1*adcb0a62SAndroid Build Coastguard Worker /*
2*adcb0a62SAndroid Build Coastguard Worker * Copyright (C) 2008 The Android Open Source Project
3*adcb0a62SAndroid Build Coastguard Worker *
4*adcb0a62SAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License");
5*adcb0a62SAndroid Build Coastguard Worker * you may not use this file except in compliance with the License.
6*adcb0a62SAndroid Build Coastguard Worker * You may obtain a copy of the License at
7*adcb0a62SAndroid Build Coastguard Worker *
8*adcb0a62SAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0
9*adcb0a62SAndroid Build Coastguard Worker *
10*adcb0a62SAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software
11*adcb0a62SAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS,
12*adcb0a62SAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13*adcb0a62SAndroid Build Coastguard Worker * See the License for the specific language governing permissions and
14*adcb0a62SAndroid Build Coastguard Worker * limitations under the License.
15*adcb0a62SAndroid Build Coastguard Worker */
16*adcb0a62SAndroid Build Coastguard Worker
17*adcb0a62SAndroid Build Coastguard Worker /*
18*adcb0a62SAndroid Build Coastguard Worker * Read-only access to Zip archives, with minimal heap allocation.
19*adcb0a62SAndroid Build Coastguard Worker */
20*adcb0a62SAndroid Build Coastguard Worker
21*adcb0a62SAndroid Build Coastguard Worker #define LOG_TAG "ziparchive"
22*adcb0a62SAndroid Build Coastguard Worker
23*adcb0a62SAndroid Build Coastguard Worker #include "ziparchive/zip_archive.h"
24*adcb0a62SAndroid Build Coastguard Worker
25*adcb0a62SAndroid Build Coastguard Worker #include <errno.h>
26*adcb0a62SAndroid Build Coastguard Worker #include <fcntl.h>
27*adcb0a62SAndroid Build Coastguard Worker #include <inttypes.h>
28*adcb0a62SAndroid Build Coastguard Worker #include <limits.h>
29*adcb0a62SAndroid Build Coastguard Worker #include <stdlib.h>
30*adcb0a62SAndroid Build Coastguard Worker #include <string.h>
31*adcb0a62SAndroid Build Coastguard Worker #include <time.h>
32*adcb0a62SAndroid Build Coastguard Worker #include <unistd.h>
33*adcb0a62SAndroid Build Coastguard Worker
34*adcb0a62SAndroid Build Coastguard Worker #ifdef __linux__
35*adcb0a62SAndroid Build Coastguard Worker #include <linux/fs.h>
36*adcb0a62SAndroid Build Coastguard Worker #include <sys/ioctl.h>
37*adcb0a62SAndroid Build Coastguard Worker #include <sys/mman.h>
38*adcb0a62SAndroid Build Coastguard Worker #endif
39*adcb0a62SAndroid Build Coastguard Worker
40*adcb0a62SAndroid Build Coastguard Worker #include <memory>
41*adcb0a62SAndroid Build Coastguard Worker #include <optional>
42*adcb0a62SAndroid Build Coastguard Worker #include <span>
43*adcb0a62SAndroid Build Coastguard Worker #include <vector>
44*adcb0a62SAndroid Build Coastguard Worker
45*adcb0a62SAndroid Build Coastguard Worker #if defined(__APPLE__)
46*adcb0a62SAndroid Build Coastguard Worker #define lseek64 lseek
47*adcb0a62SAndroid Build Coastguard Worker #endif
48*adcb0a62SAndroid Build Coastguard Worker
49*adcb0a62SAndroid Build Coastguard Worker #if defined(__BIONIC__)
50*adcb0a62SAndroid Build Coastguard Worker #include <android/fdsan.h>
51*adcb0a62SAndroid Build Coastguard Worker #endif
52*adcb0a62SAndroid Build Coastguard Worker
53*adcb0a62SAndroid Build Coastguard Worker #include <android-base/file.h>
54*adcb0a62SAndroid Build Coastguard Worker #include <android-base/logging.h>
55*adcb0a62SAndroid Build Coastguard Worker #include <android-base/macros.h> // TEMP_FAILURE_RETRY may or may not be in unistd
56*adcb0a62SAndroid Build Coastguard Worker #include <android-base/mapped_file.h>
57*adcb0a62SAndroid Build Coastguard Worker #include <android-base/memory.h>
58*adcb0a62SAndroid Build Coastguard Worker #include <android-base/strings.h>
59*adcb0a62SAndroid Build Coastguard Worker #include <android-base/utf8.h>
60*adcb0a62SAndroid Build Coastguard Worker #include <log/log.h>
61*adcb0a62SAndroid Build Coastguard Worker
62*adcb0a62SAndroid Build Coastguard Worker #include "entry_name_utils-inl.h"
63*adcb0a62SAndroid Build Coastguard Worker #include "incfs_support/signal_handling.h"
64*adcb0a62SAndroid Build Coastguard Worker #include "incfs_support/util.h"
65*adcb0a62SAndroid Build Coastguard Worker #include "zip_archive_common.h"
66*adcb0a62SAndroid Build Coastguard Worker #include "zip_archive_private.h"
67*adcb0a62SAndroid Build Coastguard Worker #include "zlib.h"
68*adcb0a62SAndroid Build Coastguard Worker
69*adcb0a62SAndroid Build Coastguard Worker // Used to turn on crc checks - verify that the content CRC matches the values
70*adcb0a62SAndroid Build Coastguard Worker // specified in the local file header and the central directory.
71*adcb0a62SAndroid Build Coastguard Worker static constexpr bool kCrcChecksEnabled = false;
72*adcb0a62SAndroid Build Coastguard Worker
73*adcb0a62SAndroid Build Coastguard Worker // The maximum number of bytes to scan backwards for the EOCD start.
74*adcb0a62SAndroid Build Coastguard Worker static const uint32_t kMaxEOCDSearch = kMaxCommentLen + sizeof(EocdRecord);
75*adcb0a62SAndroid Build Coastguard Worker
76*adcb0a62SAndroid Build Coastguard Worker // Set a reasonable cap (256 GiB) for the zip file size. So the data is always valid when
77*adcb0a62SAndroid Build Coastguard Worker // we parse the fields in cd or local headers as 64 bits signed integers.
78*adcb0a62SAndroid Build Coastguard Worker static constexpr uint64_t kMaxFileLength = 256 * static_cast<uint64_t>(1u << 30u);
79*adcb0a62SAndroid Build Coastguard Worker
80*adcb0a62SAndroid Build Coastguard Worker /*
81*adcb0a62SAndroid Build Coastguard Worker * A Read-only Zip archive.
82*adcb0a62SAndroid Build Coastguard Worker *
83*adcb0a62SAndroid Build Coastguard Worker * We want "open" and "find entry by name" to be fast operations, and
84*adcb0a62SAndroid Build Coastguard Worker * we want to use as little memory as possible. We memory-map the zip
85*adcb0a62SAndroid Build Coastguard Worker * central directory, and load a hash table with pointers to the filenames
86*adcb0a62SAndroid Build Coastguard Worker * (which aren't null-terminated). The other fields are at a fixed offset
87*adcb0a62SAndroid Build Coastguard Worker * from the filename, so we don't need to extract those (but we do need
88*adcb0a62SAndroid Build Coastguard Worker * to byte-read and endian-swap them every time we want them).
89*adcb0a62SAndroid Build Coastguard Worker *
90*adcb0a62SAndroid Build Coastguard Worker * It's possible that somebody has handed us a massive (~1GB) zip archive,
91*adcb0a62SAndroid Build Coastguard Worker * so we can't expect to mmap the entire file.
92*adcb0a62SAndroid Build Coastguard Worker *
93*adcb0a62SAndroid Build Coastguard Worker * To speed comparisons when doing a lookup by name, we could make the mapping
94*adcb0a62SAndroid Build Coastguard Worker * "private" (copy-on-write) and null-terminate the filenames after verifying
95*adcb0a62SAndroid Build Coastguard Worker * the record structure. However, this requires a private mapping of
96*adcb0a62SAndroid Build Coastguard Worker * every page that the Central Directory touches. Easier to tuck a copy
97*adcb0a62SAndroid Build Coastguard Worker * of the string length into the hash table entry.
98*adcb0a62SAndroid Build Coastguard Worker */
99*adcb0a62SAndroid Build Coastguard Worker
100*adcb0a62SAndroid Build Coastguard Worker #ifdef __linux__
101*adcb0a62SAndroid Build Coastguard Worker static const size_t kPageSize = getpagesize();
102*adcb0a62SAndroid Build Coastguard Worker #else
103*adcb0a62SAndroid Build Coastguard Worker constexpr size_t kPageSize = 4096;
104*adcb0a62SAndroid Build Coastguard Worker #endif
105*adcb0a62SAndroid Build Coastguard Worker
pageAlignDown(uintptr_t ptr_int)106*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] static uintptr_t pageAlignDown(uintptr_t ptr_int) {
107*adcb0a62SAndroid Build Coastguard Worker return ptr_int & ~(kPageSize - 1);
108*adcb0a62SAndroid Build Coastguard Worker }
109*adcb0a62SAndroid Build Coastguard Worker
pageAlignUp(uintptr_t ptr_int)110*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] static uintptr_t pageAlignUp(uintptr_t ptr_int) {
111*adcb0a62SAndroid Build Coastguard Worker return pageAlignDown(ptr_int + kPageSize - 1);
112*adcb0a62SAndroid Build Coastguard Worker }
113*adcb0a62SAndroid Build Coastguard Worker
expandToPageBounds(void * ptr,size_t size)114*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] static std::pair<void*, size_t> expandToPageBounds(void* ptr, size_t size) {
115*adcb0a62SAndroid Build Coastguard Worker const auto ptr_int = reinterpret_cast<uintptr_t>(ptr);
116*adcb0a62SAndroid Build Coastguard Worker const auto aligned_ptr_int = pageAlignDown(ptr_int);
117*adcb0a62SAndroid Build Coastguard Worker const auto aligned_size = pageAlignUp(ptr_int + size) - aligned_ptr_int;
118*adcb0a62SAndroid Build Coastguard Worker return {reinterpret_cast<void*>(aligned_ptr_int), aligned_size};
119*adcb0a62SAndroid Build Coastguard Worker }
120*adcb0a62SAndroid Build Coastguard Worker
maybePrefetch(const void * ptr,size_t size)121*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] static void maybePrefetch([[maybe_unused]] const void* ptr,
122*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] size_t size) {
123*adcb0a62SAndroid Build Coastguard Worker #ifdef __linux__
124*adcb0a62SAndroid Build Coastguard Worker // Let's only ask for a readahead explicitly if there's enough pages to read. A regular OS
125*adcb0a62SAndroid Build Coastguard Worker // readahead implementation would take care of the smaller requests, and it would also involve
126*adcb0a62SAndroid Build Coastguard Worker // only a single kernel transition, just an implicit one from the page fault.
127*adcb0a62SAndroid Build Coastguard Worker //
128*adcb0a62SAndroid Build Coastguard Worker // Note: there's no implementation for other OSes, as the prefetch logic is highly specific
129*adcb0a62SAndroid Build Coastguard Worker // to the memory manager, and we don't have any well defined benchmarks on Windows/Mac;
130*adcb0a62SAndroid Build Coastguard Worker // it also mostly matters only for the cold OS boot where no files are in the page cache yet,
131*adcb0a62SAndroid Build Coastguard Worker // but we rarely would hit this situation outside of the device startup.
132*adcb0a62SAndroid Build Coastguard Worker auto [aligned_ptr, aligned_size] = expandToPageBounds(const_cast<void*>(ptr), size);
133*adcb0a62SAndroid Build Coastguard Worker if (aligned_size > 32 * kPageSize) {
134*adcb0a62SAndroid Build Coastguard Worker if (::madvise(aligned_ptr, aligned_size, MADV_WILLNEED)) {
135*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: madvise(file, WILLNEED) failed: %s (%d)", strerror(errno), errno);
136*adcb0a62SAndroid Build Coastguard Worker }
137*adcb0a62SAndroid Build Coastguard Worker }
138*adcb0a62SAndroid Build Coastguard Worker #endif
139*adcb0a62SAndroid Build Coastguard Worker }
140*adcb0a62SAndroid Build Coastguard Worker
maybePrepareSequentialReading(const void * ptr,size_t size)141*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] static void maybePrepareSequentialReading([[maybe_unused]] const void* ptr,
142*adcb0a62SAndroid Build Coastguard Worker [[maybe_unused]] size_t size) {
143*adcb0a62SAndroid Build Coastguard Worker #ifdef __linux__
144*adcb0a62SAndroid Build Coastguard Worker auto [aligned_ptr, aligned_size] = expandToPageBounds(const_cast<void*>(ptr), size);
145*adcb0a62SAndroid Build Coastguard Worker if (::madvise(reinterpret_cast<void*>(aligned_ptr), aligned_size, MADV_SEQUENTIAL)) {
146*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: madvise(file, SEQUENTIAL) failed: %s (%d)", strerror(errno), errno);
147*adcb0a62SAndroid Build Coastguard Worker }
148*adcb0a62SAndroid Build Coastguard Worker #endif
149*adcb0a62SAndroid Build Coastguard Worker }
150*adcb0a62SAndroid Build Coastguard Worker
151*adcb0a62SAndroid Build Coastguard Worker #if defined(__BIONIC__)
GetOwnerTag(const ZipArchive * archive)152*adcb0a62SAndroid Build Coastguard Worker static uint64_t GetOwnerTag(const ZipArchive* archive) {
153*adcb0a62SAndroid Build Coastguard Worker return android_fdsan_create_owner_tag(ANDROID_FDSAN_OWNER_TYPE_ZIPARCHIVE,
154*adcb0a62SAndroid Build Coastguard Worker reinterpret_cast<uint64_t>(archive));
155*adcb0a62SAndroid Build Coastguard Worker }
156*adcb0a62SAndroid Build Coastguard Worker #endif
157*adcb0a62SAndroid Build Coastguard Worker
ZipArchive(MappedZipFile && map,bool assume_ownership)158*adcb0a62SAndroid Build Coastguard Worker ZipArchive::ZipArchive(MappedZipFile&& map, bool assume_ownership)
159*adcb0a62SAndroid Build Coastguard Worker : mapped_zip(std::move(map)),
160*adcb0a62SAndroid Build Coastguard Worker close_file(assume_ownership),
161*adcb0a62SAndroid Build Coastguard Worker directory_offset(0),
162*adcb0a62SAndroid Build Coastguard Worker central_directory(),
163*adcb0a62SAndroid Build Coastguard Worker directory_map(),
164*adcb0a62SAndroid Build Coastguard Worker num_entries(0) {
165*adcb0a62SAndroid Build Coastguard Worker #if defined(__BIONIC__)
166*adcb0a62SAndroid Build Coastguard Worker if (assume_ownership) {
167*adcb0a62SAndroid Build Coastguard Worker CHECK(mapped_zip.GetFileDescriptor() >= 0 || !mapped_zip.GetBasePtr());
168*adcb0a62SAndroid Build Coastguard Worker android_fdsan_exchange_owner_tag(mapped_zip.GetFileDescriptor(), 0, GetOwnerTag(this));
169*adcb0a62SAndroid Build Coastguard Worker }
170*adcb0a62SAndroid Build Coastguard Worker #endif
171*adcb0a62SAndroid Build Coastguard Worker }
172*adcb0a62SAndroid Build Coastguard Worker
ZipArchive(const void * address,size_t length)173*adcb0a62SAndroid Build Coastguard Worker ZipArchive::ZipArchive(const void* address, size_t length)
174*adcb0a62SAndroid Build Coastguard Worker : mapped_zip(address, length),
175*adcb0a62SAndroid Build Coastguard Worker close_file(false),
176*adcb0a62SAndroid Build Coastguard Worker directory_offset(0),
177*adcb0a62SAndroid Build Coastguard Worker central_directory(),
178*adcb0a62SAndroid Build Coastguard Worker directory_map(),
179*adcb0a62SAndroid Build Coastguard Worker num_entries(0) {}
180*adcb0a62SAndroid Build Coastguard Worker
~ZipArchive()181*adcb0a62SAndroid Build Coastguard Worker ZipArchive::~ZipArchive() {
182*adcb0a62SAndroid Build Coastguard Worker if (close_file && mapped_zip.GetFileDescriptor() >= 0) {
183*adcb0a62SAndroid Build Coastguard Worker #if defined(__BIONIC__)
184*adcb0a62SAndroid Build Coastguard Worker android_fdsan_close_with_tag(mapped_zip.GetFileDescriptor(), GetOwnerTag(this));
185*adcb0a62SAndroid Build Coastguard Worker #else
186*adcb0a62SAndroid Build Coastguard Worker close(mapped_zip.GetFileDescriptor());
187*adcb0a62SAndroid Build Coastguard Worker #endif
188*adcb0a62SAndroid Build Coastguard Worker }
189*adcb0a62SAndroid Build Coastguard Worker }
190*adcb0a62SAndroid Build Coastguard Worker
191*adcb0a62SAndroid Build Coastguard Worker struct CentralDirectoryInfo {
192*adcb0a62SAndroid Build Coastguard Worker uint64_t num_records;
193*adcb0a62SAndroid Build Coastguard Worker // The size of the central directory (in bytes).
194*adcb0a62SAndroid Build Coastguard Worker uint64_t cd_size;
195*adcb0a62SAndroid Build Coastguard Worker // The offset of the start of the central directory, relative
196*adcb0a62SAndroid Build Coastguard Worker // to the start of the file.
197*adcb0a62SAndroid Build Coastguard Worker uint64_t cd_start_offset;
198*adcb0a62SAndroid Build Coastguard Worker };
199*adcb0a62SAndroid Build Coastguard Worker
200*adcb0a62SAndroid Build Coastguard Worker // Reads |T| at |readPtr| and increments |readPtr|. Returns std::nullopt if the boundary check
201*adcb0a62SAndroid Build Coastguard Worker // fails.
202*adcb0a62SAndroid Build Coastguard Worker template <typename T>
TryConsumeUnaligned(uint8_t ** readPtr,const uint8_t * bufStart,size_t bufSize)203*adcb0a62SAndroid Build Coastguard Worker static std::optional<T> TryConsumeUnaligned(uint8_t** readPtr, const uint8_t* bufStart,
204*adcb0a62SAndroid Build Coastguard Worker size_t bufSize) {
205*adcb0a62SAndroid Build Coastguard Worker if (bufSize < sizeof(T) || *readPtr - bufStart > bufSize - sizeof(T)) {
206*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %zu byte read exceeds the boundary of allocated buf, offset %zu, bufSize %zu",
207*adcb0a62SAndroid Build Coastguard Worker sizeof(T), *readPtr - bufStart, bufSize);
208*adcb0a62SAndroid Build Coastguard Worker return std::nullopt;
209*adcb0a62SAndroid Build Coastguard Worker }
210*adcb0a62SAndroid Build Coastguard Worker return ConsumeUnaligned<T>(readPtr);
211*adcb0a62SAndroid Build Coastguard Worker }
212*adcb0a62SAndroid Build Coastguard Worker
FindCentralDirectoryInfoForZip64(const char * debugFileName,ZipArchive * archive,off64_t eocdOffset,CentralDirectoryInfo * cdInfo)213*adcb0a62SAndroid Build Coastguard Worker static ZipError FindCentralDirectoryInfoForZip64(const char* debugFileName, ZipArchive* archive,
214*adcb0a62SAndroid Build Coastguard Worker off64_t eocdOffset, CentralDirectoryInfo* cdInfo) {
215*adcb0a62SAndroid Build Coastguard Worker if (eocdOffset <= sizeof(Zip64EocdLocator)) {
216*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Not enough space for zip64 eocd locator", debugFileName);
217*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
218*adcb0a62SAndroid Build Coastguard Worker }
219*adcb0a62SAndroid Build Coastguard Worker // We expect to find the zip64 eocd locator immediately before the zip eocd.
220*adcb0a62SAndroid Build Coastguard Worker const int64_t locatorOffset = eocdOffset - sizeof(Zip64EocdLocator);
221*adcb0a62SAndroid Build Coastguard Worker Zip64EocdLocator zip64EocdLocatorBuf;
222*adcb0a62SAndroid Build Coastguard Worker const auto zip64EocdLocator = reinterpret_cast<const Zip64EocdLocator*>(
223*adcb0a62SAndroid Build Coastguard Worker archive->mapped_zip.ReadAtOffset(reinterpret_cast<uint8_t*>((&zip64EocdLocatorBuf)),
224*adcb0a62SAndroid Build Coastguard Worker sizeof(zip64EocdLocatorBuf), locatorOffset));
225*adcb0a62SAndroid Build Coastguard Worker if (!zip64EocdLocator) {
226*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Read %zu from offset %" PRId64 " failed %s", debugFileName,
227*adcb0a62SAndroid Build Coastguard Worker sizeof(zip64EocdLocatorBuf), locatorOffset, debugFileName);
228*adcb0a62SAndroid Build Coastguard Worker return kIoError;
229*adcb0a62SAndroid Build Coastguard Worker }
230*adcb0a62SAndroid Build Coastguard Worker
231*adcb0a62SAndroid Build Coastguard Worker if (zip64EocdLocator->locator_signature != Zip64EocdLocator::kSignature) {
232*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Zip64 eocd locator signature not found at offset %" PRId64, debugFileName,
233*adcb0a62SAndroid Build Coastguard Worker locatorOffset);
234*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
235*adcb0a62SAndroid Build Coastguard Worker }
236*adcb0a62SAndroid Build Coastguard Worker
237*adcb0a62SAndroid Build Coastguard Worker const int64_t zip64EocdOffset = zip64EocdLocator->zip64_eocd_offset;
238*adcb0a62SAndroid Build Coastguard Worker if (locatorOffset <= sizeof(Zip64EocdRecord) ||
239*adcb0a62SAndroid Build Coastguard Worker zip64EocdOffset > locatorOffset - sizeof(Zip64EocdRecord)) {
240*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Bad zip64 eocd offset %" PRId64 ", eocd locator offset %" PRId64, debugFileName,
241*adcb0a62SAndroid Build Coastguard Worker zip64EocdOffset, locatorOffset);
242*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
243*adcb0a62SAndroid Build Coastguard Worker }
244*adcb0a62SAndroid Build Coastguard Worker
245*adcb0a62SAndroid Build Coastguard Worker Zip64EocdRecord zip64EocdRecordBuf;
246*adcb0a62SAndroid Build Coastguard Worker const auto zip64EocdRecord = reinterpret_cast<const Zip64EocdRecord*>(
247*adcb0a62SAndroid Build Coastguard Worker archive->mapped_zip.ReadAtOffset(reinterpret_cast<uint8_t*>(&zip64EocdRecordBuf),
248*adcb0a62SAndroid Build Coastguard Worker sizeof(zip64EocdRecordBuf), zip64EocdOffset));
249*adcb0a62SAndroid Build Coastguard Worker if (!zip64EocdRecord) {
250*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: read %zu from offset %" PRId64 " failed %s", debugFileName,
251*adcb0a62SAndroid Build Coastguard Worker sizeof(zip64EocdRecordBuf), zip64EocdOffset, debugFileName);
252*adcb0a62SAndroid Build Coastguard Worker return kIoError;
253*adcb0a62SAndroid Build Coastguard Worker }
254*adcb0a62SAndroid Build Coastguard Worker
255*adcb0a62SAndroid Build Coastguard Worker if (zip64EocdRecord->record_signature != Zip64EocdRecord::kSignature) {
256*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Zip64 eocd record signature not found at offset %" PRId64, debugFileName,
257*adcb0a62SAndroid Build Coastguard Worker zip64EocdOffset);
258*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
259*adcb0a62SAndroid Build Coastguard Worker }
260*adcb0a62SAndroid Build Coastguard Worker
261*adcb0a62SAndroid Build Coastguard Worker if (zip64EocdOffset <= zip64EocdRecord->cd_size ||
262*adcb0a62SAndroid Build Coastguard Worker zip64EocdRecord->cd_start_offset > zip64EocdOffset - zip64EocdRecord->cd_size) {
263*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %s: Bad offset for zip64 central directory. cd offset %" PRIu64 ", cd size %" PRIu64
264*adcb0a62SAndroid Build Coastguard Worker ", zip64 eocd offset %" PRIu64,
265*adcb0a62SAndroid Build Coastguard Worker debugFileName, zip64EocdRecord->cd_start_offset, zip64EocdRecord->cd_size,
266*adcb0a62SAndroid Build Coastguard Worker zip64EocdOffset);
267*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
268*adcb0a62SAndroid Build Coastguard Worker }
269*adcb0a62SAndroid Build Coastguard Worker
270*adcb0a62SAndroid Build Coastguard Worker *cdInfo = {.num_records = zip64EocdRecord->num_records,
271*adcb0a62SAndroid Build Coastguard Worker .cd_size = zip64EocdRecord->cd_size,
272*adcb0a62SAndroid Build Coastguard Worker .cd_start_offset = zip64EocdRecord->cd_start_offset};
273*adcb0a62SAndroid Build Coastguard Worker
274*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
275*adcb0a62SAndroid Build Coastguard Worker }
276*adcb0a62SAndroid Build Coastguard Worker
FindCentralDirectoryInfo(const char * debug_file_name,ZipArchive * archive,off64_t file_length,std::span<uint8_t> scan_buffer,CentralDirectoryInfo * cdInfo)277*adcb0a62SAndroid Build Coastguard Worker static ZipError FindCentralDirectoryInfo(const char* debug_file_name,
278*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive,
279*adcb0a62SAndroid Build Coastguard Worker off64_t file_length,
280*adcb0a62SAndroid Build Coastguard Worker std::span<uint8_t> scan_buffer,
281*adcb0a62SAndroid Build Coastguard Worker CentralDirectoryInfo* cdInfo) {
282*adcb0a62SAndroid Build Coastguard Worker const auto read_amount = static_cast<uint32_t>(scan_buffer.size());
283*adcb0a62SAndroid Build Coastguard Worker const off64_t search_start = file_length - read_amount;
284*adcb0a62SAndroid Build Coastguard Worker
285*adcb0a62SAndroid Build Coastguard Worker const auto data = archive->mapped_zip.ReadAtOffset(scan_buffer.data(), read_amount, search_start);
286*adcb0a62SAndroid Build Coastguard Worker if (!data) {
287*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: read %" PRId64 " from offset %" PRId64 " failed", static_cast<int64_t>(read_amount),
288*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(search_start));
289*adcb0a62SAndroid Build Coastguard Worker return kIoError;
290*adcb0a62SAndroid Build Coastguard Worker }
291*adcb0a62SAndroid Build Coastguard Worker
292*adcb0a62SAndroid Build Coastguard Worker /*
293*adcb0a62SAndroid Build Coastguard Worker * Scan backward for the EOCD magic. In an archive without a trailing
294*adcb0a62SAndroid Build Coastguard Worker * comment, we'll find it on the first try. (We may want to consider
295*adcb0a62SAndroid Build Coastguard Worker * doing an initial minimal read; if we don't find it, retry with a
296*adcb0a62SAndroid Build Coastguard Worker * second read as above.)
297*adcb0a62SAndroid Build Coastguard Worker */
298*adcb0a62SAndroid Build Coastguard Worker CHECK_LE(read_amount, std::numeric_limits<int32_t>::max());
299*adcb0a62SAndroid Build Coastguard Worker int32_t i = read_amount - sizeof(EocdRecord);
300*adcb0a62SAndroid Build Coastguard Worker for (; i >= 0; i--) {
301*adcb0a62SAndroid Build Coastguard Worker if (data[i] == 0x50) {
302*adcb0a62SAndroid Build Coastguard Worker const uint32_t* sig_addr = reinterpret_cast<const uint32_t*>(&data[i]);
303*adcb0a62SAndroid Build Coastguard Worker if (android::base::get_unaligned<uint32_t>(sig_addr) == EocdRecord::kSignature) {
304*adcb0a62SAndroid Build Coastguard Worker ALOGV("+++ Found EOCD at buf+%d", i);
305*adcb0a62SAndroid Build Coastguard Worker break;
306*adcb0a62SAndroid Build Coastguard Worker }
307*adcb0a62SAndroid Build Coastguard Worker }
308*adcb0a62SAndroid Build Coastguard Worker }
309*adcb0a62SAndroid Build Coastguard Worker if (i < 0) {
310*adcb0a62SAndroid Build Coastguard Worker ALOGD("Zip: EOCD not found, %s is not zip", debug_file_name);
311*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
312*adcb0a62SAndroid Build Coastguard Worker }
313*adcb0a62SAndroid Build Coastguard Worker
314*adcb0a62SAndroid Build Coastguard Worker const off64_t eocd_offset = search_start + i;
315*adcb0a62SAndroid Build Coastguard Worker auto eocd = reinterpret_cast<const EocdRecord*>(data + i);
316*adcb0a62SAndroid Build Coastguard Worker /*
317*adcb0a62SAndroid Build Coastguard Worker * Verify that there's no trailing space at the end of the central directory
318*adcb0a62SAndroid Build Coastguard Worker * and its comment.
319*adcb0a62SAndroid Build Coastguard Worker */
320*adcb0a62SAndroid Build Coastguard Worker const off64_t calculated_length = eocd_offset + sizeof(EocdRecord) + eocd->comment_length;
321*adcb0a62SAndroid Build Coastguard Worker if (calculated_length != file_length) {
322*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: %" PRId64 " extraneous bytes at the end of the central directory",
323*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(file_length - calculated_length));
324*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
325*adcb0a62SAndroid Build Coastguard Worker }
326*adcb0a62SAndroid Build Coastguard Worker
327*adcb0a62SAndroid Build Coastguard Worker // One of the field is 0xFFFFFFFF, look for the zip64 EOCD instead.
328*adcb0a62SAndroid Build Coastguard Worker if (eocd->num_records_on_disk == UINT16_MAX || eocd->num_records == UINT16_MAX ||
329*adcb0a62SAndroid Build Coastguard Worker eocd->cd_size == UINT32_MAX || eocd->cd_start_offset == UINT32_MAX ||
330*adcb0a62SAndroid Build Coastguard Worker eocd->comment_length == UINT16_MAX) {
331*adcb0a62SAndroid Build Coastguard Worker ALOGV("Looking for the zip64 EOCD (cd_size: %" PRIu32 ", cd_start_offset: %" PRIu32
332*adcb0a62SAndroid Build Coastguard Worker ", comment_length: %" PRIu16 ", num_records: %" PRIu16 ", num_records_on_disk: %" PRIu16
333*adcb0a62SAndroid Build Coastguard Worker ")",
334*adcb0a62SAndroid Build Coastguard Worker eocd->cd_size, eocd->cd_start_offset, eocd->comment_length, eocd->num_records,
335*adcb0a62SAndroid Build Coastguard Worker eocd->num_records_on_disk);
336*adcb0a62SAndroid Build Coastguard Worker return FindCentralDirectoryInfoForZip64(debug_file_name, archive, eocd_offset, cdInfo);
337*adcb0a62SAndroid Build Coastguard Worker }
338*adcb0a62SAndroid Build Coastguard Worker
339*adcb0a62SAndroid Build Coastguard Worker /*
340*adcb0a62SAndroid Build Coastguard Worker * Grab the CD offset and size, and the number of entries in the
341*adcb0a62SAndroid Build Coastguard Worker * archive and verify that they look reasonable.
342*adcb0a62SAndroid Build Coastguard Worker */
343*adcb0a62SAndroid Build Coastguard Worker if (static_cast<off64_t>(eocd->cd_start_offset) + eocd->cd_size > eocd_offset) {
344*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad offsets (dir %" PRIu32 ", size %" PRIu32 ", eocd %" PRId64 ")",
345*adcb0a62SAndroid Build Coastguard Worker eocd->cd_start_offset, eocd->cd_size, static_cast<int64_t>(eocd_offset));
346*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
347*adcb0a62SAndroid Build Coastguard Worker }
348*adcb0a62SAndroid Build Coastguard Worker
349*adcb0a62SAndroid Build Coastguard Worker *cdInfo = {.num_records = eocd->num_records,
350*adcb0a62SAndroid Build Coastguard Worker .cd_size = eocd->cd_size,
351*adcb0a62SAndroid Build Coastguard Worker .cd_start_offset = eocd->cd_start_offset};
352*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
353*adcb0a62SAndroid Build Coastguard Worker }
354*adcb0a62SAndroid Build Coastguard Worker
355*adcb0a62SAndroid Build Coastguard Worker /*
356*adcb0a62SAndroid Build Coastguard Worker * Find the zip Central Directory and memory-map it.
357*adcb0a62SAndroid Build Coastguard Worker *
358*adcb0a62SAndroid Build Coastguard Worker * On success, returns kSuccess after populating fields from the EOCD area:
359*adcb0a62SAndroid Build Coastguard Worker * directory_offset
360*adcb0a62SAndroid Build Coastguard Worker * directory_ptr
361*adcb0a62SAndroid Build Coastguard Worker * num_entries
362*adcb0a62SAndroid Build Coastguard Worker */
MapCentralDirectory(const char * debug_file_name,ZipArchive * archive)363*adcb0a62SAndroid Build Coastguard Worker static ZipError MapCentralDirectory(const char* debug_file_name, ZipArchive* archive) {
364*adcb0a62SAndroid Build Coastguard Worker // Test file length. We want to make sure the file is small enough to be a zip
365*adcb0a62SAndroid Build Coastguard Worker // file.
366*adcb0a62SAndroid Build Coastguard Worker off64_t file_length = archive->mapped_zip.GetFileLength();
367*adcb0a62SAndroid Build Coastguard Worker if (file_length == -1) {
368*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
369*adcb0a62SAndroid Build Coastguard Worker }
370*adcb0a62SAndroid Build Coastguard Worker
371*adcb0a62SAndroid Build Coastguard Worker if (file_length > kMaxFileLength) {
372*adcb0a62SAndroid Build Coastguard Worker ALOGV("Zip: zip file too long %" PRId64, static_cast<int64_t>(file_length));
373*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
374*adcb0a62SAndroid Build Coastguard Worker }
375*adcb0a62SAndroid Build Coastguard Worker
376*adcb0a62SAndroid Build Coastguard Worker if (file_length < static_cast<off64_t>(sizeof(EocdRecord))) {
377*adcb0a62SAndroid Build Coastguard Worker ALOGV("Zip: length %" PRId64 " is too small to be zip", static_cast<int64_t>(file_length));
378*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
379*adcb0a62SAndroid Build Coastguard Worker }
380*adcb0a62SAndroid Build Coastguard Worker
381*adcb0a62SAndroid Build Coastguard Worker /*
382*adcb0a62SAndroid Build Coastguard Worker * Perform the traditional EOCD snipe hunt.
383*adcb0a62SAndroid Build Coastguard Worker *
384*adcb0a62SAndroid Build Coastguard Worker * We're searching for the End of Central Directory magic number,
385*adcb0a62SAndroid Build Coastguard Worker * which appears at the start of the EOCD block. It's followed by
386*adcb0a62SAndroid Build Coastguard Worker * 18 bytes of EOCD stuff and up to 64KB of archive comment. We
387*adcb0a62SAndroid Build Coastguard Worker * need to read the last part of the file into a buffer, dig through
388*adcb0a62SAndroid Build Coastguard Worker * it to find the magic number, parse some values out, and use those
389*adcb0a62SAndroid Build Coastguard Worker * to determine the extent of the CD.
390*adcb0a62SAndroid Build Coastguard Worker *
391*adcb0a62SAndroid Build Coastguard Worker * We start by pulling in the last part of the file.
392*adcb0a62SAndroid Build Coastguard Worker */
393*adcb0a62SAndroid Build Coastguard Worker const auto read_amount = uint32_t(std::min<off64_t>(file_length, kMaxEOCDSearch));
394*adcb0a62SAndroid Build Coastguard Worker
395*adcb0a62SAndroid Build Coastguard Worker CentralDirectoryInfo cdInfo = {};
396*adcb0a62SAndroid Build Coastguard Worker std::vector<uint8_t> scan_buffer(read_amount);
397*adcb0a62SAndroid Build Coastguard Worker
398*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER({
399*adcb0a62SAndroid Build Coastguard Worker incfs::util::clearAndFree(scan_buffer);
400*adcb0a62SAndroid Build Coastguard Worker return kIoError;
401*adcb0a62SAndroid Build Coastguard Worker });
402*adcb0a62SAndroid Build Coastguard Worker
403*adcb0a62SAndroid Build Coastguard Worker if (auto result = FindCentralDirectoryInfo(debug_file_name, archive,
404*adcb0a62SAndroid Build Coastguard Worker file_length, scan_buffer, &cdInfo);
405*adcb0a62SAndroid Build Coastguard Worker result != kSuccess) {
406*adcb0a62SAndroid Build Coastguard Worker return result;
407*adcb0a62SAndroid Build Coastguard Worker }
408*adcb0a62SAndroid Build Coastguard Worker
409*adcb0a62SAndroid Build Coastguard Worker scan_buffer.clear();
410*adcb0a62SAndroid Build Coastguard Worker
411*adcb0a62SAndroid Build Coastguard Worker if (cdInfo.num_records == 0) {
412*adcb0a62SAndroid Build Coastguard Worker #if defined(__ANDROID__)
413*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: empty archive?");
414*adcb0a62SAndroid Build Coastguard Worker #endif
415*adcb0a62SAndroid Build Coastguard Worker return kEmptyArchive;
416*adcb0a62SAndroid Build Coastguard Worker }
417*adcb0a62SAndroid Build Coastguard Worker
418*adcb0a62SAndroid Build Coastguard Worker if (cdInfo.cd_size >= SIZE_MAX) {
419*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: The size of central directory doesn't fit in range of size_t: %" PRIu64,
420*adcb0a62SAndroid Build Coastguard Worker cdInfo.cd_size);
421*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
422*adcb0a62SAndroid Build Coastguard Worker }
423*adcb0a62SAndroid Build Coastguard Worker
424*adcb0a62SAndroid Build Coastguard Worker ALOGV("+++ num_entries=%" PRIu64 " dir_size=%" PRIu64 " dir_offset=%" PRIu64, cdInfo.num_records,
425*adcb0a62SAndroid Build Coastguard Worker cdInfo.cd_size, cdInfo.cd_start_offset);
426*adcb0a62SAndroid Build Coastguard Worker
427*adcb0a62SAndroid Build Coastguard Worker // It all looks good. Create a mapping for the CD, and set the fields in archive.
428*adcb0a62SAndroid Build Coastguard Worker if (!archive->InitializeCentralDirectory(static_cast<off64_t>(cdInfo.cd_start_offset),
429*adcb0a62SAndroid Build Coastguard Worker static_cast<size_t>(cdInfo.cd_size))) {
430*adcb0a62SAndroid Build Coastguard Worker return kMmapFailed;
431*adcb0a62SAndroid Build Coastguard Worker }
432*adcb0a62SAndroid Build Coastguard Worker
433*adcb0a62SAndroid Build Coastguard Worker archive->num_entries = cdInfo.num_records;
434*adcb0a62SAndroid Build Coastguard Worker archive->directory_offset = cdInfo.cd_start_offset;
435*adcb0a62SAndroid Build Coastguard Worker
436*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
437*adcb0a62SAndroid Build Coastguard Worker }
438*adcb0a62SAndroid Build Coastguard Worker
ParseZip64ExtendedInfoInExtraField(const uint8_t * extraFieldStart,uint16_t extraFieldLength,uint32_t zip32UncompressedSize,uint32_t zip32CompressedSize,std::optional<uint32_t> zip32LocalFileHeaderOffset,Zip64ExtendedInfo * zip64Info)439*adcb0a62SAndroid Build Coastguard Worker static ZipError ParseZip64ExtendedInfoInExtraField(
440*adcb0a62SAndroid Build Coastguard Worker const uint8_t* extraFieldStart, uint16_t extraFieldLength, uint32_t zip32UncompressedSize,
441*adcb0a62SAndroid Build Coastguard Worker uint32_t zip32CompressedSize, std::optional<uint32_t> zip32LocalFileHeaderOffset,
442*adcb0a62SAndroid Build Coastguard Worker Zip64ExtendedInfo* zip64Info) {
443*adcb0a62SAndroid Build Coastguard Worker if (extraFieldLength <= 4) {
444*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Extra field isn't large enough to hold zip64 info, size %" PRIu16,
445*adcb0a62SAndroid Build Coastguard Worker extraFieldLength);
446*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
447*adcb0a62SAndroid Build Coastguard Worker }
448*adcb0a62SAndroid Build Coastguard Worker
449*adcb0a62SAndroid Build Coastguard Worker // Each header MUST consist of:
450*adcb0a62SAndroid Build Coastguard Worker // Header ID - 2 bytes
451*adcb0a62SAndroid Build Coastguard Worker // Data Size - 2 bytes
452*adcb0a62SAndroid Build Coastguard Worker uint16_t offset = 0;
453*adcb0a62SAndroid Build Coastguard Worker while (offset < extraFieldLength - 4) {
454*adcb0a62SAndroid Build Coastguard Worker auto readPtr = const_cast<uint8_t*>(extraFieldStart + offset);
455*adcb0a62SAndroid Build Coastguard Worker auto headerId = ConsumeUnaligned<uint16_t>(&readPtr);
456*adcb0a62SAndroid Build Coastguard Worker auto dataSize = ConsumeUnaligned<uint16_t>(&readPtr);
457*adcb0a62SAndroid Build Coastguard Worker
458*adcb0a62SAndroid Build Coastguard Worker offset += 4;
459*adcb0a62SAndroid Build Coastguard Worker if (dataSize > extraFieldLength - offset) {
460*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Data size exceeds the boundary of extra field, data size %" PRIu16, dataSize);
461*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
462*adcb0a62SAndroid Build Coastguard Worker }
463*adcb0a62SAndroid Build Coastguard Worker
464*adcb0a62SAndroid Build Coastguard Worker // Skip the other types of extensible data fields. Details in
465*adcb0a62SAndroid Build Coastguard Worker // https://pkware.cachefly.net/webdocs/casestudies/APPNOTE.TXT section 4.5
466*adcb0a62SAndroid Build Coastguard Worker if (headerId != Zip64ExtendedInfo::kHeaderId) {
467*adcb0a62SAndroid Build Coastguard Worker offset += dataSize;
468*adcb0a62SAndroid Build Coastguard Worker continue;
469*adcb0a62SAndroid Build Coastguard Worker }
470*adcb0a62SAndroid Build Coastguard Worker // Layout for Zip64 extended info (not include first 4 bytes of header)
471*adcb0a62SAndroid Build Coastguard Worker // Original
472*adcb0a62SAndroid Build Coastguard Worker // Size 8 bytes Original uncompressed file size
473*adcb0a62SAndroid Build Coastguard Worker
474*adcb0a62SAndroid Build Coastguard Worker // Compressed
475*adcb0a62SAndroid Build Coastguard Worker // Size 8 bytes Size of compressed data
476*adcb0a62SAndroid Build Coastguard Worker
477*adcb0a62SAndroid Build Coastguard Worker // Relative Header
478*adcb0a62SAndroid Build Coastguard Worker // Offset 8 bytes Offset of local header record
479*adcb0a62SAndroid Build Coastguard Worker
480*adcb0a62SAndroid Build Coastguard Worker // Disk Start
481*adcb0a62SAndroid Build Coastguard Worker // Number 4 bytes Number of the disk on which
482*adcb0a62SAndroid Build Coastguard Worker // this file starts
483*adcb0a62SAndroid Build Coastguard Worker if (dataSize == 8 * 3 + 4) {
484*adcb0a62SAndroid Build Coastguard Worker ALOGW(
485*adcb0a62SAndroid Build Coastguard Worker "Zip: Found `Disk Start Number` field in extra block. Ignoring it.");
486*adcb0a62SAndroid Build Coastguard Worker dataSize -= 4;
487*adcb0a62SAndroid Build Coastguard Worker }
488*adcb0a62SAndroid Build Coastguard Worker // Sometimes, only a subset of {uncompressed size, compressed size, relative
489*adcb0a62SAndroid Build Coastguard Worker // header offset} is presents. but golang's zip writer will write out all
490*adcb0a62SAndroid Build Coastguard Worker // 3 even if only 1 is necessary. We should parse all 3 fields if they are
491*adcb0a62SAndroid Build Coastguard Worker // there.
492*adcb0a62SAndroid Build Coastguard Worker const bool completeField = dataSize == 8 * 3;
493*adcb0a62SAndroid Build Coastguard Worker
494*adcb0a62SAndroid Build Coastguard Worker std::optional<uint64_t> uncompressedFileSize;
495*adcb0a62SAndroid Build Coastguard Worker std::optional<uint64_t> compressedFileSize;
496*adcb0a62SAndroid Build Coastguard Worker std::optional<uint64_t> localHeaderOffset;
497*adcb0a62SAndroid Build Coastguard Worker if (zip32UncompressedSize == UINT32_MAX || completeField) {
498*adcb0a62SAndroid Build Coastguard Worker uncompressedFileSize = TryConsumeUnaligned<uint64_t>(
499*adcb0a62SAndroid Build Coastguard Worker &readPtr, extraFieldStart, extraFieldLength);
500*adcb0a62SAndroid Build Coastguard Worker if (!uncompressedFileSize.has_value()) return kInvalidOffset;
501*adcb0a62SAndroid Build Coastguard Worker }
502*adcb0a62SAndroid Build Coastguard Worker if (zip32CompressedSize == UINT32_MAX || completeField) {
503*adcb0a62SAndroid Build Coastguard Worker compressedFileSize = TryConsumeUnaligned<uint64_t>(
504*adcb0a62SAndroid Build Coastguard Worker &readPtr, extraFieldStart, extraFieldLength);
505*adcb0a62SAndroid Build Coastguard Worker if (!compressedFileSize.has_value()) return kInvalidOffset;
506*adcb0a62SAndroid Build Coastguard Worker }
507*adcb0a62SAndroid Build Coastguard Worker if (zip32LocalFileHeaderOffset == UINT32_MAX || completeField) {
508*adcb0a62SAndroid Build Coastguard Worker localHeaderOffset = TryConsumeUnaligned<uint64_t>(
509*adcb0a62SAndroid Build Coastguard Worker &readPtr, extraFieldStart, extraFieldLength);
510*adcb0a62SAndroid Build Coastguard Worker if (!localHeaderOffset.has_value()) return kInvalidOffset;
511*adcb0a62SAndroid Build Coastguard Worker }
512*adcb0a62SAndroid Build Coastguard Worker
513*adcb0a62SAndroid Build Coastguard Worker // calculate how many bytes we read after the data size field.
514*adcb0a62SAndroid Build Coastguard Worker size_t bytesRead = readPtr - (extraFieldStart + offset);
515*adcb0a62SAndroid Build Coastguard Worker if (bytesRead == 0) {
516*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Data size should not be 0 in zip64 extended field");
517*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
518*adcb0a62SAndroid Build Coastguard Worker }
519*adcb0a62SAndroid Build Coastguard Worker
520*adcb0a62SAndroid Build Coastguard Worker if (dataSize != bytesRead) {
521*adcb0a62SAndroid Build Coastguard Worker auto localOffsetString = zip32LocalFileHeaderOffset.has_value()
522*adcb0a62SAndroid Build Coastguard Worker ? std::to_string(zip32LocalFileHeaderOffset.value())
523*adcb0a62SAndroid Build Coastguard Worker : "missing";
524*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Invalid data size in zip64 extended field, expect %zu , get %" PRIu16
525*adcb0a62SAndroid Build Coastguard Worker ", uncompressed size %" PRIu32 ", compressed size %" PRIu32 ", local header offset %s",
526*adcb0a62SAndroid Build Coastguard Worker bytesRead, dataSize, zip32UncompressedSize, zip32CompressedSize,
527*adcb0a62SAndroid Build Coastguard Worker localOffsetString.c_str());
528*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
529*adcb0a62SAndroid Build Coastguard Worker }
530*adcb0a62SAndroid Build Coastguard Worker
531*adcb0a62SAndroid Build Coastguard Worker zip64Info->uncompressed_file_size = uncompressedFileSize;
532*adcb0a62SAndroid Build Coastguard Worker zip64Info->compressed_file_size = compressedFileSize;
533*adcb0a62SAndroid Build Coastguard Worker zip64Info->local_header_offset = localHeaderOffset;
534*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
535*adcb0a62SAndroid Build Coastguard Worker }
536*adcb0a62SAndroid Build Coastguard Worker
537*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: zip64 extended info isn't found in the extra field.");
538*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
539*adcb0a62SAndroid Build Coastguard Worker }
540*adcb0a62SAndroid Build Coastguard Worker
541*adcb0a62SAndroid Build Coastguard Worker /*
542*adcb0a62SAndroid Build Coastguard Worker * Parses the Zip archive's Central Directory. Allocates and populates the
543*adcb0a62SAndroid Build Coastguard Worker * hash table.
544*adcb0a62SAndroid Build Coastguard Worker *
545*adcb0a62SAndroid Build Coastguard Worker * Returns 0 on success.
546*adcb0a62SAndroid Build Coastguard Worker */
ParseZipArchive(ZipArchive * archive)547*adcb0a62SAndroid Build Coastguard Worker static ZipError ParseZipArchive(ZipArchive* archive) {
548*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER(return kIoError);
549*adcb0a62SAndroid Build Coastguard Worker
550*adcb0a62SAndroid Build Coastguard Worker maybePrefetch(archive->central_directory.GetBasePtr(), archive->central_directory.GetMapLength());
551*adcb0a62SAndroid Build Coastguard Worker const uint8_t* const cd_ptr = archive->central_directory.GetBasePtr();
552*adcb0a62SAndroid Build Coastguard Worker const size_t cd_length = archive->central_directory.GetMapLength();
553*adcb0a62SAndroid Build Coastguard Worker const uint8_t* const cd_end = cd_ptr + cd_length;
554*adcb0a62SAndroid Build Coastguard Worker const uint64_t num_entries = archive->num_entries;
555*adcb0a62SAndroid Build Coastguard Worker const uint8_t* ptr = cd_ptr;
556*adcb0a62SAndroid Build Coastguard Worker uint16_t max_file_name_length = 0;
557*adcb0a62SAndroid Build Coastguard Worker
558*adcb0a62SAndroid Build Coastguard Worker /* Walk through the central directory and verify values */
559*adcb0a62SAndroid Build Coastguard Worker for (uint64_t i = 0; i < num_entries; i++) {
560*adcb0a62SAndroid Build Coastguard Worker if (ptr > cd_end - sizeof(CentralDirectoryRecord)) {
561*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: ran off the end (item #%" PRIu64 ", %zu bytes of central directory)", i,
562*adcb0a62SAndroid Build Coastguard Worker cd_length);
563*adcb0a62SAndroid Build Coastguard Worker #if defined(__ANDROID__)
564*adcb0a62SAndroid Build Coastguard Worker android_errorWriteLog(0x534e4554, "36392138");
565*adcb0a62SAndroid Build Coastguard Worker #endif
566*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
567*adcb0a62SAndroid Build Coastguard Worker }
568*adcb0a62SAndroid Build Coastguard Worker
569*adcb0a62SAndroid Build Coastguard Worker auto cdr = reinterpret_cast<const CentralDirectoryRecord*>(ptr);
570*adcb0a62SAndroid Build Coastguard Worker if (cdr->record_signature != CentralDirectoryRecord::kSignature) {
571*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: missed a central dir sig (at %" PRIu64 ")", i);
572*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
573*adcb0a62SAndroid Build Coastguard Worker }
574*adcb0a62SAndroid Build Coastguard Worker
575*adcb0a62SAndroid Build Coastguard Worker const uint16_t file_name_length = cdr->file_name_length;
576*adcb0a62SAndroid Build Coastguard Worker const uint16_t extra_length = cdr->extra_field_length;
577*adcb0a62SAndroid Build Coastguard Worker const uint16_t comment_length = cdr->comment_length;
578*adcb0a62SAndroid Build Coastguard Worker const uint8_t* file_name = ptr + sizeof(CentralDirectoryRecord);
579*adcb0a62SAndroid Build Coastguard Worker
580*adcb0a62SAndroid Build Coastguard Worker if (file_name_length >= cd_length || file_name > cd_end - file_name_length) {
581*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: file name for entry %" PRIu64
582*adcb0a62SAndroid Build Coastguard Worker " exceeds the central directory range, file_name_length: %" PRIu16 ", cd_length: %zu",
583*adcb0a62SAndroid Build Coastguard Worker i, file_name_length, cd_length);
584*adcb0a62SAndroid Build Coastguard Worker return kInvalidEntryName;
585*adcb0a62SAndroid Build Coastguard Worker }
586*adcb0a62SAndroid Build Coastguard Worker
587*adcb0a62SAndroid Build Coastguard Worker max_file_name_length = std::max(max_file_name_length, file_name_length);
588*adcb0a62SAndroid Build Coastguard Worker
589*adcb0a62SAndroid Build Coastguard Worker const uint8_t* extra_field = file_name + file_name_length;
590*adcb0a62SAndroid Build Coastguard Worker if (extra_length >= cd_length || extra_field > cd_end - extra_length) {
591*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: extra field for entry %" PRIu64
592*adcb0a62SAndroid Build Coastguard Worker " exceeds the central directory range, file_name_length: %" PRIu16 ", cd_length: %zu",
593*adcb0a62SAndroid Build Coastguard Worker i, extra_length, cd_length);
594*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
595*adcb0a62SAndroid Build Coastguard Worker }
596*adcb0a62SAndroid Build Coastguard Worker
597*adcb0a62SAndroid Build Coastguard Worker off64_t local_header_offset = cdr->local_file_header_offset;
598*adcb0a62SAndroid Build Coastguard Worker if (local_header_offset == UINT32_MAX) {
599*adcb0a62SAndroid Build Coastguard Worker Zip64ExtendedInfo zip64_info{};
600*adcb0a62SAndroid Build Coastguard Worker if (auto status = ParseZip64ExtendedInfoInExtraField(
601*adcb0a62SAndroid Build Coastguard Worker extra_field, extra_length, cdr->uncompressed_size, cdr->compressed_size,
602*adcb0a62SAndroid Build Coastguard Worker cdr->local_file_header_offset, &zip64_info);
603*adcb0a62SAndroid Build Coastguard Worker status != kSuccess) {
604*adcb0a62SAndroid Build Coastguard Worker return status;
605*adcb0a62SAndroid Build Coastguard Worker }
606*adcb0a62SAndroid Build Coastguard Worker CHECK(zip64_info.local_header_offset.has_value());
607*adcb0a62SAndroid Build Coastguard Worker local_header_offset = zip64_info.local_header_offset.value();
608*adcb0a62SAndroid Build Coastguard Worker }
609*adcb0a62SAndroid Build Coastguard Worker
610*adcb0a62SAndroid Build Coastguard Worker if (local_header_offset >= archive->directory_offset) {
611*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad LFH offset %" PRId64 " at entry %" PRIu64,
612*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(local_header_offset), i);
613*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
614*adcb0a62SAndroid Build Coastguard Worker }
615*adcb0a62SAndroid Build Coastguard Worker
616*adcb0a62SAndroid Build Coastguard Worker // Check that file name is valid UTF-8 and doesn't contain NUL (U+0000) characters.
617*adcb0a62SAndroid Build Coastguard Worker if (!IsValidEntryName(file_name, file_name_length)) {
618*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: invalid file name at entry %" PRIu64, i);
619*adcb0a62SAndroid Build Coastguard Worker return kInvalidEntryName;
620*adcb0a62SAndroid Build Coastguard Worker }
621*adcb0a62SAndroid Build Coastguard Worker
622*adcb0a62SAndroid Build Coastguard Worker ptr += sizeof(CentralDirectoryRecord) + file_name_length + extra_length + comment_length;
623*adcb0a62SAndroid Build Coastguard Worker if ((ptr - cd_ptr) > static_cast<int64_t>(cd_length)) {
624*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad CD advance (%tu vs %zu) at entry %" PRIu64, ptr - cd_ptr, cd_length, i);
625*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
626*adcb0a62SAndroid Build Coastguard Worker }
627*adcb0a62SAndroid Build Coastguard Worker }
628*adcb0a62SAndroid Build Coastguard Worker
629*adcb0a62SAndroid Build Coastguard Worker /* Create memory efficient entry map */
630*adcb0a62SAndroid Build Coastguard Worker archive->cd_entry_map = CdEntryMapInterface::Create(num_entries, cd_length, max_file_name_length);
631*adcb0a62SAndroid Build Coastguard Worker if (archive->cd_entry_map == nullptr) {
632*adcb0a62SAndroid Build Coastguard Worker return kAllocationFailed;
633*adcb0a62SAndroid Build Coastguard Worker }
634*adcb0a62SAndroid Build Coastguard Worker
635*adcb0a62SAndroid Build Coastguard Worker /* Central directory verified, now add entries to the hash table */
636*adcb0a62SAndroid Build Coastguard Worker ptr = cd_ptr;
637*adcb0a62SAndroid Build Coastguard Worker for (uint64_t i = 0; i < num_entries; i++) {
638*adcb0a62SAndroid Build Coastguard Worker auto cdr = reinterpret_cast<const CentralDirectoryRecord*>(ptr);
639*adcb0a62SAndroid Build Coastguard Worker std::string_view entry_name{reinterpret_cast<const char*>(ptr + sizeof(*cdr)),
640*adcb0a62SAndroid Build Coastguard Worker cdr->file_name_length};
641*adcb0a62SAndroid Build Coastguard Worker auto add_result = archive->cd_entry_map->AddToMap(entry_name, cd_ptr);
642*adcb0a62SAndroid Build Coastguard Worker if (add_result != 0) {
643*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Error adding entry to hash table %d", add_result);
644*adcb0a62SAndroid Build Coastguard Worker return add_result;
645*adcb0a62SAndroid Build Coastguard Worker }
646*adcb0a62SAndroid Build Coastguard Worker ptr += sizeof(*cdr) + cdr->file_name_length + cdr->extra_field_length + cdr->comment_length;
647*adcb0a62SAndroid Build Coastguard Worker }
648*adcb0a62SAndroid Build Coastguard Worker
649*adcb0a62SAndroid Build Coastguard Worker uint32_t lfh_start_bytes_buf;
650*adcb0a62SAndroid Build Coastguard Worker auto lfh_start_bytes = reinterpret_cast<const uint32_t*>(archive->mapped_zip.ReadAtOffset(
651*adcb0a62SAndroid Build Coastguard Worker reinterpret_cast<uint8_t*>(&lfh_start_bytes_buf), sizeof(lfh_start_bytes_buf), 0));
652*adcb0a62SAndroid Build Coastguard Worker if (!lfh_start_bytes) {
653*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Unable to read header for entry at offset == 0.");
654*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
655*adcb0a62SAndroid Build Coastguard Worker }
656*adcb0a62SAndroid Build Coastguard Worker
657*adcb0a62SAndroid Build Coastguard Worker if (*lfh_start_bytes != LocalFileHeader::kSignature) {
658*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Entry at offset zero has invalid LFH signature %" PRIx32, *lfh_start_bytes);
659*adcb0a62SAndroid Build Coastguard Worker #if defined(__ANDROID__)
660*adcb0a62SAndroid Build Coastguard Worker android_errorWriteLog(0x534e4554, "64211847");
661*adcb0a62SAndroid Build Coastguard Worker #endif
662*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
663*adcb0a62SAndroid Build Coastguard Worker }
664*adcb0a62SAndroid Build Coastguard Worker
665*adcb0a62SAndroid Build Coastguard Worker ALOGV("+++ zip good scan %" PRIu64 " entries", num_entries);
666*adcb0a62SAndroid Build Coastguard Worker
667*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
668*adcb0a62SAndroid Build Coastguard Worker }
669*adcb0a62SAndroid Build Coastguard Worker
OpenArchiveInternal(ZipArchive * archive,const char * debug_file_name)670*adcb0a62SAndroid Build Coastguard Worker static int32_t OpenArchiveInternal(ZipArchive* archive, const char* debug_file_name) {
671*adcb0a62SAndroid Build Coastguard Worker int32_t result = MapCentralDirectory(debug_file_name, archive);
672*adcb0a62SAndroid Build Coastguard Worker return result != kSuccess ? result : ParseZipArchive(archive);
673*adcb0a62SAndroid Build Coastguard Worker }
674*adcb0a62SAndroid Build Coastguard Worker
OpenArchiveFd(int fd,const char * debug_file_name,ZipArchiveHandle * handle,bool assume_ownership)675*adcb0a62SAndroid Build Coastguard Worker int32_t OpenArchiveFd(int fd, const char* debug_file_name, ZipArchiveHandle* handle,
676*adcb0a62SAndroid Build Coastguard Worker bool assume_ownership) {
677*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive = new ZipArchive(MappedZipFile(fd), assume_ownership);
678*adcb0a62SAndroid Build Coastguard Worker *handle = archive;
679*adcb0a62SAndroid Build Coastguard Worker return OpenArchiveInternal(archive, debug_file_name);
680*adcb0a62SAndroid Build Coastguard Worker }
681*adcb0a62SAndroid Build Coastguard Worker
OpenArchiveFdRange(int fd,const char * debug_file_name,ZipArchiveHandle * handle,off64_t length,off64_t offset,bool assume_ownership)682*adcb0a62SAndroid Build Coastguard Worker int32_t OpenArchiveFdRange(int fd, const char* debug_file_name, ZipArchiveHandle* handle,
683*adcb0a62SAndroid Build Coastguard Worker off64_t length, off64_t offset, bool assume_ownership) {
684*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive = new ZipArchive(MappedZipFile(fd, length, offset), assume_ownership);
685*adcb0a62SAndroid Build Coastguard Worker *handle = archive;
686*adcb0a62SAndroid Build Coastguard Worker
687*adcb0a62SAndroid Build Coastguard Worker if (length < 0) {
688*adcb0a62SAndroid Build Coastguard Worker ALOGW("Invalid zip length %" PRId64, length);
689*adcb0a62SAndroid Build Coastguard Worker return kIoError;
690*adcb0a62SAndroid Build Coastguard Worker }
691*adcb0a62SAndroid Build Coastguard Worker
692*adcb0a62SAndroid Build Coastguard Worker if (offset < 0) {
693*adcb0a62SAndroid Build Coastguard Worker ALOGW("Invalid zip offset %" PRId64, offset);
694*adcb0a62SAndroid Build Coastguard Worker return kIoError;
695*adcb0a62SAndroid Build Coastguard Worker }
696*adcb0a62SAndroid Build Coastguard Worker
697*adcb0a62SAndroid Build Coastguard Worker return OpenArchiveInternal(archive, debug_file_name);
698*adcb0a62SAndroid Build Coastguard Worker }
699*adcb0a62SAndroid Build Coastguard Worker
OpenArchive(const char * fileName,ZipArchiveHandle * handle)700*adcb0a62SAndroid Build Coastguard Worker int32_t OpenArchive(const char* fileName, ZipArchiveHandle* handle) {
701*adcb0a62SAndroid Build Coastguard Worker const int fd = ::android::base::utf8::open(fileName, O_RDONLY | O_BINARY | O_CLOEXEC, 0);
702*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive = new ZipArchive(MappedZipFile(fd), true);
703*adcb0a62SAndroid Build Coastguard Worker *handle = archive;
704*adcb0a62SAndroid Build Coastguard Worker
705*adcb0a62SAndroid Build Coastguard Worker if (fd < 0) {
706*adcb0a62SAndroid Build Coastguard Worker ALOGW("Unable to open '%s': %s", fileName, strerror(errno));
707*adcb0a62SAndroid Build Coastguard Worker return kIoError;
708*adcb0a62SAndroid Build Coastguard Worker }
709*adcb0a62SAndroid Build Coastguard Worker
710*adcb0a62SAndroid Build Coastguard Worker return OpenArchiveInternal(archive, fileName);
711*adcb0a62SAndroid Build Coastguard Worker }
712*adcb0a62SAndroid Build Coastguard Worker
OpenArchiveFromMemory(const void * address,size_t length,const char * debug_file_name,ZipArchiveHandle * handle)713*adcb0a62SAndroid Build Coastguard Worker int32_t OpenArchiveFromMemory(const void* address, size_t length, const char* debug_file_name,
714*adcb0a62SAndroid Build Coastguard Worker ZipArchiveHandle* handle) {
715*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive = new ZipArchive(address, length);
716*adcb0a62SAndroid Build Coastguard Worker *handle = archive;
717*adcb0a62SAndroid Build Coastguard Worker return OpenArchiveInternal(archive, debug_file_name);
718*adcb0a62SAndroid Build Coastguard Worker }
719*adcb0a62SAndroid Build Coastguard Worker
GetArchiveInfo(ZipArchiveHandle archive)720*adcb0a62SAndroid Build Coastguard Worker ZipArchiveInfo GetArchiveInfo(ZipArchiveHandle archive) {
721*adcb0a62SAndroid Build Coastguard Worker ZipArchiveInfo result;
722*adcb0a62SAndroid Build Coastguard Worker result.archive_size = archive->mapped_zip.GetFileLength();
723*adcb0a62SAndroid Build Coastguard Worker result.entry_count = archive->num_entries;
724*adcb0a62SAndroid Build Coastguard Worker return result;
725*adcb0a62SAndroid Build Coastguard Worker }
726*adcb0a62SAndroid Build Coastguard Worker
727*adcb0a62SAndroid Build Coastguard Worker /*
728*adcb0a62SAndroid Build Coastguard Worker * Close a ZipArchive, closing the file and freeing the contents.
729*adcb0a62SAndroid Build Coastguard Worker */
CloseArchive(ZipArchiveHandle archive)730*adcb0a62SAndroid Build Coastguard Worker void CloseArchive(ZipArchiveHandle archive) {
731*adcb0a62SAndroid Build Coastguard Worker ALOGV("Closing archive %p", archive);
732*adcb0a62SAndroid Build Coastguard Worker delete archive;
733*adcb0a62SAndroid Build Coastguard Worker }
734*adcb0a62SAndroid Build Coastguard Worker
ValidateDataDescriptor(MappedZipFile & mapped_zip,const ZipEntry64 * entry)735*adcb0a62SAndroid Build Coastguard Worker static int32_t ValidateDataDescriptor(MappedZipFile& mapped_zip, const ZipEntry64* entry) {
736*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER(return kIoError);
737*adcb0a62SAndroid Build Coastguard Worker
738*adcb0a62SAndroid Build Coastguard Worker // Maximum possible size for data descriptor: 2 * 4 + 2 * 8 = 24 bytes
739*adcb0a62SAndroid Build Coastguard Worker // The zip format doesn't specify the size of data descriptor. But we won't read OOB here even
740*adcb0a62SAndroid Build Coastguard Worker // if the descriptor isn't present. Because the size cd + eocd in the end of the zipfile is
741*adcb0a62SAndroid Build Coastguard Worker // larger than 24 bytes. And if the descriptor contains invalid data, we'll abort due to
742*adcb0a62SAndroid Build Coastguard Worker // kInconsistentInformation.
743*adcb0a62SAndroid Build Coastguard Worker uint8_t ddBuf[24];
744*adcb0a62SAndroid Build Coastguard Worker off64_t offset = entry->offset;
745*adcb0a62SAndroid Build Coastguard Worker if (entry->method != kCompressStored) {
746*adcb0a62SAndroid Build Coastguard Worker offset += entry->compressed_length;
747*adcb0a62SAndroid Build Coastguard Worker } else {
748*adcb0a62SAndroid Build Coastguard Worker offset += entry->uncompressed_length;
749*adcb0a62SAndroid Build Coastguard Worker }
750*adcb0a62SAndroid Build Coastguard Worker
751*adcb0a62SAndroid Build Coastguard Worker const auto ddPtr = mapped_zip.ReadAtOffset(ddBuf, sizeof(ddBuf), offset);
752*adcb0a62SAndroid Build Coastguard Worker if (!ddPtr) {
753*adcb0a62SAndroid Build Coastguard Worker return kIoError;
754*adcb0a62SAndroid Build Coastguard Worker }
755*adcb0a62SAndroid Build Coastguard Worker
756*adcb0a62SAndroid Build Coastguard Worker const uint32_t ddSignature = *(reinterpret_cast<const uint32_t*>(ddPtr));
757*adcb0a62SAndroid Build Coastguard Worker const uint8_t* ddReadPtr = (ddSignature == DataDescriptor::kOptSignature) ? ddPtr + 4 : ddPtr;
758*adcb0a62SAndroid Build Coastguard Worker DataDescriptor descriptor{};
759*adcb0a62SAndroid Build Coastguard Worker descriptor.crc32 = ConsumeUnaligned<uint32_t>(&ddReadPtr);
760*adcb0a62SAndroid Build Coastguard Worker // Don't use entry->zip64_format_size, because that is set to true even if
761*adcb0a62SAndroid Build Coastguard Worker // both compressed/uncompressed size are < 0xFFFFFFFF.
762*adcb0a62SAndroid Build Coastguard Worker constexpr auto u32max = std::numeric_limits<uint32_t>::max();
763*adcb0a62SAndroid Build Coastguard Worker if (entry->compressed_length >= u32max ||
764*adcb0a62SAndroid Build Coastguard Worker entry->uncompressed_length >= u32max) {
765*adcb0a62SAndroid Build Coastguard Worker descriptor.compressed_size = ConsumeUnaligned<uint64_t>(&ddReadPtr);
766*adcb0a62SAndroid Build Coastguard Worker descriptor.uncompressed_size = ConsumeUnaligned<uint64_t>(&ddReadPtr);
767*adcb0a62SAndroid Build Coastguard Worker } else {
768*adcb0a62SAndroid Build Coastguard Worker descriptor.compressed_size = ConsumeUnaligned<uint32_t>(&ddReadPtr);
769*adcb0a62SAndroid Build Coastguard Worker descriptor.uncompressed_size = ConsumeUnaligned<uint32_t>(&ddReadPtr);
770*adcb0a62SAndroid Build Coastguard Worker }
771*adcb0a62SAndroid Build Coastguard Worker
772*adcb0a62SAndroid Build Coastguard Worker // Validate that the values in the data descriptor match those in the central
773*adcb0a62SAndroid Build Coastguard Worker // directory.
774*adcb0a62SAndroid Build Coastguard Worker if (entry->compressed_length != descriptor.compressed_size ||
775*adcb0a62SAndroid Build Coastguard Worker entry->uncompressed_length != descriptor.uncompressed_size ||
776*adcb0a62SAndroid Build Coastguard Worker entry->crc32 != descriptor.crc32) {
777*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: size/crc32 mismatch. expected {%" PRIu64 ", %" PRIu64 ", %" PRIx32
778*adcb0a62SAndroid Build Coastguard Worker "}, was {%" PRIu64 ", %" PRIu64 ", %" PRIx32 "}",
779*adcb0a62SAndroid Build Coastguard Worker entry->compressed_length, entry->uncompressed_length, entry->crc32,
780*adcb0a62SAndroid Build Coastguard Worker descriptor.compressed_size, descriptor.uncompressed_size, descriptor.crc32);
781*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
782*adcb0a62SAndroid Build Coastguard Worker }
783*adcb0a62SAndroid Build Coastguard Worker
784*adcb0a62SAndroid Build Coastguard Worker return 0;
785*adcb0a62SAndroid Build Coastguard Worker }
786*adcb0a62SAndroid Build Coastguard Worker
FindEntry(const ZipArchive * archive,std::string_view entryName,const uint64_t nameOffset,ZipEntry64 * data)787*adcb0a62SAndroid Build Coastguard Worker static int32_t FindEntry(const ZipArchive* archive, std::string_view entryName,
788*adcb0a62SAndroid Build Coastguard Worker const uint64_t nameOffset, ZipEntry64* data) {
789*adcb0a62SAndroid Build Coastguard Worker std::vector<uint8_t> buffer;
790*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER({
791*adcb0a62SAndroid Build Coastguard Worker incfs::util::clearAndFree(buffer);
792*adcb0a62SAndroid Build Coastguard Worker return kIoError;
793*adcb0a62SAndroid Build Coastguard Worker });
794*adcb0a62SAndroid Build Coastguard Worker
795*adcb0a62SAndroid Build Coastguard Worker // Recover the start of the central directory entry from the filename
796*adcb0a62SAndroid Build Coastguard Worker // pointer. The filename is the first entry past the fixed-size data,
797*adcb0a62SAndroid Build Coastguard Worker // so we can just subtract back from that.
798*adcb0a62SAndroid Build Coastguard Worker const uint8_t* base_ptr = archive->central_directory.GetBasePtr();
799*adcb0a62SAndroid Build Coastguard Worker const uint8_t* ptr = base_ptr + nameOffset;
800*adcb0a62SAndroid Build Coastguard Worker ptr -= sizeof(CentralDirectoryRecord);
801*adcb0a62SAndroid Build Coastguard Worker
802*adcb0a62SAndroid Build Coastguard Worker // This is the base of our mmapped region, we have to check that
803*adcb0a62SAndroid Build Coastguard Worker // the name that's in the hash table is a pointer to a location within
804*adcb0a62SAndroid Build Coastguard Worker // this mapped region.
805*adcb0a62SAndroid Build Coastguard Worker if (ptr < base_ptr || ptr > base_ptr + archive->central_directory.GetMapLength()) {
806*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Invalid entry pointer");
807*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
808*adcb0a62SAndroid Build Coastguard Worker }
809*adcb0a62SAndroid Build Coastguard Worker
810*adcb0a62SAndroid Build Coastguard Worker auto cdr = reinterpret_cast<const CentralDirectoryRecord*>(ptr);
811*adcb0a62SAndroid Build Coastguard Worker
812*adcb0a62SAndroid Build Coastguard Worker // The offset of the start of the central directory in the zipfile.
813*adcb0a62SAndroid Build Coastguard Worker // We keep this lying around so that we can check all our lengths
814*adcb0a62SAndroid Build Coastguard Worker // and our per-file structures.
815*adcb0a62SAndroid Build Coastguard Worker const off64_t cd_offset = archive->directory_offset;
816*adcb0a62SAndroid Build Coastguard Worker
817*adcb0a62SAndroid Build Coastguard Worker // Fill out the compression method, modification time, crc32
818*adcb0a62SAndroid Build Coastguard Worker // and other interesting attributes from the central directory. These
819*adcb0a62SAndroid Build Coastguard Worker // will later be compared against values from the local file header.
820*adcb0a62SAndroid Build Coastguard Worker data->method = cdr->compression_method;
821*adcb0a62SAndroid Build Coastguard Worker data->mod_time = cdr->last_mod_date << 16 | cdr->last_mod_time;
822*adcb0a62SAndroid Build Coastguard Worker data->crc32 = cdr->crc32;
823*adcb0a62SAndroid Build Coastguard Worker data->compressed_length = cdr->compressed_size;
824*adcb0a62SAndroid Build Coastguard Worker data->uncompressed_length = cdr->uncompressed_size;
825*adcb0a62SAndroid Build Coastguard Worker
826*adcb0a62SAndroid Build Coastguard Worker // Figure out the local header offset from the central directory. The
827*adcb0a62SAndroid Build Coastguard Worker // actual file data will begin after the local header and the name /
828*adcb0a62SAndroid Build Coastguard Worker // extra comments.
829*adcb0a62SAndroid Build Coastguard Worker off64_t local_header_offset = cdr->local_file_header_offset;
830*adcb0a62SAndroid Build Coastguard Worker // One of the info field is UINT32_MAX, try to parse the real value in the zip64 extended info in
831*adcb0a62SAndroid Build Coastguard Worker // the extra field.
832*adcb0a62SAndroid Build Coastguard Worker if (cdr->uncompressed_size == UINT32_MAX || cdr->compressed_size == UINT32_MAX ||
833*adcb0a62SAndroid Build Coastguard Worker cdr->local_file_header_offset == UINT32_MAX) {
834*adcb0a62SAndroid Build Coastguard Worker const uint8_t* extra_field = ptr + sizeof(CentralDirectoryRecord) + cdr->file_name_length;
835*adcb0a62SAndroid Build Coastguard Worker Zip64ExtendedInfo zip64_info{};
836*adcb0a62SAndroid Build Coastguard Worker if (auto status = ParseZip64ExtendedInfoInExtraField(
837*adcb0a62SAndroid Build Coastguard Worker extra_field, cdr->extra_field_length, cdr->uncompressed_size, cdr->compressed_size,
838*adcb0a62SAndroid Build Coastguard Worker cdr->local_file_header_offset, &zip64_info);
839*adcb0a62SAndroid Build Coastguard Worker status != kSuccess) {
840*adcb0a62SAndroid Build Coastguard Worker return status;
841*adcb0a62SAndroid Build Coastguard Worker }
842*adcb0a62SAndroid Build Coastguard Worker
843*adcb0a62SAndroid Build Coastguard Worker data->uncompressed_length = zip64_info.uncompressed_file_size.value_or(cdr->uncompressed_size);
844*adcb0a62SAndroid Build Coastguard Worker data->compressed_length = zip64_info.compressed_file_size.value_or(cdr->compressed_size);
845*adcb0a62SAndroid Build Coastguard Worker local_header_offset = zip64_info.local_header_offset.value_or(local_header_offset);
846*adcb0a62SAndroid Build Coastguard Worker data->zip64_format_size =
847*adcb0a62SAndroid Build Coastguard Worker cdr->uncompressed_size == UINT32_MAX || cdr->compressed_size == UINT32_MAX;
848*adcb0a62SAndroid Build Coastguard Worker }
849*adcb0a62SAndroid Build Coastguard Worker
850*adcb0a62SAndroid Build Coastguard Worker off64_t local_header_end;
851*adcb0a62SAndroid Build Coastguard Worker if (__builtin_add_overflow(local_header_offset, sizeof(LocalFileHeader), &local_header_end) ||
852*adcb0a62SAndroid Build Coastguard Worker local_header_end >= cd_offset) {
853*adcb0a62SAndroid Build Coastguard Worker // We tested >= because the name that follows can't be zero length.
854*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad local hdr offset in zip");
855*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
856*adcb0a62SAndroid Build Coastguard Worker }
857*adcb0a62SAndroid Build Coastguard Worker
858*adcb0a62SAndroid Build Coastguard Worker uint8_t lfh_buf[sizeof(LocalFileHeader)];
859*adcb0a62SAndroid Build Coastguard Worker const auto lfh = reinterpret_cast<const LocalFileHeader*>(
860*adcb0a62SAndroid Build Coastguard Worker archive->mapped_zip.ReadAtOffset(lfh_buf, sizeof(lfh_buf), local_header_offset));
861*adcb0a62SAndroid Build Coastguard Worker if (!lfh) {
862*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: failed reading lfh name from offset %" PRId64,
863*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(local_header_offset));
864*adcb0a62SAndroid Build Coastguard Worker return kIoError;
865*adcb0a62SAndroid Build Coastguard Worker }
866*adcb0a62SAndroid Build Coastguard Worker
867*adcb0a62SAndroid Build Coastguard Worker if (lfh->lfh_signature != LocalFileHeader::kSignature) {
868*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: didn't find signature at start of lfh, offset=%" PRId64,
869*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(local_header_offset));
870*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
871*adcb0a62SAndroid Build Coastguard Worker }
872*adcb0a62SAndroid Build Coastguard Worker
873*adcb0a62SAndroid Build Coastguard Worker // Check that the local file header name matches the declared name in the central directory.
874*adcb0a62SAndroid Build Coastguard Worker CHECK_LE(entryName.size(), UINT16_MAX);
875*adcb0a62SAndroid Build Coastguard Worker auto name_length = static_cast<uint16_t>(entryName.size());
876*adcb0a62SAndroid Build Coastguard Worker if (lfh->file_name_length != name_length) {
877*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: lfh name length did not match central directory for %s: %" PRIu16 " %" PRIu16,
878*adcb0a62SAndroid Build Coastguard Worker std::string(entryName).c_str(), lfh->file_name_length, name_length);
879*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
880*adcb0a62SAndroid Build Coastguard Worker }
881*adcb0a62SAndroid Build Coastguard Worker off64_t name_offset;
882*adcb0a62SAndroid Build Coastguard Worker if (__builtin_add_overflow(local_header_offset, sizeof(LocalFileHeader), &name_offset)) {
883*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: lfh name offset invalid");
884*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
885*adcb0a62SAndroid Build Coastguard Worker }
886*adcb0a62SAndroid Build Coastguard Worker off64_t name_end;
887*adcb0a62SAndroid Build Coastguard Worker if (__builtin_add_overflow(name_offset, name_length, &name_end) || name_end > cd_offset) {
888*adcb0a62SAndroid Build Coastguard Worker // We tested > cd_offset here because the file data that follows can be zero length.
889*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: lfh name length invalid");
890*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
891*adcb0a62SAndroid Build Coastguard Worker }
892*adcb0a62SAndroid Build Coastguard Worker
893*adcb0a62SAndroid Build Coastguard Worker // An optimization: get enough memory on the stack to be able to use it later without an extra
894*adcb0a62SAndroid Build Coastguard Worker // allocation when reading the zip64 extended info. Reasonable names should be under half the
895*adcb0a62SAndroid Build Coastguard Worker // MAX_PATH (256 chars), and Zip64 header size is 32 bytes; archives often have some other extras,
896*adcb0a62SAndroid Build Coastguard Worker // e.g. alignment, so 128 bytes is outght to be enough for (almost) anybody. If it's not we'll
897*adcb0a62SAndroid Build Coastguard Worker // reallocate later anyway.
898*adcb0a62SAndroid Build Coastguard Worker uint8_t static_buf[128];
899*adcb0a62SAndroid Build Coastguard Worker auto name_buf = static_buf;
900*adcb0a62SAndroid Build Coastguard Worker if (name_length > std::size(static_buf)) {
901*adcb0a62SAndroid Build Coastguard Worker buffer.resize(name_length);
902*adcb0a62SAndroid Build Coastguard Worker name_buf = buffer.data();
903*adcb0a62SAndroid Build Coastguard Worker }
904*adcb0a62SAndroid Build Coastguard Worker const auto read_name = archive->mapped_zip.ReadAtOffset(name_buf, name_length, name_offset);
905*adcb0a62SAndroid Build Coastguard Worker if (!read_name) {
906*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: failed reading lfh name from offset %" PRId64, static_cast<int64_t>(name_offset));
907*adcb0a62SAndroid Build Coastguard Worker return kIoError;
908*adcb0a62SAndroid Build Coastguard Worker }
909*adcb0a62SAndroid Build Coastguard Worker if (memcmp(entryName.data(), read_name, name_length) != 0) {
910*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: lfh name did not match central directory");
911*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
912*adcb0a62SAndroid Build Coastguard Worker }
913*adcb0a62SAndroid Build Coastguard Worker
914*adcb0a62SAndroid Build Coastguard Worker // Check the extra field length, regardless of whether it's used, or what it's used for.
915*adcb0a62SAndroid Build Coastguard Worker const off64_t lfh_extra_field_offset = name_offset + lfh->file_name_length;
916*adcb0a62SAndroid Build Coastguard Worker const uint16_t lfh_extra_field_size = lfh->extra_field_length;
917*adcb0a62SAndroid Build Coastguard Worker if (lfh_extra_field_offset > cd_offset - lfh_extra_field_size) {
918*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: extra field has a bad size for entry %s", std::string(entryName).c_str());
919*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
920*adcb0a62SAndroid Build Coastguard Worker }
921*adcb0a62SAndroid Build Coastguard Worker
922*adcb0a62SAndroid Build Coastguard Worker data->extra_field_size = lfh_extra_field_size;
923*adcb0a62SAndroid Build Coastguard Worker
924*adcb0a62SAndroid Build Coastguard Worker // Check whether the extra field is being used for zip64.
925*adcb0a62SAndroid Build Coastguard Worker uint64_t lfh_uncompressed_size = lfh->uncompressed_size;
926*adcb0a62SAndroid Build Coastguard Worker uint64_t lfh_compressed_size = lfh->compressed_size;
927*adcb0a62SAndroid Build Coastguard Worker if (lfh_uncompressed_size == UINT32_MAX || lfh_compressed_size == UINT32_MAX) {
928*adcb0a62SAndroid Build Coastguard Worker if (lfh_uncompressed_size != UINT32_MAX || lfh_compressed_size != UINT32_MAX) {
929*adcb0a62SAndroid Build Coastguard Worker ALOGW(
930*adcb0a62SAndroid Build Coastguard Worker "Zip: zip64 on Android requires both compressed and uncompressed length to be "
931*adcb0a62SAndroid Build Coastguard Worker "UINT32_MAX");
932*adcb0a62SAndroid Build Coastguard Worker return kInvalidFile;
933*adcb0a62SAndroid Build Coastguard Worker }
934*adcb0a62SAndroid Build Coastguard Worker
935*adcb0a62SAndroid Build Coastguard Worker auto lfh_extra_field_buf = static_buf;
936*adcb0a62SAndroid Build Coastguard Worker if (lfh_extra_field_size > std::size(static_buf)) {
937*adcb0a62SAndroid Build Coastguard Worker // Make sure vector won't try to copy existing data if it needs to reallocate.
938*adcb0a62SAndroid Build Coastguard Worker buffer.clear();
939*adcb0a62SAndroid Build Coastguard Worker buffer.resize(lfh_extra_field_size);
940*adcb0a62SAndroid Build Coastguard Worker lfh_extra_field_buf = buffer.data();
941*adcb0a62SAndroid Build Coastguard Worker }
942*adcb0a62SAndroid Build Coastguard Worker const auto local_extra_field = archive->mapped_zip.ReadAtOffset(
943*adcb0a62SAndroid Build Coastguard Worker lfh_extra_field_buf, lfh_extra_field_size, lfh_extra_field_offset);
944*adcb0a62SAndroid Build Coastguard Worker if (!local_extra_field) {
945*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: failed reading lfh extra field from offset %" PRId64, lfh_extra_field_offset);
946*adcb0a62SAndroid Build Coastguard Worker return kIoError;
947*adcb0a62SAndroid Build Coastguard Worker }
948*adcb0a62SAndroid Build Coastguard Worker
949*adcb0a62SAndroid Build Coastguard Worker Zip64ExtendedInfo zip64_info{};
950*adcb0a62SAndroid Build Coastguard Worker if (auto status = ParseZip64ExtendedInfoInExtraField(
951*adcb0a62SAndroid Build Coastguard Worker local_extra_field, lfh_extra_field_size, lfh->uncompressed_size, lfh->compressed_size,
952*adcb0a62SAndroid Build Coastguard Worker std::nullopt, &zip64_info);
953*adcb0a62SAndroid Build Coastguard Worker status != kSuccess) {
954*adcb0a62SAndroid Build Coastguard Worker return status;
955*adcb0a62SAndroid Build Coastguard Worker }
956*adcb0a62SAndroid Build Coastguard Worker
957*adcb0a62SAndroid Build Coastguard Worker CHECK(zip64_info.uncompressed_file_size.has_value());
958*adcb0a62SAndroid Build Coastguard Worker CHECK(zip64_info.compressed_file_size.has_value());
959*adcb0a62SAndroid Build Coastguard Worker lfh_uncompressed_size = zip64_info.uncompressed_file_size.value();
960*adcb0a62SAndroid Build Coastguard Worker lfh_compressed_size = zip64_info.compressed_file_size.value();
961*adcb0a62SAndroid Build Coastguard Worker }
962*adcb0a62SAndroid Build Coastguard Worker
963*adcb0a62SAndroid Build Coastguard Worker // Paranoia: Match the values specified in the local file header
964*adcb0a62SAndroid Build Coastguard Worker // to those specified in the central directory.
965*adcb0a62SAndroid Build Coastguard Worker
966*adcb0a62SAndroid Build Coastguard Worker // Warn if central directory and local file header don't agree on the use
967*adcb0a62SAndroid Build Coastguard Worker // of a trailing Data Descriptor. The reference implementation is inconsistent
968*adcb0a62SAndroid Build Coastguard Worker // and appears to use the LFH value during extraction (unzip) but the CD value
969*adcb0a62SAndroid Build Coastguard Worker // while displayng information about archives (zipinfo). The spec remains
970*adcb0a62SAndroid Build Coastguard Worker // silent on this inconsistency as well.
971*adcb0a62SAndroid Build Coastguard Worker //
972*adcb0a62SAndroid Build Coastguard Worker // For now, always use the version from the LFH but make sure that the values
973*adcb0a62SAndroid Build Coastguard Worker // specified in the central directory match those in the data descriptor.
974*adcb0a62SAndroid Build Coastguard Worker //
975*adcb0a62SAndroid Build Coastguard Worker // NOTE: It's also worth noting that unzip *does* warn about inconsistencies in
976*adcb0a62SAndroid Build Coastguard Worker // bit 11 (EFS: The language encoding flag, marking that filename and comment are
977*adcb0a62SAndroid Build Coastguard Worker // encoded using UTF-8). This implementation does not check for the presence of
978*adcb0a62SAndroid Build Coastguard Worker // that flag and always enforces that entry names are valid UTF-8.
979*adcb0a62SAndroid Build Coastguard Worker if ((lfh->gpb_flags & kGPBDDFlagMask) != (cdr->gpb_flags & kGPBDDFlagMask)) {
980*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: gpb flag mismatch at bit 3. expected {%04" PRIx16 "}, was {%04" PRIx16 "}",
981*adcb0a62SAndroid Build Coastguard Worker cdr->gpb_flags, lfh->gpb_flags);
982*adcb0a62SAndroid Build Coastguard Worker }
983*adcb0a62SAndroid Build Coastguard Worker
984*adcb0a62SAndroid Build Coastguard Worker // If there is no trailing data descriptor, verify that the central directory and local file
985*adcb0a62SAndroid Build Coastguard Worker // header agree on the crc, compressed, and uncompressed sizes of the entry.
986*adcb0a62SAndroid Build Coastguard Worker if ((lfh->gpb_flags & kGPBDDFlagMask) == 0) {
987*adcb0a62SAndroid Build Coastguard Worker data->has_data_descriptor = 0;
988*adcb0a62SAndroid Build Coastguard Worker if (data->compressed_length != lfh_compressed_size ||
989*adcb0a62SAndroid Build Coastguard Worker data->uncompressed_length != lfh_uncompressed_size || data->crc32 != lfh->crc32) {
990*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: size/crc32 mismatch. expected {%" PRIu64 ", %" PRIu64 ", %" PRIx32
991*adcb0a62SAndroid Build Coastguard Worker "}, was {%" PRIu64 ", %" PRIu64 ", %" PRIx32 "}",
992*adcb0a62SAndroid Build Coastguard Worker data->compressed_length, data->uncompressed_length, data->crc32, lfh_compressed_size,
993*adcb0a62SAndroid Build Coastguard Worker lfh_uncompressed_size, lfh->crc32);
994*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
995*adcb0a62SAndroid Build Coastguard Worker }
996*adcb0a62SAndroid Build Coastguard Worker } else {
997*adcb0a62SAndroid Build Coastguard Worker data->has_data_descriptor = 1;
998*adcb0a62SAndroid Build Coastguard Worker }
999*adcb0a62SAndroid Build Coastguard Worker
1000*adcb0a62SAndroid Build Coastguard Worker // 4.4.2.1: the upper byte of `version_made_by` gives the source OS. Unix is 3.
1001*adcb0a62SAndroid Build Coastguard Worker data->version_made_by = cdr->version_made_by;
1002*adcb0a62SAndroid Build Coastguard Worker data->external_file_attributes = cdr->external_file_attributes;
1003*adcb0a62SAndroid Build Coastguard Worker if ((data->version_made_by >> 8) == 3) {
1004*adcb0a62SAndroid Build Coastguard Worker data->unix_mode = (cdr->external_file_attributes >> 16) & 0xffff;
1005*adcb0a62SAndroid Build Coastguard Worker } else {
1006*adcb0a62SAndroid Build Coastguard Worker data->unix_mode = 0777;
1007*adcb0a62SAndroid Build Coastguard Worker }
1008*adcb0a62SAndroid Build Coastguard Worker
1009*adcb0a62SAndroid Build Coastguard Worker // 4.4.4: general purpose bit flags.
1010*adcb0a62SAndroid Build Coastguard Worker data->gpbf = lfh->gpb_flags;
1011*adcb0a62SAndroid Build Coastguard Worker
1012*adcb0a62SAndroid Build Coastguard Worker // 4.4.14: the lowest bit of the internal file attributes field indicates text.
1013*adcb0a62SAndroid Build Coastguard Worker // Currently only needed to implement zipinfo.
1014*adcb0a62SAndroid Build Coastguard Worker data->is_text = (cdr->internal_file_attributes & 1);
1015*adcb0a62SAndroid Build Coastguard Worker
1016*adcb0a62SAndroid Build Coastguard Worker const off64_t data_offset = local_header_offset + sizeof(LocalFileHeader) +
1017*adcb0a62SAndroid Build Coastguard Worker lfh->file_name_length + lfh->extra_field_length;
1018*adcb0a62SAndroid Build Coastguard Worker if (data_offset > cd_offset) {
1019*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad data offset %" PRId64 " in zip", static_cast<int64_t>(data_offset));
1020*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
1021*adcb0a62SAndroid Build Coastguard Worker }
1022*adcb0a62SAndroid Build Coastguard Worker
1023*adcb0a62SAndroid Build Coastguard Worker if (data->compressed_length > cd_offset - data_offset) {
1024*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad compressed length in zip (%" PRId64 " + %" PRIu64 " > %" PRId64 ")",
1025*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(data_offset), data->compressed_length,
1026*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(cd_offset));
1027*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
1028*adcb0a62SAndroid Build Coastguard Worker }
1029*adcb0a62SAndroid Build Coastguard Worker
1030*adcb0a62SAndroid Build Coastguard Worker if (data->method == kCompressStored && data->uncompressed_length > cd_offset - data_offset) {
1031*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: bad uncompressed length in zip (%" PRId64 " + %" PRIu64 " > %" PRId64 ")",
1032*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(data_offset), data->uncompressed_length,
1033*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(cd_offset));
1034*adcb0a62SAndroid Build Coastguard Worker return kInvalidOffset;
1035*adcb0a62SAndroid Build Coastguard Worker }
1036*adcb0a62SAndroid Build Coastguard Worker
1037*adcb0a62SAndroid Build Coastguard Worker data->offset = data_offset;
1038*adcb0a62SAndroid Build Coastguard Worker return 0;
1039*adcb0a62SAndroid Build Coastguard Worker }
1040*adcb0a62SAndroid Build Coastguard Worker
1041*adcb0a62SAndroid Build Coastguard Worker struct IterationHandle {
1042*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive;
1043*adcb0a62SAndroid Build Coastguard Worker
1044*adcb0a62SAndroid Build Coastguard Worker std::function<bool(std::string_view)> matcher;
1045*adcb0a62SAndroid Build Coastguard Worker
1046*adcb0a62SAndroid Build Coastguard Worker uint32_t position = 0;
1047*adcb0a62SAndroid Build Coastguard Worker
IterationHandleIterationHandle1048*adcb0a62SAndroid Build Coastguard Worker IterationHandle(ZipArchive* archive, std::function<bool(std::string_view)> in_matcher)
1049*adcb0a62SAndroid Build Coastguard Worker : archive(archive), matcher(std::move(in_matcher)) {}
1050*adcb0a62SAndroid Build Coastguard Worker
MatchIterationHandle1051*adcb0a62SAndroid Build Coastguard Worker bool Match(std::string_view entry_name) const { return !matcher || matcher(entry_name); }
1052*adcb0a62SAndroid Build Coastguard Worker };
1053*adcb0a62SAndroid Build Coastguard Worker
StartIteration(ZipArchiveHandle archive,void ** cookie_ptr,const std::string_view optional_prefix,const std::string_view optional_suffix)1054*adcb0a62SAndroid Build Coastguard Worker int32_t StartIteration(ZipArchiveHandle archive, void** cookie_ptr,
1055*adcb0a62SAndroid Build Coastguard Worker const std::string_view optional_prefix,
1056*adcb0a62SAndroid Build Coastguard Worker const std::string_view optional_suffix) {
1057*adcb0a62SAndroid Build Coastguard Worker if (optional_prefix.size() > static_cast<size_t>(UINT16_MAX) ||
1058*adcb0a62SAndroid Build Coastguard Worker optional_suffix.size() > static_cast<size_t>(UINT16_MAX)) {
1059*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: prefix/suffix too long");
1060*adcb0a62SAndroid Build Coastguard Worker return kInvalidEntryName;
1061*adcb0a62SAndroid Build Coastguard Worker }
1062*adcb0a62SAndroid Build Coastguard Worker if (optional_prefix.empty() && optional_suffix.empty()) {
1063*adcb0a62SAndroid Build Coastguard Worker return StartIteration(archive, cookie_ptr, std::function<bool(std::string_view)>{});
1064*adcb0a62SAndroid Build Coastguard Worker }
1065*adcb0a62SAndroid Build Coastguard Worker auto matcher = [prefix = std::string(optional_prefix),
1066*adcb0a62SAndroid Build Coastguard Worker suffix = std::string(optional_suffix)](std::string_view name) mutable {
1067*adcb0a62SAndroid Build Coastguard Worker return android::base::StartsWith(name, prefix) && android::base::EndsWith(name, suffix);
1068*adcb0a62SAndroid Build Coastguard Worker };
1069*adcb0a62SAndroid Build Coastguard Worker return StartIteration(archive, cookie_ptr, std::move(matcher));
1070*adcb0a62SAndroid Build Coastguard Worker }
1071*adcb0a62SAndroid Build Coastguard Worker
StartIteration(ZipArchiveHandle archive,void ** cookie_ptr,std::function<bool (std::string_view)> matcher)1072*adcb0a62SAndroid Build Coastguard Worker int32_t StartIteration(ZipArchiveHandle archive, void** cookie_ptr,
1073*adcb0a62SAndroid Build Coastguard Worker std::function<bool(std::string_view)> matcher) {
1074*adcb0a62SAndroid Build Coastguard Worker if (archive == nullptr || archive->cd_entry_map == nullptr) {
1075*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Invalid ZipArchiveHandle");
1076*adcb0a62SAndroid Build Coastguard Worker return kInvalidHandle;
1077*adcb0a62SAndroid Build Coastguard Worker }
1078*adcb0a62SAndroid Build Coastguard Worker
1079*adcb0a62SAndroid Build Coastguard Worker archive->cd_entry_map->ResetIteration();
1080*adcb0a62SAndroid Build Coastguard Worker *cookie_ptr = new IterationHandle(archive, std::move(matcher));
1081*adcb0a62SAndroid Build Coastguard Worker return 0;
1082*adcb0a62SAndroid Build Coastguard Worker }
1083*adcb0a62SAndroid Build Coastguard Worker
EndIteration(void * cookie)1084*adcb0a62SAndroid Build Coastguard Worker void EndIteration(void* cookie) {
1085*adcb0a62SAndroid Build Coastguard Worker delete reinterpret_cast<IterationHandle*>(cookie);
1086*adcb0a62SAndroid Build Coastguard Worker }
1087*adcb0a62SAndroid Build Coastguard Worker
CopyFromZipEntry64(ZipEntry * dst,const ZipEntry64 * src)1088*adcb0a62SAndroid Build Coastguard Worker int32_t ZipEntry::CopyFromZipEntry64(ZipEntry* dst, const ZipEntry64* src) {
1089*adcb0a62SAndroid Build Coastguard Worker if (src->compressed_length > UINT32_MAX || src->uncompressed_length > UINT32_MAX) {
1090*adcb0a62SAndroid Build Coastguard Worker ALOGW(
1091*adcb0a62SAndroid Build Coastguard Worker "Zip: the entry size is too large to fit into the 32 bits ZipEntry, uncompressed "
1092*adcb0a62SAndroid Build Coastguard Worker "length %" PRIu64 ", compressed length %" PRIu64,
1093*adcb0a62SAndroid Build Coastguard Worker src->uncompressed_length, src->compressed_length);
1094*adcb0a62SAndroid Build Coastguard Worker return kUnsupportedEntrySize;
1095*adcb0a62SAndroid Build Coastguard Worker }
1096*adcb0a62SAndroid Build Coastguard Worker
1097*adcb0a62SAndroid Build Coastguard Worker *dst = *src;
1098*adcb0a62SAndroid Build Coastguard Worker dst->uncompressed_length = static_cast<uint32_t>(src->uncompressed_length);
1099*adcb0a62SAndroid Build Coastguard Worker dst->compressed_length = static_cast<uint32_t>(src->compressed_length);
1100*adcb0a62SAndroid Build Coastguard Worker return kSuccess;
1101*adcb0a62SAndroid Build Coastguard Worker }
1102*adcb0a62SAndroid Build Coastguard Worker
FindEntry(const ZipArchiveHandle archive,const std::string_view entryName,ZipEntry * data)1103*adcb0a62SAndroid Build Coastguard Worker int32_t FindEntry(const ZipArchiveHandle archive, const std::string_view entryName,
1104*adcb0a62SAndroid Build Coastguard Worker ZipEntry* data) {
1105*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64;
1106*adcb0a62SAndroid Build Coastguard Worker if (auto status = FindEntry(archive, entryName, &entry64); status != kSuccess) {
1107*adcb0a62SAndroid Build Coastguard Worker return status;
1108*adcb0a62SAndroid Build Coastguard Worker }
1109*adcb0a62SAndroid Build Coastguard Worker
1110*adcb0a62SAndroid Build Coastguard Worker return ZipEntry::CopyFromZipEntry64(data, &entry64);
1111*adcb0a62SAndroid Build Coastguard Worker }
1112*adcb0a62SAndroid Build Coastguard Worker
FindEntry(const ZipArchiveHandle archive,const std::string_view entryName,ZipEntry64 * data)1113*adcb0a62SAndroid Build Coastguard Worker int32_t FindEntry(const ZipArchiveHandle archive, const std::string_view entryName,
1114*adcb0a62SAndroid Build Coastguard Worker ZipEntry64* data) {
1115*adcb0a62SAndroid Build Coastguard Worker if (entryName.empty() || entryName.size() > static_cast<size_t>(UINT16_MAX)) {
1116*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Invalid filename of length %zu", entryName.size());
1117*adcb0a62SAndroid Build Coastguard Worker return kInvalidEntryName;
1118*adcb0a62SAndroid Build Coastguard Worker }
1119*adcb0a62SAndroid Build Coastguard Worker
1120*adcb0a62SAndroid Build Coastguard Worker const auto [result, offset] =
1121*adcb0a62SAndroid Build Coastguard Worker archive->cd_entry_map->GetCdEntryOffset(entryName, archive->central_directory.GetBasePtr());
1122*adcb0a62SAndroid Build Coastguard Worker if (result != 0) {
1123*adcb0a62SAndroid Build Coastguard Worker ALOGV("Zip: Could not find entry %.*s", static_cast<int>(entryName.size()), entryName.data());
1124*adcb0a62SAndroid Build Coastguard Worker return static_cast<int32_t>(result); // kEntryNotFound is safe to truncate.
1125*adcb0a62SAndroid Build Coastguard Worker }
1126*adcb0a62SAndroid Build Coastguard Worker // We know there are at most hash_table_size entries, safe to truncate.
1127*adcb0a62SAndroid Build Coastguard Worker return FindEntry(archive, entryName, offset, data);
1128*adcb0a62SAndroid Build Coastguard Worker }
1129*adcb0a62SAndroid Build Coastguard Worker
Next(void * cookie,ZipEntry * data,std::string * name)1130*adcb0a62SAndroid Build Coastguard Worker int32_t Next(void* cookie, ZipEntry* data, std::string* name) {
1131*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64;
1132*adcb0a62SAndroid Build Coastguard Worker if (auto status = Next(cookie, &entry64, name); status != kSuccess) {
1133*adcb0a62SAndroid Build Coastguard Worker return status;
1134*adcb0a62SAndroid Build Coastguard Worker }
1135*adcb0a62SAndroid Build Coastguard Worker
1136*adcb0a62SAndroid Build Coastguard Worker return ZipEntry::CopyFromZipEntry64(data, &entry64);
1137*adcb0a62SAndroid Build Coastguard Worker }
1138*adcb0a62SAndroid Build Coastguard Worker
Next(void * cookie,ZipEntry * data,std::string_view * name)1139*adcb0a62SAndroid Build Coastguard Worker int32_t Next(void* cookie, ZipEntry* data, std::string_view* name) {
1140*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64;
1141*adcb0a62SAndroid Build Coastguard Worker if (auto status = Next(cookie, &entry64, name); status != kSuccess) {
1142*adcb0a62SAndroid Build Coastguard Worker return status;
1143*adcb0a62SAndroid Build Coastguard Worker }
1144*adcb0a62SAndroid Build Coastguard Worker
1145*adcb0a62SAndroid Build Coastguard Worker return ZipEntry::CopyFromZipEntry64(data, &entry64);
1146*adcb0a62SAndroid Build Coastguard Worker }
1147*adcb0a62SAndroid Build Coastguard Worker
Next(void * cookie,ZipEntry64 * data,std::string * name)1148*adcb0a62SAndroid Build Coastguard Worker int32_t Next(void* cookie, ZipEntry64* data, std::string* name) {
1149*adcb0a62SAndroid Build Coastguard Worker std::string_view sv;
1150*adcb0a62SAndroid Build Coastguard Worker int32_t result = Next(cookie, data, &sv);
1151*adcb0a62SAndroid Build Coastguard Worker if (result == 0 && name) {
1152*adcb0a62SAndroid Build Coastguard Worker *name = std::string(sv);
1153*adcb0a62SAndroid Build Coastguard Worker }
1154*adcb0a62SAndroid Build Coastguard Worker return result;
1155*adcb0a62SAndroid Build Coastguard Worker }
1156*adcb0a62SAndroid Build Coastguard Worker
Next(void * cookie,ZipEntry64 * data,std::string_view * name)1157*adcb0a62SAndroid Build Coastguard Worker int32_t Next(void* cookie, ZipEntry64* data, std::string_view* name) {
1158*adcb0a62SAndroid Build Coastguard Worker IterationHandle* handle = reinterpret_cast<IterationHandle*>(cookie);
1159*adcb0a62SAndroid Build Coastguard Worker if (handle == nullptr) {
1160*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Null ZipArchiveHandle");
1161*adcb0a62SAndroid Build Coastguard Worker return kInvalidHandle;
1162*adcb0a62SAndroid Build Coastguard Worker }
1163*adcb0a62SAndroid Build Coastguard Worker
1164*adcb0a62SAndroid Build Coastguard Worker ZipArchive* archive = handle->archive;
1165*adcb0a62SAndroid Build Coastguard Worker if (archive == nullptr || archive->cd_entry_map == nullptr) {
1166*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: Invalid ZipArchiveHandle");
1167*adcb0a62SAndroid Build Coastguard Worker return kInvalidHandle;
1168*adcb0a62SAndroid Build Coastguard Worker }
1169*adcb0a62SAndroid Build Coastguard Worker
1170*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER(return kIoError);
1171*adcb0a62SAndroid Build Coastguard Worker
1172*adcb0a62SAndroid Build Coastguard Worker auto entry = archive->cd_entry_map->Next(archive->central_directory.GetBasePtr());
1173*adcb0a62SAndroid Build Coastguard Worker while (entry != std::pair<std::string_view, uint64_t>()) {
1174*adcb0a62SAndroid Build Coastguard Worker const auto [entry_name, offset] = entry;
1175*adcb0a62SAndroid Build Coastguard Worker if (handle->Match(entry_name)) {
1176*adcb0a62SAndroid Build Coastguard Worker const int error = FindEntry(archive, entry_name, offset, data);
1177*adcb0a62SAndroid Build Coastguard Worker if (!error && name) {
1178*adcb0a62SAndroid Build Coastguard Worker *name = entry_name;
1179*adcb0a62SAndroid Build Coastguard Worker }
1180*adcb0a62SAndroid Build Coastguard Worker return error;
1181*adcb0a62SAndroid Build Coastguard Worker }
1182*adcb0a62SAndroid Build Coastguard Worker entry = archive->cd_entry_map->Next(archive->central_directory.GetBasePtr());
1183*adcb0a62SAndroid Build Coastguard Worker }
1184*adcb0a62SAndroid Build Coastguard Worker
1185*adcb0a62SAndroid Build Coastguard Worker archive->cd_entry_map->ResetIteration();
1186*adcb0a62SAndroid Build Coastguard Worker return kIterationEnd;
1187*adcb0a62SAndroid Build Coastguard Worker }
1188*adcb0a62SAndroid Build Coastguard Worker
1189*adcb0a62SAndroid Build Coastguard Worker // A Writer that writes data to a fixed size memory region.
1190*adcb0a62SAndroid Build Coastguard Worker // The size of the memory region must be equal to the total size of
1191*adcb0a62SAndroid Build Coastguard Worker // the data appended to it.
1192*adcb0a62SAndroid Build Coastguard Worker class MemoryWriter final : public zip_archive::Writer {
1193*adcb0a62SAndroid Build Coastguard Worker public:
Create(uint8_t * buf,size_t size,const ZipEntry64 * entry)1194*adcb0a62SAndroid Build Coastguard Worker static std::optional<MemoryWriter> Create(uint8_t* buf, size_t size,
1195*adcb0a62SAndroid Build Coastguard Worker const ZipEntry64* entry) {
1196*adcb0a62SAndroid Build Coastguard Worker const uint64_t declared_length = entry->uncompressed_length;
1197*adcb0a62SAndroid Build Coastguard Worker if (declared_length > size) {
1198*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: file size %" PRIu64 " is larger than the buffer size %zu.", declared_length,
1199*adcb0a62SAndroid Build Coastguard Worker size);
1200*adcb0a62SAndroid Build Coastguard Worker return {};
1201*adcb0a62SAndroid Build Coastguard Worker }
1202*adcb0a62SAndroid Build Coastguard Worker
1203*adcb0a62SAndroid Build Coastguard Worker return std::make_optional<MemoryWriter>(buf, size);
1204*adcb0a62SAndroid Build Coastguard Worker }
1205*adcb0a62SAndroid Build Coastguard Worker
Append(uint8_t * buf,size_t buf_size)1206*adcb0a62SAndroid Build Coastguard Worker virtual bool Append(uint8_t* buf, size_t buf_size) override {
1207*adcb0a62SAndroid Build Coastguard Worker if (buf_size == 0 || (buf >= buf_ && buf < buf_ + size_)) {
1208*adcb0a62SAndroid Build Coastguard Worker return true;
1209*adcb0a62SAndroid Build Coastguard Worker }
1210*adcb0a62SAndroid Build Coastguard Worker
1211*adcb0a62SAndroid Build Coastguard Worker if (size_ < buf_size || bytes_written_ > size_ - buf_size) {
1212*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: Unexpected size %zu (declared) vs %zu (actual)", size_,
1213*adcb0a62SAndroid Build Coastguard Worker bytes_written_ + buf_size);
1214*adcb0a62SAndroid Build Coastguard Worker return false;
1215*adcb0a62SAndroid Build Coastguard Worker }
1216*adcb0a62SAndroid Build Coastguard Worker
1217*adcb0a62SAndroid Build Coastguard Worker memcpy(buf_ + bytes_written_, buf, buf_size);
1218*adcb0a62SAndroid Build Coastguard Worker bytes_written_ += buf_size;
1219*adcb0a62SAndroid Build Coastguard Worker return true;
1220*adcb0a62SAndroid Build Coastguard Worker }
1221*adcb0a62SAndroid Build Coastguard Worker
GetBuffer(size_t length)1222*adcb0a62SAndroid Build Coastguard Worker Buffer GetBuffer(size_t length) override {
1223*adcb0a62SAndroid Build Coastguard Worker if (length > size_) {
1224*adcb0a62SAndroid Build Coastguard Worker // Special case for empty files: zlib wants at least some buffer but won't ever write there.
1225*adcb0a62SAndroid Build Coastguard Worker if (size_ == 0 && length <= sizeof(bytes_written_)) {
1226*adcb0a62SAndroid Build Coastguard Worker return {reinterpret_cast<uint8_t*>(&bytes_written_), length};
1227*adcb0a62SAndroid Build Coastguard Worker }
1228*adcb0a62SAndroid Build Coastguard Worker return {};
1229*adcb0a62SAndroid Build Coastguard Worker }
1230*adcb0a62SAndroid Build Coastguard Worker return {buf_, length};
1231*adcb0a62SAndroid Build Coastguard Worker }
1232*adcb0a62SAndroid Build Coastguard Worker
MemoryWriter(uint8_t * buf,size_t size)1233*adcb0a62SAndroid Build Coastguard Worker MemoryWriter(uint8_t* buf, size_t size) : buf_(buf), size_(size), bytes_written_(0) {}
1234*adcb0a62SAndroid Build Coastguard Worker
1235*adcb0a62SAndroid Build Coastguard Worker private:
1236*adcb0a62SAndroid Build Coastguard Worker uint8_t* const buf_{nullptr};
1237*adcb0a62SAndroid Build Coastguard Worker const size_t size_;
1238*adcb0a62SAndroid Build Coastguard Worker size_t bytes_written_;
1239*adcb0a62SAndroid Build Coastguard Worker };
1240*adcb0a62SAndroid Build Coastguard Worker
1241*adcb0a62SAndroid Build Coastguard Worker // A Writer that appends data to a file |fd| at its current position.
1242*adcb0a62SAndroid Build Coastguard Worker // The file will be truncated to the end of the written data.
1243*adcb0a62SAndroid Build Coastguard Worker class FileWriter final : public zip_archive::Writer {
1244*adcb0a62SAndroid Build Coastguard Worker public:
1245*adcb0a62SAndroid Build Coastguard Worker // Creates a FileWriter for |fd| and prepare to write |entry| to it,
1246*adcb0a62SAndroid Build Coastguard Worker // guaranteeing that the file descriptor is valid and that there's enough
1247*adcb0a62SAndroid Build Coastguard Worker // space on the volume to write out the entry completely and that the file
1248*adcb0a62SAndroid Build Coastguard Worker // is truncated to the correct length (no truncation if |fd| references a
1249*adcb0a62SAndroid Build Coastguard Worker // block device).
1250*adcb0a62SAndroid Build Coastguard Worker //
1251*adcb0a62SAndroid Build Coastguard Worker // Returns a valid FileWriter on success, |nullopt| if an error occurred.
Create(int fd,const ZipEntry64 * entry)1252*adcb0a62SAndroid Build Coastguard Worker static std::optional<FileWriter> Create(int fd, const ZipEntry64* entry) {
1253*adcb0a62SAndroid Build Coastguard Worker const uint64_t declared_length = entry->uncompressed_length;
1254*adcb0a62SAndroid Build Coastguard Worker const off64_t current_offset = lseek64(fd, 0, SEEK_CUR);
1255*adcb0a62SAndroid Build Coastguard Worker if (current_offset == -1) {
1256*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: unable to seek to current location on fd %d: %s", fd, strerror(errno));
1257*adcb0a62SAndroid Build Coastguard Worker return {};
1258*adcb0a62SAndroid Build Coastguard Worker }
1259*adcb0a62SAndroid Build Coastguard Worker
1260*adcb0a62SAndroid Build Coastguard Worker if (declared_length > SIZE_MAX || declared_length > INT64_MAX) {
1261*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: file size %" PRIu64 " is too large to extract.", declared_length);
1262*adcb0a62SAndroid Build Coastguard Worker return {};
1263*adcb0a62SAndroid Build Coastguard Worker }
1264*adcb0a62SAndroid Build Coastguard Worker
1265*adcb0a62SAndroid Build Coastguard Worker #if defined(__linux__)
1266*adcb0a62SAndroid Build Coastguard Worker if (declared_length > 0) {
1267*adcb0a62SAndroid Build Coastguard Worker // Make sure we have enough space on the volume to extract the compressed
1268*adcb0a62SAndroid Build Coastguard Worker // entry. Note that the call to ftruncate below will change the file size but
1269*adcb0a62SAndroid Build Coastguard Worker // will not allocate space on disk and this call to fallocate will not
1270*adcb0a62SAndroid Build Coastguard Worker // change the file size.
1271*adcb0a62SAndroid Build Coastguard Worker // Note: fallocate is only supported by the following filesystems -
1272*adcb0a62SAndroid Build Coastguard Worker // btrfs, ext4, ocfs2, and xfs. Therefore fallocate might fail with
1273*adcb0a62SAndroid Build Coastguard Worker // EOPNOTSUPP error when issued in other filesystems.
1274*adcb0a62SAndroid Build Coastguard Worker // Hence, check for the return error code before concluding that the
1275*adcb0a62SAndroid Build Coastguard Worker // disk does not have enough space.
1276*adcb0a62SAndroid Build Coastguard Worker long result = TEMP_FAILURE_RETRY(fallocate(fd, 0, current_offset, declared_length));
1277*adcb0a62SAndroid Build Coastguard Worker if (result == -1 && errno == ENOSPC) {
1278*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: unable to allocate %" PRIu64 " bytes at offset %" PRId64 ": %s",
1279*adcb0a62SAndroid Build Coastguard Worker declared_length, static_cast<int64_t>(current_offset), strerror(errno));
1280*adcb0a62SAndroid Build Coastguard Worker return {};
1281*adcb0a62SAndroid Build Coastguard Worker }
1282*adcb0a62SAndroid Build Coastguard Worker }
1283*adcb0a62SAndroid Build Coastguard Worker #endif // __linux__
1284*adcb0a62SAndroid Build Coastguard Worker
1285*adcb0a62SAndroid Build Coastguard Worker struct stat sb;
1286*adcb0a62SAndroid Build Coastguard Worker if (fstat(fd, &sb) == -1) {
1287*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: unable to fstat file: %s", strerror(errno));
1288*adcb0a62SAndroid Build Coastguard Worker return {};
1289*adcb0a62SAndroid Build Coastguard Worker }
1290*adcb0a62SAndroid Build Coastguard Worker
1291*adcb0a62SAndroid Build Coastguard Worker // Block device doesn't support ftruncate(2).
1292*adcb0a62SAndroid Build Coastguard Worker if (!S_ISBLK(sb.st_mode)) {
1293*adcb0a62SAndroid Build Coastguard Worker long result = TEMP_FAILURE_RETRY(ftruncate(fd, declared_length + current_offset));
1294*adcb0a62SAndroid Build Coastguard Worker if (result == -1) {
1295*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: unable to truncate file to %" PRId64 ": %s",
1296*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(declared_length + current_offset), strerror(errno));
1297*adcb0a62SAndroid Build Coastguard Worker return {};
1298*adcb0a62SAndroid Build Coastguard Worker }
1299*adcb0a62SAndroid Build Coastguard Worker }
1300*adcb0a62SAndroid Build Coastguard Worker
1301*adcb0a62SAndroid Build Coastguard Worker return std::make_optional<FileWriter>(fd, declared_length);
1302*adcb0a62SAndroid Build Coastguard Worker }
1303*adcb0a62SAndroid Build Coastguard Worker
Append(uint8_t * buf,size_t buf_size)1304*adcb0a62SAndroid Build Coastguard Worker virtual bool Append(uint8_t* buf, size_t buf_size) override {
1305*adcb0a62SAndroid Build Coastguard Worker if (declared_length_ < buf_size || total_bytes_written_ > declared_length_ - buf_size) {
1306*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: Unexpected size %zu (declared) vs %zu (actual)", declared_length_,
1307*adcb0a62SAndroid Build Coastguard Worker total_bytes_written_ + buf_size);
1308*adcb0a62SAndroid Build Coastguard Worker return false;
1309*adcb0a62SAndroid Build Coastguard Worker }
1310*adcb0a62SAndroid Build Coastguard Worker
1311*adcb0a62SAndroid Build Coastguard Worker const bool result = android::base::WriteFully(fd_, buf, buf_size);
1312*adcb0a62SAndroid Build Coastguard Worker if (result) {
1313*adcb0a62SAndroid Build Coastguard Worker total_bytes_written_ += buf_size;
1314*adcb0a62SAndroid Build Coastguard Worker } else {
1315*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: unable to write %zu bytes to file; %s", buf_size, strerror(errno));
1316*adcb0a62SAndroid Build Coastguard Worker }
1317*adcb0a62SAndroid Build Coastguard Worker
1318*adcb0a62SAndroid Build Coastguard Worker return result;
1319*adcb0a62SAndroid Build Coastguard Worker }
1320*adcb0a62SAndroid Build Coastguard Worker
FileWriter(const int fd=-1,const uint64_t declared_length=0)1321*adcb0a62SAndroid Build Coastguard Worker explicit FileWriter(const int fd = -1, const uint64_t declared_length = 0)
1322*adcb0a62SAndroid Build Coastguard Worker : Writer(),
1323*adcb0a62SAndroid Build Coastguard Worker fd_(fd),
1324*adcb0a62SAndroid Build Coastguard Worker declared_length_(static_cast<size_t>(declared_length)),
1325*adcb0a62SAndroid Build Coastguard Worker total_bytes_written_(0) {
1326*adcb0a62SAndroid Build Coastguard Worker CHECK_LE(declared_length, SIZE_MAX);
1327*adcb0a62SAndroid Build Coastguard Worker }
1328*adcb0a62SAndroid Build Coastguard Worker
1329*adcb0a62SAndroid Build Coastguard Worker private:
1330*adcb0a62SAndroid Build Coastguard Worker int fd_;
1331*adcb0a62SAndroid Build Coastguard Worker const size_t declared_length_;
1332*adcb0a62SAndroid Build Coastguard Worker size_t total_bytes_written_;
1333*adcb0a62SAndroid Build Coastguard Worker };
1334*adcb0a62SAndroid Build Coastguard Worker
1335*adcb0a62SAndroid Build Coastguard Worker class EntryReader final : public zip_archive::Reader {
1336*adcb0a62SAndroid Build Coastguard Worker public:
EntryReader(const MappedZipFile & zip_file,const ZipEntry64 * entry)1337*adcb0a62SAndroid Build Coastguard Worker EntryReader(const MappedZipFile& zip_file, const ZipEntry64* entry)
1338*adcb0a62SAndroid Build Coastguard Worker : Reader(), zip_file_(zip_file), entry_(entry) {}
1339*adcb0a62SAndroid Build Coastguard Worker
ReadAtOffset(uint8_t * buf,size_t len,off64_t offset) const1340*adcb0a62SAndroid Build Coastguard Worker bool ReadAtOffset(uint8_t* buf, size_t len, off64_t offset) const override {
1341*adcb0a62SAndroid Build Coastguard Worker const auto res = zip_file_.ReadAtOffset(buf, len, entry_->offset + offset);
1342*adcb0a62SAndroid Build Coastguard Worker if (!res) return false;
1343*adcb0a62SAndroid Build Coastguard Worker if (res != buf) {
1344*adcb0a62SAndroid Build Coastguard Worker memcpy(buf, res, len);
1345*adcb0a62SAndroid Build Coastguard Worker }
1346*adcb0a62SAndroid Build Coastguard Worker return true;
1347*adcb0a62SAndroid Build Coastguard Worker }
1348*adcb0a62SAndroid Build Coastguard Worker
AccessAtOffset(uint8_t * buf,size_t len,off64_t offset) const1349*adcb0a62SAndroid Build Coastguard Worker const uint8_t* AccessAtOffset(uint8_t* buf, size_t len, off64_t offset) const override {
1350*adcb0a62SAndroid Build Coastguard Worker return zip_file_.ReadAtOffset(buf, len, entry_->offset + offset);
1351*adcb0a62SAndroid Build Coastguard Worker }
1352*adcb0a62SAndroid Build Coastguard Worker
IsZeroCopy() const1353*adcb0a62SAndroid Build Coastguard Worker bool IsZeroCopy() const override { return zip_file_.GetBasePtr() != nullptr; }
1354*adcb0a62SAndroid Build Coastguard Worker
1355*adcb0a62SAndroid Build Coastguard Worker private:
1356*adcb0a62SAndroid Build Coastguard Worker const MappedZipFile& zip_file_;
1357*adcb0a62SAndroid Build Coastguard Worker const ZipEntry64* entry_;
1358*adcb0a62SAndroid Build Coastguard Worker };
1359*adcb0a62SAndroid Build Coastguard Worker
1360*adcb0a62SAndroid Build Coastguard Worker // This method is using libz macros with old-style-casts
1361*adcb0a62SAndroid Build Coastguard Worker #pragma GCC diagnostic push
1362*adcb0a62SAndroid Build Coastguard Worker #pragma GCC diagnostic ignored "-Wold-style-cast"
zlib_inflateInit2(z_stream * stream,int window_bits)1363*adcb0a62SAndroid Build Coastguard Worker static inline int zlib_inflateInit2(z_stream* stream, int window_bits) {
1364*adcb0a62SAndroid Build Coastguard Worker return inflateInit2(stream, window_bits);
1365*adcb0a62SAndroid Build Coastguard Worker }
1366*adcb0a62SAndroid Build Coastguard Worker #pragma GCC diagnostic pop
1367*adcb0a62SAndroid Build Coastguard Worker
1368*adcb0a62SAndroid Build Coastguard Worker namespace zip_archive {
1369*adcb0a62SAndroid Build Coastguard Worker
1370*adcb0a62SAndroid Build Coastguard Worker // Moved out of line to avoid -Wweak-vtables.
GetBuffer(size_t)1371*adcb0a62SAndroid Build Coastguard Worker auto Writer::GetBuffer(size_t) -> Buffer {
1372*adcb0a62SAndroid Build Coastguard Worker return {};
1373*adcb0a62SAndroid Build Coastguard Worker }
1374*adcb0a62SAndroid Build Coastguard Worker
AccessAtOffset(uint8_t * buf,size_t len,off64_t offset) const1375*adcb0a62SAndroid Build Coastguard Worker const uint8_t* Reader::AccessAtOffset(uint8_t* buf, size_t len, off64_t offset) const {
1376*adcb0a62SAndroid Build Coastguard Worker return ReadAtOffset(buf, len, offset) ? buf : nullptr;
1377*adcb0a62SAndroid Build Coastguard Worker }
1378*adcb0a62SAndroid Build Coastguard Worker
IsZeroCopy() const1379*adcb0a62SAndroid Build Coastguard Worker bool Reader::IsZeroCopy() const {
1380*adcb0a62SAndroid Build Coastguard Worker return false;
1381*adcb0a62SAndroid Build Coastguard Worker }
1382*adcb0a62SAndroid Build Coastguard Worker
1383*adcb0a62SAndroid Build Coastguard Worker } // namespace zip_archive
1384*adcb0a62SAndroid Build Coastguard Worker
bufferToSpan(zip_archive::Writer::Buffer buf)1385*adcb0a62SAndroid Build Coastguard Worker static std::span<uint8_t> bufferToSpan(zip_archive::Writer::Buffer buf) {
1386*adcb0a62SAndroid Build Coastguard Worker return std::span<uint8_t>(buf.first, buf.second);
1387*adcb0a62SAndroid Build Coastguard Worker }
1388*adcb0a62SAndroid Build Coastguard Worker
1389*adcb0a62SAndroid Build Coastguard Worker template <bool OnIncfs>
inflateImpl(const zip_archive::Reader & reader,const uint64_t compressed_length,const uint64_t uncompressed_length,zip_archive::Writer * writer,uint64_t * crc_out)1390*adcb0a62SAndroid Build Coastguard Worker static int32_t inflateImpl(const zip_archive::Reader& reader,
1391*adcb0a62SAndroid Build Coastguard Worker const uint64_t compressed_length,
1392*adcb0a62SAndroid Build Coastguard Worker const uint64_t uncompressed_length,
1393*adcb0a62SAndroid Build Coastguard Worker zip_archive::Writer* writer, uint64_t* crc_out) {
1394*adcb0a62SAndroid Build Coastguard Worker constexpr uint64_t kBufSize = 32768;
1395*adcb0a62SAndroid Build Coastguard Worker
1396*adcb0a62SAndroid Build Coastguard Worker std::vector<uint8_t> read_buf;
1397*adcb0a62SAndroid Build Coastguard Worker uint64_t max_read_size;
1398*adcb0a62SAndroid Build Coastguard Worker if (reader.IsZeroCopy()) {
1399*adcb0a62SAndroid Build Coastguard Worker max_read_size = std::min<uint64_t>(std::numeric_limits<uint32_t>::max(), compressed_length);
1400*adcb0a62SAndroid Build Coastguard Worker } else {
1401*adcb0a62SAndroid Build Coastguard Worker max_read_size = std::min(compressed_length, kBufSize);
1402*adcb0a62SAndroid Build Coastguard Worker read_buf.resize(static_cast<size_t>(max_read_size));
1403*adcb0a62SAndroid Build Coastguard Worker }
1404*adcb0a62SAndroid Build Coastguard Worker
1405*adcb0a62SAndroid Build Coastguard Worker std::vector<uint8_t> write_buf;
1406*adcb0a62SAndroid Build Coastguard Worker // For some files zlib needs more space than the uncompressed buffer size, e.g. when inflating
1407*adcb0a62SAndroid Build Coastguard Worker // an empty file.
1408*adcb0a62SAndroid Build Coastguard Worker const auto min_write_buffer_size = std::max(compressed_length, uncompressed_length);
1409*adcb0a62SAndroid Build Coastguard Worker auto write_span = bufferToSpan(writer->GetBuffer(size_t(min_write_buffer_size)));
1410*adcb0a62SAndroid Build Coastguard Worker bool direct_writer;
1411*adcb0a62SAndroid Build Coastguard Worker if (write_span.size() >= min_write_buffer_size) {
1412*adcb0a62SAndroid Build Coastguard Worker direct_writer = true;
1413*adcb0a62SAndroid Build Coastguard Worker } else {
1414*adcb0a62SAndroid Build Coastguard Worker direct_writer = false;
1415*adcb0a62SAndroid Build Coastguard Worker write_buf.resize(static_cast<size_t>(std::min(min_write_buffer_size, kBufSize)));
1416*adcb0a62SAndroid Build Coastguard Worker write_span = write_buf;
1417*adcb0a62SAndroid Build Coastguard Worker }
1418*adcb0a62SAndroid Build Coastguard Worker
1419*adcb0a62SAndroid Build Coastguard Worker /*
1420*adcb0a62SAndroid Build Coastguard Worker * Initialize the zlib stream struct.
1421*adcb0a62SAndroid Build Coastguard Worker */
1422*adcb0a62SAndroid Build Coastguard Worker z_stream zstream = {};
1423*adcb0a62SAndroid Build Coastguard Worker zstream.zalloc = Z_NULL;
1424*adcb0a62SAndroid Build Coastguard Worker zstream.zfree = Z_NULL;
1425*adcb0a62SAndroid Build Coastguard Worker zstream.opaque = Z_NULL;
1426*adcb0a62SAndroid Build Coastguard Worker zstream.next_in = NULL;
1427*adcb0a62SAndroid Build Coastguard Worker zstream.avail_in = 0;
1428*adcb0a62SAndroid Build Coastguard Worker zstream.next_out = write_span.data();
1429*adcb0a62SAndroid Build Coastguard Worker zstream.avail_out = static_cast<uint32_t>(write_span.size());
1430*adcb0a62SAndroid Build Coastguard Worker zstream.data_type = Z_UNKNOWN;
1431*adcb0a62SAndroid Build Coastguard Worker
1432*adcb0a62SAndroid Build Coastguard Worker /*
1433*adcb0a62SAndroid Build Coastguard Worker * Use the undocumented "negative window bits" feature to tell zlib
1434*adcb0a62SAndroid Build Coastguard Worker * that there's no zlib header waiting for it.
1435*adcb0a62SAndroid Build Coastguard Worker */
1436*adcb0a62SAndroid Build Coastguard Worker int zerr = zlib_inflateInit2(&zstream, -MAX_WBITS);
1437*adcb0a62SAndroid Build Coastguard Worker if (zerr != Z_OK) {
1438*adcb0a62SAndroid Build Coastguard Worker if (zerr == Z_VERSION_ERROR) {
1439*adcb0a62SAndroid Build Coastguard Worker ALOGE("Installed zlib is not compatible with linked version (%s)", ZLIB_VERSION);
1440*adcb0a62SAndroid Build Coastguard Worker } else {
1441*adcb0a62SAndroid Build Coastguard Worker ALOGW("Call to inflateInit2 failed (zerr=%d)", zerr);
1442*adcb0a62SAndroid Build Coastguard Worker }
1443*adcb0a62SAndroid Build Coastguard Worker
1444*adcb0a62SAndroid Build Coastguard Worker return kZlibError;
1445*adcb0a62SAndroid Build Coastguard Worker }
1446*adcb0a62SAndroid Build Coastguard Worker
1447*adcb0a62SAndroid Build Coastguard Worker auto zstream_deleter = [](z_stream* stream) {
1448*adcb0a62SAndroid Build Coastguard Worker inflateEnd(stream); /* free up any allocated structures */
1449*adcb0a62SAndroid Build Coastguard Worker };
1450*adcb0a62SAndroid Build Coastguard Worker
1451*adcb0a62SAndroid Build Coastguard Worker std::unique_ptr<z_stream, decltype(zstream_deleter)> zstream_guard(&zstream, zstream_deleter);
1452*adcb0a62SAndroid Build Coastguard Worker static_assert(sizeof(zstream_guard) == sizeof(void*));
1453*adcb0a62SAndroid Build Coastguard Worker
1454*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER_CONDITIONAL(OnIncfs, {
1455*adcb0a62SAndroid Build Coastguard Worker zstream_guard.reset();
1456*adcb0a62SAndroid Build Coastguard Worker incfs::util::clearAndFree(read_buf);
1457*adcb0a62SAndroid Build Coastguard Worker incfs::util::clearAndFree(write_buf);
1458*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1459*adcb0a62SAndroid Build Coastguard Worker });
1460*adcb0a62SAndroid Build Coastguard Worker
1461*adcb0a62SAndroid Build Coastguard Worker const bool compute_crc = (crc_out != nullptr);
1462*adcb0a62SAndroid Build Coastguard Worker uLong crc = 0;
1463*adcb0a62SAndroid Build Coastguard Worker uint64_t remaining_bytes = compressed_length;
1464*adcb0a62SAndroid Build Coastguard Worker uint64_t total_output = 0;
1465*adcb0a62SAndroid Build Coastguard Worker do {
1466*adcb0a62SAndroid Build Coastguard Worker /* read as much as we can */
1467*adcb0a62SAndroid Build Coastguard Worker if (zstream.avail_in == 0) {
1468*adcb0a62SAndroid Build Coastguard Worker const auto read_size = static_cast<uint32_t>(std::min(remaining_bytes, max_read_size));
1469*adcb0a62SAndroid Build Coastguard Worker const off64_t offset = (compressed_length - remaining_bytes);
1470*adcb0a62SAndroid Build Coastguard Worker auto buf = reader.AccessAtOffset(read_buf.data(), read_size, offset);
1471*adcb0a62SAndroid Build Coastguard Worker if (!buf) {
1472*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: inflate read failed, getSize = %u: %s", read_size, strerror(errno));
1473*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1474*adcb0a62SAndroid Build Coastguard Worker }
1475*adcb0a62SAndroid Build Coastguard Worker
1476*adcb0a62SAndroid Build Coastguard Worker remaining_bytes -= read_size;
1477*adcb0a62SAndroid Build Coastguard Worker
1478*adcb0a62SAndroid Build Coastguard Worker zstream.next_in = buf;
1479*adcb0a62SAndroid Build Coastguard Worker zstream.avail_in = read_size;
1480*adcb0a62SAndroid Build Coastguard Worker }
1481*adcb0a62SAndroid Build Coastguard Worker
1482*adcb0a62SAndroid Build Coastguard Worker /* uncompress the data */
1483*adcb0a62SAndroid Build Coastguard Worker zerr = inflate(&zstream, Z_NO_FLUSH);
1484*adcb0a62SAndroid Build Coastguard Worker if (zerr != Z_OK && zerr != Z_STREAM_END) {
1485*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: inflate zerr=%d (nIn=%p aIn=%u nOut=%p aOut=%u)", zerr, zstream.next_in,
1486*adcb0a62SAndroid Build Coastguard Worker zstream.avail_in, zstream.next_out, zstream.avail_out);
1487*adcb0a62SAndroid Build Coastguard Worker return kZlibError;
1488*adcb0a62SAndroid Build Coastguard Worker }
1489*adcb0a62SAndroid Build Coastguard Worker
1490*adcb0a62SAndroid Build Coastguard Worker /* write when we're full or when we're done */
1491*adcb0a62SAndroid Build Coastguard Worker if (zstream.avail_out == 0 ||
1492*adcb0a62SAndroid Build Coastguard Worker (zerr == Z_STREAM_END && zstream.avail_out != write_span.size())) {
1493*adcb0a62SAndroid Build Coastguard Worker const size_t write_size = zstream.next_out - write_span.data();
1494*adcb0a62SAndroid Build Coastguard Worker if (compute_crc) {
1495*adcb0a62SAndroid Build Coastguard Worker DCHECK_LE(write_size, write_span.size());
1496*adcb0a62SAndroid Build Coastguard Worker crc = crc32(crc, write_span.data(), static_cast<uint32_t>(write_size));
1497*adcb0a62SAndroid Build Coastguard Worker }
1498*adcb0a62SAndroid Build Coastguard Worker total_output += write_span.size() - zstream.avail_out;
1499*adcb0a62SAndroid Build Coastguard Worker
1500*adcb0a62SAndroid Build Coastguard Worker if (direct_writer) {
1501*adcb0a62SAndroid Build Coastguard Worker write_span = write_span.subspan(write_size);
1502*adcb0a62SAndroid Build Coastguard Worker } else if (!writer->Append(write_span.data(), write_size)) {
1503*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1504*adcb0a62SAndroid Build Coastguard Worker }
1505*adcb0a62SAndroid Build Coastguard Worker
1506*adcb0a62SAndroid Build Coastguard Worker if (zstream.avail_out == 0) {
1507*adcb0a62SAndroid Build Coastguard Worker zstream.next_out = write_span.data();
1508*adcb0a62SAndroid Build Coastguard Worker zstream.avail_out = static_cast<uint32_t>(write_span.size());
1509*adcb0a62SAndroid Build Coastguard Worker }
1510*adcb0a62SAndroid Build Coastguard Worker }
1511*adcb0a62SAndroid Build Coastguard Worker } while (zerr == Z_OK);
1512*adcb0a62SAndroid Build Coastguard Worker
1513*adcb0a62SAndroid Build Coastguard Worker CHECK_EQ(zerr, Z_STREAM_END); /* other errors should've been caught */
1514*adcb0a62SAndroid Build Coastguard Worker
1515*adcb0a62SAndroid Build Coastguard Worker // NOTE: zstream.adler is always set to 0, because we're using the -MAX_WBITS
1516*adcb0a62SAndroid Build Coastguard Worker // "feature" of zlib to tell it there won't be a zlib file header. zlib
1517*adcb0a62SAndroid Build Coastguard Worker // doesn't bother calculating the checksum in that scenario. We just do
1518*adcb0a62SAndroid Build Coastguard Worker // it ourselves above because there are no additional gains to be made by
1519*adcb0a62SAndroid Build Coastguard Worker // having zlib calculate it for us, since they do it by calling crc32 in
1520*adcb0a62SAndroid Build Coastguard Worker // the same manner that we have above.
1521*adcb0a62SAndroid Build Coastguard Worker if (compute_crc) {
1522*adcb0a62SAndroid Build Coastguard Worker *crc_out = crc;
1523*adcb0a62SAndroid Build Coastguard Worker }
1524*adcb0a62SAndroid Build Coastguard Worker if (total_output != uncompressed_length || remaining_bytes != 0) {
1525*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: size mismatch on inflated file (%lu vs %" PRIu64 ")", zstream.total_out,
1526*adcb0a62SAndroid Build Coastguard Worker uncompressed_length);
1527*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
1528*adcb0a62SAndroid Build Coastguard Worker }
1529*adcb0a62SAndroid Build Coastguard Worker
1530*adcb0a62SAndroid Build Coastguard Worker return 0;
1531*adcb0a62SAndroid Build Coastguard Worker }
1532*adcb0a62SAndroid Build Coastguard Worker
InflateEntryToWriter(MappedZipFile & mapped_zip,const ZipEntry64 * entry,zip_archive::Writer * writer,uint64_t * crc_out)1533*adcb0a62SAndroid Build Coastguard Worker static int32_t InflateEntryToWriter(MappedZipFile& mapped_zip, const ZipEntry64* entry,
1534*adcb0a62SAndroid Build Coastguard Worker zip_archive::Writer* writer, uint64_t* crc_out) {
1535*adcb0a62SAndroid Build Coastguard Worker const EntryReader reader(mapped_zip, entry);
1536*adcb0a62SAndroid Build Coastguard Worker return inflateImpl<true>(reader, entry->compressed_length,
1537*adcb0a62SAndroid Build Coastguard Worker entry->uncompressed_length, writer, crc_out);
1538*adcb0a62SAndroid Build Coastguard Worker }
1539*adcb0a62SAndroid Build Coastguard Worker
CopyEntryToWriter(MappedZipFile & mapped_zip,const ZipEntry64 * entry,zip_archive::Writer * writer,uint64_t * crc_out)1540*adcb0a62SAndroid Build Coastguard Worker static int32_t CopyEntryToWriter(MappedZipFile& mapped_zip, const ZipEntry64* entry,
1541*adcb0a62SAndroid Build Coastguard Worker zip_archive::Writer* writer, uint64_t* crc_out) {
1542*adcb0a62SAndroid Build Coastguard Worker constexpr uint64_t kBufSize = 32768;
1543*adcb0a62SAndroid Build Coastguard Worker std::vector<uint8_t> buf;
1544*adcb0a62SAndroid Build Coastguard Worker std::span<uint8_t> write_span{};
1545*adcb0a62SAndroid Build Coastguard Worker uint64_t max_read_size;
1546*adcb0a62SAndroid Build Coastguard Worker if (mapped_zip.GetBasePtr() == nullptr ||
1547*adcb0a62SAndroid Build Coastguard Worker mapped_zip.GetFileLength() < entry->uncompressed_length) {
1548*adcb0a62SAndroid Build Coastguard Worker // Check if we can read directly into the writer.
1549*adcb0a62SAndroid Build Coastguard Worker write_span = bufferToSpan(writer->GetBuffer(size_t(entry->uncompressed_length)));
1550*adcb0a62SAndroid Build Coastguard Worker if (write_span.size() >= entry->uncompressed_length) {
1551*adcb0a62SAndroid Build Coastguard Worker max_read_size = entry->uncompressed_length;
1552*adcb0a62SAndroid Build Coastguard Worker } else {
1553*adcb0a62SAndroid Build Coastguard Worker max_read_size = std::min(entry->uncompressed_length, kBufSize);
1554*adcb0a62SAndroid Build Coastguard Worker buf.resize((static_cast<size_t>(max_read_size)));
1555*adcb0a62SAndroid Build Coastguard Worker write_span = buf;
1556*adcb0a62SAndroid Build Coastguard Worker }
1557*adcb0a62SAndroid Build Coastguard Worker } else {
1558*adcb0a62SAndroid Build Coastguard Worker max_read_size = entry->uncompressed_length;
1559*adcb0a62SAndroid Build Coastguard Worker }
1560*adcb0a62SAndroid Build Coastguard Worker
1561*adcb0a62SAndroid Build Coastguard Worker SCOPED_SIGBUS_HANDLER({
1562*adcb0a62SAndroid Build Coastguard Worker incfs::util::clearAndFree(buf);
1563*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1564*adcb0a62SAndroid Build Coastguard Worker });
1565*adcb0a62SAndroid Build Coastguard Worker
1566*adcb0a62SAndroid Build Coastguard Worker const uint64_t length = entry->uncompressed_length;
1567*adcb0a62SAndroid Build Coastguard Worker uint64_t count = 0;
1568*adcb0a62SAndroid Build Coastguard Worker uLong crc = 0;
1569*adcb0a62SAndroid Build Coastguard Worker while (count < length) {
1570*adcb0a62SAndroid Build Coastguard Worker uint64_t remaining = length - count;
1571*adcb0a62SAndroid Build Coastguard Worker off64_t offset = entry->offset + count;
1572*adcb0a62SAndroid Build Coastguard Worker
1573*adcb0a62SAndroid Build Coastguard Worker // Safe conversion because even kBufSize is narrow enough for a 32 bit signed value.
1574*adcb0a62SAndroid Build Coastguard Worker const auto block_size = static_cast<uint32_t>(std::min(remaining, max_read_size));
1575*adcb0a62SAndroid Build Coastguard Worker
1576*adcb0a62SAndroid Build Coastguard Worker const auto read_buf = mapped_zip.ReadAtOffset(write_span.data(), block_size, offset);
1577*adcb0a62SAndroid Build Coastguard Worker if (!read_buf) {
1578*adcb0a62SAndroid Build Coastguard Worker ALOGW("CopyFileToFile: copy read failed, block_size = %u, offset = %" PRId64 ": %s",
1579*adcb0a62SAndroid Build Coastguard Worker block_size, static_cast<int64_t>(offset), strerror(errno));
1580*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1581*adcb0a62SAndroid Build Coastguard Worker }
1582*adcb0a62SAndroid Build Coastguard Worker
1583*adcb0a62SAndroid Build Coastguard Worker if (!writer->Append(const_cast<uint8_t*>(read_buf), block_size)) {
1584*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1585*adcb0a62SAndroid Build Coastguard Worker }
1586*adcb0a62SAndroid Build Coastguard Worker // Advance our span if it's a direct buffer (there's a span but local buffer's empty).
1587*adcb0a62SAndroid Build Coastguard Worker if (!write_span.empty() && buf.empty()) {
1588*adcb0a62SAndroid Build Coastguard Worker write_span = write_span.subspan(block_size);
1589*adcb0a62SAndroid Build Coastguard Worker }
1590*adcb0a62SAndroid Build Coastguard Worker if (crc_out) {
1591*adcb0a62SAndroid Build Coastguard Worker crc = crc32(crc, read_buf, block_size);
1592*adcb0a62SAndroid Build Coastguard Worker }
1593*adcb0a62SAndroid Build Coastguard Worker count += block_size;
1594*adcb0a62SAndroid Build Coastguard Worker }
1595*adcb0a62SAndroid Build Coastguard Worker
1596*adcb0a62SAndroid Build Coastguard Worker if (crc_out) {
1597*adcb0a62SAndroid Build Coastguard Worker *crc_out = crc;
1598*adcb0a62SAndroid Build Coastguard Worker }
1599*adcb0a62SAndroid Build Coastguard Worker
1600*adcb0a62SAndroid Build Coastguard Worker return 0;
1601*adcb0a62SAndroid Build Coastguard Worker }
1602*adcb0a62SAndroid Build Coastguard Worker
extractToWriter(ZipArchiveHandle handle,const ZipEntry64 * entry,zip_archive::Writer * writer)1603*adcb0a62SAndroid Build Coastguard Worker static int32_t extractToWriter(ZipArchiveHandle handle, const ZipEntry64* entry,
1604*adcb0a62SAndroid Build Coastguard Worker zip_archive::Writer* writer) {
1605*adcb0a62SAndroid Build Coastguard Worker const uint16_t method = entry->method;
1606*adcb0a62SAndroid Build Coastguard Worker
1607*adcb0a62SAndroid Build Coastguard Worker // this should default to kUnknownCompressionMethod.
1608*adcb0a62SAndroid Build Coastguard Worker int32_t return_value = -1;
1609*adcb0a62SAndroid Build Coastguard Worker uint64_t crc = 0;
1610*adcb0a62SAndroid Build Coastguard Worker if (method == kCompressStored) {
1611*adcb0a62SAndroid Build Coastguard Worker return_value =
1612*adcb0a62SAndroid Build Coastguard Worker CopyEntryToWriter(handle->mapped_zip, entry, writer, kCrcChecksEnabled ? &crc : nullptr);
1613*adcb0a62SAndroid Build Coastguard Worker } else if (method == kCompressDeflated) {
1614*adcb0a62SAndroid Build Coastguard Worker return_value =
1615*adcb0a62SAndroid Build Coastguard Worker InflateEntryToWriter(handle->mapped_zip, entry, writer, kCrcChecksEnabled ? &crc : nullptr);
1616*adcb0a62SAndroid Build Coastguard Worker }
1617*adcb0a62SAndroid Build Coastguard Worker
1618*adcb0a62SAndroid Build Coastguard Worker if (!return_value && entry->has_data_descriptor) {
1619*adcb0a62SAndroid Build Coastguard Worker return_value = ValidateDataDescriptor(handle->mapped_zip, entry);
1620*adcb0a62SAndroid Build Coastguard Worker if (return_value) {
1621*adcb0a62SAndroid Build Coastguard Worker return return_value;
1622*adcb0a62SAndroid Build Coastguard Worker }
1623*adcb0a62SAndroid Build Coastguard Worker }
1624*adcb0a62SAndroid Build Coastguard Worker
1625*adcb0a62SAndroid Build Coastguard Worker // Validate that the CRC matches the calculated value.
1626*adcb0a62SAndroid Build Coastguard Worker if (kCrcChecksEnabled && (entry->crc32 != static_cast<uint32_t>(crc))) {
1627*adcb0a62SAndroid Build Coastguard Worker ALOGW("Zip: crc mismatch: expected %" PRIu32 ", was %" PRIu64, entry->crc32, crc);
1628*adcb0a62SAndroid Build Coastguard Worker return kInconsistentInformation;
1629*adcb0a62SAndroid Build Coastguard Worker }
1630*adcb0a62SAndroid Build Coastguard Worker
1631*adcb0a62SAndroid Build Coastguard Worker return return_value;
1632*adcb0a62SAndroid Build Coastguard Worker }
1633*adcb0a62SAndroid Build Coastguard Worker
ExtractToMemory(ZipArchiveHandle archive,const ZipEntry * entry,uint8_t * begin,size_t size)1634*adcb0a62SAndroid Build Coastguard Worker int32_t ExtractToMemory(ZipArchiveHandle archive, const ZipEntry* entry, uint8_t* begin,
1635*adcb0a62SAndroid Build Coastguard Worker size_t size) {
1636*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64(*entry);
1637*adcb0a62SAndroid Build Coastguard Worker return ExtractToMemory(archive, &entry64, begin, size);
1638*adcb0a62SAndroid Build Coastguard Worker }
1639*adcb0a62SAndroid Build Coastguard Worker
ExtractToMemory(ZipArchiveHandle archive,const ZipEntry64 * entry,uint8_t * begin,size_t size)1640*adcb0a62SAndroid Build Coastguard Worker int32_t ExtractToMemory(ZipArchiveHandle archive, const ZipEntry64* entry, uint8_t* begin,
1641*adcb0a62SAndroid Build Coastguard Worker size_t size) {
1642*adcb0a62SAndroid Build Coastguard Worker auto writer = MemoryWriter::Create(begin, size, entry);
1643*adcb0a62SAndroid Build Coastguard Worker if (!writer) {
1644*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1645*adcb0a62SAndroid Build Coastguard Worker }
1646*adcb0a62SAndroid Build Coastguard Worker return extractToWriter(archive, entry, &writer.value());
1647*adcb0a62SAndroid Build Coastguard Worker }
1648*adcb0a62SAndroid Build Coastguard Worker
ExtractEntryToFile(ZipArchiveHandle archive,const ZipEntry * entry,int fd)1649*adcb0a62SAndroid Build Coastguard Worker int32_t ExtractEntryToFile(ZipArchiveHandle archive, const ZipEntry* entry, int fd) {
1650*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64(*entry);
1651*adcb0a62SAndroid Build Coastguard Worker return ExtractEntryToFile(archive, &entry64, fd);
1652*adcb0a62SAndroid Build Coastguard Worker }
1653*adcb0a62SAndroid Build Coastguard Worker
ExtractEntryToFile(ZipArchiveHandle archive,const ZipEntry64 * entry,int fd)1654*adcb0a62SAndroid Build Coastguard Worker int32_t ExtractEntryToFile(ZipArchiveHandle archive, const ZipEntry64* entry, int fd) {
1655*adcb0a62SAndroid Build Coastguard Worker auto writer = FileWriter::Create(fd, entry);
1656*adcb0a62SAndroid Build Coastguard Worker if (!writer) {
1657*adcb0a62SAndroid Build Coastguard Worker return kIoError;
1658*adcb0a62SAndroid Build Coastguard Worker }
1659*adcb0a62SAndroid Build Coastguard Worker return extractToWriter(archive, entry, &writer.value());
1660*adcb0a62SAndroid Build Coastguard Worker }
1661*adcb0a62SAndroid Build Coastguard Worker
GetFileDescriptor(const ZipArchiveHandle archive)1662*adcb0a62SAndroid Build Coastguard Worker int GetFileDescriptor(const ZipArchiveHandle archive) {
1663*adcb0a62SAndroid Build Coastguard Worker return archive->mapped_zip.GetFileDescriptor();
1664*adcb0a62SAndroid Build Coastguard Worker }
1665*adcb0a62SAndroid Build Coastguard Worker
GetFileDescriptorOffset(const ZipArchiveHandle archive)1666*adcb0a62SAndroid Build Coastguard Worker off64_t GetFileDescriptorOffset(const ZipArchiveHandle archive) {
1667*adcb0a62SAndroid Build Coastguard Worker return archive->mapped_zip.GetFileOffset();
1668*adcb0a62SAndroid Build Coastguard Worker }
1669*adcb0a62SAndroid Build Coastguard Worker
1670*adcb0a62SAndroid Build Coastguard Worker //
1671*adcb0a62SAndroid Build Coastguard Worker // ZIPARCHIVE_DISABLE_CALLBACK_API disables all APIs that accept user callbacks.
1672*adcb0a62SAndroid Build Coastguard Worker // It gets defined for the incfs-supporting version of libziparchive, where one
1673*adcb0a62SAndroid Build Coastguard Worker // has to control all the code accessing the archive. See more at
1674*adcb0a62SAndroid Build Coastguard Worker // incfs_support/signal_handling.h
1675*adcb0a62SAndroid Build Coastguard Worker //
1676*adcb0a62SAndroid Build Coastguard Worker #if !ZIPARCHIVE_DISABLE_CALLBACK_API && !defined(_WIN32)
1677*adcb0a62SAndroid Build Coastguard Worker class ProcessWriter final : public zip_archive::Writer {
1678*adcb0a62SAndroid Build Coastguard Worker public:
ProcessWriter(ProcessZipEntryFunction func,void * cookie)1679*adcb0a62SAndroid Build Coastguard Worker ProcessWriter(ProcessZipEntryFunction func, void* cookie)
1680*adcb0a62SAndroid Build Coastguard Worker : Writer(), proc_function_(func), cookie_(cookie) {}
1681*adcb0a62SAndroid Build Coastguard Worker
Append(uint8_t * buf,size_t buf_size)1682*adcb0a62SAndroid Build Coastguard Worker virtual bool Append(uint8_t* buf, size_t buf_size) override {
1683*adcb0a62SAndroid Build Coastguard Worker return proc_function_(buf, buf_size, cookie_);
1684*adcb0a62SAndroid Build Coastguard Worker }
1685*adcb0a62SAndroid Build Coastguard Worker
1686*adcb0a62SAndroid Build Coastguard Worker private:
1687*adcb0a62SAndroid Build Coastguard Worker ProcessZipEntryFunction proc_function_;
1688*adcb0a62SAndroid Build Coastguard Worker void* cookie_;
1689*adcb0a62SAndroid Build Coastguard Worker };
1690*adcb0a62SAndroid Build Coastguard Worker
ProcessZipEntryContents(ZipArchiveHandle archive,const ZipEntry * entry,ProcessZipEntryFunction func,void * cookie)1691*adcb0a62SAndroid Build Coastguard Worker int32_t ProcessZipEntryContents(ZipArchiveHandle archive, const ZipEntry* entry,
1692*adcb0a62SAndroid Build Coastguard Worker ProcessZipEntryFunction func, void* cookie) {
1693*adcb0a62SAndroid Build Coastguard Worker ZipEntry64 entry64(*entry);
1694*adcb0a62SAndroid Build Coastguard Worker return ProcessZipEntryContents(archive, &entry64, func, cookie);
1695*adcb0a62SAndroid Build Coastguard Worker }
1696*adcb0a62SAndroid Build Coastguard Worker
ProcessZipEntryContents(ZipArchiveHandle archive,const ZipEntry64 * entry,ProcessZipEntryFunction func,void * cookie)1697*adcb0a62SAndroid Build Coastguard Worker int32_t ProcessZipEntryContents(ZipArchiveHandle archive, const ZipEntry64* entry,
1698*adcb0a62SAndroid Build Coastguard Worker ProcessZipEntryFunction func, void* cookie) {
1699*adcb0a62SAndroid Build Coastguard Worker ProcessWriter writer(func, cookie);
1700*adcb0a62SAndroid Build Coastguard Worker return extractToWriter(archive, entry, &writer);
1701*adcb0a62SAndroid Build Coastguard Worker }
1702*adcb0a62SAndroid Build Coastguard Worker
1703*adcb0a62SAndroid Build Coastguard Worker #endif // !ZIPARCHIVE_DISABLE_CALLBACK_API && !defined(_WIN32)
1704*adcb0a62SAndroid Build Coastguard Worker
MappedZipFile(int fd,off64_t length,off64_t offset)1705*adcb0a62SAndroid Build Coastguard Worker MappedZipFile::MappedZipFile(int fd, off64_t length, off64_t offset)
1706*adcb0a62SAndroid Build Coastguard Worker : fd_(fd), fd_offset_(offset), data_length_(length) {
1707*adcb0a62SAndroid Build Coastguard Worker // TODO(b/287285733): restore mmap() when the cold cache regression is fixed.
1708*adcb0a62SAndroid Build Coastguard Worker #if 0
1709*adcb0a62SAndroid Build Coastguard Worker // Only try to mmap all files in 64-bit+ processes as it's too easy to use up the whole
1710*adcb0a62SAndroid Build Coastguard Worker // virtual address space on 32-bits, causing out of memory errors later.
1711*adcb0a62SAndroid Build Coastguard Worker if constexpr (sizeof(void*) >= 8) {
1712*adcb0a62SAndroid Build Coastguard Worker // Note: GetFileLength() here fills |data_length_| if it was empty.
1713*adcb0a62SAndroid Build Coastguard Worker // TODO(b/261875471): remove the incfs exclusion when the driver deadlock is fixed.
1714*adcb0a62SAndroid Build Coastguard Worker if (fd >= 0 && !incfs::util::isIncfsFd(fd) && GetFileLength() > 0 &&
1715*adcb0a62SAndroid Build Coastguard Worker GetFileLength() < std::numeric_limits<size_t>::max()) {
1716*adcb0a62SAndroid Build Coastguard Worker mapped_file_ =
1717*adcb0a62SAndroid Build Coastguard Worker android::base::MappedFile::FromFd(fd, fd_offset_, size_t(data_length_), PROT_READ);
1718*adcb0a62SAndroid Build Coastguard Worker if (mapped_file_) {
1719*adcb0a62SAndroid Build Coastguard Worker maybePrepareSequentialReading(mapped_file_->data(), size_t(data_length_));
1720*adcb0a62SAndroid Build Coastguard Worker base_ptr_ = mapped_file_->data();
1721*adcb0a62SAndroid Build Coastguard Worker }
1722*adcb0a62SAndroid Build Coastguard Worker }
1723*adcb0a62SAndroid Build Coastguard Worker }
1724*adcb0a62SAndroid Build Coastguard Worker #endif // 0
1725*adcb0a62SAndroid Build Coastguard Worker }
1726*adcb0a62SAndroid Build Coastguard Worker
GetFileDescriptor() const1727*adcb0a62SAndroid Build Coastguard Worker int MappedZipFile::GetFileDescriptor() const {
1728*adcb0a62SAndroid Build Coastguard Worker return fd_;
1729*adcb0a62SAndroid Build Coastguard Worker }
1730*adcb0a62SAndroid Build Coastguard Worker
GetBasePtr() const1731*adcb0a62SAndroid Build Coastguard Worker const void* MappedZipFile::GetBasePtr() const {
1732*adcb0a62SAndroid Build Coastguard Worker return base_ptr_;
1733*adcb0a62SAndroid Build Coastguard Worker }
1734*adcb0a62SAndroid Build Coastguard Worker
GetFileOffset() const1735*adcb0a62SAndroid Build Coastguard Worker off64_t MappedZipFile::GetFileOffset() const {
1736*adcb0a62SAndroid Build Coastguard Worker return fd_offset_;
1737*adcb0a62SAndroid Build Coastguard Worker }
1738*adcb0a62SAndroid Build Coastguard Worker
GetFileLength() const1739*adcb0a62SAndroid Build Coastguard Worker off64_t MappedZipFile::GetFileLength() const {
1740*adcb0a62SAndroid Build Coastguard Worker if (data_length_ >= 0) {
1741*adcb0a62SAndroid Build Coastguard Worker return data_length_;
1742*adcb0a62SAndroid Build Coastguard Worker }
1743*adcb0a62SAndroid Build Coastguard Worker if (fd_ < 0) {
1744*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid file map");
1745*adcb0a62SAndroid Build Coastguard Worker } else {
1746*adcb0a62SAndroid Build Coastguard Worker struct stat st;
1747*adcb0a62SAndroid Build Coastguard Worker if (fstat(fd_, &st)) {
1748*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: fstat(%d) failed: %s", fd_, strerror(errno));
1749*adcb0a62SAndroid Build Coastguard Worker } else {
1750*adcb0a62SAndroid Build Coastguard Worker if (S_ISBLK(st.st_mode)) {
1751*adcb0a62SAndroid Build Coastguard Worker #if defined(__linux__)
1752*adcb0a62SAndroid Build Coastguard Worker // Block devices are special - they report 0 as st_size.
1753*adcb0a62SAndroid Build Coastguard Worker uint64_t size;
1754*adcb0a62SAndroid Build Coastguard Worker if (ioctl(fd_, BLKGETSIZE64, &size)) {
1755*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: ioctl(%d, BLKGETSIZE64) failed: %s", fd_, strerror(errno));
1756*adcb0a62SAndroid Build Coastguard Worker } else {
1757*adcb0a62SAndroid Build Coastguard Worker data_length_ = size - fd_offset_;
1758*adcb0a62SAndroid Build Coastguard Worker }
1759*adcb0a62SAndroid Build Coastguard Worker #endif
1760*adcb0a62SAndroid Build Coastguard Worker } else {
1761*adcb0a62SAndroid Build Coastguard Worker data_length_ = st.st_size - fd_offset_;
1762*adcb0a62SAndroid Build Coastguard Worker }
1763*adcb0a62SAndroid Build Coastguard Worker }
1764*adcb0a62SAndroid Build Coastguard Worker }
1765*adcb0a62SAndroid Build Coastguard Worker return data_length_;
1766*adcb0a62SAndroid Build Coastguard Worker }
1767*adcb0a62SAndroid Build Coastguard Worker
1768*adcb0a62SAndroid Build Coastguard Worker // Attempts to read |len| bytes into |buf| at offset |off|.
ReadAtOffset(uint8_t * buf,size_t len,off64_t off) const1769*adcb0a62SAndroid Build Coastguard Worker const uint8_t* MappedZipFile::ReadAtOffset(uint8_t* buf, size_t len, off64_t off) const {
1770*adcb0a62SAndroid Build Coastguard Worker if (base_ptr_) {
1771*adcb0a62SAndroid Build Coastguard Worker if (off < 0 || data_length_ < len || off > data_length_ - len) {
1772*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid offset: %" PRId64 ", read length: %zu, data length: %" PRId64, off, len,
1773*adcb0a62SAndroid Build Coastguard Worker data_length_);
1774*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1775*adcb0a62SAndroid Build Coastguard Worker }
1776*adcb0a62SAndroid Build Coastguard Worker maybePrefetch(static_cast<const uint8_t*>(base_ptr_) + off, len);
1777*adcb0a62SAndroid Build Coastguard Worker return static_cast<const uint8_t*>(base_ptr_) + off;
1778*adcb0a62SAndroid Build Coastguard Worker }
1779*adcb0a62SAndroid Build Coastguard Worker if (fd_ < 0) {
1780*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid zip file");
1781*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1782*adcb0a62SAndroid Build Coastguard Worker }
1783*adcb0a62SAndroid Build Coastguard Worker
1784*adcb0a62SAndroid Build Coastguard Worker if (off < 0) {
1785*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid offset %" PRId64, off);
1786*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1787*adcb0a62SAndroid Build Coastguard Worker }
1788*adcb0a62SAndroid Build Coastguard Worker
1789*adcb0a62SAndroid Build Coastguard Worker off64_t read_offset;
1790*adcb0a62SAndroid Build Coastguard Worker if (__builtin_add_overflow(fd_offset_, off, &read_offset)) {
1791*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid read offset %" PRId64 " overflows, fd offset %" PRId64, off, fd_offset_);
1792*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1793*adcb0a62SAndroid Build Coastguard Worker }
1794*adcb0a62SAndroid Build Coastguard Worker
1795*adcb0a62SAndroid Build Coastguard Worker if (data_length_ != -1) {
1796*adcb0a62SAndroid Build Coastguard Worker off64_t read_end;
1797*adcb0a62SAndroid Build Coastguard Worker if (len > std::numeric_limits<off64_t>::max() ||
1798*adcb0a62SAndroid Build Coastguard Worker __builtin_add_overflow(off, static_cast<off64_t>(len), &read_end)) {
1799*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid read length %" PRId64 " overflows, offset %" PRId64,
1800*adcb0a62SAndroid Build Coastguard Worker static_cast<off64_t>(len), off);
1801*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1802*adcb0a62SAndroid Build Coastguard Worker }
1803*adcb0a62SAndroid Build Coastguard Worker
1804*adcb0a62SAndroid Build Coastguard Worker if (read_end > data_length_) {
1805*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: invalid read length %" PRId64 " exceeds data length %" PRId64 ", offset %" PRId64,
1806*adcb0a62SAndroid Build Coastguard Worker static_cast<off64_t>(len), data_length_, off);
1807*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1808*adcb0a62SAndroid Build Coastguard Worker }
1809*adcb0a62SAndroid Build Coastguard Worker }
1810*adcb0a62SAndroid Build Coastguard Worker
1811*adcb0a62SAndroid Build Coastguard Worker // Make sure to read at offset to ensure concurrent access to the fd.
1812*adcb0a62SAndroid Build Coastguard Worker if (!android::base::ReadFullyAtOffset(fd_, buf, len, read_offset)) {
1813*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: failed to read at offset %" PRId64, off);
1814*adcb0a62SAndroid Build Coastguard Worker return nullptr;
1815*adcb0a62SAndroid Build Coastguard Worker }
1816*adcb0a62SAndroid Build Coastguard Worker return buf;
1817*adcb0a62SAndroid Build Coastguard Worker }
1818*adcb0a62SAndroid Build Coastguard Worker
Initialize(const void * map_base_ptr,off64_t cd_start_offset,size_t cd_size)1819*adcb0a62SAndroid Build Coastguard Worker void CentralDirectory::Initialize(const void* map_base_ptr, off64_t cd_start_offset,
1820*adcb0a62SAndroid Build Coastguard Worker size_t cd_size) {
1821*adcb0a62SAndroid Build Coastguard Worker base_ptr_ = static_cast<const uint8_t*>(map_base_ptr) + cd_start_offset;
1822*adcb0a62SAndroid Build Coastguard Worker length_ = cd_size;
1823*adcb0a62SAndroid Build Coastguard Worker }
1824*adcb0a62SAndroid Build Coastguard Worker
InitializeCentralDirectory(off64_t cd_start_offset,size_t cd_size)1825*adcb0a62SAndroid Build Coastguard Worker bool ZipArchive::InitializeCentralDirectory(off64_t cd_start_offset, size_t cd_size) {
1826*adcb0a62SAndroid Build Coastguard Worker if (!mapped_zip.GetBasePtr()) {
1827*adcb0a62SAndroid Build Coastguard Worker directory_map = android::base::MappedFile::FromFd(mapped_zip.GetFileDescriptor(),
1828*adcb0a62SAndroid Build Coastguard Worker mapped_zip.GetFileOffset() + cd_start_offset,
1829*adcb0a62SAndroid Build Coastguard Worker cd_size, PROT_READ);
1830*adcb0a62SAndroid Build Coastguard Worker if (!directory_map) {
1831*adcb0a62SAndroid Build Coastguard Worker ALOGE("Zip: failed to map central directory (offset %" PRId64 ", size %zu): %s",
1832*adcb0a62SAndroid Build Coastguard Worker cd_start_offset, cd_size, strerror(errno));
1833*adcb0a62SAndroid Build Coastguard Worker return false;
1834*adcb0a62SAndroid Build Coastguard Worker }
1835*adcb0a62SAndroid Build Coastguard Worker
1836*adcb0a62SAndroid Build Coastguard Worker CHECK_EQ(directory_map->size(), cd_size);
1837*adcb0a62SAndroid Build Coastguard Worker central_directory.Initialize(directory_map->data(), 0 /*offset*/, cd_size);
1838*adcb0a62SAndroid Build Coastguard Worker } else {
1839*adcb0a62SAndroid Build Coastguard Worker if (mapped_zip.GetBasePtr() == nullptr) {
1840*adcb0a62SAndroid Build Coastguard Worker ALOGE(
1841*adcb0a62SAndroid Build Coastguard Worker "Zip: Failed to map central directory, bad mapped_zip base "
1842*adcb0a62SAndroid Build Coastguard Worker "pointer");
1843*adcb0a62SAndroid Build Coastguard Worker return false;
1844*adcb0a62SAndroid Build Coastguard Worker }
1845*adcb0a62SAndroid Build Coastguard Worker if (static_cast<off64_t>(cd_start_offset) + static_cast<off64_t>(cd_size) >
1846*adcb0a62SAndroid Build Coastguard Worker mapped_zip.GetFileLength()) {
1847*adcb0a62SAndroid Build Coastguard Worker ALOGE(
1848*adcb0a62SAndroid Build Coastguard Worker "Zip: Failed to map central directory, offset exceeds mapped memory region (start_offset "
1849*adcb0a62SAndroid Build Coastguard Worker "%" PRId64 ", cd_size %zu, mapped_region_size %" PRId64 ")",
1850*adcb0a62SAndroid Build Coastguard Worker static_cast<int64_t>(cd_start_offset), cd_size, mapped_zip.GetFileLength());
1851*adcb0a62SAndroid Build Coastguard Worker return false;
1852*adcb0a62SAndroid Build Coastguard Worker }
1853*adcb0a62SAndroid Build Coastguard Worker
1854*adcb0a62SAndroid Build Coastguard Worker central_directory.Initialize(mapped_zip.GetBasePtr(), cd_start_offset, cd_size);
1855*adcb0a62SAndroid Build Coastguard Worker }
1856*adcb0a62SAndroid Build Coastguard Worker return true;
1857*adcb0a62SAndroid Build Coastguard Worker }
1858*adcb0a62SAndroid Build Coastguard Worker
1859*adcb0a62SAndroid Build Coastguard Worker // This function returns the embedded timestamp as is and doesn't perform validation.
GetModificationTime() const1860*adcb0a62SAndroid Build Coastguard Worker tm ZipEntryCommon::GetModificationTime() const {
1861*adcb0a62SAndroid Build Coastguard Worker tm t = {};
1862*adcb0a62SAndroid Build Coastguard Worker
1863*adcb0a62SAndroid Build Coastguard Worker t.tm_hour = (mod_time >> 11) & 0x1f;
1864*adcb0a62SAndroid Build Coastguard Worker t.tm_min = (mod_time >> 5) & 0x3f;
1865*adcb0a62SAndroid Build Coastguard Worker t.tm_sec = (mod_time & 0x1f) << 1;
1866*adcb0a62SAndroid Build Coastguard Worker
1867*adcb0a62SAndroid Build Coastguard Worker t.tm_year = ((mod_time >> 25) & 0x7f) + 80;
1868*adcb0a62SAndroid Build Coastguard Worker t.tm_mon = ((mod_time >> 21) & 0xf) - 1;
1869*adcb0a62SAndroid Build Coastguard Worker t.tm_mday = (mod_time >> 16) & 0x1f;
1870*adcb0a62SAndroid Build Coastguard Worker
1871*adcb0a62SAndroid Build Coastguard Worker return t;
1872*adcb0a62SAndroid Build Coastguard Worker }
1873*adcb0a62SAndroid Build Coastguard Worker
1874*adcb0a62SAndroid Build Coastguard Worker namespace zip_archive {
1875*adcb0a62SAndroid Build Coastguard Worker
Inflate(const Reader & reader,const uint64_t compressed_length,const uint64_t uncompressed_length,Writer * writer,uint64_t * crc_out)1876*adcb0a62SAndroid Build Coastguard Worker int32_t Inflate(const Reader& reader, const uint64_t compressed_length,
1877*adcb0a62SAndroid Build Coastguard Worker const uint64_t uncompressed_length, Writer* writer,
1878*adcb0a62SAndroid Build Coastguard Worker uint64_t* crc_out) {
1879*adcb0a62SAndroid Build Coastguard Worker return inflateImpl<false>(reader, compressed_length, uncompressed_length,
1880*adcb0a62SAndroid Build Coastguard Worker writer, crc_out);
1881*adcb0a62SAndroid Build Coastguard Worker }
1882*adcb0a62SAndroid Build Coastguard Worker
1883*adcb0a62SAndroid Build Coastguard Worker //
1884*adcb0a62SAndroid Build Coastguard Worker // ZIPARCHIVE_DISABLE_CALLBACK_API disables all APIs that accept user callbacks.
1885*adcb0a62SAndroid Build Coastguard Worker // It gets defined for the incfs-supporting version of libziparchive, where one
1886*adcb0a62SAndroid Build Coastguard Worker // has to control all the code accessing the archive. See more at
1887*adcb0a62SAndroid Build Coastguard Worker // incfs_support/signal_handling.h
1888*adcb0a62SAndroid Build Coastguard Worker //
1889*adcb0a62SAndroid Build Coastguard Worker #if !ZIPARCHIVE_DISABLE_CALLBACK_API
1890*adcb0a62SAndroid Build Coastguard Worker
ExtractToWriter(ZipArchiveHandle handle,const ZipEntry64 * entry,zip_archive::Writer * writer)1891*adcb0a62SAndroid Build Coastguard Worker int32_t ExtractToWriter(ZipArchiveHandle handle, const ZipEntry64* entry,
1892*adcb0a62SAndroid Build Coastguard Worker zip_archive::Writer* writer) {
1893*adcb0a62SAndroid Build Coastguard Worker return extractToWriter(handle, entry, writer);
1894*adcb0a62SAndroid Build Coastguard Worker }
1895*adcb0a62SAndroid Build Coastguard Worker
1896*adcb0a62SAndroid Build Coastguard Worker #endif // !ZIPARCHIVE_DISABLE_CALLBACK_API
1897*adcb0a62SAndroid Build Coastguard Worker
1898*adcb0a62SAndroid Build Coastguard Worker } // namespace zip_archive
1899