/src/libzip/lib/zip_source_zip_new.c
Line | Count | Source |
1 | | /* |
2 | | zip_source_zip_new.c -- prepare data structures for zip_fopen/zip_source_zip |
3 | | Copyright (C) 2012-2024 Dieter Baron and Thomas Klausner |
4 | | |
5 | | This file is part of libzip, a library to manipulate ZIP archives. |
6 | | The authors can be contacted at <info@libzip.org> |
7 | | |
8 | | Redistribution and use in source and binary forms, with or without |
9 | | modification, are permitted provided that the following conditions |
10 | | are met: |
11 | | 1. Redistributions of source code must retain the above copyright |
12 | | notice, this list of conditions and the following disclaimer. |
13 | | 2. Redistributions in binary form must reproduce the above copyright |
14 | | notice, this list of conditions and the following disclaimer in |
15 | | the documentation and/or other materials provided with the |
16 | | distribution. |
17 | | 3. The names of the authors may not be used to endorse or promote |
18 | | products derived from this software without specific prior |
19 | | written permission. |
20 | | |
21 | | THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS |
22 | | OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED |
23 | | WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
24 | | ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY |
25 | | DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
26 | | DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE |
27 | | GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS |
28 | | INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER |
29 | | IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR |
30 | | OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN |
31 | | IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
32 | | */ |
33 | | |
34 | | |
35 | | #include <stdlib.h> |
36 | | |
37 | | #include "zipint.h" |
38 | | |
39 | | static void _zip_file_attributes_from_dirent(zip_file_attributes_t *attributes, zip_dirent_t *de); |
40 | | |
41 | 0 | ZIP_EXTERN zip_source_t *zip_source_zip_file(zip_t *za, zip_t *srcza, zip_uint64_t srcidx, zip_flags_t flags, zip_uint64_t start, zip_int64_t len, const char *password) { |
42 | 0 | return zip_source_zip_file_create(srcza, srcidx, flags, start, len, password, &za->error); |
43 | 0 | } |
44 | | |
45 | | |
46 | 0 | ZIP_EXTERN zip_source_t *zip_source_zip_file_create(zip_t *srcza, zip_uint64_t srcidx, zip_flags_t flags, zip_uint64_t start, zip_int64_t len, const char *password, zip_error_t *error) { |
47 | | /* TODO: We need to make sure that the returned source is invalidated when srcza is closed. */ |
48 | 0 | zip_source_t *src, *s2; |
49 | 0 | zip_stat_t st; |
50 | 0 | zip_file_attributes_t attributes; |
51 | 0 | zip_dirent_t *de; |
52 | 0 | bool partial_data, needs_crc, encrypted, needs_decrypt, compressed, needs_decompress, changed_data, have_size, have_comp_size; |
53 | 0 | zip_flags_t stat_flags; |
54 | 0 | zip_int64_t data_len; |
55 | 0 | bool take_ownership = false; |
56 | 0 | bool empty_data = false; |
57 | |
|
58 | 0 | if (srcza == NULL || srcidx >= srcza->nentry || len < -1) { |
59 | 0 | zip_error_set(error, ZIP_ER_INVAL, 0); |
60 | 0 | return NULL; |
61 | 0 | } |
62 | | |
63 | 0 | if (flags & ZIP_FL_ENCRYPTED) { |
64 | 0 | flags |= ZIP_FL_COMPRESSED; |
65 | 0 | } |
66 | |
|
67 | 0 | changed_data = false; |
68 | 0 | if ((flags & ZIP_FL_UNCHANGED) == 0) { |
69 | 0 | zip_entry_t *entry = srcza->entry + srcidx; |
70 | 0 | if (ZIP_ENTRY_DATA_CHANGED(entry)) { |
71 | 0 | if ((flags & ZIP_FL_COMPRESSED) || !zip_source_supports_reopen(entry->source)) { |
72 | 0 | zip_error_set(error, ZIP_ER_CHANGED, 0); |
73 | 0 | return NULL; |
74 | 0 | } |
75 | | |
76 | 0 | changed_data = true; |
77 | 0 | } |
78 | 0 | else if (entry->deleted) { |
79 | 0 | zip_error_set(error, ZIP_ER_CHANGED, 0); |
80 | 0 | return NULL; |
81 | 0 | } |
82 | 0 | } |
83 | | |
84 | 0 | stat_flags = flags; |
85 | 0 | if (!changed_data) { |
86 | 0 | stat_flags |= ZIP_FL_UNCHANGED; |
87 | 0 | } |
88 | |
|
89 | 0 | if (zip_stat_index(srcza, srcidx, stat_flags, &st) < 0) { |
90 | 0 | zip_error_set(error, ZIP_ER_INTERNAL, 0); |
91 | 0 | return NULL; |
92 | 0 | } |
93 | | |
94 | 0 | if ((start > 0 || len >= 0) && (flags & ZIP_FL_COMPRESSED)) { |
95 | 0 | zip_error_set(error, ZIP_ER_INVAL, 0); |
96 | 0 | return NULL; |
97 | 0 | } |
98 | | |
99 | 0 | have_size = (st.valid & ZIP_STAT_SIZE) != 0; |
100 | | /* overflow or past end of file */ |
101 | 0 | if (len >= 0 && ((start > 0 && start + len < start) || (have_size && start + len > st.size))) { |
102 | 0 | zip_error_set(error, ZIP_ER_INVAL, 0); |
103 | 0 | return NULL; |
104 | 0 | } |
105 | | |
106 | 0 | if (len == -1) { |
107 | 0 | if (have_size) { |
108 | 0 | if (st.size - start > ZIP_INT64_MAX) { |
109 | 0 | zip_error_set(error, ZIP_ER_INVAL, 0); |
110 | 0 | return NULL; |
111 | 0 | } |
112 | 0 | data_len = (zip_int64_t)(st.size - start); |
113 | 0 | } |
114 | 0 | else { |
115 | 0 | data_len = -1; |
116 | 0 | } |
117 | 0 | } |
118 | 0 | else { |
119 | 0 | data_len = len; |
120 | 0 | } |
121 | | |
122 | 0 | if (have_size) { |
123 | 0 | partial_data = (zip_uint64_t)(data_len) < st.size; |
124 | 0 | } |
125 | 0 | else { |
126 | 0 | partial_data = true; |
127 | 0 | } |
128 | 0 | encrypted = (st.valid & ZIP_STAT_ENCRYPTION_METHOD) && (st.encryption_method != ZIP_EM_NONE); |
129 | 0 | needs_decrypt = ((flags & ZIP_FL_ENCRYPTED) == 0) && encrypted; |
130 | 0 | compressed = (st.valid & ZIP_STAT_COMP_METHOD) && (st.comp_method != ZIP_CM_STORE); |
131 | 0 | needs_decompress = ((flags & ZIP_FL_COMPRESSED) == 0) && compressed; |
132 | | /* when reading the whole file, check for CRC errors */ |
133 | 0 | needs_crc = ((flags & ZIP_FL_COMPRESSED) == 0 || !compressed) && !partial_data && (st.valid & ZIP_STAT_CRC) != 0; |
134 | |
|
135 | 0 | if (needs_decrypt) { |
136 | 0 | if (password == NULL) { |
137 | 0 | password = srcza->default_password; |
138 | 0 | } |
139 | 0 | if (password == NULL) { |
140 | 0 | zip_error_set(error, ZIP_ER_NOPASSWD, 0); |
141 | 0 | return NULL; |
142 | 0 | } |
143 | 0 | } |
144 | | |
145 | 0 | if ((de = _zip_get_dirent(srcza, srcidx, flags, error)) == NULL) { |
146 | 0 | return NULL; |
147 | 0 | } |
148 | 0 | _zip_file_attributes_from_dirent(&attributes, de); |
149 | |
|
150 | 0 | have_comp_size = (st.valid & ZIP_STAT_COMP_SIZE) != 0; |
151 | 0 | if (needs_decrypt || needs_decompress) { |
152 | 0 | empty_data = (have_comp_size && st.comp_size == 0); |
153 | 0 | } |
154 | 0 | else { |
155 | 0 | empty_data = (have_size && st.size == 0); |
156 | 0 | } |
157 | 0 | if (empty_data) { |
158 | 0 | src = zip_source_buffer_with_attributes_create(NULL, 0, 0, &attributes, error); |
159 | 0 | } |
160 | 0 | else { |
161 | 0 | src = NULL; |
162 | 0 | } |
163 | | |
164 | | |
165 | | /* If we created source buffer above, we want the window source to take ownership of it. */ |
166 | 0 | take_ownership = src != NULL; |
167 | | /* if we created a buffer source above, then treat it as if |
168 | | reading the changed data - that way we don't need add another |
169 | | special case to the code below that wraps it in the window |
170 | | source */ |
171 | 0 | changed_data = changed_data || (src != NULL); |
172 | |
|
173 | 0 | if (partial_data && !needs_decrypt && !needs_decompress) { |
174 | 0 | struct zip_stat st2; |
175 | 0 | zip_t *source_archive; |
176 | 0 | zip_uint64_t source_index; |
177 | |
|
178 | 0 | if (changed_data) { |
179 | 0 | if (src == NULL) { |
180 | 0 | src = srcza->entry[srcidx].source; |
181 | 0 | } |
182 | 0 | source_archive = NULL; |
183 | 0 | source_index = 0; |
184 | 0 | } |
185 | 0 | else { |
186 | 0 | src = srcza->src; |
187 | 0 | source_archive = srcza; |
188 | 0 | source_index = srcidx; |
189 | 0 | } |
190 | |
|
191 | 0 | st2.comp_method = ZIP_CM_STORE; |
192 | 0 | st2.valid = ZIP_STAT_COMP_METHOD; |
193 | 0 | if (data_len >= 0) { |
194 | 0 | st2.size = (zip_uint64_t)data_len; |
195 | 0 | st2.comp_size = (zip_uint64_t)data_len; |
196 | 0 | st2.valid |= ZIP_STAT_SIZE | ZIP_STAT_COMP_SIZE; |
197 | 0 | } |
198 | 0 | if (st.valid & ZIP_STAT_MTIME) { |
199 | 0 | st2.mtime = st.mtime; |
200 | 0 | st2.valid |= ZIP_STAT_MTIME; |
201 | 0 | } |
202 | |
|
203 | 0 | s2 = _zip_source_window_new(src, start, data_len, &st2, ZIP_STAT_NAME, &attributes, &de->last_mod, source_archive, source_index, take_ownership, error); |
204 | 0 | if (s2 == NULL) { |
205 | 0 | if (take_ownership) { |
206 | 0 | zip_source_free(src); |
207 | 0 | } |
208 | 0 | return NULL; |
209 | 0 | } |
210 | 0 | src = s2; |
211 | 0 | } |
212 | | /* here we restrict src to file data, so no point in doing it for |
213 | | source that already represents only the file data */ |
214 | 0 | else if (!changed_data) { |
215 | | /* this branch is executed only for archive sources; we know |
216 | | that stat data come from the archive too, so it's safe to |
217 | | assume that st has a comp_size specified */ |
218 | 0 | if (st.comp_size > ZIP_INT64_MAX) { |
219 | 0 | zip_error_set(error, ZIP_ER_INVAL, 0); |
220 | 0 | return NULL; |
221 | 0 | } |
222 | | /* despite the fact that we want the whole data file, we still |
223 | | wrap the source into a window source to add st and |
224 | | attributes and to have a source that positions the read |
225 | | offset properly before each read for multiple zip_file_t |
226 | | referring to the same underlying source */ |
227 | 0 | if ((src = _zip_source_window_new(srcza->src, 0, (zip_int64_t)st.comp_size, &st, ZIP_STAT_NAME, &attributes, &de->last_mod, srcza, srcidx, take_ownership, error)) == NULL) { |
228 | 0 | return NULL; |
229 | 0 | } |
230 | 0 | } |
231 | 0 | else { |
232 | | /* this branch gets executed when reading the whole changed |
233 | | data file or when "reading" from a zero-sized source buffer |
234 | | that we created above */ |
235 | 0 | if (src == NULL) { |
236 | 0 | src = srcza->entry[srcidx].source; |
237 | 0 | } |
238 | | /* despite the fact that we want the whole data file, we still |
239 | | wrap the source into a window source to add st and |
240 | | attributes and to have a source that positions the read |
241 | | offset properly before each read for multiple zip_file_t |
242 | | referring to the same underlying source */ |
243 | 0 | s2 = _zip_source_window_new(src, 0, data_len, &st, ZIP_STAT_NAME, &attributes, &de->last_mod, NULL, 0, take_ownership, error); |
244 | 0 | if (s2 == NULL) { |
245 | 0 | if (take_ownership) { |
246 | 0 | zip_source_free(src); |
247 | 0 | } |
248 | 0 | return NULL; |
249 | 0 | } |
250 | 0 | src = s2; |
251 | 0 | } |
252 | | |
253 | | /* In all cases, src is a window source and therefore is owned by this function. */ |
254 | | |
255 | 0 | if (_zip_source_set_source_archive(src, srcza) < 0) { |
256 | 0 | zip_source_free(src); |
257 | 0 | return NULL; |
258 | 0 | } |
259 | | |
260 | | /* creating a layered source calls zip_keep() on the lower layer, so we free it */ |
261 | | |
262 | 0 | if (needs_decrypt) { |
263 | 0 | zip_encryption_implementation enc_impl; |
264 | |
|
265 | 0 | if ((enc_impl = _zip_get_encryption_implementation(st.encryption_method, ZIP_CODEC_DECODE)) == NULL) { |
266 | 0 | zip_source_free(src); |
267 | 0 | zip_error_set(error, ZIP_ER_ENCRNOTSUPP, 0); |
268 | 0 | return NULL; |
269 | 0 | } |
270 | | |
271 | 0 | s2 = enc_impl(srcza, src, st.encryption_method, 0, password); |
272 | 0 | if (s2 == NULL) { |
273 | 0 | zip_source_free(src); |
274 | 0 | return NULL; |
275 | 0 | } |
276 | | |
277 | 0 | src = s2; |
278 | 0 | } |
279 | 0 | if (needs_decompress) { |
280 | 0 | s2 = zip_source_decompress(srcza, src, st.comp_method); |
281 | 0 | if (s2 == NULL) { |
282 | 0 | zip_source_free(src); |
283 | 0 | return NULL; |
284 | 0 | } |
285 | 0 | src = s2; |
286 | 0 | } |
287 | 0 | if (needs_crc) { |
288 | 0 | s2 = zip_source_crc_create(src, 1, error); |
289 | 0 | if (s2 == NULL) { |
290 | 0 | zip_source_free(src); |
291 | 0 | return NULL; |
292 | 0 | } |
293 | 0 | src = s2; |
294 | 0 | } |
295 | | |
296 | 0 | if (partial_data && (needs_decrypt || needs_decompress)) { |
297 | 0 | zip_stat_t st2; |
298 | 0 | zip_stat_init(&st2); |
299 | 0 | if (data_len >= 0) { |
300 | 0 | st2.valid = ZIP_STAT_SIZE; |
301 | 0 | st2.size = (zip_uint64_t)data_len; |
302 | 0 | } |
303 | 0 | s2 = _zip_source_window_new(src, start, data_len, &st2, ZIP_STAT_NAME, NULL, NULL, NULL, 0, true, error); |
304 | 0 | if (s2 == NULL) { |
305 | 0 | zip_source_free(src); |
306 | 0 | return NULL; |
307 | 0 | } |
308 | 0 | src = s2; |
309 | 0 | } |
310 | | |
311 | 0 | return src; |
312 | 0 | } |
313 | | |
314 | 0 | static void _zip_file_attributes_from_dirent(zip_file_attributes_t *attributes, zip_dirent_t *de) { |
315 | 0 | zip_file_attributes_init(attributes); |
316 | 0 | attributes->valid = ZIP_FILE_ATTRIBUTES_ASCII | ZIP_FILE_ATTRIBUTES_HOST_SYSTEM | ZIP_FILE_ATTRIBUTES_EXTERNAL_FILE_ATTRIBUTES | ZIP_FILE_ATTRIBUTES_GENERAL_PURPOSE_BIT_FLAGS; |
317 | 0 | attributes->ascii = de->int_attrib & 1; |
318 | 0 | attributes->host_system = de->version_madeby >> 8; |
319 | 0 | attributes->external_file_attributes = de->ext_attrib; |
320 | 0 | attributes->general_purpose_bit_flags = de->bitflags; |
321 | 0 | attributes->general_purpose_bit_mask = ZIP_FILE_ATTRIBUTES_GENERAL_PURPOSE_BIT_FLAGS_ALLOWED_MASK; |
322 | 0 | } |