/src/samba/source3/lib/ldap_escape.c

Source
/* 
   Unix SMB/CIFS implementation.
   ldap filter argument escaping

   Copyright (C) 1998, 1999, 2000 Luke Howard <lukeh@padl.com>,
   Copyright (C) 2003 Andrew Bartlett <abartlet@samba.org>

  
   This program is free software; you can redistribute it and/or modify
   it under the terms of the GNU General Public License as published by
   the Free Software Foundation; either version 3 of the License, or
   (at your option) any later version.
   
   This program is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU General Public License for more details.
   
   You should have received a copy of the GNU General Public License
   along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#include "includes.h"

/**
 * Escape a parameter to an LDAP filter string, so they cannot contain
 * embedded ( ) * or \ chars which may cause it not to parse correctly.
 *
 * @param s The input string
 *
 * @return A string allocated with talloc(), containing the escaped string,
 * and to be talloc_free()ed by the caller.
 **/

char *escape_ldap_string(TALLOC_CTX *mem_ctx, const char *s)
{
  size_t len = strlen(s)+1;
  char *output = talloc_array(mem_ctx, char, len);
  const char *sub;
  int i = 0;
  char *p = output;

  if (output == NULL) {
    return NULL;
  }

  while (*s)
  {
    switch (*s)
    {
    case '*':
      sub = "\\2a";
      break;
    case '(':
      sub = "\\28";
      break;
    case ')':
      sub = "\\29";
      break;
    case '\\':
      sub = "\\5c";
      break;
    default:
      sub = NULL;
      break;
    }

    if (sub) {
      char *tmp;
      len = len + 3;
      tmp = talloc_realloc(mem_ctx, output, char, len);
      if (tmp == NULL) {
        TALLOC_FREE(output);
        return NULL;
      }
      output = tmp;

      p = &output[i];
      memcpy(p, sub, 3);
      p += 3;
      i += 3;

    } else {
      *p = *s;
      p++;
      i++;
    }
    s++;
  }

  *p = '\0';
  return output;
}

char *escape_rdn_val_string_alloc(const char *s)
{
  char *output, *p;

  /* The maximum size of the escaped string can be twice the actual size */
  output = (char *)SMB_MALLOC(2*strlen(s) + 1);

  if (output == NULL) {
    return NULL;
  }

  p = output;

  while (*s)
  {
    switch (*s)
    {
    case ',':
    case '=':
    case '+':
    case '<':
    case '>':
    case '#':
    case ';':
    case '\\':
    case '\"':
      *p++ = '\\';
      *p++ = *s;
      break;
    default:
      *p = *s;
      p++;
    }

    s++;
  }

  *p = '\0';

  /* resize the string to the actual final size */
  output = (char *)SMB_REALLOC(output, strlen(output) + 1);
  return output;
}

Line	Count	Source
1		/*
2		Unix SMB/CIFS implementation.
3		ldap filter argument escaping
4
5		Copyright (C) 1998, 1999, 2000 Luke Howard <lukeh@padl.com>,
6		Copyright (C) 2003 Andrew Bartlett <abartlet@samba.org>
7
8
9		This program is free software; you can redistribute it and/or modify
10		it under the terms of the GNU General Public License as published by
11		the Free Software Foundation; either version 3 of the License, or
12		(at your option) any later version.
13
14		This program is distributed in the hope that it will be useful,
15		but WITHOUT ANY WARRANTY; without even the implied warranty of
16		MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17		GNU General Public License for more details.
18
19		You should have received a copy of the GNU General Public License
20		along with this program. If not, see <http://www.gnu.org/licenses/>.
21		*/
22
23		#include "includes.h"
24
25		/**
26		* Escape a parameter to an LDAP filter string, so they cannot contain
27		* embedded ( ) * or \ chars which may cause it not to parse correctly.
28		*
29		* @param s The input string
30		*
31		* @return A string allocated with talloc(), containing the escaped string,
32		* and to be talloc_free()ed by the caller.
33		**/
34
35		char escape_ldap_string(TALLOC_CTX mem_ctx, const char *s)
36	0	{
37	0	size_t len = strlen(s)+1;
38	0	char *output = talloc_array(mem_ctx, char, len);
39	0	const char *sub;
40	0	int i = 0;
41	0	char *p = output;
42
43	0	if (output == NULL) {
44	0	return NULL;
45	0	}
46
47	0	while (*s)
48	0	{
49	0	switch (*s)
50	0	{
51	0	case '*':
52	0	sub = "\\2a";
53	0	break;
54	0	case '(':
55	0	sub = "\\28";
56	0	break;
57	0	case ')':
58	0	sub = "\\29";
59	0	break;
60	0	case '\\':
61	0	sub = "\\5c";
62	0	break;
63	0	default:
64	0	sub = NULL;
65	0	break;
66	0	}
67
68	0	if (sub) {
69	0	char *tmp;
70	0	len = len + 3;
71	0	tmp = talloc_realloc(mem_ctx, output, char, len);
72	0	if (tmp == NULL) {
73	0	TALLOC_FREE(output);
74	0	return NULL;
75	0	}
76	0	output = tmp;
77
78	0	p = &output[i];
79	0	memcpy(p, sub, 3);
80	0	p += 3;
81	0	i += 3;
82
83	0	} else {
84	0	p = s;
85	0	p++;
86	0	i++;
87	0	}
88	0	s++;
89	0	}
90
91	0	*p = '\0';
92	0	return output;
93	0	}
94
95		char escape_rdn_val_string_alloc(const char s)
96	0	{
97	0	char output, p;
98
99		/* The maximum size of the escaped string can be twice the actual size */
100	0	output = (char )SMB_MALLOC(2strlen(s) + 1);
101
102	0	if (output == NULL) {
103	0	return NULL;
104	0	}
105
106	0	p = output;
107
108	0	while (*s)
109	0	{
110	0	switch (*s)
111	0	{
112	0	case ',':
113	0	case '=':
114	0	case '+':
115	0	case '<':
116	0	case '>':
117	0	case '#':
118	0	case ';':
119	0	case '\\':
120	0	case '\"':
121	0	*p++ = '\\';
122	0	p++ = s;
123	0	break;
124	0	default:
125	0	p = s;
126	0	p++;
127	0	}
128
129	0	s++;
130	0	}
131
132	0	*p = '\0';
133
134		/* resize the string to the actual final size */
135		output = (char *)SMB_REALLOC(output, strlen(output) + 1);
136	0	return output;
137	0	}

Coverage Report

Created: 2025-12-31 06:20