bool PWSfile::Encrypt(const stringT &fn, const StringX &passwd, stringT &errmess)
{
ulong64 len = 0;
size_t slen = 0;
unsigned char* buf = nullptr;
Fish *fish = nullptr;
bool status = true;
const stringT out_fn = fn + CIPHERTEXT_SUFFIX;
unsigned char *pwd = nullptr;
size_t passlen = 0;
FILE *out = nullptr;
FILE *in = pws_os::FOpen(fn, _T("rb"));
if (in == nullptr) {
status = false; goto exit;
}
len = pws_os::fileLength(in);
if (len > std::numeric_limits<uint32>::max()) {
fclose(in);
errno = EFBIG;
status = false;
goto exit;
}
slen = static_cast<size_t>(len);
buf = new unsigned char[slen];
fread(buf, 1, slen, in);
if (ferror(in)) { // this is how to detect fread errors
status = false;
int save_error = errno;
fclose(in);
errno = save_error;
goto exit;
}
if (fclose(in) != 0) {
status = false;
goto exit;
}
out = pws_os::FOpen(out_fn, _T("wb"));
if (out == nullptr) {
status = false; goto exit;
}
unsigned char randstuff[StuffSize];
unsigned char randhash[SHA1::HASHLEN]; // HashSize
PWSrand::GetInstance()->GetRandomData( randstuff, 8 );
// miserable bug - have to fix this way to avoid breaking existing files
randstuff[8] = randstuff[9] = TCHAR('\0');
GenRandhash(passwd, randstuff, randhash);
SAFE_FWRITE(randstuff, 1, 8, out);
SAFE_FWRITE(randhash, 1, sizeof(randhash), out);
unsigned char thesalt[SaltLength];
PWSrand::GetInstance()->GetRandomData( thesalt, SaltLength );
SAFE_FWRITE(thesalt, 1, SaltLength, out);
unsigned char ipthing[8];
PWSrand::GetInstance()->GetRandomData( ipthing, 8 );
SAFE_FWRITE(ipthing, 1, 8, out);
ConvertPasskey(passwd, pwd, passlen);
fish = BlowFish::MakeBlowFish(pwd, reinterpret_cast<unsigned int &>(passlen), thesalt, SaltLength);
trashMemory(pwd, passlen);
delete[] pwd; // gross - ConvertPasskey allocates.
try {
_writecbc(out, buf, slen, 0, fish, ipthing);
} catch (...) { // _writecbc throws an exception if it fails to write
fclose(out);
errno = EIO;
status = false;
goto exit;
}
status = (fclose(out) == 0);
exit:
if (!status)
errmess = ErrorMessages();
delete fish;
delete[] buf;
return status;
}
bool PWSfile::Encrypt(const stringT &fn, const StringX &passwd, stringT &errmess)
{
unsigned int len = 0;
unsigned char* buf = NULL;
Fish *fish = NULL;
bool status = true;
stringT out_fn;
unsigned char *pwd = NULL;
size_t passlen = 0;
FILE *out = NULL;
FILE *in = pws_os::FOpen(fn, _T("rb"));;
if (in != NULL) {
len = pws_os::fileLength(in);
buf = new unsigned char[len];
fread(buf, 1, len, in);
if (ferror(in)) { // this is how to detect fread errors
status = false;
int save_error = errno;
fclose(in);
errno = save_error;
goto exit;
}
if (fclose(in) != 0) {
status = false;
goto exit;
}
} else {
status = false; goto exit;
}
out_fn = fn;
out_fn += CIPHERTEXT_SUFFIX;
out = pws_os::FOpen(out_fn, _T("wb"));
if (out == NULL) {
status = false; goto exit;
}
#ifdef KEEP_FILE_MODE_BWD_COMPAT
uint32 i32 = len;
SAFE_FWRITE(&i32, 1, sizeof(uint32), out);
#else
unsigned char randstuff[StuffSize];
unsigned char randhash[SHA1::HASHLEN]; // HashSize
PWSrand::GetInstance()->GetRandomData( randstuff, 8 );
// miserable bug - have to fix this way to avoid breaking existing files
randstuff[8] = randstuff[9] = TCHAR('\0');
GenRandhash(passwd, randstuff, randhash);
SAFE_FWRITE(randstuff, 1, 8, out);
SAFE_FWRITE(randhash, 1, sizeof(randhash), out);
#endif // KEEP_FILE_MODE_BWD_COMPAT
unsigned char thesalt[SaltLength];
PWSrand::GetInstance()->GetRandomData( thesalt, SaltLength );
SAFE_FWRITE(thesalt, 1, SaltLength, out);
unsigned char ipthing[8];
PWSrand::GetInstance()->GetRandomData( ipthing, 8 );
SAFE_FWRITE(ipthing, 1, 8, out);
ConvertString(passwd, pwd, passlen);
fish = BlowFish::MakeBlowFish(pwd, reinterpret_cast<int &>(passlen), thesalt, SaltLength);
trashMemory(pwd, passlen);
#ifdef UNICODE
delete[] pwd; // gross - ConvertString allocates only if UNICODE.
#endif
try {
_writecbc(out, buf, len, 0, fish, ipthing);
} catch (...) { // _writecbc throws an exception if it fails to write
fclose(out);
errno = EIO;
status = false;
goto exit;
}
status = (fclose(out) == 0);
exit:
if (!status)
errmess = ErrorMessages();
delete fish;
delete[] buf;
return status;
}
int PWSfileV1V2::Open(const StringX &passkey)
{
int status = SUCCESS;
ASSERT(m_curversion == V17 || m_curversion == V20);
m_passkey = passkey;
FOpen();
if (m_fd == NULL)
return CANT_OPEN_FILE;
LPCTSTR passstr = m_passkey.c_str();
size_t passLen = passkey.length();
unsigned char *pstr;
#ifdef UNICODE
size_t pstr_len = 3 * passLen;
pstr = new unsigned char[pstr_len];
size_t len = pws_os::wcstombs(reinterpret_cast<char *>(pstr), 3 * passLen, passstr, passLen, false);
ASSERT(len != 0);
// hack around OS-dependent semantics - too widespread to fix systematically :-(
pstr[len < pstr_len ? len : pstr_len - 1] = '\0';
passLen = strlen(reinterpret_cast<const char *>(pstr));
#else
pstr = reinterpret_cast<unsigned char *>(passstr);
#endif
if (m_rw == Write) {
// Following used to verify passkey against file's passkey
unsigned char randstuff[StuffSize];
unsigned char randhash[20]; // HashSize
PWSrand::GetInstance()->GetRandomData( randstuff, 8 );
randstuff[8] = randstuff[9] = TCHAR('\0');
GenRandhash(m_passkey, randstuff, randhash);
SAFE_FWRITE(randstuff, 1, 8, m_fd);
SAFE_FWRITE(randhash, 1, 20, m_fd);
PWSrand::GetInstance()->GetRandomData(m_salt, SaltLength);
SAFE_FWRITE(m_salt, 1, SaltLength, m_fd);
PWSrand::GetInstance()->GetRandomData( m_ipthing, 8);
SAFE_FWRITE(m_ipthing, 1, 8, m_fd);
m_fish = BlowFish::MakeBlowFish(pstr, reinterpret_cast<int &>(passLen),
m_salt, SaltLength);
if (m_curversion == V20) {
status = WriteV2Header();
}
} else { // open for read
status = CheckPasskey(m_filename, m_passkey, m_fd);
if (status != SUCCESS) {
#ifdef UNICODE
trashMemory(pstr, pstr_len);
delete[] pstr;
#endif
Close();
return status;
}
fread(m_salt, 1, SaltLength, m_fd);
fread(m_ipthing, 1, 8, m_fd);
m_fish = BlowFish::MakeBlowFish(pstr, reinterpret_cast<int &>(passLen),
m_salt, SaltLength);
if (m_curversion == V20)
status = ReadV2Header();
} // read mode
exit:
if (status != SUCCESS)
Close();
#ifdef UNICODE
trashMemory(pstr, pstr_len);
delete[] pstr;
#endif
return status;
}
