src/SharpCompress/Common/Zip/WinzipAesEncryptionData.cs

using System;
using System.Buffers.Binary;
using System.Security.Cryptography;
using System.Text;

namespace SharpCompress.Common.Zip;

internal class WinzipAesEncryptionData
{
    private const int RFC2898_ITERATIONS = 1000;

    private readonly WinzipAesKeySize _keySize;

    internal WinzipAesEncryptionData(
        WinzipAesKeySize keySize,
        byte[] salt,
        byte[] passwordVerifyValue,
        string password
    )
    {
        _keySize = keySize;

#if NETFRAMEWORK
        var rfc2898 = new Rfc2898DeriveBytes(password, salt, RFC2898_ITERATIONS);
        KeyBytes = rfc2898.GetBytes(KeySizeInBytes);
        IvBytes = rfc2898.GetBytes(KeySizeInBytes);
        var generatedVerifyValue = rfc2898.GetBytes(2);
#elif NET10_0_OR_GREATER
        var derivedKeySize = (KeySizeInBytes * 2) + 2;
        var passwordBytes = Encoding.UTF8.GetBytes(password);
        var derivedKey = Rfc2898DeriveBytes.Pbkdf2(
            passwordBytes,
            salt,
            RFC2898_ITERATIONS,
            HashAlgorithmName.SHA1,
            derivedKeySize
        );
        KeyBytes = derivedKey.AsSpan(0, KeySizeInBytes).ToArray();
        IvBytes = derivedKey.AsSpan(KeySizeInBytes, KeySizeInBytes).ToArray();
        var generatedVerifyValue = derivedKey.AsSpan((KeySizeInBytes * 2), 2).ToArray();
#else
        var rfc2898 = new Rfc2898DeriveBytes(
            password,
            salt,
            RFC2898_ITERATIONS,
            HashAlgorithmName.SHA1
        );
        KeyBytes = rfc2898.GetBytes(KeySizeInBytes);
        IvBytes = rfc2898.GetBytes(KeySizeInBytes);
        var generatedVerifyValue = rfc2898.GetBytes(2);
#endif

        var verify = BinaryPrimitives.ReadInt16LittleEndian(passwordVerifyValue);
        var generated = BinaryPrimitives.ReadInt16LittleEndian(generatedVerifyValue);
        if (verify != generated)
        {
            throw new InvalidFormatException("bad password");
        }
    }

    internal byte[] IvBytes { get; set; }

    internal byte[] KeyBytes { get; set; }

    private int KeySizeInBytes => KeyLengthInBytes(_keySize);

    internal static int KeyLengthInBytes(WinzipAesKeySize keySize) =>
        keySize switch
        {
            WinzipAesKeySize.KeySize128 => 16,
            WinzipAesKeySize.KeySize192 => 24,
            WinzipAesKeySize.KeySize256 => 32,
            _ => throw new InvalidOperationException(),
        };
}
move files around 2015-12-30 11:19:42 +00:00			`using System;`
Reduce the amount of allocations * Directly fill an array instead of filling a List and copying that to an array * Use own buffer when writing bytes to a stream * Remove DataConverter class, replaced by BinaryPrimitives 2019-12-30 18:58:25 +01:00			`using System.Buffers.Binary;`
Fix up DataConverter...removed pack 2016-02-13 09:42:59 +00:00			`using System.Security.Cryptography;`
Drop .NET 6 support and add .NET 10 support - Updated SharpCompress.csproj target frameworks from net48;net481;netstandard2.0;net6.0;net8.0 to net48;net481;netstandard2.0;net8.0;net10.0 - Updated test and build projects to use .NET 10 - Updated global.json to .NET 10 SDK - Updated CI workflow to use .NET 10 - Fixed deprecated Rfc2898DeriveBytes constructor for .NET 10 (SYSLIB0060) - Updated package description and README to reflect new supported frameworks - Updated package versions for .NET 10 compatibility Co-authored-by: adamhathcock <527620+adamhathcock@users.noreply.github.com> 2025-11-29 11:03:48 +00:00			`using System.Text;`
move files around 2015-12-30 11:19:42 +00:00
big clean up 2022-12-20 15:06:44 +00:00			`namespace SharpCompress.Common.Zip;`

			`internal class WinzipAesEncryptionData`
move files around 2015-12-30 11:19:42 +00:00			`{`
big clean up 2022-12-20 15:06:44 +00:00			`private const int RFC2898_ITERATIONS = 1000;`
move files around 2015-12-30 11:19:42 +00:00
big clean up 2022-12-20 15:06:44 +00:00			`private readonly WinzipAesKeySize _keySize;`
move files around 2015-12-30 11:19:42 +00:00
big clean up 2022-12-20 15:06:44 +00:00			`internal WinzipAesEncryptionData(`
			`WinzipAesKeySize keySize,`
			`byte[] salt,`
			`byte[] passwordVerifyValue,`
			`string password`
			`)`
			`{`
			`_keySize = keySize;`
add back net standard 2.0 2024-04-23 09:59:30 +01:00
Remove netstandard2.0 and net481 targets, keep net48, net8.0, net10.0 - Updated target frameworks to net48;net8.0;net10.0 only - Removed netstandard2.0 and net481 package conditions - Updated conditional compilation to use NETFRAMEWORK only - Updated package description and README Co-authored-by: adamhathcock <527620+adamhathcock@users.noreply.github.com> 2025-11-29 11:42:05 +00:00			`#if NETFRAMEWORK`
add back net standard 2.0 2024-04-23 09:59:30 +01:00			`var rfc2898 = new Rfc2898DeriveBytes(password, salt, RFC2898_ITERATIONS);`
Drop .NET 6 support and add .NET 10 support - Updated SharpCompress.csproj target frameworks from net48;net481;netstandard2.0;net6.0;net8.0 to net48;net481;netstandard2.0;net8.0;net10.0 - Updated test and build projects to use .NET 10 - Updated global.json to .NET 10 SDK - Updated CI workflow to use .NET 10 - Fixed deprecated Rfc2898DeriveBytes constructor for .NET 10 (SYSLIB0060) - Updated package description and README to reflect new supported frameworks - Updated package versions for .NET 10 compatibility Co-authored-by: adamhathcock <527620+adamhathcock@users.noreply.github.com> 2025-11-29 11:03:48 +00:00			`KeyBytes = rfc2898.GetBytes(KeySizeInBytes);`
			`IvBytes = rfc2898.GetBytes(KeySizeInBytes);`
			`var generatedVerifyValue = rfc2898.GetBytes(2);`
			`#elif NET10_0_OR_GREATER`
			`var derivedKeySize = (KeySizeInBytes * 2) + 2;`
			`var passwordBytes = Encoding.UTF8.GetBytes(password);`
			`var derivedKey = Rfc2898DeriveBytes.Pbkdf2(`
			`passwordBytes,`
			`salt,`
			`RFC2898_ITERATIONS,`
			`HashAlgorithmName.SHA1,`
			`derivedKeySize`
			`);`
			`KeyBytes = derivedKey.AsSpan(0, KeySizeInBytes).ToArray();`
			`IvBytes = derivedKey.AsSpan(KeySizeInBytes, KeySizeInBytes).ToArray();`
			`var generatedVerifyValue = derivedKey.AsSpan((KeySizeInBytes * 2), 2).ToArray();`
add back net standard 2.0 2024-04-23 09:59:30 +01:00			`#else`
			`var rfc2898 = new Rfc2898DeriveBytes(`
			`password,`
			`salt,`
			`RFC2898_ITERATIONS,`
			`HashAlgorithmName.SHA1`
			`);`
Drop .NET 6 support and add .NET 10 support - Updated SharpCompress.csproj target frameworks from net48;net481;netstandard2.0;net6.0;net8.0 to net48;net481;netstandard2.0;net8.0;net10.0 - Updated test and build projects to use .NET 10 - Updated global.json to .NET 10 SDK - Updated CI workflow to use .NET 10 - Fixed deprecated Rfc2898DeriveBytes constructor for .NET 10 (SYSLIB0060) - Updated package description and README to reflect new supported frameworks - Updated package versions for .NET 10 compatibility Co-authored-by: adamhathcock <527620+adamhathcock@users.noreply.github.com> 2025-11-29 11:03:48 +00:00			`KeyBytes = rfc2898.GetBytes(KeySizeInBytes);`
add back net standard 2.0 2024-04-23 09:59:30 +01:00			`IvBytes = rfc2898.GetBytes(KeySizeInBytes);`
			`var generatedVerifyValue = rfc2898.GetBytes(2);`
Drop .NET 6 support and add .NET 10 support - Updated SharpCompress.csproj target frameworks from net48;net481;netstandard2.0;net6.0;net8.0 to net48;net481;netstandard2.0;net8.0;net10.0 - Updated test and build projects to use .NET 10 - Updated global.json to .NET 10 SDK - Updated CI workflow to use .NET 10 - Fixed deprecated Rfc2898DeriveBytes constructor for .NET 10 (SYSLIB0060) - Updated package description and README to reflect new supported frameworks - Updated package versions for .NET 10 compatibility Co-authored-by: adamhathcock <527620+adamhathcock@users.noreply.github.com> 2025-11-29 11:03:48 +00:00			`#endif`
add back net standard 2.0 2024-04-23 09:59:30 +01:00
			`var verify = BinaryPrimitives.ReadInt16LittleEndian(passwordVerifyValue);`
			`var generated = BinaryPrimitives.ReadInt16LittleEndian(generatedVerifyValue);`
			`if (verify != generated)`
			`{`
			`throw new InvalidFormatException("bad password");`
			`}`
big clean up 2022-12-20 15:06:44 +00:00			`}`
move files around 2015-12-30 11:19:42 +00:00
big clean up 2022-12-20 15:06:44 +00:00			`internal byte[] IvBytes { get; set; }`
Enable nullable 2020-05-23 16:27:55 -07:00
big clean up 2022-12-20 15:06:44 +00:00			`internal byte[] KeyBytes { get; set; }`
move files around 2015-12-30 11:19:42 +00:00
more clean up 2022-12-20 15:20:49 +00:00			`private int KeySizeInBytes => KeyLengthInBytes(_keySize);`
move files around 2015-12-30 11:19:42 +00:00
more clean up 2022-12-20 15:20:49 +00:00			`internal static int KeyLengthInBytes(WinzipAesKeySize keySize) =>`
			`keySize switch`
move files around 2015-12-30 11:19:42 +00:00			`{`
big clean up 2022-12-20 15:06:44 +00:00			`WinzipAesKeySize.KeySize128 => 16,`
			`WinzipAesKeySize.KeySize192 => 24,`
			`WinzipAesKeySize.KeySize256 => 32,`
			`_ => throw new InvalidOperationException(),`
			`};`
move files around 2015-12-30 11:19:42 +00:00			`}`