int sqlite3CodecAttach(sqlite3* db, int nDb, const void *zKey, int nKey) {
struct Db *pDb = &db->aDb[nDb];
CODEC_TRACE(("sqlite3CodecAttach: entered nDb=%d zKey=%s, nKey=%d\n", nDb, zKey, nKey));
sqlcipher_activate();
if(nKey && zKey && pDb->pBt) {
int rc;
Pager *pPager = pDb->pBt->pBt->pPager;
sqlite3_file *fd = sqlite3Pager_get_fd(pPager);
codec_ctx *ctx;
/* point the internal codec argument against the contet to be prepared */
rc = sqlcipher_codec_ctx_init(&ctx, pDb, pDb->pBt->pBt->pPager, fd, zKey, nKey);
sqlite3pager_sqlite3PagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
codec_set_btree_to_codec_pagesize(db, pDb, ctx);
/* if fd is null, then this is an in-memory database and
we dont' want to overwrite the AutoVacuum settings
if not null, then set to the default */
sqlite3_mutex_enter(db->mutex);
if(fd != NULL) {
sqlite3BtreeSetAutoVacuum(pDb->pBt, SQLITE_DEFAULT_AUTOVACUUM);
}
sqlite3_mutex_leave(db->mutex);
}
return SQLITE_OK;
}
int sqlite3CodecAttach(sqlite3* db, int nDb, const void *zKey, int nKey) {
struct Db *pDb = &db->aDb[nDb];
CODEC_TRACE(("sqlite3CodecAttach: entered nDb=%d zKey=%s, nKey=%d\n", nDb, (char *)zKey, nKey));
if(nKey && zKey && pDb->pBt) {
int rc;
Pager *pPager = pDb->pBt->pBt->pPager;
sqlite3_file *fd = sqlite3Pager_get_fd(pPager);
codec_ctx *ctx;
sqlcipher_activate(); /* perform internal initialization for sqlcipher */
sqlite3_mutex_enter(db->mutex);
/* point the internal codec argument against the contet to be prepared */
rc = sqlcipher_codec_ctx_init(&ctx, pDb, pDb->pBt->pBt->pPager, fd, zKey, nKey);
if(rc != SQLITE_OK) return rc; /* initialization failed, do not attach potentially corrupted context */
sqlite3pager_sqlite3PagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
codec_set_btree_to_codec_pagesize(db, pDb, ctx);
/* force secure delete. This has the benefit of wiping internal data when deleted
and also ensures that all pages are written to disk (i.e. not skipped by
sqlite3PagerDontWrite optimizations) */
sqlite3BtreeSecureDelete(pDb->pBt, 1);
/* if fd is null, then this is an in-memory database and
we dont' want to overwrite the AutoVacuum settings
if not null, then set to the default */
if(fd != NULL) {
sqlite3BtreeSetAutoVacuum(pDb->pBt, SQLITE_DEFAULT_AUTOVACUUM);
}
sqlite3_mutex_leave(db->mutex);
}
return SQLITE_OK;
}
int sqliterkCryptoSetCipher(sqliterk_pager *pager,
sqliterk_file *fd,
const sqliterk_cipher_conf *conf)
{
codec_ctx *codec = NULL;
int rc;
if (conf) {
// Check arguments.
if (!conf->key || conf->key_len <= 0)
return SQLITERK_MISUSE;
// SQLite library must be initialized before calling sqlcipher_activate(),
// or it will cause a deadlock.
sqlite3_initialize();
sqlcipher_activate();
// XXX: fake BTree structure passed to sqlcipher_codec_ctx_init.
// Member of such structure is assigned but never used by repair kit.
int fake_db[8];
sqlite3_file_rkredir file;
struct sqlite3_io_methods methods = {0};
methods.xRead = sqliterkRead;
file.pMethods = &methods;
file.fd = fd;
file.kdf_salt = conf->kdf_salt;
// Initialize codec context.
rc = sqlcipher_codec_ctx_init(&codec, fake_db, NULL, &file, conf->key,
conf->key_len);
if (rc != SQLITE_OK)
goto bail_sqlite_errstr;
// Set cipher.
if (conf->cipher_name) {
rc = sqlcipher_codec_ctx_set_cipher(codec, conf->cipher_name,
CIPHER_READWRITE_CTX);
if (rc != SQLITE_OK)
goto bail_sqlite_errstr;
}
// Set page size.
if (conf->page_size > 0) {
rc = sqlcipher_codec_ctx_set_pagesize(codec, conf->page_size);
if (rc != SQLITE_OK)
goto bail_sqlite_errstr;
}
// Set HMAC usage.
if (conf->use_hmac >= 0) {
rc = sqlcipher_codec_ctx_set_use_hmac(codec, conf->use_hmac);
if (rc != SQLITE_OK)
goto bail_sqlite_errstr;
}
// Set KDF Iteration.
if (conf->kdf_iter > 0) {
rc = sqlcipher_codec_ctx_set_kdf_iter(codec, conf->kdf_iter,
CIPHER_READWRITE_CTX);
if (rc != SQLITE_OK)
goto bail;
}
// Update pager page size.
int page_sz = sqlcipher_codec_ctx_get_pagesize(codec);
int reserve_sz = sqlcipher_codec_ctx_get_reservesize(codec);
pager->pagesize = page_sz;
pager->reservedBytes = reserve_sz;
}
if (pager->codec) {
sqlcipher_codec_ctx_free(&pager->codec);
sqlcipher_deactivate();
}
pager->codec = codec;
return SQLITERK_OK;
bail_sqlite_errstr:
sqliterkOSError(SQLITERK_CANTOPEN,
"Failed to initialize cipher context: %s",
sqlite3_errstr(rc));
rc = SQLITERK_CANTOPEN;
bail:
if (codec)
sqlcipher_codec_ctx_free(&codec);
sqlcipher_deactivate();
return rc;
}