unarc-rs 0.6.1

Universal archive extraction & decompression library for retro + modern formats (7z, ZIP, RAR, LHA/LZH, TAR, ARJ, ARC/PAK, ZOO, HA, UC2, SQ/SQ2, SQZ, HYP, gz, bz2, Z).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164

//! ARJ Password Verifier - efficient password testing without repeated allocations.
//!
//! This module provides a `Send + Sync` password verifier that can be used with
//! rayon for parallel password testing.

use std::sync::Arc;

use delharc::decode::{Decoder, DecoderAny};

use super::crypto::decrypt_arj_data;
use super::decode_fastest::decode_fastest;
use super::local_file_header::CompressionMethod;
use crate::encryption::ArjEncryption;
use crate::error::Result;

/// A standalone password verifier for ARJ archives.
///
/// This struct holds all the data needed to verify a password without
/// requiring access to the original archive. It is `Send + Sync` and
/// can be safely used from multiple threads with rayon.
#[derive(Clone)]
pub struct ArjPasswordVerifier {
    /// The compressed (and possibly encrypted) data
    compressed_data: Arc<[u8]>,
    /// Compression method used
    compression_method: CompressionMethod,
    /// Expected CRC32 of the uncompressed data
    expected_crc: u32,
    /// Original (uncompressed) size
    original_size: u32,
    /// Entry name (for debugging)
    entry_name: String,
    /// Encryption type
    encryption_type: Option<ArjEncryption>,
    /// Password modifier from header
    password_modifier: u8,
    /// File time for GOST decryption
    file_time: u32,
}

// Arc<[u8]> is Send + Sync, other fields are Copy or Send+Sync
unsafe impl Send for ArjPasswordVerifier {}
unsafe impl Sync for ArjPasswordVerifier {}

impl ArjPasswordVerifier {
    /// Create a new password verifier from entry data.
    ///
    /// # Arguments
    /// * `compressed_data` - The raw compressed/encrypted data from the archive
    /// * `compression_method` - The compression method used
    /// * `expected_crc` - The CRC32 from the header
    /// * `original_size` - The uncompressed size
    /// * `entry_name` - Name of the entry (for debugging)
    /// * `encryption_type` - The type of encryption used
    /// * `password_modifier` - Modifier byte for garble encryption
    /// * `file_time` - DOS file time for GOST key derivation
    #[allow(clippy::too_many_arguments)]
    pub fn new(
        compressed_data: Vec<u8>,
        compression_method: CompressionMethod,
        expected_crc: u32,
        original_size: u32,
        entry_name: String,
        encryption_type: Option<ArjEncryption>,
        password_modifier: u8,
        file_time: u32,
    ) -> Self {
        Self {
            compressed_data: Arc::from(compressed_data.into_boxed_slice()),
            compression_method,
            expected_crc,
            original_size,
            entry_name,
            encryption_type,
            password_modifier,
            file_time,
        }
    }

    /// Get the entry name this verifier was created for.
    pub fn entry_name(&self) -> &str {
        &self.entry_name
    }

    /// Get the compressed data size.
    pub fn compressed_size(&self) -> usize {
        self.compressed_data.len()
    }

    /// Get the original (uncompressed) size.
    pub fn original_size(&self) -> u32 {
        self.original_size
    }

    /// Get the encryption type.
    pub fn encryption_type(&self) -> Option<ArjEncryption> {
        self.encryption_type
    }

    /// Verify if the given password is correct.
    ///
    /// Returns `true` if the password produces valid decompressed data
    /// with matching CRC and size, `false` otherwise.
    pub fn verify(&self, password: &str) -> bool {
        // Thread-local buffer for decryption to avoid allocations
        thread_local! {
            static DECRYPT_BUF: std::cell::RefCell<Vec<u8>> = std::cell::RefCell::new(Vec::with_capacity(64 * 1024));
        }

        DECRYPT_BUF.with(|buf| {
            let mut decrypt_buf = buf.borrow_mut();
            decrypt_buf.clear();
            decrypt_buf.extend_from_slice(&self.compressed_data);

            // Decrypt the data
            decrypt_arj_data(&mut decrypt_buf, self.encryption_type, password, self.password_modifier, self.file_time);

            // Decompress and verify
            self.decompress_and_verify(&decrypt_buf).unwrap_or(false)
        })
    }

    /// Decompress data and verify CRC and size.
    fn decompress_and_verify(&self, decrypted: &[u8]) -> Result<bool> {
        let uncompressed = match self.compression_method {
            CompressionMethod::Stored => decrypted.to_vec(),
            CompressionMethod::CompressedMost | CompressionMethod::Compressed | CompressionMethod::CompressedFaster => {
                let mut decoder = DecoderAny::new_from_compression(delharc::CompressionMethod::Lh6, decrypted);
                let mut decompressed_buffer = vec![0; self.original_size as usize];
                if decoder.fill_buffer(&mut decompressed_buffer).is_err() {
                    return Ok(false);
                }
                decompressed_buffer
            }
            CompressionMethod::CompressedFastest => match decode_fastest(decrypted, self.original_size as usize) {
                Ok(data) => data,
                Err(_) => return Ok(false),
            },
            CompressionMethod::NoDataNoCrc | CompressionMethod::NoData | CompressionMethod::Unknown(_) => {
                return Ok(false);
            }
        };

        // Check size first (fast rejection)
        if uncompressed.len() != self.original_size as usize {
            return Ok(false);
        }

        // Then check CRC32
        let checksum = crc32fast::hash(&uncompressed);
        Ok(checksum == self.expected_crc)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_verifier_is_send_sync() {
        fn assert_send_sync<T: Send + Sync>() {}
        assert_send_sync::<ArjPasswordVerifier>();
    }
}