3 ** http://sqlcipher.net
5 ** Copyright (c) 2008 - 2013, ZETETIC LLC
6 ** All rights reserved.
8 ** Redistribution and use in source and binary forms, with or without
9 ** modification, are permitted provided that the following conditions are met:
10 ** * Redistributions of source code must retain the above copyright
11 ** notice, this list of conditions and the following disclaimer.
12 ** * Redistributions in binary form must reproduce the above copyright
13 ** notice, this list of conditions and the following disclaimer in the
14 ** documentation and/or other materials provided with the distribution.
15 ** * Neither the name of the ZETETIC LLC nor the
16 ** names of its contributors may be used to endorse or promote products
17 ** derived from this software without specific prior written permission.
19 ** THIS SOFTWARE IS PROVIDED BY ZETETIC LLC ''AS IS'' AND ANY
20 ** EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
21 ** WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
22 ** DISCLAIMED. IN NO EVENT SHALL ZETETIC LLC BE LIABLE FOR ANY
23 ** DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
24 ** (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
25 ** LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
26 ** ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 ** (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
28 ** SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
32 #ifdef SQLITE_HAS_CODEC
34 #include "sqlcipher.h"
38 static volatile unsigned int cipher_test_flags
= 0;
39 unsigned int sqlcipher_get_test_flags() {
40 return cipher_test_flags
;
42 void sqlcipher_set_test_flags(unsigned int flags
) {
43 cipher_test_flags
= flags
;
46 static volatile int cipher_test_rand
= 0;
47 int sqlcipher_get_test_rand() {
48 return cipher_test_rand
;
50 void sqlcipher_set_test_rand(int rand
) {
51 cipher_test_rand
= rand
;
53 int sqlcipher_get_test_fail() {
56 /* if cipher_test_rand is not set to a non-zero value always fail (return true) */
57 if (cipher_test_rand
== 0) return 1;
59 sqlite3_randomness(sizeof(x
), &x
);
60 return ((x
% cipher_test_rand
) == 0);
64 /* Generate code to return a string value */
66 static volatile unsigned int default_flags
= DEFAULT_CIPHER_FLAGS
;
67 static volatile unsigned char hmac_salt_mask
= HMAC_SALT_MASK
;
68 static volatile int default_kdf_iter
= PBKDF2_ITER
;
69 static volatile int default_page_size
= 4096;
70 static volatile int default_plaintext_header_sz
= 0;
71 static volatile int default_hmac_algorithm
= SQLCIPHER_HMAC_SHA512
;
72 static volatile int default_kdf_algorithm
= SQLCIPHER_PBKDF2_HMAC_SHA512
;
73 static volatile int sqlcipher_mem_security_on
= 0;
74 static volatile int sqlcipher_mem_executed
= 0;
75 static volatile int sqlcipher_mem_initialized
= 0;
76 static volatile unsigned int sqlcipher_activate_count
= 0;
77 static volatile sqlite3_mem_methods default_mem_methods
;
78 static sqlcipher_provider
*default_provider
= NULL
;
80 static sqlite3_mutex
* sqlcipher_static_mutex
[SQLCIPHER_MUTEX_COUNT
];
81 static FILE* sqlcipher_log_file
= NULL
;
82 static volatile int sqlcipher_log_device
= 0;
83 static volatile unsigned int sqlcipher_log_level
= SQLCIPHER_LOG_NONE
;
84 static volatile unsigned int sqlcipher_log_subsys
= SQLCIPHER_LOG_ALL
;
85 static volatile int sqlcipher_log_set
= 0;
87 sqlite3_mutex
* sqlcipher_mutex(int mutex
) {
88 if(mutex
< 0 || mutex
>= SQLCIPHER_MUTEX_COUNT
) return NULL
;
89 return sqlcipher_static_mutex
[mutex
];
92 static int sqlcipher_mem_init(void *pAppData
) {
93 return default_mem_methods
.xInit(pAppData
);
95 static void sqlcipher_mem_shutdown(void *pAppData
) {
96 default_mem_methods
.xShutdown(pAppData
);
98 static void *sqlcipher_mem_malloc(int n
) {
99 void *ptr
= default_mem_methods
.xMalloc(n
);
100 if(!sqlcipher_mem_executed
) sqlcipher_mem_executed
= 1;
101 if(sqlcipher_mem_security_on
) {
102 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mem_malloc: calling sqlcipher_mlock(%p,%d)", ptr
, n
);
103 sqlcipher_mlock(ptr
, n
);
107 static int sqlcipher_mem_size(void *p
) {
108 return default_mem_methods
.xSize(p
);
110 static void sqlcipher_mem_free(void *p
) {
112 if(!sqlcipher_mem_executed
) sqlcipher_mem_executed
= 1;
113 if(sqlcipher_mem_security_on
) {
114 sz
= sqlcipher_mem_size(p
);
115 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mem_free: calling sqlcipher_memset(%p,0,%d) and sqlcipher_munlock(%p, %d)", p
, sz
, p
, sz
);
116 sqlcipher_memset(p
, 0, sz
);
117 sqlcipher_munlock(p
, sz
);
119 default_mem_methods
.xFree(p
);
121 static void *sqlcipher_mem_realloc(void *p
, int n
) {
124 if(sqlcipher_mem_security_on
) {
125 orig_sz
= sqlcipher_mem_size(p
);
127 sqlcipher_mem_free(p
);
130 return sqlcipher_mem_malloc(n
);
131 } else if(n
<= orig_sz
) {
134 new = sqlcipher_mem_malloc(n
);
136 memcpy(new, p
, orig_sz
);
137 sqlcipher_mem_free(p
);
142 return default_mem_methods
.xRealloc(p
, n
);
146 static int sqlcipher_mem_roundup(int n
) {
147 return default_mem_methods
.xRoundup(n
);
150 static sqlite3_mem_methods sqlcipher_mem_methods
= {
151 sqlcipher_mem_malloc
,
153 sqlcipher_mem_realloc
,
155 sqlcipher_mem_roundup
,
157 sqlcipher_mem_shutdown
,
161 void sqlcipher_init_memmethods() {
162 if(sqlcipher_mem_initialized
) return;
163 if(sqlite3_config(SQLITE_CONFIG_GETMALLOC
, &default_mem_methods
) != SQLITE_OK
||
164 sqlite3_config(SQLITE_CONFIG_MALLOC
, &sqlcipher_mem_methods
) != SQLITE_OK
) {
165 sqlcipher_mem_security_on
= sqlcipher_mem_executed
= sqlcipher_mem_initialized
= 0;
167 sqlcipher_mem_initialized
= 1;
171 int sqlcipher_register_provider(sqlcipher_provider
*p
) {
172 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_register_provider: entering SQLCIPHER_MUTEX_PROVIDER");
173 sqlite3_mutex_enter(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
174 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_register_provider: entered SQLCIPHER_MUTEX_PROVIDER");
176 if(default_provider
!= NULL
&& default_provider
!= p
) {
177 /* only free the current registerd provider if it has been initialized
178 and it isn't a pointer to the same provider passed to the function
179 (i.e. protect against a caller calling register twice for the same provider) */
180 sqlcipher_free(default_provider
, sizeof(sqlcipher_provider
));
182 default_provider
= p
;
183 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_register_provider: leaving SQLCIPHER_MUTEX_PROVIDER");
184 sqlite3_mutex_leave(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
185 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_register_provider: left SQLCIPHER_MUTEX_PROVIDER");
190 /* return a pointer to the currently registered provider. This will
191 allow an application to fetch the current registered provider and
192 make minor changes to it */
193 sqlcipher_provider
* sqlcipher_get_provider() {
194 return default_provider
;
197 void sqlcipher_activate() {
198 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_activate: entering static master mutex");
199 sqlite3_mutex_enter(sqlite3_mutex_alloc(SQLITE_MUTEX_STATIC_MASTER
));
200 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_activate: entered static master mutex");
202 /* allocate new mutexes */
203 if(sqlcipher_activate_count
== 0) {
205 for(i
= 0; i
< SQLCIPHER_MUTEX_COUNT
; i
++) {
206 sqlcipher_static_mutex
[i
] = sqlite3_mutex_alloc(SQLITE_MUTEX_FAST
);
208 #ifndef SQLCIPHER_OMIT_DEFAULT_LOGGING
209 /* when sqlcipher is first activated, set a default log target and level of WARN if the
210 logging settings have not yet been initialized. Use the "device log" for
211 android (logcat) or apple (console). Use stderr on all other platforms. */
212 if(!sqlcipher_log_set
) {
214 /* set log level if it is different than the uninitalized default value of NONE */
215 if(sqlcipher_log_level
== SQLCIPHER_LOG_NONE
) {
216 sqlcipher_log_level
= SQLCIPHER_LOG_WARN
;
219 /* set the default file or device if neither is already set */
220 if(sqlcipher_log_device
== 0 && sqlcipher_log_file
== NULL
) {
221 #if defined(__ANDROID__) || defined(__APPLE_)
222 sqlcipher_log_device
= 1;
224 sqlcipher_log_file
= stderr
;
227 sqlcipher_log_set
= 1;
232 /* check to see if there is a provider registered at this point
233 if there no provider registered at this point, register the
235 if(sqlcipher_get_provider() == NULL
) {
236 sqlcipher_provider
*p
= sqlcipher_malloc(sizeof(sqlcipher_provider
));
237 #if defined (SQLCIPHER_CRYPTO_CC)
238 extern int sqlcipher_cc_setup(sqlcipher_provider
*p
);
239 sqlcipher_cc_setup(p
);
240 #elif defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT)
241 extern int sqlcipher_ltc_setup(sqlcipher_provider
*p
);
242 sqlcipher_ltc_setup(p
);
243 #elif defined (SQLCIPHER_CRYPTO_NSS)
244 extern int sqlcipher_nss_setup(sqlcipher_provider
*p
);
245 sqlcipher_nss_setup(p
);
246 #elif defined (SQLCIPHER_CRYPTO_OPENSSL)
247 extern int sqlcipher_openssl_setup(sqlcipher_provider
*p
);
248 sqlcipher_openssl_setup(p
);
250 #error "NO DEFAULT SQLCIPHER CRYPTO PROVIDER DEFINED"
252 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_activate: calling sqlcipher_register_provider(%p)", p
);
254 sqlcipher_ext_provider_setup(p
);
256 sqlcipher_register_provider(p
);
257 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_activate: called sqlcipher_register_provider(%p)",p
);
260 sqlcipher_activate_count
++; /* increment activation count */
262 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_activate: leaving static master mutex");
263 sqlite3_mutex_leave(sqlite3_mutex_alloc(SQLITE_MUTEX_STATIC_MASTER
));
264 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_activate: left static master mutex");
267 void sqlcipher_deactivate() {
268 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: entering static master mutex");
269 sqlite3_mutex_enter(sqlite3_mutex_alloc(SQLITE_MUTEX_STATIC_MASTER
));
270 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: entered static master mutex");
272 sqlcipher_activate_count
--;
273 /* if no connections are using sqlcipher, cleanup globals */
274 if(sqlcipher_activate_count
< 1) {
275 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: entering SQLCIPHER_MUTEX_PROVIDER");
276 sqlite3_mutex_enter(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
277 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: entered SQLCIPHER_MUTEX_PROVIDER");
279 if(default_provider
!= NULL
) {
280 sqlcipher_free(default_provider
, sizeof(sqlcipher_provider
));
281 default_provider
= NULL
;
284 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: leaving SQLCIPHER_MUTEX_PROVIDER");
285 sqlite3_mutex_leave(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
286 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: left SQLCIPHER_MUTEX_PROVIDER");
289 sqlcipher_ext_provider_destroy();
292 /* last connection closed, free mutexes */
293 if(sqlcipher_activate_count
== 0) {
295 for(i
= 0; i
< SQLCIPHER_MUTEX_COUNT
; i
++) {
296 sqlite3_mutex_free(sqlcipher_static_mutex
[i
]);
299 sqlcipher_activate_count
= 0; /* reset activation count */
302 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: leaving static master mutex");
303 sqlite3_mutex_leave(sqlite3_mutex_alloc(SQLITE_MUTEX_STATIC_MASTER
));
304 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_deactivate: left static master mutex");
307 /* constant time memset using volitile to avoid having the memset
308 optimized out by the compiler.
309 Note: As suggested by Joachim Schipper (joachim.schipper@fox-it.com)
311 void* sqlcipher_memset(void *v
, unsigned char value
, sqlite_uint64 len
) {
312 volatile sqlite_uint64 i
= 0;
313 volatile unsigned char *a
= v
;
315 if (v
== NULL
) return v
;
317 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_memset: setting %p[0-%llu]=%d)", a
, len
, value
);
318 for(i
= 0; i
< len
; i
++) {
325 /* constant time memory check tests every position of a memory segement
326 matches a single value (i.e. the memory is all zeros)
327 returns 0 if match, 1 of no match */
328 int sqlcipher_ismemset(const void *v
, unsigned char value
, sqlite_uint64 len
) {
329 const volatile unsigned char *a
= v
;
330 volatile sqlite_uint64 i
= 0, result
= 0;
332 for(i
= 0; i
< len
; i
++) {
333 result
|= a
[i
] ^ value
;
336 return (result
!= 0);
339 /* constant time memory comparison routine.
340 returns 0 if match, 1 if no match */
341 int sqlcipher_memcmp(const void *v0
, const void *v1
, int len
) {
342 const volatile unsigned char *a0
= v0
, *a1
= v1
;
343 volatile int i
= 0, result
= 0;
345 for(i
= 0; i
< len
; i
++) {
346 result
|= a0
[i
] ^ a1
[i
];
349 return (result
!= 0);
352 void sqlcipher_mlock(void *ptr
, sqlite_uint64 sz
) {
354 #if defined(__unix__) || defined(__APPLE__)
356 unsigned long pagesize
= sysconf(_SC_PAGESIZE
);
357 unsigned long offset
= (unsigned long) ptr
% pagesize
;
359 if(ptr
== NULL
|| sz
== 0) return;
361 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: calling mlock(%p,%lu); _SC_PAGESIZE=%lu", ptr
- offset
, sz
+ offset
, pagesize
);
362 rc
= mlock(ptr
- offset
, sz
+ offset
);
364 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: mlock() returned %d errno=%d", rc
, errno
);
365 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: mlock(%p,%lu) returned %d errno=%d", ptr
- offset
, sz
+ offset
, rc
, errno
);
367 #elif defined(_WIN32)
368 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
370 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: calling VirtualLock(%p,%d)", ptr
, sz
);
371 rc
= VirtualLock(ptr
, sz
);
373 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: VirtualLock() returned %d LastError=%d", rc
, GetLastError());
374 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_mlock: VirtualLock(%p,%d) returned %d LastError=%d", ptr
, sz
, rc
, GetLastError());
381 void sqlcipher_munlock(void *ptr
, sqlite_uint64 sz
) {
383 #if defined(__unix__) || defined(__APPLE__)
385 unsigned long pagesize
= sysconf(_SC_PAGESIZE
);
386 unsigned long offset
= (unsigned long) ptr
% pagesize
;
388 if(ptr
== NULL
|| sz
== 0) return;
390 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_munlock: calling munlock(%p,%lu)", ptr
- offset
, sz
+ offset
);
391 rc
= munlock(ptr
- offset
, sz
+ offset
);
393 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_munlock: munlock(%p,%lu) returned %d errno=%d", ptr
- offset
, sz
+ offset
, rc
, errno
);
395 #elif defined(_WIN32)
396 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
399 if(ptr
== NULL
|| sz
== 0) return;
401 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_munlock: calling VirtualUnlock(%p,%d)", ptr
, sz
);
402 rc
= VirtualUnlock(ptr
, sz
);
404 /* because memory allocations may be made from the same individual page, it is possible for VirtualUnlock to be called
405 * multiple times for the same page. Subsequent calls will return an error, but this can be safely ignored (i.e. because
406 * the previous call for that page unlocked the memory already). Log an info level event only in that case. */
408 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_munlock: VirtualUnlock(%p,%d) returned %d LastError=%d", ptr
, sz
, rc
, GetLastError());
416 * Free and wipe memory. Uses SQLites internal sqlite3_free so that memory
417 * can be countend and memory leak detection works in the test suite.
418 * If ptr is not null memory will be freed.
419 * If sz is greater than zero, the memory will be overwritten with zero before it is freed
420 * If sz is > 0, and not compiled with OMIT_MEMLOCK, system will attempt to unlock the
421 * memory segment so it can be paged
423 void sqlcipher_free(void *ptr
, sqlite_uint64 sz
) {
424 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_free: calling sqlcipher_memset(%p,0,%llu)", ptr
, sz
);
425 sqlcipher_memset(ptr
, 0, sz
);
426 sqlcipher_munlock(ptr
, sz
);
431 * allocate memory. Uses sqlite's internall malloc wrapper so memory can be
432 * reference counted and leak detection works. Unless compiled with OMIT_MEMLOCK
433 * attempts to lock the memory pages so sensitive information won't be swapped
435 void* sqlcipher_malloc(sqlite_uint64 sz
) {
437 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_malloc: calling sqlite3Malloc(%llu)", sz
);
438 ptr
= sqlite3Malloc(sz
);
439 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_malloc: calling sqlcipher_memset(%p,0,%llu)", ptr
, sz
);
440 sqlcipher_memset(ptr
, 0, sz
);
441 sqlcipher_mlock(ptr
, sz
);
445 char* sqlcipher_version() {
446 #ifdef CIPHER_VERSION_QUALIFIER
447 char *version
= sqlite3_mprintf("%s %s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER
), CIPHER_XSTR(CIPHER_VERSION_QUALIFIER
), CIPHER_XSTR(CIPHER_VERSION_BUILD
));
449 char *version
= sqlite3_mprintf("%s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER
), CIPHER_XSTR(CIPHER_VERSION_BUILD
));
455 * Initialize new cipher_ctx struct. This function will allocate memory
456 * for the cipher context and for the key
458 * returns SQLITE_OK if initialization was successful
459 * returns SQLITE_NOMEM if an error occured allocating memory
461 static int sqlcipher_cipher_ctx_init(codec_ctx
*ctx
, cipher_ctx
**iCtx
) {
463 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_cipher_ctx_init: allocating context");
464 *iCtx
= (cipher_ctx
*) sqlcipher_malloc(sizeof(cipher_ctx
));
466 if(c_ctx
== NULL
) return SQLITE_NOMEM
;
468 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_cipher_ctx_init: allocating key");
469 c_ctx
->key
= (unsigned char *) sqlcipher_malloc(ctx
->key_sz
);
471 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_cipher_ctx_init: allocating hmac_key");
472 c_ctx
->hmac_key
= (unsigned char *) sqlcipher_malloc(ctx
->key_sz
);
474 if(c_ctx
->key
== NULL
) return SQLITE_NOMEM
;
475 if(c_ctx
->hmac_key
== NULL
) return SQLITE_NOMEM
;
481 * Free and wipe memory associated with a cipher_ctx
483 static void sqlcipher_cipher_ctx_free(codec_ctx
* ctx
, cipher_ctx
**iCtx
) {
484 cipher_ctx
*c_ctx
= *iCtx
;
485 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "cipher_ctx_free: iCtx=%p", iCtx
);
486 if(c_ctx
->key
) sqlcipher_free(c_ctx
->key
, ctx
->key_sz
);
487 if(c_ctx
->hmac_key
) sqlcipher_free(c_ctx
->hmac_key
, ctx
->key_sz
);
488 if(c_ctx
->pass
) sqlcipher_free(c_ctx
->pass
, c_ctx
->pass_sz
);
489 if(c_ctx
->keyspec
) sqlcipher_free(c_ctx
->keyspec
, ctx
->keyspec_sz
);
490 sqlcipher_free(c_ctx
, sizeof(cipher_ctx
));
493 static int sqlcipher_codec_ctx_reserve_setup(codec_ctx
*ctx
) {
494 int base_reserve
= ctx
->iv_sz
; /* base reserve size will be IV only */
495 int reserve
= base_reserve
;
497 ctx
->hmac_sz
= ctx
->provider
->get_hmac_sz(ctx
->provider_ctx
, ctx
->hmac_algorithm
);
499 if(sqlcipher_codec_ctx_get_use_hmac(ctx
))
500 reserve
+= ctx
->hmac_sz
; /* if reserve will include hmac, update that size */
502 /* calculate the amount of reserve needed in even increments of the cipher block size */
503 if(ctx
->block_sz
> 0) {
504 reserve
= ((reserve
% ctx
->block_sz
) == 0) ? reserve
:
505 ((reserve
/ ctx
->block_sz
) + 1) * ctx
->block_sz
;
508 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_reserve_setup: base_reserve=%d block_sz=%d md_size=%d reserve=%d",
509 base_reserve
, ctx
->block_sz
, ctx
->hmac_sz
, reserve
);
511 ctx
->reserve_sz
= reserve
;
517 * Compare one cipher_ctx to another.
519 * returns 0 if all the parameters (except the derived key data) are the same
520 * returns 1 otherwise
522 static int sqlcipher_cipher_ctx_cmp(cipher_ctx
*c1
, cipher_ctx
*c2
) {
524 c1
->pass_sz
== c2
->pass_sz
527 || !sqlcipher_memcmp((const unsigned char*)c1
->pass
,
528 (const unsigned char*)c2
->pass
,
532 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_cmp: c1=%p c2=%p sqlcipher_memcmp(c1->pass, c2_pass)=%d are_equal=%d",
534 (c1
->pass
== NULL
|| c2
->pass
== NULL
) ?
537 (const unsigned char*)c1
->pass
,
538 (const unsigned char*)c2
->pass
,
544 return !are_equal
; /* return 0 if they are the same, 1 otherwise */
548 * Copy one cipher_ctx to another. For instance, assuming that read_ctx is a
549 * fully initialized context, you could copy it to write_ctx and all yet data
550 * and pass information across
552 * returns SQLITE_OK if initialization was successful
553 * returns SQLITE_NOMEM if an error occured allocating memory
555 static int sqlcipher_cipher_ctx_copy(codec_ctx
*ctx
, cipher_ctx
*target
, cipher_ctx
*source
) {
556 void *key
= target
->key
;
557 void *hmac_key
= target
->hmac_key
;
559 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_copy: target=%p, source=%p", target
, source
);
560 if(target
->pass
) sqlcipher_free(target
->pass
, target
->pass_sz
);
561 if(target
->keyspec
) sqlcipher_free(target
->keyspec
, ctx
->keyspec_sz
);
562 memcpy(target
, source
, sizeof(cipher_ctx
));
564 target
->key
= key
; /* restore pointer to previously allocated key data */
565 memcpy(target
->key
, source
->key
, ctx
->key_sz
);
567 target
->hmac_key
= hmac_key
; /* restore pointer to previously allocated hmac key data */
568 memcpy(target
->hmac_key
, source
->hmac_key
, ctx
->key_sz
);
570 if(source
->pass
&& source
->pass_sz
) {
571 target
->pass
= sqlcipher_malloc(source
->pass_sz
);
572 if(target
->pass
== NULL
) return SQLITE_NOMEM
;
573 memcpy(target
->pass
, source
->pass
, source
->pass_sz
);
575 if(source
->keyspec
) {
576 target
->keyspec
= sqlcipher_malloc(ctx
->keyspec_sz
);
577 if(target
->keyspec
== NULL
) return SQLITE_NOMEM
;
578 memcpy(target
->keyspec
, source
->keyspec
, ctx
->keyspec_sz
);
584 * Set the keyspec for the cipher_ctx
586 * returns SQLITE_OK if assignment was successfull
587 * returns SQLITE_NOMEM if an error occured allocating memory
589 static int sqlcipher_cipher_ctx_set_keyspec(codec_ctx
*ctx
, cipher_ctx
*c_ctx
, const unsigned char *key
) {
590 /* free, zero existing pointers and size */
591 if(c_ctx
->keyspec
) sqlcipher_free(c_ctx
->keyspec
, ctx
->keyspec_sz
);
592 c_ctx
->keyspec
= NULL
;
594 c_ctx
->keyspec
= sqlcipher_malloc(ctx
->keyspec_sz
);
595 if(c_ctx
->keyspec
== NULL
) return SQLITE_NOMEM
;
597 c_ctx
->keyspec
[0] = 'x';
598 c_ctx
->keyspec
[1] = '\'';
599 cipher_bin2hex(key
, ctx
->key_sz
, c_ctx
->keyspec
+ 2);
600 cipher_bin2hex(ctx
->kdf_salt
, ctx
->kdf_salt_sz
, c_ctx
->keyspec
+ (ctx
->key_sz
* 2) + 2);
601 c_ctx
->keyspec
[ctx
->keyspec_sz
- 1] = '\'';
605 int sqlcipher_codec_get_store_pass(codec_ctx
*ctx
) {
606 return ctx
->store_pass
;
609 void sqlcipher_codec_set_store_pass(codec_ctx
*ctx
, int value
) {
610 ctx
->store_pass
= value
;
613 void sqlcipher_codec_get_pass(codec_ctx
*ctx
, void **zKey
, int *nKey
) {
614 *zKey
= ctx
->read_ctx
->pass
;
615 *nKey
= ctx
->read_ctx
->pass_sz
;
618 static void sqlcipher_set_derive_key(codec_ctx
*ctx
, int derive
) {
619 if(ctx
->read_ctx
!= NULL
) ctx
->read_ctx
->derive_key
= derive
;
620 if(ctx
->write_ctx
!= NULL
) ctx
->write_ctx
->derive_key
= derive
;
624 * Set the passphrase for the cipher_ctx
626 * returns SQLITE_OK if assignment was successfull
627 * returns SQLITE_NOMEM if an error occured allocating memory
629 static int sqlcipher_cipher_ctx_set_pass(cipher_ctx
*ctx
, const void *zKey
, int nKey
) {
630 /* free, zero existing pointers and size */
631 if(ctx
->pass
) sqlcipher_free(ctx
->pass
, ctx
->pass_sz
);
635 if(zKey
&& nKey
) { /* if new password is provided, copy it */
637 ctx
->pass
= sqlcipher_malloc(nKey
);
638 if(ctx
->pass
== NULL
) return SQLITE_NOMEM
;
639 memcpy(ctx
->pass
, zKey
, nKey
);
644 int sqlcipher_codec_ctx_set_pass(codec_ctx
*ctx
, const void *zKey
, int nKey
, int for_ctx
) {
645 cipher_ctx
*c_ctx
= for_ctx
? ctx
->write_ctx
: ctx
->read_ctx
;
648 if((rc
= sqlcipher_cipher_ctx_set_pass(c_ctx
, zKey
, nKey
)) != SQLITE_OK
) {
649 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_set_pass", rc
);
653 c_ctx
->derive_key
= 1;
656 if((rc
= sqlcipher_cipher_ctx_copy(ctx
, for_ctx
? ctx
->read_ctx
: ctx
->write_ctx
, c_ctx
)) != SQLITE_OK
) {
657 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_copy", rc
);
665 const char* sqlcipher_codec_ctx_get_cipher(codec_ctx
*ctx
) {
666 return ctx
->provider
->get_cipher(ctx
->provider_ctx
);
669 /* set the global default KDF iteration */
670 void sqlcipher_set_default_kdf_iter(int iter
) {
671 default_kdf_iter
= iter
;
674 int sqlcipher_get_default_kdf_iter() {
675 return default_kdf_iter
;
678 int sqlcipher_codec_ctx_set_kdf_iter(codec_ctx
*ctx
, int kdf_iter
) {
679 ctx
->kdf_iter
= kdf_iter
;
680 sqlcipher_set_derive_key(ctx
, 1);
684 int sqlcipher_codec_ctx_get_kdf_iter(codec_ctx
*ctx
) {
685 return ctx
->kdf_iter
;
688 int sqlcipher_codec_ctx_set_fast_kdf_iter(codec_ctx
*ctx
, int fast_kdf_iter
) {
689 ctx
->fast_kdf_iter
= fast_kdf_iter
;
690 sqlcipher_set_derive_key(ctx
, 1);
694 int sqlcipher_codec_ctx_get_fast_kdf_iter(codec_ctx
*ctx
) {
695 return ctx
->fast_kdf_iter
;
698 /* set the global default flag for HMAC */
699 void sqlcipher_set_default_use_hmac(int use
) {
700 if(use
) SQLCIPHER_FLAG_SET(default_flags
, CIPHER_FLAG_HMAC
);
701 else SQLCIPHER_FLAG_UNSET(default_flags
,CIPHER_FLAG_HMAC
);
704 int sqlcipher_get_default_use_hmac() {
705 return SQLCIPHER_FLAG_GET(default_flags
, CIPHER_FLAG_HMAC
);
708 void sqlcipher_set_hmac_salt_mask(unsigned char mask
) {
709 hmac_salt_mask
= mask
;
712 unsigned char sqlcipher_get_hmac_salt_mask() {
713 return hmac_salt_mask
;
716 /* set the codec flag for whether this individual database should be using hmac */
717 int sqlcipher_codec_ctx_set_use_hmac(codec_ctx
*ctx
, int use
) {
719 SQLCIPHER_FLAG_SET(ctx
->flags
, CIPHER_FLAG_HMAC
);
721 SQLCIPHER_FLAG_UNSET(ctx
->flags
, CIPHER_FLAG_HMAC
);
724 return sqlcipher_codec_ctx_reserve_setup(ctx
);
727 int sqlcipher_codec_ctx_get_use_hmac(codec_ctx
*ctx
) {
728 return SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HMAC
);
731 /* the length of plaintext header size must be:
732 * 1. greater than or equal to zero
733 * 2. a multiple of the cipher block size
734 * 3. less than the usable size of the first database page
736 int sqlcipher_set_default_plaintext_header_size(int size
) {
737 default_plaintext_header_sz
= size
;
741 int sqlcipher_codec_ctx_set_plaintext_header_size(codec_ctx
*ctx
, int size
) {
742 if(size
>= 0 && ctx
->block_sz
> 0 && (size
% ctx
->block_sz
) == 0 && size
< (ctx
->page_sz
- ctx
->reserve_sz
)) {
743 ctx
->plaintext_header_sz
= size
;
746 ctx
->plaintext_header_sz
= -1;
747 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_set_plaintext_header_size: attempt to set invalid plantext_header_size %d", size
);
751 int sqlcipher_get_default_plaintext_header_size() {
752 return default_plaintext_header_sz
;
755 int sqlcipher_codec_ctx_get_plaintext_header_size(codec_ctx
*ctx
) {
756 return ctx
->plaintext_header_sz
;
759 /* manipulate HMAC algorithm */
760 int sqlcipher_set_default_hmac_algorithm(int algorithm
) {
761 default_hmac_algorithm
= algorithm
;
765 int sqlcipher_codec_ctx_set_hmac_algorithm(codec_ctx
*ctx
, int algorithm
) {
766 ctx
->hmac_algorithm
= algorithm
;
767 return sqlcipher_codec_ctx_reserve_setup(ctx
);
770 int sqlcipher_get_default_hmac_algorithm() {
771 return default_hmac_algorithm
;
774 int sqlcipher_codec_ctx_get_hmac_algorithm(codec_ctx
*ctx
) {
775 return ctx
->hmac_algorithm
;
778 /* manipulate KDF algorithm */
779 int sqlcipher_set_default_kdf_algorithm(int algorithm
) {
780 default_kdf_algorithm
= algorithm
;
784 int sqlcipher_codec_ctx_set_kdf_algorithm(codec_ctx
*ctx
, int algorithm
) {
785 ctx
->kdf_algorithm
= algorithm
;
789 int sqlcipher_get_default_kdf_algorithm() {
790 return default_kdf_algorithm
;
793 int sqlcipher_codec_ctx_get_kdf_algorithm(codec_ctx
*ctx
) {
794 return ctx
->kdf_algorithm
;
797 void sqlcipher_codec_ctx_set_error(codec_ctx
*ctx
, int error
) {
798 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_set_error %d", error
);
799 sqlite3pager_error(ctx
->pBt
->pBt
->pPager
, error
);
800 ctx
->pBt
->pBt
->db
->errCode
= error
;
803 int sqlcipher_codec_ctx_get_reservesize(codec_ctx
*ctx
) {
804 return ctx
->reserve_sz
;
807 void* sqlcipher_codec_ctx_get_data(codec_ctx
*ctx
) {
811 static int sqlcipher_codec_ctx_init_kdf_salt(codec_ctx
*ctx
) {
812 sqlite3_file
*fd
= sqlite3PagerFile(ctx
->pBt
->pBt
->pPager
);
814 if(SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HAS_KDF_SALT
)) {
815 return SQLITE_OK
; /* don't reload salt when not needed */
818 /* read salt from header, if present, otherwise generate a new random salt */
819 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init_kdf_salt: obtaining salt");
820 if(fd
== NULL
|| fd
->pMethods
== 0 || sqlite3OsRead(fd
, ctx
->kdf_salt
, ctx
->kdf_salt_sz
, 0) != SQLITE_OK
) {
821 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init_kdf_salt: unable to read salt from file header, generating random");
822 if(ctx
->provider
->random(ctx
->provider_ctx
, ctx
->kdf_salt
, ctx
->kdf_salt_sz
) != SQLITE_OK
) {
823 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init_kdf_salt: error retrieving random bytes from provider");
827 SQLCIPHER_FLAG_SET(ctx
->flags
, CIPHER_FLAG_HAS_KDF_SALT
);
831 int sqlcipher_codec_ctx_set_kdf_salt(codec_ctx
*ctx
, unsigned char *salt
, int size
) {
832 if(size
>= ctx
->kdf_salt_sz
) {
833 memcpy(ctx
->kdf_salt
, salt
, ctx
->kdf_salt_sz
);
834 SQLCIPHER_FLAG_SET(ctx
->flags
, CIPHER_FLAG_HAS_KDF_SALT
);
837 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_set_kdf_salt: attempt to set salt of incorrect size %d", size
);
841 int sqlcipher_codec_ctx_get_kdf_salt(codec_ctx
*ctx
, void** salt
) {
843 if(!SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HAS_KDF_SALT
)) {
844 if((rc
= sqlcipher_codec_ctx_init_kdf_salt(ctx
)) != SQLITE_OK
) {
845 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_get_kdf_salt: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc
);
848 *salt
= ctx
->kdf_salt
;
853 void sqlcipher_codec_get_keyspec(codec_ctx
*ctx
, void **zKey
, int *nKey
) {
854 *zKey
= ctx
->read_ctx
->keyspec
;
855 *nKey
= ctx
->keyspec_sz
;
858 int sqlcipher_codec_ctx_set_pagesize(codec_ctx
*ctx
, int size
) {
859 if(!((size
!= 0) && ((size
& (size
- 1)) == 0)) || size
< 512 || size
> 65536) {
860 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "cipher_page_size not a power of 2 and between 512 and 65536 inclusive");
863 /* attempt to free the existing page buffer */
864 if(ctx
->buffer
) sqlcipher_free(ctx
->buffer
,ctx
->page_sz
);
867 /* pre-allocate a page buffer of PageSize bytes. This will
868 be used as a persistent buffer for encryption and decryption
869 operations to avoid overhead of multiple memory allocations*/
870 ctx
->buffer
= sqlcipher_malloc(size
);
871 if(ctx
->buffer
== NULL
) return SQLITE_NOMEM
;
876 int sqlcipher_codec_ctx_get_pagesize(codec_ctx
*ctx
) {
880 void sqlcipher_set_default_pagesize(int page_size
) {
881 default_page_size
= page_size
;
884 int sqlcipher_get_default_pagesize() {
885 return default_page_size
;
888 void sqlcipher_set_mem_security(int on
) {
889 /* memory security can only be enabled, not disabled */
891 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_set_mem_security: on");
892 sqlcipher_mem_security_on
= on
;
896 int sqlcipher_get_mem_security() {
897 /* only report that memory security is enabled if pragma cipher_memory_security is ON and
898 SQLCipher's allocator/deallocator was run at least one timecurrently used */
899 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_get_mem_security: sqlcipher_mem_security_on = %d, sqlcipher_mem_executed = %d", sqlcipher_mem_security_on
, sqlcipher_mem_executed
);
900 return sqlcipher_mem_security_on
&& sqlcipher_mem_executed
;
904 int sqlcipher_codec_ctx_init(codec_ctx
**iCtx
, Db
*pDb
, Pager
*pPager
, const void *zKey
, int nKey
) {
908 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_codec_ctx_init: allocating context");
910 *iCtx
= sqlcipher_malloc(sizeof(codec_ctx
));
913 if(ctx
== NULL
) return SQLITE_NOMEM
;
915 ctx
->pBt
= pDb
->pBt
; /* assign pointer to database btree structure */
917 /* allocate space for salt data. Then read the first 16 bytes
918 directly off the database file. This is the salt for the
919 key derivation function. If we get a short read allocate
920 a new random salt value */
921 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_codec_ctx_init: allocating kdf_salt");
922 ctx
->kdf_salt_sz
= FILE_HEADER_SZ
;
923 ctx
->kdf_salt
= sqlcipher_malloc(ctx
->kdf_salt_sz
);
924 if(ctx
->kdf_salt
== NULL
) return SQLITE_NOMEM
;
926 /* allocate space for separate hmac salt data. We want the
927 HMAC derivation salt to be different than the encryption
928 key derivation salt */
929 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_codec_ctx_init: allocating hmac_kdf_salt");
930 ctx
->hmac_kdf_salt
= sqlcipher_malloc(ctx
->kdf_salt_sz
);
931 if(ctx
->hmac_kdf_salt
== NULL
) return SQLITE_NOMEM
;
933 /* setup default flags */
934 ctx
->flags
= default_flags
;
936 /* setup the crypto provider */
937 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "sqlcipher_codec_ctx_init: allocating provider");
938 ctx
->provider
= (sqlcipher_provider
*) sqlcipher_malloc(sizeof(sqlcipher_provider
));
939 if(ctx
->provider
== NULL
) return SQLITE_NOMEM
;
941 /* make a copy of the provider to be used for the duration of the context */
942 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_codec_ctx_init: entering SQLCIPHER_MUTEX_PROVIDER");
943 sqlite3_mutex_enter(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
944 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_codec_ctx_init: entered SQLCIPHER_MUTEX_PROVIDER");
946 memcpy(ctx
->provider
, default_provider
, sizeof(sqlcipher_provider
));
948 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_codec_ctx_init: leaving SQLCIPHER_MUTEX_PROVIDER");
949 sqlite3_mutex_leave(sqlcipher_mutex(SQLCIPHER_MUTEX_PROVIDER
));
950 sqlcipher_log(SQLCIPHER_LOG_TRACE
, SQLCIPHER_LOG_MUTEX
, "sqlcipher_codec_ctx_init: left SQLCIPHER_MUTEX_PROVIDER");
952 if((rc
= ctx
->provider
->ctx_init(&ctx
->provider_ctx
)) != SQLITE_OK
) {
953 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d returned from ctx_init", rc
);
957 ctx
->key_sz
= ctx
->provider
->get_key_sz(ctx
->provider_ctx
);
958 ctx
->iv_sz
= ctx
->provider
->get_iv_sz(ctx
->provider_ctx
);
959 ctx
->block_sz
= ctx
->provider
->get_block_sz(ctx
->provider_ctx
);
961 /* establic the size for a hex-formated key specification, containing the
962 raw encryption key and the salt used to generate it format. will be x'hexkey...hexsalt'
963 so oversize by 3 bytes */
964 ctx
->keyspec_sz
= ((ctx
->key_sz
+ ctx
->kdf_salt_sz
) * 2) + 3;
967 Always overwrite page size and set to the default because the first page of the database
968 in encrypted and thus sqlite can't effectively determine the pagesize. this causes an issue in
969 cases where bytes 16 & 17 of the page header are a power of 2 as reported by John Lehman
971 if((rc
= sqlcipher_codec_ctx_set_pagesize(ctx
, default_page_size
)) != SQLITE_OK
) {
972 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d returned from sqlcipher_codec_ctx_set_pagesize with %d", rc
, default_page_size
);
976 /* establish settings for the KDF iterations and fast (HMAC) KDF iterations */
977 if((rc
= sqlcipher_codec_ctx_set_kdf_iter(ctx
, default_kdf_iter
)) != SQLITE_OK
) {
978 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting default_kdf_iter %d", rc
, default_kdf_iter
);
982 if((rc
= sqlcipher_codec_ctx_set_fast_kdf_iter(ctx
, FAST_PBKDF2_ITER
)) != SQLITE_OK
) {
983 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting fast_kdf_iter to %d", rc
, FAST_PBKDF2_ITER
);
987 /* set the default HMAC and KDF algorithms which will determine the reserve size */
988 if((rc
= sqlcipher_codec_ctx_set_hmac_algorithm(ctx
, default_hmac_algorithm
)) != SQLITE_OK
) {
989 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_hmac_algorithm with %d", rc
, default_hmac_algorithm
);
993 /* Note that use_hmac is a special case that requires recalculation of page size
994 so we call set_use_hmac to perform setup */
995 if((rc
= sqlcipher_codec_ctx_set_use_hmac(ctx
, SQLCIPHER_FLAG_GET(default_flags
, CIPHER_FLAG_HMAC
))) != SQLITE_OK
) {
996 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting use_hmac %d", rc
, SQLCIPHER_FLAG_GET(default_flags
, CIPHER_FLAG_HMAC
));
1000 if((rc
= sqlcipher_codec_ctx_set_kdf_algorithm(ctx
, default_kdf_algorithm
)) != SQLITE_OK
) {
1001 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_kdf_algorithm with %d", rc
, default_kdf_algorithm
);
1005 /* setup the default plaintext header size */
1006 if((rc
= sqlcipher_codec_ctx_set_plaintext_header_size(ctx
, default_plaintext_header_sz
)) != SQLITE_OK
) {
1007 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_plaintext_header_size with %d", rc
, default_plaintext_header_sz
);
1011 /* initialize the read and write sub-contexts. this must happen after key_sz is established */
1012 if((rc
= sqlcipher_cipher_ctx_init(ctx
, &ctx
->read_ctx
)) != SQLITE_OK
) {
1013 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d initializing read_ctx", rc
);
1017 if((rc
= sqlcipher_cipher_ctx_init(ctx
, &ctx
->write_ctx
)) != SQLITE_OK
) {
1018 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d initializing write_ctx", rc
);
1022 /* set the key material on one of the sub cipher contexts and sync them up */
1023 if((rc
= sqlcipher_codec_ctx_set_pass(ctx
, zKey
, nKey
, 0)) != SQLITE_OK
) {
1024 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d setting pass key", rc
);
1028 if((rc
= sqlcipher_cipher_ctx_copy(ctx
, ctx
->write_ctx
, ctx
->read_ctx
)) != SQLITE_OK
) {
1029 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_init: error %d copying write_ctx to read_ctx", rc
);
1037 * Free and wipe memory associated with a cipher_ctx, including the allocated
1038 * read_ctx and write_ctx.
1040 void sqlcipher_codec_ctx_free(codec_ctx
**iCtx
) {
1041 codec_ctx
*ctx
= *iCtx
;
1042 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_MEMORY
, "codec_ctx_free: iCtx=%p", iCtx
);
1043 if(ctx
->kdf_salt
) sqlcipher_free(ctx
->kdf_salt
, ctx
->kdf_salt_sz
);
1044 if(ctx
->hmac_kdf_salt
) sqlcipher_free(ctx
->hmac_kdf_salt
, ctx
->kdf_salt_sz
);
1045 if(ctx
->buffer
) sqlcipher_free(ctx
->buffer
, ctx
->page_sz
);
1048 ctx
->provider
->ctx_free(&ctx
->provider_ctx
);
1049 sqlcipher_free(ctx
->provider
, sizeof(sqlcipher_provider
));
1052 sqlcipher_cipher_ctx_free(ctx
, &ctx
->read_ctx
);
1053 sqlcipher_cipher_ctx_free(ctx
, &ctx
->write_ctx
);
1054 sqlcipher_free(ctx
, sizeof(codec_ctx
));
1057 /** convert a 32bit unsigned integer to little endian byte ordering */
1058 static void sqlcipher_put4byte_le(unsigned char *p
, u32 v
) {
1065 static int sqlcipher_page_hmac(codec_ctx
*ctx
, cipher_ctx
*c_ctx
, Pgno pgno
, unsigned char *in
, int in_sz
, unsigned char *out
) {
1066 unsigned char pgno_raw
[sizeof(pgno
)];
1067 /* we may convert page number to consistent representation before calculating MAC for
1068 compatibility across big-endian and little-endian platforms.
1070 Note: The public release of sqlcipher 2.0.0 to 2.0.6 had a bug where the bytes of pgno
1071 were used directly in the MAC. SQLCipher convert's to little endian by default to preserve
1072 backwards compatibility on the most popular platforms, but can optionally be configured
1073 to use either big endian or native byte ordering via pragma. */
1075 if(SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_LE_PGNO
)) { /* compute hmac using little endian pgno*/
1076 sqlcipher_put4byte_le(pgno_raw
, pgno
);
1077 } else if(SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_BE_PGNO
)) { /* compute hmac using big endian pgno */
1078 sqlite3Put4byte(pgno_raw
, pgno
); /* sqlite3Put4byte converts 32bit uint to big endian */
1079 } else { /* use native byte ordering */
1080 memcpy(pgno_raw
, &pgno
, sizeof(pgno
));
1083 /* include the encrypted page data, initialization vector, and page number in HMAC. This will
1084 prevent both tampering with the ciphertext, manipulation of the IV, or resequencing otherwise
1085 valid pages out of order in a database */
1086 return ctx
->provider
->hmac(
1087 ctx
->provider_ctx
, ctx
->hmac_algorithm
, c_ctx
->hmac_key
,
1089 in_sz
, (unsigned char*) &pgno_raw
,
1094 * ctx - codec context
1095 * pgno - page number in database
1096 * size - size in bytes of input and output buffers
1097 * mode - 1 to encrypt, 0 to decrypt
1098 * in - pointer to input bytes
1099 * out - pouter to output bytes
1101 int sqlcipher_page_cipher(codec_ctx
*ctx
, int for_ctx
, Pgno pgno
, int mode
, int page_sz
, unsigned char *in
, unsigned char *out
) {
1102 cipher_ctx
*c_ctx
= for_ctx
? ctx
->write_ctx
: ctx
->read_ctx
;
1103 unsigned char *iv_in
, *iv_out
, *hmac_in
, *hmac_out
, *out_start
;
1106 /* calculate some required positions into various buffers */
1107 size
= page_sz
- ctx
->reserve_sz
; /* adjust size to useable size and memset reserve at end of page */
1108 iv_out
= out
+ size
;
1111 /* hmac will be written immediately after the initialization vector. the remainder of the page reserve will contain
1112 random bytes. note, these pointers are only valid when using hmac */
1113 hmac_in
= in
+ size
+ ctx
->iv_sz
;
1114 hmac_out
= out
+ size
+ ctx
->iv_sz
;
1115 out_start
= out
; /* note the original position of the output buffer pointer, as out will be rewritten during encryption */
1117 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: pgno=%d, mode=%d, size=%d", pgno
, mode
, size
);
1118 CODEC_HEXDUMP("sqlcipher_page_cipher: input page data", in
, page_sz
);
1120 /* the key size should never be zero. If it is, error out. */
1121 if(ctx
->key_sz
== 0) {
1122 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: error possible context corruption, key_sz is zero for pgno=%d", pgno
);
1126 if(mode
== CIPHER_ENCRYPT
) {
1127 /* start at front of the reserve block, write random data to the end */
1128 if(ctx
->provider
->random(ctx
->provider_ctx
, iv_out
, ctx
->reserve_sz
) != SQLITE_OK
) goto error
;
1129 } else { /* CIPHER_DECRYPT */
1130 memcpy(iv_out
, iv_in
, ctx
->iv_sz
); /* copy the iv from the input to output buffer */
1133 if(SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HMAC
) && (mode
== CIPHER_DECRYPT
)) {
1134 if(sqlcipher_page_hmac(ctx
, c_ctx
, pgno
, in
, size
+ ctx
->iv_sz
, hmac_out
) != SQLITE_OK
) {
1135 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: hmac operation on decrypt failed for pgno=%d", pgno
);
1139 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: comparing hmac on in=%p out=%p hmac_sz=%d", hmac_in
, hmac_out
, ctx
->hmac_sz
);
1140 if(sqlcipher_memcmp(hmac_in
, hmac_out
, ctx
->hmac_sz
) != 0) { /* the hmac check failed */
1141 if(sqlite3BtreeGetAutoVacuum(ctx
->pBt
) != BTREE_AUTOVACUUM_NONE
&& sqlcipher_ismemset(in
, 0, page_sz
) == 0) {
1142 /* first check if the entire contents of the page is zeros. If so, this page
1143 resulted from a short read (i.e. sqlite attempted to pull a page after the end of the file. these
1144 short read failures must be ignored for autovaccum mode to work so wipe the output buffer
1145 and return SQLITE_OK to skip the decryption step. */
1146 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: zeroed page (short read) for pgno %d with autovacuum enabled", pgno
);
1147 sqlcipher_memset(out
, 0, page_sz
);
1150 /* if the page memory is not all zeros, it means the there was data and a hmac on the page.
1151 since the check failed, the page was either tampered with or corrupted. wipe the output buffer,
1152 and return SQLITE_ERROR to the caller */
1153 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: hmac check failed for pgno=%d", pgno
);
1159 if(ctx
->provider
->cipher(ctx
->provider_ctx
, mode
, c_ctx
->key
, ctx
->key_sz
, iv_out
, in
, size
, out
) != SQLITE_OK
) {
1160 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: cipher operation mode=%d failed for pgno=%d", mode
, pgno
);
1164 if(SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HMAC
) && (mode
== CIPHER_ENCRYPT
)) {
1165 if(sqlcipher_page_hmac(ctx
, c_ctx
, pgno
, out_start
, size
+ ctx
->iv_sz
, hmac_out
) != SQLITE_OK
) {
1166 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_page_cipher: hmac operation on encrypt failed for pgno=%d", pgno
);
1171 CODEC_HEXDUMP("sqlcipher_page_cipher: output page data", out_start
, page_sz
);
1175 sqlcipher_memset(out
, 0, page_sz
);
1176 return SQLITE_ERROR
;
1180 * Derive an encryption key for a cipher contex key based on the raw password.
1182 * If the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1183 * the key (i.e 64 hex chars for a 256 bit key) then the key data will be used directly.
1185 * Else, if the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1186 * the key and the salt (i.e 92 hex chars for a 256 bit key and 16 byte salt) then it will be unpacked
1187 * as the key followed by the salt.
1189 * Otherwise, a key data will be derived using PBKDF2
1191 * returns SQLITE_OK if initialization was successful
1192 * returns SQLITE_ERROR if the key could't be derived (for instance if pass is NULL or pass_sz is 0)
1194 static int sqlcipher_cipher_ctx_key_derive(codec_ctx
*ctx
, cipher_ctx
*c_ctx
) {
1196 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: ctx->kdf_salt_sz=%d ctx->kdf_iter=%d ctx->fast_kdf_iter=%d ctx->key_sz=%d",
1197 ctx
->kdf_salt_sz
, ctx
->kdf_iter
, ctx
->fast_kdf_iter
, ctx
->key_sz
);
1199 if(c_ctx
->pass
&& c_ctx
->pass_sz
) { /* if key material is present on the context for derivation */
1201 /* if necessary, initialize the salt from the header or random source */
1202 if(!SQLCIPHER_FLAG_GET(ctx
->flags
, CIPHER_FLAG_HAS_KDF_SALT
)) {
1203 if((rc
= sqlcipher_codec_ctx_init_kdf_salt(ctx
)) != SQLITE_OK
) {
1204 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc
);
1209 if (c_ctx
->pass_sz
== ((ctx
->key_sz
* 2) + 3) && sqlite3StrNICmp((const char *)c_ctx
->pass
,"x'", 2) == 0 && cipher_isHex(c_ctx
->pass
+ 2, ctx
->key_sz
* 2)) {
1210 int n
= c_ctx
->pass_sz
- 3; /* adjust for leading x' and tailing ' */
1211 const unsigned char *z
= c_ctx
->pass
+ 2; /* adjust lead offset of x' */
1212 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1213 cipher_hex2bin(z
, n
, c_ctx
->key
);
1214 } else if (c_ctx
->pass_sz
== (((ctx
->key_sz
+ ctx
->kdf_salt_sz
) * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx
->pass
,"x'", 2) == 0 && cipher_isHex(c_ctx
->pass
+ 2, (ctx
->key_sz
+ ctx
->kdf_salt_sz
) * 2)) {
1215 const unsigned char *z
= c_ctx
->pass
+ 2; /* adjust lead offset of x' */
1216 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1217 cipher_hex2bin(z
, (ctx
->key_sz
* 2), c_ctx
->key
);
1218 cipher_hex2bin(z
+ (ctx
->key_sz
* 2), (ctx
->kdf_salt_sz
* 2), ctx
->kdf_salt
);
1220 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: deriving key using full PBKDF2 with %d iterations", ctx
->kdf_iter
);
1221 if(ctx
->provider
->kdf(ctx
->provider_ctx
, ctx
->kdf_algorithm
, c_ctx
->pass
, c_ctx
->pass_sz
,
1222 ctx
->kdf_salt
, ctx
->kdf_salt_sz
, ctx
->kdf_iter
,
1223 ctx
->key_sz
, c_ctx
->key
) != SQLITE_OK
) {
1224 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating encryption key");
1225 return SQLITE_ERROR
;
1229 /* set the context "keyspec" containing the hex-formatted key and salt to be used when attaching databases */
1230 if((rc
= sqlcipher_cipher_ctx_set_keyspec(ctx
, c_ctx
, c_ctx
->key
)) != SQLITE_OK
) {
1231 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_cipher_ctx_set_keyspec", rc
);
1235 /* if this context is setup to use hmac checks, generate a seperate and different
1236 key for HMAC. In this case, we use the output of the previous KDF as the input to
1237 this KDF run. This ensures a distinct but predictable HMAC key. */
1238 if(ctx
->flags
& CIPHER_FLAG_HMAC
) {
1241 /* start by copying the kdf key into the hmac salt slot
1242 then XOR it with the fixed hmac salt defined at compile time
1243 this ensures that the salt passed in to derive the hmac key, while
1244 easy to derive and publically known, is not the same as the salt used
1245 to generate the encryption key */
1246 memcpy(ctx
->hmac_kdf_salt
, ctx
->kdf_salt
, ctx
->kdf_salt_sz
);
1247 for(i
= 0; i
< ctx
->kdf_salt_sz
; i
++) {
1248 ctx
->hmac_kdf_salt
[i
] ^= hmac_salt_mask
;
1251 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "cipher_ctx_key_derive: deriving hmac key from encryption key using PBKDF2 with %d iterations",
1252 ctx
->fast_kdf_iter
);
1255 if(ctx
->provider
->kdf(ctx
->provider_ctx
, ctx
->kdf_algorithm
, c_ctx
->key
, ctx
->key_sz
,
1256 ctx
->hmac_kdf_salt
, ctx
->kdf_salt_sz
, ctx
->fast_kdf_iter
,
1257 ctx
->key_sz
, c_ctx
->hmac_key
) != SQLITE_OK
) {
1258 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating HMAC key");
1259 return SQLITE_ERROR
;
1263 c_ctx
->derive_key
= 0;
1266 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_cipher_ctx_key_derive: key material is not present on the context for key derivation");
1267 return SQLITE_ERROR
;
1270 int sqlcipher_codec_key_derive(codec_ctx
*ctx
) {
1271 /* derive key on first use if necessary */
1272 if(ctx
->read_ctx
->derive_key
) {
1273 if(sqlcipher_cipher_ctx_key_derive(ctx
, ctx
->read_ctx
) != SQLITE_OK
) {
1274 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_key_derive: error occurred deriving read_ctx key");
1275 return SQLITE_ERROR
;
1279 if(ctx
->write_ctx
->derive_key
) {
1280 if(sqlcipher_cipher_ctx_cmp(ctx
->write_ctx
, ctx
->read_ctx
) == 0) {
1281 /* the relevant parameters are the same, just copy read key */
1282 if(sqlcipher_cipher_ctx_copy(ctx
, ctx
->write_ctx
, ctx
->read_ctx
) != SQLITE_OK
) {
1283 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_key_derive: error occurred copying read_ctx to write_ctx");
1284 return SQLITE_ERROR
;
1287 if(sqlcipher_cipher_ctx_key_derive(ctx
, ctx
->write_ctx
) != SQLITE_OK
) {
1288 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_key_derive: error occurred deriving write_ctx key");
1289 return SQLITE_ERROR
;
1294 /* TODO: wipe and free passphrase after key derivation */
1295 if(ctx
->store_pass
!= 1) {
1296 sqlcipher_cipher_ctx_set_pass(ctx
->read_ctx
, NULL
, 0);
1297 sqlcipher_cipher_ctx_set_pass(ctx
->write_ctx
, NULL
, 0);
1303 int sqlcipher_codec_key_copy(codec_ctx
*ctx
, int source
) {
1304 if(source
== CIPHER_READ_CTX
) {
1305 return sqlcipher_cipher_ctx_copy(ctx
, ctx
->write_ctx
, ctx
->read_ctx
);
1307 return sqlcipher_cipher_ctx_copy(ctx
, ctx
->read_ctx
, ctx
->write_ctx
);
1311 const char* sqlcipher_codec_get_cipher_provider(codec_ctx
*ctx
) {
1312 return ctx
->provider
->get_provider_name(ctx
->provider_ctx
);
1316 static int sqlcipher_check_connection(const char *filename
, char *key
, int key_sz
, char *sql
, int *user_version
, char** journal_mode
) {
1319 sqlite3_stmt
*statement
= NULL
;
1320 char *query_journal_mode
= "PRAGMA journal_mode;";
1321 char *query_user_version
= "PRAGMA user_version;";
1323 rc
= sqlite3_open(filename
, &db
);
1324 if(rc
!= SQLITE_OK
) goto cleanup
;
1326 rc
= sqlite3_key(db
, key
, key_sz
);
1327 if(rc
!= SQLITE_OK
) goto cleanup
;
1329 rc
= sqlite3_exec(db
, sql
, NULL
, NULL
, NULL
);
1330 if(rc
!= SQLITE_OK
) goto cleanup
;
1332 /* start by querying the user version.
1333 this will fail if the key is incorrect */
1334 rc
= sqlite3_prepare(db
, query_user_version
, -1, &statement
, NULL
);
1335 if(rc
!= SQLITE_OK
) goto cleanup
;
1337 rc
= sqlite3_step(statement
);
1338 if(rc
== SQLITE_ROW
) {
1339 *user_version
= sqlite3_column_int(statement
, 0);
1343 sqlite3_finalize(statement
);
1345 rc
= sqlite3_prepare(db
, query_journal_mode
, -1, &statement
, NULL
);
1346 if(rc
!= SQLITE_OK
) goto cleanup
;
1348 rc
= sqlite3_step(statement
);
1349 if(rc
== SQLITE_ROW
) {
1350 *journal_mode
= sqlite3_mprintf("%s", sqlite3_column_text(statement
, 0));
1355 /* cleanup will finalize open statement */
1358 if(statement
) sqlite3_finalize(statement
);
1359 if(db
) sqlite3_close(db
);
1363 int sqlcipher_codec_ctx_integrity_check(codec_ctx
*ctx
, Parse
*pParse
, char *column
) {
1367 unsigned char *hmac_out
= NULL
;
1368 sqlite3_file
*fd
= sqlite3PagerFile(ctx
->pBt
->pBt
->pPager
);
1371 Vdbe
*v
= sqlite3GetVdbe(pParse
);
1372 sqlite3VdbeSetNumCols(v
, 1);
1373 sqlite3VdbeSetColName(v
, 0, COLNAME_NAME
, column
, SQLITE_STATIC
);
1375 if(fd
== NULL
|| fd
->pMethods
== 0) {
1376 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, "database file is undefined", P4_TRANSIENT
);
1377 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1381 if(!(ctx
->flags
& CIPHER_FLAG_HMAC
)) {
1382 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, "HMAC is not enabled, unable to integrity check", P4_TRANSIENT
);
1383 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1387 if((rc
= sqlcipher_codec_key_derive(ctx
)) != SQLITE_OK
) {
1388 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, "unable to derive keys", P4_TRANSIENT
);
1389 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1393 sqlite3OsFileSize(fd
, &file_sz
);
1394 hmac_out
= sqlcipher_malloc(ctx
->hmac_sz
);
1396 for(page
= 1; page
<= file_sz
/ ctx
->page_sz
; page
++) {
1397 i64 offset
= (page
- 1) * ctx
->page_sz
;
1398 int payload_sz
= ctx
->page_sz
- ctx
->reserve_sz
+ ctx
->iv_sz
;
1399 int read_sz
= ctx
->page_sz
;
1401 /* skip integrity check on PAGER_SJ_PGNO since it will have no valid content */
1402 if(sqlite3pager_is_sj_pgno(ctx
->pBt
->pBt
->pPager
, page
)) continue;
1405 int page1_offset
= ctx
->plaintext_header_sz
? ctx
->plaintext_header_sz
: FILE_HEADER_SZ
;
1406 read_sz
= read_sz
- page1_offset
;
1407 payload_sz
= payload_sz
- page1_offset
;
1408 offset
+= page1_offset
;
1411 sqlcipher_memset(ctx
->buffer
, 0, ctx
->page_sz
);
1412 sqlcipher_memset(hmac_out
, 0, ctx
->hmac_sz
);
1413 if(sqlite3OsRead(fd
, ctx
->buffer
, read_sz
, offset
) != SQLITE_OK
) {
1414 result
= sqlite3_mprintf("error reading %d bytes from file page %d at offset %d", read_sz
, page
, offset
);
1415 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, result
, P4_DYNAMIC
);
1416 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1417 } else if(sqlcipher_page_hmac(ctx
, ctx
->read_ctx
, page
, ctx
->buffer
, payload_sz
, hmac_out
) != SQLITE_OK
) {
1418 result
= sqlite3_mprintf("HMAC operation failed for page %d", page
);
1419 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, result
, P4_DYNAMIC
);
1420 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1421 } else if(sqlcipher_memcmp(ctx
->buffer
+ payload_sz
, hmac_out
, ctx
->hmac_sz
) != 0) {
1422 result
= sqlite3_mprintf("HMAC verification failed for page %d", page
);
1423 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, result
, P4_DYNAMIC
);
1424 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1428 if(file_sz
% ctx
->page_sz
!= 0) {
1429 result
= sqlite3_mprintf("page %d has an invalid size of %lld bytes (expected %d bytes)", page
, file_sz
- ((file_sz
/ ctx
->page_sz
) * ctx
->page_sz
), ctx
->page_sz
);
1430 sqlite3VdbeAddOp4(v
, OP_String8
, 0, 1, 0, result
, P4_DYNAMIC
);
1431 sqlite3VdbeAddOp2(v
, OP_ResultRow
, 1, 1);
1435 if(hmac_out
!= NULL
) sqlcipher_free(hmac_out
, ctx
->hmac_sz
);
1439 int sqlcipher_codec_ctx_migrate(codec_ctx
*ctx
) {
1440 int i
, pass_sz
, keyspec_sz
, nRes
, user_version
, rc
, oflags
;
1442 sqlite3
*db
= ctx
->pBt
->db
;
1443 const char *db_filename
= sqlite3_db_filename(db
, "main");
1444 char *set_user_version
= NULL
, *pass
= NULL
, *attach_command
= NULL
, *migrated_db_filename
= NULL
, *keyspec
= NULL
, *temp
= NULL
, *journal_mode
= NULL
, *set_journal_mode
= NULL
, *pragma_compat
= NULL
;
1445 Btree
*pDest
= NULL
, *pSrc
= NULL
;
1446 sqlite3_file
*srcfile
, *destfile
;
1447 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1448 LPWSTR w_db_filename
= NULL
, w_migrated_db_filename
= NULL
;
1449 int w_db_filename_sz
= 0, w_migrated_db_filename_sz
= 0;
1451 pass_sz
= keyspec_sz
= rc
= user_version
= 0;
1453 if(!db_filename
|| sqlite3Strlen30(db_filename
) < 1)
1454 goto cleanup
; /* exit immediately if this is an in memory database */
1456 /* pull the provided password / key material off the current codec context */
1457 pass_sz
= ctx
->read_ctx
->pass_sz
;
1458 pass
= sqlcipher_malloc(pass_sz
+1);
1459 memset(pass
, 0, pass_sz
+1);
1460 memcpy(pass
, ctx
->read_ctx
->pass
, pass_sz
);
1462 /* Version 4 - current, no upgrade required, so exit immediately */
1463 rc
= sqlcipher_check_connection(db_filename
, pass
, pass_sz
, "", &user_version
, &journal_mode
);
1464 if(rc
== SQLITE_OK
){
1465 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: no upgrade required - exiting");
1469 for(i
= 3; i
> 0; i
--) {
1470 pragma_compat
= sqlite3_mprintf("PRAGMA cipher_compatibility = %d;", i
);
1471 rc
= sqlcipher_check_connection(db_filename
, pass
, pass_sz
, pragma_compat
, &user_version
, &journal_mode
);
1472 if(rc
== SQLITE_OK
) {
1473 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: version %d format found", i
);
1476 if(pragma_compat
) sqlcipher_free(pragma_compat
, sqlite3Strlen30(pragma_compat
));
1477 pragma_compat
= NULL
;
1480 /* if we exit the loop normally we failed to determine the version, this is an error */
1481 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: unable to determine format version for upgrade: this may indicate custom settings were used ");
1486 temp
= sqlite3_mprintf("%s-migrated", db_filename
);
1487 /* overallocate migrated_db_filename, because sqlite3OsOpen will read past the null terminator
1488 * to determine whether the filename was URI formatted */
1489 migrated_db_filename
= sqlcipher_malloc(sqlite3Strlen30(temp
)+2);
1490 memcpy(migrated_db_filename
, temp
, sqlite3Strlen30(temp
));
1491 sqlcipher_free(temp
, sqlite3Strlen30(temp
));
1493 attach_command
= sqlite3_mprintf("ATTACH DATABASE '%s' as migrate;", migrated_db_filename
, pass
);
1494 set_user_version
= sqlite3_mprintf("PRAGMA migrate.user_version = %d;", user_version
);
1496 rc
= sqlite3_exec(db
, pragma_compat
, NULL
, NULL
, NULL
);
1497 if(rc
!= SQLITE_OK
){
1498 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: set compatibility mode failed, error code %d", rc
);
1502 /* force journal mode to DELETE, we will set it back later if different */
1503 rc
= sqlite3_exec(db
, "PRAGMA journal_mode = delete;", NULL
, NULL
, NULL
);
1504 if(rc
!= SQLITE_OK
){
1505 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: force journal mode DELETE failed, error code %d", rc
);
1509 rc
= sqlite3_exec(db
, attach_command
, NULL
, NULL
, NULL
);
1510 if(rc
!= SQLITE_OK
){
1511 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: attach failed, error code %d", rc
);
1515 rc
= sqlite3_key_v2(db
, "migrate", pass
, pass_sz
);
1516 if(rc
!= SQLITE_OK
){
1517 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: keying attached database failed, error code %d", rc
);
1521 rc
= sqlite3_exec(db
, "SELECT sqlcipher_export('migrate');", NULL
, NULL
, NULL
);
1522 if(rc
!= SQLITE_OK
){
1523 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: sqlcipher_export failed, error code %d", rc
);
1527 #ifdef SQLCIPHER_TEST
1528 if((sqlcipher_get_test_flags() & TEST_FAIL_MIGRATE
) > 0) {
1530 sqlcipher_log(SQLCIPHER_LOG_WARN
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: simulated migrate failure, error code %d", rc
);
1535 rc
= sqlite3_exec(db
, set_user_version
, NULL
, NULL
, NULL
);
1536 if(rc
!= SQLITE_OK
){
1537 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: set user version failed, error code %d", rc
);
1541 if( !db
->autoCommit
){
1542 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: cannot migrate from within a transaction");
1545 if( db
->nVdbeActive
>1 ){
1546 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: cannot migrate - SQL statements in progress");
1550 pDest
= db
->aDb
[0].pBt
;
1551 pDb
= &(db
->aDb
[db
->nDb
-1]);
1554 nRes
= sqlite3BtreeGetRequestedReserve(pSrc
);
1555 /* unset the BTS_PAGESIZE_FIXED flag to avoid SQLITE_READONLY */
1556 pDest
->pBt
->btsFlags
&= ~BTS_PAGESIZE_FIXED
;
1557 rc
= sqlite3BtreeSetPageSize(pDest
, default_page_size
, nRes
, 0);
1558 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: set btree page size to %d res %d rc %d", default_page_size
, nRes
, rc
);
1559 if( rc
!=SQLITE_OK
) goto handle_error
;
1561 sqlcipherCodecGetKey(db
, db
->nDb
- 1, (void**)&keyspec
, &keyspec_sz
);
1562 SQLCIPHER_FLAG_UNSET(ctx
->flags
, CIPHER_FLAG_KEY_USED
);
1563 sqlcipherCodecAttach(db
, 0, keyspec
, keyspec_sz
);
1565 srcfile
= sqlite3PagerFile(pSrc
->pBt
->pPager
);
1566 destfile
= sqlite3PagerFile(pDest
->pBt
->pPager
);
1568 sqlite3OsClose(srcfile
);
1569 sqlite3OsClose(destfile
);
1571 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1572 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: performing windows MoveFileExA");
1574 w_db_filename_sz
= MultiByteToWideChar(CP_UTF8
, 0, (LPCCH
) db_filename
, -1, NULL
, 0);
1575 w_db_filename
= sqlcipher_malloc(w_db_filename_sz
* sizeof(wchar_t));
1576 w_db_filename_sz
= MultiByteToWideChar(CP_UTF8
, 0, (LPCCH
) db_filename
, -1, (const LPWSTR
) w_db_filename
, w_db_filename_sz
);
1578 w_migrated_db_filename_sz
= MultiByteToWideChar(CP_UTF8
, 0, (LPCCH
) migrated_db_filename
, -1, NULL
, 0);
1579 w_migrated_db_filename
= sqlcipher_malloc(w_migrated_db_filename_sz
* sizeof(wchar_t));
1580 w_migrated_db_filename_sz
= MultiByteToWideChar(CP_UTF8
, 0, (LPCCH
) migrated_db_filename
, -1, (const LPWSTR
) w_migrated_db_filename
, w_migrated_db_filename_sz
);
1582 if(!MoveFileExW(w_migrated_db_filename
, w_db_filename
, MOVEFILE_REPLACE_EXISTING
)) {
1584 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %d", rc
);
1588 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: performing POSIX rename");
1589 if ((rc
= rename(migrated_db_filename
, db_filename
)) != 0) {
1590 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %d", rc
);
1594 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: renamed migration database %s to main database %s: %d", migrated_db_filename
, db_filename
, rc
);
1596 rc
= sqlite3OsOpen(db
->pVfs
, migrated_db_filename
, srcfile
, SQLITE_OPEN_READWRITE
|SQLITE_OPEN_CREATE
|SQLITE_OPEN_MAIN_DB
, &oflags
);
1597 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: reopened migration database: %d", rc
);
1598 if( rc
!=SQLITE_OK
) goto handle_error
;
1600 rc
= sqlite3OsOpen(db
->pVfs
, db_filename
, destfile
, SQLITE_OPEN_READWRITE
|SQLITE_OPEN_CREATE
|SQLITE_OPEN_MAIN_DB
, &oflags
);
1601 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: reopened main database: %d", rc
);
1602 if( rc
!=SQLITE_OK
) goto handle_error
;
1604 sqlite3pager_reset(pDest
->pBt
->pPager
);
1605 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: reset pager");
1607 rc
= sqlite3_exec(db
, "DETACH DATABASE migrate;", NULL
, NULL
, NULL
);
1608 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: DETACH DATABASE called %d", rc
);
1609 if(rc
!= SQLITE_OK
) goto cleanup
;
1611 sqlite3ResetAllSchemasOfConnection(db
);
1612 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: reset all schemas");
1614 set_journal_mode
= sqlite3_mprintf("PRAGMA journal_mode = %s;", journal_mode
);
1615 rc
= sqlite3_exec(db
, set_journal_mode
, NULL
, NULL
, NULL
);
1616 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: executed %s: %d", set_journal_mode
, rc
);
1617 if( rc
!=SQLITE_OK
) goto handle_error
;
1622 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: an error occurred attempting to migrate the database - last error %d", rc
);
1625 if(migrated_db_filename
) {
1626 int del_rc
= sqlite3OsDelete(db
->pVfs
, migrated_db_filename
, 0);
1627 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_ctx_migrate: deleted migration database: %d", del_rc
);
1630 if(pass
) sqlcipher_free(pass
, pass_sz
);
1631 if(attach_command
) sqlcipher_free(attach_command
, sqlite3Strlen30(attach_command
));
1632 if(migrated_db_filename
) sqlcipher_free(migrated_db_filename
, sqlite3Strlen30(migrated_db_filename
));
1633 if(set_user_version
) sqlcipher_free(set_user_version
, sqlite3Strlen30(set_user_version
));
1634 if(set_journal_mode
) sqlcipher_free(set_journal_mode
, sqlite3Strlen30(set_journal_mode
));
1635 if(journal_mode
) sqlcipher_free(journal_mode
, sqlite3Strlen30(journal_mode
));
1636 if(pragma_compat
) sqlcipher_free(pragma_compat
, sqlite3Strlen30(pragma_compat
));
1637 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1638 if(w_db_filename
) sqlcipher_free(w_db_filename
, w_db_filename_sz
);
1639 if(w_migrated_db_filename
) sqlcipher_free(w_migrated_db_filename
, w_migrated_db_filename_sz
);
1644 int sqlcipher_codec_add_random(codec_ctx
*ctx
, const char *zRight
, int random_sz
){
1645 const char *suffix
= &zRight
[random_sz
-1];
1646 int n
= random_sz
- 3; /* adjust for leading x' and tailing ' */
1648 sqlite3StrNICmp((const char *)zRight
,"x'", 2) == 0 &&
1649 sqlite3StrNICmp(suffix
, "'", 1) == 0 &&
1652 int buffer_sz
= n
/ 2;
1653 unsigned char *random
;
1654 const unsigned char *z
= (const unsigned char *)zRight
+ 2; /* adjust lead offset of x' */
1655 sqlcipher_log(SQLCIPHER_LOG_DEBUG
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_add_random: using raw random blob from hex");
1656 random
= sqlcipher_malloc(buffer_sz
);
1657 memset(random
, 0, buffer_sz
);
1658 cipher_hex2bin(z
, n
, random
);
1659 rc
= ctx
->provider
->add_random(ctx
->provider_ctx
, random
, buffer_sz
);
1660 sqlcipher_free(random
, buffer_sz
);
1663 sqlcipher_log(SQLCIPHER_LOG_ERROR
, SQLCIPHER_LOG_CORE
, "sqlcipher_codec_add_random: attemt to add random with invalid format");
1664 return SQLITE_ERROR
;
1667 #if !defined(SQLITE_OMIT_TRACE)
1669 #define SQLCIPHER_PROFILE_FMT "Elapsed time:%.3f ms - %s\n"
1670 #define SQLCIPHER_PROFILE_FMT_OSLOG "Elapsed time:%{public}.3f ms - %{public}s\n"
1672 static int sqlcipher_profile_callback(unsigned int trace
, void *file
, void *stmt
, void *run_time
){
1673 FILE *f
= (FILE*) file
;
1674 double elapsed
= (*((sqlite3_uint64
*)run_time
))/1000000.0;
1676 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1677 #if defined(__ANDROID__)
1678 __android_log_print(ANDROID_LOG_DEBUG
, "sqlcipher", SQLCIPHER_PROFILE_FMT
, elapsed
, sqlite3_sql((sqlite3_stmt
*)stmt
));
1679 #elif defined(__APPLE__)
1680 os_log(OS_LOG_DEFAULT
, SQLCIPHER_PROFILE_FMT_OSLOG
, elapsed
, sqlite3_sql((sqlite3_stmt
*)stmt
));
1684 fprintf(f
, SQLCIPHER_PROFILE_FMT
, elapsed
, sqlite3_sql((sqlite3_stmt
*)stmt
));
1690 int sqlcipher_cipher_profile(sqlite3
*db
, const char *destination
){
1691 #if defined(SQLITE_OMIT_TRACE)
1692 return SQLITE_ERROR
;
1695 if(sqlite3_stricmp(destination
, "off") == 0){
1696 sqlite3_trace_v2(db
, 0, NULL
, NULL
); /* disable tracing */
1698 if(sqlite3_stricmp(destination
, "stdout") == 0){
1700 }else if(sqlite3_stricmp(destination
, "stderr") == 0){
1702 }else if(sqlite3_stricmp(destination
, "logcat") == 0 || sqlite3_stricmp(destination
, "device") == 0){
1703 f
= NULL
; /* file pointer will be NULL indicating the device target (i.e. logcat or oslog). We will accept logcat for backwards compatibility */
1705 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1706 if(fopen_s(&f
, destination
, "a") != 0) return SQLITE_ERROR
;
1708 if((f
= fopen(destination
, "a")) == 0) return SQLITE_ERROR
;
1711 sqlite3_trace_v2(db
, SQLITE_TRACE_PROFILE
, sqlcipher_profile_callback
, f
);
1717 int sqlcipher_codec_fips_status(codec_ctx
*ctx
) {
1718 return ctx
->provider
->fips_status(ctx
->provider_ctx
);
1721 const char* sqlcipher_codec_get_provider_version(codec_ctx
*ctx
) {
1722 return ctx
->provider
->get_provider_version(ctx
->provider_ctx
);
1725 #ifndef SQLCIPHER_OMIT_LOG
1726 /* constants from https://github.com/Alexpux/mingw-w64/blob/master/mingw-w64-crt/misc/gettimeofday.c */
1727 #define FILETIME_1970 116444736000000000ull /* seconds between 1/1/1601 and 1/1/1970 */
1728 #define HECTONANOSEC_PER_SEC 10000000ull
1729 void sqlcipher_log(unsigned int level
, unsigned int subsys
, const char *message
, ...) {
1731 va_start(params
, message
);
1732 char *formatted
= NULL
;
1735 #if defined(SQLCIPHER_OMIT_LOG_DEVICE)
1736 vfprintf(stderr
, message
, params
);
1737 fprintf(stderr
, "\n");
1740 #if defined(__ANDROID__)
1741 __android_log_vprint(ANDROID_LOG_DEBUG
, "sqlcipher", message
, params
);
1743 #elif defined(__APPLE__)
1744 formatted
= sqlite3_vmprintf(message
, params
);
1745 os_log(OS_LOG_DEFAULT
, "%s", formatted
);
1746 sqlite3_free(formatted
);
1749 vfprintf(stderr
, message
, params
);
1750 fprintf(stderr
, "\n");
1756 level
> sqlcipher_log_level
/* log level is higher, e.g. level filter is at ERROR but this message is DEBUG */
1757 || (sqlcipher_log_subsys
& subsys
) == 0 /* subsystem filter doesn't match this message subsys */
1758 || (sqlcipher_log_device
== 0 && sqlcipher_log_file
== NULL
) /* no configured log target */
1760 /* skip logging this message */
1764 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1765 if(sqlcipher_log_device
) {
1766 #if defined(__ANDROID__)
1767 __android_log_vprint(ANDROID_LOG_DEBUG
, "sqlcipher", message
, params
);
1769 #elif defined(__APPLE__)
1770 formatted
= sqlite3_vmprintf(message
, params
);
1771 os_log(OS_LOG_DEFAULT
, "%{public}s", formatted
);
1772 sqlite3_free(formatted
);
1778 if(sqlcipher_log_file
!= NULL
){
1787 SystemTimeToFileTime(&st
, &ft
);
1788 sec
= (time_t) ((*((sqlite_int64
*)&ft
) - FILETIME_1970
) / HECTONANOSEC_PER_SEC
);
1789 ms
= st
.wMilliseconds
;
1790 localtime_s(&tt
, &sec
);
1793 gettimeofday(&tv
, NULL
);
1795 ms
= tv
.tv_usec
/1000.0;
1796 localtime_r(&sec
, &tt
);
1798 if(strftime(buffer
, sizeof(buffer
), "%Y-%m-%d %H:%M:%S", &tt
)) {
1799 fprintf((FILE*)sqlcipher_log_file
, "%s.%03d: ", buffer
, ms
);
1800 vfprintf((FILE*)sqlcipher_log_file
, message
, params
);
1801 fprintf((FILE*)sqlcipher_log_file
, "\n");
1811 void sqlcipher_set_log_level(unsigned int level
) {
1812 sqlcipher_log_level
= level
;
1815 void sqlcipher_set_log_subsystem(unsigned int subsys
) {
1816 sqlcipher_log_subsys
= subsys
;
1819 int sqlcipher_set_log(const char *destination
){
1820 #ifdef SQLCIPHER_OMIT_LOG
1821 return SQLITE_ERROR
;
1823 /* close open trace file if it is not stdout or stderr, then
1824 reset trace settings */
1825 if(sqlcipher_log_file
!= NULL
&& sqlcipher_log_file
!= stdout
&& sqlcipher_log_file
!= stderr
) {
1826 fclose((FILE*)sqlcipher_log_file
);
1828 sqlcipher_log_file
= NULL
;
1829 sqlcipher_log_device
= 0;
1831 if(sqlite3_stricmp(destination
, "logcat") == 0 || sqlite3_stricmp(destination
, "device") == 0){
1832 /* use the appropriate device log. accept logcat for backwards compatibility */
1833 sqlcipher_log_device
= 1;
1834 } else if(sqlite3_stricmp(destination
, "stdout") == 0){
1835 sqlcipher_log_file
= stdout
;
1836 }else if(sqlite3_stricmp(destination
, "stderr") == 0){
1837 sqlcipher_log_file
= stderr
;
1838 }else if(sqlite3_stricmp(destination
, "off") != 0){
1839 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1840 if(fopen_s(&sqlcipher_log_file
, destination
, "a") != 0) return SQLITE_ERROR
;
1842 if((sqlcipher_log_file
= fopen(destination
, "a")) == 0) return SQLITE_ERROR
;
1845 sqlcipher_log(SQLCIPHER_LOG_INFO
, SQLCIPHER_LOG_CORE
, "sqlcipher_set_log: set log to %s", destination
);