2016-03-24 12:26:04 -04:00
|
|
|
/*
|
|
|
|
|
* Author: 웃 Sebastian Andrzej Siewior
|
2018-03-05 16:34:35 -05:00
|
|
|
* Summary: Glue code for libmspack handling.
|
2019-05-05 15:08:46 -04:00
|
|
|
*
|
|
|
|
|
* Acknowledgements: ClamAV uses Stuart Caie's libmspack to parse as number of
|
2018-03-05 16:34:35 -05:00
|
|
|
* Microsoft file formats.
|
2016-03-24 12:26:04 -04:00
|
|
|
* ✉ sebastian @ breakpoint ̣cc
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <sys/stat.h>
|
|
|
|
|
#include <fcntl.h>
|
2017-09-28 14:04:47 -04:00
|
|
|
#include <stdarg.h>
|
2017-10-18 15:52:19 -04:00
|
|
|
#include <stdio.h>
|
2016-03-24 12:26:04 -04:00
|
|
|
|
|
|
|
|
#include <mspack.h>
|
|
|
|
|
|
|
|
|
|
#include "clamav.h"
|
|
|
|
|
#include "fmap.h"
|
|
|
|
|
#include "scanners.h"
|
|
|
|
|
#include "others.h"
|
|
|
|
|
|
|
|
|
|
enum mspack_type {
|
2018-12-03 12:40:13 -05:00
|
|
|
FILETYPE_DUNNO,
|
|
|
|
|
FILETYPE_FMAP,
|
|
|
|
|
FILETYPE_FILENAME,
|
2016-03-24 12:26:04 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
struct mspack_name {
|
2018-12-03 12:40:13 -05:00
|
|
|
fmap_t *fmap;
|
|
|
|
|
off_t org;
|
2016-03-24 12:26:04 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
struct mspack_system_ex {
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_system ops;
|
|
|
|
|
off_t max_size;
|
2016-03-24 12:26:04 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
struct mspack_handle {
|
2018-12-03 12:40:13 -05:00
|
|
|
enum mspack_type type;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
fmap_t *fmap;
|
|
|
|
|
off_t org;
|
|
|
|
|
off_t offset;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
FILE *f;
|
|
|
|
|
off_t max_size;
|
2016-03-24 12:26:04 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static struct mspack_file *mspack_fmap_open(struct mspack_system *self,
|
2018-12-03 12:40:13 -05:00
|
|
|
const char *filename, int mode)
|
2016-03-24 12:26:04 -04:00
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_name *mspack_name;
|
|
|
|
|
struct mspack_handle *mspack_handle;
|
|
|
|
|
struct mspack_system_ex *self_ex;
|
|
|
|
|
const char *fmode;
|
|
|
|
|
const struct mspack_system *mptr = self;
|
|
|
|
|
|
|
|
|
|
if (!filename) {
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
mspack_handle = malloc(sizeof(*mspack_handle));
|
|
|
|
|
memset(mspack_handle, 0, (sizeof(*mspack_handle)));
|
|
|
|
|
if (!mspack_handle) {
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
memset(mspack_handle, 0, sizeof(*mspack_handle));
|
|
|
|
|
|
|
|
|
|
switch (mode) {
|
|
|
|
|
case MSPACK_SYS_OPEN_READ:
|
|
|
|
|
mspack_handle->type = FILETYPE_FMAP;
|
|
|
|
|
|
|
|
|
|
mspack_name = (struct mspack_name *)filename;
|
|
|
|
|
mspack_handle->fmap = mspack_name->fmap;
|
|
|
|
|
mspack_handle->org = mspack_name->org;
|
|
|
|
|
mspack_handle->offset = 0;
|
|
|
|
|
|
|
|
|
|
return (struct mspack_file *)mspack_handle;
|
|
|
|
|
|
|
|
|
|
case MSPACK_SYS_OPEN_WRITE:
|
|
|
|
|
fmode = "wb";
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_OPEN_UPDATE:
|
|
|
|
|
fmode = "r+b";
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_OPEN_APPEND:
|
|
|
|
|
fmode = "ab";
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
cli_dbgmsg("%s() wrong mode\n", __func__);
|
|
|
|
|
goto out_err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mspack_handle->type = FILETYPE_FILENAME;
|
|
|
|
|
|
|
|
|
|
mspack_handle->f = fopen(filename, fmode);
|
|
|
|
|
if (!mspack_handle->f) {
|
|
|
|
|
cli_dbgmsg("%s() failed %d\n", __func__, __LINE__);
|
|
|
|
|
goto out_err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
self_ex = (struct mspack_system_ex *)((char *)mptr - offsetof(struct mspack_system_ex, ops));
|
|
|
|
|
mspack_handle->max_size = self_ex->max_size;
|
|
|
|
|
return (struct mspack_file *)mspack_handle;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
|
|
|
|
out_err:
|
2018-12-03 12:40:13 -05:00
|
|
|
memset(mspack_handle, 0, (sizeof(*mspack_handle)));
|
|
|
|
|
free(mspack_handle);
|
|
|
|
|
mspack_handle = NULL;
|
|
|
|
|
return NULL;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mspack_fmap_close(struct mspack_file *file)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_handle *mspack_handle = (struct mspack_handle *)file;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
if (!mspack_handle)
|
|
|
|
|
return;
|
2017-10-09 11:50:50 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
if (mspack_handle->type == FILETYPE_FILENAME)
|
|
|
|
|
if (mspack_handle->f)
|
|
|
|
|
fclose(mspack_handle->f);
|
2017-10-09 11:50:50 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
memset(mspack_handle, 0, (sizeof(*mspack_handle)));
|
|
|
|
|
free(mspack_handle);
|
|
|
|
|
mspack_handle = NULL;
|
|
|
|
|
return;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int mspack_fmap_read(struct mspack_file *file, void *buffer, int bytes)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_handle *mspack_handle = (struct mspack_handle *)file;
|
|
|
|
|
off_t offset;
|
|
|
|
|
size_t count;
|
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
|
|
if (bytes < 0) {
|
|
|
|
|
cli_dbgmsg("%s() %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
if (!mspack_handle) {
|
|
|
|
|
cli_dbgmsg("%s() %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (mspack_handle->type == FILETYPE_FMAP) {
|
|
|
|
|
offset = mspack_handle->offset + mspack_handle->org;
|
|
|
|
|
|
|
|
|
|
ret = fmap_readn(mspack_handle->fmap, buffer, offset, bytes);
|
|
|
|
|
if (ret != bytes) {
|
|
|
|
|
cli_dbgmsg("%s() %d %d, %d\n", __func__, __LINE__, bytes, ret);
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mspack_handle->offset += bytes;
|
|
|
|
|
return bytes;
|
|
|
|
|
}
|
|
|
|
|
count = fread(buffer, bytes, 1, mspack_handle->f);
|
|
|
|
|
if (count < 1) {
|
2019-05-05 15:08:46 -04:00
|
|
|
cli_dbgmsg("%s() %d %d, %zu\n", __func__, __LINE__, bytes, count);
|
2018-12-03 12:40:13 -05:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
return bytes;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int mspack_fmap_write(struct mspack_file *file, void *buffer, int bytes)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_handle *mspack_handle = (struct mspack_handle *)file;
|
|
|
|
|
size_t count;
|
|
|
|
|
off_t max_size;
|
|
|
|
|
|
|
|
|
|
if (bytes < 0 || !mspack_handle) {
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (mspack_handle->type == FILETYPE_FMAP) {
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!bytes)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
max_size = mspack_handle->max_size;
|
|
|
|
|
if (!max_size)
|
|
|
|
|
return bytes;
|
|
|
|
|
|
|
|
|
|
max_size = max_size < (off_t)bytes ? max_size : (off_t)bytes;
|
|
|
|
|
|
|
|
|
|
mspack_handle->max_size -= max_size;
|
|
|
|
|
|
|
|
|
|
count = fwrite(buffer, max_size, 1, mspack_handle->f);
|
|
|
|
|
if (count < 1) {
|
2019-05-05 15:08:46 -04:00
|
|
|
cli_dbgmsg("%s() err %d <%zu %d>\n", __func__, __LINE__, count, bytes);
|
2018-12-03 12:40:13 -05:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return bytes;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int mspack_fmap_seek(struct mspack_file *file, off_t offset, int mode)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_handle *mspack_handle = (struct mspack_handle *)file;
|
|
|
|
|
|
|
|
|
|
if (!mspack_handle) {
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (mspack_handle->type == FILETYPE_FMAP) {
|
|
|
|
|
off_t new_pos;
|
|
|
|
|
|
|
|
|
|
switch (mode) {
|
|
|
|
|
case MSPACK_SYS_SEEK_START:
|
|
|
|
|
new_pos = offset;
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_SEEK_CUR:
|
|
|
|
|
new_pos = mspack_handle->offset + offset;
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_SEEK_END:
|
|
|
|
|
new_pos = mspack_handle->fmap->len + offset;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
if (new_pos < 0 || new_pos > (off_t)mspack_handle->fmap->len) {
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mspack_handle->offset = new_pos;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch (mode) {
|
|
|
|
|
case MSPACK_SYS_SEEK_START:
|
|
|
|
|
mode = SEEK_SET;
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_SEEK_CUR:
|
|
|
|
|
mode = SEEK_CUR;
|
|
|
|
|
break;
|
|
|
|
|
case MSPACK_SYS_SEEK_END:
|
|
|
|
|
mode = SEEK_END;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
cli_dbgmsg("%s() err %d\n", __func__, __LINE__);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return fseek(mspack_handle->f, offset, mode);
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static off_t mspack_fmap_tell(struct mspack_file *file)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mspack_handle *mspack_handle = (struct mspack_handle *)file;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
if (!mspack_handle)
|
|
|
|
|
return -1;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
if (mspack_handle->type == FILETYPE_FMAP)
|
|
|
|
|
return mspack_handle->offset;
|
2016-03-24 12:26:04 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
return (off_t)ftell(mspack_handle->f);
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mspack_fmap_message(struct mspack_file *file, const char *fmt, ...)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
UNUSEDPARAM(file);
|
|
|
|
|
|
|
|
|
|
if (UNLIKELY(cli_debug_flag)) {
|
|
|
|
|
va_list args;
|
|
|
|
|
char buff[BUFSIZ];
|
|
|
|
|
size_t len = sizeof("LibClamAV debug: ") - 1;
|
|
|
|
|
|
|
|
|
|
memset(buff, 0, BUFSIZ);
|
|
|
|
|
|
|
|
|
|
/* Add the prefix */
|
|
|
|
|
strncpy(buff, "LibClamAV debug: ", len);
|
|
|
|
|
|
|
|
|
|
va_start(args, fmt);
|
|
|
|
|
vsnprintf(buff + len, sizeof(buff) - len - 2, fmt, args);
|
|
|
|
|
va_end(args);
|
|
|
|
|
|
|
|
|
|
/* Add a newline and a null terminator */
|
|
|
|
|
buff[strlen(buff)] = '\n';
|
|
|
|
|
buff[strlen(buff) + 1] = '\0';
|
|
|
|
|
|
|
|
|
|
fputs(buff, stderr);
|
|
|
|
|
}
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
2017-09-28 16:24:24 -04:00
|
|
|
|
2016-03-24 12:26:04 -04:00
|
|
|
static void *mspack_fmap_alloc(struct mspack_system *self, size_t num)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
UNUSEDPARAM(self);
|
|
|
|
|
void *addr = malloc(num);
|
|
|
|
|
if (addr) {
|
|
|
|
|
memset(addr, 0, num);
|
|
|
|
|
}
|
|
|
|
|
return addr;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mspack_fmap_free(void *mem)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
if (mem) {
|
2017-03-29 14:55:26 -04:00
|
|
|
free(mem);
|
|
|
|
|
mem = NULL;
|
|
|
|
|
}
|
|
|
|
|
return;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mspack_fmap_copy(void *src, void *dst, size_t num)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
memcpy(dst, src, num);
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static struct mspack_system mspack_sys_fmap_ops = {
|
2018-12-03 12:40:13 -05:00
|
|
|
.open = mspack_fmap_open,
|
|
|
|
|
.close = mspack_fmap_close,
|
|
|
|
|
.read = mspack_fmap_read,
|
|
|
|
|
.write = mspack_fmap_write,
|
|
|
|
|
.seek = mspack_fmap_seek,
|
|
|
|
|
.tell = mspack_fmap_tell,
|
|
|
|
|
.message = mspack_fmap_message,
|
|
|
|
|
.alloc = mspack_fmap_alloc,
|
|
|
|
|
.free = mspack_fmap_free,
|
|
|
|
|
.copy = mspack_fmap_copy,
|
2016-03-24 12:26:04 -04:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
int cli_scanmscab(cli_ctx *ctx, off_t sfx_offset)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mscab_decompressor *cab_d;
|
|
|
|
|
struct mscabd_cabinet *cab_h;
|
|
|
|
|
struct mscabd_file *cab_f;
|
|
|
|
|
int ret = 0;
|
2017-10-04 08:30:25 -07:00
|
|
|
int files;
|
2018-12-03 12:40:13 -05:00
|
|
|
int virus_num = 0;
|
|
|
|
|
struct mspack_name mspack_fmap = {
|
|
|
|
|
.fmap = *ctx->fmap,
|
|
|
|
|
.org = sfx_offset,
|
|
|
|
|
};
|
|
|
|
|
struct mspack_system_ex ops_ex;
|
|
|
|
|
memset(&ops_ex, 0, sizeof(struct mspack_system_ex));
|
|
|
|
|
ops_ex.ops = mspack_sys_fmap_ops;
|
|
|
|
|
|
|
|
|
|
cab_d = mspack_create_cab_decompressor(&ops_ex.ops);
|
|
|
|
|
if (!cab_d) {
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
return CL_EUNPACK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
cab_d->set_param(cab_d, MSCABD_PARAM_FIXMSZIP, 1);
|
2018-09-18 09:29:01 -04:00
|
|
|
#if MSCABD_PARAM_SALVAGE
|
2018-12-03 12:40:13 -05:00
|
|
|
cab_d->set_param(cab_d, MSCABD_PARAM_SALVAGE, 1);
|
2018-09-18 09:29:01 -04:00
|
|
|
#endif
|
2018-09-16 19:24:40 -04:00
|
|
|
|
2018-12-03 12:40:13 -05:00
|
|
|
cab_h = cab_d->open(cab_d, (char *)&mspack_fmap);
|
|
|
|
|
if (!cab_h) {
|
|
|
|
|
ret = CL_EFORMAT;
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
goto out_dest;
|
|
|
|
|
}
|
|
|
|
|
files = 0;
|
|
|
|
|
for (cab_f = cab_h->files; cab_f; cab_f = cab_f->next) {
|
|
|
|
|
off_t max_size;
|
|
|
|
|
char *tmp_fname = NULL;
|
|
|
|
|
|
|
|
|
|
ret = cli_matchmeta(ctx, cab_f->filename, 0, cab_f->length, 0,
|
|
|
|
|
files, 0, NULL);
|
|
|
|
|
if (ret) {
|
|
|
|
|
if (ret == CL_VIRUS) {
|
|
|
|
|
virus_num++;
|
|
|
|
|
if (!SCAN_ALLMATCHES)
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
goto out_close;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ctx->engine->maxscansize) {
|
|
|
|
|
if (ctx->scansize >= ctx->engine->maxscansize) {
|
|
|
|
|
ret = CL_CLEAN;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ctx->engine->maxscansize &&
|
|
|
|
|
ctx->scansize + ctx->engine->maxfilesize >=
|
|
|
|
|
ctx->engine->maxscansize)
|
|
|
|
|
max_size = ctx->engine->maxscansize -
|
|
|
|
|
ctx->scansize;
|
|
|
|
|
else
|
|
|
|
|
max_size = ctx->engine->maxfilesize ? ctx->engine->maxfilesize : 0xffffffff;
|
|
|
|
|
|
2020-03-19 21:23:54 -04:00
|
|
|
tmp_fname = cli_gentemp(ctx->sub_tmpdir);
|
2018-12-03 12:40:13 -05:00
|
|
|
if (!tmp_fname) {
|
|
|
|
|
ret = CL_EMEM;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ops_ex.max_size = max_size;
|
|
|
|
|
/* scan */
|
|
|
|
|
ret = cab_d->extract(cab_d, cab_f, tmp_fname);
|
|
|
|
|
if (ret)
|
|
|
|
|
/* Failed to extract. Try to scan what is there */
|
|
|
|
|
cli_dbgmsg("%s() failed to extract %d\n", __func__, ret);
|
|
|
|
|
|
2020-03-21 14:15:28 -04:00
|
|
|
ret = cli_magic_scan_file(tmp_fname, ctx, cab_f->filename);
|
2020-03-19 21:23:54 -04:00
|
|
|
if (CL_EOPEN == ret) {
|
|
|
|
|
ret = CL_CLEAN;
|
|
|
|
|
} else if (CL_VIRUS == ret) {
|
2018-12-03 12:40:13 -05:00
|
|
|
virus_num++;
|
2020-03-19 21:23:54 -04:00
|
|
|
}
|
2018-12-03 12:40:13 -05:00
|
|
|
|
|
|
|
|
if (!ctx->engine->keeptmp) {
|
|
|
|
|
if (!access(tmp_fname, R_OK) && cli_unlink(tmp_fname)) {
|
|
|
|
|
free(tmp_fname);
|
|
|
|
|
ret = CL_EUNLINK;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
free(tmp_fname);
|
|
|
|
|
files++;
|
|
|
|
|
if (ret == CL_VIRUS && SCAN_ALLMATCHES)
|
|
|
|
|
continue;
|
|
|
|
|
if (ret)
|
|
|
|
|
break;
|
|
|
|
|
}
|
2016-03-24 12:26:04 -04:00
|
|
|
|
|
|
|
|
out_close:
|
2018-12-03 12:40:13 -05:00
|
|
|
cab_d->close(cab_d, cab_h);
|
2016-03-24 12:26:04 -04:00
|
|
|
out_dest:
|
2018-12-03 12:40:13 -05:00
|
|
|
mspack_destroy_cab_decompressor(cab_d);
|
|
|
|
|
if (virus_num)
|
|
|
|
|
return CL_VIRUS;
|
|
|
|
|
return ret;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int cli_scanmschm(cli_ctx *ctx)
|
|
|
|
|
{
|
2018-12-03 12:40:13 -05:00
|
|
|
struct mschm_decompressor *mschm_d;
|
|
|
|
|
struct mschmd_header *mschm_h;
|
|
|
|
|
struct mschmd_file *mschm_f;
|
|
|
|
|
int ret = CL_CLEAN; // Default CLEAN in case CHM contains no files.
|
|
|
|
|
int files;
|
|
|
|
|
int virus_num = 0;
|
|
|
|
|
struct mspack_name mspack_fmap = {
|
|
|
|
|
.fmap = *ctx->fmap,
|
|
|
|
|
};
|
|
|
|
|
struct mspack_system_ex ops_ex;
|
|
|
|
|
memset(&ops_ex, 0, sizeof(struct mspack_system_ex));
|
|
|
|
|
ops_ex.ops = mspack_sys_fmap_ops;
|
|
|
|
|
|
|
|
|
|
mschm_d = mspack_create_chm_decompressor(&ops_ex.ops);
|
|
|
|
|
if (!mschm_d) {
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
return CL_EUNPACK;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
mschm_h = mschm_d->open(mschm_d, (char *)&mspack_fmap);
|
|
|
|
|
if (!mschm_h) {
|
|
|
|
|
ret = CL_EFORMAT;
|
|
|
|
|
cli_dbgmsg("%s() failed at %d\n", __func__, __LINE__);
|
|
|
|
|
goto out_dest;
|
|
|
|
|
}
|
|
|
|
|
files = 0;
|
|
|
|
|
for (mschm_f = mschm_h->files; mschm_f; mschm_f = mschm_f->next) {
|
|
|
|
|
off_t max_size;
|
|
|
|
|
char *tmp_fname;
|
|
|
|
|
|
|
|
|
|
ret = cli_matchmeta(ctx, mschm_f->filename, 0, mschm_f->length,
|
|
|
|
|
0, files, 0, NULL);
|
|
|
|
|
if (ret) {
|
|
|
|
|
if (ret == CL_VIRUS) {
|
|
|
|
|
virus_num++;
|
|
|
|
|
if (!SCAN_ALLMATCHES)
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
goto out_close;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ctx->engine->maxscansize) {
|
|
|
|
|
if (ctx->scansize >= ctx->engine->maxscansize) {
|
|
|
|
|
ret = CL_CLEAN;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ctx->engine->maxscansize &&
|
|
|
|
|
ctx->scansize + ctx->engine->maxfilesize >=
|
|
|
|
|
ctx->engine->maxscansize)
|
|
|
|
|
max_size = ctx->engine->maxscansize -
|
|
|
|
|
ctx->scansize;
|
|
|
|
|
else
|
|
|
|
|
max_size = ctx->engine->maxfilesize ? ctx->engine->maxfilesize : 0xffffffff;
|
|
|
|
|
|
|
|
|
|
ops_ex.max_size = max_size;
|
|
|
|
|
|
2020-03-19 21:23:54 -04:00
|
|
|
tmp_fname = cli_gentemp(ctx->sub_tmpdir);
|
2018-12-03 12:40:13 -05:00
|
|
|
if (!tmp_fname) {
|
|
|
|
|
ret = CL_EMEM;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* scan */
|
|
|
|
|
ret = mschm_d->extract(mschm_d, mschm_f, tmp_fname);
|
|
|
|
|
if (ret)
|
|
|
|
|
/* Failed to extract. Try to scan what is there */
|
|
|
|
|
cli_dbgmsg("%s() failed to extract %d\n", __func__, ret);
|
|
|
|
|
|
2020-03-21 14:15:28 -04:00
|
|
|
ret = cli_magic_scan_file(tmp_fname, ctx, mschm_f->filename);
|
2020-03-19 21:23:54 -04:00
|
|
|
if (CL_EOPEN == ret) {
|
|
|
|
|
ret = CL_CLEAN;
|
|
|
|
|
} else if (CL_VIRUS == ret) {
|
2018-12-03 12:40:13 -05:00
|
|
|
virus_num++;
|
2020-03-19 21:23:54 -04:00
|
|
|
}
|
2018-12-03 12:40:13 -05:00
|
|
|
|
|
|
|
|
if (!ctx->engine->keeptmp) {
|
|
|
|
|
if (!access(tmp_fname, R_OK) && cli_unlink(tmp_fname)) {
|
|
|
|
|
free(tmp_fname);
|
|
|
|
|
ret = CL_EUNLINK;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
free(tmp_fname);
|
|
|
|
|
files++;
|
|
|
|
|
if (ret == CL_VIRUS && SCAN_ALLMATCHES)
|
|
|
|
|
continue;
|
|
|
|
|
if (ret)
|
|
|
|
|
break;
|
|
|
|
|
}
|
2016-03-24 12:26:04 -04:00
|
|
|
|
|
|
|
|
out_close:
|
2018-12-03 12:40:13 -05:00
|
|
|
mschm_d->close(mschm_d, mschm_h);
|
2016-03-24 12:26:04 -04:00
|
|
|
out_dest:
|
2018-12-03 12:40:13 -05:00
|
|
|
mspack_destroy_chm_decompressor(mschm_d);
|
|
|
|
|
if (virus_num)
|
|
|
|
|
return CL_VIRUS;
|
|
|
|
|
return ret;
|
2016-03-24 12:26:04 -04:00
|
|
|
}
|
