From 2dc40c8a9f7d2d3b12ac8d1328202ec9bfc3fe86 Mon Sep 17 00:00:00 2001 From: Josh Wolfe Date: Tue, 27 Feb 2024 09:02:55 -0500 Subject: [PATCH] fix detection of zip 64 archives to look for the locator rather than infer from -1 values closes #108 closes #118 --- README.md | 10 ++++ index.js | 48 +++++++++--------- ...r not a zip file or file is truncated.zip} | Bin ...not a zip file or file is truncated_1.zip} | 0 ...ntral dir signature PK in the comment.zip} | Bin ...of central directory locator signature.zip | Bin 98 -> 0 bytes test/test.js | 2 +- 7 files changed, 35 insertions(+), 25 deletions(-) rename test/failure/{end of central directory record signature not found.zip => End of central directory record signature not found Either not a zip file or file is truncated.zip} (100%) rename test/failure/{end of central directory record signature not found_1.zip => End of central directory record signature not found Either not a zip file or file is truncated_1.zip} (100%) rename test/failure/{invalid comment length expected 1 found 0.zip => Invalid comment length Expected 1 Found 0 Are there extra bytes at the end of the file Or is the end of central dir signature PK in the comment.zip} (100%) delete mode 100644 test/failure/invalid zip64 end of central directory locator signature.zip diff --git a/README.md b/README.md index 009181b..e0df200 100644 --- a/README.md +++ b/README.md @@ -754,8 +754,18 @@ Zip files officially support charset encodings other than CP437 and UTF-8, but the zip file spec does not specify how it works. This library makes no attempt to interpret the Language Encoding Flag. +### How Ambiguities Are Handled + +The zip file specification has several ambiguities inherent in its design. Yikes! + +* The `.ZIP file comment` must not contain the `end of central dir signature` bytes `50 4b 05 06`. This corresponds to the text `"PK☺☻"` in CP437. While this is allowed by the specification, yauzl will hopefully reject this situation with an "Invalid comment length" error. However, in some situations unpredictable incorrect behavior will ensue, which will probably manifest in either an invalid signature error or some kind of bounds check error, such as "Unexpected EOF". +* In non-ZIP64 files, the last central directory header must not have the bytes `50 4b 06 07` (`"PK♠•"` in CP437) exactly 20 bytes from its end, which might be in the `file name`, the `extra field`, or the `file comment`. The presence of these bytes indicates that this is a ZIP64 file. + ## Change History + * 3.1.1 + * Fixed handling non-64 bit files that actually have exactly 0xffff or 0xffffffff values in End of Central Directory Record. This fixes erroneous "invalid zip64 end of central directory locator signature" errors. [issue #108](https://github.com/thejoshwolfe/yauzl/pull/108) + * Fixed handling of 64-bit zip files that put 0xffff or 0xffffffff in every field overridden in the Zip64 end of central directory record even if the value would have fit without overflow. In particular, this fixes an incorrect "multi-disk zip files are not supported" error. [pull #118](https://github.com/thejoshwolfe/yauzl/pull/118) * 3.1.0 * Added `readLocalFileHeader()` and `Class: LocalFileHeader`. * Added `openReadStreamLowLevel()`. diff --git a/index.js b/index.js index b09fd90..b6cad71 100644 --- a/index.js +++ b/index.js @@ -105,8 +105,9 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { // as a consequence of this design decision, it's possible to have ambiguous zip file metadata if a coherent eocdr was in the comment. // we search backwards for a eocdr signature, and hope that whoever made the zip file was smart enough to forbid the eocdr signature in the comment. var eocdrWithoutCommentSize = 22; + var zip64EocdlSize = 20; // Zip64 end of central directory locator var maxCommentSize = 0xffff; // 2-byte size - var bufferSize = Math.min(eocdrWithoutCommentSize + maxCommentSize, totalSize); + var bufferSize = Math.min(zip64EocdlSize + eocdrWithoutCommentSize + maxCommentSize, totalSize); var buffer = newBuffer(bufferSize); var bufferReadStart = totalSize - buffer.length; readAndAssertNoEof(reader, buffer, 0, bufferSize, bufferReadStart, function(err) { @@ -119,9 +120,6 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { // 0 - End of central directory signature = 0x06054b50 // 4 - Number of this disk var diskNumber = eocdrBuffer.readUInt16LE(4); - if (diskNumber !== 0) { - return callback(new Error("multi-disk zip files are not supported: found disk number: " + diskNumber)); - } // 6 - Disk where central directory starts // 8 - Number of central directory records on this disk // 10 - Total number of central directory records @@ -133,29 +131,18 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { var commentLength = eocdrBuffer.readUInt16LE(20); var expectedCommentLength = eocdrBuffer.length - eocdrWithoutCommentSize; if (commentLength !== expectedCommentLength) { - return callback(new Error("invalid comment length. expected: " + expectedCommentLength + ". found: " + commentLength)); + return callback(new Error("Invalid comment length. Expected: " + expectedCommentLength + ". Found: " + commentLength + ". Are there extra bytes at the end of the file? Or is the end of central dir signature `PK☺☻` in the comment?")); } // 22 - Comment // the encoding is always cp437. var comment = decodeStrings ? decodeBuffer(eocdrBuffer.subarray(22), false) : eocdrBuffer.subarray(22); - if (!(entryCount === 0xffff || centralDirectoryOffset === 0xffffffff)) { - return callback(null, new ZipFile(reader, centralDirectoryOffset, totalSize, entryCount, comment, options.autoClose, options.lazyEntries, decodeStrings, options.validateEntrySizes, options.strictFileNames)); - } - - // ZIP64 format - - // ZIP64 Zip64 end of central directory locator - var zip64EocdlBuffer = newBuffer(20); - var zip64EocdlOffset = bufferReadStart + i - zip64EocdlBuffer.length; - readAndAssertNoEof(reader, zip64EocdlBuffer, 0, zip64EocdlBuffer.length, zip64EocdlOffset, function(err) { - if (err) return callback(err); - + // Look for a Zip64 end of central directory locator + if (i - zip64EocdlSize >= 0 && buffer.readUInt32LE(i - zip64EocdlSize) === 0x07064b50) { + // ZIP64 format + var zip64EocdlBuffer = buffer.subarray(i - zip64EocdlSize, i - zip64EocdlSize + zip64EocdlSize); // 0 - zip64 end of central dir locator signature = 0x07064b50 - if (zip64EocdlBuffer.readUInt32LE(0) !== 0x07064b50) { - return callback(new Error("invalid zip64 end of central directory locator signature")); - } // 4 - number of the disk with the start of the zip64 end of central directory // 8 - relative offset of the zip64 end of central directory record var zip64EocdrOffset = readUInt64LE(zip64EocdlBuffer, 8); @@ -163,7 +150,7 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { // ZIP64 end of central directory record var zip64EocdrBuffer = newBuffer(56); - readAndAssertNoEof(reader, zip64EocdrBuffer, 0, zip64EocdrBuffer.length, zip64EocdrOffset, function(err) { + return readAndAssertNoEof(reader, zip64EocdrBuffer, 0, zip64EocdrBuffer.length, zip64EocdrOffset, function(err) { if (err) return callback(err); // 0 - zip64 end of central dir signature 4 bytes (0x06064b50) @@ -174,6 +161,11 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { // 12 - version made by 2 bytes // 14 - version needed to extract 2 bytes // 16 - number of this disk 4 bytes + diskNumber = zip64EocdrBuffer.readUInt32LE(16); + if (diskNumber !== 0) { + // Check this only after zip64 overrides. See #118. + return callback(new Error("multi-disk zip files are not supported: found disk number: " + diskNumber)); + } // 20 - number of the disk with the start of the central directory 4 bytes // 24 - total number of entries in the central directory on this disk 8 bytes // 32 - total number of entries in the central directory 8 bytes @@ -184,10 +176,18 @@ function fromRandomAccessReader(reader, totalSize, options, callback) { // 56 - zip64 extensible data sector (variable size) return callback(null, new ZipFile(reader, centralDirectoryOffset, totalSize, entryCount, comment, options.autoClose, options.lazyEntries, decodeStrings, options.validateEntrySizes, options.strictFileNames)); }); - }); - return; + } + + // Not ZIP64 format + if (diskNumber !== 0) { + return callback(new Error("multi-disk zip files are not supported: found disk number: " + diskNumber)); + } + return callback(null, new ZipFile(reader, centralDirectoryOffset, totalSize, entryCount, comment, options.autoClose, options.lazyEntries, decodeStrings, options.validateEntrySizes, options.strictFileNames)); + } - callback(new Error("end of central directory record signature not found")); + + // Not a zip file. + callback(new Error("End of central directory record signature not found. Either not a zip file, or file is truncated.")); }); } diff --git a/test/failure/end of central directory record signature not found.zip b/test/failure/End of central directory record signature not found Either not a zip file or file is truncated.zip similarity index 100% rename from test/failure/end of central directory record signature not found.zip rename to test/failure/End of central directory record signature not found Either not a zip file or file is truncated.zip diff --git a/test/failure/end of central directory record signature not found_1.zip b/test/failure/End of central directory record signature not found Either not a zip file or file is truncated_1.zip similarity index 100% rename from test/failure/end of central directory record signature not found_1.zip rename to test/failure/End of central directory record signature not found Either not a zip file or file is truncated_1.zip diff --git a/test/failure/invalid comment length expected 1 found 0.zip b/test/failure/Invalid comment length Expected 1 Found 0 Are there extra bytes at the end of the file Or is the end of central dir signature PK in the comment.zip similarity index 100% rename from test/failure/invalid comment length expected 1 found 0.zip rename to test/failure/Invalid comment length Expected 1 Found 0 Are there extra bytes at the end of the file Or is the end of central dir signature PK in the comment.zip diff --git a/test/failure/invalid zip64 end of central directory locator signature.zip b/test/failure/invalid zip64 end of central directory locator signature.zip deleted file mode 100644 index 92c9f1b7eebf75f935d5af4e6b1d62bcca510e13..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 98 mcmWIWW@FP~fB<`DT_}q%72u7kh7rgO@MdKLiT+0d3=9APzYci- diff --git a/test/test.js b/test/test.js index d996118..ef86264 100644 --- a/test/test.js +++ b/test/test.js @@ -213,7 +213,7 @@ listZipFiles([path.join(__dirname, "failure")]).forEach(function(zipfilePath) { } } function checkErrorMessage(err) { - var actualMessage = err.message.replace(/[^0-9A-Za-z-]+/g, " "); + var actualMessage = err.message.replace(/[^0-9A-Za-z-]+/g, " ").trimRight(); if (actualMessage !== expectedErrorMessage) { throw new Error(zipfilePath + ": wrong error message: " + actualMessage); }