/src/postgres/src/common/base64.c

Source (jump to first uncovered line)
/*-------------------------------------------------------------------------
 *
 * base64.c
 *    Encoding and decoding routines for base64 without whitespace.
 *
 * Copyright (c) 2001-2025, PostgreSQL Global Development Group
 *
 *
 * IDENTIFICATION
 *    src/common/base64.c
 *
 *-------------------------------------------------------------------------
 */

#ifndef FRONTEND
#include "postgres.h"
#else
#include "postgres_fe.h"
#endif

#include "common/base64.h"

/*
 * BASE64
 */

static const char _base64[] =
"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";

static const int8 b64lookup[128] = {
  -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
  -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
  -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 62, -1, -1, -1, 63,
  52, 53, 54, 55, 56, 57, 58, 59, 60, 61, -1, -1, -1, -1, -1, -1,
  -1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14,
  15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, -1, -1, -1, -1, -1,
  -1, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,
  41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, -1, -1, -1, -1, -1,
};

/*
 * pg_b64_encode
 *
 * Encode the 'src' byte array into base64.  Returns the length of the encoded
 * string, and -1 in the event of an error with the result buffer zeroed for
 * safety.
 */
int
pg_b64_encode(const uint8 *src, int len, char *dst, int dstlen)
{
  char     *p;
  const uint8 *s,
         *end = src + len;
  int     pos = 2;
  uint32    buf = 0;

  s = src;
  p = dst;

  while (s < end)
  {
    buf |= *s << (pos << 3);
    pos--;
    s++;

    /* write it out */
    if (pos < 0)
    {
      /*
       * Leave if there is an overflow in the area allocated for the
       * encoded string.
       */
      if ((p - dst + 4) > dstlen)
        goto error;

      *p++ = _base64[(buf >> 18) & 0x3f];
      *p++ = _base64[(buf >> 12) & 0x3f];
      *p++ = _base64[(buf >> 6) & 0x3f];
      *p++ = _base64[buf & 0x3f];

      pos = 2;
      buf = 0;
    }
  }
  if (pos != 2)
  {
    /*
     * Leave if there is an overflow in the area allocated for the encoded
     * string.
     */
    if ((p - dst + 4) > dstlen)
      goto error;

    *p++ = _base64[(buf >> 18) & 0x3f];
    *p++ = _base64[(buf >> 12) & 0x3f];
    *p++ = (pos == 0) ? _base64[(buf >> 6) & 0x3f] : '=';
    *p++ = '=';
  }

  Assert((p - dst) <= dstlen);
  return p - dst;

error:
  memset(dst, 0, dstlen);
  return -1;
}

/*
 * pg_b64_decode
 *
 * Decode the given base64 string.  Returns the length of the decoded
 * string on success, and -1 in the event of an error with the result
 * buffer zeroed for safety.
 */
int
pg_b64_decode(const char *src, int len, uint8 *dst, int dstlen)
{
  const char *srcend = src + len,
         *s = src;
  uint8    *p = dst;
  char    c;
  int     b = 0;
  uint32    buf = 0;
  int     pos = 0,
        end = 0;

  while (s < srcend)
  {
    c = *s++;

    /* Leave if a whitespace is found */
    if (c == ' ' || c == '\t' || c == '\n' || c == '\r')
      goto error;

    if (c == '=')
    {
      /* end sequence */
      if (!end)
      {
        if (pos == 2)
          end = 1;
        else if (pos == 3)
          end = 2;
        else
        {
          /*
           * Unexpected "=" character found while decoding base64
           * sequence.
           */
          goto error;
        }
      }
      b = 0;
    }
    else
    {
      b = -1;
      if (c > 0 && c < 127)
        b = b64lookup[(unsigned char) c];
      if (b < 0)
      {
        /* invalid symbol found */
        goto error;
      }
    }
    /* add it to buffer */
    buf = (buf << 6) + b;
    pos++;
    if (pos == 4)
    {
      /*
       * Leave if there is an overflow in the area allocated for the
       * decoded string.
       */
      if ((p - dst + 1) > dstlen)
        goto error;
      *p++ = (buf >> 16) & 255;

      if (end == 0 || end > 1)
      {
        /* overflow check */
        if ((p - dst + 1) > dstlen)
          goto error;
        *p++ = (buf >> 8) & 255;
      }
      if (end == 0 || end > 2)
      {
        /* overflow check */
        if ((p - dst + 1) > dstlen)
          goto error;
        *p++ = buf & 255;
      }
      buf = 0;
      pos = 0;
    }
  }

  if (pos != 0)
  {
    /*
     * base64 end sequence is invalid.  Input data is missing padding, is
     * truncated or is otherwise corrupted.
     */
    goto error;
  }

  Assert((p - dst) <= dstlen);
  return p - dst;

error:
  memset(dst, 0, dstlen);
  return -1;
}

/*
 * pg_b64_enc_len
 *
 * Returns to caller the length of the string if it were encoded with
 * base64 based on the length provided by caller.  This is useful to
 * estimate how large a buffer allocation needs to be done before doing
 * the actual encoding.
 */
int
pg_b64_enc_len(int srclen)
{
  /* 3 bytes will be converted to 4 */
  return (srclen + 2) / 3 * 4;
}

/*
 * pg_b64_dec_len
 *
 * Returns to caller the length of the string if it were to be decoded
 * with base64, based on the length given by caller.  This is useful to
 * estimate how large a buffer allocation needs to be done before doing
 * the actual decoding.
 */
int
pg_b64_dec_len(int srclen)
{
  return (srclen * 3) >> 2;
}

Coverage Report

Created: 2025-08-12 06:43

Line	Count	Source (jump to first uncovered line)
1		/*-------------------------------------------------------------------------
2		*
3		* base64.c
4		* Encoding and decoding routines for base64 without whitespace.
5		*
6		* Copyright (c) 2001-2025, PostgreSQL Global Development Group
7		*
8		*
9		* IDENTIFICATION
10		* src/common/base64.c
11		*
12		*-------------------------------------------------------------------------
13		*/
14
15		#ifndef FRONTEND
16		#include "postgres.h"
17		#else
18		#include "postgres_fe.h"
19		#endif
20
21		#include "common/base64.h"
22
23		/*
24		* BASE64
25		*/
26
27		static const char _base64[] =
28		"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
29
30		static const int8 b64lookup[128] = {
31		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
32		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
33		-1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 62, -1, -1, -1, 63,
34		52, 53, 54, 55, 56, 57, 58, 59, 60, 61, -1, -1, -1, -1, -1, -1,
35		-1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14,
36		15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, -1, -1, -1, -1, -1,
37		-1, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,
38		41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, -1, -1, -1, -1, -1,
39		};
40
41		/*
42		* pg_b64_encode
43		*
44		* Encode the 'src' byte array into base64. Returns the length of the encoded
45		* string, and -1 in the event of an error with the result buffer zeroed for
46		* safety.
47		*/
48		int
49		pg_b64_encode(const uint8 src, int len, char dst, int dstlen)
50	0	{
51	0	char *p;
52	0	const uint8 *s,
53	0	*end = src + len;
54	0	int pos = 2;
55	0	uint32 buf = 0;
56
57	0	s = src;
58	0	p = dst;
59
60	0	while (s < end)
61	0	{
62	0	buf \|= *s << (pos << 3);
63	0	pos--;
64	0	s++;
65
66		/* write it out */
67	0	if (pos < 0)
68	0	{
69		/*
70		* Leave if there is an overflow in the area allocated for the
71		* encoded string.
72		*/
73	0	if ((p - dst + 4) > dstlen)
74	0	goto error;
75
76	0	*p++ = _base64[(buf >> 18) & 0x3f];
77	0	*p++ = _base64[(buf >> 12) & 0x3f];
78	0	*p++ = _base64[(buf >> 6) & 0x3f];
79	0	*p++ = _base64[buf & 0x3f];
80
81	0	pos = 2;
82	0	buf = 0;
83	0	}
84	0	}
85	0	if (pos != 2)
86	0	{
87		/*
88		* Leave if there is an overflow in the area allocated for the encoded
89		* string.
90		*/
91	0	if ((p - dst + 4) > dstlen)
92	0	goto error;
93
94	0	*p++ = _base64[(buf >> 18) & 0x3f];
95	0	*p++ = _base64[(buf >> 12) & 0x3f];
96	0	*p++ = (pos == 0) ? _base64[(buf >> 6) & 0x3f] : '=';
97	0	*p++ = '=';
98	0	}
99
100	0	Assert((p - dst) <= dstlen);
101	0	return p - dst;
102
103	0	error:
104	0	memset(dst, 0, dstlen);
105	0	return -1;
106	0	}
107
108		/*
109		* pg_b64_decode
110		*
111		* Decode the given base64 string. Returns the length of the decoded
112		* string on success, and -1 in the event of an error with the result
113		* buffer zeroed for safety.
114		*/
115		int
116		pg_b64_decode(const char src, int len, uint8 dst, int dstlen)
117	0	{
118	0	const char *srcend = src + len,
119	0	*s = src;
120	0	uint8 *p = dst;
121	0	char c;
122	0	int b = 0;
123	0	uint32 buf = 0;
124	0	int pos = 0,
125	0	end = 0;
126
127	0	while (s < srcend)
128	0	{
129	0	c = *s++;
130
131		/* Leave if a whitespace is found */
132	0	if (c == ' ' \|\| c == '\t' \|\| c == '\n' \|\| c == '\r')
133	0	goto error;
134
135	0	if (c == '=')
136	0	{
137		/* end sequence */
138	0	if (!end)
139	0	{
140	0	if (pos == 2)
141	0	end = 1;
142	0	else if (pos == 3)
143	0	end = 2;
144	0	else
145	0	{
146		/*
147		* Unexpected "=" character found while decoding base64
148		* sequence.
149		*/
150	0	goto error;
151	0	}
152	0	}
153	0	b = 0;
154	0	}
155	0	else
156	0	{
157	0	b = -1;
158	0	if (c > 0 && c < 127)
159	0	b = b64lookup[(unsigned char) c];
160	0	if (b < 0)
161	0	{
162		/* invalid symbol found */
163	0	goto error;
164	0	}
165	0	}
166		/* add it to buffer */
167	0	buf = (buf << 6) + b;
168	0	pos++;
169	0	if (pos == 4)
170	0	{
171		/*
172		* Leave if there is an overflow in the area allocated for the
173		* decoded string.
174		*/
175	0	if ((p - dst + 1) > dstlen)
176	0	goto error;
177	0	*p++ = (buf >> 16) & 255;
178
179	0	if (end == 0 \|\| end > 1)
180	0	{
181		/* overflow check */
182	0	if ((p - dst + 1) > dstlen)
183	0	goto error;
184	0	*p++ = (buf >> 8) & 255;
185	0	}
186	0	if (end == 0 \|\| end > 2)
187	0	{
188		/* overflow check */
189	0	if ((p - dst + 1) > dstlen)
190	0	goto error;
191	0	*p++ = buf & 255;
192	0	}
193	0	buf = 0;
194	0	pos = 0;
195	0	}
196	0	}
197
198	0	if (pos != 0)
199	0	{
200		/*
201		* base64 end sequence is invalid. Input data is missing padding, is
202		* truncated or is otherwise corrupted.
203		*/
204	0	goto error;
205	0	}
206
207	0	Assert((p - dst) <= dstlen);
208	0	return p - dst;
209
210	0	error:
211	0	memset(dst, 0, dstlen);
212	0	return -1;
213	0	}
214
215		/*
216		* pg_b64_enc_len
217		*
218		* Returns to caller the length of the string if it were encoded with
219		* base64 based on the length provided by caller. This is useful to
220		* estimate how large a buffer allocation needs to be done before doing
221		* the actual encoding.
222		*/
223		int
224		pg_b64_enc_len(int srclen)
225	0	{
226		/* 3 bytes will be converted to 4 */
227	0	return (srclen + 2) / 3 * 4;
228	0	}
229
230		/*
231		* pg_b64_dec_len
232		*
233		* Returns to caller the length of the string if it were to be decoded
234		* with base64, based on the length given by caller. This is useful to
235		* estimate how large a buffer allocation needs to be done before doing
236		* the actual decoding.
237		*/
238		int
239		pg_b64_dec_len(int srclen)
240	0	{
241	0	return (srclen * 3) >> 2;
242	0	}