Context Navigation

← Previous Change
Next Change →

unzip.c

Timestamp:

Dec 20, 2016, 4:07:32 PM (7 years ago)

Author:

Bruno Cornec

Message:

New 3?3 banch for incorporation of latest busybox 1.25. Changing minor version to handle potential incompatibilities.

Location:

branches/3.3

Files:

: 1 edited
: 1 copied

. (copied) (copied from branches/3.2 )
mindi-busybox/archival/unzip.c (modified) (21 diffs)

Legend:

: Unmodified
: Added
: Removed

branches/3.3/mindi-busybox/archival/unzip.c

-              r3232
+              r3621
  * Licensed under GPLv2 or later, see file LICENSE in this source tree.
  */
 /* For reference see
  * http://www.pkware.com/company/standards/appnote/
  * http://www.info-zip.org/pub/infozip/doc/appnote-iz-latest.zip
+ */
+/* TODO
+ *
+ * TODO
  * Zip64 + other methods
  */
+//config:config UNZIP
+//config:   bool "unzip"
+//config:   default y
+//config:   help
+//config:     unzip will list or extract files from a ZIP archive,
+//config:     commonly found on DOS/WIN systems. The default behavior
+//config:     (with no options) is to extract the archive into the
+//config:     current directory. Use the `-d' option to extract to a
+//config:     directory of your choice.
+//applet:IF_UNZIP(APPLET(unzip, BB_DIR_USR_BIN, BB_SUID_DROP))
+//kbuild:lib-$(CONFIG_UNZIP) += unzip.o
 //usage:#define unzip_trivial_usage
 …
 #include "libbb.h"
 #include "bb_archive.h"
+#if 0
+# define dbg(...) bb_error_msg(__VA_ARGS__)
+#else
+# define dbg(...) ((void)0)
+#endif
 enum {
 …
 #if ENABLE_DESKTOP
+#define PEEK_FROM_END 16384
+/* Seen in the wild:
+ * Self-extracting PRO2K3XP_32.exe contains 19078464 byte zip archive,
+ * where CDE was nearly 48 kbytes before EOF.
+ * (Surprisingly, it also apparently has *another* CDE structure
+ * closer to the end, with bogus cdf_offset).
+ * To make extraction work, bumped PEEK_FROM_END from 16k to 64k.
+ */
+#define PEEK_FROM_END (64*1024)
+/* This value means that we failed to find CDF */
+#define BAD_CDF_OFFSET ((uint32_t)0xffffffff)
 /* NB: does not preserve file position! */
 …
     off_t end;
     unsigned char *buf = xzalloc(PEEK_FROM_END);
+    uint32_t found;
     end = xlseek(zip_fd, 0, SEEK_END);
 …
     if (end < 0)
         end = 0;
+    xlseek(zip_fd, end, SEEK_SET);
+    dbg("Looking for cdf_offset starting from 0x%"OFF_FMT"x", end);
+    xlseek(zip_fd, end, SEEK_SET);
     full_read(zip_fd, buf, PEEK_FROM_END);
+    found = BAD_CDF_OFFSET;
     p = buf;
     while (p <= buf + PEEK_FROM_END - CDE_HEADER_LEN - 4) {
 …
         memcpy(cde_header.raw, p + 1, CDE_HEADER_LEN);
         FIX_ENDIANNESS_CDE(cde_header);
+        free(buf);
+        return cde_header.formatted.cdf_offset;
+    }
+    //free(buf);
+    bb_error_msg_and_die("can't find file table");
+        /*
+         * I've seen .ZIP files with seemingly valid CDEs
+         * where cdf_offset points past EOF - ??
+         * This check ignores such CDEs:
+         */
+        if (cde_header.formatted.cdf_offset < end + (p - buf)) {
+            found = cde_header.formatted.cdf_offset;
+            dbg("Possible cdf_offset:0x%x at 0x%"OFF_FMT"x",
+                (unsigned)found, end + (p-3 - buf));
+            dbg("  cdf_offset+cdf_size:0x%x",
+                (unsigned)(found + SWAP_LE32(cde_header.formatted.cdf_size)));
+            /*
+             * We do not "break" here because only the last CDE is valid.
+             * I've seen a .zip archive which contained a .zip file,
+             * uncompressed, and taking the first CDE was using
+             * the CDE inside that file!
+             */
+        }
+    }
+    free(buf);
+    dbg("Found cdf_offset:0x%x", (unsigned)found);
+    return found;
 };
 …
         cdf_offset = find_cdf_offset();
+    xlseek(zip_fd, cdf_offset + 4, SEEK_SET);
+    xread(zip_fd, cdf_ptr->raw, CDF_HEADER_LEN);
+    FIX_ENDIANNESS_CDF(*cdf_ptr);
+    cdf_offset += 4 + CDF_HEADER_LEN
+        + cdf_ptr->formatted.file_name_length
+        + cdf_ptr->formatted.extra_field_length
+        + cdf_ptr->formatted.file_comment_length;
+    if (cdf_offset != BAD_CDF_OFFSET) {
+        dbg("Reading CDF at 0x%x", (unsigned)cdf_offset);
+        xlseek(zip_fd, cdf_offset + 4, SEEK_SET);
+        xread(zip_fd, cdf_ptr->raw, CDF_HEADER_LEN);
+        FIX_ENDIANNESS_CDF(*cdf_ptr);
+        dbg("  file_name_length:%u extra_field_length:%u file_comment_length:%u",
+            (unsigned)cdf_ptr->formatted.file_name_length,
+            (unsigned)cdf_ptr->formatted.extra_field_length,
+            (unsigned)cdf_ptr->formatted.file_comment_length
+        );
+        cdf_offset += 4 + CDF_HEADER_LEN
+            + cdf_ptr->formatted.file_name_length
+            + cdf_ptr->formatted.extra_field_length
+            + cdf_ptr->formatted.file_comment_length;
+    }
+    dbg("Returning file position to 0x%"OFF_FMT"x", org);
     xlseek(zip_fd, org, SEEK_SET);
     return cdf_offset;
 …
 static void unzip_skip(off_t skip)
+{
+    if (lseek(zip_fd, skip, SEEK_CUR) == (off_t)-1)
+        bb_copyfd_exact_size(zip_fd, -1, skip);
+    if (skip != 0)
+        if (lseek(zip_fd, skip, SEEK_CUR) == (off_t)-1)
+            bb_copyfd_exact_size(zip_fd, -1, skip);
+}
 …
     } else {
         /* Method 8 - inflate */
+        transformer_aux_data_t aux;
+        init_transformer_aux_data(&aux);
+        aux.bytes_in = zip_header->formatted.cmpsize;
+        if (inflate_unzip(&aux, zip_fd, dst_fd) < 0)
+        transformer_state_t xstate;
+        init_transformer_state(&xstate);
+        xstate.bytes_in = zip_header->formatted.cmpsize;
+        xstate.src_fd = zip_fd;
+        xstate.dst_fd = dst_fd;
+        if (inflate_unzip(&xstate) < 0)
             bb_error_msg_and_die("inflate error");
         /* Validate decompression - crc */
         if (zip_header->formatted.crc32 != (aux.crc32 ^ 0xffffffffL)) {
+        if (zip_header->formatted.crc32 != (xstate.crc32 ^ 0xffffffffL)) {
             bb_error_msg_and_die("crc error");
+        }
         /* Validate decompression - size */
         if (zip_header->formatted.ucmpsize != aux.bytes_out) {
+        if (zip_header->formatted.ucmpsize != xstate.bytes_out) {
             /* Don't die. Who knows, maybe len calculation
              * was botched somewhere. After all, crc matched! */
             bb_error_msg("bad length");
+        }
+    }
+}
+static void my_fgets80(char *buf80)
+{
+    fflush_all();
+    if (!fgets(buf80, 80, stdin)) {
+        bb_perror_msg_and_die("can't read standard input");
+    }
+}
 …
     char *base_dir = NULL;
     int i, opt;
     char key_buf[80];
+    char key_buf[80]; /* must match size used by my_fgets80 */
     struct stat stat_buf;
 …
             overwrite = O_NEVER;
     } else {
         static const char extn[][5] = { ".zip", ".ZIP" };
+        static const char extn[][5] ALIGN1 = { ".zip", ".ZIP" };
         char *ext = src_fn + strlen(src_fn);
         int src_fd;
 …
         if (listing) {
             puts(verbose ?
                 " Length   Method    Size  Ratio   Date   Time   CRC-32    Name\n"
                 "--------  ------  ------- -----   ----   ----   ------    ----"
+                " Length   Method    Size  Cmpr    Date    Time   CRC-32   Name\n"
+                "--------  ------  ------- ---- ---------- ----- --------  ----"
+                :
                 "  Length     Date   Time    Name\n"
                 " --------    ----   ----    ----"
+                "  Length      Date    Time    Name\n"
+                "---------  ---------- -----   ----"
                 );
+        }
 …
         xread(zip_fd, &magic, 4);
         /* Central directory? It's at the end, so exit */
+        if (magic == ZIP_CDF_MAGIC)
+            break;
+        if (magic == ZIP_CDF_MAGIC) {
+            dbg("got ZIP_CDF_MAGIC");
+            break;
+        }
 #if ENABLE_DESKTOP
         /* Data descriptor? It was a streaming file, go on */
         if (magic == ZIP_DD_MAGIC) {
+            dbg("got ZIP_DD_MAGIC");
             /* skip over duplicate crc32, cmpsize and ucmpsize */
             unzip_skip(3 * 4);
 …
         if (magic != ZIP_FILEHEADER_MAGIC)
             bb_error_msg_and_die("invalid zip magic %08X", (int)magic);
+        dbg("got ZIP_FILEHEADER_MAGIC");
         /* Read the file header */
 …
+        }
+        {
+        if (cdf_offset != BAD_CDF_OFFSET) {
             cdf_header_t cdf_header;
             cdf_offset = read_next_cdf(cdf_offset, &cdf_header);
+            /*
+             * Note: cdf_offset can become BAD_CDF_OFFSET after the above call.
+             */
             if (zip_header.formatted.zip_flags & SWAP_LE16(0x0008)) {
                 /* 0x0008 - streaming. [u]cmpsize can be reliably gotten
+                 * only from Central Directory. See unzip_doc.txt */
+                 * only from Central Directory. See unzip_doc.txt
+                 */
                 zip_header.formatted.crc32    = cdf_header.formatted.crc32;
                 zip_header.formatted.cmpsize  = cdf_header.formatted.cmpsize;
 …
+            }
             if ((cdf_header.formatted.version_made_by >> 8) == 3) {
                 /* this archive is created on Unix */
+                /* This archive is created on Unix */
                 dir_mode = file_mode = (cdf_header.formatted.external_file_attributes >> 16);
+            }
+        }
+#endif
+        if (cdf_offset == BAD_CDF_OFFSET
+         && (zip_header.formatted.zip_flags & SWAP_LE16(0x0008))
+        ) {
+            /* If it's a streaming zip, we _require_ CDF */
+            bb_error_msg_and_die("can't find file table");
+        }
+#endif
+        dbg("File cmpsize:0x%x extra_len:0x%x ucmpsize:0x%x",
+            (unsigned)zip_header.formatted.cmpsize,
+            (unsigned)zip_header.formatted.extra_len,
+            (unsigned)zip_header.formatted.ucmpsize
+        );
         /* Read filename */
 …
         /* Skip extra header bytes */
         unzip_skip(zip_header.formatted.extra_len);
+        /* Guard against "/abspath", "/../" and similar attacks */
+        overlapping_strcpy(dst_fn, strip_unsafe_prefix(dst_fn));
         /* Filter zip entries */
 …
         ) { /* Skip entry */
             i = 'n';
+        } else { /* Extract entry */
+            if (listing) { /* List entry */
+                unsigned dostime = zip_header.formatted.modtime | (zip_header.formatted.moddate << 16);
+        } else {
+            if (listing) {
+                /* List entry */
+                char dtbuf[sizeof("mm-dd-yyyy hh:mm")];
+                sprintf(dtbuf, "%02u-%02u-%04u %02u:%02u",
+                    (zip_header.formatted.moddate >> 5) & 0xf,  // mm: 0x01e0
+                    (zip_header.formatted.moddate)      & 0x1f, // dd: 0x001f
+                    (zip_header.formatted.moddate >> 9) + 1980, // yy: 0xfe00
+                    (zip_header.formatted.modtime >> 11),       // hh: 0xf800
+                    (zip_header.formatted.modtime >> 5) & 0x3f  // mm: 0x07e0
+                    // seconds/2 are not shown, encoded in ----------- 0x001f
+                );
                 if (!verbose) {
                     //      "  Length     Date   Time    Name\n"
                     //      " --------    ----   ----    ----"
                     printf(       "%9u  %02u-%02u-%02u %02u:%02u   %s\n",
+                    //      "  Length      Date    Time    Name\n"
+                    //      "---------  ---------- -----   ----"
+                    printf(       "%9u  " "%s   "         "%s\n",
                         (unsigned)zip_header.formatted.ucmpsize,
+                        (dostime & 0x01e00000) >> 21,
+                        (dostime & 0x001f0000) >> 16,
+                        (((dostime & 0xfe000000) >> 25) + 1980) % 100,
+                        (dostime & 0x0000f800) >> 11,
+                        (dostime & 0x000007e0) >> 5,
+                        dtbuf,
                         dst_fn);
-                    total_usize += zip_header.formatted.ucmpsize;
                 } else {
                     unsigned long percents = zip_header.formatted.ucmpsize - zip_header.formatted.cmpsize;
+                    if ((int32_t)percents < 0)
+                        percents = 0; /* happens if ucmpsize < cmpsize */
                     percents = percents * 100;
                     if (zip_header.formatted.ucmpsize)
                         percents /= zip_header.formatted.ucmpsize;
                     //      " Length   Method    Size  Ratio   Date   Time   CRC-32    Name\n"
                     //      "--------  ------  ------- -----   ----   ----   ------    ----"
                     printf(      "%8u  Defl:N"    "%9u%4u%%  %02u-%02u-%02u %02u:%02u  %08x  %s\n",
+                    //      " Length   Method    Size  Cmpr    Date    Time   CRC-32   Name\n"
+                    //      "--------  ------  ------- ---- ---------- ----- --------  ----"
+                    printf(      "%8u  %s"        "%9u%4u%% " "%s "         "%08x  "  "%s\n",
                         (unsigned)zip_header.formatted.ucmpsize,
+                        zip_header.formatted.method == 0 ? "Stored" : "Defl:N", /* Defl is method 8 */
+/* TODO: show other methods?
+ *  1 - Shrunk
+ *  2 - Reduced with compression factor 1
+ *  3 - Reduced with compression factor 2
+ *  4 - Reduced with compression factor 3
+ *  5 - Reduced with compression factor 4
+ *  6 - Imploded
+ *  7 - Reserved for Tokenizing compression algorithm
+ *  9 - Deflate64
+ * 10 - PKWARE Data Compression Library Imploding
+ * 11 - Reserved by PKWARE
+ * 12 - BZIP2
+ */
                         (unsigned)zip_header.formatted.cmpsize,
                         (unsigned)percents,
+                        (dostime & 0x01e00000) >> 21,
+                        (dostime & 0x001f0000) >> 16,
+                        (((dostime & 0xfe000000) >> 25) + 1980) % 100,
+                        (dostime & 0x0000f800) >> 11,
+                        (dostime & 0x000007e0) >> 5,
+                        dtbuf,
                         zip_header.formatted.crc32,
                         dst_fn);
-                    total_usize += zip_header.formatted.ucmpsize;
                     total_size += zip_header.formatted.cmpsize;
+                }
+                total_usize += zip_header.formatted.ucmpsize;
                 i = 'n';
+            } else if (dst_fd == STDOUT_FILENO) { /* Extracting to STDOUT */
+            } else if (dst_fd == STDOUT_FILENO) {
+                /* Extracting to STDOUT */
                 i = -1;
+            } else if (last_char_is(dst_fn, '/')) { /* Extract directory */
+            } else if (last_char_is(dst_fn, '/')) {
+                /* Extract directory */
                 if (stat(dst_fn, &stat_buf) == -1) {
                     if (errno != ENOENT) {
 …
                 } else {
                     if (!S_ISDIR(stat_buf.st_mode)) {
+                        bb_error_msg_and_die("'%s' exists but is not directory", dst_fn);
+                        bb_error_msg_and_die("'%s' exists but is not a %s",
+                            dst_fn, "directory");
+                    }
+                }
                 i = 'n';
             } else {  /* Extract file */
+            } else {
+                /* Extract file */
  check_file:
+                if (stat(dst_fn, &stat_buf) == -1) { /* File does not exist */
+                if (stat(dst_fn, &stat_buf) == -1) {
+                    /* File does not exist */
                     if (errno != ENOENT) {
                         bb_perror_msg_and_die("can't stat '%s'", dst_fn);
+                    }
                     i = 'y';
+                } else { /* File already exists */
+                } else {
+                    /* File already exists */
                     if (overwrite == O_NEVER) {
                         i = 'n';
+                    } else if (S_ISREG(stat_buf.st_mode)) { /* File is regular file */
+                    } else if (S_ISREG(stat_buf.st_mode)) {
+                        /* File is regular file */
                         if (overwrite == O_ALWAYS) {
                             i = 'y';
                         } else {
                             printf("replace %s? [y]es, [n]o, [A]ll, [N]one, [r]ename: ", dst_fn);
+                            fflush_all();
+                            if (!fgets(key_buf, sizeof(key_buf), stdin)) {
+                                bb_perror_msg_and_die("can't read input");
+                            }
+                            my_fgets80(key_buf);
                             i = key_buf[0];
+                        }
+                    } else { /* File is not regular file */
+                        bb_error_msg_and_die("'%s' exists but is not regular file", dst_fn);
+                    } else {
+                        /* File is not regular file */
+                        bb_error_msg_and_die("'%s' exists but is not a %s",
+                            dst_fn, "regular file");
+                    }
+                }
 …
             /* Prompt for new name */
             printf("new name: ");
+            if (!fgets(key_buf, sizeof(key_buf), stdin)) {
+                bb_perror_msg_and_die("can't read input");
+            }
+            my_fgets80(key_buf);
             free(dst_fn);
             dst_fn = xstrdup(key_buf);
 …
     if (listing && quiet <= 1) {
         if (!verbose) {
+            //      "  Length     Date   Time    Name\n"
+            //      " --------    ----   ----    ----"
+            printf( " --------                   -------\n"
+                "%9lu"   "                   %u files\n",
+                total_usize, total_entries);
+            //  "  Length      Date    Time    Name\n"
+            //  "---------  ---------- -----   ----"
+            printf( " --------%21s"               "-------\n"
+                     "%9lu%21s"               "%u files\n",
+                "",
+                total_usize, "", total_entries);
         } else {
             unsigned long percents = total_usize - total_size;
+            if ((long)percents < 0)
+                percents = 0; /* happens if usize < size */
             percents = percents * 100;
             if (total_usize)
                 percents /= total_usize;
+            //      " Length   Method    Size  Ratio   Date   Time   CRC-32    Name\n"
+            //      "--------  ------  ------- -----   ----   ----   ------    ----"
+            printf( "--------          -------  ---                            -------\n"
+                "%8lu"              "%17lu%4u%%                            %u files\n",
+                total_usize, total_size, (unsigned)percents,
+            //  " Length   Method    Size  Cmpr    Date    Time   CRC-32   Name\n"
+            //  "--------  ------  ------- ---- ---------- ----- --------  ----"
+            printf( "--------          ------- ----%28s"                      "----\n"
+                "%8lu"              "%17lu%4u%%%28s"                      "%u files\n",
+                "",
+                total_usize, total_size, (unsigned)percents, "",
                 total_entries);
+        }

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 3621 in MondoRescue for branches/3.3/mindi-busybox/archival/unzip.c

Legend:

branches/3.3/mindi-busybox/archival/unzip.c

Download in other formats: