1*9712c20fSFrederick Mayle // -*- mode: c++ -*- 2*9712c20fSFrederick Mayle 3*9712c20fSFrederick Mayle // Copyright 2010 Google LLC 4*9712c20fSFrederick Mayle // 5*9712c20fSFrederick Mayle // Redistribution and use in source and binary forms, with or without 6*9712c20fSFrederick Mayle // modification, are permitted provided that the following conditions are 7*9712c20fSFrederick Mayle // met: 8*9712c20fSFrederick Mayle // 9*9712c20fSFrederick Mayle // * Redistributions of source code must retain the above copyright 10*9712c20fSFrederick Mayle // notice, this list of conditions and the following disclaimer. 11*9712c20fSFrederick Mayle // * Redistributions in binary form must reproduce the above 12*9712c20fSFrederick Mayle // copyright notice, this list of conditions and the following disclaimer 13*9712c20fSFrederick Mayle // in the documentation and/or other materials provided with the 14*9712c20fSFrederick Mayle // distribution. 15*9712c20fSFrederick Mayle // * Neither the name of Google LLC nor the names of its 16*9712c20fSFrederick Mayle // contributors may be used to endorse or promote products derived from 17*9712c20fSFrederick Mayle // this software without specific prior written permission. 18*9712c20fSFrederick Mayle // 19*9712c20fSFrederick Mayle // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 20*9712c20fSFrederick Mayle // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 21*9712c20fSFrederick Mayle // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR 22*9712c20fSFrederick Mayle // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT 23*9712c20fSFrederick Mayle // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 24*9712c20fSFrederick Mayle // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT 25*9712c20fSFrederick Mayle // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 26*9712c20fSFrederick Mayle // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 27*9712c20fSFrederick Mayle // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 28*9712c20fSFrederick Mayle // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE 29*9712c20fSFrederick Mayle // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 30*9712c20fSFrederick Mayle 31*9712c20fSFrederick Mayle // Original author: Jim Blandy <[email protected]> <[email protected]> 32*9712c20fSFrederick Mayle 33*9712c20fSFrederick Mayle // byte_cursor.h: Classes for parsing values from a buffer of bytes. 34*9712c20fSFrederick Mayle // The ByteCursor class provides a convenient interface for reading 35*9712c20fSFrederick Mayle // fixed-size integers of arbitrary endianness, being thorough about 36*9712c20fSFrederick Mayle // checking for buffer overruns. 37*9712c20fSFrederick Mayle 38*9712c20fSFrederick Mayle #ifndef COMMON_BYTE_CURSOR_H_ 39*9712c20fSFrederick Mayle #define COMMON_BYTE_CURSOR_H_ 40*9712c20fSFrederick Mayle 41*9712c20fSFrederick Mayle #include <assert.h> 42*9712c20fSFrederick Mayle #include <stdint.h> 43*9712c20fSFrederick Mayle #include <stdlib.h> 44*9712c20fSFrederick Mayle #include <string.h> 45*9712c20fSFrederick Mayle #include <string> 46*9712c20fSFrederick Mayle 47*9712c20fSFrederick Mayle #include "common/using_std_string.h" 48*9712c20fSFrederick Mayle 49*9712c20fSFrederick Mayle namespace google_breakpad { 50*9712c20fSFrederick Mayle 51*9712c20fSFrederick Mayle // A buffer holding a series of bytes. 52*9712c20fSFrederick Mayle struct ByteBuffer { ByteBufferByteBuffer53*9712c20fSFrederick Mayle ByteBuffer() : start(0), end(0) { } ByteBufferByteBuffer54*9712c20fSFrederick Mayle ByteBuffer(const uint8_t* set_start, size_t set_size) 55*9712c20fSFrederick Mayle : start(set_start), end(set_start + set_size) { } ~ByteBufferByteBuffer56*9712c20fSFrederick Mayle ~ByteBuffer() { }; 57*9712c20fSFrederick Mayle 58*9712c20fSFrederick Mayle // Equality operators. Useful in unit tests, and when we're using 59*9712c20fSFrederick Mayle // ByteBuffers to refer to regions of a larger buffer. 60*9712c20fSFrederick Mayle bool operator==(const ByteBuffer& that) const { 61*9712c20fSFrederick Mayle return start == that.start && end == that.end; 62*9712c20fSFrederick Mayle } 63*9712c20fSFrederick Mayle bool operator!=(const ByteBuffer& that) const { 64*9712c20fSFrederick Mayle return start != that.start || end != that.end; 65*9712c20fSFrederick Mayle } 66*9712c20fSFrederick Mayle 67*9712c20fSFrederick Mayle // Not C++ style guide compliant, but this definitely belongs here. SizeByteBuffer68*9712c20fSFrederick Mayle size_t Size() const { 69*9712c20fSFrederick Mayle assert(start <= end); 70*9712c20fSFrederick Mayle return end - start; 71*9712c20fSFrederick Mayle } 72*9712c20fSFrederick Mayle 73*9712c20fSFrederick Mayle const uint8_t* start; 74*9712c20fSFrederick Mayle const uint8_t* end; 75*9712c20fSFrederick Mayle }; 76*9712c20fSFrederick Mayle 77*9712c20fSFrederick Mayle // A cursor pointing into a ByteBuffer that can parse numbers of various 78*9712c20fSFrederick Mayle // widths and representations, strings, and data blocks, advancing through 79*9712c20fSFrederick Mayle // the buffer as it goes. All ByteCursor operations check that accesses 80*9712c20fSFrederick Mayle // haven't gone beyond the end of the enclosing ByteBuffer. 81*9712c20fSFrederick Mayle class ByteCursor { 82*9712c20fSFrederick Mayle public: 83*9712c20fSFrederick Mayle // Create a cursor reading bytes from the start of BUFFER. By default, the 84*9712c20fSFrederick Mayle // cursor reads multi-byte values in little-endian form. 85*9712c20fSFrederick Mayle ByteCursor(const ByteBuffer* buffer, bool big_endian = false) buffer_(buffer)86*9712c20fSFrederick Mayle : buffer_(buffer), here_(buffer->start), 87*9712c20fSFrederick Mayle big_endian_(big_endian), complete_(true) { } 88*9712c20fSFrederick Mayle 89*9712c20fSFrederick Mayle // Accessor and setter for this cursor's endianness flag. big_endian()90*9712c20fSFrederick Mayle bool big_endian() const { return big_endian_; } set_big_endian(bool big_endian)91*9712c20fSFrederick Mayle void set_big_endian(bool big_endian) { big_endian_ = big_endian; } 92*9712c20fSFrederick Mayle 93*9712c20fSFrederick Mayle // Accessor and setter for this cursor's current position. The setter 94*9712c20fSFrederick Mayle // returns a reference to this cursor. here()95*9712c20fSFrederick Mayle const uint8_t* here() const { return here_; } set_here(const uint8_t * here)96*9712c20fSFrederick Mayle ByteCursor& set_here(const uint8_t* here) { 97*9712c20fSFrederick Mayle assert(buffer_->start <= here && here <= buffer_->end); 98*9712c20fSFrederick Mayle here_ = here; 99*9712c20fSFrederick Mayle return *this; 100*9712c20fSFrederick Mayle } 101*9712c20fSFrederick Mayle 102*9712c20fSFrederick Mayle // Return the number of bytes available to read at the cursor. Available()103*9712c20fSFrederick Mayle size_t Available() const { return size_t(buffer_->end - here_); } 104*9712c20fSFrederick Mayle 105*9712c20fSFrederick Mayle // Return true if this cursor is at the end of its buffer. AtEnd()106*9712c20fSFrederick Mayle bool AtEnd() const { return Available() == 0; } 107*9712c20fSFrederick Mayle 108*9712c20fSFrederick Mayle // When used as a boolean value this cursor converts to true if all 109*9712c20fSFrederick Mayle // prior reads have been completed, or false if we ran off the end 110*9712c20fSFrederick Mayle // of the buffer. 111*9712c20fSFrederick Mayle operator bool() const { return complete_; } 112*9712c20fSFrederick Mayle 113*9712c20fSFrederick Mayle // Read a SIZE-byte integer at this cursor, signed if IS_SIGNED is true, 114*9712c20fSFrederick Mayle // unsigned otherwise, using the cursor's established endianness, and set 115*9712c20fSFrederick Mayle // *RESULT to the number. If we read off the end of our buffer, clear 116*9712c20fSFrederick Mayle // this cursor's complete_ flag, and store a dummy value in *RESULT. 117*9712c20fSFrederick Mayle // Return a reference to this cursor. 118*9712c20fSFrederick Mayle template<typename T> Read(size_t size,bool is_signed,T * result)119*9712c20fSFrederick Mayle ByteCursor& Read(size_t size, bool is_signed, T* result) { 120*9712c20fSFrederick Mayle if (CheckAvailable(size)) { 121*9712c20fSFrederick Mayle T v = 0; 122*9712c20fSFrederick Mayle if (big_endian_) { 123*9712c20fSFrederick Mayle for (size_t i = 0; i < size; i++) 124*9712c20fSFrederick Mayle v = (v << 8) + here_[i]; 125*9712c20fSFrederick Mayle } else { 126*9712c20fSFrederick Mayle // This loop condition looks weird, but size_t is unsigned, so 127*9712c20fSFrederick Mayle // decrementing i after it is zero yields the largest size_t value. 128*9712c20fSFrederick Mayle for (size_t i = size - 1; i < size; i--) 129*9712c20fSFrederick Mayle v = (v << 8) + here_[i]; 130*9712c20fSFrederick Mayle } 131*9712c20fSFrederick Mayle if (is_signed && size < sizeof(T)) { 132*9712c20fSFrederick Mayle size_t sign_bit = (T)1 << (size * 8 - 1); 133*9712c20fSFrederick Mayle v = (v ^ sign_bit) - sign_bit; 134*9712c20fSFrederick Mayle } 135*9712c20fSFrederick Mayle here_ += size; 136*9712c20fSFrederick Mayle *result = v; 137*9712c20fSFrederick Mayle } else { 138*9712c20fSFrederick Mayle *result = (T) 0xdeadbeef; 139*9712c20fSFrederick Mayle } 140*9712c20fSFrederick Mayle return *this; 141*9712c20fSFrederick Mayle } 142*9712c20fSFrederick Mayle 143*9712c20fSFrederick Mayle // Read an integer, using the cursor's established endianness and 144*9712c20fSFrederick Mayle // *RESULT's size and signedness, and set *RESULT to the number. If we 145*9712c20fSFrederick Mayle // read off the end of our buffer, clear this cursor's complete_ flag. 146*9712c20fSFrederick Mayle // Return a reference to this cursor. 147*9712c20fSFrederick Mayle template<typename T> 148*9712c20fSFrederick Mayle ByteCursor& operator>>(T& result) { 149*9712c20fSFrederick Mayle bool T_is_signed = (T)-1 < 0; 150*9712c20fSFrederick Mayle return Read(sizeof(T), T_is_signed, &result); 151*9712c20fSFrederick Mayle } 152*9712c20fSFrederick Mayle 153*9712c20fSFrederick Mayle // Copy the SIZE bytes at the cursor to BUFFER, and advance this 154*9712c20fSFrederick Mayle // cursor to the end of them. If we read off the end of our buffer, 155*9712c20fSFrederick Mayle // clear this cursor's complete_ flag, and set *POINTER to NULL. 156*9712c20fSFrederick Mayle // Return a reference to this cursor. Read(uint8_t * buffer,size_t size)157*9712c20fSFrederick Mayle ByteCursor& Read(uint8_t* buffer, size_t size) { 158*9712c20fSFrederick Mayle if (CheckAvailable(size)) { 159*9712c20fSFrederick Mayle memcpy(buffer, here_, size); 160*9712c20fSFrederick Mayle here_ += size; 161*9712c20fSFrederick Mayle } 162*9712c20fSFrederick Mayle return *this; 163*9712c20fSFrederick Mayle } 164*9712c20fSFrederick Mayle 165*9712c20fSFrederick Mayle // Set STR to a copy of the '\0'-terminated string at the cursor. If the 166*9712c20fSFrederick Mayle // byte buffer does not contain a terminating zero, clear this cursor's 167*9712c20fSFrederick Mayle // complete_ flag, and set STR to the empty string. Return a reference to 168*9712c20fSFrederick Mayle // this cursor. CString(string * str)169*9712c20fSFrederick Mayle ByteCursor& CString(string* str) { 170*9712c20fSFrederick Mayle const uint8_t* end 171*9712c20fSFrederick Mayle = static_cast<const uint8_t*>(memchr(here_, '\0', Available())); 172*9712c20fSFrederick Mayle if (end) { 173*9712c20fSFrederick Mayle str->assign(reinterpret_cast<const char*>(here_), end - here_); 174*9712c20fSFrederick Mayle here_ = end + 1; 175*9712c20fSFrederick Mayle } else { 176*9712c20fSFrederick Mayle str->clear(); 177*9712c20fSFrederick Mayle here_ = buffer_->end; 178*9712c20fSFrederick Mayle complete_ = false; 179*9712c20fSFrederick Mayle } 180*9712c20fSFrederick Mayle return *this; 181*9712c20fSFrederick Mayle } 182*9712c20fSFrederick Mayle 183*9712c20fSFrederick Mayle // Like CString(STR), but extract the string from a fixed-width buffer 184*9712c20fSFrederick Mayle // LIMIT bytes long, which may or may not contain a terminating '\0' 185*9712c20fSFrederick Mayle // byte. Specifically: 186*9712c20fSFrederick Mayle // 187*9712c20fSFrederick Mayle // - If there are not LIMIT bytes available at the cursor, clear the 188*9712c20fSFrederick Mayle // cursor's complete_ flag and set STR to the empty string. 189*9712c20fSFrederick Mayle // 190*9712c20fSFrederick Mayle // - Otherwise, if the LIMIT bytes at the cursor contain any '\0' 191*9712c20fSFrederick Mayle // characters, set *STR to a copy of the bytes before the first '\0', 192*9712c20fSFrederick Mayle // and advance the cursor by LIMIT bytes. 193*9712c20fSFrederick Mayle // 194*9712c20fSFrederick Mayle // - Otherwise, set *STR to a copy of those LIMIT bytes, and advance the 195*9712c20fSFrederick Mayle // cursor by LIMIT bytes. CString(string * str,size_t limit)196*9712c20fSFrederick Mayle ByteCursor& CString(string* str, size_t limit) { 197*9712c20fSFrederick Mayle if (CheckAvailable(limit)) { 198*9712c20fSFrederick Mayle const uint8_t* end 199*9712c20fSFrederick Mayle = static_cast<const uint8_t*>(memchr(here_, '\0', limit)); 200*9712c20fSFrederick Mayle if (end) 201*9712c20fSFrederick Mayle str->assign(reinterpret_cast<const char*>(here_), end - here_); 202*9712c20fSFrederick Mayle else 203*9712c20fSFrederick Mayle str->assign(reinterpret_cast<const char*>(here_), limit); 204*9712c20fSFrederick Mayle here_ += limit; 205*9712c20fSFrederick Mayle } else { 206*9712c20fSFrederick Mayle str->clear(); 207*9712c20fSFrederick Mayle } 208*9712c20fSFrederick Mayle return *this; 209*9712c20fSFrederick Mayle } 210*9712c20fSFrederick Mayle 211*9712c20fSFrederick Mayle // Set *POINTER to point to the SIZE bytes at the cursor, and advance 212*9712c20fSFrederick Mayle // this cursor to the end of them. If SIZE is omitted, don't move the 213*9712c20fSFrederick Mayle // cursor. If we read off the end of our buffer, clear this cursor's 214*9712c20fSFrederick Mayle // complete_ flag, and set *POINTER to NULL. Return a reference to this 215*9712c20fSFrederick Mayle // cursor. 216*9712c20fSFrederick Mayle ByteCursor& PointTo(const uint8_t** pointer, size_t size = 0) { 217*9712c20fSFrederick Mayle if (CheckAvailable(size)) { 218*9712c20fSFrederick Mayle *pointer = here_; 219*9712c20fSFrederick Mayle here_ += size; 220*9712c20fSFrederick Mayle } else { 221*9712c20fSFrederick Mayle *pointer = NULL; 222*9712c20fSFrederick Mayle } 223*9712c20fSFrederick Mayle return *this; 224*9712c20fSFrederick Mayle } 225*9712c20fSFrederick Mayle 226*9712c20fSFrederick Mayle // Skip SIZE bytes at the cursor. If doing so would advance us off 227*9712c20fSFrederick Mayle // the end of our buffer, clear this cursor's complete_ flag, and 228*9712c20fSFrederick Mayle // set *POINTER to NULL. Return a reference to this cursor. Skip(size_t size)229*9712c20fSFrederick Mayle ByteCursor& Skip(size_t size) { 230*9712c20fSFrederick Mayle if (CheckAvailable(size)) 231*9712c20fSFrederick Mayle here_ += size; 232*9712c20fSFrederick Mayle return *this; 233*9712c20fSFrederick Mayle } 234*9712c20fSFrederick Mayle 235*9712c20fSFrederick Mayle private: 236*9712c20fSFrederick Mayle // If there are at least SIZE bytes available to read from the buffer, 237*9712c20fSFrederick Mayle // return true. Otherwise, set here_ to the end of the buffer, set 238*9712c20fSFrederick Mayle // complete_ to false, and return false. CheckAvailable(size_t size)239*9712c20fSFrederick Mayle bool CheckAvailable(size_t size) { 240*9712c20fSFrederick Mayle if (Available() >= size) { 241*9712c20fSFrederick Mayle return true; 242*9712c20fSFrederick Mayle } else { 243*9712c20fSFrederick Mayle here_ = buffer_->end; 244*9712c20fSFrederick Mayle complete_ = false; 245*9712c20fSFrederick Mayle return false; 246*9712c20fSFrederick Mayle } 247*9712c20fSFrederick Mayle } 248*9712c20fSFrederick Mayle 249*9712c20fSFrederick Mayle // The buffer we're reading bytes from. 250*9712c20fSFrederick Mayle const ByteBuffer* buffer_; 251*9712c20fSFrederick Mayle 252*9712c20fSFrederick Mayle // The next byte within buffer_ that we'll read. 253*9712c20fSFrederick Mayle const uint8_t* here_; 254*9712c20fSFrederick Mayle 255*9712c20fSFrederick Mayle // True if we should read numbers in big-endian form; false if we 256*9712c20fSFrederick Mayle // should read in little-endian form. 257*9712c20fSFrederick Mayle bool big_endian_; 258*9712c20fSFrederick Mayle 259*9712c20fSFrederick Mayle // True if we've been able to read all we've been asked to. 260*9712c20fSFrederick Mayle bool complete_; 261*9712c20fSFrederick Mayle }; 262*9712c20fSFrederick Mayle 263*9712c20fSFrederick Mayle } // namespace google_breakpad 264*9712c20fSFrederick Mayle 265*9712c20fSFrederick Mayle #endif // COMMON_BYTE_CURSOR_H_ 266