mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
20975 Commits
28 Branches
Tree: 8e8a09ffbf
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8e8a09ffbf'
${ noResults }
rspamd/src/libmime/archives.c

archives.c 51KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088 
  1. /*

  2.  * Copyright 2024 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *    http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include "config.h"

  18. #include "message.h"

  19. #include "task.h"

  20. #include "archives.h"

  21. #include "libmime/mime_encoding.h"

  22. #include <unicode/uchar.h>

  23. #include <unicode/utf8.h>

  24. #include <unicode/utf16.h>

  25. #include <unicode/ucnv.h>

  26. 

  27. #include <archive.h>

  28. #include <archive_entry.h>

  29. 

  30. #define msg_debug_archive(...) rspamd_conditional_debug_fast(NULL, NULL,                                                 \

  31. 															 rspamd_archive_log_id, "archive", task->task_pool->tag.uid, \

  32. 															 G_STRFUNC,                                                  \

  33. 															 __VA_ARGS__)

  34. 

  35. INIT_LOG_MODULE(archive)

  36. 

  37. static void

  38. rspamd_archive_dtor(gpointer p)

  39. {

  40. 	struct rspamd_archive *arch = p;

  41. 	struct rspamd_archive_file *f;

  42. 	guint i;

  43. 

  44. 	for (i = 0; i < arch->files->len; i++) {

  45. 		f = g_ptr_array_index(arch->files, i);

  46. 

  47. 		if (f->fname) {

  48. 			g_string_free(f->fname, TRUE);

  49. 		}

  50. 

  51. 		g_free(f);

  52. 	}

  53. 

  54. 	g_ptr_array_free(arch->files, TRUE);

  55. }

  56. 

  57. static bool

  58. rspamd_archive_file_try_utf(struct rspamd_task *task,

  59. 							struct rspamd_archive *arch,

  60. 							struct rspamd_archive_file *fentry,

  61. 							const gchar *in, gsize inlen)

  62. {

  63. 	const gchar *charset = NULL, *p, *end;

  64. 	GString *res;

  65. 

  66. 	charset = rspamd_mime_charset_find_by_content(in, inlen, TRUE);

  67. 

  68. 	if (charset) {

  69. 		UChar *tmp;

  70. 		UErrorCode uc_err = U_ZERO_ERROR;

  71. 		gint32 r, clen, dlen;

  72. 		struct rspamd_charset_converter *conv;

  73. 		UConverter *utf8_converter;

  74. 

  75. 		conv = rspamd_mime_get_converter_cached(charset, task->task_pool,

  76. 												TRUE, &uc_err);

  77. 		utf8_converter = rspamd_get_utf8_converter();

  78. 

  79. 		if (conv == NULL) {

  80. 			msg_info_task("cannot open converter for %s: %s",

  81. 						  charset, u_errorName(uc_err));

  82. 			fentry->flags |= RSPAMD_ARCHIVE_FILE_OBFUSCATED;

  83. 			fentry->fname = g_string_new_len(in, inlen);

  84. 

  85. 			return false;

  86. 		}

  87. 

  88. 		tmp = g_malloc(sizeof(*tmp) * (inlen + 1));

  89. 		r = rspamd_converter_to_uchars(conv, tmp, inlen + 1,

  90. 									   in, inlen, &uc_err);

  91. 		if (!U_SUCCESS(uc_err)) {

  92. 			msg_info_task("cannot convert data to unicode from %s: %s",

  93. 						  charset, u_errorName(uc_err));

  94. 			g_free(tmp);

  95. 

  96. 			fentry->flags |= RSPAMD_ARCHIVE_FILE_OBFUSCATED;

  97. 			fentry->fname = g_string_new_len(in, inlen);

  98. 

  99. 			return NULL;

  100. 		}

  101. 

  102. 		int i = 0;

  103. 

  104. 		while (i < r) {

  105. 			UChar32 uc;

  106. 

  107. 			U16_NEXT(tmp, i, r, uc);

  108. 

  109. 			if (IS_ZERO_WIDTH_SPACE(uc) || u_iscntrl(uc)) {

  110. 				msg_info_task("control character in archive file name found: 0x%02xd "

  111. 							  "(filename=%T)",

  112. 							  uc, arch->archive_name);

  113. 				fentry->flags |= RSPAMD_ARCHIVE_FILE_OBFUSCATED;

  114. 				break;

  115. 			}

  116. 		}

  117. 

  118. 		clen = ucnv_getMaxCharSize(utf8_converter);

  119. 		dlen = UCNV_GET_MAX_BYTES_FOR_STRING(r, clen);

  120. 		res = g_string_sized_new(dlen);

  121. 		r = ucnv_fromUChars(utf8_converter, res->str, dlen, tmp, r, &uc_err);

  122. 

  123. 		if (!U_SUCCESS(uc_err)) {

  124. 			msg_info_task("cannot convert data from unicode from %s: %s",

  125. 						  charset, u_errorName(uc_err));

  126. 			g_free(tmp);

  127. 			g_string_free(res, TRUE);

  128. 			fentry->flags |= RSPAMD_ARCHIVE_FILE_OBFUSCATED;

  129. 			fentry->fname = g_string_new_len(in, inlen);

  130. 

  131. 			return NULL;

  132. 		}

  133. 

  134. 		g_free(tmp);

  135. 		res->len = r;

  136. 

  137. 		msg_debug_archive("converted from %s to UTF-8 inlen: %z, outlen: %d",

  138. 						  charset, inlen, r);

  139. 		fentry->fname = res;

  140. 	}

  141. 	else {

  142. 		/* Convert unsafe characters to '?' */

  143. 		res = g_string_sized_new(inlen);

  144. 		p = in;

  145. 		end = in + inlen;

  146. 

  147. 		while (p < end) {

  148. 			if (g_ascii_isgraph(*p)) {

  149. 				g_string_append_c(res, *p);

  150. 			}

  151. 			else {

  152. 				g_string_append_c(res, '?');

  153. 

  154. 				if (*p < 0x7f && (g_ascii_iscntrl(*p) || *p == '\0')) {

  155. 					if (!(fentry->flags & RSPAMD_ARCHIVE_FILE_OBFUSCATED)) {

  156. 						msg_info_task("suspicious character in archive file name found: 0x%02xd "

  157. 									  "(filename=%T)",

  158. 									  (int) *p, arch->archive_name);

  159. 						fentry->flags |= RSPAMD_ARCHIVE_FILE_OBFUSCATED;

  160. 					}

  161. 				}

  162. 			}

  163. 

  164. 			p++;

  165. 		}

  166. 		fentry->fname = res;

  167. 	}

  168. 

  169. 	return true;

  170. }

  171. 

  172. static void

  173. rspamd_archive_process_zip(struct rspamd_task *task,

  174. 						   struct rspamd_mime_part *part)

  175. {

  176. 	const guchar *p, *start, *end, *eocd = NULL, *cd;

  177. 	const guint32 eocd_magic = 0x06054b50, cd_basic_len = 46;

  178. 	const guchar cd_magic[] = {0x50, 0x4b, 0x01, 0x02};

  179. 	const guint max_processed = 1024;

  180. 	guint32 cd_offset, cd_size, comp_size, uncomp_size, processed = 0;

  181. 	guint16 extra_len, fname_len, comment_len;

  182. 	struct rspamd_archive *arch;

  183. 	struct rspamd_archive_file *f = NULL;

  184. 

  185. 	/* Zip files have interesting data at the end of archive */

  186. 	p = part->parsed_data.begin + part->parsed_data.len - 1;

  187. 	start = part->parsed_data.begin;

  188. 	end = p;

  189. 

  190. 	/* Search for EOCD:

  191. 	 * 22 bytes is a typical size of eocd without a comment and

  192. 	 * end points one byte after the last character

  193. 	 */

  194. 	p -= 21;

  195. 

  196. 	while (p > start + sizeof(guint32)) {

  197. 		guint32 t;

  198. 

  199. 		if (processed > max_processed) {

  200. 			break;

  201. 		}

  202. 

  203. 		/* XXX: not an efficient approach */

  204. 		memcpy(&t, p, sizeof(t));

  205. 

  206. 		if (GUINT32_FROM_LE(t) == eocd_magic) {

  207. 			eocd = p;

  208. 			break;

  209. 		}

  210. 

  211. 		p--;

  212. 		processed++;

  213. 	}

  214. 

  215. 

  216. 	if (eocd == NULL) {

  217. 		/* Not a zip file */

  218. 		msg_info_task("zip archive is invalid (no EOCD)");

  219. 

  220. 		return;

  221. 	}

  222. 

  223. 	if (end - eocd < 21) {

  224. 		msg_info_task("zip archive is invalid (short EOCD)");

  225. 

  226. 		return;

  227. 	}

  228. 

  229. 

  230. 	memcpy(&cd_size, eocd + 12, sizeof(cd_size));

  231. 	cd_size = GUINT32_FROM_LE(cd_size);

  232. 	memcpy(&cd_offset, eocd + 16, sizeof(cd_offset));

  233. 	cd_offset = GUINT32_FROM_LE(cd_offset);

  234. 

  235. 	/* We need to check sanity as well */

  236. 	if (cd_offset + cd_size > (guint) (eocd - start)) {

  237. 		msg_info_task("zip archive is invalid (bad size/offset for CD)");

  238. 

  239. 		return;

  240. 	}

  241. 

  242. 	cd = start + cd_offset;

  243. 

  244. 	arch = rspamd_mempool_alloc0(task->task_pool, sizeof(*arch));

  245. 	arch->files = g_ptr_array_new();

  246. 	arch->type = RSPAMD_ARCHIVE_ZIP;

  247. 	if (part->cd) {

  248. 		arch->archive_name = &part->cd->filename;

  249. 	}

  250. 	rspamd_mempool_add_destructor(task->task_pool, rspamd_archive_dtor,

  251. 								  arch);

  252. 

  253. 	while (cd < start + cd_offset + cd_size) {

  254. 		guint16 flags;

  255. 

  256. 		/* Read central directory record */

  257. 		if (eocd - cd < cd_basic_len ||

  258. 			memcmp(cd, cd_magic, sizeof(cd_magic)) != 0) {

  259. 			msg_info_task("zip archive is invalid (bad cd record)");

  260. 

  261. 			return;

  262. 		}

  263. 

  264. 		memcpy(&flags, cd + 8, sizeof(guint16));

  265. 		flags = GUINT16_FROM_LE(flags);

  266. 		memcpy(&comp_size, cd + 20, sizeof(guint32));

  267. 		comp_size = GUINT32_FROM_LE(comp_size);

  268. 		memcpy(&uncomp_size, cd + 24, sizeof(guint32));

  269. 		uncomp_size = GUINT32_FROM_LE(uncomp_size);

  270. 		memcpy(&fname_len, cd + 28, sizeof(fname_len));

  271. 		fname_len = GUINT16_FROM_LE(fname_len);

  272. 		memcpy(&extra_len, cd + 30, sizeof(extra_len));

  273. 		extra_len = GUINT16_FROM_LE(extra_len);

  274. 		memcpy(&comment_len, cd + 32, sizeof(comment_len));

  275. 		comment_len = GUINT16_FROM_LE(comment_len);

  276. 

  277. 		if (cd + fname_len + comment_len + extra_len + cd_basic_len > eocd) {

  278. 			msg_info_task("zip archive is invalid (too large cd record)");

  279. 

  280. 			return;

  281. 		}

  282. 

  283. 		f = g_malloc0(sizeof(*f));

  284. 		rspamd_archive_file_try_utf(task, arch, f, cd + cd_basic_len, fname_len);

  285. 

  286. 		f->compressed_size = comp_size;

  287. 		f->uncompressed_size = uncomp_size;

  288. 

  289. 		if (flags & 0x41u) {

  290. 			f->flags |= RSPAMD_ARCHIVE_FILE_ENCRYPTED;

  291. 		}

  292. 

  293. 		if (f->fname) {

  294. 			if (f->flags & RSPAMD_ARCHIVE_FILE_OBFUSCATED) {

  295. 				arch->flags |= RSPAMD_ARCHIVE_HAS_OBFUSCATED_FILES;

  296. 			}

  297. 

  298. 			g_ptr_array_add(arch->files, f);

  299. 			msg_debug_archive("found file in zip archive: %v", f->fname);

  300. 		}

  301. 		else {

  302. 			g_free(f);

  303. 

  304. 			return;

  305. 		}

  306. 

  307. 		/* Process extra fields */

  308. 		const guchar *extra = cd + fname_len + cd_basic_len;

  309. 		p = extra;

  310. 

  311. 		while (p + sizeof(guint16) * 2 < extra + extra_len) {

  312. 			guint16 hid, hlen;

  313. 

  314. 			memcpy(&hid, p, sizeof(guint16));

  315. 			hid = GUINT16_FROM_LE(hid);

  316. 			memcpy(&hlen, p + sizeof(guint16), sizeof(guint16));

  317. 			hlen = GUINT16_FROM_LE(hlen);

  318. 

  319. 			if (hid == 0x0017) {

  320. 				f->flags |= RSPAMD_ARCHIVE_FILE_ENCRYPTED;

  321. 			}

  322. 

  323. 			p += hlen + sizeof(guint16) * 2;

  324. 		}

  325. 

  326. 		cd += fname_len + comment_len + extra_len + cd_basic_len;

  327. 	}

  328. 

  329. 	part->part_type = RSPAMD_MIME_PART_ARCHIVE;

  330. 	part->specific.arch = arch;

  331. 

  332. 	arch->size = part->parsed_data.len;

  333. }

  334. 

  335. static inline gint

  336. rspamd_archive_rar_read_vint(const guchar *start, gsize remain, guint64 *res)

  337. {

  338. 	/*

  339. 	 * From http://www.rarlab.com/technote.htm:

  340. 	 * Variable length integer. Can include one or more bytes, where

  341. 	 * lower 7 bits of every byte contain integer data and highest bit

  342. 	 * in every byte is the continuation flag.

  343. 	 * If highest bit is 0, this is the last byte in sequence.

  344. 	 * So first byte contains 7 least significant bits of integer and

  345. 	 * continuation flag. Second byte, if present, contains next 7 bits and so on.

  346. 	 */

  347. 	guint64 t = 0;

  348. 	guint shift = 0;

  349. 	const guchar *p = start;

  350. 

  351. 	while (remain > 0 && shift <= 57) {

  352. 		if (*p & 0x80) {

  353. 			t |= ((guint64) (*p & 0x7f)) << shift;

  354. 		}

  355. 		else {

  356. 			t |= ((guint64) (*p & 0x7f)) << shift;

  357. 			p++;

  358. 			break;

  359. 		}

  360. 

  361. 		shift += 7;

  362. 		p++;

  363. 		remain--;

  364. 	}

  365. 

  366. 	if (remain == 0 || shift > 64) {

  367. 		return -1;

  368. 	}

  369. 

  370. 	*res = GUINT64_FROM_LE(t);

  371. 

  372. 	return p - start;

  373. }

  374. 

  375. #define RAR_SKIP_BYTES(n)                                                 \

  376. 	do {                                                                  \

  377. 		if ((n) <= 0) {                                                   \

  378. 			msg_debug_archive("rar archive is invalid (bad skip value)"); \

  379. 			return;                                                       \

  380. 		}                                                                 \

  381. 		if ((gsize) (end - p) < (n)) {                                    \

  382. 			msg_debug_archive("rar archive is invalid (truncated)");      \

  383. 			return;                                                       \

  384. 		}                                                                 \

  385. 		p += (n);                                                         \

  386. 	} while (0)

  387. 

  388. #define RAR_READ_VINT()                                                    \

  389. 	do {                                                                   \

  390. 		r = rspamd_archive_rar_read_vint(p, end - p, &vint);               \

  391. 		if (r == -1) {                                                     \

  392. 			msg_debug_archive("rar archive is invalid (bad vint)");        \

  393. 			return;                                                        \

  394. 		}                                                                  \

  395. 		else if (r == 0) {                                                 \

  396. 			msg_debug_archive("rar archive is invalid (BAD vint offset)"); \

  397. 			return;                                                        \

  398. 		}                                                                  \

  399. 	} while (0)

  400. 

  401. #define RAR_READ_VINT_SKIP()                                        \

  402. 	do {                                                            \

  403. 		r = rspamd_archive_rar_read_vint(p, end - p, &vint);        \

  404. 		if (r == -1) {                                              \

  405. 			msg_debug_archive("rar archive is invalid (bad vint)"); \

  406. 			return;                                                 \

  407. 		}                                                           \

  408. 		p += r;                                                     \

  409. 	} while (0)

  410. 

  411. #define RAR_READ_UINT16(n)                                           \

  412. 	do {                                                             \

  413. 		if (end - p < (glong) sizeof(guint16)) {                     \

  414. 			msg_debug_archive("rar archive is invalid (bad int16)"); \

  415. 			return;                                                  \

  416. 		}                                                            \

  417. 		n = p[0] + (p[1] << 8);                                      \

  418. 		p += sizeof(guint16);                                        \

  419. 	} while (0)

  420. 

  421. #define RAR_READ_UINT32(n)                                                                    \

  422. 	do {                                                                                      \

  423. 		if (end - p < (glong) sizeof(guint32)) {                                              \

  424. 			msg_debug_archive("rar archive is invalid (bad int32)");                          \

  425. 			return;                                                                           \

  426. 		}                                                                                     \

  427. 		n = (guint) p[0] + ((guint) p[1] << 8) + ((guint) p[2] << 16) + ((guint) p[3] << 24); \

  428. 		p += sizeof(guint32);                                                                 \

  429. 	} while (0)

  430. 

  431. static void

  432. rspamd_archive_process_rar_v4(struct rspamd_task *task, const guchar *start,

  433. 							  const guchar *end, struct rspamd_mime_part *part)

  434. {

  435. 	const guchar *p = start, *start_section;

  436. 	guint8 type;

  437. 	guint flags;

  438. 	guint64 sz, comp_sz = 0, uncomp_sz = 0;

  439. 	struct rspamd_archive *arch;

  440. 	struct rspamd_archive_file *f;

  441. 

  442. 	arch = rspamd_mempool_alloc0(task->task_pool, sizeof(*arch));

  443. 	arch->files = g_ptr_array_new();

  444. 	arch->type = RSPAMD_ARCHIVE_RAR;

  445. 	if (part->cd) {

  446. 		arch->archive_name = &part->cd->filename;

  447. 	}

  448. 	rspamd_mempool_add_destructor(task->task_pool, rspamd_archive_dtor,

  449. 								  arch);

  450. 

  451. 	while (p < end) {

  452. 		/* Crc16 */

  453. 		start_section = p;

  454. 		RAR_SKIP_BYTES(sizeof(guint16));

  455. 		type = *p;

  456. 		p++;

  457. 		RAR_READ_UINT16(flags);

  458. 

  459. 		if (type == 0x73) {

  460. 			/* Main header, check for encryption */

  461. 			if (flags & 0x80) {

  462. 				arch->flags |= RSPAMD_ARCHIVE_ENCRYPTED;

  463. 				goto end;

  464. 			}

  465. 		}

  466. 

  467. 		RAR_READ_UINT16(sz);

  468. 

  469. 		if (flags & 0x8000) {

  470. 			/* We also need to read ADD_SIZE element */

  471. 			guint32 tmp;

  472. 

  473. 			RAR_READ_UINT32(tmp);

  474. 			sz += tmp;

  475. 			/* This is also used as PACK_SIZE */

  476. 			comp_sz = tmp;

  477. 		}

  478. 

  479. 		if (sz == 0) {

  480. 			/* Zero sized block - error */

  481. 			msg_debug_archive("rar archive is invalid (zero size block)");

  482. 

  483. 			return;

  484. 		}

  485. 

  486. 		if (type == 0x74) {

  487. 			guint fname_len;

  488. 

  489. 			/* File header */

  490. 			/* Uncompressed size */

  491. 			RAR_READ_UINT32(uncomp_sz);

  492. 			/* Skip to NAME_SIZE element */

  493. 			RAR_SKIP_BYTES(11);

  494. 			RAR_READ_UINT16(fname_len);

  495. 

  496. 			if (fname_len == 0 || fname_len > (gsize) (end - p)) {

  497. 				msg_debug_archive("rar archive is invalid (bad filename size: %d)",

  498. 								  fname_len);

  499. 

  500. 				return;

  501. 			}

  502. 

  503. 			/* Attrs */

  504. 			RAR_SKIP_BYTES(4);

  505. 

  506. 			if (flags & 0x100) {

  507. 				/* We also need to read HIGH_PACK_SIZE */

  508. 				guint32 tmp;

  509. 

  510. 				RAR_READ_UINT32(tmp);

  511. 				sz += tmp;

  512. 				comp_sz += tmp;

  513. 				/* HIGH_UNP_SIZE  */

  514. 				RAR_READ_UINT32(tmp);

  515. 				uncomp_sz += tmp;

  516. 			}

  517. 

  518. 			f = g_malloc0(sizeof(*f));

  519. 

  520. 			if (flags & 0x200) {

  521. 				/* We have unicode + normal version */

  522. 				guchar *tmp;

  523. 

  524. 				tmp = memchr(p, '\0', fname_len);

  525. 

  526. 				if (tmp != NULL) {

  527. 					/* Just use ASCII version */

  528. 					rspamd_archive_file_try_utf(task, arch, f, p, tmp - p);

  529. 					msg_debug_archive("found ascii filename in rarv4 archive: %v",

  530. 									  f->fname);

  531. 				}

  532. 				else {

  533. 					/* We have UTF8 filename, use it as is */

  534. 					rspamd_archive_file_try_utf(task, arch, f, p, fname_len);

  535. 					msg_debug_archive("found utf filename in rarv4 archive: %v",

  536. 									  f->fname);

  537. 				}

  538. 			}

  539. 			else {

  540. 				rspamd_archive_file_try_utf(task, arch, f, p, fname_len);

  541. 				msg_debug_archive("found ascii (old) filename in rarv4 archive: %v",

  542. 								  f->fname);

  543. 			}

  544. 

  545. 			f->compressed_size = comp_sz;

  546. 			f->uncompressed_size = uncomp_sz;

  547. 

  548. 			if (flags & 0x4) {

  549. 				f->flags |= RSPAMD_ARCHIVE_FILE_ENCRYPTED;

  550. 			}

  551. 

  552. 			if (f->fname) {

  553. 				if (f->flags & RSPAMD_ARCHIVE_FILE_OBFUSCATED) {

  554. 					arch->flags |= RSPAMD_ARCHIVE_HAS_OBFUSCATED_FILES;

  555. 				}

  556. 				g_ptr_array_add(arch->files, f);

  557. 			}

  558. 			else {

  559. 				g_free(f);

  560. 			}

  561. 		}

  562. 

  563. 		p = start_section;

  564. 		RAR_SKIP_BYTES(sz);

  565. 	}

  566. 

  567. end:

  568. 	part->part_type = RSPAMD_MIME_PART_ARCHIVE;

  569. 	part->specific.arch = arch;

  570. 	arch->size = part->parsed_data.len;

  571. }

  572. 

  573. static void

  574. rspamd_archive_process_rar(struct rspamd_task *task,

  575. 						   struct rspamd_mime_part *part)

  576. {

  577. 	const guchar *p, *end, *section_start;

  578. 	const guchar rar_v5_magic[] = {0x52, 0x61, 0x72, 0x21, 0x1A, 0x07, 0x01, 0x00},

  579. 				 rar_v4_magic[] = {0x52, 0x61, 0x72, 0x21, 0x1A, 0x07, 0x00};

  580. 	const guint rar_encrypted_header = 4, rar_main_header = 1,

  581. 				rar_file_header = 2;

  582. 	guint64 vint, sz, comp_sz = 0, uncomp_sz = 0, flags = 0, type = 0,

  583. 					  extra_sz = 0;

  584. 	struct rspamd_archive *arch;

  585. 	struct rspamd_archive_file *f;

  586. 	gint r;

  587. 

  588. 	p = part->parsed_data.begin;

  589. 	end = p + part->parsed_data.len;

  590. 

  591. 	if ((gsize) (end - p) <= sizeof(rar_v5_magic)) {

  592. 		msg_debug_archive("rar archive is invalid (too small)");

  593. 

  594. 		return;

  595. 	}

  596. 

  597. 	if (memcmp(p, rar_v5_magic, sizeof(rar_v5_magic)) == 0) {

  598. 		p += sizeof(rar_v5_magic);

  599. 	}

  600. 	else if (memcmp(p, rar_v4_magic, sizeof(rar_v4_magic)) == 0) {

  601. 		p += sizeof(rar_v4_magic);

  602. 

  603. 		rspamd_archive_process_rar_v4(task, p, end, part);

  604. 		return;

  605. 	}

  606. 	else {

  607. 		msg_debug_archive("rar archive is invalid (no rar magic)");

  608. 

  609. 		return;

  610. 	}

  611. 

  612. 	/* Rar v5 format */

  613. 	arch = rspamd_mempool_alloc0(task->task_pool, sizeof(*arch));

  614. 	arch->files = g_ptr_array_new();

  615. 	arch->type = RSPAMD_ARCHIVE_RAR;

  616. 	if (part->cd) {

  617. 		arch->archive_name = &part->cd->filename;

  618. 	}

  619. 	rspamd_mempool_add_destructor(task->task_pool, rspamd_archive_dtor,

  620. 								  arch);

  621. 

  622. 	/* Now we can have either encryption header or archive header */

  623. 	/* Crc 32 */

  624. 	RAR_SKIP_BYTES(sizeof(guint32));

  625. 	/* Size */

  626. 	RAR_READ_VINT_SKIP();

  627. 	sz = vint;

  628. 	/* Type */

  629. 	section_start = p;

  630. 	RAR_READ_VINT_SKIP();

  631. 	type = vint;

  632. 	/* Header flags */

  633. 	RAR_READ_VINT_SKIP();

  634. 	flags = vint;

  635. 

  636. 	if (flags & 0x1) {

  637. 		/* Have extra zone */

  638. 		RAR_READ_VINT_SKIP();

  639. 	}

  640. 	if (flags & 0x2) {

  641. 		/* Data zone is presented */

  642. 		RAR_READ_VINT_SKIP();

  643. 		sz += vint;

  644. 	}

  645. 

  646. 	if (type == rar_encrypted_header) {

  647. 		/* We can't read any further information as archive is encrypted */

  648. 		arch->flags |= RSPAMD_ARCHIVE_ENCRYPTED;

  649. 		goto end;

  650. 	}

  651. 	else if (type != rar_main_header) {

  652. 		msg_debug_archive("rar archive is invalid (bad main header)");

  653. 

  654. 		return;

  655. 	}

  656. 

  657. 	/* Nothing useful in main header */

  658. 	p = section_start;

  659. 	RAR_SKIP_BYTES(sz);

  660. 

  661. 	while (p < end) {

  662. 		gboolean has_extra = FALSE;

  663. 		/* Read the next header */

  664. 		/* Crc 32 */

  665. 		RAR_SKIP_BYTES(sizeof(guint32));

  666. 		/* Size */

  667. 		RAR_READ_VINT_SKIP();

  668. 

  669. 		sz = vint;

  670. 		if (sz == 0) {

  671. 			/* Zero sized block - error */

  672. 			msg_debug_archive("rar archive is invalid (zero size block)");

  673. 

  674. 			return;

  675. 		}

  676. 

  677. 		section_start = p;

  678. 		/* Type */

  679. 		RAR_READ_VINT_SKIP();

  680. 		type = vint;

  681. 		/* Header flags */

  682. 		RAR_READ_VINT_SKIP();

  683. 		flags = vint;

  684. 

  685. 		if (flags & 0x1) {

  686. 			/* Have extra zone */

  687. 			RAR_READ_VINT_SKIP();

  688. 			extra_sz = vint;

  689. 			has_extra = TRUE;

  690. 		}

  691. 

  692. 		if (flags & 0x2) {

  693. 			/* Data zone is presented */

  694. 			RAR_READ_VINT_SKIP();

  695. 			sz += vint;

  696. 			comp_sz = vint;

  697. 		}

  698. 

  699. 		if (type != rar_file_header) {

  700. 			p = section_start;

  701. 			RAR_SKIP_BYTES(sz);

  702. 		}

  703. 		else {

  704. 			/* We have a file header, go forward */

  705. 			guint64 fname_len;

  706. 			bool is_directory = false;

  707. 

  708. 			/* File header specific flags */

  709. 			RAR_READ_VINT_SKIP();

  710. 			flags = vint;

  711. 

  712. 			/* Unpacked size */

  713. 			RAR_READ_VINT_SKIP();

  714. 			uncomp_sz = vint;

  715. 			/* Attributes */

  716. 			RAR_READ_VINT_SKIP();

  717. 

  718. 			if (flags & 0x2) {

  719. 				/* Unix mtime */

  720. 				RAR_SKIP_BYTES(sizeof(guint32));

  721. 			}

  722. 			if (flags & 0x4) {

  723. 				/* Crc32 */

  724. 				RAR_SKIP_BYTES(sizeof(guint32));

  725. 			}

  726. 			if (flags & 0x1) {

  727. 				/* Ignore directories for sanity purposes */

  728. 				is_directory = true;

  729. 				msg_debug_archive("skip directory record in a rar archive");

  730. 			}

  731. 

  732. 			if (!is_directory) {

  733. 				/* Compression */

  734. 				RAR_READ_VINT_SKIP();

  735. 				/* Host OS */

  736. 				RAR_READ_VINT_SKIP();

  737. 				/* Filename length (finally!) */

  738. 				RAR_READ_VINT_SKIP();

  739. 				fname_len = vint;

  740. 

  741. 				if (fname_len == 0 || fname_len > (gsize) (end - p)) {

  742. 					msg_debug_archive("rar archive is invalid (bad filename size)");

  743. 

  744. 					return;

  745. 				}

  746. 

  747. 				f = g_malloc0(sizeof(*f));

  748. 				f->uncompressed_size = uncomp_sz;

  749. 				f->compressed_size = comp_sz;

  750. 				rspamd_archive_file_try_utf(task, arch, f, p, fname_len);

  751. 

  752. 				if (f->fname) {

  753. 					msg_debug_archive("added rarv5 file: %v", f->fname);

  754. 					g_ptr_array_add(arch->files, f);

  755. 					if (f->flags & RSPAMD_ARCHIVE_FILE_OBFUSCATED) {

  756. 						arch->flags |= RSPAMD_ARCHIVE_HAS_OBFUSCATED_FILES;

  757. 					}

  758. 				}

  759. 				else {

  760. 					g_free(f);

  761. 					f = NULL;

  762. 				}

  763. 

  764. 				if (f && has_extra && extra_sz > 0 &&

  765. 					p + fname_len + extra_sz < end) {

  766. 					/* Try to find encryption record in extra field */

  767. 					const guchar *ex = p + fname_len;

  768. 

  769. 					while (ex < p + extra_sz) {

  770. 						const guchar *t;

  771. 						gint64 cur_sz = 0, sec_type = 0;

  772. 

  773. 						r = rspamd_archive_rar_read_vint(ex, extra_sz, &cur_sz);

  774. 						if (r == -1) {

  775. 							msg_debug_archive("rar archive is invalid (bad vint)");

  776. 							return;

  777. 						}

  778. 

  779. 						t = ex + r;

  780. 

  781. 						r = rspamd_archive_rar_read_vint(t, extra_sz - r, &sec_type);

  782. 						if (r == -1) {

  783. 							msg_debug_archive("rar archive is invalid (bad vint)");

  784. 							return;

  785. 						}

  786. 

  787. 						if (sec_type == 0x01) {

  788. 							f->flags |= RSPAMD_ARCHIVE_FILE_ENCRYPTED;

  789. 							arch->flags |= RSPAMD_ARCHIVE_ENCRYPTED;

  790. 							break;

  791. 						}

  792. 

  793. 						ex += cur_sz;

  794. 					}

  795. 				}

  796. 			}

  797. 

  798. 			/* Restore p to the beginning of the header */

  799. 			p = section_start;

  800. 			RAR_SKIP_BYTES(sz);

  801. 		}

  802. 	}

  803. 

  804. end:

  805. 	part->part_type = RSPAMD_MIME_PART_ARCHIVE;

  806. 	part->specific.arch = arch;

  807. 	arch->size = part->parsed_data.len;

  808. }

  809. 

  810. static inline gint

  811. rspamd_archive_7zip_read_vint(const guchar *start, gsize remain, guint64 *res)

  812. {

  813. 	/*

  814. 	 * REAL_UINT64 means real UINT64.

  815. 	 * UINT64 means real UINT64 encoded with the following scheme:

  816. 	 *

  817. 	 * Size of encoding sequence depends from first byte:

  818. 	 * First_Byte  Extra_Bytes        Value

  819. 	 * (binary)

  820. 	 * 0xxxxxxx               : ( xxxxxxx           )

  821. 	 * 10xxxxxx    BYTE y[1]  : (  xxxxxx << (8 * 1)) + y

  822. 	 * 110xxxxx    BYTE y[2]  : (   xxxxx << (8 * 2)) + y

  823. 	 * ...

  824. 	 * 1111110x    BYTE y[6]  : (       x << (8 * 6)) + y

  825. 	 * 11111110    BYTE y[7]  :                         y

  826. 	 * 11111111    BYTE y[8]  :                         y

  827. 	 */

  828. 	guchar t;

  829. 

  830. 	if (remain == 0) {

  831. 		return -1;

  832. 	}

  833. 

  834. 	t = *start;

  835. 

  836. 	if (!isset(&t, 7)) {

  837. 		/* Trivial case */

  838. 		*res = t;

  839. 		return 1;

  840. 	}

  841. 	else if (t == 0xFF) {

  842. 		if (remain >= sizeof(guint64) + 1) {

  843. 			memcpy(res, start + 1, sizeof(guint64));

  844. 			*res = GUINT64_FROM_LE(*res);

  845. 

  846. 			return sizeof(guint64) + 1;

  847. 		}

  848. 	}

  849. 	else {

  850. 		gint cur_bit = 6, intlen = 1;

  851. 		const guchar bmask = 0xFF;

  852. 		guint64 tgt;

  853. 

  854. 		while (cur_bit > 0) {

  855. 			if (!isset(&t, cur_bit)) {

  856. 				if (remain >= intlen + 1) {

  857. 					memcpy(&tgt, start + 1, intlen);

  858. 					tgt = GUINT64_FROM_LE(tgt);

  859. 					/* Shift back */

  860. 					tgt >>= sizeof(tgt) - NBBY * intlen;

  861. 					/* Add masked value */

  862. 					tgt += (guint64) (t & (bmask >> (NBBY - cur_bit)))

  863. 						   << (NBBY * intlen);

  864. 					*res = tgt;

  865. 

  866. 					return intlen + 1;

  867. 				}

  868. 			}

  869. 			cur_bit--;

  870. 			intlen++;

  871. 		}

  872. 	}

  873. 

  874. 	return -1;

  875. }

  876. 

  877. #define SZ_READ_VINT_SKIP()                                        \

  878. 	do {                                                           \

  879. 		r = rspamd_archive_7zip_read_vint(p, end - p, &vint);      \

  880. 		if (r == -1) {                                             \

  881. 			msg_debug_archive("7z archive is invalid (bad vint)"); \

  882. 			return;                                                \

  883. 		}                                                          \

  884. 		p += r;                                                    \

  885. 	} while (0)

  886. #define SZ_READ_VINT(var)                                                        \

  887. 	do {                                                                         \

  888. 		int r;                                                                   \

  889. 		r = rspamd_archive_7zip_read_vint(p, end - p, &(var));                   \

  890. 		if (r == -1) {                                                           \

  891. 			msg_debug_archive("7z archive is invalid (bad vint): %s", G_STRLOC); \

  892. 			return NULL;                                                         \

  893. 		}                                                                        \

  894. 		p += r;                                                                  \

  895. 	} while (0)

  896. 

  897. #define SZ_READ_UINT64(n)                                                            \

  898. 	do {                                                                             \

  899. 		if (end - p < (goffset) sizeof(guint64)) {                                   \

  900. 			msg_debug_archive("7zip archive is invalid (bad uint64): %s", G_STRLOC); \

  901. 			return;                                                                  \

  902. 		}                                                                            \

  903. 		memcpy(&(n), p, sizeof(guint64));                                            \

  904. 		n = GUINT64_FROM_LE(n);                                                      \

  905. 		p += sizeof(guint64);                                                        \

  906. 	} while (0)

  907. #define SZ_SKIP_BYTES(n)                                                                                                                             \

  908. 	do {                                                                                                                                             \

  909. 		if (end - p >= (n)) {                                                                                                                        \

  910. 			p += (n);                                                                                                                                \

  911. 		}                                                                                                                                            \

  912. 		else {                                                                                                                                       \

  913. 			msg_debug_archive("7zip archive is invalid (truncated); wanted to read %d bytes, %d avail: %s", (gint) (n), (gint) (end - p), G_STRLOC); \

  914. 			return NULL;                                                                                                                             \

  915. 		}                                                                                                                                            \

  916. 	} while (0)

  917. 

  918. enum rspamd_7zip_header_mark {

  919. 	kEnd = 0x00,

  920. 	kHeader = 0x01,

  921. 	kArchiveProperties = 0x02,

  922. 	kAdditionalStreamsInfo = 0x03,

  923. 	kMainStreamsInfo = 0x04,

  924. 	kFilesInfo = 0x05,

  925. 	kPackInfo = 0x06,

  926. 	kUnPackInfo = 0x07,

  927. 	kSubStreamsInfo = 0x08,

  928. 	kSize = 0x09,

  929. 	kCRC = 0x0A,

  930. 	kFolder = 0x0B,

  931. 	kCodersUnPackSize = 0x0C,

  932. 	kNumUnPackStream = 0x0D,

  933. 	kEmptyStream = 0x0E,

  934. 	kEmptyFile = 0x0F,

  935. 	kAnti = 0x10,

  936. 	kName = 0x11,

  937. 	kCTime = 0x12,

  938. 	kATime = 0x13,

  939. 	kMTime = 0x14,

  940. 	kWinAttributes = 0x15,

  941. 	kComment = 0x16,

  942. 	kEncodedHeader = 0x17,

  943. 	kStartPos = 0x18,

  944. 	kDummy = 0x19,

  945. };

  946. 

  947. 

  948. #define _7Z_CRYPTO_MAIN_ZIP 0x06F10101        /* Main Zip crypto algo */

  949. #define _7Z_CRYPTO_RAR_29 0x06F10303          /* Rar29 AES-128 + (modified SHA-1) */

  950. #define _7Z_CRYPTO_AES_256_SHA_256 0x06F10701 /* AES-256 + SHA-256 */

  951. 

  952. #define IS_SZ_ENCRYPTED(codec_id) (((codec_id) == _7Z_CRYPTO_MAIN_ZIP) || \

  953. 								   ((codec_id) == _7Z_CRYPTO_RAR_29) ||   \

  954. 								   ((codec_id) == _7Z_CRYPTO_AES_256_SHA_256))

  955. 

  956. static const guchar *

  957. rspamd_7zip_read_bits(struct rspamd_task *task,

  958. 					  const guchar *p, const guchar *end,

  959. 					  struct rspamd_archive *arch, guint nbits,

  960. 					  guint *pbits_set)

  961. {

  962. 	unsigned mask = 0, avail = 0, i;

  963. 	gboolean bit_set = 0;

  964. 

  965. 	for (i = 0; i < nbits; i++) {

  966. 		if (mask == 0) {

  967. 			avail = *p;

  968. 			SZ_SKIP_BYTES(1);

  969. 			mask = 0x80;

  970. 		}

  971. 

  972. 		bit_set = (avail & mask) ? 1 : 0;

  973. 

  974. 		if (bit_set && pbits_set) {

  975. 			(*pbits_set)++;

  976. 		}

  977. 

  978. 		mask >>= 1;

  979. 	}

  980. 

  981. 	return p;

  982. }

  983. 

  984. static const guchar *

  985. rspamd_7zip_read_digest(struct rspamd_task *task,

  986. 						const guchar *p, const guchar *end,

  987. 						struct rspamd_archive *arch,

  988. 						guint64 num_streams,

  989. 						guint *pdigest_read)

  990. {

  991. 	guchar all_defined = *p;

  992. 	guint64 i;

  993. 	guint num_defined = 0;

  994. 	/*

  995. 	 * BYTE AllAreDefined

  996. 	 *  if (AllAreDefined == 0)

  997. 	 *  {

  998. 	 *    for(NumStreams)

  999. 	 *    BIT Defined

  1000. 	 *  }

  1001. 	 *  UINT32 CRCs[NumDefined]

  1002. 	 */

  1003. 	SZ_SKIP_BYTES(1);

  1004. 

  1005. 	if (all_defined) {

  1006. 		num_defined = num_streams;

  1007. 	}

  1008. 	else {

  1009. 		if (num_streams > 8192) {

  1010. 			/* Gah */

  1011. 			return NULL;

  1012. 		}

  1013. 

  1014. 		p = rspamd_7zip_read_bits(task, p, end, arch, num_streams, &num_defined);

  1015. 

  1016. 		if (p == NULL) {

  1017. 			return NULL;

  1018. 		}

  1019. 	}

  1020. 

  1021. 	for (i = 0; i < num_defined; i++) {

  1022. 		SZ_SKIP_BYTES(sizeof(guint32));

  1023. 	}

  1024. 

  1025. 	if (pdigest_read) {

  1026. 		*pdigest_read = num_defined;

  1027. 	}

  1028. 

  1029. 	return p;

  1030. }

  1031. 

  1032. static const guchar *

  1033. rspamd_7zip_read_pack_info(struct rspamd_task *task,

  1034. 						   const guchar *p, const guchar *end,

  1035. 						   struct rspamd_archive *arch)

  1036. {

  1037. 	guint64 pack_pos = 0, pack_streams = 0, i, cur_sz;

  1038. 	guint num_digests = 0;

  1039. 	guchar t;

  1040. 	/*

  1041. 	 *  UINT64 PackPos

  1042. 	 *  UINT64 NumPackStreams

  1043. 	 *

  1044. 	 *  []

  1045. 	 *  BYTE NID::kSize    (0x09)

  1046. 	 *  UINT64 PackSizes[NumPackStreams]

  1047. 	 *  []

  1048. 	 *

  1049. 	 *  []

  1050. 	 *  BYTE NID::kCRC      (0x0A)

  1051. 	 *  PackStreamDigests[NumPackStreams]

  1052. 	 *  []

  1053. 	 *  BYTE NID::kEnd

  1054. 	 */

  1055. 

  1056. 	SZ_READ_VINT(pack_pos);

  1057. 	SZ_READ_VINT(pack_streams);

  1058. 

  1059. 	while (p != NULL && p < end) {

  1060. 		t = *p;

  1061. 		SZ_SKIP_BYTES(1);

  1062. 		msg_debug_archive("7zip: read pack info %xc", t);

  1063. 

  1064. 		switch (t) {

  1065. 		case kSize:

  1066. 			/* We need to skip pack_streams VINTS */

  1067. 			for (i = 0; i < pack_streams; i++) {

  1068. 				SZ_READ_VINT(cur_sz);

  1069. 			}

  1070. 			break;

  1071. 		case kCRC:

  1072. 			/* CRCs are more complicated */

  1073. 			p = rspamd_7zip_read_digest(task, p, end, arch, pack_streams,

  1074. 										&num_digests);

  1075. 			break;

  1076. 		case kEnd:

  1077. 			goto end;

  1078. 			break;

  1079. 		default:

  1080. 			p = NULL;

  1081. 			msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1082. 			goto end;

  1083. 			break;

  1084. 		}

  1085. 	}

  1086. 

  1087. end:

  1088. 

  1089. 	return p;

  1090. }

  1091. 

  1092. static const guchar *

  1093. rspamd_7zip_read_folder(struct rspamd_task *task,

  1094. 						const guchar *p, const guchar *end,

  1095. 						struct rspamd_archive *arch, guint *pnstreams, guint *ndigests)

  1096. {

  1097. 	guint64 ncoders = 0, i, j, noutstreams = 0, ninstreams = 0;

  1098. 

  1099. 	SZ_READ_VINT(ncoders);

  1100. 

  1101. 	for (i = 0; i < ncoders && p != NULL && p < end; i++) {

  1102. 		guint64 sz, tmp;

  1103. 		guchar t;

  1104. 		/*

  1105. 		 * BYTE

  1106. 		 * {

  1107. 		 *   0:3 CodecIdSize

  1108. 		 *   4:  Is Complex Coder

  1109. 		 *   5:  There Are Attributes

  1110. 		 *   6:  Reserved

  1111. 		 *   7:  There are more alternative methods. (Not used anymore, must be 0).

  1112. 		 * }

  1113. 		 * BYTE CodecId[CodecIdSize]

  1114. 		 * if (Is Complex Coder)

  1115. 		 * {

  1116. 		 *   UINT64 NumInStreams;

  1117. 		 *   UINT64 NumOutStreams;

  1118. 		 * }

  1119. 		 * if (There Are Attributes)

  1120. 		 * {

  1121. 		 *   UINT64 PropertiesSize

  1122. 		 *   BYTE Properties[PropertiesSize]

  1123. 		 * }

  1124. 		 */

  1125. 		t = *p;

  1126. 		SZ_SKIP_BYTES(1);

  1127. 		sz = t & 0xF;

  1128. 		/* Codec ID */

  1129. 		tmp = 0;

  1130. 		for (j = 0; j < sz; j++) {

  1131. 			tmp <<= 8;

  1132. 			tmp += p[j];

  1133. 		}

  1134. 

  1135. 		msg_debug_archive("7zip: read codec id: %L", tmp);

  1136. 

  1137. 		if (IS_SZ_ENCRYPTED(tmp)) {

  1138. 			arch->flags |= RSPAMD_ARCHIVE_ENCRYPTED;

  1139. 		}

  1140. 

  1141. 		SZ_SKIP_BYTES(sz);

  1142. 

  1143. 		if (t & (1u << 4)) {

  1144. 			/* Complex */

  1145. 			SZ_READ_VINT(tmp); /* InStreams */

  1146. 			ninstreams += tmp;

  1147. 			SZ_READ_VINT(tmp); /* OutStreams */

  1148. 			noutstreams += tmp;

  1149. 		}

  1150. 		else {

  1151. 			/* XXX: is it correct ? */

  1152. 			noutstreams++;

  1153. 			ninstreams++;

  1154. 		}

  1155. 		if (t & (1u << 5)) {

  1156. 			/* Attributes ... */

  1157. 			SZ_READ_VINT(tmp); /* Size of attrs */

  1158. 			SZ_SKIP_BYTES(tmp);

  1159. 		}

  1160. 	}

  1161. 

  1162. 	if (noutstreams > 1) {

  1163. 		/* BindPairs, WTF, huh */

  1164. 		for (i = 0; i < noutstreams - 1; i++) {

  1165. 			guint64 tmp;

  1166. 

  1167. 			SZ_READ_VINT(tmp);

  1168. 			SZ_READ_VINT(tmp);

  1169. 		}

  1170. 	}

  1171. 

  1172. 	gint64 npacked = (gint64) ninstreams - (gint64) noutstreams + 1;

  1173. 	msg_debug_archive("7zip: instreams=%L, outstreams=%L, packed=%L",

  1174. 					  ninstreams, noutstreams, npacked);

  1175. 

  1176. 	if (npacked > 1) {

  1177. 		/* Gah... */

  1178. 		for (i = 0; i < npacked; i++) {

  1179. 			guint64 tmp;

  1180. 

  1181. 			SZ_READ_VINT(tmp);

  1182. 		}

  1183. 	}

  1184. 

  1185. 	*pnstreams = noutstreams;

  1186. 	(*ndigests) += npacked;

  1187. 

  1188. 	return p;

  1189. }

  1190. 

  1191. static const guchar *

  1192. rspamd_7zip_read_coders_info(struct rspamd_task *task,

  1193. 							 const guchar *p, const guchar *end,

  1194. 							 struct rspamd_archive *arch,

  1195. 							 guint *pnum_folders, guint *pnum_nodigest)

  1196. {

  1197. 	guint64 num_folders = 0, i, tmp;

  1198. 	guchar t;

  1199. 	guint *folder_nstreams = NULL, num_digests = 0, digests_read = 0;

  1200. 

  1201. 	while (p != NULL && p < end) {

  1202. 		/*

  1203. 		 * BYTE NID::kFolder  (0x0B)

  1204. 		 *  UINT64 NumFolders

  1205. 		 *  BYTE External

  1206. 		 *  switch(External)

  1207. 		 *  {

  1208. 		 * 	case 0:

  1209. 		 * 	  Folders[NumFolders]

  1210. 		 * 	case 1:

  1211. 		 * 	  UINT64 DataStreamIndex

  1212. 		 *   }

  1213. 		 *   BYTE ID::kCodersUnPackSize  (0x0C)

  1214. 		 *   for(Folders)

  1215. 		 * 	for(Folder.NumOutStreams)

  1216. 		 * 	 UINT64 UnPackSize;

  1217. 		 *   []

  1218. 		 *   BYTE NID::kCRC   (0x0A)

  1219. 		 *   UnPackDigests[NumFolders]

  1220. 		 *   []

  1221. 		 *   BYTE NID::kEnd

  1222. 		 */

  1223. 

  1224. 		t = *p;

  1225. 		SZ_SKIP_BYTES(1);

  1226. 		msg_debug_archive("7zip: read coders info %xc", t);

  1227. 

  1228. 		switch (t) {

  1229. 		case kFolder:

  1230. 			SZ_READ_VINT(num_folders);

  1231. 			msg_debug_archive("7zip: nfolders=%L", num_folders);

  1232. 

  1233. 			if (*p != 0) {

  1234. 				/* External folders */

  1235. 				SZ_SKIP_BYTES(1);

  1236. 				SZ_READ_VINT(tmp);

  1237. 			}

  1238. 			else {

  1239. 				SZ_SKIP_BYTES(1);

  1240. 

  1241. 				if (num_folders > 8192) {

  1242. 					/* Gah */

  1243. 					return NULL;

  1244. 				}

  1245. 

  1246. 				if (folder_nstreams) {

  1247. 					g_free(folder_nstreams);

  1248. 				}

  1249. 

  1250. 				folder_nstreams = g_malloc(sizeof(int) * num_folders);

  1251. 

  1252. 				for (i = 0; i < num_folders && p != NULL && p < end; i++) {

  1253. 					p = rspamd_7zip_read_folder(task, p, end, arch,

  1254. 												&folder_nstreams[i], &num_digests);

  1255. 				}

  1256. 			}

  1257. 			break;

  1258. 		case kCodersUnPackSize:

  1259. 			for (i = 0; i < num_folders && p != NULL && p < end; i++) {

  1260. 				if (folder_nstreams) {

  1261. 					for (guint j = 0; j < folder_nstreams[i]; j++) {

  1262. 						SZ_READ_VINT(tmp); /* Unpacked size */

  1263. 						msg_debug_archive("7zip: unpacked size "

  1264. 										  "(folder=%d, stream=%d) = %L",

  1265. 										  (gint) i, j, tmp);

  1266. 					}

  1267. 				}

  1268. 				else {

  1269. 					msg_err_task("internal 7zip error");

  1270. 				}

  1271. 			}

  1272. 			break;

  1273. 		case kCRC:

  1274. 			/*

  1275. 			 * Here are dragons. Spec tells that here there could be up

  1276. 			 * to nfolders digests. However, according to the actual source

  1277. 			 * code, in case of multiple out streams there should be digests

  1278. 			 * for all out streams.

  1279. 			 *

  1280. 			 * In the real life (tm) it is even more idiotic: all these digests

  1281. 			 * are in another section! But that section needs number of digests

  1282. 			 * that are absent here. It is the most stupid thing I've ever seen

  1283. 			 * in any file format.

  1284. 			 *

  1285. 			 * I hope there *WAS* some reason to do such shit...

  1286. 			 */

  1287. 			p = rspamd_7zip_read_digest(task, p, end, arch, num_digests,

  1288. 										&digests_read);

  1289. 			break;

  1290. 		case kEnd:

  1291. 			goto end;

  1292. 			break;

  1293. 		default:

  1294. 			p = NULL;

  1295. 			msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1296. 			goto end;

  1297. 			break;

  1298. 		}

  1299. 	}

  1300. 

  1301. end:

  1302. 

  1303. 	if (pnum_nodigest) {

  1304. 		*pnum_nodigest = num_digests - digests_read;

  1305. 	}

  1306. 	if (pnum_folders) {

  1307. 		*pnum_folders = num_folders;

  1308. 	}

  1309. 

  1310. 	if (folder_nstreams) {

  1311. 		g_free(folder_nstreams);

  1312. 	}

  1313. 

  1314. 	return p;

  1315. }

  1316. 

  1317. static const guchar *

  1318. rspamd_7zip_read_substreams_info(struct rspamd_task *task,

  1319. 								 const guchar *p, const guchar *end,

  1320. 								 struct rspamd_archive *arch,

  1321. 								 guint num_folders, guint num_nodigest)

  1322. {

  1323. 	guchar t;

  1324. 	guint i;

  1325. 	guint64 *folder_nstreams;

  1326. 

  1327. 	if (num_folders > 8192) {

  1328. 		/* Gah */

  1329. 		return NULL;

  1330. 	}

  1331. 

  1332. 	folder_nstreams = g_alloca(sizeof(guint64) * num_folders);

  1333. 	memset(folder_nstreams, 0, sizeof(guint64) * num_folders);

  1334. 

  1335. 	while (p != NULL && p < end) {

  1336. 		/*

  1337. 		 * []

  1338. 		 *  BYTE NID::kNumUnPackStream; (0x0D)

  1339. 		 *  UINT64 NumUnPackStreamsInFolders[NumFolders];

  1340. 		 *  []

  1341. 		 *

  1342. 		 *  []

  1343. 		 *  BYTE NID::kSize  (0x09)

  1344. 		 *  UINT64 UnPackSizes[??]

  1345. 		 *  []

  1346. 		 *

  1347. 		 *

  1348. 		 *  []

  1349. 		 *  BYTE NID::kCRC  (0x0A)

  1350. 		 *  Digests[Number of streams with unknown CRC]

  1351. 		 *  []

  1352. 

  1353. 		 */

  1354. 		t = *p;

  1355. 		SZ_SKIP_BYTES(1);

  1356. 

  1357. 		msg_debug_archive("7zip: read substream info %xc", t);

  1358. 

  1359. 		switch (t) {

  1360. 		case kNumUnPackStream:

  1361. 			for (i = 0; i < num_folders; i++) {

  1362. 				guint64 tmp;

  1363. 

  1364. 				SZ_READ_VINT(tmp);

  1365. 				folder_nstreams[i] = tmp;

  1366. 			}

  1367. 			break;

  1368. 		case kCRC:

  1369. 			/*

  1370. 			 * Read the comment in the rspamd_7zip_read_coders_info

  1371. 			 */

  1372. 			p = rspamd_7zip_read_digest(task, p, end, arch, num_nodigest,

  1373. 										NULL);

  1374. 			break;

  1375. 		case kSize:

  1376. 			/*

  1377. 			 * Another brain damaged logic, but we have to support it

  1378. 			 * as there are no ways to proceed without it.

  1379. 			 * In fact, it is just absent in the real life...

  1380. 			 */

  1381. 			for (i = 0; i < num_folders; i++) {

  1382. 				for (guint j = 0; j < folder_nstreams[i]; j++) {

  1383. 					guint64 tmp;

  1384. 

  1385. 					SZ_READ_VINT(tmp); /* Who cares indeed */

  1386. 				}

  1387. 			}

  1388. 			break;

  1389. 		case kEnd:

  1390. 			goto end;

  1391. 			break;

  1392. 		default:

  1393. 			p = NULL;

  1394. 			msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1395. 			goto end;

  1396. 			break;

  1397. 		}

  1398. 	}

  1399. 

  1400. end:

  1401. 	return p;

  1402. }

  1403. 

  1404. static const guchar *

  1405. rspamd_7zip_read_main_streams_info(struct rspamd_task *task,

  1406. 								   const guchar *p, const guchar *end,

  1407. 								   struct rspamd_archive *arch)

  1408. {

  1409. 	guchar t;

  1410. 	guint num_folders = 0, unknown_digests = 0;

  1411. 

  1412. 	while (p != NULL && p < end) {

  1413. 		t = *p;

  1414. 		SZ_SKIP_BYTES(1);

  1415. 		msg_debug_archive("7zip: read main streams info %xc", t);

  1416. 

  1417. 		/*

  1418. 		 *

  1419. 		 *  []

  1420. 		 *  PackInfo

  1421. 		 *  []

  1422. 

  1423. 		 *  []

  1424. 		 *  CodersInfo

  1425. 		 *  []

  1426. 		 *

  1427. 		 *  []

  1428. 		 *  SubStreamsInfo

  1429. 		 *  []

  1430. 		 *

  1431. 		 *  BYTE NID::kEnd

  1432. 		 */

  1433. 		switch (t) {

  1434. 		case kPackInfo:

  1435. 			p = rspamd_7zip_read_pack_info(task, p, end, arch);

  1436. 			break;

  1437. 		case kUnPackInfo:

  1438. 			p = rspamd_7zip_read_coders_info(task, p, end, arch, &num_folders,

  1439. 											 &unknown_digests);

  1440. 			break;

  1441. 		case kSubStreamsInfo:

  1442. 			p = rspamd_7zip_read_substreams_info(task, p, end, arch, num_folders,

  1443. 												 unknown_digests);

  1444. 			break;

  1445. 			break;

  1446. 		case kEnd:

  1447. 			goto end;

  1448. 			break;

  1449. 		default:

  1450. 			p = NULL;

  1451. 			msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1452. 			goto end;

  1453. 			break;

  1454. 		}

  1455. 	}

  1456. 

  1457. end:

  1458. 	return p;

  1459. }

  1460. 

  1461. static const guchar *

  1462. rspamd_7zip_read_archive_props(struct rspamd_task *task,

  1463. 							   const guchar *p, const guchar *end,

  1464. 							   struct rspamd_archive *arch)

  1465. {

  1466. 	guchar proptype;

  1467. 	guint64 proplen;

  1468. 

  1469. 	/*

  1470. 	 * for (;;)

  1471. 	 * {

  1472. 	 *   BYTE PropertyType;

  1473. 	 *   if (aType == 0)

  1474. 	 *     break;

  1475. 	 *   UINT64 PropertySize;

  1476. 	 *   BYTE PropertyData[PropertySize];

  1477. 	 * }

  1478. 	 */

  1479. 

  1480. 	if (p != NULL) {

  1481. 		proptype = *p;

  1482. 		SZ_SKIP_BYTES(1);

  1483. 

  1484. 		while (proptype != 0) {

  1485. 			SZ_READ_VINT(proplen);

  1486. 

  1487. 			if (p + proplen < end) {

  1488. 				p += proplen;

  1489. 			}

  1490. 			else {

  1491. 				return NULL;

  1492. 			}

  1493. 

  1494. 			proptype = *p;

  1495. 			SZ_SKIP_BYTES(1);

  1496. 		}

  1497. 	}

  1498. 

  1499. 	return p;

  1500. }

  1501. 

  1502. static GString *

  1503. rspamd_7zip_ucs2_to_utf8(struct rspamd_task *task, const guchar *p,

  1504. 						 const guchar *end)

  1505. {

  1506. 	GString *res;

  1507. 	goffset dest_pos = 0, src_pos = 0;

  1508. 	const gsize len = (end - p) / sizeof(guint16);

  1509. 	guint16 *up;

  1510. 	UChar32 wc;

  1511. 	UBool is_error = 0;

  1512. 

  1513. 	res = g_string_sized_new((end - p) * 3 / 2 + sizeof(wc) + 1);

  1514. 	up = (guint16 *) p;

  1515. 

  1516. 	while (src_pos < len) {

  1517. 		U16_NEXT(up, src_pos, len, wc);

  1518. 

  1519. 		if (wc > 0) {

  1520. 			U8_APPEND(res->str, dest_pos,

  1521. 					  res->allocated_len - 1,

  1522. 					  wc, is_error);

  1523. 		}

  1524. 

  1525. 		if (is_error) {

  1526. 			g_string_free(res, TRUE);

  1527. 

  1528. 			return NULL;

  1529. 		}

  1530. 	}

  1531. 

  1532. 	g_assert(dest_pos < res->allocated_len);

  1533. 

  1534. 	res->len = dest_pos;

  1535. 	res->str[dest_pos] = '\0';

  1536. 

  1537. 	return res;

  1538. }

  1539. 

  1540. static const guchar *

  1541. rspamd_7zip_read_files_info(struct rspamd_task *task,

  1542. 							const guchar *p, const guchar *end,

  1543. 							struct rspamd_archive *arch)

  1544. {

  1545. 	guint64 nfiles = 0, sz, i;

  1546. 	guchar t, b;

  1547. 	struct rspamd_archive_file *fentry;

  1548. 

  1549. 	SZ_READ_VINT(nfiles);

  1550. 

  1551. 	for (; p != NULL && p < end;) {

  1552. 		t = *p;

  1553. 		SZ_SKIP_BYTES(1);

  1554. 

  1555. 		msg_debug_archive("7zip: read file data type %xc", t);

  1556. 

  1557. 		if (t == kEnd) {

  1558. 			goto end;

  1559. 		}

  1560. 

  1561. 		/* This is SO SPECIAL, gah */

  1562. 		SZ_READ_VINT(sz);

  1563. 

  1564. 		switch (t) {

  1565. 		case kEmptyStream:

  1566. 		case kEmptyFile:

  1567. 		case kAnti: /* AntiFile, OMFG */

  1568. 					/* We don't care about these bits */

  1569. 		case kCTime:

  1570. 		case kATime:

  1571. 		case kMTime:

  1572. 			/* We don't care of these guys, but we still have to parse them, gah */

  1573. 			if (sz > 0) {

  1574. 				SZ_SKIP_BYTES(sz);

  1575. 			}

  1576. 			break;

  1577. 		case kName:

  1578. 			/* The most useful part in this whole bloody format */

  1579. 			b = *p; /* External flag */

  1580. 			SZ_SKIP_BYTES(1);

  1581. 

  1582. 			if (b) {

  1583. 				/* TODO: for the god sake, do something about external

  1584. 				 * filenames...

  1585. 				 */

  1586. 				guint64 tmp;

  1587. 

  1588. 				SZ_READ_VINT(tmp);

  1589. 			}

  1590. 			else {

  1591. 				for (i = 0; i < nfiles; i++) {

  1592. 					/* Zero terminated wchar_t: happy converting... */

  1593. 					/* First, find terminator */

  1594. 					const guchar *fend = NULL, *tp = p;

  1595. 					GString *res;

  1596. 

  1597. 					while (tp < end - 1) {

  1598. 						if (*tp == 0 && *(tp + 1) == 0) {

  1599. 							fend = tp;

  1600. 							break;

  1601. 						}

  1602. 

  1603. 						tp += 2;

  1604. 					}

  1605. 

  1606. 					if (fend == NULL || fend - p == 0) {

  1607. 						/* Crap instead of fname */

  1608. 						msg_debug_archive("bad 7zip name; %s", G_STRLOC);

  1609. 						goto end;

  1610. 					}

  1611. 

  1612. 					res = rspamd_7zip_ucs2_to_utf8(task, p, fend);

  1613. 

  1614. 					if (res != NULL) {

  1615. 						fentry = g_malloc0(sizeof(*fentry));

  1616. 						fentry->fname = res;

  1617. 						g_ptr_array_add(arch->files, fentry);

  1618. 						msg_debug_archive("7zip: found file %v", res);

  1619. 					}

  1620. 					else {

  1621. 						msg_debug_archive("bad 7zip name; %s", G_STRLOC);

  1622. 					}

  1623. 					/* Skip zero terminating character */

  1624. 					p = fend + 2;

  1625. 				}

  1626. 			}

  1627. 			break;

  1628. 		case kDummy:

  1629. 		case kWinAttributes:

  1630. 			if (sz > 0) {

  1631. 				SZ_SKIP_BYTES(sz);

  1632. 			}

  1633. 			break;

  1634. 		default:

  1635. 			p = NULL;

  1636. 			msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1637. 			goto end;

  1638. 			break;

  1639. 		}

  1640. 	}

  1641. 

  1642. end:

  1643. 	return p;

  1644. }

  1645. 

  1646. static const guchar *

  1647. rspamd_7zip_read_next_section(struct rspamd_task *task,

  1648. 							  const guchar *p, const guchar *end,

  1649. 							  struct rspamd_archive *arch,

  1650. 							  struct rspamd_mime_part *part)

  1651. {

  1652. 	guchar t = *p;

  1653. 

  1654. 	SZ_SKIP_BYTES(1);

  1655. 

  1656. 	msg_debug_archive("7zip: read section %xc", t);

  1657. 

  1658. 	switch (t) {

  1659. 	case kHeader:

  1660. 		/* We just skip byte and go further */

  1661. 		break;

  1662. 	case kEncodedHeader:

  1663. 		/*

  1664. 		 * In fact, headers are just packed, but we assume it as

  1665. 		 * encrypted to distinguish from the normal archives

  1666. 		 */

  1667. 		{

  1668. 			msg_debug_archive("7zip: encoded header, needs to be uncompressed");

  1669. 			struct archive *a = archive_read_new();

  1670. 			archive_read_support_format_7zip(a);

  1671. 			int r = archive_read_open_memory(a, part->parsed_data.begin, part->parsed_data.len);

  1672. 			if (r != ARCHIVE_OK) {

  1673. 				msg_debug_archive("7zip: cannot open memory archive: %s", archive_error_string(a));

  1674. 				archive_read_free(a);

  1675. 				return NULL;

  1676. 			}

  1677. 

  1678. 			/* Clean the existing files if any */

  1679. 			rspamd_archive_dtor(arch);

  1680. 			arch->files = g_ptr_array_new();

  1681. 

  1682. 			struct archive_entry *ae;

  1683. 

  1684. 			while (archive_read_next_header(a, &ae) == ARCHIVE_OK) {

  1685. 				const char *name = archive_entry_pathname(ae);

  1686. 				if (name) {

  1687. 					msg_debug_archive("7zip: found file %s", name);

  1688. 					struct rspamd_archive_file *f = g_malloc0(sizeof(*f));

  1689. 					f->fname = g_string_new(name);

  1690. 					g_ptr_array_add(arch->files, f);

  1691. 				}

  1692. 				archive_read_data_skip(a);

  1693. 			}

  1694. 			archive_read_free(a);

  1695. 			p = NULL; /* Stop internal processor, as we rely on libarchive here */

  1696. 			break;

  1697. 		}

  1698. 	case kArchiveProperties:

  1699. 		p = rspamd_7zip_read_archive_props(task, p, end, arch);

  1700. 		break;

  1701. 	case kMainStreamsInfo:

  1702. 		p = rspamd_7zip_read_main_streams_info(task, p, end, arch);

  1703. 		break;

  1704. 	case kAdditionalStreamsInfo:

  1705. 		p = rspamd_7zip_read_main_streams_info(task, p, end, arch);

  1706. 		break;

  1707. 	case kFilesInfo:

  1708. 		p = rspamd_7zip_read_files_info(task, p, end, arch);

  1709. 		break;

  1710. 	case kEnd:

  1711. 		p = NULL;

  1712. 		msg_debug_archive("7zip: read final section");

  1713. 		break;

  1714. 	default:

  1715. 		p = NULL;

  1716. 		msg_debug_archive("bad 7zip type: %xc; %s", t, G_STRLOC);

  1717. 		break;

  1718. 	}

  1719. 

  1720. 	return p;

  1721. }

  1722. 

  1723. static void

  1724. rspamd_archive_process_7zip(struct rspamd_task *task,

  1725. 							struct rspamd_mime_part *part)

  1726. {

  1727. 	struct rspamd_archive *arch;

  1728. 	const guchar *start, *p, *end;

  1729. 	const guchar sz_magic[] = {'7', 'z', 0xBC, 0xAF, 0x27, 0x1C};

  1730. 	guint64 section_offset = 0, section_length = 0;

  1731. 

  1732. 	start = part->parsed_data.begin;

  1733. 	p = start;

  1734. 	end = p + part->parsed_data.len;

  1735. 

  1736. 	if (end - p <= sizeof(guint64) + sizeof(guint32) ||

  1737. 		memcmp(p, sz_magic, sizeof(sz_magic)) != 0) {

  1738. 		msg_debug_archive("7z archive is invalid (no 7z magic)");

  1739. 

  1740. 		return;

  1741. 	}

  1742. 

  1743. 	arch = rspamd_mempool_alloc0(task->task_pool, sizeof(*arch));

  1744. 	arch->files = g_ptr_array_new();

  1745. 	arch->type = RSPAMD_ARCHIVE_7ZIP;

  1746. 	rspamd_mempool_add_destructor(task->task_pool, rspamd_archive_dtor,

  1747. 								  arch);

  1748. 

  1749. 	/* Magic (6 bytes) + version (2 bytes) + crc32 (4 bytes) */

  1750. 	p += sizeof(guint64) + sizeof(guint32);

  1751. 

  1752. 	SZ_READ_UINT64(section_offset);

  1753. 	SZ_READ_UINT64(section_length);

  1754. 

  1755. 	if (end - p > sizeof(guint32)) {

  1756. 		p += sizeof(guint32);

  1757. 	}

  1758. 	else {

  1759. 		msg_debug_archive("7z archive is invalid (truncated crc)");

  1760. 

  1761. 		return;

  1762. 	}

  1763. 

  1764. 	if (end - p > section_offset) {

  1765. 		p += section_offset;

  1766. 	}

  1767. 	else {

  1768. 		msg_debug_archive("7z archive is invalid (incorrect section offset)");

  1769. 

  1770. 		return;

  1771. 	}

  1772. 

  1773. 	while ((p = rspamd_7zip_read_next_section(task, p, end, arch, part)) != NULL)

  1774. 		;

  1775. 

  1776. 	part->part_type = RSPAMD_MIME_PART_ARCHIVE;

  1777. 	part->specific.arch = arch;

  1778. 	if (part->cd != NULL) {

  1779. 		arch->archive_name = &part->cd->filename;

  1780. 	}

  1781. 	arch->size = part->parsed_data.len;

  1782. }

  1783. 

  1784. static void

  1785. rspamd_archive_process_gzip(struct rspamd_task *task,

  1786. 							struct rspamd_mime_part *part)

  1787. {

  1788. 	struct rspamd_archive *arch;

  1789. 	const guchar *start, *p, *end;

  1790. 	const guchar gz_magic[] = {0x1F, 0x8B};

  1791. 	guchar flags;

  1792. 

  1793. 	start = part->parsed_data.begin;

  1794. 	p = start;

  1795. 	end = p + part->parsed_data.len;

  1796. 

  1797. 	if (end - p <= 10 || memcmp(p, gz_magic, sizeof(gz_magic)) != 0) {

  1798. 		msg_debug_archive("gzip archive is invalid (no gzip magic)");

  1799. 

  1800. 		return;

  1801. 	}

  1802. 

  1803. 	arch = rspamd_mempool_alloc0(task->task_pool, sizeof(*arch));

  1804. 	arch->files = g_ptr_array_sized_new(1);

  1805. 	arch->type = RSPAMD_ARCHIVE_GZIP;

  1806. 	if (part->cd) {

  1807. 		arch->archive_name = &part->cd->filename;

  1808. 	}

  1809. 	rspamd_mempool_add_destructor(task->task_pool, rspamd_archive_dtor,

  1810. 								  arch);

  1811. 

  1812. 	flags = p[3];

  1813. 

  1814. 	if (flags & (1u << 5)) {

  1815. 		arch->flags |= RSPAMD_ARCHIVE_ENCRYPTED;

  1816. 	}

  1817. 

  1818. 	if (flags & (1u << 3)) {

  1819. 		/* We have file name presented in archive, try to use it */

  1820. 		if (flags & (1u << 1)) {

  1821. 			/* Multipart */

  1822. 			p += 12;

  1823. 		}

  1824. 		else {

  1825. 			p += 10;

  1826. 		}

  1827. 

  1828. 		if (flags & (1u << 2)) {

  1829. 			/* Optional section */

  1830. 			guint16 optlen = 0;

  1831. 

  1832. 			RAR_READ_UINT16(optlen);

  1833. 

  1834. 			if (end <= p + optlen) {

  1835. 				msg_debug_archive("gzip archive is invalid, bad extra length: %d",

  1836. 								  (int) optlen);

  1837. 

  1838. 				return;

  1839. 			}

  1840. 

  1841. 			p += optlen;

  1842. 		}

  1843. 

  1844. 		/* Read file name */

  1845. 		const guchar *fname_start = p;

  1846. 

  1847. 		while (p < end) {

  1848. 			if (*p == '\0') {

  1849. 				if (p > fname_start) {

  1850. 					struct rspamd_archive_file *f;

  1851. 

  1852. 					f = g_malloc0(sizeof(*f));

  1853. 

  1854. 					rspamd_archive_file_try_utf(task, arch, f,

  1855. 												fname_start, p - fname_start);

  1856. 

  1857. 					if (f->fname) {

  1858. 						g_ptr_array_add(arch->files, f);

  1859. 

  1860. 						if (f->flags & RSPAMD_ARCHIVE_FILE_OBFUSCATED) {

  1861. 							arch->flags |= RSPAMD_ARCHIVE_HAS_OBFUSCATED_FILES;

  1862. 						}

  1863. 					}

  1864. 					else {

  1865. 						/* Invalid filename, skip */

  1866. 						g_free(f);

  1867. 					}

  1868. 

  1869. 					goto set;

  1870. 				}

  1871. 			}

  1872. 

  1873. 			p++;

  1874. 		}

  1875. 

  1876. 		/* Wrong filename, not zero terminated */

  1877. 		msg_debug_archive("gzip archive is invalid, bad filename at pos %d",

  1878. 						  (int) (p - start));

  1879. 

  1880. 		return;

  1881. 	}

  1882. 

  1883. 	/* Fallback, we need to extract file name from archive name if possible */

  1884. 	if (part->cd && part->cd->filename.len > 0) {

  1885. 		const gchar *dot_pos, *slash_pos;

  1886. 

  1887. 		dot_pos = rspamd_memrchr(part->cd->filename.begin, '.',

  1888. 								 part->cd->filename.len);

  1889. 

  1890. 		if (dot_pos) {

  1891. 			struct rspamd_archive_file *f;

  1892. 

  1893. 			slash_pos = rspamd_memrchr(part->cd->filename.begin, '/',

  1894. 									   part->cd->filename.len);

  1895. 

  1896. 			if (slash_pos && slash_pos < dot_pos) {

  1897. 				f = g_malloc0(sizeof(*f));

  1898. 				f->fname = g_string_sized_new(dot_pos - slash_pos);

  1899. 				g_string_append_len(f->fname, slash_pos + 1,

  1900. 									dot_pos - slash_pos - 1);

  1901. 

  1902. 				msg_debug_archive("fallback to gzip filename based on cd: %v",

  1903. 								  f->fname);

  1904. 

  1905. 				g_ptr_array_add(arch->files, f);

  1906. 

  1907. 				goto set;

  1908. 			}

  1909. 			else {

  1910. 				const gchar *fname_start = part->cd->filename.begin;

  1911. 

  1912. 				f = g_malloc0(sizeof(*f));

  1913. 

  1914. 				if (memchr(fname_start, '.', part->cd->filename.len) != dot_pos) {

  1915. 					/* Double dots, something like foo.exe.gz */

  1916. 					f->fname = g_string_sized_new(dot_pos - fname_start);

  1917. 					g_string_append_len(f->fname, fname_start,

  1918. 										dot_pos - fname_start);

  1919. 				}

  1920. 				else {

  1921. 					/* Single dot, something like foo.gzz */

  1922. 					f->fname = g_string_sized_new(part->cd->filename.len);

  1923. 					g_string_append_len(f->fname, fname_start,

  1924. 										part->cd->filename.len);

  1925. 				}

  1926. 

  1927. 				msg_debug_archive("fallback to gzip filename based on cd: %v",

  1928. 								  f->fname);

  1929. 

  1930. 				g_ptr_array_add(arch->files, f);

  1931. 

  1932. 				goto set;

  1933. 			}

  1934. 		}

  1935. 	}

  1936. 

  1937. 	return;

  1938. 

  1939. set:

  1940. 	/* Set archive data */

  1941. 	part->part_type = RSPAMD_MIME_PART_ARCHIVE;

  1942. 	part->specific.arch = arch;

  1943. 	arch->size = part->parsed_data.len;

  1944. }

  1945. 

  1946. static gboolean

  1947. rspamd_archive_cheat_detect(struct rspamd_mime_part *part, const gchar *str,

  1948. 							const guchar *magic_start, gsize magic_len)

  1949. {

  1950. 	struct rspamd_content_type *ct;

  1951. 	const gchar *p;

  1952. 	rspamd_ftok_t srch, *fname;

  1953. 

  1954. 	ct = part->ct;

  1955. 	RSPAMD_FTOK_ASSIGN(&srch, "application");

  1956. 

  1957. 	if (ct && ct->type.len && ct->subtype.len > 0 && rspamd_ftok_cmp(&ct->type, &srch) == 0) {

  1958. 		if (rspamd_substring_search_caseless(ct->subtype.begin, ct->subtype.len,

  1959. 											 str, strlen(str)) != -1) {

  1960. 			/* We still need to check magic, see #1848 */

  1961. 			if (magic_start != NULL) {

  1962. 				if (part->parsed_data.len > magic_len &&

  1963. 					memcmp(part->parsed_data.begin,

  1964. 						   magic_start, magic_len) == 0) {

  1965. 					return TRUE;

  1966. 				}

  1967. 				/* No magic, refuse this type of archive */

  1968. 				return FALSE;

  1969. 			}

  1970. 			else {

  1971. 				return TRUE;

  1972. 			}

  1973. 		}

  1974. 	}

  1975. 

  1976. 	if (part->cd) {

  1977. 		fname = &part->cd->filename;

  1978. 

  1979. 		if (fname && fname->len > strlen(str)) {

  1980. 			p = fname->begin + fname->len - strlen(str);

  1981. 

  1982. 			if (rspamd_lc_cmp(p, str, strlen(str)) == 0) {

  1983. 				if (*(p - 1) == '.') {

  1984. 					if (magic_start != NULL) {

  1985. 						if (part->parsed_data.len > magic_len &&

  1986. 							memcmp(part->parsed_data.begin,

  1987. 								   magic_start, magic_len) == 0) {

  1988. 							return TRUE;

  1989. 						}

  1990. 						/* No magic, refuse this type of archive */

  1991. 						return FALSE;

  1992. 					}

  1993. 

  1994. 					return TRUE;

  1995. 				}

  1996. 			}

  1997. 		}

  1998. 

  1999. 		if (magic_start != NULL) {

  2000. 			if (part->parsed_data.len > magic_len &&

  2001. 				memcmp(part->parsed_data.begin, magic_start, magic_len) == 0) {

  2002. 				return TRUE;

  2003. 			}

  2004. 		}

  2005. 	}

  2006. 	else {

  2007. 		if (magic_start != NULL) {

  2008. 			if (part->parsed_data.len > magic_len &&

  2009. 				memcmp(part->parsed_data.begin, magic_start, magic_len) == 0) {

  2010. 				return TRUE;

  2011. 			}

  2012. 		}

  2013. 	}

  2014. 

  2015. 	return FALSE;

  2016. }

  2017. 

  2018. void rspamd_archives_process(struct rspamd_task *task)

  2019. {

  2020. 	guint i;

  2021. 	struct rspamd_mime_part *part;

  2022. 	const guchar rar_magic[] = {0x52, 0x61, 0x72, 0x21, 0x1A, 0x07};

  2023. 	const guchar zip_magic[] = {0x50, 0x4b, 0x03, 0x04};

  2024. 	const guchar sz_magic[] = {'7', 'z', 0xBC, 0xAF, 0x27, 0x1C};

  2025. 	const guchar gz_magic[] = {0x1F, 0x8B, 0x08};

  2026. 

  2027. 	PTR_ARRAY_FOREACH(MESSAGE_FIELD(task, parts), i, part)

  2028. 	{

  2029. 		if (part->part_type == RSPAMD_MIME_PART_UNDEFINED) {

  2030. 			if (part->parsed_data.len > 0) {

  2031. 				if (rspamd_archive_cheat_detect(part, "zip",

  2032. 												zip_magic, sizeof(zip_magic))) {

  2033. 					rspamd_archive_process_zip(task, part);

  2034. 				}

  2035. 				else if (rspamd_archive_cheat_detect(part, "rar",

  2036. 													 rar_magic, sizeof(rar_magic))) {

  2037. 					rspamd_archive_process_rar(task, part);

  2038. 				}

  2039. 				else if (rspamd_archive_cheat_detect(part, "7z",

  2040. 													 sz_magic, sizeof(sz_magic))) {

  2041. 					rspamd_archive_process_7zip(task, part);

  2042. 				}

  2043. 				else if (rspamd_archive_cheat_detect(part, "gz",

  2044. 													 gz_magic, sizeof(gz_magic))) {

  2045. 					rspamd_archive_process_gzip(task, part);

  2046. 				}

  2047. 

  2048. 				if (part->ct && (part->ct->flags & RSPAMD_CONTENT_TYPE_TEXT) &&

  2049. 					part->part_type == RSPAMD_MIME_PART_ARCHIVE &&

  2050. 					part->specific.arch) {

  2051. 					struct rspamd_archive *arch = part->specific.arch;

  2052. 

  2053. 					msg_info_task("found %s archive with incorrect content-type: %T/%T",

  2054. 								  rspamd_archive_type_str(arch->type),

  2055. 								  &part->ct->type, &part->ct->subtype);

  2056. 

  2057. 					if (!(part->ct->flags & RSPAMD_CONTENT_TYPE_MISSING)) {

  2058. 						part->ct->flags |= RSPAMD_CONTENT_TYPE_BROKEN;

  2059. 					}

  2060. 				}

  2061. 			}

  2062. 		}

  2063. 	}

  2064. }

  2065. 

  2066. 

  2067. const gchar *

  2068. rspamd_archive_type_str(enum rspamd_archive_type type)

  2069. {

  2070. 	const gchar *ret = "unknown";

  2071. 

  2072. 	switch (type) {

  2073. 	case RSPAMD_ARCHIVE_ZIP:

  2074. 		ret = "zip";

  2075. 		break;

  2076. 	case RSPAMD_ARCHIVE_RAR:

  2077. 		ret = "rar";

  2078. 		break;

  2079. 	case RSPAMD_ARCHIVE_7ZIP:

  2080. 		ret = "7z";

  2081. 		break;

  2082. 	case RSPAMD_ARCHIVE_GZIP:

  2083. 		ret = "gz";

  2084. 		break;

  2085. 	}

  2086. 

  2087. 	return ret;

  2088. }