| blob | 51e9e94e655ee2b685a33a65118465219ee33aab |
1 /*
2 ** SQLCipher
3 ** http://zetetic.net
4 **
5 ** Copyright (c) 2008-2024, ZETETIC LLC
6 ** All rights reserved.
7 **
8 ** Redistribution and use in source and binary forms, with or without
9 ** modification, are permitted provided that the following conditions are met:
10 ** * Redistributions of source code must retain the above copyright
11 ** notice, this list of conditions and the following disclaimer.
12 ** * Redistributions in binary form must reproduce the above copyright
13 ** notice, this list of conditions and the following disclaimer in the
14 ** documentation and/or other materials provided with the distribution.
15 ** * Neither the name of the ZETETIC LLC nor the
16 ** names of its contributors may be used to endorse or promote products
17 ** derived from this software without specific prior written permission.
18 **
19 ** THIS SOFTWARE IS PROVIDED BY ZETETIC LLC ''AS IS'' AND ANY
20 ** EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
21 ** WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
22 ** DISCLAIMED. IN NO EVENT SHALL ZETETIC LLC BE LIABLE FOR ANY
23 ** DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
24 ** (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
25 ** LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
26 ** ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 ** (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
28 ** SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 **
30 */
31 /* BEGIN SQLCIPHER */
32 #ifdef SQLITE_HAS_CODEC
39 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
40 #if defined(__ANDROID__)
41 #include <android/log.h>
42 #elif defined(__APPLE__)
43 #include <TargetConditionals.h>
44 #include <os/log.h>
45 #endif
46 #endif
48 #include <time.h>
50 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
52 #else
54 #endif
56 #ifndef OMIT_MEMLOCK
57 #if defined(__unix__) || defined(__APPLE__) || defined(_AIX)
62 #endif
63 #endif
65 #include <assert.h>
68 /* extensions defined in pager.c */
70 void sqlcipherPagerSetCodec(Pager*, void *(*)(void*,void*,Pgno,int), void (*)(void*,int,int), void (*)(void*), void *);
74 /* end extensions defined in pager.c */
76 #if !defined (SQLCIPHER_CRYPTO_CC) \
77 && !defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT) \
78 && !defined (SQLCIPHER_CRYPTO_NSS) \
79 && !defined (SQLCIPHER_CRYPTO_OPENSSL)
80 #define SQLCIPHER_CRYPTO_OPENSSL
81 #endif
83 #define FILE_HEADER_SZ 16
85 #define CIPHER_XSTR(s) CIPHER_STR(s)
86 #define CIPHER_STR(s) #s
88 #ifndef CIPHER_VERSION_NUMBER
89 #define CIPHER_VERSION_NUMBER 4.6.1
90 #endif
92 #ifndef CIPHER_VERSION_BUILD
93 #define CIPHER_VERSION_BUILD community
94 #endif
96 #define CIPHER_DECRYPT 0
97 #define CIPHER_ENCRYPT 1
99 #define CIPHER_READ_CTX 0
100 #define CIPHER_WRITE_CTX 1
101 #define CIPHER_READWRITE_CTX 2
103 #ifndef PBKDF2_ITER
104 #define PBKDF2_ITER 256000
105 #endif
107 #define SQLCIPHER_FLAG_GET(FLAG,BIT) ((FLAG & BIT) != 0)
108 #define SQLCIPHER_FLAG_SET(FLAG,BIT) FLAG |= BIT
109 #define SQLCIPHER_FLAG_UNSET(FLAG,BIT) FLAG &= ~BIT
111 /* possible flags for codec_ctx->flags */
112 #define CIPHER_FLAG_HMAC (1 << 0)
113 #define CIPHER_FLAG_LE_PGNO (1 << 1)
114 #define CIPHER_FLAG_BE_PGNO (1 << 2)
115 #define CIPHER_FLAG_KEY_USED (1 << 3)
116 #define CIPHER_FLAG_HAS_KDF_SALT (1 << 4)
119 #ifndef DEFAULT_CIPHER_FLAGS
120 #define DEFAULT_CIPHER_FLAGS CIPHER_FLAG_HMAC | CIPHER_FLAG_LE_PGNO
121 #endif
124 /* by default, sqlcipher will use a reduced number of iterations to generate
125 the HMAC key / or transform a raw cipher key
126 */
127 #ifndef FAST_PBKDF2_ITER
128 #define FAST_PBKDF2_ITER 2
129 #endif
131 /* this if a fixed random array that will be xor'd with the database salt to ensure that the
132 salt passed to the HMAC key derivation function is not the same as that used to derive
133 the encryption key. This can be overridden at compile time but it will make the resulting
134 binary incompatible with the default builds when using HMAC. A future version of SQLcipher
135 will likely allow this to be defined at runtime via pragma */
136 #ifndef HMAC_SALT_MASK
137 #define HMAC_SALT_MASK 0x3a
138 #endif
140 #ifndef CIPHER_MAX_IV_SZ
141 #define CIPHER_MAX_IV_SZ 16
142 #endif
144 #ifndef CIPHER_MAX_KEY_SZ
145 #define CIPHER_MAX_KEY_SZ 64
146 #endif
149 /*
150 ** Simple shared routines for converting hex char strings to binary data
151 */
156 }
162 }
163 }
169 }
170 }
180 }
181 }
183 }
185 /* the default implementation of SQLCipher uses a cipher_ctx
186 to keep track of read / write state separately. The following
187 struct and associated functions are defined here */
225 #ifdef SQLCIPHER_TEST
226 /* possible flags for simulating specific test conditions */
227 #define TEST_FAIL_ENCRYPT 0x01
228 #define TEST_FAIL_DECRYPT 0x02
229 #define TEST_FAIL_MIGRATE 0x04
237 /* if cipher_test_rand is not set to a non-zero value always fail (return true) */
242 }
243 #endif
269 }
272 #ifndef OMIT_MEMLOCK
273 #if defined(__unix__) || defined(__APPLE__)
280 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling mlock(%p,%lu); _SC_PAGESIZE=%lu", ptr - offset, sz + offset, pagesize);
283 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock() returned %d errno=%d", rc, errno);
284 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: mlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
285 }
286 #elif defined(_WIN32)
287 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
289 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: calling VirtualLock(%p,%d)", ptr, sz);
292 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock() returned %d LastError=%d", rc, GetLastError());
293 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_mlock: VirtualLock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
294 }
295 #endif
296 #endif
297 #endif
298 }
301 #ifndef OMIT_MEMLOCK
302 #if defined(__unix__) || defined(__APPLE__)
309 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling munlock(%p,%lu)", ptr - offset, sz + offset);
312 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: munlock(%p,%lu) returned %d errno=%d", ptr - offset, sz + offset, rc, errno);
313 }
314 #elif defined(_WIN32)
315 #if !(defined(WINAPI_FAMILY) && (WINAPI_FAMILY == WINAPI_FAMILY_PHONE_APP || WINAPI_FAMILY == WINAPI_FAMILY_APP))
320 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: calling VirtualUnlock(%p,%d)", ptr, sz);
323 /* because memory allocations may be made from the same individual page, it is possible for VirtualUnlock to be called
324 * multiple times for the same page. Subsequent calls will return an error, but this can be safely ignored (i.e. because
325 * the previous call for that page unlocked the memory already). Log an info level event only in that case. */
327 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_MEMORY, "sqlcipher_munlock: VirtualUnlock(%p,%d) returned %d LastError=%d", ptr, sz, rc, GetLastError());
328 }
329 #endif
330 #endif
331 #endif
332 }
336 }
339 }
344 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_malloc: calling sqlcipher_mlock(%p,%d)", ptr, n);
346 }
348 }
351 }
357 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_mem_free: calling sqlcipher_memset(%p,0,%d) and sqlcipher_munlock(%p, %d)", p, sz, p, sz);
360 }
362 }
380 }
382 }
385 }
386 }
390 }
393 sqlcipher_mem_malloc,
394 sqlcipher_mem_free,
395 sqlcipher_mem_realloc,
396 sqlcipher_mem_size,
397 sqlcipher_mem_roundup,
398 sqlcipher_mem_init,
399 sqlcipher_mem_shutdown,
400 0
401 };
410 }
411 }
414 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entering SQLCIPHER_MUTEX_PROVIDER");
416 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: entered SQLCIPHER_MUTEX_PROVIDER");
419 /* only free the current registerd provider if it has been initialized
420 and it isn't a pointer to the same provider passed to the function
421 (i.e. protect against a caller calling register twice for the same provider) */
423 }
425 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: leaving SQLCIPHER_MUTEX_PROVIDER");
427 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_register_provider: left SQLCIPHER_MUTEX_PROVIDER");
430 }
432 /* return a pointer to the currently registered provider. This will
433 allow an application to fetch the current registered provider and
434 make minor changes to it */
437 }
440 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entering static master mutex");
442 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: entered static master mutex");
444 /* allocate new mutexes */
449 }
450 #ifndef SQLCIPHER_OMIT_DEFAULT_LOGGING
451 /* when sqlcipher is first activated, set a default log target and level of WARN if the
452 logging settings have not yet been initialized. Use the "device log" for
453 android (logcat) or apple (console). Use stderr on all other platforms. */
456 /* set log level if it is different than the uninitalized default value of NONE */
459 }
461 /* set the default file or device if neither is already set */
463 #if defined(__ANDROID__) || defined(__APPLE_)
465 #else
467 #endif
468 }
470 }
471 #endif
472 }
474 /* check to see if there is a provider registered at this point
475 if there no provider registered at this point, register the
476 default provider */
479 #if defined (SQLCIPHER_CRYPTO_CC)
482 #elif defined (SQLCIPHER_CRYPTO_LIBTOMCRYPT)
485 #elif defined (SQLCIPHER_CRYPTO_NSS)
488 #elif defined (SQLCIPHER_CRYPTO_OPENSSL)
491 #elif defined (SQLCIPHER_CRYPTO_OSSL3)
494 #else
496 #endif
497 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: calling sqlcipher_register_provider(%p)", p);
499 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_activate: called sqlcipher_register_provider(%p)",p);
500 }
504 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: leaving static master mutex");
506 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_activate: left static master mutex");
507 }
510 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering static master mutex");
512 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered static master mutex");
514 sqlcipher_activate_count--;
515 /* if no connections are using sqlcipher, cleanup globals */
517 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entering SQLCIPHER_MUTEX_PROVIDER");
519 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: entered SQLCIPHER_MUTEX_PROVIDER");
524 }
526 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving SQLCIPHER_MUTEX_PROVIDER");
528 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left SQLCIPHER_MUTEX_PROVIDER");
530 /* last connection closed, free mutexes */
535 }
536 }
538 }
540 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: leaving static master mutex");
542 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_deactivate: left static master mutex");
543 }
545 /* constant time memset using volitile to avoid having the memset
546 optimized out by the compiler.
547 Note: As suggested by Joachim Schipper (joachim.schipper@fox-it.com)
548 */
555 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_memset: setting %p[0-%llu]=%d)", a, len, value);
558 }
561 }
563 /* constant time memory check tests every position of a memory segement
564 matches a single value (i.e. the memory is all zeros)
565 returns 0 if match, 1 of no match */
572 }
575 }
577 /* constant time memory comparison routine.
578 returns 0 if match, 1 if no match */
585 }
588 }
590 /**
591 * Free and wipe memory. Uses SQLites internal sqlite3_free so that memory
592 * can be countend and memory leak detection works in the test suite.
593 * If ptr is not null memory will be freed.
594 * If sz is greater than zero, the memory will be overwritten with zero before it is freed
595 * If sz is > 0, and not compiled with OMIT_MEMLOCK, system will attempt to unlock the
596 * memory segment so it can be paged
597 */
599 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_free: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
603 }
605 /**
606 * allocate memory. Uses sqlite's internall malloc wrapper so memory can be
607 * reference counted and leak detection works. Unless compiled with OMIT_MEMLOCK
608 * attempts to lock the memory pages so sensitive information won't be swapped
609 */
612 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlite3Malloc(%llu)", sz);
614 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MEMORY, "sqlcipher_malloc: calling sqlcipher_memset(%p,0,%llu)", ptr, sz);
618 }
621 #ifdef CIPHER_VERSION_QUALIFIER
622 char *version = sqlite3_mprintf("%s %s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_QUALIFIER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
623 #else
624 char *version = sqlite3_mprintf("%s %s", CIPHER_XSTR(CIPHER_VERSION_NUMBER), CIPHER_XSTR(CIPHER_VERSION_BUILD));
625 #endif
627 }
629 /**
630 * Initialize new cipher_ctx struct. This function will allocate memory
631 * for the cipher context and for the key
632 *
633 * returns SQLITE_OK if initialization was successful
634 * returns SQLITE_NOMEM if an error occured allocating memory
635 */
638 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating context");
643 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating key");
646 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_cipher_ctx_init: allocating hmac_key");
653 }
655 /**
656 * Free and wipe memory associated with a cipher_ctx
657 */
666 }
677 /* calculate the amount of reserve needed in even increments of the cipher block size */
681 }
683 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_reserve_setup: base_reserve=%d block_sz=%d md_size=%d reserve=%d",
689 }
691 /**
692 * Compare one cipher_ctx to another.
693 *
694 * returns 0 if all the parameters (except the derived key data) are the same
695 * returns 1 otherwise
696 */
700 && (
705 ));
707 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_cmp: c1=%p c2=%p sqlcipher_memcmp(c1->pass, c2_pass)=%d are_equal=%d",
714 c1->pass_sz
715 ),
716 are_equal
717 );
720 }
722 /**
723 * Copy one cipher_ctx to another. For instance, assuming that read_ctx is a
724 * fully initialized context, you could copy it to write_ctx and all yet data
725 * and pass information across
726 *
727 * returns SQLITE_OK if initialization was successful
728 * returns SQLITE_NOMEM if an error occured allocating memory
729 */
734 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_copy: target=%p, source=%p", target, source);
749 }
754 }
756 }
758 /**
759 * Set the keyspec for the cipher_ctx
760 *
761 * returns SQLITE_OK if assignment was successfull
762 * returns SQLITE_NOMEM if an error occured allocating memory
763 */
764 static int sqlcipher_cipher_ctx_set_keyspec(codec_ctx *ctx, cipher_ctx *c_ctx, const unsigned char *key) {
765 /* free, zero existing pointers and size */
778 }
783 }
785 /**
786 * Set the passphrase for the cipher_ctx
787 *
788 * returns SQLITE_OK if assignment was successfull
789 * returns SQLITE_NOMEM if an error occured allocating memory
790 */
792 /* free, zero existing pointers and size */
802 }
804 }
806 static int sqlcipher_codec_ctx_set_pass(codec_ctx *ctx, const void *zKey, int nKey, int for_ctx) {
811 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_set_pass", rc);
813 }
818 if((rc = sqlcipher_cipher_ctx_copy(ctx, for_ctx ? ctx->read_ctx : ctx->write_ctx, c_ctx)) != SQLITE_OK) {
819 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_pass: error %d from sqlcipher_cipher_ctx_copy", rc);
821 }
822 }
825 }
831 }
837 }
839 /* set the global default flag for HMAC */
843 }
845 /* set the codec flag for whether this individual database should be using hmac */
851 }
854 }
856 /* the length of plaintext header size must be:
857 * 1. greater than or equal to zero
858 * 2. a multiple of the cipher block size
859 * 3. less than the usable size of the first database page
860 */
862 if(size >= 0 && ctx->block_sz > 0 && (size % ctx->block_sz) == 0 && size < (ctx->page_sz - ctx->reserve_sz)) {
865 }
867 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_plaintext_header_size: attempt to set invalid plantext_header_size %d", size);
869 }
874 }
879 }
882 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_error %d", error);
885 }
892 }
894 /* read salt from header, if present, otherwise generate a new random salt */
895 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: obtaining salt");
896 if(fd == NULL || fd->pMethods == 0 || sqlite3OsRead(fd, ctx->kdf_salt, ctx->kdf_salt_sz, 0) != SQLITE_OK) {
897 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: unable to read salt from file header, generating random");
899 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init_kdf_salt: error retrieving random bytes from provider");
901 }
902 }
905 }
912 }
913 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_set_kdf_salt: attempt to set salt of incorrect size %d", size);
915 }
921 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_get_kdf_salt: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
922 }
923 }
927 }
931 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "cipher_page_size not a power of 2 and between 512 and 65536 inclusive");
933 }
934 /* attempt to free the existing page buffer */
938 /* pre-allocate a page buffer of PageSize bytes. This will
939 be used as a persistent buffer for encryption and decryption
940 operations to avoid overhead of multiple memory allocations*/
945 }
947 static int sqlcipher_codec_ctx_init(codec_ctx **iCtx, Db *pDb, Pager *pPager, const void *zKey, int nKey) {
951 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating context");
960 /* allocate space for salt data. Then read the first 16 bytes
961 directly off the database file. This is the salt for the
962 key derivation function. If we get a short read allocate
963 a new random salt value */
964 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating kdf_salt");
969 /* allocate space for separate hmac salt data. We want the
970 HMAC derivation salt to be different than the encryption
971 key derivation salt */
972 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating hmac_kdf_salt");
976 /* setup default flags */
979 /* setup the crypto provider */
980 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_MEMORY, "sqlcipher_codec_ctx_init: allocating provider");
984 /* make a copy of the provider to be used for the duration of the context */
985 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entering SQLCIPHER_MUTEX_PROVIDER");
987 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: entered SQLCIPHER_MUTEX_PROVIDER");
991 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: leaving SQLCIPHER_MUTEX_PROVIDER");
993 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipher_codec_ctx_init: left SQLCIPHER_MUTEX_PROVIDER");
996 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from ctx_init", rc);
998 }
1004 /* establic the size for a hex-formated key specification, containing the
1005 raw encryption key and the salt used to generate it format. will be x'hexkey...hexsalt'
1006 so oversize by 3 bytes */
1009 /*
1010 Always overwrite page size and set to the default because the first page of the database
1011 in encrypted and thus sqlite can't effectively determine the pagesize. this causes an issue in
1012 cases where bytes 16 & 17 of the page header are a power of 2 as reported by John Lehman
1013 */
1015 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d returned from sqlcipher_codec_ctx_set_pagesize with %d", rc, default_page_size);
1017 }
1019 /* establish settings for the KDF iterations and fast (HMAC) KDF iterations */
1021 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting default_kdf_iter %d", rc, default_kdf_iter);
1023 }
1026 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting fast_kdf_iter to %d", rc, FAST_PBKDF2_ITER);
1028 }
1030 /* set the default HMAC and KDF algorithms which will determine the reserve size */
1032 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_hmac_algorithm with %d", rc, default_hmac_algorithm);
1034 }
1036 /* Note that use_hmac is a special case that requires recalculation of page size
1037 so we call set_use_hmac to perform setup */
1038 if((rc = sqlcipher_codec_ctx_set_use_hmac(ctx, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC))) != SQLITE_OK) {
1039 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting use_hmac %d", rc, SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
1041 }
1044 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_kdf_algorithm with %d", rc, default_kdf_algorithm);
1046 }
1048 /* setup the default plaintext header size */
1049 if((rc = sqlcipher_codec_ctx_set_plaintext_header_size(ctx, default_plaintext_header_size)) != SQLITE_OK) {
1050 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting sqlcipher_codec_ctx_set_plaintext_header_size with %d", rc, default_plaintext_header_size);
1052 }
1054 /* initialize the read and write sub-contexts. this must happen after key_sz is established */
1056 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing read_ctx", rc);
1058 }
1061 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d initializing write_ctx", rc);
1063 }
1065 /* set the key material on one of the sub cipher contexts and sync them up */
1067 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d setting pass key", rc);
1069 }
1072 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_init: error %d copying write_ctx to read_ctx", rc);
1074 }
1077 }
1079 /**
1080 * Free and wipe memory associated with a cipher_ctx, including the allocated
1081 * read_ctx and write_ctx.
1082 */
1093 }
1098 }
1100 /** convert a 32bit unsigned integer to little endian byte ordering */
1106 }
1108 static int sqlcipher_page_hmac(codec_ctx *ctx, cipher_ctx *c_ctx, Pgno pgno, unsigned char *in, int in_sz, unsigned char *out) {
1110 /* we may convert page number to consistent representation before calculating MAC for
1111 compatibility across big-endian and little-endian platforms.
1113 Note: The public release of sqlcipher 2.0.0 to 2.0.6 had a bug where the bytes of pgno
1114 were used directly in the MAC. SQLCipher convert's to little endian by default to preserve
1115 backwards compatibility on the most popular platforms, but can optionally be configured
1116 to use either big endian or native byte ordering via pragma. */
1118 if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_LE_PGNO)) { /* compute hmac using little endian pgno*/
1120 } else if(SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_BE_PGNO)) { /* compute hmac using big endian pgno */
1124 }
1126 /* include the encrypted page data, initialization vector, and page number in HMAC. This will
1127 prevent both tampering with the ciphertext, manipulation of the IV, or resequencing otherwise
1128 valid pages out of order in a database */
1134 }
1136 /*
1137 * ctx - codec context
1138 * pgno - page number in database
1139 * size - size in bytes of input and output buffers
1140 * mode - 1 to encrypt, 0 to decrypt
1141 * in - pointer to input bytes
1142 * out - pouter to output bytes
1143 */
1144 static int sqlcipher_page_cipher(codec_ctx *ctx, int for_ctx, Pgno pgno, int mode, int page_sz, unsigned char *in, unsigned char *out) {
1149 /* calculate some required positions into various buffers */
1150 size = page_sz - ctx->reserve_sz; /* adjust size to useable size and memset reserve at end of page */
1154 /* hmac will be written immediately after the initialization vector. the remainder of the page reserve will contain
1155 random bytes. note, these pointers are only valid when using hmac */
1158 out_start = out; /* note the original position of the output buffer pointer, as out will be rewritten during encryption */
1160 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: pgno=%d, mode=%d, size=%d", pgno, mode, size);
1163 /* the key size should never be zero. If it is, error out. */
1165 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: error possible context corruption, key_sz is zero for pgno=%d", pgno);
1167 }
1170 /* start at front of the reserve block, write random data to the end */
1174 }
1178 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on decrypt failed for pgno=%d", pgno);
1180 }
1182 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: comparing hmac on in=%p out=%p hmac_sz=%d", hmac_in, hmac_out, ctx->hmac_sz);
1184 if(sqlite3BtreeGetAutoVacuum(ctx->pBt) != BTREE_AUTOVACUUM_NONE && sqlcipher_ismemset(in, 0, page_sz) == 0) {
1185 /* first check if the entire contents of the page is zeros. If so, this page
1186 resulted from a short read (i.e. sqlite attempted to pull a page after the end of the file. these
1187 short read failures must be ignored for autovaccum mode to work so wipe the output buffer
1188 and return SQLITE_OK to skip the decryption step. */
1189 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: zeroed page (short read) for pgno %d with autovacuum enabled", pgno);
1193 /* if the page memory is not all zeros, it means the there was data and a hmac on the page.
1194 since the check failed, the page was either tampered with or corrupted. wipe the output buffer,
1195 and return SQLITE_ERROR to the caller */
1196 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac check failed for pgno=%d", pgno);
1198 }
1199 }
1200 }
1202 if(ctx->provider->cipher(ctx->provider_ctx, mode, c_ctx->key, ctx->key_sz, iv_out, in, size, out) != SQLITE_OK) {
1203 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: cipher operation mode=%d failed for pgno=%d", mode, pgno);
1205 };
1208 if(sqlcipher_page_hmac(ctx, c_ctx, pgno, out_start, size + ctx->iv_sz, hmac_out) != SQLITE_OK) {
1209 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_page_cipher: hmac operation on encrypt failed for pgno=%d", pgno);
1211 };
1212 }
1217 error:
1220 }
1222 /**
1223 * Derive an encryption key for a cipher contex key based on the raw password.
1224 *
1225 * If the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1226 * the key (i.e 64 hex chars for a 256 bit key) then the key data will be used directly.
1228 * Else, if the raw key data is formated as x'hex' and there are exactly enough hex chars to fill
1229 * the key and the salt (i.e 92 hex chars for a 256 bit key and 16 byte salt) then it will be unpacked
1230 * as the key followed by the salt.
1231 *
1232 * Otherwise, a key data will be derived using PBKDF2
1233 *
1234 * returns SQLITE_OK if initialization was successful
1235 * returns SQLITE_ERROR if the key could't be derived (for instance if pass is NULL or pass_sz is 0)
1236 */
1239 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: ctx->kdf_salt_sz=%d ctx->kdf_iter=%d ctx->fast_kdf_iter=%d ctx->key_sz=%d",
1242 if(c_ctx->pass && c_ctx->pass_sz) { /* if key material is present on the context for derivation */
1244 /* if necessary, initialize the salt from the header or random source */
1247 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_codec_ctx_init_kdf_salt", rc);
1249 }
1250 }
1252 if (c_ctx->pass_sz == ((ctx->key_sz * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, ctx->key_sz * 2)) {
1255 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1257 } else if (c_ctx->pass_sz == (((ctx->key_sz + ctx->kdf_salt_sz) * 2) + 3) && sqlite3StrNICmp((const char *)c_ctx->pass ,"x'", 2) == 0 && cipher_isHex(c_ctx->pass + 2, (ctx->key_sz + ctx->kdf_salt_sz) * 2)) {
1259 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: using raw key from hex");
1263 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: deriving key using full PBKDF2 with %d iterations", ctx->kdf_iter);
1267 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating encryption key");
1269 }
1270 }
1272 /* set the context "keyspec" containing the hex-formatted key and salt to be used when attaching databases */
1274 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error %d from sqlcipher_cipher_ctx_set_keyspec", rc);
1276 }
1278 /* if this context is setup to use hmac checks, generate a seperate and different
1279 key for HMAC. In this case, we use the output of the previous KDF as the input to
1280 this KDF run. This ensures a distinct but predictable HMAC key. */
1284 /* start by copying the kdf key into the hmac salt slot
1285 then XOR it with the fixed hmac salt defined at compile time
1286 this ensures that the salt passed in to derive the hmac key, while
1287 easy to derive and publically known, is not the same as the salt used
1288 to generate the encryption key */
1292 }
1294 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "cipher_ctx_key_derive: deriving hmac key from encryption key using PBKDF2 with %d iterations",
1301 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: error occurred from provider kdf generating HMAC key");
1303 }
1304 }
1308 }
1309 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_cipher_ctx_key_derive: key material is not present on the context for key derivation");
1311 }
1314 /* derive key on first use if necessary */
1317 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving read_ctx key");
1319 }
1320 }
1324 /* the relevant parameters are the same, just copy read key */
1326 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred copying read_ctx to write_ctx");
1328 }
1331 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_key_derive: error occurred deriving write_ctx key");
1333 }
1334 }
1335 }
1337 /* wipe and free passphrase after key derivation */
1341 }
1344 }
1351 }
1352 }
1354 static int sqlcipher_check_connection(const char *filename, char *key, int key_sz, char *sql, int *user_version, char** journal_mode) {
1370 /* start by querying the user version.
1371 this will fail if the key is incorrect */
1380 }
1391 }
1393 /* cleanup will finalize open statement */
1395 cleanup:
1399 }
1407 i64 file_sz;
1417 }
1420 sqlite3VdbeAddOp4(v, OP_String8, 0, 1, 0, "HMAC is not enabled, unable to integrity check", P4_TRANSIENT);
1423 }
1429 }
1439 /* skip integrity check on PAGER_SJ_PGNO since it will have no valid content */
1447 }
1452 result = sqlite3_mprintf("error reading %d bytes from file page %d at offset %d", read_sz, page, offset);
1455 } else if(sqlcipher_page_hmac(ctx, ctx->read_ctx, page, ctx->buffer, payload_sz, hmac_out) != SQLITE_OK) {
1463 }
1464 }
1467 result = sqlite3_mprintf("page %d has an invalid size of %lld bytes (expected %d bytes)", page, file_sz - ((file_sz / ctx->page_sz) * ctx->page_sz), ctx->page_sz);
1470 }
1472 cleanup:
1475 }
1482 char *set_user_version = NULL, *pass = NULL, *attach_command = NULL, *migrated_db_filename = NULL, *keyspec = NULL, *temp = NULL, *journal_mode = NULL, *set_journal_mode = NULL, *pragma_compat = NULL;
1485 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1488 #endif
1494 /* pull the provided password / key material off the current codec context */
1500 /* Version 4 - current, no upgrade required, so exit immediately */
1503 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: no upgrade required - exiting");
1505 }
1509 rc = sqlcipher_check_connection(db_filename, pass, pass_sz, pragma_compat, &user_version, &journal_mode);
1511 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: version %d format found", i);
1513 }
1516 }
1518 /* if we exit the loop normally we failed to determine the version, this is an error */
1519 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: unable to determine format version for upgrade: this may indicate custom settings were used ");
1522 migrate:
1525 /* overallocate migrated_db_filename, because sqlite3OsOpen will read past the null terminator
1526 * to determine whether the filename was URI formatted */
1531 attach_command = sqlite3_mprintf("ATTACH DATABASE '%s' as migrate;", migrated_db_filename, pass);
1536 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set compatibility mode failed, error code %d", rc);
1538 }
1540 /* force journal mode to DELETE, we will set it back later if different */
1543 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: force journal mode DELETE failed, error code %d", rc);
1545 }
1549 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: attach failed, error code %d", rc);
1551 }
1555 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: keying attached database failed, error code %d", rc);
1557 }
1561 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: sqlcipher_export failed, error code %d", rc);
1563 }
1565 #ifdef SQLCIPHER_TEST
1568 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: simulated migrate failure, error code %d", rc);
1570 }
1571 #endif
1575 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: set user version failed, error code %d", rc);
1577 }
1580 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate from within a transaction");
1582 }
1584 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: cannot migrate - SQL statements in progress");
1586 }
1593 /* unset the BTS_PAGESIZE_FIXED flag to avoid SQLITE_READONLY */
1597 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to set btree page size to %d res %d rc %d", default_page_size, nRes, rc);
1599 }
1611 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1612 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing windows MoveFileExA");
1616 w_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) db_filename, -1, (const LPWSTR) w_db_filename, w_db_filename_sz);
1618 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, NULL, 0);
1620 w_migrated_db_filename_sz = MultiByteToWideChar(CP_UTF8, 0, (LPCCH) migrated_db_filename, -1, (const LPWSTR) w_migrated_db_filename, w_migrated_db_filename_sz);
1624 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %d", rc);
1626 }
1627 #else
1628 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: performing POSIX rename");
1630 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: error occurred while renaming migration files %s to %s: %d", migrated_db_filename, db_filename, rc);
1632 }
1633 #endif
1634 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: renamed migration database %s to main database %s: %d", migrated_db_filename, db_filename, rc);
1636 rc = sqlite3OsOpen(db->pVfs, migrated_db_filename, srcfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1638 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen migration database %s: %d", migrated_db_filename, rc);
1640 }
1642 rc = sqlite3OsOpen(db->pVfs, db_filename, destfile, SQLITE_OPEN_READWRITE|SQLITE_OPEN_CREATE|SQLITE_OPEN_MAIN_DB, &oflags);
1644 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to reopen main database %s: %d", db_filename, rc);
1646 }
1649 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset pager");
1653 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: DETACH DATABASE migrate failed: %d", rc);
1654 }
1657 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: reset all schemas");
1662 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to re-set journal mode via %s: %d", set_journal_mode, rc);
1664 }
1668 handle_error:
1669 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: an error occurred attempting to migrate the database - last error %d", rc);
1671 cleanup:
1675 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_ctx_migrate: failed to delete migration database %s: %d", migrated_db_filename, del_rc);
1676 }
1677 }
1681 if(migrated_db_filename) sqlcipher_free(migrated_db_filename, sqlite3Strlen30(migrated_db_filename));
1686 #if defined(_WIN32) || defined(SQLITE_OS_WINRT)
1689 #endif
1691 }
1704 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: using raw random blob from hex");
1711 }
1712 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_add_random: attemt to add random with invalid format");
1714 }
1716 #if !defined(SQLITE_OMIT_TRACE)
1721 static int sqlcipher_profile_callback(unsigned int trace, void *file, void *stmt, void *run_time){
1725 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1726 #if defined(__ANDROID__)
1727 __android_log_print(ANDROID_LOG_DEBUG, "sqlcipher", SQLCIPHER_PROFILE_FMT, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1728 #elif defined(__APPLE__)
1729 os_log(OS_LOG_DEFAULT, SQLCIPHER_PROFILE_FMT_OSLOG, elapsed, sqlite3_sql((sqlite3_stmt*)stmt));
1730 #endif
1731 #endif
1734 }
1736 }
1737 #endif
1740 #if defined(SQLITE_OMIT_TRACE)
1742 #else
1751 }else if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1752 f = NULL; /* file pointer will be NULL indicating the device target (i.e. logcat or oslog). We will accept logcat for backwards compatibility */
1754 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1756 #else
1758 #endif
1759 }
1761 }
1763 #endif
1764 }
1780 }
1782 }
1796 }
1798 }
1801 #ifndef SQLCIPHER_OMIT_LOG
1802 /* constants from https://github.com/Alexpux/mingw-w64/blob/master/mingw-w64-crt/misc/gettimeofday.c */
1804 #define HECTONANOSEC_PER_SEC 10000000ull
1805 #define MAX_LOG_LEN 8192
1812 #ifdef CODEC_DEBUG
1813 #if defined(SQLCIPHER_OMIT_LOG_DEVICE) || (!defined(__ANDROID__) && !defined(__APPLE__))
1817 #else
1818 #if defined(__ANDROID__)
1821 #elif defined(__APPLE__)
1825 #endif
1826 #endif
1827 #endif
1829 level > sqlcipher_log_level /* log level is higher, e.g. level filter is at ERROR but this message is DEBUG */
1832 ) {
1833 /* skip logging this message */
1835 }
1837 sqlite3_snprintf(MAX_LOG_LEN, formatted, "%s %s ", sqlcipher_get_log_level_str(level), sqlcipher_get_log_source_str(source));
1841 #if !defined(SQLCIPHER_OMIT_LOG_DEVICE)
1843 #if defined(__ANDROID__)
1846 #elif defined(__APPLE__)
1849 #endif
1850 }
1851 #endif
1858 #ifdef _WIN32
1859 SYSTEMTIME st;
1860 FILETIME ft;
1866 #else
1872 #endif
1876 }
1877 }
1879 end:
1881 }
1882 #endif
1885 #ifdef SQLCIPHER_OMIT_LOG
1887 #else
1888 /* close open trace file if it is not stdout or stderr, then
1889 reset trace settings */
1890 if(sqlcipher_log_file != NULL && sqlcipher_log_file != stdout && sqlcipher_log_file != stderr) {
1892 }
1896 if(sqlite3_stricmp(destination, "logcat") == 0 || sqlite3_stricmp(destination, "device") == 0){
1897 /* use the appropriate device log. accept logcat for backwards compatibility */
1904 #if !defined(SQLCIPHER_PROFILE_USE_FOPEN) && (defined(_WIN32) && (__STDC_VERSION__ > 199901L) || defined(SQLITE_OS_WINRT))
1906 #else
1908 #endif
1909 }
1910 sqlcipher_log(SQLCIPHER_LOG_INFO, SQLCIPHER_LOG_CORE, "sqlcipher_set_log: set log to %s", destination);
1912 #endif
1913 }
1915 static void sqlcipher_vdbe_return_string(Parse *pParse, const char *zLabel, const char *value, int value_type){
1921 }
1926 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize() size=%d reserve=%d", ctx->page_sz, ctx->reserve_sz);
1928 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entering database mutex %p", db->mutex);
1930 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: entered database mutex %p", db->mutex);
1933 /* before forcing the page size we need to unset the BTS_PAGESIZE_FIXED flag, else
1934 sqliteBtreeSetPageSize will block the change */
1938 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize returned %d", rc);
1940 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: leaving database mutex %p", db->mutex);
1942 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "codec_set_btree_to_codec_pagesize: left database mutex %p", db->mutex);
1945 }
1949 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "codec_set_pass_key: db=%p nDb=%d for_ctx=%d", db, nDb, for_ctx);
1956 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: error ocurred fetching codec from pager on db %d", nDb);
1958 }
1959 }
1960 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "codec_set_pass_key: no btree present on db %d", nDb);
1962 }
1964 int sqlcipher_codec_pragma(sqlite3* db, int iDb, Parse *pParse, const char *zLeft, const char *zRight) {
1971 }
1974 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: db=%p iDb=%d pParse=%p zLeft=%s zRight=%s ctx=%p", db, iDb, pParse, zLeft, zRight, ctx);
1975 }
1977 #ifdef SQLCIPHER_TEST
1988 }
1989 }
2001 }
2002 }
2015 }
2017 #endif
2022 }
2030 }
2036 }
2037 }
2044 char *add_random_status = sqlite3_mprintf("%d", sqlcipher_codec_add_random(ctx, zRight, sqlite3Strlen30(zRight)));
2046 }
2054 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipher_codec_pragma: error occurred during cipher_migrate: %d", status);
2056 }
2057 }
2063 }
2069 }
2083 }
2084 }
2097 }
2106 }
2107 }
2119 }
2120 }
2128 /* PRAGMA cipher_page_size will alter the size of the database pages while ensuring that the
2129 required reserve space is allocated at the end of each page. This will also override the
2130 standard SQLite PRAGMA page_size behavior if a codec context is attached to the database handle.
2131 If PRAGMA page_size is invoked but a codec context is not attached (i.e. dealing with a standard
2132 unencrypted database) then return early and allow the standard PRAGMA page_size logic to apply. */
2143 }
2145 return 0; /* return early so that the PragTyp_PAGE_SIZE case logic in pragma.c will take effect */
2146 }
2154 }
2160 char *default_use_hmac = sqlite3_mprintf("%d", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2162 }
2169 /* since the use of hmac has changed, the page size may also change */
2175 }
2176 }
2182 /* clear both pgno endian flags */
2192 }
2203 }
2204 }
2205 }
2216 }
2222 }
2223 }
2229 /* deliberately ignore result code, if size is invalid it will be set to -1
2230 and trip the error later in the codec */
2235 }
2236 }
2243 sqlcipher_vdbe_return_string(pParse, "cipher_default_plaintext_header_size", size, P4_DYNAMIC);
2244 }
2249 if (sqlite3StrNICmp(zRight ,"x'", 2) == 0 && sqlite3Strlen30(zRight) == (FILE_HEADER_SZ*2)+3) {
2255 }
2265 }
2266 }
2267 }
2279 }
2286 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2288 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2290 sqlcipher_vdbe_return_string(pParse, "cipher_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2291 }
2292 }
2293 }
2304 }
2307 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA1_LABEL, P4_TRANSIENT);
2309 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA256_LABEL, P4_TRANSIENT);
2311 sqlcipher_vdbe_return_string(pParse, "cipher_default_hmac_algorithm", SQLCIPHER_HMAC_SHA512_LABEL, P4_TRANSIENT);
2312 }
2313 }
2325 }
2329 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2331 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2333 sqlcipher_vdbe_return_string(pParse, "cipher_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2334 }
2335 }
2336 }
2347 }
2350 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL, P4_TRANSIENT);
2352 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL, P4_TRANSIENT);
2354 sqlcipher_vdbe_return_string(pParse, "cipher_default_kdf_algorithm", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL, P4_TRANSIENT);
2355 }
2356 }
2415 }
2419 }
2420 }
2457 }
2458 }
2463 /* memory security can only be enabled, not disabled */
2466 }
2468 /* only report that memory security is enabled if pragma cipher_memory_security is ON and
2469 SQLCipher's allocator/deallocator was run at least one time */
2476 }
2489 pragma = sqlite3_mprintf("PRAGMA cipher_use_hmac = %d;", SQLCIPHER_FLAG_GET(ctx->flags, CIPHER_FLAG_HMAC));
2492 pragma = sqlite3_mprintf("PRAGMA cipher_plaintext_header_size = %d;", ctx->plaintext_header_sz);
2503 }
2509 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2511 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2513 pragma = sqlite3_mprintf("PRAGMA cipher_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2514 }
2517 }
2528 pragma = sqlite3_mprintf("PRAGMA cipher_default_use_hmac = %d;", SQLCIPHER_FLAG_GET(default_flags, CIPHER_FLAG_HMAC));
2531 pragma = sqlite3_mprintf("PRAGMA cipher_default_plaintext_header_size = %d;", default_plaintext_header_size);
2536 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA1_LABEL);
2538 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA256_LABEL);
2540 pragma = sqlite3_mprintf("PRAGMA cipher_default_hmac_algorithm = %s;", SQLCIPHER_HMAC_SHA512_LABEL);
2541 }
2546 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA1_LABEL);
2548 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA256_LABEL);
2550 pragma = sqlite3_mprintf("PRAGMA cipher_default_kdf_algorithm = %s;", SQLCIPHER_PBKDF2_HMAC_SHA512_LABEL);
2551 }
2557 }
2567 }
2568 sqlcipher_vdbe_return_string(pParse, "cipher_log_level", sqlcipher_get_log_level_str(sqlcipher_log_level), P4_TRANSIENT);
2579 }
2580 sqlcipher_vdbe_return_string(pParse, "cipher_log_source", sqlcipher_get_log_source_str(sqlcipher_log_source), P4_TRANSIENT);
2587 }
2589 }
2591 /* these constants are used internally within SQLite's pager.c to differentiate between
2592 operations on the main database or journal pages. This is important in the context
2593 of a rekey operations, where the journal must be written using the original key
2594 material (to allow a transactional rollback), while the new database pages are being
2595 written with the new key material*/
2596 #define CODEC_READ_OP 3
2597 #define CODEC_WRITE_OP 6
2598 #define CODEC_JOURNAL_OP 7
2600 /*
2601 * sqlite3Codec can be called in multiple modes.
2602 * encrypt mode - expected to return a pointer to the
2603 * encrypted data without altering pData.
2604 * decrypt mode - expected to return a pointer to pData, with
2605 * the data decrypted in the input buffer
2606 */
2613 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: pgno=%d, mode=%d, ctx->page_sz=%d", pgno, mode, ctx->page_sz);
2615 /* call to derive keys if not present yet */
2617 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error occurred during key derivation: %d", rc);
2620 }
2622 /* if the plaintext_header_size is negative that means an invalid size was set via
2623 PRAGMA. We can't set the error state on the pager at that point because the pager
2624 may not be open yet. However, this is a fatal error state, so abort the codec */
2626 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error invalid ctx->plaintext_header_sz: %d", ctx->plaintext_header_sz);
2629 }
2635 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3Codec: switch mode=%d offset=%d", mode, offset);
2641 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_DECRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2642 #ifdef SQLCIPHER_TEST
2645 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating decryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2646 }
2647 #endif
2649 /* failure to decrypt a page is considered a permanent error and will render the pager unusable
2650 in order to prevent inconsistent data being loaded into page cache */
2651 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error decrypting page %d data: %d", pgno, rc);
2656 }
2661 case CODEC_WRITE_OP: /* encrypt database page, operate on write context and fall through to case 7, so the write context is used*/
2664 case CODEC_JOURNAL_OP: /* encrypt journal page, operate on read context use to get the original page data from the database */
2667 /* retrieve the kdf salt */
2669 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error retrieving salt: %d", rc);
2672 }
2674 }
2675 rc = sqlcipher_page_cipher(ctx, cctx, pgno, CIPHER_ENCRYPT, ctx->page_sz - offset, pData + offset, (unsigned char*)ctx->buffer + offset);
2676 #ifdef SQLCIPHER_TEST
2679 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlite3Codec: simulating encryption failure for pgno=%d, mode=%d, ctx->page_sz=%d\n", pgno, mode, ctx->page_sz);
2680 }
2681 #endif
2683 /* failure to encrypt a page is considered a permanent error and will render the pager unusable
2684 in order to prevent corrupted pages from being written to the main databased when using WAL */
2685 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error encrypting page %d data: %d", pgno, rc);
2689 }
2695 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3Codec: error unsupported codec mode %d", mode);
2699 }
2700 }
2707 }
2712 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: db=%p, nDb=%d", db, nDb);
2723 /* there is already a codec attached to this database, so we should not proceed */
2724 sqlcipher_log(SQLCIPHER_LOG_WARN, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: no codec attached to db");
2726 }
2728 /* check if the sqlite3_file is open, and if not force handle to NULL */
2731 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_activate()");
2734 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entering database mutex %p", db->mutex);
2736 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: entered database mutex %p", db->mutex);
2738 /* point the internal codec argument against the contet to be prepared */
2739 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipher_codec_ctx_init()");
2743 /* initialization failed, do not attach potentially corrupted context */
2744 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: context initialization failed, forcing error state with rc=%d", rc);
2745 /* force an error at the pager level, such that even the upstream caller ignores the return code
2746 the pager will be in an error state and will process no further operations */
2749 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p (early return on rc=%d)", db->mutex, rc);
2751 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p (early return on rc=%d)", db->mutex, rc);
2753 }
2755 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlcipherPagerSetCodec()");
2756 sqlcipherPagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
2758 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling codec_set_btree_to_codec_pagesize()");
2761 /* force secure delete. This has the benefit of wiping internal data when deleted
2762 and also ensures that all pages are written to disk (i.e. not skipped by
2763 sqlite3PagerDontWrite optimizations) */
2764 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSecureDelete()");
2767 /* if fd is null, then this is an in-memory database and
2768 we dont' want to overwrite the AutoVacuum settings
2769 if not null, then set to the default */
2771 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecAttach: calling sqlite3BtreeSetAutoVacuum()");
2773 }
2774 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: leaving database mutex %p", db->mutex);
2776 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlcipherCodecAttach: left database mutex %p", db->mutex);
2777 }
2779 }
2785 }
2790 }
2791 }
2793 }
2796 /* do nothing, security enhancements are always active */
2797 }
2802 }
2805 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_key_v2: db=%p zDb=%s", db, zDb);
2806 /* attach key if db and pKey are not null and nKey is > 0 */
2810 }
2813 }
2818 }
2820 /* sqlite3_rekey_v2
2821 ** Given a database, this will reencrypt the database using a new key.
2822 ** There is only one possible modes of operation - to encrypt a database
2823 ** that is already encrpyted. If the database is not already encrypted
2824 ** this should do nothing
2825 ** The proposed logic for this function follows:
2826 ** 1. Determine if the database is already encryptped
2827 ** 2. If there is NOT already a key present do nothing
2828 ** 3. If there is a key present, re-encrypt the database with the new key
2829 */
2831 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: db=%p zDb=%s", db, zDb);
2835 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: database zDb=%p db_index:%d", zDb, db_index);
2839 Pgno pgno;
2846 /* there was no codec attached to this database, so this should do nothing! */
2847 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no codec attached to db %s: rekey can't be used on an unencrypted database", zDb);
2849 }
2851 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entering database mutex %p", db->mutex);
2853 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: entered database mutex %p", db->mutex);
2857 /* do stuff here to rewrite the database
2858 ** 1. Create a transaction on the database
2859 ** 2. Iterate through each page, reading it and then writing it.
2860 ** 3. If that goes ok then commit and put ctx->rekey into ctx->key
2861 ** note: don't deallocate rekey since it may be used in a subsequent iteration
2862 */
2865 for(pgno = 1; rc == SQLITE_OK && pgno <= (unsigned int)page_count; pgno++) { /* pgno's start at 1 see pager.c:pagerAcquire */
2866 if(!sqlite3pager_is_sj_pgno(pPager, pgno)) { /* skip this page (see pager.c:pagerAcquire for reasoning) */
2873 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred writing page %d", rc, pgno);
2874 }
2876 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: error %d occurred reading page %d", rc, pgno);
2877 }
2878 }
2879 }
2881 /* if commit was successful commit and copy the rekey data to current key, else rollback to release locks */
2889 }
2891 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: leaving database mutex %p", db->mutex);
2893 sqlcipher_log(SQLCIPHER_LOG_TRACE, SQLCIPHER_LOG_MUTEX, "sqlite3_rekey_v2: left database mutex %p", db->mutex);
2894 }
2896 }
2897 sqlcipher_log(SQLCIPHER_LOG_ERROR, SQLCIPHER_LOG_CORE, "sqlite3_rekey_v2: no key provided for db %s: rekey can't be used to decrypt an encrypted database", zDb);
2899 }
2903 sqlcipher_log(SQLCIPHER_LOG_DEBUG, SQLCIPHER_LOG_CORE, "sqlcipherCodecGetKey:db=%p, nDb=%d", db, nDb);
2908 /* pass back the keyspec from the codec, unless PRAGMA cipher_store_pass
2909 is set or keyspec has not yet been derived, in which case pass
2910 back the password key material */
2916 }
2920 }
2921 }
2922 }
2924 /*
2925 * Implementation of an "export" function that allows a caller
2926 * to duplicate the main database to an attached database. This is intended
2927 * as a conveneince for users who need to:
2928 *
2929 * 1. migrate from an non-encrypted database to an encrypted database
2930 * 2. move from an encrypted database to a non-encrypted database
2931 * 3. convert beween the various flavors of encrypted databases.
2932 *
2933 * This implementation is based heavily on the procedure and code used
2934 * in vacuum.c, but is exposed as a function that allows export to any
2935 * named attached database.
2936 */
2938 /*
2939 ** Finalize a prepared statement. If there was an error, store the
2940 ** text of the error message in *pzErrMsg. Return the result code.
2941 **
2942 ** Based on vacuumFinalize from vacuum.c
2943 */
2949 }
2951 }
2953 /*
2954 ** Execute zSql on database db. Return an error code.
2955 **
2956 ** Based on execSql from vacuum.c
2957 */
2963 }
2967 }
2971 }
2973 /*
2974 ** Execute zSql on database db. The statement returns exactly
2975 ** one column. Execute this as SQL on the same database.
2976 **
2977 ** Based on execExecSql from vacuum.c
2978 */
2991 }
2992 }
2995 }
2997 /*
2998 * copy database and schema from the main database to an attached database
2999 *
3000 * Based on sqlite3RunVacuum from vacuum.c
3001 */
3017 pzErrMsg = sqlite3_mprintf("invalid number of arguments (%d) passed to sqlcipher_export", argc);
3019 }
3025 }
3035 }
3037 }
3040 /* if the name of the target is not main, but the index returned is zero
3041 there is a mismatch and we should not proceed */
3047 }
3052 db->flags &= ~(u64)(SQLITE_ForeignKeys | SQLITE_ReverseOrder | SQLITE_Defensive | SQLITE_CountRows);
3055 /* Query the schema of the main database. Create a mirror schema
3056 ** in the temporary database.
3057 */
3059 "SELECT sql "
3060 " FROM %s.sqlite_schema WHERE type='table' AND name!='sqlite_sequence'"
3061 " AND rootpage>0"
3068 "SELECT sql "
3069 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE INDEX %%' "
3076 "SELECT sql "
3077 " FROM %s.sqlite_schema WHERE sql LIKE 'CREATE UNIQUE INDEX %%'"
3083 /* Loop through the tables in the main database. For each, do
3084 ** an "INSERT INTO rekey_db.xxx SELECT * FROM main.xxx;" to copy
3085 ** the contents to the temporary database.
3086 */
3088 "SELECT 'INSERT INTO %s.' || quote(name) "
3089 "|| ' SELECT * FROM %s.' || quote(name) || ';'"
3090 "FROM %s.sqlite_schema "
3091 "WHERE type = 'table' AND name!='sqlite_sequence' "
3092 " AND rootpage>0"
3098 /* Copy over the contents of the sequence table
3099 */
3101 "SELECT 'INSERT INTO %s.' || quote(name) "
3102 "|| ' SELECT * FROM %s.' || quote(name) || ';' "
3103 "FROM %s.sqlite_schema WHERE name=='sqlite_sequence';"
3109 /* Copy the triggers, views, and virtual tables from the main database
3110 ** over to the temporary database. None of these objects has any
3111 ** associated storage, so all we have to do is copy their entries
3112 ** from the SQLITE_MASTER table.
3113 */
3115 "INSERT INTO %s.sqlite_schema "
3116 " SELECT type, name, tbl_name, rootpage, sql"
3117 " FROM %s.sqlite_schema"
3118 " WHERE type='view' OR type='trigger'"
3119 " OR (type='table' AND rootpage=0)"
3126 end_of_export:
3142 }
3143 }
3144 }
3145 #endif
3146 /* END SQLCIPHER */