Implement icsharpcode#538

HowToDoThis · HowToDoThis · commit 3743e585b730 · 2020-11-21T12:24:25.000+08:00
diff --git a/src/ICSharpCode.SharpZipLib/Encryption/PkzipClassic.cs b/src/ICSharpCode.SharpZipLib/Encryption/PkzipClassic.cs
@@ -16,23 +16,18 @@ public abstract class PkzipClassic : SymmetricAlgorithm
 		/// </summary>
 		/// <param name="seed">The seed value to initialise keys with.</param>
 		/// <returns>A new key value.</returns>
-		static public byte[] GenerateKeys(byte[] seed)
+		public static byte[] GenerateKeys(byte[] seed)
 		{
 			if (seed == null)
-			{
 				throw new ArgumentNullException(nameof(seed));
-			}
-
 			if (seed.Length == 0)
-			{
 				throw new ArgumentException("Length is zero", nameof(seed));
-			}
 
 			uint[] newKeys = {
 				0x12345678,
 				0x23456789,
 				0x34567890
-			 };
+			};
 
 			for (int i = 0; i < seed.Length; ++i)
 			{
@@ -55,6 +50,7 @@ static public byte[] GenerateKeys(byte[] seed)
 			result[9] = (byte)((newKeys[2] >> 8) & 0xff);
 			result[10] = (byte)((newKeys[2] >> 16) & 0xff);
 			result[11] = (byte)((newKeys[2] >> 24) & 0xff);
+
 			return result;
 		}
 	}
@@ -84,14 +80,9 @@ protected byte TransformByte()
 		protected void SetKeys(byte[] keyData)
 		{
 			if (keyData == null)
-			{
 				throw new ArgumentNullException(nameof(keyData));
-			}
-
 			if (keyData.Length != 12)
-			{
 				throw new InvalidOperationException("Key length is not valid");
-			}
 
 			keys = new uint[3];
 			keys[0] = (uint)((keyData[3] << 24) | (keyData[2] << 16) | (keyData[1] << 8) | keyData[0]);
@@ -154,6 +145,7 @@ public byte[] TransformFinalBlock(byte[] inputBuffer, int inputOffset, int input
 		{
 			byte[] result = new byte[inputCount];
 			TransformBlock(inputBuffer, inputOffset, inputCount, result, 0);
+
 			return result;
 		}
 
@@ -175,6 +167,7 @@ public int TransformBlock(byte[] inputBuffer, int inputOffset, int inputCount, b
 				outputBuffer[outputOffset++] = (byte)(inputBuffer[i] ^ TransformByte());
 				UpdateKeys(oldbyte);
 			}
+
 			return inputCount;
 		}
 
@@ -183,43 +176,31 @@ public int TransformBlock(byte[] inputBuffer, int inputOffset, int inputCount, b
 		/// </summary>
 		public bool CanReuseTransform
 		{
-			get
-			{
-				return true;
-			}
+			get { return true; }
 		}
 
 		/// <summary>
 		/// Gets the size of the input data blocks in bytes.
 		/// </summary>
 		public int InputBlockSize
 		{
-			get
-			{
-				return 1;
-			}
+			get { return 1; }
 		}
 
 		/// <summary>
 		/// Gets the size of the output data blocks in bytes.
 		/// </summary>
 		public int OutputBlockSize
 		{
-			get
-			{
-				return 1;
-			}
+			get { return 1; }
 		}
 
 		/// <summary>
 		/// Gets a value indicating whether multiple blocks can be transformed.
 		/// </summary>
 		public bool CanTransformMultipleBlocks
 		{
-			get
-			{
-				return true;
-			}
+			get { return true; }
 		}
 
 		#endregion ICryptoTransform Members
@@ -264,6 +245,7 @@ public byte[] TransformFinalBlock(byte[] inputBuffer, int inputOffset, int input
 		{
 			byte[] result = new byte[inputCount];
 			TransformBlock(inputBuffer, inputOffset, inputCount, result, 0);
+
 			return result;
 		}
 
@@ -285,6 +267,7 @@ public int TransformBlock(byte[] inputBuffer, int inputOffset, int inputCount, b
 				outputBuffer[outputOffset++] = newByte;
 				UpdateKeys(newByte);
 			}
+
 			return inputCount;
 		}
 
@@ -293,43 +276,31 @@ public int TransformBlock(byte[] inputBuffer, int inputOffset, int inputCount, b
 		/// </summary>
 		public bool CanReuseTransform
 		{
-			get
-			{
-				return true;
-			}
+			get { return true; }
 		}
 
 		/// <summary>
 		/// Gets the size of the input data blocks in bytes.
 		/// </summary>
 		public int InputBlockSize
 		{
-			get
-			{
-				return 1;
-			}
+			get { return 1; }
 		}
 
 		/// <summary>
 		/// Gets the size of the output data blocks in bytes.
 		/// </summary>
 		public int OutputBlockSize
 		{
-			get
-			{
-				return 1;
-			}
+			get { return 1; }
 		}
 
 		/// <summary>
 		/// Gets a value indicating whether multiple blocks can be transformed.
 		/// </summary>
 		public bool CanTransformMultipleBlocks
 		{
-			get
-			{
-				return true;
-			}
+			get { return true; }
 		}
 
 		#endregion ICryptoTransform Members
@@ -359,17 +330,11 @@ public sealed class PkzipClassicManaged : PkzipClassic
 		/// <remarks>The only valid block size is 8.</remarks>
 		public override int BlockSize
 		{
-			get
-			{
-				return 8;
-			}
-
+			get { return 8; }
 			set
 			{
 				if (value != 8)
-				{
 					throw new CryptographicException("Block size is invalid");
-				}
 			}
 		}
 
@@ -415,24 +380,16 @@ public override byte[] Key
 			get
 			{
 				if (key_ == null)
-				{
 					GenerateKey();
-				}
 
 				return (byte[])key_.Clone();
 			}
-
 			set
 			{
 				if (value == null)
-				{
 					throw new ArgumentNullException(nameof(value));
-				}
-
 				if (value.Length != 12)
-				{
 					throw new CryptographicException("Key size is illegal");
-				}
 
 				key_ = (byte[])value.Clone();
 			}
@@ -444,8 +401,8 @@ public override byte[] Key
 		public override void GenerateKey()
 		{
 			key_ = new byte[12];
-			var rnd = new Random();
-			rnd.NextBytes(key_);
+			using var rnd = new RNGCryptoServiceProvider();
+			rnd.GetBytes(key_);
 		}
 
 		/// <summary>
@@ -454,9 +411,7 @@ public override void GenerateKey()
 		/// <param name="rgbKey">The key to use for this encryptor.</param>
 		/// <param name="rgbIV">Initialisation vector for the new encryptor.</param>
 		/// <returns>Returns a new PkzipClassic encryptor</returns>
-		public override ICryptoTransform CreateEncryptor(
-			byte[] rgbKey,
-			byte[] rgbIV)
+		public override ICryptoTransform CreateEncryptor(byte[] rgbKey, byte[] rgbIV)
 		{
 			key_ = rgbKey;
 			return new PkzipClassicEncryptCryptoTransform(Key);
@@ -468,9 +423,7 @@ public override ICryptoTransform CreateEncryptor(
 		/// <param name="rgbKey">Keys to use for this new decryptor.</param>
 		/// <param name="rgbIV">Initialisation vector for the new decryptor.</param>
 		/// <returns>Returns a new decryptor.</returns>
-		public override ICryptoTransform CreateDecryptor(
-			byte[] rgbKey,
-			byte[] rgbIV)
+		public override ICryptoTransform CreateDecryptor(byte[] rgbKey, byte[] rgbIV)
 		{
 			key_ = rgbKey;
 			return new PkzipClassicDecryptCryptoTransform(Key);
diff --git a/src/ICSharpCode.SharpZipLib/Zip/ZipFile.cs b/src/ICSharpCode.SharpZipLib/Zip/ZipFile.cs
@@ -3682,8 +3682,8 @@ private static void CheckClassicPassword(CryptoStream classicCryptoStream, ZipEn
 		private static void WriteEncryptionHeader(Stream stream, long crcValue)
 		{
 			byte[] cryptBuffer = new byte[ZipConstants.CryptoHeaderSize];
-			var rnd = new Random();
-			rnd.NextBytes(cryptBuffer);
+			using var rnd = new RNGCryptoServiceProvider();
+			rnd.GetBytes(cryptBuffer);
 			cryptBuffer[11] = (byte)(crcValue >> 24);
 			stream.Write(cryptBuffer, 0, cryptBuffer.Length);
 		}
diff --git a/src/ICSharpCode.SharpZipLib/Zip/ZipOutputStream.cs b/src/ICSharpCode.SharpZipLib/Zip/ZipOutputStream.cs
@@ -5,6 +5,7 @@
 using System;
 using System.Collections.Generic;
 using System.IO;
+using System.Security.Cryptography;
 
 namespace ICSharpCode.SharpZipLib.Zip
 {
@@ -84,10 +85,7 @@ public ZipOutputStream(Stream baseOutputStream, int bufferSize)
 		/// <remarks>No further entries can be added once this has been done.</remarks>
 		public bool IsFinished
 		{
-			get
-			{
-				return entries == null;
-			}
+			get { return entries == null; }
 		}
 
 		/// <summary>
@@ -104,9 +102,8 @@ public void SetComment(string comment)
 			// TODO: Its not yet clear how to handle unicode comments here.
 			byte[] commentBytes = ZipStrings.ConvertToArray(comment);
 			if (commentBytes.Length > 0xffff)
-			{
 				throw new ArgumentOutOfRangeException(nameof(comment));
-			}
+
 			zipComment = commentBytes;
 		}
 
@@ -633,8 +630,8 @@ private void WriteEncryptionHeader(long crcValue)
 			InitializePassword(Password);
 
 			byte[] cryptBuffer = new byte[ZipConstants.CryptoHeaderSize];
-			var rnd = new Random();
-			rnd.NextBytes(cryptBuffer);
+			using var rnd = new RNGCryptoServiceProvider();
+			rnd.GetBytes(cryptBuffer);
 			cryptBuffer[11] = (byte)(crcValue >> 24);
 
 			EncryptBlock(cryptBuffer, 0, cryptBuffer.Length);
@@ -925,10 +922,10 @@ public override void Finish()
 		/// </summary>
 		public override void Flush()
 		{
-			if(curMethod == CompressionMethod.Stored)
+			if (curMethod == CompressionMethod.Stored)
 			{
 				baseOutputStream_.Flush();
-			} 
+			}
 			else
 			{
 				base.Flush();

Original file line number	Diff line number	Diff line change
`@@ -3682,8 +3682,8 @@ private static void CheckClassicPassword(CryptoStream classicCryptoStream, ZipEn`
`3682`	`3682`	`private static void WriteEncryptionHeader(Stream stream, long crcValue)`
`3683`	`3683`	`{`
`3684`	`3684`	`byte[] cryptBuffer = new byte[ZipConstants.CryptoHeaderSize];`
`3685`		`- var rnd = new Random();`
`3686`		`- rnd.NextBytes(cryptBuffer);`
	`3685`	`+ using var rnd = new RNGCryptoServiceProvider();`
	`3686`	`+ rnd.GetBytes(cryptBuffer);`
`3687`	`3687`	`cryptBuffer[11] = (byte)(crcValue >> 24);`
`3688`	`3688`	`stream.Write(cryptBuffer, 0, cryptBuffer.Length);`
`3689`	`3689`	`}`