rz-bindgen/doxygen/zip__source__winzip__aes__decode_8c_source.html

 /*

   zip_source_winzip_aes_decode.c -- Winzip AES decryption routines

   Copyright (C) 2009-2021 Dieter Baron and Thomas Klausner


   This file is part of libzip, a library to manipulate ZIP archives.

   The authors can be contacted at <info@libzip.org>


   Redistribution and use in source and binary forms, with or without

   modification, are permitted provided that the following conditions

   are met:

   1. Redistributions of source code must retain the above copyright

   notice, this list of conditions and the following disclaimer.

   2. Redistributions in binary form must reproduce the above copyright

   notice, this list of conditions and the following disclaimer in

   the documentation and/or other materials provided with the

   distribution.

   3. The names of the authors may not be used to endorse or promote

   products derived from this software without specific prior

   written permission.


   THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS

   OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED

   WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

   ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY

   DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

   DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE

   GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS

   INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER

   IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR

   OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN

   IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

 */


 #include <stdlib.h>

 #include <string.h>


 #include "zipint.h"


 struct winzip_aes {

     char *password;

     zip_uint16_t encryption_method;


     zip_uint64_t data_length;

     zip_uint64_t current_position;


     zip_winzip_aes_t *aes_ctx;

     zip_error_t error;

 };


 static int decrypt_header(zip_source_t *src, struct winzip_aes *ctx);

 static void winzip_aes_free(struct winzip_aes *);

 static zip_int64_t winzip_aes_decrypt(zip_source_t *src, void *ud, void *data, zip_uint64_t len, zip_source_cmd_t cmd);

 static struct winzip_aes *winzip_aes_new(zip_uint16_t encryption_method, const char *password, zip_error_t *error);


 zip_source_t *

 zip_source_winzip_aes_decode(zip_t *za, zip_source_t *src, zip_uint16_t encryption_method, int flags, const char *password) {

     zip_source_t *s2;

     zip_stat_t st;

     zip_uint64_t aux_length;

     struct winzip_aes *ctx;


     if ((encryption_method != ZIP_EM_AES_128 && encryption_method != ZIP_EM_AES_192 && encryption_method != ZIP_EM_AES_256) || password == NULL || src == NULL) {

         zip_error_set(&za->error, ZIP_ER_INVAL, 0);

         return NULL;

     }

     if (flags & ZIP_CODEC_ENCODE) {

         zip_error_set(&za->error, ZIP_ER_ENCRNOTSUPP, 0);

         return NULL;

     }


     if (zip_source_stat(src, &st) != 0) {

         _zip_error_set_from_source(&za->error, src);

         return NULL;

     }


     aux_length = WINZIP_AES_PASSWORD_VERIFY_LENGTH + SALT_LENGTH(encryption_method) + HMAC_LENGTH;


     if ((st.valid & ZIP_STAT_COMP_SIZE) == 0 || st.comp_size < aux_length) {

         zip_error_set(&za->error, ZIP_ER_OPNOTSUPP, 0);

         return NULL;

     }


     if ((ctx = winzip_aes_new(encryption_method, password, &za->error)) == NULL) {

         return NULL;

     }


     ctx->data_length = st.comp_size - aux_length;


     if ((s2 = zip_source_layered(za, src, winzip_aes_decrypt, ctx)) == NULL) {

         winzip_aes_free(ctx);

         return NULL;

     }


     return s2;

 }


 static int

 decrypt_header(zip_source_t *src, struct winzip_aes *ctx) {

     zip_uint8_t header[WINZIP_AES_MAX_HEADER_LENGTH];

     zip_uint8_t password_verification[WINZIP_AES_PASSWORD_VERIFY_LENGTH];

     unsigned int headerlen;

     zip_int64_t n;


     headerlen = WINZIP_AES_PASSWORD_VERIFY_LENGTH + SALT_LENGTH(ctx->encryption_method);

     if ((n = zip_source_read(src, header, headerlen)) < 0) {

         _zip_error_set_from_source(&ctx->error, src);

         return -1;

     }


     if (n != headerlen) {

         zip_error_set(&ctx->error, ZIP_ER_EOF, 0);

         return -1;

     }


     if ((ctx->aes_ctx = _zip_winzip_aes_new((zip_uint8_t *)ctx->password, strlen(ctx->password), header, ctx->encryption_method, password_verification, &ctx->error)) == NULL) {

         return -1;

     }

     if (memcmp(password_verification, header + SALT_LENGTH(ctx->encryption_method), WINZIP_AES_PASSWORD_VERIFY_LENGTH) != 0) {

         _zip_winzip_aes_free(ctx->aes_ctx);

         ctx->aes_ctx = NULL;

         zip_error_set(&ctx->error, ZIP_ER_WRONGPASSWD, 0);

         return -1;

     }

     return 0;

 }


 static bool

 verify_hmac(zip_source_t *src, struct winzip_aes *ctx) {

     unsigned char computed[SHA1_LENGTH], from_file[HMAC_LENGTH];

     if (zip_source_read(src, from_file, HMAC_LENGTH) < HMAC_LENGTH) {

         _zip_error_set_from_source(&ctx->error, src);

         return false;

     }


     if (!_zip_winzip_aes_finish(ctx->aes_ctx, computed)) {

         zip_error_set(&ctx->error, ZIP_ER_INTERNAL, 0);

         return false;

     }

     _zip_winzip_aes_free(ctx->aes_ctx);

     ctx->aes_ctx = NULL;


     if (memcmp(from_file, computed, HMAC_LENGTH) != 0) {

         zip_error_set(&ctx->error, ZIP_ER_CRC, 0);

         return false;

     }


     return true;

 }


 static zip_int64_t

 winzip_aes_decrypt(zip_source_t *src, void *ud, void *data, zip_uint64_t len, zip_source_cmd_t cmd) {

     struct winzip_aes *ctx;

     zip_int64_t n;


     ctx = (struct winzip_aes *)ud;


     switch (cmd) {

     case ZIP_SOURCE_OPEN:

         if (decrypt_header(src, ctx) < 0) {

             return -1;

         }

         ctx->current_position = 0;

         return 0;


     case ZIP_SOURCE_READ:

         if (len > ctx->data_length - ctx->current_position) {

             len = ctx->data_length - ctx->current_position;

         }


         if (len == 0) {

             if (!verify_hmac(src, ctx)) {

                 return -1;

             }

             return 0;

         }


         if ((n = zip_source_read(src, data, len)) < 0) {

             _zip_error_set_from_source(&ctx->error, src);

             return -1;

         }

         ctx->current_position += (zip_uint64_t)n;


         if (!_zip_winzip_aes_decrypt(ctx->aes_ctx, (zip_uint8_t *)data, (zip_uint64_t)n)) {

             zip_error_set(&ctx->error, ZIP_ER_INTERNAL, 0);

             return -1;

         }


         return n;


     case ZIP_SOURCE_CLOSE:

         return 0;


     case ZIP_SOURCE_STAT: {

         zip_stat_t *st;


         st = (zip_stat_t *)data;


         st->encryption_method = ZIP_EM_NONE;

         st->valid |= ZIP_STAT_ENCRYPTION_METHOD;

         if (st->valid & ZIP_STAT_COMP_SIZE) {

             st->comp_size -= 12 + SALT_LENGTH(ctx->encryption_method);

         }


         return 0;

     }


     case ZIP_SOURCE_SUPPORTS:

         return zip_source_make_command_bitmap(ZIP_SOURCE_OPEN, ZIP_SOURCE_READ, ZIP_SOURCE_CLOSE, ZIP_SOURCE_STAT, ZIP_SOURCE_ERROR, ZIP_SOURCE_FREE, -1);


     case ZIP_SOURCE_ERROR:

         return zip_error_to_data(&ctx->error, data, len);


     case ZIP_SOURCE_FREE:

         winzip_aes_free(ctx);

         return 0;


     default:

         zip_error_set(&ctx->error, ZIP_ER_INVAL, 0);

         return -1;

     }

 }


 static void

 winzip_aes_free(struct winzip_aes *ctx) {

     if (ctx == NULL) {

         return;

     }


     _zip_crypto_clear(ctx->password, strlen(ctx->password));

     free(ctx->password);

     zip_error_fini(&ctx->error);

     _zip_winzip_aes_free(ctx->aes_ctx);

     free(ctx);

 }


 static struct winzip_aes *

 winzip_aes_new(zip_uint16_t encryption_method, const char *password, zip_error_t *error) {

     struct winzip_aes *ctx;


     if ((ctx = (struct winzip_aes *)malloc(sizeof(*ctx))) == NULL) {

         zip_error_set(error, ZIP_ER_MEMORY, 0);

         return NULL;

     }


     if ((ctx->password = strdup(password)) == NULL) {

         zip_error_set(error, ZIP_ER_MEMORY, 0);

         free(ctx);

         return NULL;

     }


     ctx->encryption_method = encryption_method;

     ctx->aes_ctx = NULL;


     zip_error_init(&ctx->error);


     return ctx;

 }

len
size_t len
Definition: 6502dis.c:15

src
lzma_index * src
Definition: index.h:567

s2
s2
Definition: basic-a64-instructions.s.cs:732

NULL
#define NULL
Definition: cris-opc.c:27

cmd
static static sync static getppid static getegid const char static filename char static len const char char static bufsiz static mask static vfork const void static prot static getpgrp const char static swapflags cmd
Definition: sflib.h:79

free
RZ_API void Ht_() free(HtName_(Ht) *ht)
Definition: ht_inc.c:130

ZIP_ER_INTERNAL
#define ZIP_ER_INTERNAL
Definition: zip.h:125

zip_error_set
ZIP_EXTERN void zip_error_set(zip_error_t *_Nullable, int, int)
Definition: zip_error.c:126

ZIP_ER_MEMORY
#define ZIP_ER_MEMORY
Definition: zip.h:119

zip_source_read
ZIP_EXTERN zip_int64_t zip_source_read(zip_source_t *_Nonnull, void *_Nonnull, zip_uint64_t)
Definition: zip_source_read.c:39

ZIP_EM_AES_256
#define ZIP_EM_AES_256
Definition: zip.h:192

ZIP_ER_ENCRNOTSUPP
#define ZIP_ER_ENCRNOTSUPP
Definition: zip.h:129

zip_error_init
ZIP_EXTERN void zip_error_init(zip_error_t *_Nonnull)
Definition: zip_error.c:59

zip_source_stat
ZIP_EXTERN int zip_source_stat(zip_source_t *_Nonnull, zip_stat_t *_Nonnull)
Definition: zip_source_stat.c:39

zip_source_cmd_t
enum zip_source_cmd zip_source_cmd_t
Definition: zip.h:241

ZIP_ER_WRONGPASSWD
#define ZIP_ER_WRONGPASSWD
Definition: zip.h:132

ZIP_EM_AES_192
#define ZIP_EM_AES_192
Definition: zip.h:191

ZIP_STAT_ENCRYPTION_METHOD
#define ZIP_STAT_ENCRYPTION_METHOD
Definition: zip.h:297

ZIP_STAT_COMP_SIZE
#define ZIP_STAT_COMP_SIZE
Definition: zip.h:293

ZIP_EM_NONE
#define ZIP_EM_NONE
Definition: zip.h:177

ZIP_ER_CRC
#define ZIP_ER_CRC
Definition: zip.h:112

ZIP_SOURCE_CLOSE
@ ZIP_SOURCE_CLOSE
Definition: zip.h:222

ZIP_SOURCE_READ
@ ZIP_SOURCE_READ
Definition: zip.h:221

ZIP_SOURCE_FREE
@ ZIP_SOURCE_FREE
Definition: zip.h:225

ZIP_SOURCE_SUPPORTS
@ ZIP_SOURCE_SUPPORTS
Definition: zip.h:234

ZIP_SOURCE_STAT
@ ZIP_SOURCE_STAT
Definition: zip.h:223

ZIP_SOURCE_OPEN
@ ZIP_SOURCE_OPEN
Definition: zip.h:220

ZIP_SOURCE_ERROR
@ ZIP_SOURCE_ERROR
Definition: zip.h:224

zip_error_fini
ZIP_EXTERN void zip_error_fini(zip_error_t *_Nonnull)
Definition: zip_error.c:52

ZIP_ER_INVAL
#define ZIP_ER_INVAL
Definition: zip.h:123

zip_source_make_command_bitmap
ZIP_EXTERN zip_int64_t zip_source_make_command_bitmap(zip_source_cmd_t,...)
Definition: zip_source_supports.c:47

ZIP_ER_OPNOTSUPP
#define ZIP_ER_OPNOTSUPP
Definition: zip.h:133

ZIP_ER_EOF
#define ZIP_ER_EOF
Definition: zip.h:122

zip_error_to_data
ZIP_EXTERN zip_int64_t zip_error_to_data(const zip_error_t *_Nonnull, void *_Nonnull, zip_uint64_t)
Definition: zip_error.c:141

ZIP_EM_AES_128
#define ZIP_EM_AES_128
Definition: zip.h:190

malloc
void * malloc(size_t size)
Definition: malloc.c:123

strdup
return strdup("=SP	r13\n" "=LR	r14\n" "=PC	r15\n" "=A0	r0\n" "=A1	r1\n" "=A2	r2\n" "=A3	r3\n" "=ZF	zf\n" "=SF	nf\n" "=OF	vf\n" "=CF	cf\n" "=SN	or0\n" "gpr	lr	.32	56	0\n" "gpr	pc	.32	60	0\n" "gpr	cpsr	.32	64	0	____tfiae_________________qvczn\n" "gpr	or0	.32	68	0\n" "gpr	tf	.1	64.5	0	thumb\n" "gpr	ef	.1	64.9	0	endian\n" "gpr	jf	.1	64.24	0	java\n" "gpr	qf	.1	64.27	0	sticky_overflow\n" "gpr	vf	.1	64.28	0	overflow\n" "gpr	cf	.1	64.29	0	carry\n" "gpr	zf	.1	64.30	0	zero\n" "gpr	nf	.1	64.31	0	negative\n" "gpr	itc	.4	64.10	0	if_then_count\n" "gpr	gef	.4	64.16	0	great_or_equal\n" "gpr	r0	.32	0	0\n" "gpr	r1	.32	4	0\n" "gpr	r2	.32	8	0\n" "gpr	r3	.32	12	0\n" "gpr	r4	.32	16	0\n" "gpr	r5	.32	20	0\n" "gpr	r6	.32	24	0\n" "gpr	r7	.32	28	0\n" "gpr	r8	.32	32	0\n" "gpr	r9	.32	36	0\n" "gpr	r10	.32	40	0\n" "gpr	r11	.32	44	0\n" "gpr	r12	.32	48	0\n" "gpr	r13	.32	52	0\n" "gpr	r14	.32	56	0\n" "gpr	r15	.32	60	0\n" "gpr	r16	.32	64	0\n" "gpr	r17	.32	68	0\n")

header
#define header(is_bt, len_min, ret_op)
Definition: lz_encoder_mf.c:191

n
int n
Definition: mipsasm.c:19

flags
static struct sockaddr static addrlen static backlog const void static flags void flags
Definition: sfsocketcall.h:123

_zip_winzip_aes
Definition: zip_winzip_aes.c:45

ctx
Definition: zip_algorithm_bzip2.c:40

ctx::error
zip_error_t * error
Definition: zip_algorithm_bzip2.c:41

winzip_aes
Definition: zip_source_winzip_aes_decode.c:40

winzip_aes::current_position
zip_uint64_t current_position
Definition: zip_source_winzip_aes_decode.c:45

winzip_aes::error
zip_error_t error
Definition: zip_source_winzip_aes_decode.c:48

winzip_aes::aes_ctx
zip_winzip_aes_t * aes_ctx
Definition: zip_source_winzip_aes_decode.c:47

winzip_aes::encryption_method
zip_uint16_t encryption_method
Definition: zip_source_winzip_aes_decode.c:42

winzip_aes::data
zip_uint8_t data[ZIP_MAX(WINZIP_AES_MAX_HEADER_LENGTH, SHA1_LENGTH)]
Definition: zip_source_winzip_aes_encode.c:45

winzip_aes::data_length
zip_uint64_t data_length
Definition: zip_source_winzip_aes_decode.c:44

winzip_aes::password
char * password
Definition: zip_source_winzip_aes_decode.c:41

zip_error
Definition: zip.h:284

zip_source
Definition: zipint.h:383

zip_stat
Definition: zip.h:300

zip_stat::encryption_method
zip_uint16_t encryption_method
Definition: zip.h:309

zip_stat::valid
zip_uint64_t valid
Definition: zip.h:301

zip_stat::comp_size
zip_uint64_t comp_size
Definition: zip.h:305

zip
Definition: zipint.h:278

zip::error
zip_error_t error
Definition: zipint.h:281

error
void error(const char *msg)
Definition: untgz.c:593

_zip_error_set_from_source
void _zip_error_set_from_source(zip_error_t *err, zip_source_t *src)
Definition: zip_error.c:135

zip_source_layered
zip_source_t * zip_source_layered(zip_t *za, zip_source_t *src, zip_source_layered_callback cb, void *ud)
Definition: zip_source_layered.c:41

zip_source_winzip_aes_decode
zip_source_t * zip_source_winzip_aes_decode(zip_t *za, zip_source_t *src, zip_uint16_t encryption_method, int flags, const char *password)
Definition: zip_source_winzip_aes_decode.c:59

verify_hmac
static bool verify_hmac(zip_source_t *src, struct winzip_aes *ctx)
Definition: zip_source_winzip_aes_decode.c:133

decrypt_header
static int decrypt_header(zip_source_t *src, struct winzip_aes *ctx)
Definition: zip_source_winzip_aes_decode.c:102

winzip_aes_free
static void winzip_aes_free(struct winzip_aes *)
Definition: zip_source_winzip_aes_decode.c:231

winzip_aes_new
static struct winzip_aes * winzip_aes_new(zip_uint16_t encryption_method, const char *password, zip_error_t *error)
Definition: zip_source_winzip_aes_decode.c:245

winzip_aes_decrypt
static zip_int64_t winzip_aes_decrypt(zip_source_t *src, void *ud, void *data, zip_uint64_t len, zip_source_cmd_t cmd)
Definition: zip_source_winzip_aes_decode.c:157

_zip_winzip_aes_finish
bool _zip_winzip_aes_finish(zip_winzip_aes_t *ctx, zip_uint8_t *hmac)
Definition: zip_winzip_aes.c:148

_zip_winzip_aes_free
void _zip_winzip_aes_free(zip_winzip_aes_t *ctx)
Definition: zip_winzip_aes.c:154

_zip_winzip_aes_new
zip_winzip_aes_t * _zip_winzip_aes_new(const zip_uint8_t *password, zip_uint64_t password_length, const zip_uint8_t *salt, zip_uint16_t encryption_method, zip_uint8_t *password_verify, zip_error_t *error)
Definition: zip_winzip_aes.c:78

_zip_winzip_aes_decrypt
bool _zip_winzip_aes_decrypt(zip_winzip_aes_t *ctx, zip_uint8_t *data, zip_uint64_t length)
Definition: zip_winzip_aes.c:142

zip_uint64_t
uint64_t zip_uint64_t
Definition: zipconf.h:39

zip_uint8_t
uint8_t zip_uint8_t
Definition: zipconf.h:33

zip_uint16_t
uint16_t zip_uint16_t
Definition: zipconf.h:35

zip_int64_t
int64_t zip_int64_t
Definition: zipconf.h:38

zipint.h

ZIP_CODEC_ENCODE
#define ZIP_CODEC_ENCODE
Definition: zipint.h:108

WINZIP_AES_MAX_HEADER_LENGTH
#define WINZIP_AES_MAX_HEADER_LENGTH
Definition: zipint.h:76

HMAC_LENGTH
#define HMAC_LENGTH
Definition: zipint.h:78

_zip_crypto_clear
#define _zip_crypto_clear(b, l)
Definition: zipint.h:489

WINZIP_AES_PASSWORD_VERIFY_LENGTH
#define WINZIP_AES_PASSWORD_VERIFY_LENGTH
Definition: zipint.h:75

SHA1_LENGTH
#define SHA1_LENGTH
Definition: zipint.h:79

SALT_LENGTH
#define SALT_LENGTH(method)
Definition: zipint.h:80

za
zip_t * za
Definition: ziptool.c:79