GCC Code Coverage Report

Directory: cvmfs/
File: cvmfs/sanitizer.cc
Date: 2025-11-02 02:35:35
Exec Total Coverage
Lines: 69 71 97.2%
Branches: 40 49 81.6%
Line Branch Exec Source
1 /**
2 * This file is part of the CernVM File System.
3 *
4 * Provides input data sanitizer in the form of whitelist of character ranges.
5 */
6
7
8 #include "sanitizer.h"
9
10 #include <cassert>
11
12 using namespace std; // NOLINT
13
14 #ifdef CVMFS_NAMESPACE_GUARD
15 namespace CVMFS_NAMESPACE_GUARD {
16 #endif
17
18 namespace sanitizer {
19
20 40241 CharRange::CharRange(const char range_begin, const char range_end) {
21 40241 range_begin_ = range_begin;
22 40241 range_end_ = range_end;
23 40241 }
24
25
26 36226 CharRange::CharRange(const char single_char) {
27 36226 range_begin_ = range_end_ = single_char;
28 36226 }
29
30
31 464607 bool CharRange::InRange(const char c) const {
32
4/4
✓ Branch 0 taken 379981 times.
✓ Branch 1 taken 84626 times.
✓ Branch 2 taken 256164 times.
✓ Branch 3 taken 123817 times.
 464607 return (c >= range_begin_) && (c <= range_end_);
33 }
34
35
36 //------------------------------------------------------------------------------
37
38
39 35581 InputSanitizer::InputSanitizer(const string &whitelist) : max_length_(-1) {
40
1/2
✓ Branch 1 taken 35581 times.
✗ Branch 2 not taken.
 35581 InitValidRanges(whitelist);
41 35581 }
42
43
44 152 InputSanitizer::InputSanitizer(const string &whitelist, int max_length)
45 152 : max_length_(max_length) {
46
1/2
✓ Branch 1 taken 152 times.
✗ Branch 2 not taken.
 152 InitValidRanges(whitelist);
47 152 }
48
49
50 35733 void InputSanitizer::InitValidRanges(const std::string &whitelist) {
51 // Parse the whitelist
52 35733 const unsigned length = whitelist.length();
53 35733 unsigned pickup_pos = 0;
54
2/2
✓ Branch 0 taken 116708 times.
✓ Branch 1 taken 35733 times.
 152441 for (unsigned i = 0; i < length; ++i) {
55
7/8
✓ Branch 0 taken 81003 times.
✓ Branch 1 taken 35705 times.
✓ Branch 3 taken 40241 times.
✓ Branch 4 taken 40762 times.
✗ Branch 5 not taken.
✓ Branch 6 taken 40241 times.
✓ Branch 7 taken 76467 times.
✓ Branch 8 taken 40241 times.
 116708 if ((i + 1 >= length) || (whitelist[i + 1] == ' ') || (i == length - 1)) {
56
1/2
✓ Branch 1 taken 76467 times.
✗ Branch 2 not taken.
 76467 const string range = whitelist.substr(pickup_pos, i - pickup_pos + 1);
57
2/3
✓ Branch 1 taken 36226 times.
✓ Branch 2 taken 40241 times.
✗ Branch 3 not taken.
 76467 switch (range.length()) {
58 36226 case 1:
59
1/2
✓ Branch 3 taken 36226 times.
✗ Branch 4 not taken.
 36226 valid_ranges_.push_back(CharRange(range[0]));
60 36226 break;
61 40241 case 2:
62
1/2
✓ Branch 4 taken 40241 times.
✗ Branch 5 not taken.
 40241 valid_ranges_.push_back(CharRange(range[0], range[1]));
63 40241 break;
64 default:
65 assert(false);
66 }
67 76467 ++i;
68 76467 pickup_pos = i + 1;
69 76467 }
70 }
71 35733 }
72
73
74 37497 bool InputSanitizer::Sanitize(std::string::const_iterator begin,
75 std::string::const_iterator end,
76 std::string *filtered_output) const {
77 37497 int pos = 0;
78 37497 bool is_sane = true;
79
2/2
✓ Branch 2 taken 315075 times.
✓ Branch 3 taken 37385 times.
 352460 for (; begin != end; ++begin) {
80
2/2
✓ Branch 2 taken 256164 times.
✓ Branch 3 taken 58911 times.
 315075 if (CheckRanges(*begin)) {
81
4/4
✓ Branch 0 taken 1504 times.
✓ Branch 1 taken 254660 times.
✓ Branch 2 taken 112 times.
✓ Branch 3 taken 1392 times.
 256164 if ((max_length_ >= 0) && (pos >= max_length_)) {
82 112 is_sane = false;
83 112 break;
84 }
85 256052 filtered_output->push_back(*begin);
86 256052 pos++;
87 } else {
88 58911 is_sane = false;
89 }
90 }
91 37497 return is_sane;
92 }
93
94
95 315075 bool InputSanitizer::CheckRanges(const char chr) const {
96
2/2
✓ Branch 1 taken 464607 times.
✓ Branch 2 taken 58911 times.
 523518 for (unsigned j = 0; j < valid_ranges_.size(); ++j) {
97
2/2
✓ Branch 2 taken 256164 times.
✓ Branch 3 taken 208443 times.
 464607 if (valid_ranges_[j].InRange(chr)) {
98 256164 return true;
99 }
100 }
101 58911 return false;
102 }
103
104
105 924 string InputSanitizer::Filter(const std::string &input) const {
106 924 string filtered_output;
107
1/2
✓ Branch 1 taken 924 times.
✗ Branch 2 not taken.
 924 Sanitize(input, &filtered_output);
108 924 return filtered_output;
109 }
110
111
112 36629 bool InputSanitizer::IsValid(const std::string &input) const {
113 36629 string dummy;
114
1/2
✓ Branch 1 taken 36629 times.
✗ Branch 2 not taken.
 73258 return Sanitize(input, &dummy);
115 36629 }
116
117
118 1120 bool IntegerSanitizer::Sanitize(std::string::const_iterator begin,
119 std::string::const_iterator end,
120 std::string *filtered_output) const {
121
2/2
✓ Branch 1 taken 28 times.
✓ Branch 2 taken 1092 times.
 1120 if (std::distance(begin, end) == 0) {
122 28 return false;
123 }
124
125
2/2
✓ Branch 1 taken 56 times.
✓ Branch 2 taken 1036 times.
 1092 if (*begin == '-') {
126 // minus is allowed as the first character!
127 56 filtered_output->push_back('-');
128 56 begin++;
129 }
130
131 1092 return InputSanitizer::Sanitize(begin, end, filtered_output);
132 }
133
134
135 280 bool PositiveIntegerSanitizer::Sanitize(std::string::const_iterator begin,
136 std::string::const_iterator end,
137 std::string *filtered_output) const {
138
2/2
✓ Branch 1 taken 28 times.
✓ Branch 2 taken 252 times.
 280 if (std::distance(begin, end) == 0) {
139 28 return false;
140 }
141
142 252 return InputSanitizer::Sanitize(begin, end, filtered_output);
143 }
144
145 } // namespace sanitizer
146
147 #ifdef CVMFS_NAMESPACE_GUARD
148 } // namespace CVMFS_NAMESPACE_GUARD
149 #endif
150