blob: f47a480f1a22e42510769355c987804430081875 [file] [log] [blame]
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -08001/*
2 * Copyright 2006 The Android Open Source Project
3 *
4 * Simple Zip file support.
5 */
6#include "safe_iop.h"
7#include "zlib.h"
8
9#include <errno.h>
10#include <fcntl.h>
11#include <limits.h>
12#include <stdint.h> // for uintptr_t
13#include <stdlib.h>
14#include <sys/stat.h> // for S_ISLNK()
15#include <unistd.h>
16
17#define LOG_TAG "minzip"
18#include "Zip.h"
19#include "Bits.h"
20#include "Log.h"
21#include "DirUtil.h"
22
23#undef NDEBUG // do this after including Log.h
24#include <assert.h>
25
26#define SORT_ENTRIES 1
27
28/*
29 * Offset and length constants (java.util.zip naming convention).
30 */
31enum {
32 CENSIG = 0x02014b50, // PK12
33 CENHDR = 46,
34
35 CENVEM = 4,
36 CENVER = 6,
37 CENFLG = 8,
38 CENHOW = 10,
39 CENTIM = 12,
40 CENCRC = 16,
41 CENSIZ = 20,
42 CENLEN = 24,
43 CENNAM = 28,
Doug Zongker596271f2009-04-29 16:52:04 -070044 CENEXT = 30,
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -080045 CENCOM = 32,
46 CENDSK = 34,
47 CENATT = 36,
48 CENATX = 38,
49 CENOFF = 42,
50
51 ENDSIG = 0x06054b50, // PK56
52 ENDHDR = 22,
53
54 ENDSUB = 8,
55 ENDTOT = 10,
56 ENDSIZ = 12,
57 ENDOFF = 16,
58 ENDCOM = 20,
59
60 EXTSIG = 0x08074b50, // PK78
61 EXTHDR = 16,
62
63 EXTCRC = 4,
64 EXTSIZ = 8,
65 EXTLEN = 12,
66
67 LOCSIG = 0x04034b50, // PK34
68 LOCHDR = 30,
Doug Zongker596271f2009-04-29 16:52:04 -070069
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -080070 LOCVER = 4,
71 LOCFLG = 6,
72 LOCHOW = 8,
73 LOCTIM = 10,
74 LOCCRC = 14,
Doug Zongker596271f2009-04-29 16:52:04 -070075 LOCSIZ = 18,
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -080076 LOCLEN = 22,
77 LOCNAM = 26,
78 LOCEXT = 28,
79
80 STORED = 0,
81 DEFLATED = 8,
82
83 CENVEM_UNIX = 3 << 8, // the high byte of CENVEM
84};
85
86
87/*
88 * For debugging, dump the contents of a ZipEntry.
89 */
90#if 0
91static void dumpEntry(const ZipEntry* pEntry)
92{
93 LOGI(" %p '%.*s'\n", pEntry->fileName,pEntry->fileNameLen,pEntry->fileName);
94 LOGI(" off=%ld comp=%ld uncomp=%ld how=%d\n", pEntry->offset,
95 pEntry->compLen, pEntry->uncompLen, pEntry->compression);
96}
97#endif
98
99/*
100 * (This is a mzHashTableLookup callback.)
101 *
102 * Compare two ZipEntry structs, by name.
103 */
104static int hashcmpZipEntry(const void* ventry1, const void* ventry2)
105{
106 const ZipEntry* entry1 = (const ZipEntry*) ventry1;
107 const ZipEntry* entry2 = (const ZipEntry*) ventry2;
108
109 if (entry1->fileNameLen != entry2->fileNameLen)
110 return entry1->fileNameLen - entry2->fileNameLen;
111 return memcmp(entry1->fileName, entry2->fileName, entry1->fileNameLen);
112}
113
114/*
115 * (This is a mzHashTableLookup callback.)
116 *
117 * find a ZipEntry struct by name.
118 */
119static int hashcmpZipName(const void* ventry, const void* vname)
120{
121 const ZipEntry* entry = (const ZipEntry*) ventry;
122 const char* name = (const char*) vname;
123 unsigned int nameLen = strlen(name);
124
125 if (entry->fileNameLen != nameLen)
126 return entry->fileNameLen - nameLen;
127 return memcmp(entry->fileName, name, nameLen);
128}
129
130/*
131 * Compute the hash code for a ZipEntry filename.
132 *
133 * Not expected to be compatible with any other hash function, so we init
134 * to 2 to ensure it doesn't happen to match.
135 */
136static unsigned int computeHash(const char* name, int nameLen)
137{
138 unsigned int hash = 2;
139
140 while (nameLen--)
141 hash = hash * 31 + *name++;
142
143 return hash;
144}
145
146static void addEntryToHashTable(HashTable* pHash, ZipEntry* pEntry)
147{
148 unsigned int itemHash = computeHash(pEntry->fileName, pEntry->fileNameLen);
149 const ZipEntry* found;
150
151 found = (const ZipEntry*)mzHashTableLookup(pHash,
152 itemHash, pEntry, hashcmpZipEntry, true);
153 if (found != pEntry) {
154 LOGW("WARNING: duplicate entry '%.*s' in Zip\n",
155 found->fileNameLen, found->fileName);
156 /* keep going */
157 }
158}
159
160static int validFilename(const char *fileName, unsigned int fileNameLen)
161{
162 // Forbid super long filenames.
163 if (fileNameLen >= PATH_MAX) {
164 LOGW("Filename too long (%d chatacters)\n", fileNameLen);
165 return 0;
166 }
167
168 // Require all characters to be printable ASCII (no NUL, no UTF-8, etc).
169 unsigned int i;
170 for (i = 0; i < fileNameLen; ++i) {
171 if (fileName[i] < 32 || fileName[i] >= 127) {
172 LOGW("Filename contains invalid character '\%03o'\n", fileName[i]);
173 return 0;
174 }
175 }
176
177 return 1;
178}
179
180/*
181 * Parse the contents of a Zip archive. After confirming that the file
182 * is in fact a Zip, we scan out the contents of the central directory and
183 * store it in a hash table.
184 *
185 * Returns "true" on success.
186 */
Doug Zongker99916f02014-01-13 14:16:58 -0800187static bool parseZipArchive(ZipArchive* pArchive)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800188{
189 bool result = false;
190 const unsigned char* ptr;
191 unsigned int i, numEntries, cdOffset;
192 unsigned int val;
193
194 /*
195 * The first 4 bytes of the file will either be the local header
196 * signature for the first file (LOCSIG) or, if the archive doesn't
197 * have any files in it, the end-of-central-directory signature (ENDSIG).
198 */
Doug Zongker99916f02014-01-13 14:16:58 -0800199 val = get4LE(pArchive->addr);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800200 if (val == ENDSIG) {
201 LOGI("Found Zip archive, but it looks empty\n");
202 goto bail;
203 } else if (val != LOCSIG) {
204 LOGV("Not a Zip archive (found 0x%08x)\n", val);
205 goto bail;
206 }
207
208 /*
209 * Find the EOCD. We'll find it immediately unless they have a file
210 * comment.
211 */
Doug Zongker99916f02014-01-13 14:16:58 -0800212 ptr = pArchive->addr + pArchive->length - ENDHDR;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800213
Doug Zongker99916f02014-01-13 14:16:58 -0800214 while (ptr >= (const unsigned char*) pArchive->addr) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800215 if (*ptr == (ENDSIG & 0xff) && get4LE(ptr) == ENDSIG)
216 break;
217 ptr--;
218 }
Doug Zongker99916f02014-01-13 14:16:58 -0800219 if (ptr < (const unsigned char*) pArchive->addr) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800220 LOGI("Could not find end-of-central-directory in Zip\n");
221 goto bail;
222 }
223
224 /*
225 * There are two interesting items in the EOCD block: the number of
226 * entries in the file, and the file offset of the start of the
227 * central directory.
228 */
229 numEntries = get2LE(ptr + ENDSUB);
230 cdOffset = get4LE(ptr + ENDOFF);
231
232 LOGVV("numEntries=%d cdOffset=%d\n", numEntries, cdOffset);
Doug Zongker99916f02014-01-13 14:16:58 -0800233 if (numEntries == 0 || cdOffset >= pArchive->length) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800234 LOGW("Invalid entries=%d offset=%d (len=%zd)\n",
Doug Zongker99916f02014-01-13 14:16:58 -0800235 numEntries, cdOffset, pArchive->length);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800236 goto bail;
237 }
238
239 /*
240 * Create data structures to hold entries.
241 */
242 pArchive->numEntries = numEntries;
243 pArchive->pEntries = (ZipEntry*) calloc(numEntries, sizeof(ZipEntry));
244 pArchive->pHash = mzHashTableCreate(mzHashSize(numEntries), NULL);
245 if (pArchive->pEntries == NULL || pArchive->pHash == NULL)
246 goto bail;
247
Doug Zongker99916f02014-01-13 14:16:58 -0800248 ptr = pArchive->addr + cdOffset;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800249 for (i = 0; i < numEntries; i++) {
250 ZipEntry* pEntry;
251 unsigned int fileNameLen, extraLen, commentLen, localHdrOffset;
252 const unsigned char* localHdr;
253 const char *fileName;
254
Doug Zongker99916f02014-01-13 14:16:58 -0800255 if (ptr + CENHDR > (const unsigned char*)pArchive->addr + pArchive->length) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800256 LOGW("Ran off the end (at %d)\n", i);
257 goto bail;
258 }
259 if (get4LE(ptr) != CENSIG) {
260 LOGW("Missed a central dir sig (at %d)\n", i);
261 goto bail;
262 }
263
264 localHdrOffset = get4LE(ptr + CENOFF);
265 fileNameLen = get2LE(ptr + CENNAM);
266 extraLen = get2LE(ptr + CENEXT);
267 commentLen = get2LE(ptr + CENCOM);
268 fileName = (const char*)ptr + CENHDR;
Doug Zongker99916f02014-01-13 14:16:58 -0800269 if (fileName + fileNameLen > (const char*)pArchive->addr + pArchive->length) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800270 LOGW("Filename ran off the end (at %d)\n", i);
271 goto bail;
272 }
273 if (!validFilename(fileName, fileNameLen)) {
274 LOGW("Invalid filename (at %d)\n", i);
275 goto bail;
276 }
277
278#if SORT_ENTRIES
279 /* Figure out where this entry should go (binary search).
280 */
281 if (i > 0) {
282 int low, high;
283
284 low = 0;
285 high = i - 1;
286 while (low <= high) {
287 int mid;
288 int diff;
289 int diffLen;
290
291 mid = low + ((high - low) / 2); // avoid overflow
292
293 if (pArchive->pEntries[mid].fileNameLen < fileNameLen) {
294 diffLen = pArchive->pEntries[mid].fileNameLen;
295 } else {
296 diffLen = fileNameLen;
297 }
298 diff = strncmp(pArchive->pEntries[mid].fileName, fileName,
299 diffLen);
300 if (diff == 0) {
301 diff = pArchive->pEntries[mid].fileNameLen - fileNameLen;
302 }
303 if (diff < 0) {
304 low = mid + 1;
305 } else if (diff > 0) {
306 high = mid - 1;
307 } else {
308 high = mid;
309 break;
310 }
311 }
312
313 unsigned int target = high + 1;
314 assert(target <= i);
315 if (target != i) {
316 /* It belongs somewhere other than at the end of
317 * the list. Make some room at [target].
318 */
319 memmove(pArchive->pEntries + target + 1,
320 pArchive->pEntries + target,
321 (i - target) * sizeof(ZipEntry));
322 }
323 pEntry = &pArchive->pEntries[target];
324 } else {
325 pEntry = &pArchive->pEntries[0];
326 }
327#else
328 pEntry = &pArchive->pEntries[i];
329#endif
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800330 pEntry->fileNameLen = fileNameLen;
331 pEntry->fileName = fileName;
332
333 pEntry->compLen = get4LE(ptr + CENSIZ);
334 pEntry->uncompLen = get4LE(ptr + CENLEN);
335 pEntry->compression = get2LE(ptr + CENHOW);
336 pEntry->modTime = get4LE(ptr + CENTIM);
337 pEntry->crc32 = get4LE(ptr + CENCRC);
338
339 /* These two are necessary for finding the mode of the file.
340 */
341 pEntry->versionMadeBy = get2LE(ptr + CENVEM);
342 if ((pEntry->versionMadeBy & 0xff00) != 0 &&
343 (pEntry->versionMadeBy & 0xff00) != CENVEM_UNIX)
344 {
345 LOGW("Incompatible \"version made by\": 0x%02x (at %d)\n",
346 pEntry->versionMadeBy >> 8, i);
347 goto bail;
348 }
349 pEntry->externalFileAttributes = get4LE(ptr + CENATX);
350
Doug Zongker99916f02014-01-13 14:16:58 -0800351 // Perform pArchive->addr + localHdrOffset, ensuring that it won't
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800352 // overflow. This is needed because localHdrOffset is untrusted.
Doug Zongker99916f02014-01-13 14:16:58 -0800353 if (!safe_add((uintptr_t *)&localHdr, (uintptr_t)pArchive->addr,
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800354 (uintptr_t)localHdrOffset)) {
355 LOGW("Integer overflow adding in parseZipArchive\n");
356 goto bail;
357 }
358 if ((uintptr_t)localHdr + LOCHDR >
Doug Zongker99916f02014-01-13 14:16:58 -0800359 (uintptr_t)pArchive->addr + pArchive->length) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800360 LOGW("Bad offset to local header: %d (at %d)\n", localHdrOffset, i);
361 goto bail;
362 }
363 if (get4LE(localHdr) != LOCSIG) {
364 LOGW("Missed a local header sig (at %d)\n", i);
365 goto bail;
366 }
367 pEntry->offset = localHdrOffset + LOCHDR
368 + get2LE(localHdr + LOCNAM) + get2LE(localHdr + LOCEXT);
nkk716069a792016-01-19 16:36:47 +0200369 if (!safe_add(NULL, pEntry->offset, (typeof(pEntry->offset))pEntry->compLen)) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800370 LOGW("Integer overflow adding in parseZipArchive\n");
371 goto bail;
372 }
Doug Zongker99916f02014-01-13 14:16:58 -0800373 if ((size_t)pEntry->offset + pEntry->compLen > pArchive->length) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800374 LOGW("Data ran off the end (at %d)\n", i);
375 goto bail;
376 }
377
378#if !SORT_ENTRIES
379 /* Add to hash table; no need to lock here.
380 * Can't do this now if we're sorting, because entries
381 * will move around.
382 */
383 addEntryToHashTable(pArchive->pHash, pEntry);
384#endif
385
386 //dumpEntry(pEntry);
387 ptr += CENHDR + fileNameLen + extraLen + commentLen;
388 }
389
390#if SORT_ENTRIES
391 /* If we're sorting, we have to wait until all entries
392 * are in their final places, otherwise the pointers will
393 * probably point to the wrong things.
394 */
395 for (i = 0; i < numEntries; i++) {
396 /* Add to hash table; no need to lock here.
397 */
398 addEntryToHashTable(pArchive->pHash, &pArchive->pEntries[i]);
399 }
400#endif
401
402 result = true;
403
404bail:
405 if (!result) {
406 mzHashTableFree(pArchive->pHash);
407 pArchive->pHash = NULL;
408 }
409 return result;
410}
411
412/*
413 * Open a Zip archive and scan out the contents.
414 *
415 * The easiest way to do this is to mmap() the whole thing and do the
416 * traditional backward scan for central directory. Since the EOCD is
417 * a relatively small bit at the end, we should end up only touching a
418 * small set of pages.
419 *
420 * This will be called on non-Zip files, especially during startup, so
421 * we don't want to be too noisy about failures. (Do we want a "quiet"
422 * flag?)
423 *
424 * On success, we fill out the contents of "pArchive".
425 */
Doug Zongker99916f02014-01-13 14:16:58 -0800426int mzOpenZipArchive(unsigned char* addr, size_t length, ZipArchive* pArchive)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800427{
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800428 int err;
429
that50640482015-08-30 12:08:05 +0200430 memset(pArchive, 0, sizeof(ZipArchive));
431
Doug Zongker99916f02014-01-13 14:16:58 -0800432 if (length < ENDHDR) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800433 err = -1;
434 LOGV("File '%s' too small to be zip (%zd)\n", fileName, map.length);
435 goto bail;
436 }
437
Doug Zongker99916f02014-01-13 14:16:58 -0800438 pArchive->addr = addr;
439 pArchive->length = length;
440
441 if (!parseZipArchive(pArchive)) {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800442 err = -1;
443 LOGV("Parsing '%s' failed\n", fileName);
444 goto bail;
445 }
446
447 err = 0;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800448
449bail:
450 if (err != 0)
451 mzCloseZipArchive(pArchive);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800452 return err;
453}
454
455/*
456 * Close a ZipArchive, closing the file and freeing the contents.
457 *
458 * NOTE: the ZipArchive may not have been fully created.
459 */
460void mzCloseZipArchive(ZipArchive* pArchive)
461{
462 LOGV("Closing archive %p\n", pArchive);
463
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800464 free(pArchive->pEntries);
465
466 mzHashTableFree(pArchive->pHash);
467
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800468 pArchive->pHash = NULL;
469 pArchive->pEntries = NULL;
470}
471
472/*
473 * Find a matching entry.
474 *
475 * Returns NULL if no matching entry found.
476 */
477const ZipEntry* mzFindZipEntry(const ZipArchive* pArchive,
478 const char* entryName)
479{
480 unsigned int itemHash = computeHash(entryName, strlen(entryName));
481
482 return (const ZipEntry*)mzHashTableLookup(pArchive->pHash,
483 itemHash, (char*) entryName, hashcmpZipName, false);
484}
485
486/*
487 * Return true if the entry is a symbolic link.
488 */
Narayan Kamath3e700cf2015-02-23 13:29:16 +0000489static bool mzIsZipEntrySymlink(const ZipEntry* pEntry)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800490{
491 if ((pEntry->versionMadeBy & 0xff00) == CENVEM_UNIX) {
492 return S_ISLNK(pEntry->externalFileAttributes >> 16);
493 }
494 return false;
495}
496
497/* Call processFunction on the uncompressed data of a STORED entry.
498 */
499static bool processStoredEntry(const ZipArchive *pArchive,
500 const ZipEntry *pEntry, ProcessZipEntryContentsFunction processFunction,
501 void *cookie)
502{
Doug Zongker99916f02014-01-13 14:16:58 -0800503 return processFunction(pArchive->addr + pEntry->offset, pEntry->uncompLen, cookie);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800504}
505
506static bool processDeflatedEntry(const ZipArchive *pArchive,
507 const ZipEntry *pEntry, ProcessZipEntryContentsFunction processFunction,
508 void *cookie)
509{
510 long result = -1;
511 unsigned char readBuf[32 * 1024];
512 unsigned char procBuf[32 * 1024];
513 z_stream zstream;
514 int zerr;
515 long compRemaining;
516
517 compRemaining = pEntry->compLen;
518
519 /*
520 * Initialize the zlib stream.
521 */
522 memset(&zstream, 0, sizeof(zstream));
523 zstream.zalloc = Z_NULL;
524 zstream.zfree = Z_NULL;
525 zstream.opaque = Z_NULL;
Doug Zongker99916f02014-01-13 14:16:58 -0800526 zstream.next_in = pArchive->addr + pEntry->offset;
527 zstream.avail_in = pEntry->compLen;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800528 zstream.next_out = (Bytef*) procBuf;
529 zstream.avail_out = sizeof(procBuf);
530 zstream.data_type = Z_UNKNOWN;
531
532 /*
533 * Use the undocumented "negative window bits" feature to tell zlib
534 * that there's no zlib header waiting for it.
535 */
536 zerr = inflateInit2(&zstream, -MAX_WBITS);
537 if (zerr != Z_OK) {
538 if (zerr == Z_VERSION_ERROR) {
539 LOGE("Installed zlib is not compatible with linked version (%s)\n",
540 ZLIB_VERSION);
541 } else {
542 LOGE("Call to inflateInit2 failed (zerr=%d)\n", zerr);
543 }
544 goto bail;
545 }
546
547 /*
548 * Loop while we have data.
549 */
550 do {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800551 /* uncompress the data */
552 zerr = inflate(&zstream, Z_NO_FLUSH);
553 if (zerr != Z_OK && zerr != Z_STREAM_END) {
554 LOGD("zlib inflate call failed (zerr=%d)\n", zerr);
555 goto z_bail;
556 }
557
558 /* write when we're full or when we're done */
559 if (zstream.avail_out == 0 ||
560 (zerr == Z_STREAM_END && zstream.avail_out != sizeof(procBuf)))
561 {
562 long procSize = zstream.next_out - procBuf;
563 LOGVV("+++ processing %d bytes\n", (int) procSize);
564 bool ret = processFunction(procBuf, procSize, cookie);
565 if (!ret) {
566 LOGW("Process function elected to fail (in inflate)\n");
567 goto z_bail;
568 }
569
570 zstream.next_out = procBuf;
571 zstream.avail_out = sizeof(procBuf);
572 }
573 } while (zerr == Z_OK);
574
575 assert(zerr == Z_STREAM_END); /* other errors should've been caught */
576
577 // success!
578 result = zstream.total_out;
579
580z_bail:
581 inflateEnd(&zstream); /* free up any allocated structures */
582
583bail:
584 if (result != pEntry->uncompLen) {
585 if (result != -1) // error already shown?
586 LOGW("Size mismatch on inflated file (%ld vs %ld)\n",
587 result, pEntry->uncompLen);
588 return false;
589 }
590 return true;
591}
592
593/*
594 * Stream the uncompressed data through the supplied function,
595 * passing cookie to it each time it gets called. processFunction
596 * may be called more than once.
597 *
598 * If processFunction returns false, the operation is abandoned and
599 * mzProcessZipEntryContents() immediately returns false.
600 *
601 * This is useful for calculating the hash of an entry's uncompressed contents.
602 */
603bool mzProcessZipEntryContents(const ZipArchive *pArchive,
604 const ZipEntry *pEntry, ProcessZipEntryContentsFunction processFunction,
605 void *cookie)
606{
607 bool ret = false;
608 off_t oldOff;
609
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800610 switch (pEntry->compression) {
611 case STORED:
612 ret = processStoredEntry(pArchive, pEntry, processFunction, cookie);
613 break;
614 case DEFLATED:
615 ret = processDeflatedEntry(pArchive, pEntry, processFunction, cookie);
616 break;
617 default:
618 LOGE("Unsupported compression type %d for entry '%s'\n",
619 pEntry->compression, pEntry->fileName);
620 break;
621 }
622
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800623 return ret;
624}
625
626static bool crcProcessFunction(const unsigned char *data, int dataLen,
627 void *crc)
628{
629 *(unsigned long *)crc = crc32(*(unsigned long *)crc, data, dataLen);
630 return true;
631}
632
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800633typedef struct {
634 char *buf;
635 int bufLen;
636} CopyProcessArgs;
637
638static bool copyProcessFunction(const unsigned char *data, int dataLen,
639 void *cookie)
640{
641 CopyProcessArgs *args = (CopyProcessArgs *)cookie;
642 if (dataLen <= args->bufLen) {
643 memcpy(args->buf, data, dataLen);
644 args->buf += dataLen;
645 args->bufLen -= dataLen;
646 return true;
647 }
648 return false;
649}
650
651/*
652 * Read an entry into a buffer allocated by the caller.
653 */
654bool mzReadZipEntry(const ZipArchive* pArchive, const ZipEntry* pEntry,
655 char *buf, int bufLen)
656{
657 CopyProcessArgs args;
658 bool ret;
Doug Zongker596271f2009-04-29 16:52:04 -0700659
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800660 args.buf = buf;
661 args.bufLen = bufLen;
662 ret = mzProcessZipEntryContents(pArchive, pEntry, copyProcessFunction,
663 (void *)&args);
664 if (!ret) {
665 LOGE("Can't extract entry to buffer.\n");
666 return false;
667 }
668 return true;
669}
670
671static bool writeProcessFunction(const unsigned char *data, int dataLen,
Doug Zongker683c4622009-05-05 17:50:21 -0700672 void *cookie)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800673{
Colin Cross92cdf9c2014-02-05 17:30:31 -0800674 int fd = (int)(intptr_t)cookie;
Michael Rungef5d9f892014-05-06 16:54:42 -0700675 if (dataLen == 0) {
676 return true;
677 }
Doug Zongker596271f2009-04-29 16:52:04 -0700678 ssize_t soFar = 0;
Doug Zongker683c4622009-05-05 17:50:21 -0700679 while (true) {
Elliott Hughes2f5feed2015-04-28 17:24:24 -0700680 ssize_t n = TEMP_FAILURE_RETRY(write(fd, data+soFar, dataLen-soFar));
Doug Zongker683c4622009-05-05 17:50:21 -0700681 if (n <= 0) {
Doug Zongkera9300302014-02-10 12:35:19 -0800682 LOGE("Error writing %zd bytes from zip file from %p: %s\n",
Doug Zongker683c4622009-05-05 17:50:21 -0700683 dataLen-soFar, data+soFar, strerror(errno));
Elliott Hughes2f5feed2015-04-28 17:24:24 -0700684 return false;
Doug Zongker596271f2009-04-29 16:52:04 -0700685 } else if (n > 0) {
686 soFar += n;
687 if (soFar == dataLen) return true;
688 if (soFar > dataLen) {
Doug Zongkera9300302014-02-10 12:35:19 -0800689 LOGE("write overrun? (%zd bytes instead of %d)\n",
Doug Zongker596271f2009-04-29 16:52:04 -0700690 soFar, dataLen);
691 return false;
692 }
Doug Zongker596271f2009-04-29 16:52:04 -0700693 }
Doug Zongker683c4622009-05-05 17:50:21 -0700694 }
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800695}
696
697/*
698 * Uncompress "pEntry" in "pArchive" to "fd" at the current offset.
699 */
700bool mzExtractZipEntryToFile(const ZipArchive *pArchive,
Doug Zongker1c4ceae2009-05-08 09:43:28 -0700701 const ZipEntry *pEntry, int fd)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800702{
703 bool ret = mzProcessZipEntryContents(pArchive, pEntry, writeProcessFunction,
Colin Cross92cdf9c2014-02-05 17:30:31 -0800704 (void*)(intptr_t)fd);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800705 if (!ret) {
706 LOGE("Can't extract entry to file.\n");
707 return false;
708 }
709 return true;
710}
711
Doug Zongker6aece332010-02-01 14:40:12 -0800712typedef struct {
713 unsigned char* buffer;
714 long len;
715} BufferExtractCookie;
716
717static bool bufferProcessFunction(const unsigned char *data, int dataLen,
718 void *cookie) {
719 BufferExtractCookie *bec = (BufferExtractCookie*)cookie;
720
721 memmove(bec->buffer, data, dataLen);
722 bec->buffer += dataLen;
723 bec->len -= dataLen;
724
725 return true;
726}
727
728/*
729 * Uncompress "pEntry" in "pArchive" to buffer, which must be large
730 * enough to hold mzGetZipEntryUncomplen(pEntry) bytes.
731 */
732bool mzExtractZipEntryToBuffer(const ZipArchive *pArchive,
733 const ZipEntry *pEntry, unsigned char *buffer)
734{
735 BufferExtractCookie bec;
736 bec.buffer = buffer;
737 bec.len = mzGetZipEntryUncompLen(pEntry);
738
739 bool ret = mzProcessZipEntryContents(pArchive, pEntry,
740 bufferProcessFunction, (void*)&bec);
741 if (!ret || bec.len != 0) {
742 LOGE("Can't extract entry to memory buffer.\n");
743 return false;
744 }
745 return true;
746}
747
748
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800749/* Helper state to make path translation easier and less malloc-happy.
750 */
751typedef struct {
752 const char *targetDir;
753 const char *zipDir;
754 char *buf;
755 int targetDirLen;
756 int zipDirLen;
757 int bufLen;
758} MzPathHelper;
759
760/* Given the values of targetDir and zipDir in the helper,
761 * return the target filename of the provided entry.
762 * The helper must be initialized first.
763 */
764static const char *targetEntryPath(MzPathHelper *helper, ZipEntry *pEntry)
765{
766 int needLen;
767 bool firstTime = (helper->buf == NULL);
768
769 /* target file <-- targetDir + / + entry[zipDirLen:]
770 */
771 needLen = helper->targetDirLen + 1 +
772 pEntry->fileNameLen - helper->zipDirLen + 1;
773 if (needLen > helper->bufLen) {
774 char *newBuf;
775
776 needLen *= 2;
777 newBuf = (char *)realloc(helper->buf, needLen);
778 if (newBuf == NULL) {
779 return NULL;
780 }
781 helper->buf = newBuf;
782 helper->bufLen = needLen;
783 }
784
785 /* Every path will start with the target path and a slash.
786 */
787 if (firstTime) {
788 char *p = helper->buf;
789 memcpy(p, helper->targetDir, helper->targetDirLen);
790 p += helper->targetDirLen;
791 if (p == helper->buf || p[-1] != '/') {
792 helper->targetDirLen += 1;
793 *p++ = '/';
794 }
795 }
796
797 /* Replace the custom part of the path with the appropriate
798 * part of the entry's path.
799 */
800 char *epath = helper->buf + helper->targetDirLen;
801 memcpy(epath, pEntry->fileName + helper->zipDirLen,
802 pEntry->fileNameLen - helper->zipDirLen);
803 epath += pEntry->fileNameLen - helper->zipDirLen;
804 *epath = '\0';
805
806 return helper->buf;
807}
808
809/*
810 * Inflate all entries under zipDir to the directory specified by
811 * targetDir, which must exist and be a writable directory.
812 *
813 * The immediate children of zipDir will become the immediate
814 * children of targetDir; e.g., if the archive contains the entries
815 *
816 * a/b/c/one
817 * a/b/c/two
818 * a/b/c/d/three
819 *
820 * and mzExtractRecursive(a, "a/b/c", "/tmp") is called, the resulting
821 * files will be
822 *
823 * /tmp/one
824 * /tmp/two
825 * /tmp/d/three
826 *
827 * Returns true on success, false on failure.
828 */
829bool mzExtractRecursive(const ZipArchive *pArchive,
830 const char *zipDir, const char *targetDir,
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000831 const struct utimbuf *timestamp,
Stephen Smalley779701d2012-02-09 14:13:23 -0500832 void (*callback)(const char *fn, void *), void *cookie,
833 struct selabel_handle *sehnd)
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800834{
835 if (zipDir[0] == '/') {
836 LOGE("mzExtractRecursive(): zipDir must be a relative path.\n");
837 return false;
838 }
839 if (targetDir[0] != '/') {
840 LOGE("mzExtractRecursive(): targetDir must be an absolute path.\n");
841 return false;
842 }
843
844 unsigned int zipDirLen;
845 char *zpath;
846
847 zipDirLen = strlen(zipDir);
848 zpath = (char *)malloc(zipDirLen + 2);
849 if (zpath == NULL) {
850 LOGE("Can't allocate %d bytes for zip path\n", zipDirLen + 2);
851 return false;
852 }
853 /* If zipDir is empty, we'll extract the entire zip file.
854 * Otherwise, canonicalize the path.
855 */
856 if (zipDirLen > 0) {
857 /* Make sure there's (hopefully, exactly one) slash at the
858 * end of the path. This way we don't need to worry about
859 * accidentally extracting "one/twothree" when a path like
860 * "one/two" is specified.
861 */
862 memcpy(zpath, zipDir, zipDirLen);
863 if (zpath[zipDirLen-1] != '/') {
864 zpath[zipDirLen++] = '/';
865 }
866 }
867 zpath[zipDirLen] = '\0';
868
869 /* Set up the helper structure that we'll use to assemble paths.
870 */
871 MzPathHelper helper;
872 helper.targetDir = targetDir;
873 helper.targetDirLen = strlen(helper.targetDir);
874 helper.zipDir = zpath;
875 helper.zipDirLen = strlen(helper.zipDir);
876 helper.buf = NULL;
877 helper.bufLen = 0;
878
879 /* Walk through the entries and extract anything whose path begins
880 * with zpath.
Nanik Tolaram4e8e93b2015-02-08 22:31:14 +1100881 //TODO: since the entries are sorted, binary search for the first match
882 // and stop after the first non-match.
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800883 */
884 unsigned int i;
885 bool seenMatch = false;
886 int ok = true;
Doug Zongkerbf80f492012-10-19 12:24:26 -0700887 int extractCount = 0;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800888 for (i = 0; i < pArchive->numEntries; i++) {
889 ZipEntry *pEntry = pArchive->pEntries + i;
890 if (pEntry->fileNameLen < zipDirLen) {
Nanik Tolaram4e8e93b2015-02-08 22:31:14 +1100891 //TODO: look out for a single empty directory entry that matches zpath, but
892 // missing the trailing slash. Most zip files seem to include
893 // the trailing slash, but I think it's legal to leave it off.
894 // e.g., zpath "a/b/", entry "a/b", with no children of the entry.
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800895 /* No chance of matching.
896 */
897#if SORT_ENTRIES
898 if (seenMatch) {
899 /* Since the entries are sorted, we can give up
900 * on the first mismatch after the first match.
901 */
902 break;
903 }
904#endif
905 continue;
906 }
907 /* If zpath is empty, this strncmp() will match everything,
908 * which is what we want.
909 */
910 if (strncmp(pEntry->fileName, zpath, zipDirLen) != 0) {
911#if SORT_ENTRIES
912 if (seenMatch) {
913 /* Since the entries are sorted, we can give up
914 * on the first mismatch after the first match.
915 */
916 break;
917 }
918#endif
919 continue;
920 }
921 /* This entry begins with zipDir, so we'll extract it.
922 */
923 seenMatch = true;
924
925 /* Find the target location of the entry.
926 */
927 const char *targetFile = targetEntryPath(&helper, pEntry);
928 if (targetFile == NULL) {
929 LOGE("Can't assemble target path for \"%.*s\"\n",
930 pEntry->fileNameLen, pEntry->fileName);
931 ok = false;
932 break;
933 }
934
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800935#define UNZIP_DIRMODE 0755
936#define UNZIP_FILEMODE 0644
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000937 /*
938 * Create the file or directory. We ignore directory entries
939 * because we recursively create paths to each file entry we encounter
940 * in the zip archive anyway.
941 *
942 * NOTE: A "directory entry" in a zip archive is just a zero length
943 * entry that ends in a "/". They're not mandatory and many tools get
944 * rid of them. We need to process them only if we want to preserve
945 * empty directories from the archive.
946 */
947 if (pEntry->fileName[pEntry->fileNameLen-1] != '/') {
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800948 /* This is not a directory. First, make sure that
949 * the containing directory exists.
950 */
951 int ret = dirCreateHierarchy(
Stephen Smalley779701d2012-02-09 14:13:23 -0500952 targetFile, UNZIP_DIRMODE, timestamp, true, sehnd);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800953 if (ret != 0) {
954 LOGE("Can't create containing directory for \"%s\": %s\n",
955 targetFile, strerror(errno));
956 ok = false;
957 break;
958 }
959
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000960 /*
961 * The entry is a regular file or a symlink. Open the target for writing.
962 *
963 * TODO: This behavior for symlinks seems rather bizarre. For a
964 * symlink foo/bar/baz -> foo/tar/taz, we will create a file called
965 * "foo/bar/baz" whose contents are the literal "foo/tar/taz". We
966 * warn about this for now and preserve older behavior.
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800967 */
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000968 if (mzIsZipEntrySymlink(pEntry)) {
969 LOGE("Symlink entry \"%.*s\" will be output as a regular file.",
970 pEntry->fileNameLen, pEntry->fileName);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -0800971 }
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000972
973 char *secontext = NULL;
974
975 if (sehnd) {
976 selabel_lookup(sehnd, &secontext, targetFile, UNZIP_FILEMODE);
977 setfscreatecon(secontext);
978 }
979
maxwenc3540a92015-10-25 22:22:06 +0100980 int fd = creat(targetFile, UNZIP_FILEMODE);
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000981
982 if (secontext) {
983 freecon(secontext);
984 setfscreatecon(NULL);
985 }
986
987 if (fd < 0) {
988 LOGE("Can't create target file \"%s\": %s\n",
989 targetFile, strerror(errno));
990 ok = false;
991 break;
992 }
993
994 bool ok = mzExtractZipEntryToFile(pArchive, pEntry, fd);
maxwenc3540a92015-10-25 22:22:06 +0100995 close(fd);
Narayan Kamath9c0f5d62015-02-23 14:09:31 +0000996 if (!ok) {
997 LOGE("Error extracting \"%s\"\n", targetFile);
998 ok = false;
999 break;
1000 }
1001
1002 if (timestamp != NULL && utime(targetFile, timestamp)) {
1003 LOGE("Error touching \"%s\"\n", targetFile);
1004 ok = false;
1005 break;
1006 }
1007
1008 LOGV("Extracted file \"%s\"\n", targetFile);
1009 ++extractCount;
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -08001010 }
1011
1012 if (callback != NULL) callback(targetFile, cookie);
1013 }
1014
Doug Zongkerbf80f492012-10-19 12:24:26 -07001015 LOGD("Extracted %d file(s)\n", extractCount);
1016
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -08001017 free(helper.buf);
1018 free(zpath);
The Android Open Source Projectc24a8e62009-03-03 19:28:42 -08001019
1020 return ok;
1021}