| blob | 9cae021137e9b300b650aaf8c454494abbe9a88f |
1 /*
2 ** SQLCipher
3 ** crypto.c developed by Stephen Lombardo (Zetetic LLC)
4 ** sjlombardo at zetetic dot net
5 ** http://zetetic.net
6 **
7 ** Copyright (c) 2009, ZETETIC LLC
8 ** All rights reserved.
9 **
10 ** Redistribution and use in source and binary forms, with or without
11 ** modification, are permitted provided that the following conditions are met:
12 ** * Redistributions of source code must retain the above copyright
13 ** notice, this list of conditions and the following disclaimer.
14 ** * Redistributions in binary form must reproduce the above copyright
15 ** notice, this list of conditions and the following disclaimer in the
16 ** documentation and/or other materials provided with the distribution.
17 ** * Neither the name of the ZETETIC LLC nor the
18 ** names of its contributors may be used to endorse or promote products
19 ** derived from this software without specific prior written permission.
20 **
21 ** THIS SOFTWARE IS PROVIDED BY ZETETIC LLC ''AS IS'' AND ANY
22 ** EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
23 ** WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
24 ** DISCLAIMED. IN NO EVENT SHALL ZETETIC LLC BE LIABLE FOR ANY
25 ** DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
26 ** (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
27 ** LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
28 ** ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
29 ** (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
30 ** SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
31 **
32 */
33 /* BEGIN CRYPTO */
34 #ifdef SQLITE_HAS_CODEC
36 #include <assert.h>
43 }
45 /* Generate code to return a string value */
46 static void codec_vdbe_return_static_string(Parse *pParse, const char *zLabel, const char *value){
52 }
63 /* before forcing the page size we need to unset the BTS_PAGESIZE_FIXED flag, else
64 sqliteBtreeSetPageSize will block the change */
66 CODEC_TRACE(("codec_set_btree_to_codec_pagesize: sqlite3BtreeSetPageSize() size=%d reserve=%d\n", page_sz, reserve_sz));
70 }
74 CODEC_TRACE(("codec_set_pass_key: entered db=%p nDb=%d zKey=%s nKey=%d for_ctx=%d\n", db, nDb, (char *)zKey, nKey, for_ctx));
79 }
81 }
90 }
92 CODEC_TRACE(("codec_pragma: entered db=%p iDb=%d pParse=%p zLeft=%s zRight=%s ctx=%p\n", db, iDb, pParse, zLeft, zRight, ctx));
97 }
109 }
110 }
123 }
124 }
134 }
135 }
152 }
153 }
162 }
169 /* since the use of hmac has changed, the page size may also change */
176 }
177 }
182 // clear both pgno endian flags
192 }
200 }
201 }
202 }
212 }
217 }
218 }
221 }
223 }
225 /*
226 * sqlite3Codec can be called in multiple modes.
227 * encrypt mode - expected to return a pointer to the
228 * encrypted data without altering pData.
229 * decrypt mode - expected to return a pointer to pData, with
230 * the data decrypted in the input buffer
231 */
241 /* call to derive keys if not present yet */
245 }
247 if(pgno == 1) offset = FILE_HEADER_SZ; /* adjust starting pointers in data page for header offset on first page*/
254 if(pgno == 1) memcpy(buffer, SQLITE_FILE_HEADER, FILE_HEADER_SZ); /* copy file header to the first 16 bytes of the page */
255 rc = sqlcipher_page_cipher(ctx, CIPHER_READ_CTX, pgno, CIPHER_DECRYPT, page_sz - offset, pData + offset, (unsigned char*)buffer + offset);
262 rc = sqlcipher_page_cipher(ctx, CIPHER_WRITE_CTX, pgno, CIPHER_ENCRYPT, page_sz - offset, pData + offset, (unsigned char*)buffer + offset);
268 rc = sqlcipher_page_cipher(ctx, CIPHER_READ_CTX, pgno, CIPHER_ENCRYPT, page_sz - offset, pData + offset, (unsigned char*)buffer + offset);
275 }
276 }
283 }
288 CODEC_TRACE(("sqlite3CodecAttach: entered nDb=%d zKey=%s, nKey=%d\n", nDb, (char *)zKey, nKey));
301 /* point the internal codec argument against the contet to be prepared */
304 if(rc != SQLITE_OK) return rc; /* initialization failed, do not attach potentially corrupted context */
306 sqlite3pager_sqlite3PagerSetCodec(sqlite3BtreePager(pDb->pBt), sqlite3Codec, NULL, sqlite3FreeCodecArg, (void *) ctx);
310 /* force secure delete. This has the benefit of wiping internal data when deleted
311 and also ensures that all pages are written to disk (i.e. not skipped by
312 sqlite3PagerDontWrite optimizations) */
315 /* if fd is null, then this is an in-memory database and
316 we dont' want to overwrite the AutoVacuum settings
317 if not null, then set to the default */
320 }
322 }
324 }
327 /* do nothing, security enhancements are always active */
328 }
332 /* attach key if db and pKey are not null and nKey is > 0 */
335 }
337 }
339 /* sqlite3_rekey
340 ** Given a database, this will reencrypt the database using a new key.
341 ** There is only one possible modes of operation - to encrypt a database
342 ** that is already encrpyted. If the database is not already encrypted
343 ** this should do nothing
344 ** The proposed logic for this function follows:
345 ** 1. Determine if the database is already encryptped
346 ** 2. If there is NOT already a key present do nothing
347 ** 3. If there is a key present, re-encrypt the database with the new key
348 */
357 Pgno pgno;
364 /* there was no codec attached to this database, so this should do nothing! */
367 }
373 /* do stuff here to rewrite the database
374 ** 1. Create a transaction on the database
375 ** 2. Iterate through each page, reading it and then writing it.
376 ** 3. If that goes ok then commit and put ctx->rekey into ctx->key
377 ** note: don't deallocate rekey since it may be used in a subsequent iteration
378 */
381 for(pgno = 1; rc == SQLITE_OK && pgno <= page_count; pgno++) { /* pgno's start at 1 see pager.c:pagerAcquire */
382 if(!sqlite3pager_is_mj_pgno(pPager, pgno)) { /* skip this page (see pager.c:pagerAcquire for reasoning) */
390 }
393 }
394 }
395 }
397 /* if commit was successful commit and copy the rekey data to current key, else rollback to release locks */
405 }
408 }
410 }
412 }
427 }
428 }
429 }
431 #ifndef OMIT_EXPORT
433 /*
434 * Implementation of an "export" function that allows a caller
435 * to duplicate the main database to an attached database. This is intended
436 * as a conveneince for users who need to:
437 *
438 * 1. migrate from an non-encrypted database to an encrypted database
439 * 2. move from an encrypted database to a non-encrypted database
440 * 3. convert beween the various flavors of encrypted databases.
441 *
442 * This implementation is based heavily on the procedure and code used
443 * in vacuum.c, but is exposed as a function that allows export to any
444 * named attached database.
445 */
447 /*
448 ** Finalize a prepared statement. If there was an error, store the
449 ** text of the error message in *pzErrMsg. Return the result code.
450 **
451 ** Based on vacuumFinalize from vacuum.c
452 */
458 }
460 }
462 /*
463 ** Execute zSql on database db. Return an error code.
464 **
465 ** Based on execSql from vacuum.c
466 */
472 }
476 }
480 }
482 /*
483 ** Execute zSql on database db. The statement returns exactly
484 ** one column. Execute this as SQL on the same database.
485 **
486 ** Based on execExecSql from vacuum.c
487 */
500 }
501 }
504 }
506 /*
507 * copy database and schema from the main database to an attached database
508 *
509 * Based on sqlite3RunVacuum from vacuum.c
510 */
530 /* Query the schema of the main database. Create a mirror schema
531 ** in the temporary database.
532 */
534 "SELECT 'CREATE TABLE %s.' || substr(sql,14) "
535 " FROM sqlite_master WHERE type='table' AND name!='sqlite_sequence'"
536 " AND rootpage>0"
543 "SELECT 'CREATE INDEX %s.' || substr(sql,14)"
544 " FROM sqlite_master WHERE sql LIKE 'CREATE INDEX %%' "
551 "SELECT 'CREATE UNIQUE INDEX %s.' || substr(sql,21) "
552 " FROM sqlite_master WHERE sql LIKE 'CREATE UNIQUE INDEX %%'"
558 /* Loop through the tables in the main database. For each, do
559 ** an "INSERT INTO rekey_db.xxx SELECT * FROM main.xxx;" to copy
560 ** the contents to the temporary database.
561 */
563 "SELECT 'INSERT INTO %s.' || quote(name) "
564 "|| ' SELECT * FROM main.' || quote(name) || ';'"
565 "FROM main.sqlite_master "
566 "WHERE type = 'table' AND name!='sqlite_sequence' "
567 " AND rootpage>0"
573 /* Copy over the sequence table
574 */
576 "SELECT 'DELETE FROM %s.' || quote(name) || ';' "
577 "FROM %s.sqlite_master WHERE name='sqlite_sequence' "
584 "SELECT 'INSERT INTO %s.' || quote(name) "
585 "|| ' SELECT * FROM main.' || quote(name) || ';' "
586 "FROM %s.sqlite_master WHERE name=='sqlite_sequence';"
592 /* Copy the triggers, views, and virtual tables from the main database
593 ** over to the temporary database. None of these objects has any
594 ** associated storage, so all we have to do is copy their entries
595 ** from the SQLITE_MASTER table.
596 */
598 "INSERT INTO %s.sqlite_master "
599 " SELECT type, name, tbl_name, rootpage, sql"
600 " FROM main.sqlite_master"
601 " WHERE type='view' OR type='trigger'"
602 " OR (type='table' AND rootpage=0)"
609 end_of_export:
623 }
624 }
625 }
627 #endif
629 /* END CRYPTO */
630 #endif