Message validator for network input validation. More...

#include <message_validator.h>

Collaboration diagram for kcenon::network::message_validator:

Static Public Member Functions
static bool	validate_size (size_t size, size_t max_size=message_limits::MAX_MESSAGE_SIZE) noexcept
	Validate message size against limit.

static void	validate_size_or_throw (size_t size, size_t max_size=message_limits::MAX_MESSAGE_SIZE)
	Validate and throw if size exceeds limit.

static size_t	safe_copy (void dest, size_t dest_size, const void src, size_t src_size) noexcept
	Safe buffer copy with size validation.

static size_t	safe_strcpy (char dest, size_t dest_size, const char src) noexcept
	Safe string copy with null termination.

static validation_result	validate_http_header (std::string_view header) noexcept
	Validate HTTP header.

static bool	validate_header_count (size_t count) noexcept
	Validate HTTP header count.

static bool	validate_websocket_frame (size_t payload_length, size_t max_size=message_limits::MAX_WEBSOCKET_FRAME) noexcept
	Validate WebSocket frame payload size.

static validation_result	validate_url (std::string_view url) noexcept
	Validate URL length.

static bool	contains_suspicious_pattern (std::string_view data) noexcept
	Check if data contains potential injection patterns.

static std::string	sanitize_string (std::string_view input)
	Sanitize string by removing control characters.

static size_t	safe_buffer_size (size_t requested_size, size_t max_size=message_limits::MAX_MESSAGE_SIZE) noexcept
	Calculate safe buffer size for operations.

Detailed Description

Message validator for network input validation.

Provides static methods for validating network input to prevent buffer overflow and other input-related vulnerabilities.

Thread Safety

All methods are stateless and thread-safe.

Security Considerations

Always validate input size before processing
Use safe_copy for buffer operations
Check for NULL bytes in strings from untrusted sources

Definition at line 121 of file message_validator.h.

Member Function Documentation

◆ contains_suspicious_pattern()

static bool kcenon::network::message_validator::contains_suspicious_pattern ( std::string_view data )

inlinestaticnodiscardnoexcept

Check if data contains potential injection patterns.

Basic check for common injection patterns. Should be used in conjunction with proper input sanitization.

Parameters

data	Data to check

Returns: true if suspicious pattern detected

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 288 of file message_validator.h.

                                          {
        // Check for NULL byte injection
        if (data.find('\0') != std::string_view::npos) {
            return true;
        }
 
        // Check for HTTP response splitting
        if (data.find("\r\n\r\n") != std::string_view::npos) {
            return true;
        }
 
        return false;
    }

◆ safe_buffer_size()

static size_t kcenon::network::message_validator::safe_buffer_size	(	size_t	requested_size,
		size_t	max_size = message_limits::MAX_MESSAGE_SIZE )

inlinestaticnodiscardnoexcept

Calculate safe buffer size for operations.

Returns a buffer size that is safe to use, capped at max_size.

Parameters

requested_size	Requested buffer size
max_size	Maximum allowed size

Returns: Safe buffer size

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 332 of file message_validator.h.

                                                                       {
        return std::min(requested_size, max_size);
    }

◆ safe_copy()

static size_t kcenon::network::message_validator::safe_copy	(	void *	dest,
		size_t	dest_size,
		const void *	src,
		size_t	src_size )

inlinestaticnodiscardnoexcept

Safe buffer copy with size validation.

Copies data from source to destination, ensuring no buffer overflow. Copies the minimum of dest_size and src_size bytes.

Parameters

dest	Destination buffer
dest_size	Size of destination buffer
src	Source buffer
src_size	Size of source data

Returns: Number of bytes actually copied

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 165 of file message_validator.h.

                                      {
        if (!dest || !src || dest_size == 0 || src_size == 0) {
            return 0;
        }
 
        size_t copy_size = std::min(dest_size, src_size);
        std::memcpy(dest, src, copy_size);
        return copy_size;
    }

◆ safe_strcpy()

static size_t kcenon::network::message_validator::safe_strcpy	(	char *	dest,
		size_t	dest_size,
		const char *	src )

inlinestaticnodiscardnoexcept

Safe string copy with null termination.

Parameters

dest	Destination buffer
dest_size	Size of destination buffer
src	Source string

Returns: Number of characters copied (excluding null terminator)

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 187 of file message_validator.h.

                                      {
        if (!dest || dest_size == 0 || !src) {
            return 0;
        }
 
        size_t src_len = std::strlen(src);
        size_t copy_len = std::min(dest_size - 1, src_len);
 
        std::memcpy(dest, src, copy_len);
        dest[copy_len] = '\0';
 
        return copy_len;
    }

◆ sanitize_string()

static std::string kcenon::network::message_validator::sanitize_string ( std::string_view input )

inlinestaticnodiscard

Sanitize string by removing control characters.

Parameters

input String to sanitize

Returns: Sanitized string with control characters removed

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 309 of file message_validator.h.

                                                                         {
        std::string result;
        result.reserve(input.size());
 
        for (char c : input) {
            // Keep printable ASCII and common whitespace
            if (c >= 0x20 || c == '\t' || c == '\n' || c == '\r') {
                result += c;
            }
        }
 
        return result;
    }

◆ validate_header_count()

static bool kcenon::network::message_validator::validate_header_count ( size_t count )

inlinestaticnodiscardnoexcept

Validate HTTP header count.

Parameters

count Number of headers

Returns: true if within limit

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 243 of file message_validator.h.

                                                                           {
        return count <= message_limits::MAX_HEADER_COUNT;
    }

References kcenon::network::message_limits::MAX_HEADER_COUNT.

◆ validate_http_header()

static validation_result kcenon::network::message_validator::validate_http_header ( std::string_view header )

inlinestaticnodiscardnoexcept

Validate HTTP header.

Checks for:

Size within limits
No NULL bytes
Valid header format

Parameters

header Header string to validate

Returns: validation_result indicating success or failure type

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 215 of file message_validator.h.

                                            {
        // Check size
        if (header.size() > message_limits::MAX_HEADER_SIZE) {
            return validation_result::size_exceeded;
        }
 
        // Check for NULL bytes (NULL byte injection attack)
        if (header.find('\0') != std::string_view::npos) {
            return validation_result::null_byte_detected;
        }
 
        // Check for invalid control characters (except \r\n\t)
        for (char c : header) {
            if (c < 0x20 && c != '\r' && c != '\n' && c != '\t') {
                return validation_result::invalid_character;
            }
        }
 
        return validation_result::ok;
    }

References kcenon::network::invalid_character, kcenon::network::message_limits::MAX_HEADER_SIZE, kcenon::network::null_byte_detected, kcenon::network::ok, and kcenon::network::size_exceeded.

◆ validate_size()

static bool kcenon::network::message_validator::validate_size	(	size_t	size,
		size_t	max_size = message_limits::MAX_MESSAGE_SIZE )

inlinestaticnodiscardnoexcept

Validate message size against limit.

Parameters

size	Size to validate
max_size	Maximum allowed size (default: MAX_MESSAGE_SIZE)

Returns: true if size is within limit, false otherwise

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 130 of file message_validator.h.

                                                                       {
        return size <= max_size;
    }

◆ validate_size_or_throw()

static void kcenon::network::message_validator::validate_size_or_throw	(	size_t	size,
		size_t	max_size = message_limits::MAX_MESSAGE_SIZE )

inlinestatic

Validate and throw if size exceeds limit.

Parameters

size	Size to validate
max_size	Maximum allowed size

Exceptions

std::length_error if size exceeds limit

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 143 of file message_validator.h.

                                                              {
        if (size > max_size) {
            throw std::length_error(
                "Message size " + std::to_string(size) +
                " exceeds limit " + std::to_string(max_size));
        }
    }

◆ validate_url()

static validation_result kcenon::network::message_validator::validate_url ( std::string_view url )

inlinestaticnodiscardnoexcept

Validate URL length.

Parameters

url	URL to validate

Returns: validation_result

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 266 of file message_validator.h.

                                         {
        if (url.size() > message_limits::MAX_URL_LENGTH) {
            return validation_result::size_exceeded;
        }
 
        if (url.find('\0') != std::string_view::npos) {
            return validation_result::null_byte_detected;
        }
 
        return validation_result::ok;
    }

References kcenon::network::message_limits::MAX_URL_LENGTH, kcenon::network::null_byte_detected, kcenon::network::ok, and kcenon::network::size_exceeded.

◆ validate_websocket_frame()

static bool kcenon::network::message_validator::validate_websocket_frame	(	size_t	payload_length,
		size_t	max_size = message_limits::MAX_WEBSOCKET_FRAME )

inlinestaticnodiscardnoexcept

Validate WebSocket frame payload size.

Parameters

payload_length	Payload length to validate
max_size	Maximum allowed size (default: MAX_WEBSOCKET_FRAME)

Returns: true if within limit

Examples: /home/runner/work/network_system/network_system/src/internal/utils/message_validator.h.

Definition at line 254 of file message_validator.h.

                                                                          {
        return payload_length <= max_size;
    }

The documentation for this class was generated from the following file:

src/internal/utils/message_validator.h

Static Public Member Functions

Detailed Description

Thread Safety

Security Considerations

Member Function Documentation

◆ contains_suspicious_pattern()

◆ safe_buffer_size()

◆ safe_copy()

◆ safe_strcpy()

◆ sanitize_string()

◆ validate_header_count()

◆ validate_http_header()

◆ validate_size()

◆ validate_size_or_throw()

◆ validate_url()

◆ validate_websocket_frame()