Added string sanitizers.

rakshasa · web-flow · commit cb7fb5273083 · 2025-11-17T01:33:11.000+09:00
diff --git a/src/torrent/Makefile.am b/src/torrent/Makefile.am
@@ -101,6 +101,7 @@ libtorrent_torrent_la_SOURCES = \
 	utils/scheduler.h \
 	utils/signal_bitfield.cc \
 	utils/signal_bitfield.h \
+	utils/string_manip.cc \
 	utils/string_manip.h \
 	utils/thread.cc \
 	utils/thread.h \
diff --git a/src/torrent/poll_kqueue.cc b/src/torrent/poll_kqueue.cc
@@ -17,6 +17,8 @@
 
 // TODO: Change to LOG_CONNECTION_POLL
 
+// TODO: Optimize table memory size, and add a reference to Event for direct lookup.
+
 #define LT_LOG_EVENT(log_fmt, ...)                                      \
   lt_log_print(LOG_CONNECTION_FD, "kqueue->%i : %s : " log_fmt, event->file_descriptor(), event->type_name(), __VA_ARGS__);
 
diff --git a/src/torrent/torrent.cc b/src/torrent/torrent.cc
@@ -138,7 +138,7 @@ initialize() {
 // them to finish is not required, but recommended.
 void
 cleanup() {
-  if (manager == NULL)
+  if (manager == nullptr)
     throw internal_error("torrent::cleanup() called but the library is not initialized.");
 
   // Might need to wait for the threads to finish?
@@ -148,6 +148,7 @@ cleanup() {
   thread_disk()->stop_thread_wait();
   net_thread::thread()->stop_thread_wait();
 
+  // TODO: Set these to null.
   delete thread_tracker();
   delete thread_disk();
   delete net_thread::thread();
diff --git a/src/torrent/utils/string_manip.cc b/src/torrent/utils/string_manip.cc
@@ -0,0 +1,142 @@
+#include "config.h"
+
+#include "torrent/utils/string_manip.h"
+
+namespace torrent::utils {
+
+namespace {
+
+inline char
+to_hex_char(char val, bool pos) {
+  if (pos)
+    val = (val >> 4) & 0x0F;
+  else
+    val = val & 0x0F;
+
+  if (val < 10)
+    return '0' + val;
+
+  return 'A' + (val - 10);
+}
+
+} // namespace
+
+std::string
+trim_string(const std::string& str) {
+  std::string::size_type pos{};
+  std::string::size_type end{str.length()};
+
+  while (pos != end && str[pos] >= ' ' && str[pos] <= '~')
+    pos++;
+
+  while (end != pos && str[end - 1] >= ' ' && str[end - 1] <= '~')
+    end--;
+
+  return str.substr(pos, end - pos);
+}
+
+std::string
+string_with_escape_codes(const std::string& str) {
+  std::string result;
+
+  for (auto c : str) {
+    if (c < ' ' || c > '~') {
+      result += '%' + to_hex_char(c, true) + to_hex_char(c, false);
+      continue;
+    }
+
+    result += c;
+  }
+
+  return result;
+}
+
+std::string
+sanitize_string(const std::string& str) {
+  std::string result;
+  bool        unprintable{};
+  bool        space{};
+
+  for (auto c : str) {
+    if (c < ' ' || c > '~') {
+      if (c == '\n' || c == '\r' || c == '\t') {
+        if (!space && !unprintable)
+          result += ' ';
+
+        space = true;
+        continue;
+      }
+
+      if (!unprintable)
+        result += '*';
+
+      unprintable = true;
+      space = false;
+      continue;
+    }
+
+    result += c;
+    unprintable = false;
+    space = false;
+  }
+
+  return trim_string(result);
+}
+
+std::string
+sanitize_string_with_escape_codes(const std::string& str) {
+  std::string result;
+  bool        space{};
+
+  for (auto c : str) {
+    if (c < ' ' || c > '~') {
+      if (c == '\n' || c == '\r' || c == '\t') {
+        if (!space)
+          result += ' ';
+
+        space = true;
+        continue;
+      }
+
+      result += '%' + to_hex_char(c, true) + to_hex_char(c, false);
+
+      space = false;
+      continue;
+    }
+
+    result += c;
+    space = false;
+  }
+
+  return trim_string(result);
+}
+
+std::string
+sanitize_string_with_tags(const std::string& str) {
+  bool        in_tag{};
+  std::string result;
+  std::string sanitized = sanitize_string(str);
+
+  for (auto c : sanitized) {
+    if (c == '>') {
+      in_tag = false;
+      continue;
+    }
+
+    if (in_tag || c == '<') {
+      in_tag = true;
+      continue;
+    }
+
+    result += c;
+  }
+
+  result = trim_string(result);
+
+  if (result.empty())
+    return trim_string(sanitized);
+
+  return result;
+}
+
+} // namespace torrent::utils
diff --git a/src/torrent/utils/string_manip.h b/src/torrent/utils/string_manip.h
@@ -1,84 +1,21 @@
-#ifndef LIBTORRENT_TORRENT_UTILS_STRING_H
-#define LIBTORRENT_TORRENT_UTILS_STRING_H
+#ifndef LIBTORRENT_TORRENT_UTILS_STRING_MANIP_H
+#define LIBTORRENT_TORRENT_UTILS_STRING_MANIP_H
 
 #include <string>
+#include <torrent/common.h>
 
 namespace torrent::utils {
 
-std::string
-trim_string(const std::string& str) {
-  std::string::size_type pos{};
-  std::string::size_type end{str.length()};
+// TODO: Deprecate trim_string and sanitize_string.
 
-  while (pos != end && str[pos] >= ' ' && str[pos] <= '~')
-    pos++;
+std::string trim_string(const std::string& str) LIBTORRENT_EXPORT;
 
-  while (end != pos && str[end - 1] >= ' ' && str[end - 1] <= '~')
-    end--;
+std::string string_with_escape_codes(const std::string& str) LIBTORRENT_EXPORT;
 
-  return str.substr(pos, end - pos);
-}
-
-std::string
-sanitize_string(const std::string& str) {
-  std::string result;
-  bool        unprintable{};
-  bool        space{};
-
-  for (auto c : str) {
-    if (c < ' ' || c > '~') {
-      if (c == '\n' || c == '\r' || c == '\t') {
-        if (!space && !unprintable)
-          result += ' ';
-
-        space = true;
-        continue;
-      }
-
-      if (!unprintable)
-        result += '*';
-
-      unprintable = true;
-      space = false;
-      continue;
-    }
-
-    result += c;
-    unprintable = false;
-    space = false;
-  }
-
-  return trim_string(result);
-}
-
-std::string
-sanitize_string_with_tags(const std::string& str) {
-  bool        in_tag{};
-  std::string result;
-  std::string sanitized = sanitize_string(str);
-
-  for (auto c : sanitized) {
-    if (c == '>') {
-      in_tag = false;
-      continue;
-    }
-
-    if (in_tag || c == '<') {
-      in_tag = true;
-      continue;
-    }
-
-    result += c;
-  }
-
-  result = trim_string(result);
-
-  if (result.empty())
-    return trim_string(sanitized);
-
-  return result;
-}
+std::string sanitize_string(const std::string& str) LIBTORRENT_EXPORT;
+std::string sanitize_string_with_escape_codes(const std::string& str) LIBTORRENT_EXPORT;
+std::string sanitize_string_with_tags(const std::string& str) LIBTORRENT_EXPORT;
 
 } // namespace torrent::utils
 
-#endif // LIBTORRENT_TORRENT_UTILS_STRINGSTRING
+#endif // LIBTORRENT_TORRENT_UTILS_STRING_MANIP_H
diff --git a/src/tracker/tracker_http.h b/src/tracker/tracker_http.h
@@ -50,10 +50,10 @@ class TrackerHttp : public TrackerWorker {
   net::HttpGet                       m_get;
   std::shared_ptr<std::stringstream> m_data;
 
-  bool                  m_drop_deliminator;
+  bool                  m_drop_deliminator{};
   std::string           m_current_tracker_id;
 
-  bool                  m_requested_scrape;
+  bool                  m_requested_scrape{};
   utils::SchedulerEntry m_delay_scrape;
 };
 
