db/d7c/dll_23rdparty_2libxslt_2security_8c_source.html

 /*
  * security.c: Implementation of the XSLT security framework
  *
  * See Copyright for the status of this software.
  *
  * daniel@veillard.com
  */

 #include "precomp.h"

 #ifdef HAVE_SYS_STAT_H
 #include <sys/stat.h>
 #endif

 #if defined(WIN32) && !defined(__CYGWIN__)
 #ifndef INVALID_FILE_ATTRIBUTES
 #define INVALID_FILE_ATTRIBUTES ((DWORD)-1)
 #endif
 #endif

 #ifndef HAVE_STAT
 #  ifdef HAVE__STAT
      /* MS C library seems to define stat and _stat. The definition
       *         is identical. Still, mapping them to each other causes a warning. */
 #    ifndef _MSC_VER
 #      define stat(x,y) _stat(x,y)
 #    endif
 #    define HAVE_STAT
 #  endif
 #endif

 struct _xsltSecurityPrefs {
     xsltSecurityCheck readFile;
     xsltSecurityCheck createFile;
     xsltSecurityCheck createDir;
     xsltSecurityCheck readNet;
     xsltSecurityCheck writeNet;
 };

 static xsltSecurityPrefsPtr xsltDefaultSecurityPrefs = NULL;

 /************************************************************************
  *                                  *
  *          Module interfaces               *
  *                                  *
  ************************************************************************/

 xsltSecurityPrefsPtr
 xsltNewSecurityPrefs(void) {
     xsltSecurityPrefsPtr ret;

     xsltInitGlobals();

     ret = (xsltSecurityPrefsPtr) xmlMalloc(sizeof(xsltSecurityPrefs));
     if (ret == NULL) {
     xsltTransformError(NULL, NULL, NULL,
         "xsltNewSecurityPrefs : malloc failed\n");
     return(NULL);
     }
     memset(ret, 0, sizeof(xsltSecurityPrefs));
     return(ret);
 }

 void
 xsltFreeSecurityPrefs(xsltSecurityPrefsPtr sec) {
     if (sec == NULL)
     return;
     xmlFree(sec);
 }

 int
 xsltSetSecurityPrefs(xsltSecurityPrefsPtr sec, xsltSecurityOption option,
                      xsltSecurityCheck func) {
     xsltInitGlobals();
     if (sec == NULL)
     return(-1);
     switch (option) {
         case XSLT_SECPREF_READ_FILE:
             sec->readFile = func; return(0);
         case XSLT_SECPREF_WRITE_FILE:
             sec->createFile = func; return(0);
         case XSLT_SECPREF_CREATE_DIRECTORY:
             sec->createDir = func; return(0);
         case XSLT_SECPREF_READ_NETWORK:
             sec->readNet = func; return(0);
         case XSLT_SECPREF_WRITE_NETWORK:
             sec->writeNet = func; return(0);
     }
     return(-1);
 }

 xsltSecurityCheck
 xsltGetSecurityPrefs(xsltSecurityPrefsPtr sec, xsltSecurityOption option) {
     if (sec == NULL)
     return(NULL);
     switch (option) {
         case XSLT_SECPREF_READ_FILE:
             return(sec->readFile);
         case XSLT_SECPREF_WRITE_FILE:
             return(sec->createFile);
         case XSLT_SECPREF_CREATE_DIRECTORY:
             return(sec->createDir);
         case XSLT_SECPREF_READ_NETWORK:
             return(sec->readNet);
         case XSLT_SECPREF_WRITE_NETWORK:
             return(sec->writeNet);
     }
     return(NULL);
 }

 void
 xsltSetDefaultSecurityPrefs(xsltSecurityPrefsPtr sec) {

     xsltDefaultSecurityPrefs = sec;
 }

 xsltSecurityPrefsPtr
 xsltGetDefaultSecurityPrefs(void) {
     return(xsltDefaultSecurityPrefs);
 }

 int
 xsltSetCtxtSecurityPrefs(xsltSecurityPrefsPtr sec,
                      xsltTransformContextPtr ctxt) {
     if (ctxt == NULL)
     return(-1);
     ctxt->sec = (void *) sec;
     return(0);
 }


 int
 xsltSecurityAllow(xsltSecurityPrefsPtr sec ATTRIBUTE_UNUSED,
               xsltTransformContextPtr ctxt ATTRIBUTE_UNUSED,
           const char *value ATTRIBUTE_UNUSED) {
     return(1);
 }

 int
 xsltSecurityForbid(xsltSecurityPrefsPtr sec ATTRIBUTE_UNUSED,
               xsltTransformContextPtr ctxt ATTRIBUTE_UNUSED,
           const char *value ATTRIBUTE_UNUSED) {
     return(0);
 }

 /************************************************************************
  *                                  *
  *          Internal interfaces             *
  *                                  *
  ************************************************************************/

 static int
 xsltCheckFilename (const char *path)
 {
 #ifdef HAVE_STAT
     struct stat stat_buffer;
 #if defined(_WIN32) && !defined(__CYGWIN__)
     DWORD dwAttrs;

     dwAttrs = GetFileAttributes(path);
     if (dwAttrs != INVALID_FILE_ATTRIBUTES) {
         if (dwAttrs & FILE_ATTRIBUTE_DIRECTORY) {
             return 2;
         }
     }
 #endif

     if (stat(path, &stat_buffer) == -1)
         return 0;

 #ifdef S_ISDIR
     if (S_ISDIR(stat_buffer.st_mode)) {
         return 2;
     }
 #endif
 #endif
     return 1;
 }

 static int
 xsltCheckWritePath(xsltSecurityPrefsPtr sec,
            xsltTransformContextPtr ctxt,
            const char *path)
 {
     int ret;
     xsltSecurityCheck check;
     char *directory;

     check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_WRITE_FILE);
     if (check != NULL) {
     ret = check(sec, ctxt, path);
     if (ret == 0) {
         xsltTransformError(ctxt, NULL, NULL,
                    "File write for %s refused\n", path);
         return(0);
     }
     }

     directory = xmlParserGetDirectory (path);

     if (directory != NULL) {
     ret = xsltCheckFilename(directory);
     if (ret == 0) {
         /*
          * The directory doesn't exist check for creation
          */
         check = xsltGetSecurityPrefs(sec,
                      XSLT_SECPREF_CREATE_DIRECTORY);
         if (check != NULL) {
         ret = check(sec, ctxt, directory);
         if (ret == 0) {
             xsltTransformError(ctxt, NULL, NULL,
                        "Directory creation for %s refused\n",
                        path);
             xmlFree(directory);
             return(0);
         }
         }
         ret = xsltCheckWritePath(sec, ctxt, directory);
         if (ret == 1)
         ret = mkdir(directory, 0755);
     }
     xmlFree(directory);
     if (ret < 0)
         return(ret);
     }

     return(1);
 }

 int
 xsltCheckWrite(xsltSecurityPrefsPtr sec,
            xsltTransformContextPtr ctxt, const xmlChar *URL) {
     int ret;
     xmlURIPtr uri;
     xsltSecurityCheck check;

     uri = xmlParseURI((const char *)URL);
     if (uri == NULL) {
         uri = xmlCreateURI();
     if (uri == NULL) {
         xsltTransformError(ctxt, NULL, NULL,
          "xsltCheckWrite: out of memory for %s\n", URL);
         return(-1);
     }
     uri->path = (char *)xmlStrdup(URL);
     }
     if ((uri->scheme == NULL) ||
     (xmlStrEqual(BAD_CAST uri->scheme, BAD_CAST "file"))) {

 #if defined(_WIN32) && !defined(__CYGWIN__)
         if ((uri->path)&&(uri->path[0]=='/')&&
             (uri->path[1]!='\0')&&(uri->path[2]==':'))
             ret = xsltCheckWritePath(sec, ctxt, uri->path+1);
         else
 #endif
         {
             /*
              * Check if we are allowed to write this file
              */
         ret = xsltCheckWritePath(sec, ctxt, uri->path);
         }

     if (ret <= 0) {
         xmlFreeURI(uri);
         return(ret);
     }
     } else {
     /*
      * Check if we are allowed to write this network resource
      */
     check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_WRITE_NETWORK);
     if (check != NULL) {
         ret = check(sec, ctxt, (const char *)URL);
         if (ret == 0) {
         xsltTransformError(ctxt, NULL, NULL,
                  "File write for %s refused\n", URL);
         xmlFreeURI(uri);
         return(0);
         }
     }
     }
     xmlFreeURI(uri);
     return(1);
 }


 int
 xsltCheckRead(xsltSecurityPrefsPtr sec,
           xsltTransformContextPtr ctxt, const xmlChar *URL) {
     int ret;
     xmlURIPtr uri;
     xsltSecurityCheck check;

     uri = xmlParseURI((const char *)URL);
     if (uri == NULL) {
     xsltTransformError(ctxt, NULL, NULL,
      "xsltCheckRead: URL parsing failed for %s\n",
              URL);
     return(-1);
     }
     if ((uri->scheme == NULL) ||
     (xmlStrEqual(BAD_CAST uri->scheme, BAD_CAST "file"))) {

     /*
      * Check if we are allowed to read this file
      */
     check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_READ_FILE);
     if (check != NULL) {
         ret = check(sec, ctxt, uri->path);
         if (ret == 0) {
         xsltTransformError(ctxt, NULL, NULL,
                  "Local file read for %s refused\n", URL);
         xmlFreeURI(uri);
         return(0);
         }
     }
     } else {
     /*
      * Check if we are allowed to write this network resource
      */
     check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_READ_NETWORK);
     if (check != NULL) {
         ret = check(sec, ctxt, (const char *)URL);
         if (ret == 0) {
         xsltTransformError(ctxt, NULL, NULL,
                  "Network file read for %s refused\n", URL);
         xmlFreeURI(uri);
         return(0);
         }
     }
     }
     xmlFreeURI(uri);
     return(1);
 }

xsltSetSecurityPrefs
int xsltSetSecurityPrefs(xsltSecurityPrefsPtr sec, xsltSecurityOption option, xsltSecurityCheck func)
Definition: security.c:95

_xsltTransformContext
Definition: xsltInternals.h:1668

func
GLenum func
Definition: glext.h:6028

stat.h

value
Definition: pdh_main.c:93

XSLT_SECPREF_CREATE_DIRECTORY
Definition: security.h:40

xsltSecurityForbid
int xsltSecurityForbid(xsltSecurityPrefsPtr sec ATTRIBUTE_UNUSED, xsltTransformContextPtr ctxt ATTRIBUTE_UNUSED, const char *value ATTRIBUTE_UNUSED)
Definition: security.c:214

uri
const char * uri
Definition: sec_mgr.c:1588

xsltCheckFilename
static int xsltCheckFilename(const char *path)
Definition: security.c:245

xmlParserGetDirectory
XMLPUBFUN char *XMLCALL xmlParserGetDirectory(const char *filename)

_xsltTransformContext::sec
void * sec
Definition: xsltInternals.h:1730

xsltNewSecurityPrefs
xsltSecurityPrefsPtr xsltNewSecurityPrefs(void)
Definition: security.c:56

xsltCheckRead
int xsltCheckRead(xsltSecurityPrefsPtr sec, xsltTransformContextPtr ctxt, const xmlChar *URL)
Definition: security.c:402

xmlParseURI
XMLPUBFUN xmlURIPtr XMLCALL xmlParseURI(const char *str)
Definition: uri.c:940

_xsltSecurityPrefs::readFile
xsltSecurityCheck readFile
Definition: security.c:33

xsltSecurityPrefsPtr
xsltSecurityPrefs * xsltSecurityPrefsPtr
Definition: security.h:30

option
Definition: getopt.h:108

BAD_CAST
#define BAD_CAST
Definition: xmlstring.h:35

xmlCreateURI
XMLPUBFUN xmlURIPtr XMLCALL xmlCreateURI(void)
Definition: uri.c:1020

xsltDefaultSecurityPrefs
static xsltSecurityPrefsPtr xsltDefaultSecurityPrefs
Definition: security.c:40

xsltFreeSecurityPrefs
void xsltFreeSecurityPrefs(xsltSecurityPrefsPtr sec)
Definition: security.c:78

xsltGetSecurityPrefs
xsltSecurityCheck xsltGetSecurityPrefs(xsltSecurityPrefsPtr sec, xsltSecurityOption option)
Definition: security.c:125

FILE_ATTRIBUTE_DIRECTORY
#define FILE_ATTRIBUTE_DIRECTORY
Definition: nt_native.h:705

xsltCheckWritePath
static int xsltCheckWritePath(xsltSecurityPrefsPtr sec, xsltTransformContextPtr ctxt, const char *path)
Definition: security.c:273

mkdir
#define mkdir
Definition: acwin.h:101

S_ISDIR
#define S_ISDIR(mode)
Definition: various.h:18

DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95

xmlFree
XMLPUBVAR xmlFreeFunc xmlFree
Definition: globals.h:250

INVALID_FILE_ATTRIBUTES
#define INVALID_FILE_ATTRIBUTES
Definition: vfdcmd.c:23

check
void check(CONTEXT *pContext)
Definition: NtContinue.c:68

XSLT_SECPREF_READ_FILE
Definition: security.h:38

xsltSecurityCheck
int(* xsltSecurityCheck)(xsltSecurityPrefsPtr sec, xsltTransformContextPtr ctxt, const char *value)
Definition: security.h:51

directory
Definition: mkisofs.h:266

ret
int ret
Definition: wcstombs-tests.c:31

stat::st_mode
unsigned short st_mode
Definition: stat.h:58

stat
Definition: stat.h:55

xmlChar
unsigned char xmlChar
Definition: xmlstring.h:28

xsltSetDefaultSecurityPrefs
void xsltSetDefaultSecurityPrefs(xsltSecurityPrefsPtr sec)
Definition: security.c:150

_xsltSecurityPrefs::createDir
xsltSecurityCheck createDir
Definition: security.c:35

xsltSecurityAllow
int xsltSecurityAllow(xsltSecurityPrefsPtr sec ATTRIBUTE_UNUSED, xsltTransformContextPtr ctxt ATTRIBUTE_UNUSED, const char *value ATTRIBUTE_UNUSED)
Definition: security.c:197

GetFileAttributes
#define GetFileAttributes
Definition: winbase.h:3676

_xsltSecurityPrefs::readNet
xsltSecurityCheck readNet
Definition: security.c:36

_xmlURI
Definition: uri.h:33

stat
_CRTIMP int __cdecl stat(const char *_Filename, struct stat *_Stat)
Definition: stat.h:345

path
Definition: wbemprox_private.h:187

ATTRIBUTE_UNUSED
#define ATTRIBUTE_UNUSED
Definition: win32config.h:132

NULL
#define NULL
Definition: types.h:112

xmlFreeURI
XMLPUBFUN void XMLCALL xmlFreeURI(xmlURIPtr uri)
Definition: uri.c:1387

xmlMalloc
XMLPUBVAR xmlMallocFunc xmlMalloc
Definition: globals.h:247

XSLT_SECPREF_WRITE_NETWORK
Definition: security.h:42

XSLT_SECPREF_READ_NETWORK
Definition: security.h:41

xsltCheckWrite
int xsltCheckWrite(xsltSecurityPrefsPtr sec, xsltTransformContextPtr ctxt, const xmlChar *URL)
Definition: security.c:335

XSLT_SECPREF_WRITE_FILE
Definition: security.h:39

_xsltSecurityPrefs::createFile
xsltSecurityCheck createFile
Definition: security.c:34

_xsltSecurityPrefs
Definition: security.c:32

_xsltSecurityPrefs::writeNet
xsltSecurityCheck writeNet
Definition: security.c:37

xsltGetDefaultSecurityPrefs
xsltSecurityPrefsPtr xsltGetDefaultSecurityPrefs(void)
Definition: security.c:163

xmlStrEqual
XMLPUBFUN int XMLCALL xmlStrEqual(const xmlChar *str1, const xmlChar *str2)
Definition: xmlstring.c:159

xsltTransformError
void xsltTransformError(xsltTransformContextPtr ctxt, xsltStylesheetPtr style, xmlNodePtr node, const char *msg,...)
Definition: xsltutils.c:678

xsltSecurityOption
xsltSecurityOption
Definition: security.h:37

precomp.h

xsltInitGlobals
void xsltInitGlobals(void)
Definition: extensions.c:2263

memset
#define memset(x, y, z)
Definition: compat.h:39

xmlStrdup
XMLPUBFUN xmlChar *XMLCALL xmlStrdup(const xmlChar *cur)
Definition: xmlstring.c:66

xsltSetCtxtSecurityPrefs
int xsltSetCtxtSecurityPrefs(xsltSecurityPrefsPtr sec, xsltTransformContextPtr ctxt)
Definition: security.c:177