address. In that
1358 case, we include the affixes here too.
1359
1360 Arguments:
1361 addr bottom (ultimate) address
1362 all_parents if TRUE, include all parents
1363 success TRUE for successful delivery
1364
1365 Returns: a string in dynamic store
1366 */
1367
1368 uschar *
1369 string_log_address(address_item *addr, BOOL all_parents, BOOL success)
1370 {
1371 int size = 64;
1372 int ptr = 0;
1373 BOOL add_topaddr = TRUE;
1374 uschar *yield = store_get(size);
1375 address_item *topaddr;
1376
1377 /* Find the ultimate parent */
1378
1379 for (topaddr = addr; topaddr->parent != NULL; topaddr = topaddr->parent);
1380
1381 /* We start with just the local part for pipe, file, and reply deliveries, and
1382 for successful local deliveries from routers that have the log_as_local flag
1383 set. File deliveries from filters can be specified as non-absolute paths in
1384 cases where the transport is goin to complete the path. If there is an error
1385 before this happens (expansion failure) the local part will not be updated, and
1386 so won't necessarily look like a path. Add extra text for this case. */
1387
1388 if (testflag(addr, af_pfr) ||
1389 (success &&
1390 addr->router != NULL && addr->router->log_as_local &&
1391 addr->transport != NULL && addr->transport->info->local))
1392 {
1393 if (testflag(addr, af_file) && addr->local_part[0] != '/')
1394 yield = string_cat(yield, &size, &ptr, CUS"save ", 5);
1395 yield = string_get_localpart(addr, yield, &size, &ptr);
1396 }
1397
1398 /* Other deliveries start with the full address. It we have split it into local
1399 part and domain, use those fields. Some early failures can happen before the
1400 splitting is done; in those cases use the original field. */
1401
1402 else
1403 {
1404 if (addr->local_part != NULL)
1405 {
1406 yield = string_get_localpart(addr, yield, &size, &ptr);
1407 yield = string_cat(yield, &size, &ptr, US"@", 1);
1408 yield = string_cat(yield, &size, &ptr, addr->domain,
1409 Ustrlen(addr->domain) );
1410 }
1411 else
1412 {
1413 yield = string_cat(yield, &size, &ptr, addr->address, Ustrlen(addr->address));
1414 }
1415 yield[ptr] = 0;
1416
1417 /* If the address we are going to print is the same as the top address,
1418 and all parents are not being included, don't add on the top address. First
1419 of all, do a caseless comparison; if this succeeds, do a caseful comparison
1420 on the local parts. */
1421
1422 if (strcmpic(yield, topaddr->address) == 0 &&
1423 Ustrncmp(yield, topaddr->address, Ustrchr(yield, '@') - yield) == 0 &&
1424 addr->onetime_parent == NULL &&
1425 (!all_parents || addr->parent == NULL || addr->parent == topaddr))
1426 add_topaddr = FALSE;
1427 }
1428
1429 /* If all parents are requested, or this is a local pipe/file/reply, and
1430 there is at least one intermediate parent, show it in brackets, and continue
1431 with all of them if all are wanted. */
1432
1433 if ((all_parents || testflag(addr, af_pfr)) &&
1434 addr->parent != NULL &&
1435 addr->parent != topaddr)
1436 {
1437 uschar *s = US" (";
1438 address_item *addr2;
1439 for (addr2 = addr->parent; addr2 != topaddr; addr2 = addr2->parent)
1440 {
1441 yield = string_cat(yield, &size, &ptr, s, 2);
1442 yield = string_cat(yield, &size, &ptr, addr2->address, Ustrlen(addr2->address));
1443 if (!all_parents) break;
1444 s = US", ";
1445 }
1446 yield = string_cat(yield, &size, &ptr, US")", 1);
1447 }
1448
1449 /* Add the top address if it is required */
1450
1451 if (add_topaddr)
1452 {
1453 yield = string_cat(yield, &size, &ptr, US" <", 2);
1454
1455 if (addr->onetime_parent == NULL)
1456 yield = string_cat(yield, &size, &ptr, topaddr->address,
1457 Ustrlen(topaddr->address));
1458 else
1459 yield = string_cat(yield, &size, &ptr, addr->onetime_parent,
1460 Ustrlen(addr->onetime_parent));
1461
1462 yield = string_cat(yield, &size, &ptr, US">", 1);
1463 }
1464
1465 yield[ptr] = 0; /* string_cat() leaves space */
1466 return yield;
1467 }
1468 #endif /* COMPILE_UTILITY */
1469
1470
1471
1472
1473
1474 /*************************************************
1475 **************************************************
1476 * Stand-alone test program *
1477 **************************************************
1478 *************************************************/
1479
1480 #ifdef STAND_ALONE
1481 int main(void)
1482 {
1483 uschar buffer[256];
1484
1485 printf("Testing is_ip_address\n");
1486
1487 while (fgets(CS buffer, sizeof(buffer), stdin) != NULL)
1488 {
1489 int offset;
1490 buffer[Ustrlen(buffer) - 1] = 0;
1491 printf("%d\n", string_is_ip_address(buffer, NULL));
1492 printf("%d %d %s\n", string_is_ip_address(buffer, &offset), offset, buffer);
1493 }
1494
1495 printf("Testing string_nextinlist\n");
1496
1497 while (fgets(CS buffer, sizeof(buffer), stdin) != NULL)
1498 {
1499 uschar *list = buffer;
1500 uschar *lp1, *lp2;
1501 uschar item[256];
1502 int sep1 = 0;
1503 int sep2 = 0;
1504
1505 if (*list == '<')
1506 {
1507 sep1 = sep2 = list[1];
1508 list += 2;
1509 }
1510
1511 lp1 = lp2 = list;
1512 for (;;)
1513 {
1514 uschar *item1 = string_nextinlist(&lp1, &sep1, item, sizeof(item));
1515 uschar *item2 = string_nextinlist(&lp2, &sep2, NULL, 0);
1516
1517 if (item1 == NULL && item2 == NULL) break;
1518 if (item == NULL || item2 == NULL || Ustrcmp(item1, item2) != 0)
1519 {
1520 printf("***ERROR\nitem1=\"%s\"\nitem2=\"%s\"\n",
1521 (item1 == NULL)? "NULL" : CS item1,
1522 (item2 == NULL)? "NULL" : CS item2);
1523 break;
1524 }
1525 else printf(" \"%s\"\n", CS item1);
1526 }
1527 }
1528
1529 /* This is a horrible lash-up, but it serves its purpose. */
1530
1531 printf("Testing string_format\n");
1532
1533 while (fgets(CS buffer, sizeof(buffer), stdin) != NULL)
1534 {
1535 void *args[3];
1536 long long llargs[3];
1537 double dargs[3];
1538 int dflag = 0;
1539 int llflag = 0;
1540 int n = 0;
1541 int count;
1542 int countset = 0;
1543 uschar format[256];
1544 uschar outbuf[256];
1545 uschar *s;
1546 buffer[Ustrlen(buffer) - 1] = 0;
1547
1548 s = Ustrchr(buffer, ',');
1549 if (s == NULL) s = buffer + Ustrlen(buffer);
1550
1551 Ustrncpy(format, buffer, s - buffer);
1552 format[s-buffer] = 0;
1553
1554 if (*s == ',') s++;
1555
1556 while (*s != 0)
1557 {
1558 uschar *ss = s;
1559 s = Ustrchr(ss, ',');
1560 if (s == NULL) s = ss + Ustrlen(ss);
1561
1562 if (isdigit(*ss))
1563 {
1564 Ustrncpy(outbuf, ss, s-ss);
1565 if (Ustrchr(outbuf, '.') != NULL)
1566 {
1567 dflag = 1;
1568 dargs[n++] = Ustrtod(outbuf, NULL);
1569 }
1570 else if (Ustrstr(outbuf, "ll") != NULL)
1571 {
1572 llflag = 1;
1573 llargs[n++] = strtoull(CS outbuf, NULL, 10);
1574 }
1575 else
1576 {
1577 args[n++] = (void *)Uatoi(outbuf);
1578 }
1579 }
1580
1581 else if (Ustrcmp(ss, "*") == 0)
1582 {
1583 args[n++] = (void *)(&count);
1584 countset = 1;
1585 }
1586
1587 else
1588 {
1589 uschar *sss = malloc(s - ss + 1);
1590 Ustrncpy(sss, ss, s-ss);
1591 args[n++] = sss;
1592 }
1593
1594 if (*s == ',') s++;
1595 }
1596
1597 if (!dflag && !llflag)
1598 printf("%s\n", string_format(outbuf, sizeof(outbuf), CS format,
1599 args[0], args[1], args[2])? "True" : "False");
1600
1601 else if (dflag)
1602 printf("%s\n", string_format(outbuf, sizeof(outbuf), CS format,
1603 dargs[0], dargs[1], dargs[2])? "True" : "False");
1604
1605 else printf("%s\n", string_format(outbuf, sizeof(outbuf), CS format,
1606 llargs[0], llargs[1], llargs[2])? "True" : "False");
1607
1608 printf("%s\n", CS outbuf);
1609 if (countset) printf("count=%d\n", count);
1610 }
1611
1612 return 0;
1613 }
1614 #endif
1615
1616 /* End of string.c */
Unnamed repository; edit this file 'description' to name the repository.