1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
|
/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
/*
* This file is part of the LibreOffice project.
*
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
*/
#include <comphelper/xmltools.hxx>
#include <rtl/random.h>
#include <tools/Guid.hxx>
#include <vector>
using namespace com::sun::star;
namespace
{
//Will be inside an xml comment, so can't use '-' in case '--' appears in
//output, etc. Despite what *is* legal in an xml comment, just using the
//base-64 subset to avoid pain with simplistic third-party parsers
const sal_uInt8 aChaffEncoder[] =
{
'A', 'Q', 'g', 'w', 'B', 'R', 'h', 'x',
'C', 'S', 'i', 'y', 'D', 'T', 'j', 'z',
'E', 'U', 'k', '0', 'F', 'V', 'l', '1',
'G', 'W', 'm', '2', 'H', 'X', 'n', '3',
'I', 'Y', 'o', '4', 'J', 'Z', 'p', '5',
'K', 'a', 'q', '6', 'L', 'b', 'r', '7',
'M', 'c', 's', '8', 'N', 'd', 't', '9',
'O', 'e', 'u', '+', 'P', 'f', 'v', '/',
'A', 'Q', 'g', 'w', 'B', 'R', 'h', 'x',
'C', 'S', 'i', 'y', 'D', 'T', 'j', 'z',
'E', 'U', 'k', '0', 'F', 'V', 'l', '1',
'G', 'W', 'm', '2', 'H', 'X', 'n', '3',
'I', 'Y', 'o', '4', 'J', 'Z', 'p', '5',
'K', 'a', 'q', '6', 'L', 'b', 'r', '7',
'M', 'c', 's', '8', 'N', 'd', 't', '9',
'O', 'e', 'u', '+', 'P', 'f', 'v', '/',
'A', 'Q', 'g', 'w', 'B', 'R', 'h', 'x',
'C', 'S', 'i', 'y', 'D', 'T', 'j', 'z',
'E', 'U', 'k', '0', 'F', 'V', 'l', '1',
'G', 'W', 'm', '2', 'H', 'X', 'n', '3',
'I', 'Y', 'o', '4', 'J', 'Z', 'p', '5',
'K', 'a', 'q', '6', 'L', 'b', 'r', '7',
'M', 'c', 's', '8', 'N', 'd', 't', '9',
'O', 'e', 'u', '+', 'P', 'f', 'v', '/',
'A', 'Q', 'g', 'w', 'B', 'R', 'h', 'x',
'C', 'S', 'i', 'y', 'D', 'T', 'j', 'z',
'E', 'U', 'k', '0', 'F', 'V', 'l', '1',
'G', 'W', 'm', '2', 'H', 'X', 'n', '3',
'I', 'Y', 'o', '4', 'J', 'Z', 'p', '5',
'K', 'a', 'q', '6', 'L', 'b', 'r', '7',
'M', 'c', 's', '8', 'N', 'd', 't', '9',
'O', 'e', 'u', '+', 'P', 'f', 'v', '/'
};
void encodeChaff(std::vector<sal_uInt8> &rChaff)
{
static_assert(sizeof(aChaffEncoder) == 256, "this has to cover all chars");
for (auto & elem : rChaff)
{
elem = aChaffEncoder[elem];
}
}
}
namespace comphelper::xml
{
// Generate some 'chaff' of varying length to be the body of an
// XML comment to put at the start of encrypted content to make
// document content a little less predictable.
// See SvXMLExport::addChaffWhenEncryptedStorage
OString makeXMLChaff()
{
sal_Int8 n;
(void)rtl_random_getBytes(nullptr, &n, 1);
sal_Int32 nLength = 1024+n;
// coverity[tainted_data] - 1024 deliberate random minus max -127/plus max 128
std::vector<sal_uInt8> aChaff(nLength);
(void)rtl_random_getBytes(nullptr, aChaff.data(), nLength);
encodeChaff(aChaff);
return OString(reinterpret_cast<const char*>(aChaff.data()), nLength);
}
OString generateGUIDString()
{
tools::Guid aGuid(tools::Guid::Generate);
return aGuid.getString();
}
}
/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
|