| blob | b7564b8bfa828a4020e76a2d263595049cf6338a |
1 /*
2 ** SQLCipher
3 ** http://zetetic.net
4 **
5 ** Copyright (c) 2008-2024, ZETETIC LLC
6 ** All rights reserved.
7 **
8 ** Redistribution and use in source and binary forms, with or without
9 ** modification, are permitted provided that the following conditions are met:
10 ** * Redistributions of source code must retain the above copyright
11 ** notice, this list of conditions and the following disclaimer.
12 ** * Redistributions in binary form must reproduce the above copyright
13 ** notice, this list of conditions and the following disclaimer in the
14 ** documentation and/or other materials provided with the distribution.
15 ** * Neither the name of the ZETETIC LLC nor the
16 ** names of its contributors may be used to endorse or promote products
17 ** derived from this software without specific prior written permission.
18 **
19 ** THIS SOFTWARE IS PROVIDED BY ZETETIC LLC ''AS IS'' AND ANY
20 ** EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
21 ** WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
22 ** DISCLAIMED. IN NO EVENT SHALL ZETETIC LLC BE LIABLE FOR ANY
23 ** DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
24 ** (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
25 ** LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
26 ** ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 ** (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
28 ** SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 **
30 */
31 /* BEGIN SQLCIPHER */
32 #ifdef SQLITE_HAS_CODEC
39 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
40 #if defined(__ANDROID__)
41 #include <android/log.h>
42 #elif defined(__APPLE__)
43 #include <TargetConditionals.h>
44 #include <os/log.h>
45 #endif
46 #endif
48 #include <time.h>
50 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
52 #else
54 #endif
56 #ifndef OMIT_MEMLOCK
57 #if defined(__unix__) || defined(__APPLE__) || defined(_AIX)
62 #endif
63 #endif
65 #include <assert.h>
68 /* extensions defined in pager.c */
70 void sqlcipherPagerSetCodec(Pager*, void *(*)(void*,void*,Pgno,int), void (*)(void*,int,int), void (*)(void*), void *);
74 /* end extensions defined in pager.c */
76 #if !defined (SQLCIPHER_CRYPTO_CC) \
77 && !defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT) \
78 && !defined (SQLCIPHER_CRYPTO_NSS) \
79 && !defined (SQLCIPHER_CRYPTO_OPENSSL)
80 #define SQLCIPHER_CRYPTO_OPENSSL
81 #endif
83 #define FILE_HEADER_SZ 16
85 #define CIPHER_XSTR(s) CIPHER_STR(s)
86 #define CIPHER_STR(s) #s
88 #ifndef CIPHER_VERSION_NUMBER
89 #define CIPHER_VERSION_NUMBER 4.6.1
90 #endif
92 #ifndef CIPHER_VERSION_BUILD
93 #define CIPHER_VERSION_BUILD community
94 #endif
96 #define CIPHER_DECRYPT 0
97 #define CIPHER_ENCRYPT 1
99 #define CIPHER_READ_CTX 0
100 #define CIPHER_WRITE_CTX 1
101 #define CIPHER_READWRITE_CTX 2
103 #ifndef PBKDF2_ITER
104 #define PBKDF2_ITER 256000
105 #endif
107 #define SQLCIPHER_FLAG_GET(FLAG,BIT) ((FLAG & BIT) != 0)
108 #define SQLCIPHER_FLAG_SET(FLAG,BIT) FLAG |= BIT
109 #define SQLCIPHER_FLAG_UNSET(FLAG,BIT) FLAG &= ~BIT
111 /* possible flags for codec_ctx->flags */
112 #define CIPHER_FLAG_HMAC (1 << 0)
113 #define CIPHER_FLAG_LE_PGNO (1 << 1)
114 #define CIPHER_FLAG_BE_PGNO (1 << 2)
115 #define CIPHER_FLAG_KEY_USED (1 << 3)
116 #define CIPHER_FLAG_HAS_KDF_SALT (1 << 4)
119 #ifndef DEFAULT_CIPHER_FLAGS
120 #define DEFAULT_CIPHER_FLAGS CIPHER_FLAG_HMAC | CIPHER_FLAG_LE_PGNO
121 #endif
124 /* by default, sqlcipher will use a reduced number of iterations to generate
125 the HMAC key / or transform a raw cipher key
126 */
127 #ifndef FAST_PBKDF2_ITER
128 #define FAST_PBKDF2_ITER 2
129 #endif
131 /* this if a fixed random array that will be xor'd with the database salt to ensure that the
132 salt passed to the HMAC key derivation function is not the same as that used to derive
133 the encryption key. This can be overridden at compile time but it will make the resulting
134 binary incompatible with the default builds when using HMAC. A future version of SQLcipher
135 will likely allow this to be defined at runtime via pragma */
136 #ifndef HMAC_SALT_MASK
137 #define HMAC_SALT_MASK 0x3a
138 #endif
140 #ifndef CIPHER_MAX_IV_SZ
141 #define CIPHER_MAX_IV_SZ 16
142 #endif
144 #ifndef CIPHER_MAX_KEY_SZ
145 #define CIPHER_MAX_KEY_SZ 64
146 #endif
149 /*
150 ** Simple shared routines for converting hex char strings to binary data
151 */
156 }
162 }
163 }
169 }
170 }
180 }
181 }
183 }
185 /* the default implementation of SQLCipher uses a cipher_ctx
186 to keep track of read / write state separately. The following
187 struct and associated functions are defined here */
225 #ifdef SQLCIPHER_TEST
226 /* possible flags for simulating specific test conditions */
227 #define TEST_FAIL_ENCRYPT 0x01
228 #define TEST_FAIL_DECRYPT 0x02
229 #define TEST_FAIL_MIGRATE 0x04
237 /* if cipher_test_rand is not set to a non-zero value always fail (return true) */
242 }
243 #endif
269 }
272 #ifndef OMIT_MEMLOCK
273 #if defined(__unix__) || defined(__APPLE__)
280 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling mlock(%p,%lu); _SC_PAGESIZE=%lu", ptr - offset, sz + offset, pagesize);
283 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock() returned %d errno=%d", rc, errno);
284 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
285 }
286 #elif defined(_WIN32)
287 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
289 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling VirtualLock(%p,%d)", ptr, sz);
292 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock() returned %d LastError=%d", rc, GetLastError());
293 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
294 }
295 #endif
296 #endif
297 #endif
298 }
301 #ifndef OMIT_MEMLOCK
302 #if defined(__unix__) || defined(__APPLE__)
309 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling munlock(%p,%lu)", ptr - offset, sz + offset);
312 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: munlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
313 }
314 #elif defined(_WIN32)
315 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
320 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling VirtualUnlock(%p,%d)", ptr, sz);
323 /* because memory allocations may be made from the same individual page, it is possible for VirtualUnlock to be called
324 * multiple times for the same page. Subsequent calls will return an error, but this can be safely ignored (i.e. because
325 * the previous call for that page unlocked the memory already). Log an info level event only in that case. */
327 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: VirtualUnlock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
328 }
329 #endif
330 #endif
331 #endif
332 }
336 }
339 }
344 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_malloc: calling sqlcipher_mlock(%p,%d)", ptr, n);
346 }
348 }
351 }
357 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_free: calling sqlcipher_memset(%p,0,%d) and sqlcipher_munlock(%p, %d)", p, sz, p, sz);
360 }
362 }
380 }
382 }
385 }
386 }
390 }
393 sqlcipher_mem_malloc,
394 sqlcipher_mem_free,
395 sqlcipher_mem_realloc,
396 sqlcipher_mem_size,
397 sqlcipher_mem_roundup,
398 sqlcipher_mem_init,
399 sqlcipher_mem_shutdown,
400 0
401 };
410 }
411 }
414 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entering SQLCIPHER_MUTEX_PROVIDER");
416 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entered SQLCIPHER_MUTEX_PROVIDER");
419 /* only free the current registerd provider if it has been initialized
420 and it isn't a pointer to the same provider passed to the function
421 (i.e. protect against a caller calling register twice for the same provider) */
423 }
425 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: leaving SQLCIPHER_MUTEX_PROVIDER");
427 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: left SQLCIPHER_MUTEX_PROVIDER");
430 }
432 /* return a pointer to the currently registered provider. This will
433 allow an application to fetch the current registered provider and
434 make minor changes to it */
437 }
440 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entering static master mutex");
442 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entered static master mutex");
444 /* allocate new mutexes */
449 }
450 #ifndef SQLCIPHER_OMIT_DEFAULT_LOGGING
451 /* when sqlcipher is first activated, set a default log target and level of WARN if the
452 logging settings have not yet been initialized. Use the "device log" for
453 android (logcat) or apple (console). Use stderr on all other platforms. */
456 /* set log level if it is different than the uninitalized default value of NONE */
459 }
461 /* set the default file or device if neither is already set */
463 #if defined(__ANDROID__) || defined(__APPLE_)
465 #else
467 #endif
468 }
470 }
471 #endif
472 }
474 /* check to see if there is a provider registered at this point
475 if there no provider registered at this point, register the
476 default provider */
479 #if defined (SQLCIPHER_CRYPTO_CC)
482 #elif defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT)
485 #elif defined (SQLCIPHER_CRYPTO_NSS)
488 #elif defined (SQLCIPHER_CRYPTO_OPENSSL)
491 #else
493 #endif
494 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: calling sqlcipher_register_provider(%p)", p);
495 #ifdef SQLCIPHER_EXT
497 #endif
499 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: called sqlcipher_register_provider(%p)",p);
500 }
504 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: leaving static master mutex");
506 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: left static master mutex");
507 }
510 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering static master mutex");
512 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered static master mutex");
514 sqlcipher_activate_count--;
515 /* if no connections are using sqlcipher, cleanup globals */
517 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering SQLCIPHER_MUTEX_PROVIDER");
519 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered SQLCIPHER_MUTEX_PROVIDER");
524 }
526 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving SQLCIPHER_MUTEX_PROVIDER");
528 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left SQLCIPHER_MUTEX_PROVIDER");
530 #ifdef SQLCIPHER_EXT
532 #endif
534 /* last connection closed, free mutexes */
539 }
540 }
542 }
544 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving static master mutex");
546 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left static master mutex");
547 }
549 /* constant time memset using volitile to avoid having the memset
550 optimized out by the compiler.
551 Note: As suggested by Joachim Schipper (joachim.schipper@fox-it.com)
552 */
559 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_memset: setting %p[0-%llu]=%d)", a, len, value);
562 }
565 }
567 /* constant time memory check tests every position of a memory segement
568 matches a single value (i.e. the memory is all zeros)
569 returns 0 if match, 1 of no match */
576 }
579 }
581 /* constant time memory comparison routine.
582 returns 0 if match, 1 if no match */
589 }
592 }
594 /**
595 * Free and wipe memory. Uses SQLites internal sqlite3_free so that memory
596 * can be countend and memory leak detection works in the test suite.
597 * If ptr is not null memory will be freed.
598 * If sz is greater than zero, the memory will be overwritten with zero before it is freed
599 * If sz is > 0, and not compiled with OMIT_MEMLOCK, system will attempt to unlock the
600 * memory segment so it can be paged
601 */
603 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_free: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
607 }
609 /**
610 * allocate memory. Uses sqlite's internall malloc wrapper so memory can be
611 * reference counted and leak detection works. Unless compiled with OMIT_MEMLOCK
612 * attempts to lock the memory pages so sensitive information won't be swapped
613 */
616 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlite3Malloc(%llu)", sz);
618 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
622 }
625 #ifdef CIPHER_VERSION_QUALIFIER
626 char *version = sqlite3_mprintf("%s %s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_QUALIFIER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
627 #else
628 char *version = sqlite3_mprintf("%s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
629 #endif
631 }
633 /**
634 * Initialize new cipher_ctx struct. This function will allocate memory
635 * for the cipher context and for the key
636 *
637 * returns SQLITE_OK if initialization was successful
638 * returns SQLITE_NOMEM if an error occured allocating memory
639 */
642 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating context");
647 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating key");
650 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating hmac_key");
657 }
659 /**
660 * Free and wipe memory associated with a cipher_ctx
661 */
670 }
681 /* calculate the amount of reserve needed in even increments of the cipher block size */
685 }
687 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_reserve_setup: base_reserve=%d block_sz=%d md_size=%d reserve=%d",
693 }
695 /**
696 * Compare one cipher_ctx to another.
697 *
698 * returns 0 if all the parameters (except the derived key data) are the same
699 * returns 1 otherwise
700 */
704 && (
709 ));
711 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_cmp: c1=%p c2=%p sqlcipher_memcmp(c1->pass, c2_pass)=%d are_equal=%d",
718 c1->pass_sz
719 ),
720 are_equal
721 );
724 }
726 /**
727 * Copy one cipher_ctx to another. For instance, assuming that read_ctx is a
728 * fully initialized context, you could copy it to write_ctx and all yet data
729 * and pass information across
730 *
731 * returns SQLITE_OK if initialization was successful
732 * returns SQLITE_NOMEM if an error occured allocating memory
733 */
738 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_copy: target=%p, source=%p", target, source);
753 }
758 }
760 }
762 /**
763 * Set the keyspec for the cipher_ctx
764 *
765 * returns SQLITE_OK if assignment was successfull
766 * returns SQLITE_NOMEM if an error occured allocating memory
767 */
768 static int sqlcipher_cipher_ctx_set_keyspec(codec_ctx *ctx, cipher_ctx *c_ctx, const unsigned char *key) {
769 /* free, zero existing pointers and size */
782 }
787 }
789 /**
790 * Set the passphrase for the cipher_ctx
791 *
792 * returns SQLITE_OK if assignment was successfull
793 * returns SQLITE_NOMEM if an error occured allocating memory
794 */
796 /* free, zero existing pointers and size */
806 }
808 }
810 static int sqlcipher_codec_ctx_set_pass(codec_ctx *ctx, const void *zKey, int nKey, int for_ctx) {
815 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_set_pass", rc);
817 }
822 if((rc = sqlcipher_cipher_ctx_copy(ctx, for_ctx ? ctx->read_ctx : ctx->write_ctx, c_ctx)) != SQLITE_OK) {
823 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_copy", rc);
825 }
826 }
829 }
835 }
841 }
843 /* set the global default flag for HMAC */
847 }
849 /* set the codec flag for whether this individual database should be using hmac */
855 }
858 }
860 /* the length of plaintext header size must be:
861 * 1. greater than or equal to zero
862 * 2. a multiple of the cipher block size
863 * 3. less than the usable size of the first database page
864 */
866 if(size >= 0 && ctx->block_sz > 0 && (size % ctx->block_sz) == 0 && size < (ctx->page_sz - ctx->reserve_sz)) {
869 }
871 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_plaintext_header_size: attempt to set invalid plantext_header_size %d", size);
873 }
878 }
883 }
886 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_error %d", error);
889 }
896 }
898 /* read salt from header, if present, otherwise generate a new random salt */
899 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: obtaining salt");
900 if(fd == NULL || fd->pMethods == 0 || sqlite3OsRead(fd, ctx->kdf_salt, ctx->kdf_salt_sz, 0) != SQLITE_OK) {
901 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: unable to read salt from file header, generating random");
903 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: error retrieving random bytes from provider");
905 }
906 }
909 }
916 }
917 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_kdf_salt: attempt to set salt of incorrect size %d", size);
919 }
925 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_get_kdf_salt: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
926 }
927 }
931 }
935 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "cipher_page_size not a power of 2 and between 512 and 65536 inclusive");
937 }
938 /* attempt to free the existing page buffer */
942 /* pre-allocate a page buffer of PageSize bytes. This will
943 be used as a persistent buffer for encryption and decryption
944 operations to avoid overhead of multiple memory allocations*/
949 }
951 static int sqlcipher_codec_ctx_init(codec_ctx **iCtx, Db *pDb, Pager *pPager, const void *zKey, int nKey) {
955 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating context");
964 /* allocate space for salt data. Then read the first 16 bytes
965 directly off the database file. This is the salt for the
966 key derivation function. If we get a short read allocate
967 a new random salt value */
968 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating kdf_salt");
973 /* allocate space for separate hmac salt data. We want the
974 HMAC derivation salt to be different than the encryption
975 key derivation salt */
976 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating hmac_kdf_salt");
980 /* setup default flags */
983 /* setup the crypto provider */
984 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating provider");
988 /* make a copy of the provider to be used for the duration of the context */
989 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entering SQLCIPHER_MUTEX_PROVIDER");
991 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entered SQLCIPHER_MUTEX_PROVIDER");
995 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: leaving SQLCIPHER_MUTEX_PROVIDER");
997 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: left SQLCIPHER_MUTEX_PROVIDER");
1000 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from ctx_init", rc);
1002 }
1008 /* establic the size for a hex-formated key specification, containing the
1009 raw encryption key and the salt used to generate it format. will be x'hexkey...hexsalt'
1010 so oversize by 3 bytes */
1013 /*
1014 Always overwrite page size and set to the default because the first page of the database
1015 in encrypted and thus sqlite can't effectively determine the pagesize. this causes an issue in
1016 cases where bytes 16 & 17 of the page header are a power of 2 as reported by John Lehman
1017 */
1019 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from sqlcipher_codec_ctx_set_pagesize with %d", rc, default_page_size);
1021 }
1023 /* establish settings for the KDF iterations and fast (HMAC) KDF iterations */
1025 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting default_kdf_iter %d", rc, default_kdf_iter);
1027 }
1030 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting fast_kdf_iter to %d", rc, FAST_PBKDF2_ITER);
1032 }
1034 /* set the default HMAC and KDF algorithms which will determine the reserve size */
1036 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_hmac_algorithm with %d", rc, default_hmac_algorithm);
1038 }
1040 /* Note that use_hmac is a special case that requires recalculation of page size
1041 so we call set_use_hmac to perform setup */
1042 if((rc = sqlcipher_codec_ctx_set_use_hmac(ctx, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC))) != SQLITE_OK) {
1043 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting use_hmac %d", rc, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
1045 }
1048 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_kdf_algorithm with %d", rc, default_kdf_algorithm);
1050 }
1052 /* setup the default plaintext header size */
1053 if((rc = sqlcipher_codec_ctx_set_plaintext_header_size(ctx, default_plaintext_header_size)) != SQLITE_OK) {
1054 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_plaintext_header_size with %d", rc, default_plaintext_header_size);
1056 }
1058 /* initialize the read and write sub-contexts. this must happen after key_sz is established */
1060 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing read_ctx", rc);
1062 }
1065 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing write_ctx", rc);
1067 }
1069 /* set the key material on one of the sub cipher contexts and sync them up */
1071 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting pass key", rc);
1073 }
1076 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d copying write_ctx to read_ctx", rc);
1078 }
1081 }
1083 /**
1084 * Free and wipe memory associated with a cipher_ctx, including the allocated
1085 * read_ctx and write_ctx.
1086 */
1097 }
1102 }
1104 /** convert a 32bit unsigned integer to little endian byte ordering */
1110 }
1112 static int sqlcipher_page_hmac(codec_ctx *ctx, cipher_ctx *c_ctx, Pgno pgno, unsigned char *in, int in_sz, unsigned char *out) {
1114 /* we may convert page number to consistent representation before calculating MAC for
1115 compatibility across big-endian and little-endian platforms.
1117 Note: The public release of sqlcipher 2.0.0 to 2.0.6 had a bug where the bytes of pgno
1118 were used directly in the MAC. SQLCipher convert's to little endian by default to preserve
1119 backwards compatibility on the most popular platforms, but can optionally be configured
1120 to use either big endian or native byte ordering via pragma. */
1122 if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_LE_PGNO)) { /* compute hmac using little endian pgno*/
1124 } else if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_BE_PGNO)) { /* compute hmac using big endian pgno */
1128 }
1130 /* include the encrypted page data, initialization vector, and page number in HMAC. This will
1131 prevent both tampering with the ciphertext, manipulation of the IV, or resequencing otherwise
1132 valid pages out of order in a database */
1138 }
1140 /*
1141 * ctx - codec context
1142 * pgno - page number in database
1143 * size - size in bytes of input and output buffers
1144 * mode - 1 to encrypt, 0 to decrypt
1145 * in - pointer to input bytes
1146 * out - pouter to output bytes
1147 */
1148 static int sqlcipher_page_cipher(codec_ctx *ctx, int for_ctx, Pgno pgno, int mode, int page_sz, unsigned char *in, unsigned char *out) {
1153 /* calculate some required positions into various buffers */
1154 size = page_sz - ctx->reserve_sz; /* adjust size to useable size and memset reserve at end of page */
1158 /* hmac will be written immediately after the initialization vector. the remainder of the page reserve will contain
1159 random bytes. note, these pointers are only valid when using hmac */
1162 out_start = out; /* note the original position of the output buffer pointer, as out will be rewritten during encryption */
1164 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: pgno=%d, mode=%d, size=%d", pgno, mode, size);
1167 /* the key size should never be zero. If it is, error out. */
1169 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: error possible context corruption, key_sz is zero for pgno=%d", pgno);
1171 }
1174 /* start at front of the reserve block, write random data to the end */
1178 }
1182 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on decrypt failed for pgno=%d", pgno);
1184 }
1186 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: comparing hmac on in=%p out=%p hmac_sz=%d", hmac_in, hmac_out, ctx->hmac_sz);
1188 if(sqlite3BtreeGetAutoVacuum(ctx->pBt) != BTREE_AUTOVACUUM_NONE && sqlcipher_ismemset(in, 0, page_sz) == 0) {
1189 /* first check if the entire contents of the page is zeros. If so, this page
1190 resulted from a short read (i.e. sqlite attempted to pull a page after the end of the file. these
1191 short read failures must be ignored for autovaccum mode to work so wipe the output buffer
1192 and return SQLITE_OK to skip the decryption step. */
1193 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: zeroed page (short read) for pgno %d with autovacuum enabled", pgno);
1197 /* if the page memory is not all zeros, it means the there was data and a hmac on the page.
1198 since the check failed, the page was either tampered with or corrupted. wipe the output buffer,
1199 and return SQLITE_ERROR to the caller */
1200 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac check failed for pgno=%d", pgno);
1202 }
1203 }
1204 }
1206 if(ctx->provider->cipher(ctx->provider_ctx, mode, c_ctx->key, ctx->key_sz, iv_out, in, size, out) != SQLITE_OK) {
1207 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: cipher operation mode=%d failed for pgno=%d", mode, pgno);
1209 };
1212 if(sqlcipher_page_hmac(ctx, c_ctx, pgno, out_start, size + ctx->iv_sz, hmac_out) != SQLITE_OK) {
1213 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on encrypt failed for pgno=%d", pgno);
1215 };
1216 }
1221 error:
1224 }
1226 /**
1227 * Derive an encryption key for a cipher contex key based on the raw password.
1228 *
1229 * If the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1230 * the key (i.e 64 hex chars for a 256 bit key) then the key data will be used directly.
1232 * Else, if the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1233 * the key and the salt (i.e 92 hex chars for a 256 bit key and 16 byte salt) then it will be unpacked
1234 * as the key followed by the salt.
1235 *
1236 * Otherwise, a key data will be derived using PBKDF2
1237 *
1238 * returns SQLITE_OK if initialization was successful
1239 * returns SQLITE_ERROR if the key could't be derived (for instance if pass is NULL or pass_sz is 0)
1240 */
1243 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: ctx->kdf_salt_sz=%d ctx->kdf_iter=%d ctx->fast_kdf_iter=%d ctx->key_sz=%d",
1246 if(c_ctx->pass && c_ctx->pass_sz) { /* if key material is present on the context for derivation */
1248 /* if necessary, initialize the salt from the header or random source */
1251 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
1253 }
1254 }
1256 if (c_ctx->pass_sz == ((ctx->key_sz * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, ctx->key_sz * 2)) {
1259 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1261 } else if (c_ctx->pass_sz == (((ctx->key_sz + ctx->kdf_salt_sz) * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, (ctx->key_sz + ctx->kdf_salt_sz) * 2)) {
1263 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1267 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: deriving key using full PBKDF2 with %d iterations", ctx->kdf_iter);
1271 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating encryption key");
1273 }
1274 }
1276 /* set the context "keyspec" containing the hex-formatted key and salt to be used when attaching databases */
1278 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_cipher_ctx_set_keyspec", rc);
1280 }
1282 /* if this context is setup to use hmac checks, generate a seperate and different
1283 key for HMAC. In this case, we use the output of the previous KDF as the input to
1284 this KDF run. This ensures a distinct but predictable HMAC key. */
1288 /* start by copying the kdf key into the hmac salt slot
1289 then XOR it with the fixed hmac salt defined at compile time
1290 this ensures that the salt passed in to derive the hmac key, while
1291 easy to derive and publically known, is not the same as the salt used
1292 to generate the encryption key */
1296 }
1298 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "cipher_ctx_key_derive: deriving hmac key from encryption key using PBKDF2 with %d iterations",
1305 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating HMAC key");
1307 }
1308 }
1312 }
1313 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: key material is not present on the context for key derivation");
1315 }
1318 /* derive key on first use if necessary */
1321 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving read_ctx key");
1323 }
1324 }
1328 /* the relevant parameters are the same, just copy read key */
1330 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred copying read_ctx to write_ctx");
1332 }
1335 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving write_ctx key");
1337 }
1338 }
1339 }
1341 /* wipe and free passphrase after key derivation */
1345 }
1348 }
1355 }
1356 }
1358 static int sqlcipher_check_connection(const char *filename, char *key, int key_sz, char *sql, int *user_version, char** journal_mode) {
1374 /* start by querying the user version.
1375 this will fail if the key is incorrect */
1384 }
1395 }
1397 /* cleanup will finalize open statement */
1399 cleanup:
1403 }
1411 i64 file_sz;
1421 }
1424 sqlite3VdbeAddOp4(v, OP_String8, 0, 1, 0, "HMAC is not enabled, unable to integrity check", P4_TRANSIENT);
1427 }
1433 }
1443 /* skip integrity check on PAGER_SJ_PGNO since it will have no valid content */
1451 }
1456 result = sqlite3_mprintf("error reading %d bytes from file page %d at offset %d", read_sz, page, offset);
1459 } else if(sqlcipher_page_hmac(ctx, ctx->read_ctx, page, ctx->buffer, payload_sz, hmac_out) != SQLITE_OK) {
1467 }
1468 }
1471 result = sqlite3_mprintf("page %d has an invalid size of %lld bytes (expected %d bytes)", page, file_sz - ((file_sz / ctx->page_sz) * ctx->page_sz), ctx->page_sz);
1474 }
1476 cleanup:
1479 }
1486 char *set_user_version = NULL, *pass = NULL, *attach_command = NULL, *migrated_db_filename = NULL, *keyspec = NULL, *temp = NULL, *journal_mode = NULL, *set_journal_mode = NULL, *pragma_compat = NULL;
1489 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1492 #endif
1498 /* pull the provided password / key material off the current codec context */
1504 /* Version 4 - current, no upgrade required, so exit immediately */
1507 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: no upgrade required - exiting");
1509 }
1513 rc = sqlcipher_check_connection(db_filename, pass, pass_sz, pragma_compat, &user_version, &journal_mode);
1515 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: version %d format found", i);
1517 }
1520 }
1522 /* if we exit the loop normally we failed to determine the version, this is an error */
1523 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: unable to determine format version for upgrade: this may indicate custom settings were used ");
1526 migrate:
1529 /* overallocate migrated_db_filename, because sqlite3OsOpen will read past the null terminator
1530 * to determine whether the filename was URI formatted */
1535 attach_command = sqlite3_mprintf("ATTACH DATABASE '%s' as migrate;", migrated_db_filename, pass);
1540 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set compatibility mode failed, error code %d", rc);
1542 }
1544 /* force journal mode to DELETE, we will set it back later if different */
1547 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: force journal mode DELETE failed, error code %d", rc);
1549 }
1553 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: attach failed, error code %d", rc);
1555 }
1559 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: keying attached database failed, error code %d", rc);
1561 }
1565 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: sqlcipher_export failed, error code %d", rc);
1567 }
1569 #ifdef SQLCIPHER_TEST
1572 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: simulated migrate failure, error code %d", rc);
1574 }
1575 #endif
1579 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set user version failed, error code %d", rc);
1581 }
1584 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate from within a transaction");
1586 }
1588 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate - SQL statements in progress");
1590 }
1597 /* unset the BTS_PAGESIZE_FIXED flag to avoid SQLITE_READONLY */
1601 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to set btree page size to %d res %d rc %d", default_page_size, nRes, rc);
1603 }
1615 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1616 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing windows MoveFileExA");
1620 w_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) db_filename, -1, (const LPWSTR) w_db_filename, w_db_filename_sz);
1622 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, NULL, 0);
1624 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, (const LPWSTR) w_migrated_db_filename, w_migrated_db_filename_sz);
1628 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %d", rc);
1630 }
1631 #else
1632 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing POSIX rename");
1634 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %s to %s: %d", migrated_db_filename, db_filename, rc);
1636 }
1637 #endif
1638 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: renamed migration database %s to main database %s: %d", migrated_db_filename, db_filename, rc);
1640 rc = sqlite3OsOpen(db->pVfs, migrated_db_filename, srcfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1642 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen migration database %s: %d", migrated_db_filename, rc);
1644 }
1646 rc = sqlite3OsOpen(db->pVfs, db_filename, destfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1648 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen main database %s: %d", db_filename, rc);
1650 }
1653 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset pager");
1657 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: DETACH DATABASE migrate failed: %d", rc);
1658 }
1661 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset all schemas");
1666 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to re-set journal mode via %s: %d", set_journal_mode, rc);
1668 }
1672 handle_error:
1673 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: an error occurred attempting to migrate the database - last error %d", rc);
1675 cleanup:
1679 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to delete migration database %s: %d", migrated_db_filename, del_rc);
1680 }
1681 }
1685 if(migrated_db_filename) sqlcipher_free(migrated_db_filename, sqlite3Strlen30(migrated_db_filename));
1690 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1693 #endif
1695 }
1708 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: using raw random blob from hex");
1715 }
1716 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: attemt to add random with invalid format");
1718 }
1720 #if !defined(SQLITE_OMIT_TRACE)
1725 static int sqlcipher_profile_callback(unsigned int trace, void *file, void *stmt, void *run_time){
1729 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1730 #if defined(__ANDROID__)
1731 __android_log_print(ANDROID_LOG_DEBUG, "sqlcipher", SQLCIPHER_PROFILE_FMT, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1732 #elif defined(__APPLE__)
1733 os_log(OS_LOG_DEFAULT, SQLCIPHER_PROFILE_FMT_OSLOG, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1734 #endif
1735 #endif
1738 }
1740 }
1741 #endif
1744 #if defined(SQLITE_OMIT_TRACE)
1746 #else
1755 }else if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1756 f = NULL; /* file pointer will be NULL indicating the device target (i.e. logcat or oslog). We will accept logcat for backwards compatibility */
1758 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1760 #else
1762 #endif
1763 }
1765 }
1767 #endif
1768 }
1784 }
1786 }
1800 }
1802 }
1805 #ifndef SQLCIPHER_OMIT_LOG
1806 /* constants from https://github.com/Alexpux/mingw-w64/blob/master/mingw-w64-crt/misc/gettimeofday.c */
1808 #define HECTONANOSEC_PER_SEC 10000000ull
1809 #define MAX_LOG_LEN 8192
1817 #ifdef CODEC_DEBUG
1818 #if defined(SQLCIPHER_OMIT_LOG_DEVICE)
1822 #else
1823 #if defined(__ANDROID__)
1826 #elif defined(__APPLE__)
1831 #else
1835 #endif
1836 #endif
1837 #endif
1839 level > sqlcipher_log_level /* log level is higher, e.g. level filter is at ERROR but this message is DEBUG */
1842 ) {
1843 /* skip logging this message */
1845 }
1847 sqlite3_snprintf(MAX_LOG_LEN, formatted, "%s %s ", sqlcipher_get_log_level_str(level), sqlcipher_get_log_source_str(source));
1851 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1853 #if defined(__ANDROID__)
1856 #elif defined(__APPLEformattes__)
1859 #endif
1860 }
1861 #endif
1868 #ifdef _WIN32
1869 SYSTEMTIME st;
1870 FILETIME ft;
1876 #else
1882 #endif
1886 }
1887 }
1889 end:
1891 }
1892 #endif
1895 #ifdef SQLCIPHER_OMIT_LOG
1897 #else
1898 /* close open trace file if it is not stdout or stderr, then
1899 reset trace settings */
1900 if(sqlcipher_log_file != NULL && sqlcipher_log_file != stdout && sqlcipher_log_file != stderr) {
1902 }
1906 if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1907 /* use the appropriate device log. accept logcat for backwards compatibility */
1914 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1916 #else
1918 #endif
1919 }
1920 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_set_log: set log to %s", destination);
1922 #endif
1923 }
1925 #ifdef SQLCIPHER_EXT
1927 #endif
1929 static void sqlcipher_vdbe_return_string(Parse *pParse, const char *zLabel, const char *value, int value_type){
1935 }
1940 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize() size=%d reserve=%d", ctx->page_sz, ctx->reserve_sz);
1942 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entering database mutex %p", db->mutex);
1944 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entered database mutex %p", db->mutex);
1947 /* before forcing the page size we need to unset the BTS_PAGESIZE_FIXED flag, else
1948 sqliteBtreeSetPageSize will block the change */
1952 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize returned %d", rc);
1954 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: leaving database mutex %p", db->mutex);
1956 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: left database mutex %p", db->mutex);
1959 }
1963 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_pass_key: db=%p nDb=%d for_ctx=%d", db, nDb, for_ctx);
1970 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: error ocurred fetching codec from pager on db %d", nDb);
1972 }
1973 }
1974 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: no btree present on db %d", nDb);
1976 }
1978 int sqlcipher_codec_pragma(sqlite3* db, int iDb, Parse *pParse, const char *zLeft, const char *zRight) {
1985 }
1988 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: db=%p iDb=%d pParse=%p zLeft=%s zRight=%s ctx=%p", db, iDb, pParse, zLeft, zRight, ctx);
1989 }
1991 #ifdef SQLCIPHER_EXT
1993 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: PRAGMA handled by sqlcipher_ext_pragma");
1995 #endif
1996 #ifdef SQLCIPHER_TEST
2007 }
2008 }
2020 }
2021 }
2034 }
2036 #endif
2041 }
2049 }
2055 }
2056 }
2063 char *add_random_status = sqlite3_mprintf("%d", sqlcipher_codec_add_random(ctx, zRight, sqlite3Strlen30(zRight)));
2065 }
2073 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: error occurred during cipher_migrate: %d", status);
2075 }
2076 }
2082 }
2088 }
2102 }
2103 }
2116 }
2125 }
2126 }
2138 }
2139 }
2147 /* PRAGMA cipher_page_size will alter the size of the database pages while ensuring that the
2148 required reserve space is allocated at the end of each page. This will also override the
2149 standard SQLite PRAGMA page_size behavior if a codec context is attached to the database handle.
2150 If PRAGMA page_size is invoked but a codec context is not attached (i.e. dealing with a standard
2151 unencrypted database) then return early and allow the standard PRAGMA page_size logic to apply. */
2162 }
2164 return 0; /* return early so that the PragTyp_PAGE_SIZE case logic in pragma.c will take effect */
2165 }
2173 }
2179 char *default_use_hmac = sqlite3_mprintf("%d", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2181 }
2188 /* since the use of hmac has changed, the page size may also change */
2194 }
2195 }
2201 /* clear both pgno endian flags */
2211 }
2222 }
2223 }
2224 }
2235 }
2241 }
2242 }
2248 /* deliberately ignore result code, if size is invalid it will be set to -1
2249 and trip the error later in the codec */
2254 }
2255 }
2262 sqlcipher_vdbe_return_string(pParse, "cipher_default_plaintext_header_size", size, P4_DYNAMIC);
2263 }
2268 if (sqlite3StrNICmp(zRight ,"x'", 2) == 0 && sqlite3Strlen30(zRight) == (FILE_HEADER_SZ*2)+3) {
2274 }
2284 }
2285 }
2286 }
2298 }
2305 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2307 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2309 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2310 }
2311 }
2312 }
2323 }
2326 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2328 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2330 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2331 }
2332 }
2344 }
2348 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2350 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2352 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2353 }
2354 }
2355 }
2366 }
2369 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2371 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2373 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2374 }
2375 }
2434 }
2438 }
2439 }
2476 }
2477 }
2482 /* memory security can only be enabled, not disabled */
2485 }
2487 /* only report that memory security is enabled if pragma cipher_memory_security is ON and
2488 SQLCipher's allocator/deallocator was run at least one time */
2495 }
2508 pragma = sqlite3_mprintf("PRAGMA cipher_use_hmac = %d;", SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_HMAC));
2511 pragma = sqlite3_mprintf("PRAGMA cipher_plaintext_header_size = %d;", ctx->plaintext_header_sz);
2522 }
2528 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2530 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2532 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2533 }
2536 }
2547 pragma = sqlite3_mprintf("PRAGMA cipher_default_use_hmac = %d;", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2550 pragma = sqlite3_mprintf("PRAGMA cipher_default_plaintext_header_size = %d;", default_plaintext_header_size);
2555 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA1_LABEL);
2557 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA256_LABEL);
2559 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA512_LABEL);
2560 }
2565 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2567 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2569 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2570 }
2576 }
2586 }
2587 sqlcipher_vdbe_return_string(pParse, "cipher_log_level", sqlcipher_get_log_level_str(sqlcipher_log_level), P4_TRANSIENT);
2598 }
2599 sqlcipher_vdbe_return_string(pParse, "cipher_log_source", sqlcipher_get_log_source_str(sqlcipher_log_source), P4_TRANSIENT);
2606 }
2608 }
2610 /* these constants are used internally within SQLite's pager.c to differentiate between
2611 operations on the main database or journal pages. This is important in the context
2612 of a rekey operations, where the journal must be written using the original key
2613 material (to allow a transactional rollback), while the new database pages are being
2614 written with the new key material*/
2615 #define CODEC_READ_OP 3
2616 #define CODEC_WRITE_OP 6
2617 #define CODEC_JOURNAL_OP 7
2619 /*
2620 * sqlite3Codec can be called in multiple modes.
2621 * encrypt mode - expected to return a pointer to the
2622 * encrypted data without altering pData.
2623 * decrypt mode - expected to return a pointer to pData, with
2624 * the data decrypted in the input buffer
2625 */
2632 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: pgno=%d, mode=%d, ctx->page_sz=%d", pgno, mode, ctx->page_sz);
2634 #ifdef SQLCIPHER_EXT
2636 #endif
2638 /* call to derive keys if not present yet */
2640 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error occurred during key derivation: %d", rc);
2643 }
2645 /* if the plaintext_header_size is negative that means an invalid size was set via
2646 PRAGMA. We can't set the error state on the pager at that point because the pager
2647 may not be open yet. However, this is a fatal error state, so abort the codec */
2649 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error invalid ctx->plaintext_header_sz: %d", ctx->plaintext_header_sz);
2652 }
2658 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: switch mode=%d offset=%d", mode, offset);
2664 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_DECRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2665 #ifdef SQLCIPHER_TEST
2668 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating decryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2669 }
2670 #endif
2672 /* failure to decrypt a page is considered a permanent error and will render the pager unusable
2673 in order to prevent inconsistent data being loaded into page cache */
2674 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error decrypting page %d data: %d", pgno, rc);
2679 }
2684 case CODEC_WRITE_OP: /* encrypt database page, operate on write context and fall through to case 7, so the write context is used*/
2687 case CODEC_JOURNAL_OP: /* encrypt journal page, operate on read context use to get the original page data from the database */
2690 /* retrieve the kdf salt */
2692 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error retrieving salt: %d", rc);
2695 }
2697 }
2698 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_ENCRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2699 #ifdef SQLCIPHER_TEST
2702 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating encryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2703 }
2704 #endif
2706 /* failure to encrypt a page is considered a permanent error and will render the pager unusable
2707 in order to prevent corrupted pages from being written to the main databased when using WAL */
2708 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error encrypting page %d data: %d", pgno, rc);
2712 }
2718 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error unsupported codec mode %d", mode);
2722 }
2723 }
2730 }
2735 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: db=%p, nDb=%d", db, nDb);
2746 /* there is already a codec attached to this database, so we should not proceed */
2747 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: no codec attached to db");
2749 }
2751 /* check if the sqlite3_file is open, and if not force handle to NULL */
2754 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_activate()");
2757 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entering database mutex %p", db->mutex);
2759 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entered database mutex %p", db->mutex);
2761 #ifdef SQLCIPHER_EXT
2765 }
2766 #endif
2768 /* point the internal codec argument against the contet to be prepared */
2769 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_codec_ctx_init()");
2773 /* initialization failed, do not attach potentially corrupted context */
2774 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: context initialization failed, forcing error state with rc=%d", rc);
2775 /* force an error at the pager level, such that even the upstream caller ignores the return code
2776 the pager will be in an error state and will process no further operations */
2779 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p (early return on rc=%d)", db->mutex, rc);
2781 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p (early return on rc=%d)", db->mutex, rc);
2783 }
2785 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipherPagerSetCodec()");
2786 sqlcipherPagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
2788 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling codec_set_btree_to_codec_pagesize()");
2791 /* force secure delete. This has the benefit of wiping internal data when deleted
2792 and also ensures that all pages are written to disk (i.e. not skipped by
2793 sqlite3PagerDontWrite optimizations) */
2794 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSecureDelete()");
2797 /* if fd is null, then this is an in-memory database and
2798 we dont' want to overwrite the AutoVacuum settings
2799 if not null, then set to the default */
2801 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSetAutoVacuum()");
2803 }
2804 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p", db->mutex);
2806 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p", db->mutex);
2807 }
2809 }
2815 }
2820 }
2821 }
2823 }
2826 /* do nothing, security enhancements are always active */
2827 }
2832 }
2835 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_key_v2: db=%p zDb=%s", db, zDb);
2836 /* attach key if db and pKey are not null and nKey is > 0 */
2840 }
2843 }
2848 }
2850 /* sqlite3_rekey_v2
2851 ** Given a database, this will reencrypt the database using a new key.
2852 ** There is only one possible modes of operation - to encrypt a database
2853 ** that is already encrpyted. If the database is not already encrypted
2854 ** this should do nothing
2855 ** The proposed logic for this function follows:
2856 ** 1. Determine if the database is already encryptped
2857 ** 2. If there is NOT already a key present do nothing
2858 ** 3. If there is a key present, re-encrypt the database with the new key
2859 */
2861 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: db=%p zDb=%s", db, zDb);
2865 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: database zDb=%p db_index:%d", zDb, db_index);
2869 Pgno pgno;
2876 /* there was no codec attached to this database, so this should do nothing! */
2877 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no codec attached to db %s: rekey can't be used on an unencrypted database", zDb);
2879 }
2881 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entering database mutex %p", db->mutex);
2883 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entered database mutex %p", db->mutex);
2887 /* do stuff here to rewrite the database
2888 ** 1. Create a transaction on the database
2889 ** 2. Iterate through each page, reading it and then writing it.
2890 ** 3. If that goes ok then commit and put ctx->rekey into ctx->key
2891 ** note: don't deallocate rekey since it may be used in a subsequent iteration
2892 */
2895 for(pgno = 1; rc == SQLITE_OK && pgno <= (unsigned int)page_count; pgno++) { /* pgno's start at 1 see pager.c:pagerAcquire */
2896 if(!sqlite3pager_is_sj_pgno(pPager, pgno)) { /* skip this page (see pager.c:pagerAcquire for reasoning) */
2903 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred writing page %d", rc, pgno);
2904 }
2906 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred reading page %d", rc, pgno);
2907 }
2908 }
2909 }
2911 /* if commit was successful commit and copy the rekey data to current key, else rollback to release locks */
2919 }
2921 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: leaving database mutex %p", db->mutex);
2923 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: left database mutex %p", db->mutex);
2924 }
2926 }
2927 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no key provided for db %s: rekey can't be used to decrypt an encrypted database", zDb);
2929 }
2933 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecGetKey:db=%p, nDb=%d", db, nDb);
2938 /* pass back the keyspec from the codec, unless PRAGMA cipher_store_pass
2939 is set or keyspec has not yet been derived, in which case pass
2940 back the password key material */
2946 }
2950 }
2951 }
2952 }
2954 /*
2955 * Implementation of an "export" function that allows a caller
2956 * to duplicate the main database to an attached database. This is intended
2957 * as a conveneince for users who need to:
2958 *
2959 * 1. migrate from an non-encrypted database to an encrypted database
2960 * 2. move from an encrypted database to a non-encrypted database
2961 * 3. convert beween the various flavors of encrypted databases.
2962 *
2963 * This implementation is based heavily on the procedure and code used
2964 * in vacuum.c, but is exposed as a function that allows export to any
2965 * named attached database.
2966 */
2968 /*
2969 ** Finalize a prepared statement. If there was an error, store the
2970 ** text of the error message in *pzErrMsg. Return the result code.
2971 **
2972 ** Based on vacuumFinalize from vacuum.c
2973 */
2979 }
2981 }
2983 /*
2984 ** Execute zSql on database db. Return an error code.
2985 **
2986 ** Based on execSql from vacuum.c
2987 */
2993 }
2997 }
3001 }
3003 /*
3004 ** Execute zSql on database db. The statement returns exactly
3005 ** one column. Execute this as SQL on the same database.
3006 **
3007 ** Based on execExecSql from vacuum.c
3008 */
3021 }
3022 }
3025 }
3027 /*
3028 * copy database and schema from the main database to an attached database
3029 *
3030 * Based on sqlite3RunVacuum from vacuum.c
3031 */
3047 pzErrMsg = sqlite3_mprintf("invalid number of arguments (%d) passed to sqlcipher_export", argc);
3049 }
3055 }
3065 }
3067 }
3070 /* if the name of the target is not main, but the index returned is zero
3071 there is a mismatch and we should not proceed */
3077 }
3082 db->flags &= ~(u64)(SQLITE_ForeignKeys | SQLITE_ReverseOrder | SQLITE_Defensive | SQLITE_CountRows);
3085 /* Query the schema of the main database. Create a mirror schema
3086 ** in the temporary database.
3087 */
3089 "SELECT sql "
3090 " FROM %s.sqlite_schema WHERE type='table' AND name!='sqlite_sequence'"
3091 " AND rootpage>0"
3098 "SELECT sql "
3099 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE INDEX %%' "
3106 "SELECT sql "
3107 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE UNIQUE INDEX %%'"
3113 /* Loop through the tables in the main database. For each, do
3114 ** an "INSERT INTO rekey_db.xxx SELECT * FROM main.xxx;" to copy
3115 ** the contents to the temporary database.
3116 */
3118 "SELECT 'INSERT INTO %s.' || quote(name) "
3119 "|| ' SELECT * FROM %s.' || quote(name) || ';'"
3120 "FROM %s.sqlite_schema "
3121 "WHERE type = 'table' AND name!='sqlite_sequence' "
3122 " AND rootpage>0"
3128 /* Copy over the contents of the sequence table
3129 */
3131 "SELECT 'INSERT INTO %s.' || quote(name) "
3132 "|| ' SELECT * FROM %s.' || quote(name) || ';' "
3133 "FROM %s.sqlite_schema WHERE name=='sqlite_sequence';"
3139 /* Copy the triggers, views, and virtual tables from the main database
3140 ** over to the temporary database. None of these objects has any
3141 ** associated storage, so all we have to do is copy their entries
3142 ** from the SQLITE_MASTER table.
3143 */
3145 "INSERT INTO %s.sqlite_schema "
3146 " SELECT type, name, tbl_name, rootpage, sql"
3147 " FROM %s.sqlite_schema"
3148 " WHERE type='view' OR type='trigger'"
3149 " OR (type='table' AND rootpage=0)"
3156 end_of_export:
3172 }
3173 }
3174 }
3175 #endif
3176 /* END SQLCIPHER */