/src/openssl/crypto/getenv.c

Source
/*
 * Copyright 2018-2022 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#ifndef _GNU_SOURCE
# define _GNU_SOURCE
#endif

#include <stdlib.h>
#include "internal/cryptlib.h"
#include "internal/e_os.h"

char *ossl_safe_getenv(const char *name)
{
#if defined(_WIN32) && defined(CP_UTF8) && !defined(_WIN32_WCE)
    if (GetEnvironmentVariableW(L"OPENSSL_WIN32_UTF8", NULL, 0) != 0) {
        char *val = NULL;
        int vallen = 0;
        WCHAR *namew = NULL;
        WCHAR *valw = NULL;
        DWORD envlen = 0;
        DWORD dwFlags = MB_ERR_INVALID_CHARS;
        int rsize, fsize;
        UINT curacp;

        curacp = GetACP();

        /*
         * For the code pages listed below, dwFlags must be set to 0.
         * Otherwise, the function fails with ERROR_INVALID_FLAGS.
         */
        if (curacp == 50220 || curacp == 50221 || curacp == 50222 ||
            curacp == 50225 || curacp == 50227 || curacp == 50229 ||
            (57002 <= curacp && curacp <=57011) || curacp == 65000 ||
            curacp == 42)
            dwFlags = 0;

        /* query for buffer len */
        rsize = MultiByteToWideChar(curacp, dwFlags, name, -1, NULL, 0);
        /* if name is valid string and can be converted to wide string */
        if (rsize > 0)
            namew = _malloca(rsize * sizeof(WCHAR));

        if (NULL != namew) {
            /* convert name to wide string */
            fsize = MultiByteToWideChar(curacp, dwFlags, name, -1, namew, rsize);
            /* if conversion is ok, then determine value string size in wchars */
            if (fsize > 0)
                envlen = GetEnvironmentVariableW(namew, NULL, 0);
        }

        if (envlen > 0)
            valw = _malloca(envlen * sizeof(WCHAR));

        if (NULL != valw) {
            /* if can get env value as wide string */
            if (GetEnvironmentVariableW(namew, valw, envlen) < envlen) {
                /* determine value string size in utf-8 */
                vallen = WideCharToMultiByte(CP_UTF8, 0, valw, -1, NULL, 0,
                                             NULL, NULL);
            }
        }

        if (vallen > 0)
            val = OPENSSL_malloc(vallen);

        if (NULL != val) {
            /* convert value string from wide to utf-8 */
            if (WideCharToMultiByte(CP_UTF8, 0, valw, -1, val, vallen,
                                    NULL, NULL) == 0) {
                OPENSSL_free(val);
                val = NULL;
            }
        }

        if (NULL != namew)
            _freea(namew);

        if (NULL != valw)
            _freea(valw);

        return val;
    }
#endif

#if defined(__GLIBC__) && defined(__GLIBC_PREREQ)
# if __GLIBC_PREREQ(2, 17)
#  define SECURE_GETENV
    return secure_getenv(name);
# endif
#endif

#ifndef SECURE_GETENV
    if (OPENSSL_issetugid())
        return NULL;
    return getenv(name);
#endif
}

Coverage Report

Created: 2025-06-13 06:36

Line	Count	Source
1		/*
2		* Copyright 2018-2022 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#ifndef _GNU_SOURCE
11		# define _GNU_SOURCE
12		#endif
13
14		#include <stdlib.h>
15		#include "internal/cryptlib.h"
16		#include "internal/e_os.h"
17
18		char ossl_safe_getenv(const char name)
19	3	{
20		#if defined(_WIN32) && defined(CP_UTF8) && !defined(_WIN32_WCE)
21		if (GetEnvironmentVariableW(L"OPENSSL_WIN32_UTF8", NULL, 0) != 0) {
22		char *val = NULL;
23		int vallen = 0;
24		WCHAR *namew = NULL;
25		WCHAR *valw = NULL;
26		DWORD envlen = 0;
27		DWORD dwFlags = MB_ERR_INVALID_CHARS;
28		int rsize, fsize;
29		UINT curacp;
30
31		curacp = GetACP();
32
33		/*
34		* For the code pages listed below, dwFlags must be set to 0.
35		* Otherwise, the function fails with ERROR_INVALID_FLAGS.
36		*/
37		if (curacp == 50220 \|\| curacp == 50221 \|\| curacp == 50222 \|\|
38		curacp == 50225 \|\| curacp == 50227 \|\| curacp == 50229 \|\|
39		(57002 <= curacp && curacp <=57011) \|\| curacp == 65000 \|\|
40		curacp == 42)
41		dwFlags = 0;
42
43		/* query for buffer len */
44		rsize = MultiByteToWideChar(curacp, dwFlags, name, -1, NULL, 0);
45		/* if name is valid string and can be converted to wide string */
46		if (rsize > 0)
47		namew = _malloca(rsize * sizeof(WCHAR));
48
49		if (NULL != namew) {
50		/* convert name to wide string */
51		fsize = MultiByteToWideChar(curacp, dwFlags, name, -1, namew, rsize);
52		/* if conversion is ok, then determine value string size in wchars */
53		if (fsize > 0)
54		envlen = GetEnvironmentVariableW(namew, NULL, 0);
55		}
56
57		if (envlen > 0)
58		valw = _malloca(envlen * sizeof(WCHAR));
59
60		if (NULL != valw) {
61		/* if can get env value as wide string */
62		if (GetEnvironmentVariableW(namew, valw, envlen) < envlen) {
63		/* determine value string size in utf-8 */
64		vallen = WideCharToMultiByte(CP_UTF8, 0, valw, -1, NULL, 0,
65		NULL, NULL);
66		}
67		}
68
69		if (vallen > 0)
70		val = OPENSSL_malloc(vallen);
71
72		if (NULL != val) {
73		/* convert value string from wide to utf-8 */
74		if (WideCharToMultiByte(CP_UTF8, 0, valw, -1, val, vallen,
75		NULL, NULL) == 0) {
76		OPENSSL_free(val);
77		val = NULL;
78		}
79		}
80
81		if (NULL != namew)
82		_freea(namew);
83
84		if (NULL != valw)
85		_freea(valw);
86
87		return val;
88		}
89		#endif
90
91	3	#if defined(__GLIBC__) && defined(__GLIBC_PREREQ)
92	3	# if __GLIBC_PREREQ(2, 17)
93	3	# define SECURE_GETENV
94	3	return secure_getenv(name);
95	3	# endif
96	3	#endif
97
98		#ifndef SECURE_GETENV
99		if (OPENSSL_issetugid())
100		return NULL;
101		return getenv(name);
102		#endif
103	3	}