Coverage Report

Created: 2026-01-20 07:37

next uncovered line (L), next uncovered region (R), next uncovered branch (B)
/src/libzip/lib/zip_dirent.c
Line
Count
Source
1
/*
2
  zip_dirent.c -- read directory entry (local or central), clean dirent
3
  Copyright (C) 1999-2025 Dieter Baron and Thomas Klausner
4
5
  This file is part of libzip, a library to manipulate ZIP archives.
6
  The authors can be contacted at <info@libzip.org>
7
8
  Redistribution and use in source and binary forms, with or without
9
  modification, are permitted provided that the following conditions
10
  are met:
11
  1. Redistributions of source code must retain the above copyright
12
     notice, this list of conditions and the following disclaimer.
13
  2. Redistributions in binary form must reproduce the above copyright
14
     notice, this list of conditions and the following disclaimer in
15
     the documentation and/or other materials provided with the
16
     distribution.
17
  3. The names of the authors may not be used to endorse or promote
18
     products derived from this software without specific prior
19
     written permission.
20
21
  THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS
22
  OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
23
  WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24
  ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY
25
  DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26
  DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
27
  GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
28
  INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
29
  IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
30
  OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
31
  IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
32
*/
33
34
#include "zipint.h"
35
36
37
#include <stdio.h>
38
#include <stdlib.h>
39
#include <string.h>
40
#include <sys/types.h>
41
#include <time.h>
42
#include <zlib.h>
43
44
static zip_string_t *_zip_dirent_process_ef_utf_8(const zip_dirent_t *de, zip_uint16_t id, zip_string_t *str, bool check_consistency);
45
static zip_extra_field_t *_zip_ef_utf8(zip_uint16_t, zip_string_t *, zip_error_t *);
46
static bool _zip_dirent_process_winzip_aes(zip_dirent_t *de, zip_error_t *error);
47
48
49
void
50
0
_zip_cdir_free(zip_cdir_t *cd) {
51
0
    zip_uint64_t i;
52
53
0
    if (cd == NULL) {
54
0
        return;
55
0
    }
56
57
0
    for (i = 0; i < cd->nentry; i++)
58
0
        _zip_entry_finalize(cd->entry + i);
59
0
    free(cd->entry);
60
0
    _zip_string_free(cd->comment);
61
0
    free(cd);
62
0
}
63
64
65
zip_cdir_t *
66
0
_zip_cdir_new(zip_error_t *error) {
67
0
    zip_cdir_t *cd;
68
69
0
    if ((cd = (zip_cdir_t *)malloc(sizeof(*cd))) == NULL) {
70
0
        zip_error_set(error, ZIP_ER_MEMORY, 0);
71
0
        return NULL;
72
0
    }
73
74
0
    cd->entry = NULL;
75
0
    cd->nentry = cd->nentry_alloc = 0;
76
0
    cd->size = cd->offset = 0;
77
0
    cd->comment = NULL;
78
0
    cd->is_zip64 = false;
79
80
0
    return cd;
81
0
}
82
83
84
bool
85
0
_zip_cdir_grow(zip_cdir_t *cd, zip_uint64_t additional_entries, zip_error_t *error) {
86
0
    zip_uint64_t i;
87
88
0
    if (additional_entries == 0) {
89
0
        return true;
90
0
    }
91
92
0
    if (!ZIP_REALLOC(cd->entry, cd->nentry_alloc, additional_entries, error)) {
93
0
        return false;
94
0
    }
95
96
0
    for (i = cd->nentry; i < cd->nentry_alloc; i++) {
97
0
        _zip_entry_init(cd->entry + i);
98
0
    }
99
100
0
    cd->nentry = cd->nentry_alloc;
101
102
0
    return true;
103
0
}
104
105
106
zip_int64_t
107
0
_zip_cdir_write(zip_t *za, const zip_filelist_t *filelist, zip_uint64_t survivors) {
108
0
    zip_uint64_t offset, size;
109
0
    zip_string_t *comment;
110
0
    zip_uint8_t buf[EOCDLEN + EOCD64LEN + EOCD64LOCLEN];
111
0
    zip_buffer_t *buffer;
112
0
    zip_int64_t off;
113
0
    zip_uint64_t i;
114
0
    zip_uint32_t cdir_crc;
115
116
0
    if ((off = zip_source_tell_write(za->src)) < 0) {
117
0
        zip_error_set_from_source(&za->error, za->src);
118
0
        return -1;
119
0
    }
120
0
    offset = (zip_uint64_t)off;
121
122
0
    if (ZIP_WANT_TORRENTZIP(za)) {
123
0
        cdir_crc = (zip_uint32_t)crc32(0, NULL, 0);
124
0
        za->write_crc = &cdir_crc;
125
0
    }
126
127
0
    for (i = 0; i < survivors; i++) {
128
0
        zip_entry_t *entry = za->entry + filelist[i].idx;
129
130
0
        if (_zip_dirent_write(za, entry->changes ? entry->changes : entry->orig, ZIP_FL_CENTRAL) < 0) {
131
0
            za->write_crc = NULL;
132
0
            return -1;
133
0
        }
134
0
    }
135
136
0
    za->write_crc = NULL;
137
138
0
    if ((off = zip_source_tell_write(za->src)) < 0) {
139
0
        zip_error_set_from_source(&za->error, za->src);
140
0
        return -1;
141
0
    }
142
0
    size = (zip_uint64_t)off - offset;
143
144
0
    if ((buffer = _zip_buffer_new(buf, sizeof(buf))) == NULL) {
145
0
        zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
146
0
        return -1;
147
0
    }
148
149
0
    if (survivors > ZIP_UINT16_MAX || offset > ZIP_UINT32_MAX || size > ZIP_UINT32_MAX) {
150
0
        _zip_buffer_put(buffer, EOCD64_MAGIC, 4);
151
0
        _zip_buffer_put_64(buffer, EOCD64LEN - 12);
152
0
        _zip_buffer_put_16(buffer, 45);
153
0
        _zip_buffer_put_16(buffer, 45);
154
0
        _zip_buffer_put_32(buffer, 0);
155
0
        _zip_buffer_put_32(buffer, 0);
156
0
        _zip_buffer_put_64(buffer, survivors);
157
0
        _zip_buffer_put_64(buffer, survivors);
158
0
        _zip_buffer_put_64(buffer, size);
159
0
        _zip_buffer_put_64(buffer, offset);
160
0
        _zip_buffer_put(buffer, EOCD64LOC_MAGIC, 4);
161
0
        _zip_buffer_put_32(buffer, 0);
162
0
        _zip_buffer_put_64(buffer, offset + size);
163
0
        _zip_buffer_put_32(buffer, 1);
164
0
    }
165
166
0
    _zip_buffer_put(buffer, EOCD_MAGIC, 4);
167
0
    _zip_buffer_put_32(buffer, 0);
168
0
    _zip_buffer_put_16(buffer, (zip_uint16_t)(survivors >= ZIP_UINT16_MAX ? ZIP_UINT16_MAX : survivors));
169
0
    _zip_buffer_put_16(buffer, (zip_uint16_t)(survivors >= ZIP_UINT16_MAX ? ZIP_UINT16_MAX : survivors));
170
0
    _zip_buffer_put_32(buffer, size >= ZIP_UINT32_MAX ? ZIP_UINT32_MAX : (zip_uint32_t)size);
171
0
    _zip_buffer_put_32(buffer, offset >= ZIP_UINT32_MAX ? ZIP_UINT32_MAX : (zip_uint32_t)offset);
172
173
0
    comment = za->comment_changed ? za->comment_changes : za->comment_orig;
174
175
0
    if (ZIP_WANT_TORRENTZIP(za)) {
176
0
        _zip_buffer_put_16(buffer, TORRENTZIP_SIGNATURE_LENGTH + TORRENTZIP_CRC_LENGTH);
177
0
    }
178
0
    else {
179
0
        _zip_buffer_put_16(buffer, (zip_uint16_t)(comment ? comment->length : 0));
180
0
    }
181
182
183
0
    if (!_zip_buffer_ok(buffer)) {
184
0
        zip_error_set(&za->error, ZIP_ER_INTERNAL, 0);
185
0
        _zip_buffer_free(buffer);
186
0
        return -1;
187
0
    }
188
189
0
    if (_zip_write(za, _zip_buffer_data(buffer), _zip_buffer_offset(buffer)) < 0) {
190
0
        _zip_buffer_free(buffer);
191
0
        return -1;
192
0
    }
193
194
0
    _zip_buffer_free(buffer);
195
196
0
    if (ZIP_WANT_TORRENTZIP(za)) {
197
0
        char torrentzip_comment[TORRENTZIP_SIGNATURE_LENGTH + TORRENTZIP_CRC_LENGTH + 1];
198
0
        snprintf(torrentzip_comment, sizeof(torrentzip_comment), TORRENTZIP_SIGNATURE "%08X", cdir_crc);
199
200
0
        if (_zip_write(za, torrentzip_comment, strlen(torrentzip_comment)) < 0) {
201
0
            return -1;
202
0
        }
203
0
    }
204
0
    else if (comment != NULL) {
205
0
        if (_zip_write(za, comment->raw, comment->length) < 0) {
206
0
            return -1;
207
0
        }
208
0
    }
209
210
0
    return (zip_int64_t)size;
211
0
}
212
213
214
zip_dirent_t *
215
0
_zip_dirent_clone(const zip_dirent_t *sde) {
216
0
    zip_dirent_t *tde;
217
218
0
    if ((tde = (zip_dirent_t *)malloc(sizeof(*tde))) == NULL)
219
0
        return NULL;
220
221
0
    if (sde)
222
0
        (void)memcpy_s(tde, sizeof(*tde), sde, sizeof(*sde));
223
0
    else
224
0
        _zip_dirent_init(tde);
225
226
0
    tde->changed = 0;
227
0
    tde->cloned = 1;
228
229
0
    return tde;
230
0
}
231
232
233
void
234
0
_zip_dirent_finalize(zip_dirent_t *zde) {
235
0
    if (!zde->cloned || zde->changed & ZIP_DIRENT_FILENAME) {
236
0
        _zip_string_free(zde->filename);
237
0
        zde->filename = NULL;
238
0
    }
239
0
    if (!zde->cloned || zde->changed & ZIP_DIRENT_EXTRA_FIELD) {
240
0
        _zip_ef_free(zde->extra_fields);
241
0
        zde->extra_fields = NULL;
242
0
    }
243
0
    if (!zde->cloned || zde->changed & ZIP_DIRENT_COMMENT) {
244
0
        _zip_string_free(zde->comment);
245
0
        zde->comment = NULL;
246
0
    }
247
0
    if (!zde->cloned || zde->changed & ZIP_DIRENT_PASSWORD) {
248
0
        if (zde->password) {
249
0
            _zip_crypto_clear(zde->password, strlen(zde->password));
250
0
        }
251
0
        free(zde->password);
252
0
        zde->password = NULL;
253
0
    }
254
0
}
255
256
257
void
258
0
_zip_dirent_free(zip_dirent_t *zde) {
259
0
    if (zde == NULL)
260
0
        return;
261
262
0
    _zip_dirent_finalize(zde);
263
0
    free(zde);
264
0
}
265
266
267
bool
268
0
_zip_dirent_merge(zip_dirent_t *de, zip_dirent_t *de_orig, bool replacing_data, zip_error_t *error) {
269
0
    if (!de->cloned) {
270
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
271
0
        return false;
272
0
    }
273
274
0
    if (!(de->changed & ZIP_DIRENT_ATTRIBUTES)) {
275
0
        de->ext_attrib = de_orig->ext_attrib;
276
0
        de->int_attrib = de_orig->int_attrib;
277
0
    }
278
0
    if (!(de->changed & ZIP_DIRENT_COMMENT)) {
279
0
        de->comment = de_orig->comment;
280
0
    }
281
0
    if (!(de->changed & ZIP_DIRENT_COMP_METHOD)) {
282
0
        if (replacing_data) {
283
0
            de->comp_method = ZIP_CM_DEFAULT;
284
0
            de->compression_level = 0;
285
0
        }
286
0
        else {
287
0
            de->comp_method = de_orig->comp_method;
288
0
            de->compression_level = de_orig->compression_level;
289
0
        }
290
0
    }
291
0
    if (!(de->changed & ZIP_DIRENT_ENCRYPTION_METHOD)) {
292
0
        if (replacing_data) {
293
0
            de->encryption_method = ZIP_EM_NONE;
294
0
        }
295
0
        else {
296
0
            de->encryption_method = de_orig->encryption_method;
297
0
        }
298
0
    }
299
0
    if (!(de->changed & ZIP_DIRENT_EXTRA_FIELD)) {
300
0
        de->extra_fields = de_orig->extra_fields;
301
0
    }
302
0
    if (!(de->changed & ZIP_DIRENT_FILENAME)) {
303
0
        de->filename = de_orig->filename;
304
0
    }
305
0
    if (!(de->changed & ZIP_DIRENT_LAST_MOD)) {
306
0
        de->last_mod = de_orig->last_mod;
307
0
    }
308
0
    if (!(de->changed & ZIP_DIRENT_PASSWORD)) {
309
0
        de->password = de_orig->password;
310
0
    }
311
312
0
    return true;
313
0
}
314
315
316
void
317
0
_zip_dirent_init(zip_dirent_t *de) {
318
0
    de->changed = 0;
319
0
    de->local_extra_fields_read = 0;
320
0
    de->cloned = 0;
321
322
0
    de->crc_valid = true;
323
0
    de->last_mod_mtime_valid = false;
324
0
    de->version_madeby = 63 | (ZIP_OPSYS_DEFAULT << 8);
325
0
    de->version_needed = 10; /* 1.0 */
326
0
    de->bitflags = 0;
327
0
    de->comp_method = ZIP_CM_DEFAULT;
328
0
    de->last_mod.date = 0;
329
0
    de->last_mod.time = 0;
330
0
    de->crc = 0;
331
0
    de->comp_size = 0;
332
0
    de->uncomp_size = 0;
333
0
    de->filename = NULL;
334
0
    de->extra_fields = NULL;
335
0
    de->comment = NULL;
336
0
    de->disk_number = 0;
337
0
    de->int_attrib = 0;
338
0
    de->ext_attrib = ZIP_EXT_ATTRIB_DEFAULT;
339
0
    de->offset = 0;
340
0
    de->compression_level = 0;
341
0
    de->encryption_method = ZIP_EM_NONE;
342
0
    de->password = NULL;
343
0
}
344
345
346
bool
347
0
_zip_dirent_needs_zip64(const zip_dirent_t *de, zip_flags_t flags) {
348
0
    if (de->uncomp_size >= ZIP_UINT32_MAX || de->comp_size >= ZIP_UINT32_MAX || ((flags & ZIP_FL_CENTRAL) && de->offset >= ZIP_UINT32_MAX))
349
0
        return true;
350
351
0
    return false;
352
0
}
353
354
355
zip_dirent_t *
356
0
_zip_dirent_new(void) {
357
0
    zip_dirent_t *de;
358
359
0
    if ((de = (zip_dirent_t *)malloc(sizeof(*de))) == NULL)
360
0
        return NULL;
361
362
0
    _zip_dirent_init(de);
363
0
    return de;
364
0
}
365
366
367
/*
368
   Fills the zip directory entry zde.
369
370
   If buffer is non-NULL, data is taken from there; otherwise data is read from fp as needed.
371
372
   If local is true, it reads a local header instead of a central directory entry.
373
374
   Returns size of dirent read if successful. On error, error is filled in and -1 is returned.
375
*/
376
377
zip_int64_t
378
0
_zip_dirent_read(zip_dirent_t *zde, zip_source_t *src, zip_buffer_t *buffer, bool local, zip_uint64_t central_compressed_size, bool check_consistency, zip_error_t *error) {
379
0
    zip_uint8_t buf[CDENTRYSIZE];
380
0
    zip_uint32_t size, variable_size;
381
0
    zip_uint16_t filename_len, comment_len, ef_len;
382
0
    zip_string_t *utf8_string;
383
0
    bool is_zip64 = false;
384
385
0
    bool from_buffer = (buffer != NULL);
386
387
0
    size = local ? LENTRYSIZE : CDENTRYSIZE;
388
389
0
    if (buffer) {
390
0
        if (_zip_buffer_left(buffer) < size) {
391
0
            zip_error_set(error, ZIP_ER_NOZIP, 0);
392
0
            return -1;
393
0
        }
394
0
    }
395
0
    else {
396
0
        if ((buffer = _zip_buffer_new_from_source(src, size, buf, error)) == NULL) {
397
0
            return -1;
398
0
        }
399
0
    }
400
401
0
    if (memcmp(_zip_buffer_get(buffer, 4), (local ? LOCAL_MAGIC : CENTRAL_MAGIC), 4) != 0) {
402
0
        zip_error_set(error, ZIP_ER_NOZIP, 0);
403
0
        if (!from_buffer) {
404
0
            _zip_buffer_free(buffer);
405
0
        }
406
0
        return -1;
407
0
    }
408
409
    /* convert buffercontents to zip_dirent */
410
411
0
    _zip_dirent_init(zde);
412
0
    if (!local)
413
0
        zde->version_madeby = _zip_buffer_get_16(buffer);
414
0
    else
415
0
        zde->version_madeby = 0;
416
0
    zde->version_needed = _zip_buffer_get_16(buffer);
417
0
    zde->bitflags = _zip_buffer_get_16(buffer);
418
0
    zde->comp_method = _zip_buffer_get_16(buffer);
419
420
    /* convert to time_t */
421
0
    zde->last_mod.time = _zip_buffer_get_16(buffer);
422
0
    zde->last_mod.date = _zip_buffer_get_16(buffer);
423
424
0
    zde->crc = _zip_buffer_get_32(buffer);
425
0
    zde->comp_size = _zip_buffer_get_32(buffer);
426
0
    zde->uncomp_size = _zip_buffer_get_32(buffer);
427
428
0
    filename_len = _zip_buffer_get_16(buffer);
429
0
    ef_len = _zip_buffer_get_16(buffer);
430
431
0
    if (local) {
432
0
        comment_len = 0;
433
0
        zde->disk_number = 0;
434
0
        zde->int_attrib = 0;
435
0
        zde->ext_attrib = 0;
436
0
        zde->offset = 0;
437
0
    }
438
0
    else {
439
0
        comment_len = _zip_buffer_get_16(buffer);
440
0
        zde->disk_number = _zip_buffer_get_16(buffer);
441
0
        zde->int_attrib = _zip_buffer_get_16(buffer);
442
0
        zde->ext_attrib = _zip_buffer_get_32(buffer);
443
0
        zde->offset = _zip_buffer_get_32(buffer);
444
0
    }
445
446
0
    if (!_zip_buffer_ok(buffer)) {
447
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
448
0
        if (!from_buffer) {
449
0
            _zip_buffer_free(buffer);
450
0
        }
451
0
        return -1;
452
0
    }
453
454
0
    if (zde->bitflags & ZIP_GPBF_ENCRYPTED) {
455
0
        if (zde->bitflags & ZIP_GPBF_STRONG_ENCRYPTION) {
456
            /* TODO */
457
0
            zde->encryption_method = ZIP_EM_UNKNOWN;
458
0
        }
459
0
        else {
460
0
            zde->encryption_method = ZIP_EM_TRAD_PKWARE;
461
0
        }
462
0
    }
463
0
    else {
464
0
        zde->encryption_method = ZIP_EM_NONE;
465
0
    }
466
467
0
    zde->filename = NULL;
468
0
    zde->extra_fields = NULL;
469
0
    zde->comment = NULL;
470
471
0
    variable_size = (zip_uint32_t)filename_len + (zip_uint32_t)ef_len + (zip_uint32_t)comment_len;
472
473
0
    if (from_buffer) {
474
0
        if (_zip_buffer_left(buffer) < variable_size) {
475
0
            zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_VARIABLE_SIZE_OVERFLOW);
476
0
            return -1;
477
0
        }
478
0
    }
479
0
    else {
480
0
        _zip_buffer_free(buffer);
481
482
0
        if ((buffer = _zip_buffer_new_from_source(src, variable_size, NULL, error)) == NULL) {
483
0
            return -1;
484
0
        }
485
0
    }
486
487
0
    if (filename_len) {
488
0
        zde->filename = _zip_read_string(buffer, src, filename_len, 1, error);
489
0
        if (zde->filename == NULL) {
490
0
            if (zip_error_code_zip(error) == ZIP_ER_EOF) {
491
0
                zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_VARIABLE_SIZE_OVERFLOW);
492
0
            }
493
0
            if (!from_buffer) {
494
0
                _zip_buffer_free(buffer);
495
0
            }
496
0
            return -1;
497
0
        }
498
499
0
        if (zde->bitflags & ZIP_GPBF_ENCODING_UTF_8) {
500
0
            if (_zip_guess_encoding(zde->filename, ZIP_ENCODING_UTF8_KNOWN) == ZIP_ENCODING_ERROR) {
501
0
                zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_INVALID_UTF8_IN_FILENAME);
502
0
                if (!from_buffer) {
503
0
                    _zip_buffer_free(buffer);
504
0
                }
505
0
                return -1;
506
0
            }
507
0
        }
508
509
0
        if (check_consistency) {
510
0
            zip_uint8_t *p;
511
512
0
            for (p = zde->filename->raw; p < zde->filename->raw + zde->filename->length; p++) {
513
0
                if (*p == 0) {
514
0
                    zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_NUL_IN_FILENAME);
515
0
                    if (!from_buffer) {
516
0
                        _zip_buffer_free(buffer);
517
0
                    }
518
0
                    return -1;
519
0
                }
520
0
            }
521
0
        }
522
0
    }
523
524
0
    if (ef_len) {
525
0
        zip_uint8_t *ef = _zip_read_data(buffer, src, ef_len, 0, error);
526
527
0
        if (ef == NULL) {
528
0
            if (!from_buffer) {
529
0
                _zip_buffer_free(buffer);
530
0
            }
531
0
            return -1;
532
0
        }
533
0
        if (!_zip_ef_parse(ef, ef_len, local ? ZIP_EF_LOCAL : ZIP_EF_CENTRAL, &zde->extra_fields, error)) {
534
0
            free(ef);
535
0
            if (!from_buffer) {
536
0
                _zip_buffer_free(buffer);
537
0
            }
538
0
            return -1;
539
0
        }
540
0
        free(ef);
541
0
        if (local)
542
0
            zde->local_extra_fields_read = 1;
543
0
    }
544
545
0
    if (comment_len) {
546
0
        zde->comment = _zip_read_string(buffer, src, comment_len, 0, error);
547
0
        if (zde->comment == NULL) {
548
0
            if (!from_buffer) {
549
0
                _zip_buffer_free(buffer);
550
0
            }
551
0
            return -1;
552
0
        }
553
0
        if (zde->bitflags & ZIP_GPBF_ENCODING_UTF_8) {
554
0
            if (_zip_guess_encoding(zde->comment, ZIP_ENCODING_UTF8_KNOWN) == ZIP_ENCODING_ERROR) {
555
0
                zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_INVALID_UTF8_IN_COMMENT);
556
0
                if (!from_buffer) {
557
0
                    _zip_buffer_free(buffer);
558
0
                }
559
0
                return -1;
560
0
            }
561
0
        }
562
0
    }
563
564
0
    if ((utf8_string = _zip_dirent_process_ef_utf_8(zde, ZIP_EF_UTF_8_NAME, zde->filename, check_consistency)) == NULL && zde->filename != NULL) {
565
0
        zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_UTF8_FILENAME_MISMATCH);
566
0
        if (!from_buffer) {
567
0
            _zip_buffer_free(buffer);
568
0
        }
569
0
        return -1;
570
0
    }
571
0
    zde->filename = utf8_string;
572
0
    if (!local) {
573
0
        if ((utf8_string = _zip_dirent_process_ef_utf_8(zde, ZIP_EF_UTF_8_COMMENT, zde->comment, check_consistency)) == NULL && zde->comment != NULL) {
574
0
            zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_UTF8_COMMENT_MISMATCH);
575
0
            if (!from_buffer) {
576
0
                _zip_buffer_free(buffer);
577
0
            }
578
0
            return -1;
579
0
        }
580
0
        zde->comment = utf8_string;
581
0
    }
582
583
    /* Zip64 */
584
585
0
    if (zde->uncomp_size == ZIP_UINT32_MAX || zde->comp_size == ZIP_UINT32_MAX || zde->offset == ZIP_UINT32_MAX) {
586
0
        zip_uint16_t got_len;
587
0
        const zip_uint8_t *ef = _zip_ef_get_by_id(zde->extra_fields, &got_len, ZIP_EF_ZIP64, 0, local ? ZIP_EF_LOCAL : ZIP_EF_CENTRAL, error);
588
0
        if (ef != NULL) {
589
0
            if (!zip_dirent_process_ef_zip64(zde, ef, got_len, local, error)) {
590
0
                if (!from_buffer) {
591
0
                    _zip_buffer_free(buffer);
592
0
                }
593
0
                return -1;
594
0
            }
595
0
        }
596
0
        is_zip64 = true;
597
0
    }
598
599
600
0
    if (!_zip_buffer_ok(buffer)) {
601
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
602
0
        if (!from_buffer) {
603
0
            _zip_buffer_free(buffer);
604
0
        }
605
0
        return -1;
606
0
    }
607
608
0
    if (!from_buffer) {
609
0
        _zip_buffer_free(buffer);
610
0
    }
611
612
0
    if (local && zde->bitflags & ZIP_GPBF_DATA_DESCRIPTOR) {
613
0
        zip_uint32_t df_crc;
614
0
        zip_uint64_t df_comp_size, df_uncomp_size;
615
0
        if (zip_source_seek(src, central_compressed_size, SEEK_CUR) != 0 || (buffer = _zip_buffer_new_from_source(src, MAX_DATA_DESCRIPTOR_LENGTH, buf, error)) == NULL) {
616
0
            return -1;
617
0
        }
618
0
        if (memcmp(_zip_buffer_peek(buffer, MAGIC_LEN), DATADES_MAGIC, MAGIC_LEN) == 0) {
619
0
            _zip_buffer_skip(buffer, MAGIC_LEN);
620
0
        }
621
0
        df_crc = _zip_buffer_get_32(buffer);
622
0
        df_comp_size = is_zip64 ? _zip_buffer_get_64(buffer) : _zip_buffer_get_32(buffer);
623
0
        df_uncomp_size = is_zip64 ? _zip_buffer_get_64(buffer) : _zip_buffer_get_32(buffer);
624
625
0
        if (!_zip_buffer_ok(buffer)) {
626
0
            zip_error_set(error, ZIP_ER_INTERNAL, 0);
627
0
            _zip_buffer_free(buffer);
628
0
            return -1;
629
0
        }
630
0
        _zip_buffer_free(buffer);
631
632
0
        if ((zde->crc != 0 && zde->crc != df_crc) || (zde->comp_size != 0 && zde->comp_size != df_comp_size) || (zde->uncomp_size != 0 && zde->uncomp_size != df_uncomp_size)) {
633
0
            zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_DATA_DESCRIPTOR_MISMATCH);
634
0
            return -1;
635
0
        }
636
0
        zde->crc = df_crc;
637
0
        zde->comp_size = df_comp_size;
638
0
        zde->uncomp_size = df_uncomp_size;
639
0
    }
640
641
    /* zip_source_seek / zip_source_tell don't support values > ZIP_INT64_MAX */
642
0
    if (zde->offset > ZIP_INT64_MAX) {
643
0
        zip_error_set(error, ZIP_ER_SEEK, EFBIG);
644
0
        return -1;
645
0
    }
646
647
0
    if (!_zip_dirent_process_winzip_aes(zde, error)) {
648
0
        return -1;
649
0
    }
650
651
0
    zde->extra_fields = _zip_ef_remove_internal(zde->extra_fields);
652
653
0
    return (zip_int64_t)size + (zip_int64_t)variable_size;
654
0
}
655
656
bool
657
0
zip_dirent_process_ef_zip64(zip_dirent_t *zde, const zip_uint8_t *ef, zip_uint64_t got_len, bool local, zip_error_t *error) {
658
0
    zip_buffer_t *ef_buffer;
659
660
0
    if ((ef_buffer = _zip_buffer_new((zip_uint8_t *)ef, got_len)) == NULL) {
661
0
        zip_error_set(error, ZIP_ER_MEMORY, 0);
662
0
        return false;
663
0
    }
664
665
0
    if (zde->uncomp_size == ZIP_UINT32_MAX) {
666
0
        zde->uncomp_size = _zip_buffer_get_64(ef_buffer);
667
0
    }
668
0
    else if (local) {
669
        /* From appnote.txt: This entry in the Local header MUST
670
           include BOTH original and compressed file size fields. */
671
0
        (void)_zip_buffer_skip(ef_buffer, 8); /* error is caught by _zip_buffer_eof() call */
672
0
    }
673
0
    if (zde->comp_size == ZIP_UINT32_MAX) {
674
0
        zde->comp_size = _zip_buffer_get_64(ef_buffer);
675
0
    }
676
0
    if (!local) {
677
0
        if (zde->offset == ZIP_UINT32_MAX) {
678
0
            zde->offset = _zip_buffer_get_64(ef_buffer);
679
0
        }
680
0
        if (zde->disk_number == ZIP_UINT16_MAX) {
681
0
            zde->disk_number = _zip_buffer_get_32(ef_buffer);
682
0
        }
683
0
    }
684
685
0
    if (!_zip_buffer_eof(ef_buffer)) {
686
        /* accept additional fields if values match */
687
0
        bool ok = true;
688
0
        switch (got_len) {
689
0
        case 28:
690
0
            _zip_buffer_set_offset(ef_buffer, 24);
691
0
            if (zde->disk_number != _zip_buffer_get_32(ef_buffer)) {
692
0
                ok = false;
693
0
            }
694
            /* fallthrough */
695
0
        case 24:
696
0
            _zip_buffer_set_offset(ef_buffer, 0);
697
0
            if ((zde->uncomp_size != _zip_buffer_get_64(ef_buffer)) || (zde->comp_size != _zip_buffer_get_64(ef_buffer)) || (zde->offset != _zip_buffer_get_64(ef_buffer))) {
698
0
                ok = false;
699
0
            }
700
0
            break;
701
702
0
        default:
703
0
            ok = false;
704
0
        }
705
0
        if (!ok) {
706
0
            zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_INVALID_ZIP64_EF);
707
0
            _zip_buffer_free(ef_buffer);
708
0
            return false;
709
0
        }
710
0
    }
711
0
    _zip_buffer_free(ef_buffer);
712
713
0
    return true;
714
0
}
715
716
717
static zip_string_t *
718
0
_zip_dirent_process_ef_utf_8(const zip_dirent_t *de, zip_uint16_t id, zip_string_t *str, bool check_consistency) {
719
0
    zip_uint16_t ef_len;
720
0
    zip_uint32_t ef_crc;
721
0
    zip_buffer_t *buffer;
722
723
0
    const zip_uint8_t *ef = _zip_ef_get_by_id(de->extra_fields, &ef_len, id, 0, ZIP_EF_BOTH, NULL);
724
725
0
    if (ef == NULL || ef_len < 5 || ef[0] != 1) {
726
0
        return str;
727
0
    }
728
729
0
    if ((buffer = _zip_buffer_new((zip_uint8_t *)ef, ef_len)) == NULL) {
730
0
        return str;
731
0
    }
732
733
0
    _zip_buffer_get_8(buffer);
734
0
    ef_crc = _zip_buffer_get_32(buffer);
735
736
0
    if (_zip_string_crc32(str) == ef_crc) {
737
0
        zip_uint16_t len = (zip_uint16_t)_zip_buffer_left(buffer);
738
0
        zip_string_t *ef_str = _zip_string_new(_zip_buffer_get(buffer, len), len, ZIP_FL_ENC_UTF_8, NULL);
739
740
0
        if (ef_str != NULL) {
741
0
            if (check_consistency) {
742
0
                if (!_zip_string_equal(str, ef_str) && _zip_string_is_ascii(ef_str)) {
743
0
                    _zip_string_free(ef_str);
744
0
                    _zip_buffer_free(buffer);
745
0
                    return NULL;
746
0
                }
747
0
            }
748
749
0
            _zip_string_free(str);
750
0
            str = ef_str;
751
0
        }
752
0
    }
753
754
0
    _zip_buffer_free(buffer);
755
756
0
    return str;
757
0
}
758
759
760
static bool
761
0
_zip_dirent_process_winzip_aes(zip_dirent_t *de, zip_error_t *error) {
762
0
    zip_uint16_t ef_len;
763
0
    zip_buffer_t *buffer;
764
0
    const zip_uint8_t *ef;
765
0
    bool crc_valid;
766
0
    zip_uint16_t enc_method;
767
768
769
0
    if (de->comp_method != ZIP_CM_WINZIP_AES) {
770
0
        return true;
771
0
    }
772
773
0
    ef = _zip_ef_get_by_id(de->extra_fields, &ef_len, ZIP_EF_WINZIP_AES, 0, ZIP_EF_BOTH, NULL);
774
775
0
    if (ef == NULL || ef_len < 7) {
776
0
        zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_INVALID_WINZIPAES_EF);
777
0
        return false;
778
0
    }
779
780
0
    if ((buffer = _zip_buffer_new((zip_uint8_t *)ef, ef_len)) == NULL) {
781
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
782
0
        return false;
783
0
    }
784
785
    /* version */
786
787
0
    crc_valid = true;
788
0
    switch (_zip_buffer_get_16(buffer)) {
789
0
    case 1:
790
0
        break;
791
792
0
    case 2:
793
0
        crc_valid = false;
794
        /* TODO: When checking consistency, check that crc is 0. */
795
0
        break;
796
797
0
    default:
798
0
        zip_error_set(error, ZIP_ER_ENCRNOTSUPP, 0);
799
0
        _zip_buffer_free(buffer);
800
0
        return false;
801
0
    }
802
803
    /* vendor */
804
0
    if (memcmp(_zip_buffer_get(buffer, 2), "AE", 2) != 0) {
805
0
        zip_error_set(error, ZIP_ER_ENCRNOTSUPP, 0);
806
0
        _zip_buffer_free(buffer);
807
0
        return false;
808
0
    }
809
810
    /* mode */
811
0
    switch (_zip_buffer_get_8(buffer)) {
812
0
    case 1:
813
0
        enc_method = ZIP_EM_AES_128;
814
0
        break;
815
0
    case 2:
816
0
        enc_method = ZIP_EM_AES_192;
817
0
        break;
818
0
    case 3:
819
0
        enc_method = ZIP_EM_AES_256;
820
0
        break;
821
0
    default:
822
0
        zip_error_set(error, ZIP_ER_ENCRNOTSUPP, 0);
823
0
        _zip_buffer_free(buffer);
824
0
        return false;
825
0
    }
826
827
0
    if (ef_len != 7) {
828
0
        zip_error_set(error, ZIP_ER_INCONS, ZIP_ER_DETAIL_INVALID_WINZIPAES_EF);
829
0
        _zip_buffer_free(buffer);
830
0
        return false;
831
0
    }
832
833
0
    de->crc_valid = crc_valid;
834
0
    de->encryption_method = enc_method;
835
0
    de->comp_method = _zip_buffer_get_16(buffer);
836
837
0
    _zip_buffer_free(buffer);
838
0
    return true;
839
0
}
840
841
842
zip_int32_t
843
0
_zip_dirent_size(zip_source_t *src, zip_uint16_t flags, zip_error_t *error) {
844
0
    zip_int32_t size;
845
0
    bool local = (flags & ZIP_EF_LOCAL) != 0;
846
0
    int i;
847
0
    zip_uint8_t b[6];
848
0
    zip_buffer_t *buffer;
849
850
0
    size = local ? LENTRYSIZE : CDENTRYSIZE;
851
852
0
    if (zip_source_seek(src, local ? 26 : 28, SEEK_CUR) < 0) {
853
0
        zip_error_set_from_source(error, src);
854
0
        return -1;
855
0
    }
856
857
0
    if ((buffer = _zip_buffer_new_from_source(src, local ? 4 : 6, b, error)) == NULL) {
858
0
        return -1;
859
0
    }
860
861
0
    for (i = 0; i < (local ? 2 : 3); i++) {
862
0
        size += _zip_buffer_get_16(buffer);
863
0
    }
864
865
0
    if (!_zip_buffer_eof(buffer)) {
866
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
867
0
        _zip_buffer_free(buffer);
868
0
        return -1;
869
0
    }
870
871
0
    _zip_buffer_free(buffer);
872
0
    return size;
873
0
}
874
875
876
/* _zip_dirent_write
877
   Writes zip directory entry.
878
879
   If flags & ZIP_EF_LOCAL, it writes a local header instead of a central
880
   directory entry.  If flags & ZIP_EF_FORCE_ZIP64, a ZIP64 extra field is written, even if not needed.
881
882
   Returns 0 if successful, 1 if successful and wrote ZIP64 extra field. On error, error is filled in and -1 is
883
   returned.
884
*/
885
886
int
887
0
_zip_dirent_write(zip_t *za, zip_dirent_t *de, zip_flags_t flags) {
888
0
    zip_dostime_t dostime;
889
0
    zip_encoding_type_t com_enc, name_enc;
890
0
    zip_extra_field_t *ef;
891
0
    zip_extra_field_t *ef64;
892
0
    zip_uint32_t ef_total_size;
893
0
    bool is_zip64;
894
0
    bool is_really_zip64;
895
0
    bool is_winzip_aes;
896
0
    zip_uint8_t buf[CDENTRYSIZE];
897
0
    zip_buffer_t *buffer;
898
899
0
    ef = NULL;
900
901
0
    name_enc = _zip_guess_encoding(de->filename, ZIP_ENCODING_UNKNOWN);
902
0
    com_enc = _zip_guess_encoding(de->comment, ZIP_ENCODING_UNKNOWN);
903
904
0
    if ((name_enc == ZIP_ENCODING_UTF8_KNOWN && com_enc == ZIP_ENCODING_ASCII) || (name_enc == ZIP_ENCODING_ASCII && com_enc == ZIP_ENCODING_UTF8_KNOWN) || (name_enc == ZIP_ENCODING_UTF8_KNOWN && com_enc == ZIP_ENCODING_UTF8_KNOWN))
905
0
        de->bitflags |= ZIP_GPBF_ENCODING_UTF_8;
906
0
    else {
907
0
        de->bitflags &= (zip_uint16_t)~ZIP_GPBF_ENCODING_UTF_8;
908
0
        if (name_enc == ZIP_ENCODING_UTF8_KNOWN) {
909
0
            ef = _zip_ef_utf8(ZIP_EF_UTF_8_NAME, de->filename, &za->error);
910
0
            if (ef == NULL)
911
0
                return -1;
912
0
        }
913
0
        if ((flags & ZIP_FL_LOCAL) == 0 && com_enc == ZIP_ENCODING_UTF8_KNOWN) {
914
0
            zip_extra_field_t *ef2 = _zip_ef_utf8(ZIP_EF_UTF_8_COMMENT, de->comment, &za->error);
915
0
            if (ef2 == NULL) {
916
0
                _zip_ef_free(ef);
917
0
                return -1;
918
0
            }
919
0
            ef2->next = ef;
920
0
            ef = ef2;
921
0
        }
922
0
    }
923
924
0
    if (de->encryption_method == ZIP_EM_NONE) {
925
0
        de->bitflags &= (zip_uint16_t)~ZIP_GPBF_ENCRYPTED;
926
0
    }
927
0
    else {
928
0
        de->bitflags |= (zip_uint16_t)ZIP_GPBF_ENCRYPTED;
929
0
    }
930
931
0
    is_really_zip64 = _zip_dirent_needs_zip64(de, flags);
932
0
    is_zip64 = (flags & (ZIP_FL_LOCAL | ZIP_FL_FORCE_ZIP64)) == (ZIP_FL_LOCAL | ZIP_FL_FORCE_ZIP64) || is_really_zip64;
933
0
    is_winzip_aes = de->encryption_method == ZIP_EM_AES_128 || de->encryption_method == ZIP_EM_AES_192 || de->encryption_method == ZIP_EM_AES_256;
934
935
0
    if (is_zip64) {
936
0
        zip_uint8_t ef_zip64[EFZIP64SIZE];
937
0
        zip_buffer_t *ef_buffer = _zip_buffer_new(ef_zip64, sizeof(ef_zip64));
938
0
        if (ef_buffer == NULL) {
939
0
            zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
940
0
            _zip_ef_free(ef);
941
0
            return -1;
942
0
        }
943
944
0
        if (flags & ZIP_FL_LOCAL) {
945
0
            if ((flags & ZIP_FL_FORCE_ZIP64) || de->comp_size > ZIP_UINT32_MAX || de->uncomp_size > ZIP_UINT32_MAX) {
946
0
                _zip_buffer_put_64(ef_buffer, de->uncomp_size);
947
0
                _zip_buffer_put_64(ef_buffer, de->comp_size);
948
0
            }
949
0
        }
950
0
        else {
951
0
            if ((flags & ZIP_FL_FORCE_ZIP64) || de->comp_size > ZIP_UINT32_MAX || de->uncomp_size > ZIP_UINT32_MAX || de->offset > ZIP_UINT32_MAX) {
952
0
                if (de->uncomp_size >= ZIP_UINT32_MAX) {
953
0
                    _zip_buffer_put_64(ef_buffer, de->uncomp_size);
954
0
                }
955
0
                if (de->comp_size >= ZIP_UINT32_MAX) {
956
0
                    _zip_buffer_put_64(ef_buffer, de->comp_size);
957
0
                }
958
0
                if (de->offset >= ZIP_UINT32_MAX) {
959
0
                    _zip_buffer_put_64(ef_buffer, de->offset);
960
0
                }
961
0
            }
962
0
        }
963
964
0
        if (!_zip_buffer_ok(ef_buffer)) {
965
0
            zip_error_set(&za->error, ZIP_ER_INTERNAL, 0);
966
0
            _zip_buffer_free(ef_buffer);
967
0
            _zip_ef_free(ef);
968
0
            return -1;
969
0
        }
970
971
0
        ef64 = _zip_ef_new(ZIP_EF_ZIP64, (zip_uint16_t)(_zip_buffer_offset(ef_buffer)), ef_zip64, ZIP_EF_BOTH);
972
0
        _zip_buffer_free(ef_buffer);
973
0
        if (ef64 == NULL) {
974
0
            zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
975
0
            _zip_ef_free(ef);
976
0
            return -1;
977
0
        }
978
0
        ef64->next = ef;
979
0
        ef = ef64;
980
0
    }
981
982
0
    if (is_winzip_aes) {
983
0
        zip_uint8_t data[EF_WINZIP_AES_SIZE];
984
0
        zip_buffer_t *ef_buffer = _zip_buffer_new(data, sizeof(data));
985
0
        zip_extra_field_t *ef_winzip;
986
987
0
        if (ef_buffer == NULL) {
988
0
            zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
989
0
            _zip_ef_free(ef);
990
0
            return -1;
991
0
        }
992
993
0
        _zip_buffer_put_16(ef_buffer, 2);
994
0
        _zip_buffer_put(ef_buffer, "AE", 2);
995
0
        _zip_buffer_put_8(ef_buffer, (zip_uint8_t)(de->encryption_method & 0xff));
996
0
        _zip_buffer_put_16(ef_buffer, (zip_uint16_t)de->comp_method);
997
998
0
        if (!_zip_buffer_ok(ef_buffer)) {
999
0
            zip_error_set(&za->error, ZIP_ER_INTERNAL, 0);
1000
0
            _zip_buffer_free(ef_buffer);
1001
0
            _zip_ef_free(ef);
1002
0
            return -1;
1003
0
        }
1004
1005
0
        ef_winzip = _zip_ef_new(ZIP_EF_WINZIP_AES, EF_WINZIP_AES_SIZE, data, ZIP_EF_BOTH);
1006
0
        _zip_buffer_free(ef_buffer);
1007
0
        if (ef_winzip == NULL) {
1008
0
            zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
1009
0
            _zip_ef_free(ef);
1010
0
            return -1;
1011
0
        }
1012
0
        ef_winzip->next = ef;
1013
0
        ef = ef_winzip;
1014
0
    }
1015
1016
0
    if ((buffer = _zip_buffer_new(buf, sizeof(buf))) == NULL) {
1017
0
        zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
1018
0
        _zip_ef_free(ef);
1019
0
        return -1;
1020
0
    }
1021
1022
0
    _zip_buffer_put(buffer, (flags & ZIP_FL_LOCAL) ? LOCAL_MAGIC : CENTRAL_MAGIC, 4);
1023
1024
0
    if ((flags & ZIP_FL_LOCAL) == 0) {
1025
0
        _zip_buffer_put_16(buffer, de->version_madeby);
1026
0
    }
1027
0
    _zip_buffer_put_16(buffer, ZIP_MAX(is_really_zip64 ? 45 : 0, de->version_needed));
1028
0
    _zip_buffer_put_16(buffer, de->bitflags);
1029
0
    if (is_winzip_aes) {
1030
0
        _zip_buffer_put_16(buffer, ZIP_CM_WINZIP_AES);
1031
0
    }
1032
0
    else {
1033
0
        _zip_buffer_put_16(buffer, (zip_uint16_t)ZIP_CM_ACTUAL(de->comp_method));
1034
0
    }
1035
1036
0
    if (ZIP_WANT_TORRENTZIP(za)) {
1037
0
        dostime.time = 0xbc00;
1038
0
        dostime.date = 0x2198;
1039
0
    }
1040
0
    else {
1041
0
        dostime = de->last_mod;
1042
0
    }
1043
0
    _zip_buffer_put_16(buffer, dostime.time);
1044
0
    _zip_buffer_put_16(buffer, dostime.date);
1045
1046
0
    if (is_winzip_aes && de->uncomp_size < 20) {
1047
0
        _zip_buffer_put_32(buffer, 0);
1048
0
    }
1049
0
    else {
1050
0
        _zip_buffer_put_32(buffer, de->crc);
1051
0
    }
1052
1053
0
    if (((flags & ZIP_FL_LOCAL) == ZIP_FL_LOCAL) && ((de->comp_size >= ZIP_UINT32_MAX) || (de->uncomp_size >= ZIP_UINT32_MAX))) {
1054
        /* In local headers, if a ZIP64 EF is written, it MUST contain
1055
         * both compressed and uncompressed sizes (even if one of the
1056
         * two is smaller than 0xFFFFFFFF); on the other hand, those
1057
         * may only appear when the corresponding standard entry is
1058
         * 0xFFFFFFFF.  (appnote.txt 4.5.3) */
1059
0
        _zip_buffer_put_32(buffer, ZIP_UINT32_MAX);
1060
0
        _zip_buffer_put_32(buffer, ZIP_UINT32_MAX);
1061
0
    }
1062
0
    else {
1063
0
        if (de->comp_size < ZIP_UINT32_MAX) {
1064
0
            _zip_buffer_put_32(buffer, (zip_uint32_t)de->comp_size);
1065
0
        }
1066
0
        else {
1067
0
            _zip_buffer_put_32(buffer, ZIP_UINT32_MAX);
1068
0
        }
1069
0
        if (de->uncomp_size < ZIP_UINT32_MAX) {
1070
0
            _zip_buffer_put_32(buffer, (zip_uint32_t)de->uncomp_size);
1071
0
        }
1072
0
        else {
1073
0
            _zip_buffer_put_32(buffer, ZIP_UINT32_MAX);
1074
0
        }
1075
0
    }
1076
1077
0
    _zip_buffer_put_16(buffer, _zip_string_length(de->filename));
1078
0
    ef_total_size = (zip_uint32_t)_zip_ef_size(ef, ZIP_EF_BOTH);
1079
0
    if (!ZIP_WANT_TORRENTZIP(za)) {
1080
        /* TODO: check for overflow */
1081
0
        ef_total_size += (zip_uint32_t)_zip_ef_size(de->extra_fields, flags);
1082
0
    }
1083
0
    _zip_buffer_put_16(buffer, (zip_uint16_t)ef_total_size);
1084
1085
0
    if ((flags & ZIP_FL_LOCAL) == 0) {
1086
0
        _zip_buffer_put_16(buffer, ZIP_WANT_TORRENTZIP(za) ? 0 : _zip_string_length(de->comment));
1087
0
        _zip_buffer_put_16(buffer, (zip_uint16_t)de->disk_number);
1088
0
        _zip_buffer_put_16(buffer, de->int_attrib);
1089
0
        _zip_buffer_put_32(buffer, de->ext_attrib);
1090
0
        if (de->offset < ZIP_UINT32_MAX)
1091
0
            _zip_buffer_put_32(buffer, (zip_uint32_t)de->offset);
1092
0
        else
1093
0
            _zip_buffer_put_32(buffer, ZIP_UINT32_MAX);
1094
0
    }
1095
1096
0
    if (!_zip_buffer_ok(buffer)) {
1097
0
        zip_error_set(&za->error, ZIP_ER_INTERNAL, 0);
1098
0
        _zip_buffer_free(buffer);
1099
0
        _zip_ef_free(ef);
1100
0
        return -1;
1101
0
    }
1102
1103
0
    if (_zip_write(za, buf, _zip_buffer_offset(buffer)) < 0) {
1104
0
        _zip_buffer_free(buffer);
1105
0
        _zip_ef_free(ef);
1106
0
        return -1;
1107
0
    }
1108
1109
0
    _zip_buffer_free(buffer);
1110
1111
0
    if (de->filename) {
1112
0
        if (_zip_string_write(za, de->filename) < 0) {
1113
0
            _zip_ef_free(ef);
1114
0
            return -1;
1115
0
        }
1116
0
    }
1117
1118
0
    if (ef) {
1119
0
        if (_zip_ef_write(za, ef, ZIP_EF_BOTH) < 0) {
1120
0
            _zip_ef_free(ef);
1121
0
            return -1;
1122
0
        }
1123
0
    }
1124
0
    _zip_ef_free(ef);
1125
0
    if (de->extra_fields && !ZIP_WANT_TORRENTZIP(za)) {
1126
0
        if (_zip_ef_write(za, de->extra_fields, flags) < 0) {
1127
0
            return -1;
1128
0
        }
1129
0
    }
1130
1131
0
    if ((flags & ZIP_FL_LOCAL) == 0 && !ZIP_WANT_TORRENTZIP(za)) {
1132
0
        if (de->comment) {
1133
0
            if (_zip_string_write(za, de->comment) < 0) {
1134
0
                return -1;
1135
0
            }
1136
0
        }
1137
0
    }
1138
1139
1140
0
    return is_zip64;
1141
0
}
1142
1143
1144
time_t
1145
0
_zip_d2u_time(const zip_dostime_t *dtime) {
1146
0
    struct tm tm;
1147
1148
0
    memset(&tm, 0, sizeof(tm));
1149
1150
    /* let mktime decide if DST is in effect */
1151
0
    tm.tm_isdst = -1;
1152
1153
0
    tm.tm_year = ((dtime->date >> 9) & 127) + 1980 - 1900;
1154
0
    tm.tm_mon = ((dtime->date >> 5) & 15) - 1;
1155
0
    tm.tm_mday = dtime->date & 31;
1156
1157
0
    tm.tm_hour = (dtime->time >> 11) & 31;
1158
0
    tm.tm_min = (dtime->time >> 5) & 63;
1159
0
    tm.tm_sec = (dtime->time << 1) & 62;
1160
1161
0
    return mktime(&tm);
1162
0
}
1163
1164
1165
static zip_extra_field_t *
1166
0
_zip_ef_utf8(zip_uint16_t id, zip_string_t *str, zip_error_t *error) {
1167
0
    const zip_uint8_t *raw;
1168
0
    zip_uint32_t len;
1169
0
    zip_buffer_t *buffer;
1170
0
    zip_extra_field_t *ef;
1171
1172
0
    if ((raw = _zip_string_get(str, &len, ZIP_FL_ENC_RAW, NULL)) == NULL) {
1173
        /* error already set */
1174
0
        return NULL;
1175
0
    }
1176
1177
0
    if (len + 5 > ZIP_UINT16_MAX) {
1178
0
        zip_error_set(error, ZIP_ER_INVAL, 0); /* TODO: better error code? */
1179
0
        return NULL;
1180
0
    }
1181
1182
0
    if ((buffer = _zip_buffer_new(NULL, len + 5)) == NULL) {
1183
0
        zip_error_set(error, ZIP_ER_MEMORY, 0);
1184
0
        return NULL;
1185
0
    }
1186
1187
0
    _zip_buffer_put_8(buffer, 1);
1188
0
    _zip_buffer_put_32(buffer, _zip_string_crc32(str));
1189
0
    _zip_buffer_put(buffer, raw, len);
1190
1191
0
    if (!_zip_buffer_ok(buffer)) {
1192
0
        zip_error_set(error, ZIP_ER_INTERNAL, 0);
1193
0
        _zip_buffer_free(buffer);
1194
0
        return NULL;
1195
0
    }
1196
1197
0
    ef = _zip_ef_new(id, (zip_uint16_t)(_zip_buffer_offset(buffer)), _zip_buffer_data(buffer), ZIP_EF_BOTH);
1198
0
    _zip_buffer_free(buffer);
1199
1200
0
    return ef;
1201
0
}
1202
1203
1204
zip_dirent_t *
1205
0
_zip_get_dirent(zip_t *za, zip_uint64_t idx, zip_flags_t flags, zip_error_t *error) {
1206
0
    if (error == NULL)
1207
0
        error = &za->error;
1208
1209
0
    if (idx >= za->nentry) {
1210
0
        zip_error_set(error, ZIP_ER_INVAL, 0);
1211
0
        return NULL;
1212
0
    }
1213
1214
0
    if ((flags & ZIP_FL_UNCHANGED) || za->entry[idx].changes == NULL) {
1215
0
        if (za->entry[idx].orig == NULL) {
1216
0
            zip_error_set(error, ZIP_ER_INVAL, 0);
1217
0
            return NULL;
1218
0
        }
1219
0
        if (za->entry[idx].deleted && (flags & ZIP_FL_UNCHANGED) == 0) {
1220
0
            zip_error_set(error, ZIP_ER_DELETED, 0);
1221
0
            return NULL;
1222
0
        }
1223
0
        return za->entry[idx].orig;
1224
0
    }
1225
0
    else
1226
0
        return za->entry[idx].changes;
1227
0
}
1228
1229
1230
int
1231
0
_zip_u2d_time(time_t intime, zip_dostime_t *dtime, zip_error_t *ze) {
1232
0
    struct tm *tpm;
1233
0
    struct tm tm;
1234
0
    tpm = zip_localtime(&intime, &tm);
1235
0
    if (tpm == NULL) {
1236
        /* if localtime fails, return an arbitrary date (1980-01-01 00:00:00) */
1237
0
        dtime->date = (1 << 5) + 1;
1238
0
        dtime->time = 0;
1239
0
        if (ze) {
1240
0
            zip_error_set(ze, ZIP_ER_INVAL, errno);
1241
0
        }
1242
0
        return -1;
1243
0
    }
1244
0
    if (tpm->tm_year < 80) {
1245
0
        tpm->tm_year = 80;
1246
0
    }
1247
1248
0
    dtime->date = (zip_uint16_t)(((tpm->tm_year + 1900 - 1980) << 9) + ((tpm->tm_mon + 1) << 5) + tpm->tm_mday);
1249
0
    dtime->time = (zip_uint16_t)(((tpm->tm_hour) << 11) + ((tpm->tm_min) << 5) + ((tpm->tm_sec) >> 1));
1250
1251
0
    return 0;
1252
0
}
1253
1254
1255
bool
1256
0
_zip_dirent_apply_attributes(zip_dirent_t *de, zip_file_attributes_t *attributes, bool force_zip64) {
1257
0
    zip_uint16_t length;
1258
0
    bool has_changed = false;
1259
0
    zip_uint16_t version_madeby, version_needed;
1260
1261
0
    if (attributes->valid & ZIP_FILE_ATTRIBUTES_GENERAL_PURPOSE_BIT_FLAGS) {
1262
0
        zip_uint16_t mask = attributes->general_purpose_bit_mask & ZIP_FILE_ATTRIBUTES_GENERAL_PURPOSE_BIT_FLAGS_ALLOWED_MASK;
1263
0
        zip_uint16_t bitflags = (de->bitflags & ~mask) | (attributes->general_purpose_bit_flags & mask);
1264
0
        if (de->bitflags != bitflags) {
1265
0
            de->bitflags = bitflags;
1266
0
            has_changed = true;
1267
0
        }
1268
0
    }
1269
0
    if (attributes->valid & ZIP_FILE_ATTRIBUTES_ASCII) {
1270
0
        zip_uint16_t int_attrib = (de->int_attrib & ~0x1) | (attributes->ascii ? 1 : 0);
1271
0
        if (de->int_attrib != int_attrib) {
1272
0
            de->int_attrib = int_attrib;
1273
0
            has_changed = true;
1274
0
        }
1275
0
    }
1276
    /* manually set attributes are preferred over attributes provided by source */
1277
0
    if ((de->changed & ZIP_DIRENT_ATTRIBUTES) == 0 && (attributes->valid & ZIP_FILE_ATTRIBUTES_EXTERNAL_FILE_ATTRIBUTES)) {
1278
0
        if (de->ext_attrib != attributes->external_file_attributes) {
1279
0
            de->ext_attrib = attributes->external_file_attributes;
1280
0
            has_changed = true;
1281
0
        }
1282
0
    }
1283
1284
0
    if (de->comp_method == ZIP_CM_LZMA) {
1285
0
        version_needed = 63;
1286
0
    }
1287
0
    else if (de->encryption_method == ZIP_EM_AES_128 || de->encryption_method == ZIP_EM_AES_192 || de->encryption_method == ZIP_EM_AES_256) {
1288
0
        version_needed = 51;
1289
0
    }
1290
0
    else if (de->comp_method == ZIP_CM_BZIP2) {
1291
0
        version_needed = 46;
1292
0
    }
1293
0
    else if (force_zip64 || _zip_dirent_needs_zip64(de, 0)) {
1294
0
        version_needed = 45;
1295
0
    }
1296
0
    else if (de->comp_method == ZIP_CM_DEFLATE || de->encryption_method == ZIP_EM_TRAD_PKWARE) {
1297
0
        version_needed = 20;
1298
0
    }
1299
0
    else if ((length = _zip_string_length(de->filename)) > 0 && de->filename->raw[length - 1] == '/') {
1300
0
        version_needed = 20;
1301
0
    }
1302
0
    else {
1303
0
        version_needed = 10;
1304
0
    }
1305
1306
0
    if (attributes->valid & ZIP_FILE_ATTRIBUTES_VERSION_NEEDED) {
1307
0
        version_needed = ZIP_MAX(version_needed, attributes->version_needed);
1308
0
    }
1309
1310
0
    if (de->version_needed != version_needed) {
1311
0
        de->version_needed = version_needed;
1312
0
        has_changed = true;
1313
0
    }
1314
1315
0
    version_madeby = 63 | (de->version_madeby & 0xff00);
1316
0
    if ((de->changed & ZIP_DIRENT_ATTRIBUTES) == 0 && (attributes->valid & ZIP_FILE_ATTRIBUTES_HOST_SYSTEM)) {
1317
0
        version_madeby = (version_madeby & 0xff) | (zip_uint16_t)(attributes->host_system << 8);
1318
0
    }
1319
0
    if (de->version_madeby != version_madeby) {
1320
0
        de->version_madeby = version_madeby;
1321
0
        has_changed = true;
1322
0
    }
1323
1324
0
    return has_changed;
1325
0
}
1326
1327
1328
/* _zip_dirent_torrent_normalize(de);
1329
   Set values suitable for torrentzip.
1330
*/
1331
1332
void
1333
0
zip_dirent_torrentzip_normalize(zip_dirent_t *de) {
1334
0
    de->version_madeby = 0;
1335
0
    de->version_needed = 20; /* 2.0 */
1336
0
    de->bitflags = 2;        /* maximum compression */
1337
0
    de->comp_method = ZIP_CM_DEFLATE;
1338
0
    de->compression_level = TORRENTZIP_COMPRESSION_FLAGS;
1339
0
    de->disk_number = 0;
1340
0
    de->int_attrib = 0;
1341
0
    de->ext_attrib = 0;
1342
1343
    /* last_mod, extra_fields, and comment are normalized in zip_dirent_write() directly */
1344
0
}
1345
1346
int
1347
0
zip_dirent_check_consistency(zip_dirent_t *dirent) {
1348
0
    if (dirent->comp_method == ZIP_CM_STORE) {
1349
0
        zip_uint64_t header_size = 0;
1350
0
        switch (dirent->encryption_method) {
1351
0
        case ZIP_EM_NONE:
1352
0
            break;
1353
0
        case ZIP_EM_TRAD_PKWARE:
1354
0
            header_size = 12;
1355
0
            break;
1356
0
        case ZIP_EM_AES_128:
1357
0
            header_size = 20;
1358
0
            break;
1359
0
        case ZIP_EM_AES_192:
1360
0
            header_size = 24;
1361
0
            break;
1362
0
        case ZIP_EM_AES_256:
1363
0
            header_size = 28;
1364
0
            break;
1365
1366
0
        default:
1367
0
            return 0;
1368
0
        }
1369
0
        if (dirent->uncomp_size + header_size < dirent->uncomp_size || dirent->comp_size != dirent->uncomp_size + header_size) {
1370
0
            return ZIP_ER_DETAIL_STORED_SIZE_MISMATCH;
1371
0
        }
1372
0
    }
1373
0
    return 0;
1374
0
}
1375
1376
time_t
1377
0
zip_dirent_get_last_mod_mtime(zip_dirent_t *de) {
1378
0
    if (!de->last_mod_mtime_valid) {
1379
0
        de->last_mod_mtime = _zip_d2u_time(&de->last_mod);
1380
0
        de->last_mod_mtime_valid = true;
1381
0
    }
1382
1383
0
    return de->last_mod_mtime;
1384
0
}