/*
* Copyright (c) 2021-2024 Huawei Device Co., Ltd.
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include "netstack_common_utils.h"
#ifdef WINDOWS_PLATFORM
#include <winsock2.h>
#include <ws2tcpip.h>
#pragma comment(lib, "ws2_32.lib")
#else
#include <arpa/inet.h>
#endif
#include <algorithm>
#include <cctype>
#include <cerrno>
#include <regex>
#include <string>
#include <unistd.h>
#include <vector>
#include <fstream>
#include <sstream>
#if !defined(IOS_PLATFORM) && !defined(ANDROID_PLATFORM)
#include <filesystem>
#endif
#include "netstack_log.h"
#if !defined(WINDOWS_PLATFORM) && !defined(MAC_PLATFORM) && !defined(IOS_PLATFORM) && !defined(ANDROID_PLATFORM)
#include "netstack_apipolicy_utils.h"
#include "netstack_bundle_utils.h"
#endif
constexpr int32_t INET_OPTION_SUC = 1;
constexpr size_t MAX_DISPLAY_NUM = 2;
namespace OHOS::NetStack::CommonUtils {
const std::regex IP_PATTERN{
"((2([0-4]\\d|5[0-5])|1\\d\\d|[1-9]\\d|\\d)\\.){3}(2([0-4]\\d|5[0-5])|1\\d\\d|[1-9]\\d|\\d)"};
const std::regex IP_MASK_PATTERN{
"((2([0-4]\\d|5[0-5])|1\\d\\d|[1-9]\\d|\\d)\\.){3}(2([0-4]\\d|5[0-5])|1\\d\\d|[1-9]\\d|\\d)/"
"(3[0-2]|[1-2]\\d|\\d)"};
const std::regex IPV6_PATTERN{"([\\da-fA-F]{0,4}:){2,7}([\\da-fA-F]{0,4})"};
const std::regex IPV6_MASK_PATTERN{"([\\da-fA-F]{0,4}:){2,7}([\\da-fA-F]{0,4})/(1[0-2][0-8]|[1-9]\\d|[1-9])"};
static const std::string PROTOCOL_WSS = "wss";
std::mutex g_commonUtilsMutex;
std::vector<std::string> Split(const std::string &str, const std::string &sep)
{
std::string s = str;
std::vector<std::string> res;
while (!s.empty()) {
auto pos = s.find(sep);
if (pos == std::string::npos) {
res.emplace_back(s);
break;
}
res.emplace_back(s.substr(0, pos));
s = s.substr(pos + sep.size());
}
return res;
}
std::vector<std::string> Split(const std::string &str, const std::string &sep, size_t size)
{
std::string s = str;
std::vector<std::string> res;
while (!s.empty()) {
if (res.size() + 1 == size) {
res.emplace_back(s);
break;
}
auto pos = s.find(sep);
if (pos == std::string::npos) {
res.emplace_back(s);
break;
}
res.emplace_back(s.substr(0, pos));
s = s.substr(pos + sep.size());
}
return res;
}
std::string Strip(const std::string &str, char ch)
{
int64_t i = 0;
while (static_cast<size_t>(i) < str.size() && str[i] == ch) {
++i;
}
int64_t j = static_cast<int64_t>(str.size()) - 1;
while (j > 0 && str[j] == ch) {
--j;
}
if (i >= 0 && static_cast<size_t>(i) < str.size() && j >= 0 && static_cast<size_t>(j) < str.size() &&
j - i + 1 > 0) {
return str.substr(i, j - i + 1);
}
return "";
}
std::string ToLower(const std::string &s)
{
std::string res = s;
std::transform(res.begin(), res.end(), res.begin(), tolower);
return res;
}
std::string ToString(const std::list<std::string> &lists, char tab)
{
std::string str;
for (auto it = lists.begin(); it != lists.end(); ++it) {
if (it != lists.begin()) {
str.append(1, tab);
}
str.append(*it);
}
return str;
}
bool HasInternetPermission()
{
#ifndef OH_CORE_NETSTACK_PERMISSION_CHECK
#ifdef FUZZ_TEST
return true;
#endif
int testSock = socket(AF_INET, SOCK_STREAM, 0);
if (testSock < 0 && errno == EPERM) {
NETSTACK_LOGE("make tcp testSock failed errno is %{public}d %{public}s", errno, strerror(errno));
return false;
}
if (testSock > 0) {
close(testSock);
}
return true;
#else
constexpr int inetGroup = 40002003; // 3003 in gateway shell.
int groupNum = getgroups(0, nullptr);
if (groupNum <= 0) {
NETSTACK_LOGE("no group of INTERNET permission");
return false;
}
auto groups = (gid_t *)malloc(groupNum * sizeof(gid_t));
if (groups == nullptr) {
NETSTACK_LOGE("INTERNET permission denied by malloc");
return false;
}
groupNum = getgroups(groupNum, groups);
for (int i = 0; i < groupNum; i++) {
if (groups[i] == inetGroup) {
free(groups);
return true;
}
}
free(groups);
NETSTACK_LOGE("INTERNET permission denied by group");
return false;
#endif
}
bool IsAtomicService(std::string &bundleName)
{
#if !defined(WINDOWS_PLATFORM) && !defined(MAC_PLATFORM) && !defined(IOS_PLATFORM) && !defined(ANDROID_PLATFORM)
return BundleUtils::IsAtomicService(bundleName);
#else
return false;
#endif
}
bool IsAllowedHostname(const std::string &bundleName, const std::string &domainType, const std::string &url)
{
#if !defined(WINDOWS_PLATFORM) && !defined(MAC_PLATFORM) && !defined(IOS_PLATFORM) && !defined(ANDROID_PLATFORM)
if (bundleName.empty()) {
NETSTACK_LOGE("isAllowedHostnameForAtomicService bundleName is empty");
return true;
}
auto hostname = GetHostnameWithProtocolAndPortFromURL(url);
if (hostname.empty()) {
NETSTACK_LOGE("isAllowedHostnameForAtomicService url hostname is empty");
return true;
}
return ApiPolicyUtils::IsAllowedHostname(bundleName, domainType, hostname);
#else
return true;
#endif
}
bool EndsWith(const std::string &str, const std::string &suffix)
{
if (str.length() < suffix.length()) {
return false;
}
return str.compare(str.length() - suffix.length(), suffix.length(), suffix) == 0;
}
std::string Trim(std::string str)
{
size_t start = str.find_first_not_of(" \t\n\r");
size_t end = str.find_last_not_of(" \t\n\r");
if (start == std::string::npos || end == std::string::npos) {
return "";
} else {
return str.substr(start, end - start + 1);
}
}
bool IsMatch(const std::string &str, const std::string &patternStr)
{
if (patternStr.empty()) {
return false;
}
if (patternStr == "*") {
return true;
}
if (!IsRegexValid(patternStr)) {
NETSTACK_LOGD("Invalid pattern");
return patternStr == str;
}
std::regex pattern(ReplaceCharacters(patternStr));
bool isMacth = patternStr != "" && std::regex_match(str, pattern);
if (isMacth) {
NETSTACK_LOGD("Match patternStr");
}
return isMacth;
}
std::string InsertCharBefore(const std::string &input, const char from, const char preChar, const char nextChar)
{
std::string output = input;
char arr[] = {preChar, from};
unsigned long strSize = sizeof(arr) / sizeof(arr[0]);
std::string str(arr, strSize);
std::size_t pos = output.find(from);
std::size_t length = output.length();
while (pos <= length - 1 && pos != std::string::npos) {
char nextCharTemp = pos == length - 1 ? '\0' : output[pos + 1];
if (nextChar == '\0' || nextCharTemp == '\0' || nextCharTemp != nextChar) {
output.replace(pos, 1, str);
length += (strSize - 1);
}
pos = output.find(from, pos + strSize);
}
return output;
}
std::string ReplaceCharacters(const std::string &input)
{
std::string output = InsertCharBefore(input, '*', '.', '\0');
output = InsertCharBefore(output, '.', '\\', '*');
return output;
}
bool IsRegexValid(const std::string ®ex)
{
if (Trim(regex).empty()) {
return false;
}
return regex_match(regex, std::regex("^[a-zA-Z0-9\\-_\\.*]+$"));
}
std::string GetProtocolFromURL(const std::string &url)
{
std::string delimiter = "://";
size_t pos = url.find(delimiter);
if (pos != std::string::npos) {
return url.substr(0, pos);
}
return "";
}
std::string GetPortFromURL(const std::string &url)
{
std::string delimiter = "://";
std::string protocol = GetProtocolFromURL(url);
std::string hostname = GetHostnameFromURL(url);
size_t start = protocol.empty() ? hostname.size() : protocol.size() + delimiter.size() + hostname.size();
size_t posStart = url.find_first_of(':', start);
if (posStart == std::string::npos) {
return "";
}
size_t posEnd = std::min({url.find('/', start), url.find('?', start)});
if (posEnd == std::string::npos) {
return url.substr(posStart + 1);
}
if (posStart > posEnd) {
return "";
}
return url.substr(posStart + 1, posEnd - posStart - 1);
}
std::string GetHostnameFromURL(const std::string &url)
{
if (url.empty()) {
return "";
}
std::string delimiter = "://";
std::string tempUrl = url;
std::replace(tempUrl.begin(), tempUrl.end(), '\\', '/');
size_t posStart = tempUrl.find(delimiter);
if (posStart != std::string::npos) {
posStart += delimiter.length();
} else {
posStart = 0;
}
size_t notSlash = tempUrl.find_first_not_of('/', posStart);
if (notSlash != std::string::npos) {
posStart = notSlash;
}
size_t posEnd = std::min({ tempUrl.find(':', posStart),
tempUrl.find('/', posStart), tempUrl.find('?', posStart) });
if (posEnd != std::string::npos) {
return tempUrl.substr(posStart, posEnd - posStart);
}
return tempUrl.substr(posStart);
}
std::string GetHostnameWithProtocolAndPortFromURL(const std::string& url)
{
std::string delimiter = "://";
std::string portDelimiter = ":";
auto hostname = GetHostnameFromURL(url);
if (!hostname.empty()) {
std::string protocol = GetProtocolFromURL(url);
if (!protocol.empty()) {
hostname = protocol + delimiter + hostname;
}
if (protocol != PROTOCOL_WSS) {
std::string port = GetPortFromURL(url);
if (!port.empty()) {
hostname += portDelimiter + port;
}
}
}
return hostname;
}
bool IsExcluded(const std::string &str, const std::string &exclusions, const std::string &split)
{
if (Trim(exclusions).empty()) {
return false;
}
std::size_t start = 0;
std::size_t end = exclusions.find(split);
while (end != std::string::npos) {
if (end - start > 0 && IsMatch(str, Trim(exclusions.substr(start, end - start)))) {
return true;
}
start = end + 1;
end = exclusions.find(split, start);
}
return IsMatch(str, Trim(exclusions.substr(start)));
}
bool IsHostNameExcluded(const std::string &url, const std::string &exclusions, const std::string &split)
{
std::string hostName = GetHostnameFromURL(url);
return IsExcluded(hostName, exclusions, split);
}
bool IsValidIPV4(const std::string &ip)
{
return IsValidIP(ip, AF_INET);
}
bool IsValidIPV6(const std::string &ip)
{
return IsValidIP(ip, AF_INET6);
}
bool IsValidIP(const std::string& ip, int af)
{
if (ip.empty()) {
return false;
}
#ifdef WINDOWS_PLATFORM
if (af == AF_INET6) {
struct sockaddr_in6 sa;
return inet_pton(af, ip.c_str(), &(sa.sin6_addr)) == INET_OPTION_SUC;
} else {
struct sockaddr_in sa;
return inet_pton(af, ip.c_str(), &(sa.sin_addr)) == INET_OPTION_SUC;
}
#else
if (af == AF_INET6) {
struct in6_addr addr;
return inet_pton(af, ip.c_str(), reinterpret_cast<void *>(&addr)) == INET_OPTION_SUC;
} else {
struct in_addr addr;
return inet_pton(af, ip.c_str(), reinterpret_cast<void *>(&addr)) == INET_OPTION_SUC;
}
#endif
}
std::string MaskIpv4(std::string &maskedResult)
{
int maxDisplayNum = MAX_DISPLAY_NUM;
for (char &i : maskedResult) {
if (i == '/') {
break;
}
if (maxDisplayNum > 0) {
if (i == '.') {
maxDisplayNum--;
}
} else {
if (i != '.') {
i = '*';
}
}
}
return maskedResult;
}
std::string MaskIpv6(std::string &maskedResult)
{
size_t colonCount = 0;
for (char &i : maskedResult) {
if (i == '/') {
break;
}
if (i == ':') {
colonCount++;
}
if (colonCount >= MAX_DISPLAY_NUM) {
if (i != ':') {
i = '*';
}
}
}
return maskedResult;
}
std::string AnonymizeIp(std::string &input)
{
if (input.empty()) {
return input;
}
std::lock_guard<std::mutex> lock(g_commonUtilsMutex);
std::string maskedResult{input};
if (std::regex_match(maskedResult, IP_PATTERN) || std::regex_match(maskedResult, IP_MASK_PATTERN)) {
return MaskIpv4(maskedResult);
}
if (std::regex_match(maskedResult, IPV6_PATTERN) || std::regex_match(maskedResult, IPV6_MASK_PATTERN)) {
return MaskIpv6(maskedResult);
}
return input;
}
bool GetFileDataFromFilePath(const std::string& filePath, std::string& fileData)
{
#if !defined(IOS_PLATFORM) && !defined(ANDROID_PLATFORM)
std::error_code error;
auto path = std::filesystem::absolute(filePath, error);
if (error) {
NETSTACK_LOGE("Failed to obtain the absolute path: %{public}s", error.message().c_str());
return false;
}
std::ifstream file(path);
#else
std::ifstream file(filePath);
#endif
if (file.is_open()) {
std::stringstream buffer;
buffer << file.rdbuf();
file.close();
fileData = buffer.str();
return true;
} else {
NETSTACK_LOGE("Failed to obtain the file data stream.");
return false;
}
}
} // namespace OHOS::NetStack::CommonUtils