1 /* $OpenBSD: base64.c,v 1.3 1997/11/08 20:46:55 deraadt Exp $ */
4 * Copyright (c) 1996 by Internet Software Consortium.
6 * Permission to use, copy, modify, and distribute this software for any
7 * purpose with or without fee is hereby granted, provided that the above
8 * copyright notice and this permission notice appear in all copies.
10 * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
11 * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
12 * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
13 * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
14 * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
15 * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
16 * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
21 * Portions Copyright (c) 1995 by International Business Machines, Inc.
23 * International Business Machines, Inc. (hereinafter called IBM) grants
24 * permission under its copyrights to use, copy, modify, and distribute this
25 * Software with or without fee, provided that the above copyright notice and
26 * all paragraphs of this notice appear in all copies, and that the name of IBM
27 * not be used in connection with the marketing of any product incorporating
28 * the Software or modifications thereof, without specific, written prior
31 * To the extent it has a right to do so, IBM grants an immunity from suit
32 * under its patents, if any, for the use, sale or manufacture of products to
33 * the extent that such products are used for performing Domain Name System
34 * dynamic updates in TCP/IP networks by means of the Software. No immunity is
35 * granted for any product per se or for any other function of any product.
37 * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
38 * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
39 * PARTICULAR PURPOSE. IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
40 * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
41 * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
42 * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
47 #if !defined(HAVE_B64_NTOP) && !defined(HAVE___B64_NTOP)
49 #include <sys/types.h>
50 #include <sys/param.h>
51 #include <sys/socket.h>
52 #include <netinet/in.h>
53 #include <arpa/inet.h>
63 #define Assert(Cond) if (!(Cond)) abort()
65 static const char Base64[] =
66 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
67 static const char Pad64 = '=';
69 /* (From RFC1521 and draft-ietf-dnssec-secext-03.txt)
70 The following encoding technique is taken from RFC 1521 by Borenstein
71 and Freed. It is reproduced here in a slightly edited form for
74 A 65-character subset of US-ASCII is used, enabling 6 bits to be
75 represented per printable character. (The extra 65th character, "=",
76 is used to signify a special processing function.)
78 The encoding process represents 24-bit groups of input bits as output
79 strings of 4 encoded characters. Proceeding from left to right, a
80 24-bit input group is formed by concatenating 3 8-bit input groups.
81 These 24 bits are then treated as 4 concatenated 6-bit groups, each
82 of which is translated into a single digit in the base64 alphabet.
84 Each 6-bit group is used as an index into an array of 64 printable
85 characters. The character referenced by the index is placed in the
88 Table 1: The Base64 Alphabet
90 Value Encoding Value Encoding Value Encoding Value Encoding
105 14 O 31 f 48 w (pad) =
109 Special processing is performed if fewer than 24 bits are available
110 at the end of the data being encoded. A full encoding quantum is
111 always completed at the end of a quantity. When fewer than 24 input
112 bits are available in an input group, zero bits are added (on the
113 right) to form an integral number of 6-bit groups. Padding at the
114 end of the data is performed using the '=' character.
116 Since all base64 input is an integral number of octets, only the
117 -------------------------------------------------
118 following cases can arise:
120 (1) the final quantum of encoding input is an integral
121 multiple of 24 bits; here, the final unit of encoded
122 output will be an integral multiple of 4 characters
124 (2) the final quantum of encoding input is exactly 8 bits;
125 here, the final unit of encoded output will be two
126 characters followed by two "=" padding characters, or
127 (3) the final quantum of encoding input is exactly 16 bits;
128 here, the final unit of encoded output will be three
129 characters followed by one "=" padding character.
133 b64_ntop(u_char const *src, size_t srclength, char *target, size_t targsize)
135 size_t datalength = 0;
140 while (2 < srclength) {
146 output[0] = input[0] >> 2;
147 output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
148 output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
149 output[3] = input[2] & 0x3f;
150 Assert(output[0] < 64);
151 Assert(output[1] < 64);
152 Assert(output[2] < 64);
153 Assert(output[3] < 64);
155 if (datalength + 4 > targsize)
157 target[datalength++] = Base64[output[0]];
158 target[datalength++] = Base64[output[1]];
159 target[datalength++] = Base64[output[2]];
160 target[datalength++] = Base64[output[3]];
163 /* Now we worry about padding. */
164 if (0 != srclength) {
165 /* Get what's left. */
166 input[0] = input[1] = input[2] = '\0';
167 for (i = 0; i < srclength; i++)
170 output[0] = input[0] >> 2;
171 output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
172 output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
173 Assert(output[0] < 64);
174 Assert(output[1] < 64);
175 Assert(output[2] < 64);
177 if (datalength + 4 > targsize)
179 target[datalength++] = Base64[output[0]];
180 target[datalength++] = Base64[output[1]];
182 target[datalength++] = Pad64;
184 target[datalength++] = Base64[output[2]];
185 target[datalength++] = Pad64;
187 if (datalength >= targsize)
189 target[datalength] = '\0'; /* Returned value doesn't count \0. */
193 /* skips all whitespace anywhere.
194 converts characters, four at a time, starting at (or after)
195 src from base - 64 numbers into three 8 bit bytes in the target area.
196 it returns the number of data bytes stored at the target, or -1 on error.
200 b64_pton(char const *src, u_char *target, size_t targsize)
202 int tarindex, state, ch;
208 while ((ch = *src++) != '\0') {
209 if (isspace(ch)) /* Skip whitespace anywhere. */
215 pos = strchr(Base64, ch);
216 if (pos == 0) /* A non-base64 character. */
222 if (tarindex >= targsize)
224 target[tarindex] = (pos - Base64) << 2;
230 if (tarindex + 1 >= targsize)
232 target[tarindex] |= (pos - Base64) >> 4;
233 target[tarindex+1] = ((pos - Base64) & 0x0f)
241 if (tarindex + 1 >= targsize)
243 target[tarindex] |= (pos - Base64) >> 2;
244 target[tarindex+1] = ((pos - Base64) & 0x03)
252 if (tarindex >= targsize)
254 target[tarindex] |= (pos - Base64);
263 * We are done decoding Base-64 chars. Let's see if we ended
264 * on a byte boundary, and/or with erroneous trailing characters.
267 if (ch == Pad64) { /* We got a pad char. */
268 ch = *src++; /* Skip it, get next. */
270 case 0: /* Invalid = in first position */
271 case 1: /* Invalid = in second position */
274 case 2: /* Valid, means one byte of info */
275 /* Skip any number of spaces. */
276 for (; ch != '\0'; ch = *src++)
279 /* Make sure there is another trailing = sign. */
282 ch = *src++; /* Skip the = */
283 /* Fall through to "single trailing =" case. */
286 case 3: /* Valid, means two bytes of info */
288 * We know this char is an =. Is there anything but
289 * whitespace after it?
291 for (; ch != '\0'; ch = *src++)
296 * Now make sure for cases 2 and 3 that the "extra"
297 * bits that slopped past the last full byte were
298 * zeros. If we don't check them, they become a
299 * subliminal channel.
301 if (target && target[tarindex] != 0)
306 * We ended by seeing the end of the string. Make sure we
307 * have no partial bytes lying around.
316 #endif /* !defined(HAVE_B64_NTOP) && !defined(HAVE___B64_NTOP) */
andersk / gssapi-openssh.git / blob