| blob | 295c055502751be57048522b4d4b3af35d3c6a2a |
1 /*
2 ** SQLCipher
3 ** http://zetetic.net
4 **
5 ** Copyright (c) 2008-2024, ZETETIC LLC
6 ** All rights reserved.
7 **
8 ** Redistribution and use in source and binary forms, with or without
9 ** modification, are permitted provided that the following conditions are met:
10 ** * Redistributions of source code must retain the above copyright
11 ** notice, this list of conditions and the following disclaimer.
12 ** * Redistributions in binary form must reproduce the above copyright
13 ** notice, this list of conditions and the following disclaimer in the
14 ** documentation and/or other materials provided with the distribution.
15 ** * Neither the name of the ZETETIC LLC nor the
16 ** names of its contributors may be used to endorse or promote products
17 ** derived from this software without specific prior written permission.
18 **
19 ** THIS SOFTWARE IS PROVIDED BY ZETETIC LLC ''AS IS'' AND ANY
20 ** EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
21 ** WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
22 ** DISCLAIMED. IN NO EVENT SHALL ZETETIC LLC BE LIABLE FOR ANY
23 ** DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
24 ** (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
25 ** LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
26 ** ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 ** (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
28 ** SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 **
30 */
31 /* BEGIN SQLCIPHER */
32 #ifdef SQLITE_HAS_CODEC
39 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
40 #if defined(__ANDROID__)
41 #include <android/log.h>
42 #elif defined(__APPLE__)
43 #include <TargetConditionals.h>
44 #include <os/log.h>
45 #endif
46 #endif
48 #include <time.h>
50 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
52 #else
54 #endif
56 #ifndef OMIT_MEMLOCK
57 #if defined(__unix__) || defined(__APPLE__) || defined(_AIX)
62 #endif
63 #endif
65 #include <assert.h>
68 /* extensions defined in pager.c */
70 void sqlcipherPagerSetCodec(Pager*, void *(*)(void*,void*,Pgno,int), void (*)(void*,int,int), void (*)(void*), void *);
74 /* end extensions defined in pager.c */
76 #if !defined (SQLCIPHER_CRYPTO_CC) \
77 && !defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT) \
78 && !defined (SQLCIPHER_CRYPTO_NSS) \
79 && !defined (SQLCIPHER_CRYPTO_OPENSSL)
80 #define SQLCIPHER_CRYPTO_OPENSSL
81 #endif
83 #define FILE_HEADER_SZ 16
85 #define CIPHER_XSTR(s) CIPHER_STR(s)
86 #define CIPHER_STR(s) #s
88 #ifndef CIPHER_VERSION_NUMBER
89 #define CIPHER_VERSION_NUMBER 4.6.1
90 #endif
92 #ifndef CIPHER_VERSION_BUILD
93 #define CIPHER_VERSION_BUILD community
94 #endif
96 #define CIPHER_DECRYPT 0
97 #define CIPHER_ENCRYPT 1
99 #define CIPHER_READ_CTX 0
100 #define CIPHER_WRITE_CTX 1
101 #define CIPHER_READWRITE_CTX 2
103 #ifndef PBKDF2_ITER
104 #define PBKDF2_ITER 256000
105 #endif
107 #define SQLCIPHER_FLAG_GET(FLAG,BIT) ((FLAG & BIT) != 0)
108 #define SQLCIPHER_FLAG_SET(FLAG,BIT) FLAG |= BIT
109 #define SQLCIPHER_FLAG_UNSET(FLAG,BIT) FLAG &= ~BIT
111 /* possible flags for codec_ctx->flags */
112 #define CIPHER_FLAG_HMAC (1 << 0)
113 #define CIPHER_FLAG_LE_PGNO (1 << 1)
114 #define CIPHER_FLAG_BE_PGNO (1 << 2)
115 #define CIPHER_FLAG_KEY_USED (1 << 3)
116 #define CIPHER_FLAG_HAS_KDF_SALT (1 << 4)
119 #ifndef DEFAULT_CIPHER_FLAGS
120 #define DEFAULT_CIPHER_FLAGS CIPHER_FLAG_HMAC | CIPHER_FLAG_LE_PGNO
121 #endif
124 /* by default, sqlcipher will use a reduced number of iterations to generate
125 the HMAC key / or transform a raw cipher key
126 */
127 #ifndef FAST_PBKDF2_ITER
128 #define FAST_PBKDF2_ITER 2
129 #endif
131 /* this if a fixed random array that will be xor'd with the database salt to ensure that the
132 salt passed to the HMAC key derivation function is not the same as that used to derive
133 the encryption key. This can be overridden at compile time but it will make the resulting
134 binary incompatible with the default builds when using HMAC. A future version of SQLcipher
135 will likely allow this to be defined at runtime via pragma */
136 #ifndef HMAC_SALT_MASK
137 #define HMAC_SALT_MASK 0x3a
138 #endif
140 #ifndef CIPHER_MAX_IV_SZ
141 #define CIPHER_MAX_IV_SZ 16
142 #endif
144 #ifndef CIPHER_MAX_KEY_SZ
145 #define CIPHER_MAX_KEY_SZ 64
146 #endif
149 /*
150 ** Simple shared routines for converting hex char strings to binary data
151 */
156 }
162 }
163 }
169 }
170 }
180 }
181 }
183 }
185 /* the default implementation of SQLCipher uses a cipher_ctx
186 to keep track of read / write state separately. The following
187 struct and associated functions are defined here */
225 #ifdef SQLCIPHER_TEST
226 /* possible flags for simulating specific test conditions */
227 #define TEST_FAIL_ENCRYPT 0x01
228 #define TEST_FAIL_DECRYPT 0x02
229 #define TEST_FAIL_MIGRATE 0x04
237 /* if cipher_test_rand is not set to a non-zero value always fail (return true) */
242 }
243 #endif
245 #ifdef SQLCIPHER_EXT
248 #endif
274 }
277 #ifndef OMIT_MEMLOCK
278 #if defined(__unix__) || defined(__APPLE__)
285 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling mlock(%p,%lu); _SC_PAGESIZE=%lu", ptr - offset, sz + offset, pagesize);
288 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock() returned %d errno=%d", rc, errno);
289 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
290 }
291 #elif defined(_WIN32)
292 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
294 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling VirtualLock(%p,%d)", ptr, sz);
297 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock() returned %d LastError=%d", rc, GetLastError());
298 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
299 }
300 #endif
301 #endif
302 #endif
303 }
306 #ifndef OMIT_MEMLOCK
307 #if defined(__unix__) || defined(__APPLE__)
314 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling munlock(%p,%lu)", ptr - offset, sz + offset);
317 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: munlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
318 }
319 #elif defined(_WIN32)
320 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
325 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling VirtualUnlock(%p,%d)", ptr, sz);
328 /* because memory allocations may be made from the same individual page, it is possible for VirtualUnlock to be called
329 * multiple times for the same page. Subsequent calls will return an error, but this can be safely ignored (i.e. because
330 * the previous call for that page unlocked the memory already). Log an info level event only in that case. */
332 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: VirtualUnlock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
333 }
334 #endif
335 #endif
336 #endif
337 }
341 }
344 }
349 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_malloc: calling sqlcipher_mlock(%p,%d)", ptr, n);
351 }
353 }
356 }
362 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_free: calling sqlcipher_memset(%p,0,%d) and sqlcipher_munlock(%p, %d)", p, sz, p, sz);
365 }
367 }
385 }
387 }
390 }
391 }
395 }
398 sqlcipher_mem_malloc,
399 sqlcipher_mem_free,
400 sqlcipher_mem_realloc,
401 sqlcipher_mem_size,
402 sqlcipher_mem_roundup,
403 sqlcipher_mem_init,
404 sqlcipher_mem_shutdown,
405 0
406 };
415 }
416 }
419 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entering SQLCIPHER_MUTEX_PROVIDER");
421 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entered SQLCIPHER_MUTEX_PROVIDER");
424 /* only free the current registerd provider if it has been initialized
425 and it isn't a pointer to the same provider passed to the function
426 (i.e. protect against a caller calling register twice for the same provider) */
428 }
430 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: leaving SQLCIPHER_MUTEX_PROVIDER");
432 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: left SQLCIPHER_MUTEX_PROVIDER");
435 }
437 /* return a pointer to the currently registered provider. This will
438 allow an application to fetch the current registered provider and
439 make minor changes to it */
442 }
445 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entering static master mutex");
447 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entered static master mutex");
449 /* allocate new mutexes */
454 }
455 #ifndef SQLCIPHER_OMIT_DEFAULT_LOGGING
456 /* when sqlcipher is first activated, set a default log target and level of WARN if the
457 logging settings have not yet been initialized. Use the "device log" for
458 android (logcat) or apple (console). Use stderr on all other platforms. */
461 /* set log level if it is different than the uninitalized default value of NONE */
464 }
466 /* set the default file or device if neither is already set */
468 #if defined(__ANDROID__) || defined(__APPLE_)
470 #else
472 #endif
473 }
475 }
476 #endif
477 }
479 /* check to see if there is a provider registered at this point
480 if there no provider registered at this point, register the
481 default provider */
484 #if defined (SQLCIPHER_CRYPTO_CC)
487 #elif defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT)
490 #elif defined (SQLCIPHER_CRYPTO_NSS)
493 #elif defined (SQLCIPHER_CRYPTO_OPENSSL)
496 #elif defined (SQLCIPHER_CRYPTO_OSSL3)
499 #else
501 #endif
502 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: calling sqlcipher_register_provider(%p)", p);
503 #ifdef SQLCIPHER_EXT
505 #endif
507 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: called sqlcipher_register_provider(%p)",p);
508 }
512 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: leaving static master mutex");
514 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: left static master mutex");
515 }
518 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering static master mutex");
520 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered static master mutex");
522 sqlcipher_activate_count--;
523 /* if no connections are using sqlcipher, cleanup globals */
525 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering SQLCIPHER_MUTEX_PROVIDER");
527 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered SQLCIPHER_MUTEX_PROVIDER");
532 }
534 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving SQLCIPHER_MUTEX_PROVIDER");
536 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left SQLCIPHER_MUTEX_PROVIDER");
538 #ifdef SQLCIPHER_EXT
540 #endif
542 /* last connection closed, free mutexes */
547 }
548 }
550 }
552 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving static master mutex");
554 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left static master mutex");
555 }
557 /* constant time memset using volitile to avoid having the memset
558 optimized out by the compiler.
559 Note: As suggested by Joachim Schipper (joachim.schipper@fox-it.com)
560 */
567 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_memset: setting %p[0-%llu]=%d)", a, len, value);
570 }
573 }
575 /* constant time memory check tests every position of a memory segement
576 matches a single value (i.e. the memory is all zeros)
577 returns 0 if match, 1 of no match */
584 }
587 }
589 /* constant time memory comparison routine.
590 returns 0 if match, 1 if no match */
597 }
600 }
602 /**
603 * Free and wipe memory. Uses SQLites internal sqlite3_free so that memory
604 * can be countend and memory leak detection works in the test suite.
605 * If ptr is not null memory will be freed.
606 * If sz is greater than zero, the memory will be overwritten with zero before it is freed
607 * If sz is > 0, and not compiled with OMIT_MEMLOCK, system will attempt to unlock the
608 * memory segment so it can be paged
609 */
611 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_free: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
615 }
617 /**
618 * allocate memory. Uses sqlite's internall malloc wrapper so memory can be
619 * reference counted and leak detection works. Unless compiled with OMIT_MEMLOCK
620 * attempts to lock the memory pages so sensitive information won't be swapped
621 */
624 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlite3Malloc(%llu)", sz);
626 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
630 }
633 #ifdef CIPHER_VERSION_QUALIFIER
634 char *version = sqlite3_mprintf("%s %s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_QUALIFIER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
635 #else
636 char *version = sqlite3_mprintf("%s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
637 #endif
639 }
641 /**
642 * Initialize new cipher_ctx struct. This function will allocate memory
643 * for the cipher context and for the key
644 *
645 * returns SQLITE_OK if initialization was successful
646 * returns SQLITE_NOMEM if an error occured allocating memory
647 */
650 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating context");
655 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating key");
658 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating hmac_key");
665 }
667 /**
668 * Free and wipe memory associated with a cipher_ctx
669 */
678 }
689 /* calculate the amount of reserve needed in even increments of the cipher block size */
693 }
695 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_reserve_setup: base_reserve=%d block_sz=%d md_size=%d reserve=%d",
701 }
703 /**
704 * Compare one cipher_ctx to another.
705 *
706 * returns 0 if all the parameters (except the derived key data) are the same
707 * returns 1 otherwise
708 */
712 && (
717 ));
719 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_cmp: c1=%p c2=%p sqlcipher_memcmp(c1->pass, c2_pass)=%d are_equal=%d",
726 c1->pass_sz
727 ),
728 are_equal
729 );
732 }
734 /**
735 * Copy one cipher_ctx to another. For instance, assuming that read_ctx is a
736 * fully initialized context, you could copy it to write_ctx and all yet data
737 * and pass information across
738 *
739 * returns SQLITE_OK if initialization was successful
740 * returns SQLITE_NOMEM if an error occured allocating memory
741 */
746 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_copy: target=%p, source=%p", target, source);
761 }
766 }
768 }
770 /**
771 * Set the keyspec for the cipher_ctx
772 *
773 * returns SQLITE_OK if assignment was successfull
774 * returns SQLITE_NOMEM if an error occured allocating memory
775 */
776 static int sqlcipher_cipher_ctx_set_keyspec(codec_ctx *ctx, cipher_ctx *c_ctx, const unsigned char *key) {
777 /* free, zero existing pointers and size */
790 }
795 }
797 /**
798 * Set the passphrase for the cipher_ctx
799 *
800 * returns SQLITE_OK if assignment was successfull
801 * returns SQLITE_NOMEM if an error occured allocating memory
802 */
804 /* free, zero existing pointers and size */
814 }
816 }
818 static int sqlcipher_codec_ctx_set_pass(codec_ctx *ctx, const void *zKey, int nKey, int for_ctx) {
823 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_set_pass", rc);
825 }
830 if((rc = sqlcipher_cipher_ctx_copy(ctx, for_ctx ? ctx->read_ctx : ctx->write_ctx, c_ctx)) != SQLITE_OK) {
831 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_copy", rc);
833 }
834 }
837 }
843 }
849 }
851 /* set the global default flag for HMAC */
855 }
857 /* set the codec flag for whether this individual database should be using hmac */
863 }
866 }
868 /* the length of plaintext header size must be:
869 * 1. greater than or equal to zero
870 * 2. a multiple of the cipher block size
871 * 3. less than the usable size of the first database page
872 */
874 if(size >= 0 && ctx->block_sz > 0 && (size % ctx->block_sz) == 0 && size < (ctx->page_sz - ctx->reserve_sz)) {
877 }
879 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_plaintext_header_size: attempt to set invalid plantext_header_size %d", size);
881 }
886 }
891 }
894 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_error %d", error);
897 }
904 }
906 /* read salt from header, if present, otherwise generate a new random salt */
907 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: obtaining salt");
908 if(fd == NULL || fd->pMethods == 0 || sqlite3OsRead(fd, ctx->kdf_salt, ctx->kdf_salt_sz, 0) != SQLITE_OK) {
909 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: unable to read salt from file header, generating random");
911 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: error retrieving random bytes from provider");
913 }
914 }
917 }
924 }
925 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_kdf_salt: attempt to set salt of incorrect size %d", size);
927 }
933 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_get_kdf_salt: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
934 }
935 }
939 }
943 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "cipher_page_size not a power of 2 and between 512 and 65536 inclusive");
945 }
946 /* attempt to free the existing page buffer */
950 /* pre-allocate a page buffer of PageSize bytes. This will
951 be used as a persistent buffer for encryption and decryption
952 operations to avoid overhead of multiple memory allocations*/
957 }
959 static int sqlcipher_codec_ctx_init(codec_ctx **iCtx, Db *pDb, Pager *pPager, const void *zKey, int nKey) {
963 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating context");
972 /* allocate space for salt data. Then read the first 16 bytes
973 directly off the database file. This is the salt for the
974 key derivation function. If we get a short read allocate
975 a new random salt value */
976 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating kdf_salt");
981 /* allocate space for separate hmac salt data. We want the
982 HMAC derivation salt to be different than the encryption
983 key derivation salt */
984 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating hmac_kdf_salt");
988 /* setup default flags */
991 /* setup the crypto provider */
992 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating provider");
996 /* make a copy of the provider to be used for the duration of the context */
997 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entering SQLCIPHER_MUTEX_PROVIDER");
999 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entered SQLCIPHER_MUTEX_PROVIDER");
1003 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: leaving SQLCIPHER_MUTEX_PROVIDER");
1005 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: left SQLCIPHER_MUTEX_PROVIDER");
1008 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from ctx_init", rc);
1010 }
1016 /* establic the size for a hex-formated key specification, containing the
1017 raw encryption key and the salt used to generate it format. will be x'hexkey...hexsalt'
1018 so oversize by 3 bytes */
1021 /*
1022 Always overwrite page size and set to the default because the first page of the database
1023 in encrypted and thus sqlite can't effectively determine the pagesize. this causes an issue in
1024 cases where bytes 16 & 17 of the page header are a power of 2 as reported by John Lehman
1025 */
1027 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from sqlcipher_codec_ctx_set_pagesize with %d", rc, default_page_size);
1029 }
1031 /* establish settings for the KDF iterations and fast (HMAC) KDF iterations */
1033 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting default_kdf_iter %d", rc, default_kdf_iter);
1035 }
1038 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting fast_kdf_iter to %d", rc, FAST_PBKDF2_ITER);
1040 }
1042 /* set the default HMAC and KDF algorithms which will determine the reserve size */
1044 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_hmac_algorithm with %d", rc, default_hmac_algorithm);
1046 }
1048 /* Note that use_hmac is a special case that requires recalculation of page size
1049 so we call set_use_hmac to perform setup */
1050 if((rc = sqlcipher_codec_ctx_set_use_hmac(ctx, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC))) != SQLITE_OK) {
1051 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting use_hmac %d", rc, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
1053 }
1056 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_kdf_algorithm with %d", rc, default_kdf_algorithm);
1058 }
1060 /* setup the default plaintext header size */
1061 if((rc = sqlcipher_codec_ctx_set_plaintext_header_size(ctx, default_plaintext_header_size)) != SQLITE_OK) {
1062 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_plaintext_header_size with %d", rc, default_plaintext_header_size);
1064 }
1066 /* initialize the read and write sub-contexts. this must happen after key_sz is established */
1068 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing read_ctx", rc);
1070 }
1073 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing write_ctx", rc);
1075 }
1077 /* set the key material on one of the sub cipher contexts and sync them up */
1079 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting pass key", rc);
1081 }
1084 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d copying write_ctx to read_ctx", rc);
1086 }
1089 }
1091 /**
1092 * Free and wipe memory associated with a cipher_ctx, including the allocated
1093 * read_ctx and write_ctx.
1094 */
1105 }
1110 }
1112 /** convert a 32bit unsigned integer to little endian byte ordering */
1118 }
1120 static int sqlcipher_page_hmac(codec_ctx *ctx, cipher_ctx *c_ctx, Pgno pgno, unsigned char *in, int in_sz, unsigned char *out) {
1122 /* we may convert page number to consistent representation before calculating MAC for
1123 compatibility across big-endian and little-endian platforms.
1125 Note: The public release of sqlcipher 2.0.0 to 2.0.6 had a bug where the bytes of pgno
1126 were used directly in the MAC. SQLCipher convert's to little endian by default to preserve
1127 backwards compatibility on the most popular platforms, but can optionally be configured
1128 to use either big endian or native byte ordering via pragma. */
1130 if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_LE_PGNO)) { /* compute hmac using little endian pgno*/
1132 } else if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_BE_PGNO)) { /* compute hmac using big endian pgno */
1136 }
1138 /* include the encrypted page data, initialization vector, and page number in HMAC. This will
1139 prevent both tampering with the ciphertext, manipulation of the IV, or resequencing otherwise
1140 valid pages out of order in a database */
1146 }
1148 /*
1149 * ctx - codec context
1150 * pgno - page number in database
1151 * size - size in bytes of input and output buffers
1152 * mode - 1 to encrypt, 0 to decrypt
1153 * in - pointer to input bytes
1154 * out - pouter to output bytes
1155 */
1156 static int sqlcipher_page_cipher(codec_ctx *ctx, int for_ctx, Pgno pgno, int mode, int page_sz, unsigned char *in, unsigned char *out) {
1161 /* calculate some required positions into various buffers */
1162 size = page_sz - ctx->reserve_sz; /* adjust size to useable size and memset reserve at end of page */
1166 /* hmac will be written immediately after the initialization vector. the remainder of the page reserve will contain
1167 random bytes. note, these pointers are only valid when using hmac */
1170 out_start = out; /* note the original position of the output buffer pointer, as out will be rewritten during encryption */
1172 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: pgno=%d, mode=%d, size=%d", pgno, mode, size);
1175 /* the key size should never be zero. If it is, error out. */
1177 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: error possible context corruption, key_sz is zero for pgno=%d", pgno);
1179 }
1182 /* start at front of the reserve block, write random data to the end */
1186 }
1190 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on decrypt failed for pgno=%d", pgno);
1192 }
1194 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: comparing hmac on in=%p out=%p hmac_sz=%d", hmac_in, hmac_out, ctx->hmac_sz);
1196 if(sqlite3BtreeGetAutoVacuum(ctx->pBt) != BTREE_AUTOVACUUM_NONE && sqlcipher_ismemset(in, 0, page_sz) == 0) {
1197 /* first check if the entire contents of the page is zeros. If so, this page
1198 resulted from a short read (i.e. sqlite attempted to pull a page after the end of the file. these
1199 short read failures must be ignored for autovaccum mode to work so wipe the output buffer
1200 and return SQLITE_OK to skip the decryption step. */
1201 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: zeroed page (short read) for pgno %d with autovacuum enabled", pgno);
1205 /* if the page memory is not all zeros, it means the there was data and a hmac on the page.
1206 since the check failed, the page was either tampered with or corrupted. wipe the output buffer,
1207 and return SQLITE_ERROR to the caller */
1208 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac check failed for pgno=%d", pgno);
1210 }
1211 }
1212 }
1214 if(ctx->provider->cipher(ctx->provider_ctx, mode, c_ctx->key, ctx->key_sz, iv_out, in, size, out) != SQLITE_OK) {
1215 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: cipher operation mode=%d failed for pgno=%d", mode, pgno);
1217 };
1220 if(sqlcipher_page_hmac(ctx, c_ctx, pgno, out_start, size + ctx->iv_sz, hmac_out) != SQLITE_OK) {
1221 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on encrypt failed for pgno=%d", pgno);
1223 };
1224 }
1229 error:
1232 }
1234 /**
1235 * Derive an encryption key for a cipher contex key based on the raw password.
1236 *
1237 * If the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1238 * the key (i.e 64 hex chars for a 256 bit key) then the key data will be used directly.
1240 * Else, if the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1241 * the key and the salt (i.e 92 hex chars for a 256 bit key and 16 byte salt) then it will be unpacked
1242 * as the key followed by the salt.
1243 *
1244 * Otherwise, a key data will be derived using PBKDF2
1245 *
1246 * returns SQLITE_OK if initialization was successful
1247 * returns SQLITE_ERROR if the key could't be derived (for instance if pass is NULL or pass_sz is 0)
1248 */
1251 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: ctx->kdf_salt_sz=%d ctx->kdf_iter=%d ctx->fast_kdf_iter=%d ctx->key_sz=%d",
1254 if(c_ctx->pass && c_ctx->pass_sz) { /* if key material is present on the context for derivation */
1256 /* if necessary, initialize the salt from the header or random source */
1259 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
1261 }
1262 }
1264 if (c_ctx->pass_sz == ((ctx->key_sz * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, ctx->key_sz * 2)) {
1267 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1269 } else if (c_ctx->pass_sz == (((ctx->key_sz + ctx->kdf_salt_sz) * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, (ctx->key_sz + ctx->kdf_salt_sz) * 2)) {
1271 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1275 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: deriving key using full PBKDF2 with %d iterations", ctx->kdf_iter);
1279 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating encryption key");
1281 }
1282 }
1284 /* set the context "keyspec" containing the hex-formatted key and salt to be used when attaching databases */
1286 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_cipher_ctx_set_keyspec", rc);
1288 }
1290 /* if this context is setup to use hmac checks, generate a seperate and different
1291 key for HMAC. In this case, we use the output of the previous KDF as the input to
1292 this KDF run. This ensures a distinct but predictable HMAC key. */
1296 /* start by copying the kdf key into the hmac salt slot
1297 then XOR it with the fixed hmac salt defined at compile time
1298 this ensures that the salt passed in to derive the hmac key, while
1299 easy to derive and publically known, is not the same as the salt used
1300 to generate the encryption key */
1304 }
1306 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "cipher_ctx_key_derive: deriving hmac key from encryption key using PBKDF2 with %d iterations",
1313 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating HMAC key");
1315 }
1316 }
1320 }
1321 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: key material is not present on the context for key derivation");
1323 }
1326 /* derive key on first use if necessary */
1329 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving read_ctx key");
1331 }
1332 }
1336 /* the relevant parameters are the same, just copy read key */
1338 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred copying read_ctx to write_ctx");
1340 }
1343 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving write_ctx key");
1345 }
1346 }
1347 }
1349 /* wipe and free passphrase after key derivation */
1353 }
1356 }
1363 }
1364 }
1366 static int sqlcipher_check_connection(const char *filename, char *key, int key_sz, char *sql, int *user_version, char** journal_mode) {
1382 /* start by querying the user version.
1383 this will fail if the key is incorrect */
1392 }
1403 }
1405 /* cleanup will finalize open statement */
1407 cleanup:
1411 }
1419 i64 file_sz;
1429 }
1432 sqlite3VdbeAddOp4(v, OP_String8, 0, 1, 0, "HMAC is not enabled, unable to integrity check", P4_TRANSIENT);
1435 }
1441 }
1451 /* skip integrity check on PAGER_SJ_PGNO since it will have no valid content */
1459 }
1464 result = sqlite3_mprintf("error reading %d bytes from file page %d at offset %d", read_sz, page, offset);
1467 } else if(sqlcipher_page_hmac(ctx, ctx->read_ctx, page, ctx->buffer, payload_sz, hmac_out) != SQLITE_OK) {
1475 }
1476 }
1479 result = sqlite3_mprintf("page %d has an invalid size of %lld bytes (expected %d bytes)", page, file_sz - ((file_sz / ctx->page_sz) * ctx->page_sz), ctx->page_sz);
1482 }
1484 cleanup:
1487 }
1494 char *set_user_version = NULL, *pass = NULL, *attach_command = NULL, *migrated_db_filename = NULL, *keyspec = NULL, *temp = NULL, *journal_mode = NULL, *set_journal_mode = NULL, *pragma_compat = NULL;
1497 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1500 #endif
1506 /* pull the provided password / key material off the current codec context */
1512 /* Version 4 - current, no upgrade required, so exit immediately */
1515 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: no upgrade required - exiting");
1517 }
1521 rc = sqlcipher_check_connection(db_filename, pass, pass_sz, pragma_compat, &user_version, &journal_mode);
1523 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: version %d format found", i);
1525 }
1528 }
1530 /* if we exit the loop normally we failed to determine the version, this is an error */
1531 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: unable to determine format version for upgrade: this may indicate custom settings were used ");
1534 migrate:
1537 /* overallocate migrated_db_filename, because sqlite3OsOpen will read past the null terminator
1538 * to determine whether the filename was URI formatted */
1543 attach_command = sqlite3_mprintf("ATTACH DATABASE '%s' as migrate;", migrated_db_filename, pass);
1548 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set compatibility mode failed, error code %d", rc);
1550 }
1552 /* force journal mode to DELETE, we will set it back later if different */
1555 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: force journal mode DELETE failed, error code %d", rc);
1557 }
1561 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: attach failed, error code %d", rc);
1563 }
1567 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: keying attached database failed, error code %d", rc);
1569 }
1573 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: sqlcipher_export failed, error code %d", rc);
1575 }
1577 #ifdef SQLCIPHER_TEST
1580 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: simulated migrate failure, error code %d", rc);
1582 }
1583 #endif
1587 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set user version failed, error code %d", rc);
1589 }
1592 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate from within a transaction");
1594 }
1596 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate - SQL statements in progress");
1598 }
1605 /* unset the BTS_PAGESIZE_FIXED flag to avoid SQLITE_READONLY */
1609 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to set btree page size to %d res %d rc %d", default_page_size, nRes, rc);
1611 }
1623 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1624 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing windows MoveFileExA");
1628 w_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) db_filename, -1, (const LPWSTR) w_db_filename, w_db_filename_sz);
1630 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, NULL, 0);
1632 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, (const LPWSTR) w_migrated_db_filename, w_migrated_db_filename_sz);
1636 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %d", rc);
1638 }
1639 #else
1640 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing POSIX rename");
1642 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %s to %s: %d", migrated_db_filename, db_filename, rc);
1644 }
1645 #endif
1646 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: renamed migration database %s to main database %s: %d", migrated_db_filename, db_filename, rc);
1648 rc = sqlite3OsOpen(db->pVfs, migrated_db_filename, srcfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1650 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen migration database %s: %d", migrated_db_filename, rc);
1652 }
1654 rc = sqlite3OsOpen(db->pVfs, db_filename, destfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1656 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen main database %s: %d", db_filename, rc);
1658 }
1661 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset pager");
1665 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: DETACH DATABASE migrate failed: %d", rc);
1666 }
1669 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset all schemas");
1674 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to re-set journal mode via %s: %d", set_journal_mode, rc);
1676 }
1680 handle_error:
1681 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: an error occurred attempting to migrate the database - last error %d", rc);
1683 cleanup:
1687 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to delete migration database %s: %d", migrated_db_filename, del_rc);
1688 }
1689 }
1693 if(migrated_db_filename) sqlcipher_free(migrated_db_filename, sqlite3Strlen30(migrated_db_filename));
1698 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1701 #endif
1703 }
1716 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: using raw random blob from hex");
1723 }
1724 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: attemt to add random with invalid format");
1726 }
1728 #if !defined(SQLITE_OMIT_TRACE)
1733 static int sqlcipher_profile_callback(unsigned int trace, void *file, void *stmt, void *run_time){
1737 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1738 #if defined(__ANDROID__)
1739 __android_log_print(ANDROID_LOG_DEBUG, "sqlcipher", SQLCIPHER_PROFILE_FMT, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1740 #elif defined(__APPLE__)
1741 os_log(OS_LOG_DEFAULT, SQLCIPHER_PROFILE_FMT_OSLOG, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1742 #endif
1743 #endif
1746 }
1748 }
1749 #endif
1752 #if defined(SQLITE_OMIT_TRACE)
1754 #else
1763 }else if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1764 f = NULL; /* file pointer will be NULL indicating the device target (i.e. logcat or oslog). We will accept logcat for backwards compatibility */
1766 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1768 #else
1770 #endif
1771 }
1773 }
1775 #endif
1776 }
1792 }
1794 }
1808 }
1810 }
1813 #ifndef SQLCIPHER_OMIT_LOG
1814 /* constants from https://github.com/Alexpux/mingw-w64/blob/master/mingw-w64-crt/misc/gettimeofday.c */
1816 #define HECTONANOSEC_PER_SEC 10000000ull
1817 #define MAX_LOG_LEN 8192
1825 #ifdef CODEC_DEBUG
1826 #if defined(SQLCIPHER_OMIT_LOG_DEVICE)
1830 #else
1831 #if defined(__ANDROID__)
1834 #elif defined(__APPLE__)
1839 #else
1843 #endif
1844 #endif
1845 #endif
1847 level > sqlcipher_log_level /* log level is higher, e.g. level filter is at ERROR but this message is DEBUG */
1850 ) {
1851 /* skip logging this message */
1853 }
1855 sqlite3_snprintf(MAX_LOG_LEN, formatted, "%s %s ", sqlcipher_get_log_level_str(level), sqlcipher_get_log_source_str(source));
1859 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1861 #if defined(__ANDROID__)
1864 #elif defined(__APPLEformattes__)
1867 #endif
1868 }
1869 #endif
1876 #ifdef _WIN32
1877 SYSTEMTIME st;
1878 FILETIME ft;
1884 #else
1890 #endif
1894 }
1895 }
1897 end:
1899 }
1900 #endif
1903 #ifdef SQLCIPHER_OMIT_LOG
1905 #else
1906 /* close open trace file if it is not stdout or stderr, then
1907 reset trace settings */
1908 if(sqlcipher_log_file != NULL && sqlcipher_log_file != stdout && sqlcipher_log_file != stderr) {
1910 }
1914 if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1915 /* use the appropriate device log. accept logcat for backwards compatibility */
1922 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1924 #else
1926 #endif
1927 }
1928 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_set_log: set log to %s", destination);
1930 #endif
1931 }
1933 static void sqlcipher_vdbe_return_string(Parse *pParse, const char *zLabel, const char *value, int value_type){
1939 }
1941 #ifdef SQLCIPHER_EXT
1943 #endif
1948 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize() size=%d reserve=%d", ctx->page_sz, ctx->reserve_sz);
1950 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entering database mutex %p", db->mutex);
1952 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entered database mutex %p", db->mutex);
1955 /* before forcing the page size we need to unset the BTS_PAGESIZE_FIXED flag, else
1956 sqliteBtreeSetPageSize will block the change */
1960 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize returned %d", rc);
1962 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: leaving database mutex %p", db->mutex);
1964 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: left database mutex %p", db->mutex);
1967 }
1971 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_pass_key: db=%p nDb=%d for_ctx=%d", db, nDb, for_ctx);
1978 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: error ocurred fetching codec from pager on db %d", nDb);
1980 }
1981 }
1982 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: no btree present on db %d", nDb);
1984 }
1986 int sqlcipher_codec_pragma(sqlite3* db, int iDb, Parse *pParse, const char *zLeft, const char *zRight) {
1993 }
1996 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: db=%p iDb=%d pParse=%p zLeft=%s zRight=%s ctx=%p", db, iDb, pParse, zLeft, zRight, ctx);
1997 }
1999 #ifdef SQLCIPHER_EXT
2001 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: PRAGMA handled by sqlcipher_ext_pragma");
2003 #endif
2004 #ifdef SQLCIPHER_TEST
2015 }
2016 }
2028 }
2029 }
2042 }
2044 #endif
2049 }
2057 }
2063 }
2064 }
2071 char *add_random_status = sqlite3_mprintf("%d", sqlcipher_codec_add_random(ctx, zRight, sqlite3Strlen30(zRight)));
2073 }
2081 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: error occurred during cipher_migrate: %d", status);
2083 }
2084 }
2090 }
2096 }
2110 }
2111 }
2124 }
2133 }
2134 }
2146 }
2147 }
2155 /* PRAGMA cipher_page_size will alter the size of the database pages while ensuring that the
2156 required reserve space is allocated at the end of each page. This will also override the
2157 standard SQLite PRAGMA page_size behavior if a codec context is attached to the database handle.
2158 If PRAGMA page_size is invoked but a codec context is not attached (i.e. dealing with a standard
2159 unencrypted database) then return early and allow the standard PRAGMA page_size logic to apply. */
2170 }
2172 return 0; /* return early so that the PragTyp_PAGE_SIZE case logic in pragma.c will take effect */
2173 }
2181 }
2187 char *default_use_hmac = sqlite3_mprintf("%d", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2189 }
2196 /* since the use of hmac has changed, the page size may also change */
2202 }
2203 }
2209 /* clear both pgno endian flags */
2219 }
2230 }
2231 }
2232 }
2243 }
2249 }
2250 }
2256 /* deliberately ignore result code, if size is invalid it will be set to -1
2257 and trip the error later in the codec */
2262 }
2263 }
2270 sqlcipher_vdbe_return_string(pParse, "cipher_default_plaintext_header_size", size, P4_DYNAMIC);
2271 }
2276 if (sqlite3StrNICmp(zRight ,"x'", 2) == 0 && sqlite3Strlen30(zRight) == (FILE_HEADER_SZ*2)+3) {
2282 }
2292 }
2293 }
2294 }
2306 }
2313 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2315 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2317 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2318 }
2319 }
2320 }
2331 }
2334 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2336 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2338 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2339 }
2340 }
2352 }
2356 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2358 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2360 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2361 }
2362 }
2363 }
2374 }
2377 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2379 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2381 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2382 }
2383 }
2442 }
2446 }
2447 }
2484 }
2485 }
2490 /* memory security can only be enabled, not disabled */
2493 }
2495 /* only report that memory security is enabled if pragma cipher_memory_security is ON and
2496 SQLCipher's allocator/deallocator was run at least one time */
2503 }
2516 pragma = sqlite3_mprintf("PRAGMA cipher_use_hmac = %d;", SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_HMAC));
2519 pragma = sqlite3_mprintf("PRAGMA cipher_plaintext_header_size = %d;", ctx->plaintext_header_sz);
2530 }
2536 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2538 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2540 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2541 }
2544 }
2555 pragma = sqlite3_mprintf("PRAGMA cipher_default_use_hmac = %d;", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2558 pragma = sqlite3_mprintf("PRAGMA cipher_default_plaintext_header_size = %d;", default_plaintext_header_size);
2563 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA1_LABEL);
2565 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA256_LABEL);
2567 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA512_LABEL);
2568 }
2573 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2575 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2577 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2578 }
2584 }
2594 }
2595 sqlcipher_vdbe_return_string(pParse, "cipher_log_level", sqlcipher_get_log_level_str(sqlcipher_log_level), P4_TRANSIENT);
2606 }
2607 sqlcipher_vdbe_return_string(pParse, "cipher_log_source", sqlcipher_get_log_source_str(sqlcipher_log_source), P4_TRANSIENT);
2614 }
2616 }
2618 /* these constants are used internally within SQLite's pager.c to differentiate between
2619 operations on the main database or journal pages. This is important in the context
2620 of a rekey operations, where the journal must be written using the original key
2621 material (to allow a transactional rollback), while the new database pages are being
2622 written with the new key material*/
2623 #define CODEC_READ_OP 3
2624 #define CODEC_WRITE_OP 6
2625 #define CODEC_JOURNAL_OP 7
2627 /*
2628 * sqlite3Codec can be called in multiple modes.
2629 * encrypt mode - expected to return a pointer to the
2630 * encrypted data without altering pData.
2631 * decrypt mode - expected to return a pointer to pData, with
2632 * the data decrypted in the input buffer
2633 */
2640 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: pgno=%d, mode=%d, ctx->page_sz=%d", pgno, mode, ctx->page_sz);
2642 #ifdef SQLCIPHER_EXT
2644 #endif
2646 /* call to derive keys if not present yet */
2648 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error occurred during key derivation: %d", rc);
2651 }
2653 /* if the plaintext_header_size is negative that means an invalid size was set via
2654 PRAGMA. We can't set the error state on the pager at that point because the pager
2655 may not be open yet. However, this is a fatal error state, so abort the codec */
2657 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error invalid ctx->plaintext_header_sz: %d", ctx->plaintext_header_sz);
2660 }
2666 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: switch mode=%d offset=%d", mode, offset);
2672 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_DECRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2673 #ifdef SQLCIPHER_TEST
2676 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating decryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2677 }
2678 #endif
2680 /* failure to decrypt a page is considered a permanent error and will render the pager unusable
2681 in order to prevent inconsistent data being loaded into page cache */
2682 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error decrypting page %d data: %d", pgno, rc);
2687 }
2692 case CODEC_WRITE_OP: /* encrypt database page, operate on write context and fall through to case 7, so the write context is used*/
2695 case CODEC_JOURNAL_OP: /* encrypt journal page, operate on read context use to get the original page data from the database */
2698 /* retrieve the kdf salt */
2700 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error retrieving salt: %d", rc);
2703 }
2705 }
2706 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_ENCRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2707 #ifdef SQLCIPHER_TEST
2710 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating encryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2711 }
2712 #endif
2714 /* failure to encrypt a page is considered a permanent error and will render the pager unusable
2715 in order to prevent corrupted pages from being written to the main databased when using WAL */
2716 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error encrypting page %d data: %d", pgno, rc);
2720 }
2726 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error unsupported codec mode %d", mode);
2730 }
2731 }
2738 }
2743 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: db=%p, nDb=%d", db, nDb);
2754 /* there is already a codec attached to this database, so we should not proceed */
2755 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: no codec attached to db");
2757 }
2759 /* check if the sqlite3_file is open, and if not force handle to NULL */
2762 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_activate()");
2765 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entering database mutex %p", db->mutex);
2767 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entered database mutex %p", db->mutex);
2769 #ifdef SQLCIPHER_EXT
2773 }
2774 #endif
2776 /* point the internal codec argument against the contet to be prepared */
2777 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_codec_ctx_init()");
2781 /* initialization failed, do not attach potentially corrupted context */
2782 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: context initialization failed, forcing error state with rc=%d", rc);
2783 /* force an error at the pager level, such that even the upstream caller ignores the return code
2784 the pager will be in an error state and will process no further operations */
2787 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p (early return on rc=%d)", db->mutex, rc);
2789 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p (early return on rc=%d)", db->mutex, rc);
2791 }
2793 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipherPagerSetCodec()");
2794 sqlcipherPagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
2796 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling codec_set_btree_to_codec_pagesize()");
2799 /* force secure delete. This has the benefit of wiping internal data when deleted
2800 and also ensures that all pages are written to disk (i.e. not skipped by
2801 sqlite3PagerDontWrite optimizations) */
2802 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSecureDelete()");
2805 /* if fd is null, then this is an in-memory database and
2806 we dont' want to overwrite the AutoVacuum settings
2807 if not null, then set to the default */
2809 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSetAutoVacuum()");
2811 }
2812 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p", db->mutex);
2814 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p", db->mutex);
2815 }
2817 }
2823 }
2828 }
2829 }
2831 }
2834 /* do nothing, security enhancements are always active */
2835 }
2840 }
2843 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_key_v2: db=%p zDb=%s", db, zDb);
2844 /* attach key if db and pKey are not null and nKey is > 0 */
2848 }
2851 }
2856 }
2858 /* sqlite3_rekey_v2
2859 ** Given a database, this will reencrypt the database using a new key.
2860 ** There is only one possible modes of operation - to encrypt a database
2861 ** that is already encrpyted. If the database is not already encrypted
2862 ** this should do nothing
2863 ** The proposed logic for this function follows:
2864 ** 1. Determine if the database is already encryptped
2865 ** 2. If there is NOT already a key present do nothing
2866 ** 3. If there is a key present, re-encrypt the database with the new key
2867 */
2869 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: db=%p zDb=%s", db, zDb);
2873 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: database zDb=%p db_index:%d", zDb, db_index);
2877 Pgno pgno;
2884 /* there was no codec attached to this database, so this should do nothing! */
2885 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no codec attached to db %s: rekey can't be used on an unencrypted database", zDb);
2887 }
2889 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entering database mutex %p", db->mutex);
2891 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entered database mutex %p", db->mutex);
2895 /* do stuff here to rewrite the database
2896 ** 1. Create a transaction on the database
2897 ** 2. Iterate through each page, reading it and then writing it.
2898 ** 3. If that goes ok then commit and put ctx->rekey into ctx->key
2899 ** note: don't deallocate rekey since it may be used in a subsequent iteration
2900 */
2903 for(pgno = 1; rc == SQLITE_OK && pgno <= (unsigned int)page_count; pgno++) { /* pgno's start at 1 see pager.c:pagerAcquire */
2904 if(!sqlite3pager_is_sj_pgno(pPager, pgno)) { /* skip this page (see pager.c:pagerAcquire for reasoning) */
2911 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred writing page %d", rc, pgno);
2912 }
2914 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred reading page %d", rc, pgno);
2915 }
2916 }
2917 }
2919 /* if commit was successful commit and copy the rekey data to current key, else rollback to release locks */
2927 }
2929 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: leaving database mutex %p", db->mutex);
2931 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: left database mutex %p", db->mutex);
2932 }
2934 }
2935 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no key provided for db %s: rekey can't be used to decrypt an encrypted database", zDb);
2937 }
2941 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecGetKey:db=%p, nDb=%d", db, nDb);
2946 /* pass back the keyspec from the codec, unless PRAGMA cipher_store_pass
2947 is set or keyspec has not yet been derived, in which case pass
2948 back the password key material */
2954 }
2958 }
2959 }
2960 }
2962 /*
2963 * Implementation of an "export" function that allows a caller
2964 * to duplicate the main database to an attached database. This is intended
2965 * as a conveneince for users who need to:
2966 *
2967 * 1. migrate from an non-encrypted database to an encrypted database
2968 * 2. move from an encrypted database to a non-encrypted database
2969 * 3. convert beween the various flavors of encrypted databases.
2970 *
2971 * This implementation is based heavily on the procedure and code used
2972 * in vacuum.c, but is exposed as a function that allows export to any
2973 * named attached database.
2974 */
2976 /*
2977 ** Finalize a prepared statement. If there was an error, store the
2978 ** text of the error message in *pzErrMsg. Return the result code.
2979 **
2980 ** Based on vacuumFinalize from vacuum.c
2981 */
2987 }
2989 }
2991 /*
2992 ** Execute zSql on database db. Return an error code.
2993 **
2994 ** Based on execSql from vacuum.c
2995 */
3001 }
3005 }
3009 }
3011 /*
3012 ** Execute zSql on database db. The statement returns exactly
3013 ** one column. Execute this as SQL on the same database.
3014 **
3015 ** Based on execExecSql from vacuum.c
3016 */
3029 }
3030 }
3033 }
3035 /*
3036 * copy database and schema from the main database to an attached database
3037 *
3038 * Based on sqlite3RunVacuum from vacuum.c
3039 */
3055 pzErrMsg = sqlite3_mprintf("invalid number of arguments (%d) passed to sqlcipher_export", argc);
3057 }
3063 }
3073 }
3075 }
3078 /* if the name of the target is not main, but the index returned is zero
3079 there is a mismatch and we should not proceed */
3085 }
3090 db->flags &= ~(u64)(SQLITE_ForeignKeys | SQLITE_ReverseOrder | SQLITE_Defensive | SQLITE_CountRows);
3093 /* Query the schema of the main database. Create a mirror schema
3094 ** in the temporary database.
3095 */
3097 "SELECT sql "
3098 " FROM %s.sqlite_schema WHERE type='table' AND name!='sqlite_sequence'"
3099 " AND rootpage>0"
3106 "SELECT sql "
3107 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE INDEX %%' "
3114 "SELECT sql "
3115 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE UNIQUE INDEX %%'"
3121 /* Loop through the tables in the main database. For each, do
3122 ** an "INSERT INTO rekey_db.xxx SELECT * FROM main.xxx;" to copy
3123 ** the contents to the temporary database.
3124 */
3126 "SELECT 'INSERT INTO %s.' || quote(name) "
3127 "|| ' SELECT * FROM %s.' || quote(name) || ';'"
3128 "FROM %s.sqlite_schema "
3129 "WHERE type = 'table' AND name!='sqlite_sequence' "
3130 " AND rootpage>0"
3136 /* Copy over the contents of the sequence table
3137 */
3139 "SELECT 'INSERT INTO %s.' || quote(name) "
3140 "|| ' SELECT * FROM %s.' || quote(name) || ';' "
3141 "FROM %s.sqlite_schema WHERE name=='sqlite_sequence';"
3147 /* Copy the triggers, views, and virtual tables from the main database
3148 ** over to the temporary database. None of these objects has any
3149 ** associated storage, so all we have to do is copy their entries
3150 ** from the SQLITE_MASTER table.
3151 */
3153 "INSERT INTO %s.sqlite_schema "
3154 " SELECT type, name, tbl_name, rootpage, sql"
3155 " FROM %s.sqlite_schema"
3156 " WHERE type='view' OR type='trigger'"
3157 " OR (type='table' AND rootpage=0)"
3164 end_of_export:
3180 }
3181 }
3182 }
3183 #endif
3184 /* END SQLCIPHER */