// Copyright 2015 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #ifndef MOJO_PUBLIC_CPP_BINDINGS_LIB_VALIDATION_UTIL_H_ #define MOJO_PUBLIC_CPP_BINDINGS_LIB_VALIDATION_UTIL_H_ #include #include "mojo/public/cpp/bindings/lib/bindings_internal.h" #include "mojo/public/cpp/bindings/lib/serialization_util.h" #include "mojo/public/cpp/bindings/lib/validate_params.h" #include "mojo/public/cpp/bindings/lib/validation_context.h" #include "mojo/public/cpp/bindings/lib/validation_errors.h" #include "mojo/public/cpp/bindings/message.h" namespace mojo { namespace internal { // Checks whether decoding the pointer will overflow and produce a pointer // smaller than |offset|. bool ValidateEncodedPointer(const uint64_t* offset); template bool ValidatePointer(const Pointer& input, ValidationContext* validation_context) { bool result = ValidateEncodedPointer(&input.offset); if (!result) ReportValidationError(validation_context, VALIDATION_ERROR_ILLEGAL_POINTER); return result; } // Validates that |data| contains a valid struct header, in terms of alignment // and size (i.e., the |num_bytes| field of the header is sufficient for storing // the header itself). Besides, it checks that the memory range // [data, data + num_bytes) is not marked as occupied by other objects in // |validation_context|. On success, the memory range is marked as occupied. // Note: Does not verify |version| or that |num_bytes| is correct for the // claimed version. bool ValidateStructHeaderAndClaimMemory(const void* data, ValidationContext* validation_context); // Validates that |data| contains a valid union header, in terms of alignment // and size. If not inlined, it checks that the memory range // [data, data + num_bytes) is not marked as occupied by other objects in // |validation_context|. On success, the memory range is marked as occupied. bool ValidateUnionHeaderAndClaimMemory(const void* data, bool inlined, ValidationContext* validation_context); // Validates that the message is a request which doesn't expect a response. bool ValidateMessageIsRequestWithoutResponse( const Message* message, ValidationContext* validation_context); // Validates that the message is a request expecting a response. bool ValidateMessageIsRequestExpectingResponse( const Message* message, ValidationContext* validation_context); // Validates that the message is a response. bool ValidateMessageIsResponse(const Message* message, ValidationContext* validation_context); // Validates that the message payload is a valid struct of type ParamsType. template bool ValidateMessagePayload(const Message* message, ValidationContext* validation_context) { return ParamsType::Validate(message->payload(), validation_context); } // The following methods validate control messages defined in // interface_control_messages.mojom. bool ValidateControlRequest(const Message* message, ValidationContext* validation_context); bool ValidateControlResponse(const Message* message, ValidationContext* validation_context); // The following Validate.*NonNullable() functions validate that the given // |input| is not null/invalid. template bool ValidatePointerNonNullable(const T& input, const char* error_message, ValidationContext* validation_context) { if (input.offset) return true; ReportValidationError(validation_context, VALIDATION_ERROR_UNEXPECTED_NULL_POINTER, error_message); return false; } template bool ValidateInlinedUnionNonNullable(const T& input, const char* error_message, ValidationContext* validation_context) { if (!input.is_null()) return true; ReportValidationError(validation_context, VALIDATION_ERROR_UNEXPECTED_NULL_POINTER, error_message); return false; } bool IsHandleOrInterfaceValid(const AssociatedInterface_Data& input); bool IsHandleOrInterfaceValid(const AssociatedInterfaceRequest_Data& input); bool IsHandleOrInterfaceValid(const Interface_Data& input); bool IsHandleOrInterfaceValid(const Handle_Data& input); bool ValidateHandleOrInterfaceNonNullable( const AssociatedInterface_Data& input, const char* error_message, ValidationContext* validation_context); bool ValidateHandleOrInterfaceNonNullable( const AssociatedInterfaceRequest_Data& input, const char* error_message, ValidationContext* validation_context); bool ValidateHandleOrInterfaceNonNullable( const Interface_Data& input, const char* error_message, ValidationContext* validation_context); bool ValidateHandleOrInterfaceNonNullable( const Handle_Data& input, const char* error_message, ValidationContext* validation_context); template bool ValidateContainer(const Pointer& input, ValidationContext* validation_context, const ContainerValidateParams* validate_params) { return ValidatePointer(input, validation_context) && T::Validate(input.Get(), validation_context, validate_params); } template bool ValidateStruct(const Pointer& input, ValidationContext* validation_context) { return ValidatePointer(input, validation_context) && T::Validate(input.Get(), validation_context); } template bool ValidateInlinedUnion(const T& input, ValidationContext* validation_context) { return T::Validate(&input, validation_context, true); } template bool ValidateNonInlinedUnion(const Pointer& input, ValidationContext* validation_context) { return ValidatePointer(input, validation_context) && T::Validate(input.Get(), validation_context, false); } bool ValidateHandleOrInterface(const AssociatedInterface_Data& input, ValidationContext* validation_context); bool ValidateHandleOrInterface(const AssociatedInterfaceRequest_Data& input, ValidationContext* validation_context); bool ValidateHandleOrInterface(const Interface_Data& input, ValidationContext* validation_context); bool ValidateHandleOrInterface(const Handle_Data& input, ValidationContext* validation_context); } // namespace internal } // namespace mojo #endif // MOJO_PUBLIC_CPP_BINDINGS_LIB_VALIDATION_UTIL_H_