root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity

Merge pull request #2 from b3nd3r-ssbm/urlcheck 

Urlcheck
This commit is contained in:
b3nd3r-ssbm 2025-05-01 16:46:29 -04:00 committed by GitHub
parent e7117c3c81 ab445c2507
commit cb0fae524f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 49 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

61
crypto/x509/v3_utl.c
View File

@ -35,7 +35,6 @@ static int ipv6_from_asc(unsigned char *v6, const char *in);
static int ipv6_cb(const char *elem, int len, void *usr); static int ipv6_cb(const char *elem, int len, void *usr);
static int ipv6_hex(unsigned char *out, const char *in, int inlen); static int ipv6_hex(unsigned char *out, const char *in, int inlen);
static int starts_with(const char *str, const char* prefix);
static int is_valid_uri_char(char c); static int is_valid_uri_char(char c);
static int is_valid_uri(const char *uri); static int is_valid_uri(const char *uri);
@ -1464,29 +1463,67 @@ int ossl_bio_print_hex(BIO *out, unsigned char *buf, int len)
return result; return result;
} }
static int starts_with(const char *str, const char *prefix) static int isalnum(int c)
{ {
return strncmp(str, prefix, strlen(prefix)) == 0; return ((c >= 'A' && c <= 'Z') ||
(c >= 'a' && c <= 'z') ||
(c >= '0' && c <= '9'));
} }
static int is_valid_uri_char(char c) static int is_valid_uri_char(char c)
{ {
/* Valid characters include alphanumeric, '-', '_', '.', '~', and reserved characters */ /* Valid characters include alphanumeric, '-', '_', '.', '~', and reserved characters */
return isalnum(c) || c == '-' || c == '_' || c == '.' || c == '~' || switch (c) {
c == '!'|| c == '$' || c == '&' || c == '\'' || c == '(' || /* Unreserved characters */
c == ')' || c == '*' || c == '+' || c == ',' || c == ';' || case '-': case '_': case '.': case '~':
c == '=' || c == ':' || c == '@' || c == '/' || c == '#' || /* Reserved characters */
c == '[' || c == ']' || c == '?'; case '!': case '*': case '\'': case '(': case ')':
case ';': case ':': case '@': case '&': case '=':
case '+': case '$': case ',': case '/': case '?':
case '#': case '[': case ']':
return 1;
default:
/* Check if alphanumeric */
if (isalnum(c)) {
return 1;
}
return 0;
}
}
static int is_valid_uri_scheme(const char *input)
{
int i;
char c;
/* Input may not be null and first character must be a letter */
if (input == NULL || !((input[0] >= 'A' && input[0] <= 'Z') || (input[0] >= 'a' && input[0] <= 'z'))) {
return 0;
}
for (i = 1; input[i] != '\0'; i++) {
c = input[i];
if (c == ':') {
/* Valid scheme found */
return 1;
}
/* Characters must be alphanumeric or '+', '-', '.' */
if (!isalnum(c) && c != '+' && c != '-' && c != '.') {
return 0;
}
}
return 0;
} }
static int is_valid_uri(const char *uri) static int is_valid_uri(const char *uri)
{ {
/* Check if URI begins with a valid scheme */ /* Check if URI begins with a valid scheme */
if (!(starts_with(uri, "http://") || starts_with(uri, "https://") || if (!is_valid_uri_scheme(uri)) {
starts_with(uri, "ftp://"))) {
return 0; return 0;
} }
/* Check the validity of each character in the URI */ /* Check the validity of each character in the URI */
for (const char *p = uri; *p != '\0'; ++p) { for (const char *p = uri; *p != '\0'; ++p) {
if (!is_valid_uri_char(*p)) { if (!is_valid_uri_char(*p)) {