mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-15 23:55:03 +03:00
904fd030f9
In C++11, string data is always null-terminated[1], and can be freely modified[2]. [1] https://stackoverflow.com/questions/6077189/will-stdstring-always-be-null-terminated-in-c11 [2] https://stackoverflow.com/questions/38875623/is-it-permitted-to-modify-the-internal-stdstring-buffer-returned-by-operator
65 lines
1.4 KiB
C++
65 lines
1.4 KiB
C++
/*
|
|
* ModSecurity, http://www.modsecurity.org/
|
|
* Copyright (c) 2015 - 2020 Trustwave Holdings, Inc. (http://www.trustwave.com/)
|
|
*
|
|
* You may not use this file except in compliance with
|
|
* the License. You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* If any of the files related to licensing are missing or if you have any
|
|
* other questions related to licensing please contact Trustwave Holdings, Inc.
|
|
* directly using the email address security@modsecurity.org.
|
|
*
|
|
*/
|
|
|
|
|
|
#include "src/actions/transformations/hex_decode.h"
|
|
|
|
#include <string>
|
|
|
|
#include "modsecurity/transaction.h"
|
|
|
|
#include "modsecurity/modsecurity.h"
|
|
#include "modsecurity/transaction.h"
|
|
|
|
#include "src/utils/string.h"
|
|
|
|
|
|
namespace modsecurity {
|
|
namespace actions {
|
|
namespace transformations {
|
|
|
|
|
|
void HexDecode::execute(const Transaction *t,
|
|
const ModSecString &in,
|
|
ModSecString &out) noexcept {
|
|
out.assign(in);
|
|
auto size = inplace(reinterpret_cast<unsigned char *>(
|
|
&out[0]), out.length());
|
|
out.resize(size);
|
|
}
|
|
|
|
|
|
int HexDecode::inplace(unsigned char *data, int len) {
|
|
unsigned char *d = data;
|
|
int i, count = 0;
|
|
|
|
if ((data == NULL) || (len == 0)) {
|
|
return 0;
|
|
}
|
|
|
|
for (i = 0; i <= len - 2; i += 2) {
|
|
*d++ = utils::string::x2c(&data[i]);
|
|
count++;
|
|
}
|
|
*d = '\0';
|
|
|
|
return count;
|
|
}
|
|
|
|
|
|
} // namespace transformations
|
|
} // namespace actions
|
|
} // namespace modsecurity
|