4 * All the library code specific to native Windows builds is in here.
8 * Copyright (C) 2013 Eric Biggers
10 * This file is part of wimlib, a library for working with WIM files.
12 * wimlib is free software; you can redistribute it and/or modify it under the
13 * terms of the GNU General Public License as published by the Free
14 * Software Foundation; either version 3 of the License, or (at your option)
17 * wimlib is distributed in the hope that it will be useful, but WITHOUT ANY
18 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
19 * A PARTICULAR PURPOSE. See the GNU General Public License for more
22 * You should have received a copy of the GNU General Public License
23 * along with wimlib; if not, see http://www.gnu.org/licenses/.
32 #include <shlwapi.h> /* for PathMatchSpecW() */
33 #include <aclapi.h> /* for SetSecurityInfo() */
34 #ifdef ERROR /* windows.h defines this */
40 #include "lookup_table.h"
42 #include "endianness.h"
43 #include "buffer_io.h"
48 #define MAX_GET_SD_ACCESS_DENIED_WARNINGS 1
49 #define MAX_GET_SACL_PRIV_NOTHELD_WARNINGS 1
50 #define MAX_CREATE_HARD_LINK_WARNINGS 5
51 struct win32_capture_state {
52 unsigned long num_get_sd_access_denied;
53 unsigned long num_get_sacl_priv_notheld;
56 #define MAX_SET_SD_ACCESS_DENIED_WARNINGS 1
57 #define MAX_SET_SACL_PRIV_NOTHELD_WARNINGS 1
59 #ifdef ENABLE_ERROR_MESSAGES
61 win32_error(u32 err_code)
65 nchars = FormatMessageW(FORMAT_MESSAGE_FROM_SYSTEM |
66 FORMAT_MESSAGE_ALLOCATE_BUFFER,
68 (wchar_t*)&buffer, 0, NULL);
70 ERROR("Error printing error message! "
71 "Computer will self-destruct in 3 seconds.");
73 ERROR("Win32 error: %ls", buffer);
77 #else /* ENABLE_ERROR_MESSAGES */
78 # define win32_error(err_code)
79 #endif /* !ENABLE_ERROR_MESSAGES */
81 /* Pointers to functions that are not available on all targetted versions of
82 * Windows (XP and later). NOTE: The WINAPI annotations seem to be important; I
83 * assume it specifies a certain calling convention. */
86 static HANDLE (WINAPI *win32func_FindFirstStreamW)(LPCWSTR lpFileName,
87 STREAM_INFO_LEVELS InfoLevel,
88 LPVOID lpFindStreamData,
89 DWORD dwFlags) = NULL;
92 static BOOL (WINAPI *win32func_FindNextStreamW)(HANDLE hFindStream,
93 LPVOID lpFindStreamData) = NULL;
95 static HMODULE hKernel32 = NULL;
97 /* Try to dynamically load some functions */
103 if (hKernel32 == NULL) {
104 DEBUG("Loading Kernel32.dll");
105 hKernel32 = LoadLibraryW(L"Kernel32.dll");
106 if (hKernel32 == NULL) {
107 err = GetLastError();
108 WARNING("Can't load Kernel32.dll");
114 DEBUG("Looking for FindFirstStreamW");
115 win32func_FindFirstStreamW = (void*)GetProcAddress(hKernel32, "FindFirstStreamW");
116 if (!win32func_FindFirstStreamW) {
117 WARNING("Could not find function FindFirstStreamW() in Kernel32.dll!");
118 WARNING("Capturing alternate data streams will not be supported.");
122 DEBUG("Looking for FindNextStreamW");
123 win32func_FindNextStreamW = (void*)GetProcAddress(hKernel32, "FindNextStreamW");
124 if (!win32func_FindNextStreamW) {
125 WARNING("Could not find function FindNextStreamW() in Kernel32.dll!");
126 WARNING("Capturing alternate data streams will not be supported.");
127 win32func_FindFirstStreamW = NULL;
132 win32_global_cleanup()
134 if (hKernel32 != NULL) {
135 DEBUG("Closing Kernel32.dll");
136 FreeLibrary(hKernel32);
141 static const wchar_t *capture_access_denied_msg =
142 L" If you are not running this program as the administrator, you may\n"
143 " need to do so, so that all data and metadata can be backed up.\n"
144 " Otherwise, there may be no way to access the desired data or\n"
145 " metadata without taking ownership of the file or directory.\n"
148 static const wchar_t *apply_access_denied_msg =
149 L"If you are not running this program as the administrator, you may\n"
150 " need to do so, so that all data and metadata can be extracted\n"
151 " exactly as the origignal copy. However, if you do not care that\n"
152 " the security descriptors are extracted correctly, you could run\n"
153 " `wimlib-imagex apply' with the --no-acls flag instead.\n"
157 win32_open_existing_file(const wchar_t *path, DWORD dwDesiredAccess)
159 return CreateFileW(path,
162 NULL, /* lpSecurityAttributes */
164 FILE_FLAG_BACKUP_SEMANTICS |
165 FILE_FLAG_OPEN_REPARSE_POINT,
166 NULL /* hTemplateFile */);
170 win32_open_file_data_only(const wchar_t *path)
172 return win32_open_existing_file(path, FILE_READ_DATA);
176 read_win32_file_prefix(const struct wim_lookup_table_entry *lte,
178 consume_data_callback_t cb,
187 HANDLE hFile = win32_open_file_data_only(lte->file_on_disk);
188 if (hFile == INVALID_HANDLE_VALUE) {
189 err = GetLastError();
190 ERROR("Failed to open \"%ls\"", lte->file_on_disk);
192 return WIMLIB_ERR_OPEN;
196 out_buf = alloca(WIM_CHUNK_SIZE);
198 out_buf = ctx_or_buf;
200 bytes_remaining = size;
201 while (bytes_remaining) {
202 DWORD bytesToRead, bytesRead;
204 bytesToRead = min(WIM_CHUNK_SIZE, bytes_remaining);
205 if (!ReadFile(hFile, out_buf, bytesToRead, &bytesRead, NULL) ||
206 bytesRead != bytesToRead)
208 err = GetLastError();
209 ERROR("Failed to read data from \"%ls\"", lte->file_on_disk);
211 ret = WIMLIB_ERR_READ;
214 bytes_remaining -= bytesRead;
216 ret = (*cb)(out_buf, bytesRead, ctx_or_buf);
220 out_buf += bytesRead;
227 struct win32_encrypted_read_ctx {
228 consume_data_callback_t read_prefix_cb;
229 void *read_prefix_ctx_or_buf;
237 win32_encrypted_export_cb(unsigned char *_data, void *_ctx, unsigned long len)
239 const void *data = _data;
240 struct win32_encrypted_read_ctx *ctx = _ctx;
243 DEBUG("len = %lu", len);
244 if (ctx->read_prefix_cb) {
245 /* The length of the buffer passed to the ReadEncryptedFileRaw()
246 * export callback is undocumented, so we assume it may be of
248 size_t bytes_to_buffer = min(ctx->bytes_remaining - ctx->buf_filled,
250 while (bytes_to_buffer) {
251 size_t bytes_to_copy_to_buf =
252 min(bytes_to_buffer, WIM_CHUNK_SIZE - ctx->buf_filled);
254 memcpy(ctx->buf + ctx->buf_filled, data,
255 bytes_to_copy_to_buf);
256 ctx->buf_filled += bytes_to_copy_to_buf;
257 data += bytes_to_copy_to_buf;
258 bytes_to_buffer -= bytes_to_copy_to_buf;
260 if (ctx->buf_filled == WIM_CHUNK_SIZE ||
261 ctx->buf_filled == ctx->bytes_remaining)
263 ret = (*ctx->read_prefix_cb)(ctx->buf,
265 ctx->read_prefix_ctx_or_buf);
267 ctx->wimlib_err_code = ret;
268 /* Shouldn't matter what error code is returned
269 * here, as long as it isn't ERROR_SUCCESS. */
270 return ERROR_READ_FAULT;
272 ctx->bytes_remaining -= ctx->buf_filled;
277 size_t len_to_copy = min(len, ctx->bytes_remaining);
278 memcpy(ctx->read_prefix_ctx_or_buf, data, len_to_copy);
279 ctx->bytes_remaining -= len_to_copy;
280 ctx->read_prefix_ctx_or_buf += len_to_copy;
282 return ERROR_SUCCESS;
286 read_win32_encrypted_file_prefix(const struct wim_lookup_table_entry *lte,
288 consume_data_callback_t cb,
292 struct win32_encrypted_read_ctx export_ctx;
297 DEBUG("Reading %"PRIu64" bytes from encryted file \"%ls\"",
298 size, lte->file_on_disk);
300 export_ctx.read_prefix_cb = cb;
301 export_ctx.read_prefix_ctx_or_buf = ctx_or_buf;
302 export_ctx.wimlib_err_code = 0;
304 export_ctx.buf = MALLOC(WIM_CHUNK_SIZE);
306 return WIMLIB_ERR_NOMEM;
308 export_ctx.buf = NULL;
310 export_ctx.buf_filled = 0;
311 export_ctx.bytes_remaining = size;
313 err = OpenEncryptedFileRawW(lte->file_on_disk, 0, &file_ctx);
314 if (err != ERROR_SUCCESS) {
315 ERROR("Failed to open encrypted file \"%ls\" for raw read",
318 ret = WIMLIB_ERR_OPEN;
321 err = ReadEncryptedFileRaw(win32_encrypted_export_cb,
322 &export_ctx, file_ctx);
323 if (err != ERROR_SUCCESS) {
324 ERROR("Failed to read encrypted file \"%ls\"",
327 ret = export_ctx.wimlib_err_code;
329 ret = WIMLIB_ERR_READ;
330 } else if (export_ctx.bytes_remaining != 0) {
331 ERROR("Only could read %"PRIu64" of %"PRIu64" bytes from "
332 "encryted file \"%ls\"",
333 size - export_ctx.bytes_remaining, size,
335 ret = WIMLIB_ERR_READ;
339 CloseEncryptedFileRaw(file_ctx);
341 FREE(export_ctx.buf);
345 /* Given a path, which may not yet exist, get a set of flags that describe the
346 * features of the volume the path is on. */
348 win32_get_vol_flags(const wchar_t *path, unsigned *vol_flags_ret)
354 if (path[0] != L'\0' && path[0] != L'\\' &&
355 path[0] != L'/' && path[1] == L':')
357 /* Path starts with a drive letter; use it. */
358 volume = alloca(4 * sizeof(wchar_t));
364 /* Path does not start with a drive letter; use the volume of
365 * the current working directory. */
368 bret = GetVolumeInformationW(volume, /* lpRootPathName */
369 NULL, /* lpVolumeNameBuffer */
370 0, /* nVolumeNameSize */
371 NULL, /* lpVolumeSerialNumber */
372 NULL, /* lpMaximumComponentLength */
373 &vol_flags, /* lpFileSystemFlags */
374 NULL, /* lpFileSystemNameBuffer */
375 0); /* nFileSystemNameSize */
377 DWORD err = GetLastError();
378 WARNING("Failed to get volume information for path \"%ls\"", path);
380 vol_flags = 0xffffffff;
383 DEBUG("using vol_flags = %x", vol_flags);
384 *vol_flags_ret = vol_flags;
390 FILETIME_to_u64(const FILETIME *ft)
392 return ((u64)ft->dwHighDateTime << 32) | (u64)ft->dwLowDateTime;
396 win32_get_short_name(struct wim_dentry *dentry, const wchar_t *path)
398 WIN32_FIND_DATAW dat;
402 /* If we can't read the short filename for some reason, we just ignore
403 * the error and assume the file has no short name. I don't think this
404 * should be an issue, since the short names are essentially obsolete
406 hFind = FindFirstFileW(path, &dat);
407 if (hFind != INVALID_HANDLE_VALUE) {
408 if (dat.cAlternateFileName[0] != L'\0') {
409 DEBUG("\"%ls\": short name \"%ls\"", path, dat.cAlternateFileName);
410 size_t short_name_nbytes = wcslen(dat.cAlternateFileName) *
412 size_t n = short_name_nbytes + sizeof(wchar_t);
413 dentry->short_name = MALLOC(n);
414 if (dentry->short_name) {
415 memcpy(dentry->short_name, dat.cAlternateFileName, n);
416 dentry->short_name_nbytes = short_name_nbytes;
418 ret = WIMLIB_ERR_NOMEM;
427 win32_get_security_descriptor(struct wim_dentry *dentry,
428 struct sd_set *sd_set,
430 struct win32_capture_state *state,
433 SECURITY_INFORMATION requestedInformation;
439 requestedInformation = DACL_SECURITY_INFORMATION |
440 SACL_SECURITY_INFORMATION |
441 OWNER_SECURITY_INFORMATION |
442 GROUP_SECURITY_INFORMATION;
444 /* Request length of security descriptor */
445 status = GetFileSecurityW(path, requestedInformation,
446 NULL, 0, &lenNeeded);
447 err = GetLastError();
448 if (!status && err == ERROR_INSUFFICIENT_BUFFER) {
449 DWORD len = lenNeeded;
451 if (GetFileSecurityW(path, requestedInformation,
452 (PSECURITY_DESCRIPTOR)buf, len, &lenNeeded))
454 int security_id = sd_set_add_sd(sd_set, buf, len);
456 return WIMLIB_ERR_NOMEM;
458 dentry->d_inode->i_security_id = security_id;
462 err = GetLastError();
466 if (add_image_flags & WIMLIB_ADD_IMAGE_FLAG_STRICT_ACLS)
470 case ERROR_PRIVILEGE_NOT_HELD:
471 if (requestedInformation & SACL_SECURITY_INFORMATION) {
472 n = state->num_get_sacl_priv_notheld++;
473 requestedInformation &= ~SACL_SECURITY_INFORMATION;
474 if (n < MAX_GET_SACL_PRIV_NOTHELD_WARNINGS) {
476 "We don't have enough privileges to read the full security\n"
477 " descriptor of \"%ls\"!\n"
478 " Re-trying with SACL omitted.\n", path);
479 } else if (n == MAX_GET_SACL_PRIV_NOTHELD_WARNINGS) {
481 "Suppressing further privileges not held error messages when reading\n"
482 " security descriptors.");
487 case ERROR_ACCESS_DENIED:
488 n = state->num_get_sd_access_denied++;
489 if (n < MAX_GET_SD_ACCESS_DENIED_WARNINGS) {
490 WARNING("Failed to read security descriptor of \"%ls\": "
491 "Access denied!\n%ls", path, capture_access_denied_msg);
492 } else if (n == MAX_GET_SD_ACCESS_DENIED_WARNINGS) {
493 WARNING("Suppressing further access denied errors messages i"
494 "when reading security descriptors");
499 ERROR("Failed to read security descriptor of \"%ls\"", path);
501 return WIMLIB_ERR_READ;
506 win32_build_dentry_tree_recursive(struct wim_dentry **root_ret,
508 size_t path_num_chars,
509 struct add_image_params *params,
510 struct win32_capture_state *state,
513 /* Reads the directory entries of directory using a Win32 API and recursively
514 * calls win32_build_dentry_tree() on them. */
516 win32_recurse_directory(struct wim_dentry *root,
518 size_t dir_path_num_chars,
519 struct add_image_params *params,
520 struct win32_capture_state *state,
523 WIN32_FIND_DATAW dat;
528 DEBUG("Recurse to directory \"%ls\"", dir_path);
530 /* Begin reading the directory by calling FindFirstFileW. Unlike UNIX
531 * opendir(), FindFirstFileW has file globbing built into it. But this
532 * isn't what we actually want, so just add a dummy glob to get all
534 dir_path[dir_path_num_chars] = L'/';
535 dir_path[dir_path_num_chars + 1] = L'*';
536 dir_path[dir_path_num_chars + 2] = L'\0';
537 hFind = FindFirstFileW(dir_path, &dat);
538 dir_path[dir_path_num_chars] = L'\0';
540 if (hFind == INVALID_HANDLE_VALUE) {
541 err = GetLastError();
542 if (err == ERROR_FILE_NOT_FOUND) {
545 ERROR("Failed to read directory \"%ls\"", dir_path);
547 return WIMLIB_ERR_READ;
552 /* Skip . and .. entries */
553 if (dat.cFileName[0] == L'.' &&
554 (dat.cFileName[1] == L'\0' ||
555 (dat.cFileName[1] == L'.' &&
556 dat.cFileName[2] == L'\0')))
558 size_t filename_len = wcslen(dat.cFileName);
560 dir_path[dir_path_num_chars] = L'/';
561 wmemcpy(dir_path + dir_path_num_chars + 1,
565 struct wim_dentry *child;
566 size_t path_len = dir_path_num_chars + 1 + filename_len;
567 ret = win32_build_dentry_tree_recursive(&child,
573 dir_path[dir_path_num_chars] = L'\0';
577 dentry_add_child(root, child);
578 } while (FindNextFileW(hFind, &dat));
579 err = GetLastError();
580 if (err != ERROR_NO_MORE_FILES) {
581 ERROR("Failed to read directory \"%ls\"", dir_path);
584 ret = WIMLIB_ERR_READ;
592 win32_get_file_and_vol_ids(const wchar_t *path, u64 *ino_ret, u64 *dev_ret)
596 BY_HANDLE_FILE_INFORMATION file_info;
599 hFile = win32_open_existing_file(path, FILE_READ_ATTRIBUTES);
600 if (hFile == INVALID_HANDLE_VALUE) {
601 err = GetLastError();
602 if (err != ERROR_FILE_NOT_FOUND) {
603 WARNING("Failed to open \"%ls\" to get file "
604 "and volume IDs", path);
607 return WIMLIB_ERR_OPEN;
610 if (!GetFileInformationByHandle(hFile, &file_info)) {
611 err = GetLastError();
612 ERROR("Failed to get file information for \"%ls\"", path);
614 ret = WIMLIB_ERR_STAT;
616 *ino_ret = ((u64)file_info.nFileIndexHigh << 32) |
617 (u64)file_info.nFileIndexLow;
618 *dev_ret = file_info.dwVolumeSerialNumber;
625 /* Reparse point fixup status code */
627 /* Reparse point corresponded to an absolute symbolic link or junction
628 * point that pointed outside the directory tree being captured, and
629 * therefore was excluded. */
632 /* Reparse point was not fixed as it was either a relative symbolic
633 * link, a mount point, or something else we could not understand. */
636 /* Reparse point corresponded to an absolute symbolic link or junction
637 * point that pointed inside the directory tree being captured, where
638 * the target was specified by a "full" \??\ prefixed path, and
639 * therefore was fixed to be relative to the root of the directory tree
641 RP_FIXED_FULLPATH = 0x2,
643 /* Same as RP_FIXED_FULLPATH, except the absolute link target did not
644 * have the \??\ prefix. It may have begun with a drive letter though.
646 RP_FIXED_ABSPATH = 0x4,
648 /* Either RP_FIXED_FULLPATH or RP_FIXED_ABSPATH. */
649 RP_FIXED = RP_FIXED_FULLPATH | RP_FIXED_ABSPATH,
652 /* Given the "substitute name" target of a Windows reparse point, try doing a
653 * fixup where we change it to be absolute relative to the root of the directory
654 * tree being captured.
656 * Note that this is only executed when WIMLIB_ADD_IMAGE_FLAG_RPFIX has been
659 * @capture_root_ino and @capture_root_dev indicate the inode number and device
660 * of the root of the directory tree being captured. They are meant to identify
661 * this directory (as an alternative to its actual path, which could potentially
662 * be reached via multiple destinations due to other symbolic links). This may
663 * not work properly on FAT, which doesn't seem to supply proper inode numbers
664 * or file IDs. However, FAT doesn't support reparse points so this function
665 * wouldn't even be called anyway.
667 static enum rp_status
668 win32_capture_maybe_rpfix_target(wchar_t *target, u16 *target_nbytes_p,
669 u64 capture_root_ino, u64 capture_root_dev,
672 u16 target_nchars = *target_nbytes_p / 2;
673 size_t stripped_chars;
674 wchar_t *orig_target;
677 ret = parse_substitute_name(target, *target_nbytes_p, rptag);
680 stripped_chars = ret;
681 target[target_nchars] = L'\0';
682 orig_target = target;
683 target = capture_fixup_absolute_symlink(target + stripped_chars,
684 capture_root_ino, capture_root_dev);
687 target_nchars = wcslen(target);
688 wmemmove(orig_target + stripped_chars, target, target_nchars + 1);
689 *target_nbytes_p = (target_nchars + stripped_chars) * sizeof(wchar_t);
690 DEBUG("Fixed reparse point (new target: \"%ls\")", orig_target);
691 if (stripped_chars == 6)
692 return RP_FIXED_FULLPATH;
694 return RP_FIXED_ABSPATH;
697 /* Returns: `enum rp_status' value on success; negative WIMLIB_ERR_* value on
700 win32_capture_try_rpfix(u8 *rpbuf, u16 *rpbuflen_p,
701 u64 capture_root_ino, u64 capture_root_dev)
703 struct reparse_data rpdata;
706 enum rp_status rp_status;
708 rpbuflen = *rpbuflen_p;
709 ret = parse_reparse_data(rpbuf, rpbuflen, &rpdata);
713 rp_status = win32_capture_maybe_rpfix_target(rpdata.substitute_name,
714 &rpdata.substitute_name_nbytes,
717 le32_to_cpu(*(u32*)rpbuf));
718 if (rp_status & RP_FIXED) {
719 wimlib_assert(rpdata.substitute_name_nbytes % 2 == 0);
720 utf16lechar substitute_name_copy[rpdata.substitute_name_nbytes / 2];
721 wmemcpy(substitute_name_copy, rpdata.substitute_name,
722 rpdata.substitute_name_nbytes / 2);
723 rpdata.substitute_name = substitute_name_copy;
724 rpdata.print_name = substitute_name_copy;
725 rpdata.print_name_nbytes = rpdata.substitute_name_nbytes;
726 if (rp_status == RP_FIXED_FULLPATH) {
727 /* "full path", meaning \??\ prefixed. We should not
728 * include this prefix in the print name, as it is
729 * apparently meant for the filesystem driver only. */
730 rpdata.print_name += 4;
731 rpdata.print_name_nbytes -= 8;
733 ret = make_reparse_buffer(&rpdata, rpbuf);
745 * Loads the reparse point data from a reparse point into memory, optionally
746 * fixing the targets of absolute symbolic links and junction points to be
747 * relative to the root of capture.
749 * @hFile: Open handle to the reparse point.
750 * @path: Path to the reparse point. Used for error messages only.
751 * @params: Additional parameters, including whether to do reparse point fixups
753 * @rpbuf: Buffer of length at least REPARSE_POINT_MAX_SIZE bytes into which
754 * the reparse point buffer will be loaded.
755 * @rpbuflen_ret: On success, the length of the reparse point buffer in bytes
756 * is written to this location.
759 * On success, returns an `enum rp_status' value that indicates if and/or
760 * how the reparse point fixup was done.
762 * On failure, returns a negative value that is a negated WIMLIB_ERR_*
766 win32_get_reparse_data(HANDLE hFile, const wchar_t *path,
767 struct add_image_params *params,
768 u8 *rpbuf, u16 *rpbuflen_ret)
775 DEBUG("Loading reparse data from \"%ls\"", path);
776 if (!DeviceIoControl(hFile, FSCTL_GET_REPARSE_POINT,
777 NULL, /* "Not used with this operation; set to NULL" */
778 0, /* "Not used with this operation; set to 0" */
779 rpbuf, /* "A pointer to a buffer that
780 receives the reparse point data */
781 REPARSE_POINT_MAX_SIZE, /* "The size of the output
786 DWORD err = GetLastError();
787 ERROR("Failed to get reparse data of \"%ls\"", path);
789 return -WIMLIB_ERR_READ;
791 if (bytesReturned < 8 || bytesReturned > REPARSE_POINT_MAX_SIZE) {
792 ERROR("Reparse data on \"%ls\" is invalid", path);
793 return -WIMLIB_ERR_INVALID_REPARSE_DATA;
796 rpbuflen = bytesReturned;
797 reparse_tag = le32_to_cpu(*(u32*)rpbuf);
798 if (params->add_image_flags & WIMLIB_ADD_IMAGE_FLAG_RPFIX &&
799 (reparse_tag == WIM_IO_REPARSE_TAG_SYMLINK ||
800 reparse_tag == WIM_IO_REPARSE_TAG_MOUNT_POINT))
802 /* Try doing reparse point fixup */
803 ret = win32_capture_try_rpfix(rpbuf,
805 params->capture_root_ino,
806 params->capture_root_dev);
810 *rpbuflen_ret = rpbuflen;
815 win32_tally_encrypted_size_cb(unsigned char *_data, void *_ctx,
819 return ERROR_SUCCESS;
823 win32_get_encrypted_file_size(const wchar_t *path, u64 *size_ret)
830 err = OpenEncryptedFileRawW(path, 0, &file_ctx);
831 if (err != ERROR_SUCCESS) {
832 ERROR("Failed to open encrypted file \"%ls\" for raw read", path);
834 return WIMLIB_ERR_OPEN;
836 err = ReadEncryptedFileRaw(win32_tally_encrypted_size_cb,
838 if (err != ERROR_SUCCESS) {
839 ERROR("Failed to read raw encrypted data from \"%ls\"", path);
841 ret = WIMLIB_ERR_READ;
845 CloseEncryptedFileRaw(file_ctx);
849 /* Scans an unnamed or named stream of a Win32 file (not a reparse point
850 * stream); calculates its SHA1 message digest and either creates a `struct
851 * wim_lookup_table_entry' in memory for it, or uses an existing 'struct
852 * wim_lookup_table_entry' for an identical stream.
854 * @path: Path to the file (UTF-16LE).
856 * @path_num_chars: Number of 2-byte characters in @path.
858 * @inode: WIM inode to save the stream into.
860 * @lookup_table: Stream lookup table for the WIM.
862 * @dat: A `WIN32_FIND_STREAM_DATA' structure that specifies the
865 * Returns 0 on success; nonzero on failure.
868 win32_capture_stream(const wchar_t *path,
869 size_t path_num_chars,
870 struct wim_inode *inode,
871 struct wim_lookup_table *lookup_table,
872 WIN32_FIND_STREAM_DATA *dat)
874 struct wim_ads_entry *ads_entry;
875 struct wim_lookup_table_entry *lte;
877 wchar_t *stream_name, *colon;
878 size_t stream_name_nchars;
879 bool is_named_stream;
882 size_t spath_buf_nbytes;
883 const wchar_t *relpath_prefix;
884 const wchar_t *colonchar;
886 DEBUG("Capture \"%ls\" stream \"%ls\"", path, dat->cStreamName);
888 /* The stream name should be returned as :NAME:TYPE */
889 stream_name = dat->cStreamName;
890 if (*stream_name != L':')
891 goto out_invalid_stream_name;
893 colon = wcschr(stream_name, L':');
895 goto out_invalid_stream_name;
897 if (wcscmp(colon + 1, L"$DATA")) {
898 /* Not a DATA stream */
905 stream_name_nchars = colon - stream_name;
906 is_named_stream = (stream_name_nchars != 0);
908 if (is_named_stream) {
909 /* Allocate an ADS entry for the named stream. */
910 ads_entry = inode_add_ads_utf16le(inode, stream_name,
911 stream_name_nchars * sizeof(wchar_t));
913 ret = WIMLIB_ERR_NOMEM;
918 /* If zero length stream, no lookup table entry needed. */
919 if ((u64)dat->StreamSize.QuadPart == 0) {
924 /* Create a UTF-16LE string @spath that gives the filename, then a
925 * colon, then the stream name. Or, if it's an unnamed stream, just the
926 * filename. It is MALLOC()'ed so that it can be saved in the
927 * wim_lookup_table_entry if needed.
929 * As yet another special case, relative paths need to be changed to
930 * begin with an explicit "./" so that, for example, a file t:ads, where
931 * :ads is the part we added, is not interpreted as a file on the t:
933 spath_nchars = path_num_chars;
934 relpath_prefix = L"";
936 if (is_named_stream) {
937 spath_nchars += 1 + stream_name_nchars;
939 if (path_num_chars == 1 &&
944 relpath_prefix = L"./";
948 spath_buf_nbytes = (spath_nchars + 1) * sizeof(wchar_t);
949 spath = MALLOC(spath_buf_nbytes);
951 swprintf(spath, L"%ls%ls%ls%ls",
952 relpath_prefix, path, colonchar, stream_name);
954 /* Make a new wim_lookup_table_entry */
955 lte = new_lookup_table_entry();
957 ret = WIMLIB_ERR_NOMEM;
960 lte->file_on_disk = spath;
962 if (inode->i_attributes & FILE_ATTRIBUTE_ENCRYPTED && !is_named_stream) {
964 lte->resource_location = RESOURCE_WIN32_ENCRYPTED;
965 ret = win32_get_encrypted_file_size(path, &encrypted_size);
968 lte->resource_entry.original_size = encrypted_size;
970 lte->resource_location = RESOURCE_WIN32;
971 lte->resource_entry.original_size = (u64)dat->StreamSize.QuadPart;
975 if (is_named_stream) {
976 stream_id = ads_entry->stream_id;
977 ads_entry->lte = lte;
982 lookup_table_insert_unhashed(lookup_table, lte, inode, stream_id);
988 out_invalid_stream_name:
989 ERROR("Invalid stream name: \"%ls:%ls\"", path, dat->cStreamName);
990 ret = WIMLIB_ERR_READ;
994 /* Scans a Win32 file for unnamed and named data streams (not reparse point
997 * @path: Path to the file (UTF-16LE).
999 * @path_num_chars: Number of 2-byte characters in @path.
1001 * @inode: WIM inode to save the stream into.
1003 * @lookup_table: Stream lookup table for the WIM.
1005 * @file_size: Size of unnamed data stream. (Used only if alternate
1006 * data streams API appears to be unavailable.)
1008 * @vol_flags: Flags that specify features of the volume being
1011 * Returns 0 on success; nonzero on failure.
1014 win32_capture_streams(const wchar_t *path,
1015 size_t path_num_chars,
1016 struct wim_inode *inode,
1017 struct wim_lookup_table *lookup_table,
1021 WIN32_FIND_STREAM_DATA dat;
1026 DEBUG("Capturing streams from \"%ls\"", path);
1028 if (win32func_FindFirstStreamW == NULL ||
1029 !(vol_flags & FILE_NAMED_STREAMS))
1032 hFind = win32func_FindFirstStreamW(path, FindStreamInfoStandard, &dat, 0);
1033 if (hFind == INVALID_HANDLE_VALUE) {
1034 err = GetLastError();
1035 if (err == ERROR_CALL_NOT_IMPLEMENTED)
1038 /* Seems legal for this to return ERROR_HANDLE_EOF on reparse
1039 * points and directories */
1040 if ((inode->i_attributes &
1041 (FILE_ATTRIBUTE_REPARSE_POINT | FILE_ATTRIBUTE_DIRECTORY))
1042 && err == ERROR_HANDLE_EOF)
1044 DEBUG("ERROR_HANDLE_EOF (ok)");
1047 if (err == ERROR_ACCESS_DENIED) {
1048 WARNING("Failed to look up data streams "
1049 "of \"%ls\": Access denied!\n%ls",
1050 path, capture_access_denied_msg);
1053 ERROR("Failed to look up data streams "
1054 "of \"%ls\"", path);
1056 return WIMLIB_ERR_READ;
1061 ret = win32_capture_stream(path,
1063 inode, lookup_table,
1066 goto out_find_close;
1067 } while (win32func_FindNextStreamW(hFind, &dat));
1068 err = GetLastError();
1069 if (err != ERROR_HANDLE_EOF) {
1070 ERROR("Win32 API: Error reading data streams from \"%ls\"", path);
1072 ret = WIMLIB_ERR_READ;
1078 /* FindFirstStreamW() API is not available, or the volume does not
1079 * support named streams. Only capture the unnamed data stream. */
1080 DEBUG("Only capturing unnamed data stream");
1081 if (inode->i_attributes &
1082 (FILE_ATTRIBUTE_REPARSE_POINT | FILE_ATTRIBUTE_DIRECTORY))
1086 /* Just create our own WIN32_FIND_STREAM_DATA for an unnamed
1087 * stream to reduce the code to a call to the
1088 * already-implemented win32_capture_stream() */
1089 wcscpy(dat.cStreamName, L"::$DATA");
1090 dat.StreamSize.QuadPart = file_size;
1091 ret = win32_capture_stream(path,
1093 inode, lookup_table,
1100 win32_build_dentry_tree_recursive(struct wim_dentry **root_ret,
1102 size_t path_num_chars,
1103 struct add_image_params *params,
1104 struct win32_capture_state *state,
1107 struct wim_dentry *root = NULL;
1108 struct wim_inode *inode;
1116 if (exclude_path(path, path_num_chars, params->config, true)) {
1117 if (params->add_image_flags & WIMLIB_ADD_IMAGE_FLAG_ROOT) {
1118 ERROR("Cannot exclude the root directory from capture");
1119 ret = WIMLIB_ERR_INVALID_CAPTURE_CONFIG;
1122 if ((params->add_image_flags & WIMLIB_ADD_IMAGE_FLAG_EXCLUDE_VERBOSE)
1123 && params->progress_func)
1125 union wimlib_progress_info info;
1126 info.scan.cur_path = path;
1127 info.scan.excluded = true;
1128 params->progress_func(WIMLIB_PROGRESS_MSG_SCAN_DENTRY, &info);
1134 if ((params->add_image_flags & WIMLIB_ADD_IMAGE_FLAG_VERBOSE)
1135 && params->progress_func)
1137 union wimlib_progress_info info;
1138 info.scan.cur_path = path;
1139 info.scan.excluded = false;
1140 params->progress_func(WIMLIB_PROGRESS_MSG_SCAN_DENTRY, &info);
1143 HANDLE hFile = win32_open_existing_file(path,
1144 FILE_READ_DATA | FILE_READ_ATTRIBUTES);
1145 if (hFile == INVALID_HANDLE_VALUE) {
1146 err = GetLastError();
1147 ERROR("Win32 API: Failed to open \"%ls\"", path);
1149 ret = WIMLIB_ERR_OPEN;
1153 BY_HANDLE_FILE_INFORMATION file_info;
1154 if (!GetFileInformationByHandle(hFile, &file_info)) {
1155 err = GetLastError();
1156 ERROR("Win32 API: Failed to get file information for \"%ls\"",
1159 ret = WIMLIB_ERR_STAT;
1160 goto out_close_handle;
1163 if (file_info.dwFileAttributes & FILE_ATTRIBUTE_REPARSE_POINT) {
1164 rpbuf = alloca(REPARSE_POINT_MAX_SIZE);
1165 ret = win32_get_reparse_data(hFile, path, params,
1168 /* WIMLIB_ERR_* (inverted) */
1170 goto out_close_handle;
1171 } else if (ret & RP_FIXED) {
1173 } else if (ret == RP_EXCLUDED) {
1175 goto out_close_handle;
1181 /* Create a WIM dentry with an associated inode, which may be shared.
1183 * However, we need to explicitly check for directories and files with
1184 * only 1 link and refuse to hard link them. This is because Windows
1185 * has a bug where it can return duplicate File IDs for files and
1186 * directories on the FAT filesystem. */
1187 ret = inode_table_new_dentry(params->inode_table,
1188 path_basename_with_len(path, path_num_chars),
1189 ((u64)file_info.nFileIndexHigh << 32) |
1190 (u64)file_info.nFileIndexLow,
1191 file_info.dwVolumeSerialNumber,
1192 (file_info.nNumberOfLinks <= 1 ||
1193 (file_info.dwFileAttributes & FILE_ATTRIBUTE_DIRECTORY)),
1196 goto out_close_handle;
1198 ret = win32_get_short_name(root, path);
1200 goto out_close_handle;
1202 inode = root->d_inode;
1204 if (inode->i_nlink > 1) /* Shared inode; nothing more to do */
1205 goto out_close_handle;
1207 inode->i_attributes = file_info.dwFileAttributes;
1208 inode->i_creation_time = FILETIME_to_u64(&file_info.ftCreationTime);
1209 inode->i_last_write_time = FILETIME_to_u64(&file_info.ftLastWriteTime);
1210 inode->i_last_access_time = FILETIME_to_u64(&file_info.ftLastAccessTime);
1211 inode->i_resolved = 1;
1213 params->add_image_flags &= ~(WIMLIB_ADD_IMAGE_FLAG_ROOT | WIMLIB_ADD_IMAGE_FLAG_SOURCE);
1215 if (!(params->add_image_flags & WIMLIB_ADD_IMAGE_FLAG_NO_ACLS)
1216 && (vol_flags & FILE_PERSISTENT_ACLS))
1218 ret = win32_get_security_descriptor(root, params->sd_set,
1220 params->add_image_flags);
1222 goto out_close_handle;
1225 file_size = ((u64)file_info.nFileSizeHigh << 32) |
1226 (u64)file_info.nFileSizeLow;
1230 /* Capture the unnamed data stream (only should be present for regular
1231 * files) and any alternate data streams. */
1232 ret = win32_capture_streams(path,
1235 params->lookup_table,
1241 if (inode->i_attributes & FILE_ATTRIBUTE_REPARSE_POINT) {
1242 /* Reparse point: set the reparse data (which we read already)
1244 inode->i_not_rpfixed = not_rpfixed;
1245 inode->i_reparse_tag = le32_to_cpu(*(u32*)rpbuf);
1246 ret = inode_set_unnamed_stream(inode, rpbuf + 8, rpbuflen - 8,
1247 params->lookup_table);
1248 } else if (inode->i_attributes & FILE_ATTRIBUTE_DIRECTORY) {
1249 /* Directory (not a reparse point) --- recurse to children */
1250 ret = win32_recurse_directory(root,
1264 free_dentry_tree(root, params->lookup_table);
1269 win32_do_capture_warnings(const struct win32_capture_state *state,
1270 int add_image_flags)
1272 if (state->num_get_sacl_priv_notheld == 0 &&
1273 state->num_get_sd_access_denied == 0)
1277 WARNING("Built dentry tree successfully, but with the following problem(s):");
1278 if (state->num_get_sacl_priv_notheld != 0) {
1279 WARNING("Could not capture SACL (System Access Control List)\n"
1280 " on %lu files or directories.",
1281 state->num_get_sacl_priv_notheld);
1283 if (state->num_get_sd_access_denied != 0) {
1284 WARNING("Could not capture security descriptor at all\n"
1285 " on %lu files or directories.",
1286 state->num_get_sd_access_denied);
1289 "Try running the program as the Administrator to make sure all the\n"
1290 " desired metadata has been captured exactly. However, if you\n"
1291 " do not care about capturing security descriptors correctly, then\n"
1292 " nothing more needs to be done%ls\n",
1293 (add_image_flags & WIMLIB_ADD_IMAGE_FLAG_NO_ACLS) ? L"." :
1294 L", although you might consider\n"
1295 " passing the --no-acls flag to `wimlib-imagex capture' or\n"
1296 " `wimlib-imagex append' to explicitly capture no security\n"
1300 /* Win32 version of capturing a directory tree */
1302 win32_build_dentry_tree(struct wim_dentry **root_ret,
1303 const wchar_t *root_disk_path,
1304 struct add_image_params *params)
1309 struct win32_capture_state state;
1313 path_nchars = wcslen(root_disk_path);
1314 if (path_nchars > 32767)
1315 return WIMLIB_ERR_INVALID_PARAM;
1317 ret = win32_get_file_and_vol_ids(root_disk_path,
1318 ¶ms->capture_root_ino,
1319 ¶ms->capture_root_dev);
1323 win32_get_vol_flags(root_disk_path, &vol_flags);
1325 /* There is no check for overflow later when this buffer is being used!
1326 * But the max path length on NTFS is 32767 characters, and paths need
1327 * to be written specially to even go past 260 characters, so we should
1328 * be okay with 32770 characters. */
1329 path = MALLOC(32770 * sizeof(wchar_t));
1331 return WIMLIB_ERR_NOMEM;
1333 wmemcpy(path, root_disk_path, path_nchars + 1);
1335 memset(&state, 0, sizeof(state));
1336 ret = win32_build_dentry_tree_recursive(root_ret, path,
1337 path_nchars, params,
1341 win32_do_capture_warnings(&state, params->add_image_flags);
1346 win32_extract_try_rpfix(u8 *rpbuf,
1347 const wchar_t *extract_root_realpath,
1348 unsigned extract_root_realpath_nchars)
1350 struct reparse_data rpdata;
1352 size_t target_nchars;
1353 size_t stripped_nchars;
1354 wchar_t *stripped_target;
1355 wchar_t stripped_target_nchars;
1358 utf16lechar *new_target;
1359 utf16lechar *new_print_name;
1360 size_t new_target_nchars;
1361 size_t new_print_name_nchars;
1364 ret = parse_reparse_data(rpbuf, 8 + le16_to_cpu(*(u16*)(rpbuf + 4)),
1369 if (extract_root_realpath[0] == L'\0' ||
1370 extract_root_realpath[1] != L':' ||
1371 extract_root_realpath[2] != L'\\')
1373 ERROR("Can't understand full path format \"%ls\". "
1374 "Try turning reparse point fixups off...",
1375 extract_root_realpath);
1376 return WIMLIB_ERR_REPARSE_POINT_FIXUP_FAILED;
1379 ret = parse_substitute_name(rpdata.substitute_name,
1380 rpdata.substitute_name_nbytes,
1384 stripped_nchars = ret;
1385 target = rpdata.substitute_name;
1386 target_nchars = rpdata.substitute_name_nbytes / sizeof(utf16lechar);
1387 stripped_target = target + 6;
1388 stripped_target_nchars = target_nchars - stripped_nchars;
1390 new_target = alloca((6 + extract_root_realpath_nchars +
1391 stripped_target_nchars) * sizeof(utf16lechar));
1394 if (stripped_nchars == 6) {
1395 /* Include \??\ prefix if it was present before */
1396 wmemcpy(p, L"\\??\\", 4);
1400 /* Print name excludes the \??\ if present. */
1402 if (target_nchars - stripped_target_nchars != 0) {
1403 /* Get drive letter from real path to extract root, if a drive
1404 * letter was present before. */
1405 *p++ = extract_root_realpath[0];
1406 *p++ = extract_root_realpath[1];
1408 /* Copy the rest of the extract root */
1409 wmemcpy(p, extract_root_realpath + 2, extract_root_realpath_nchars - 2);
1410 p += extract_root_realpath_nchars - 2;
1412 /* Append the stripped target */
1413 wmemcpy(p, stripped_target, stripped_target_nchars);
1414 p += stripped_target_nchars;
1415 new_target_nchars = p - new_target;
1416 new_print_name_nchars = p - new_print_name;
1418 if (new_target_nchars * sizeof(utf16lechar) >= REPARSE_POINT_MAX_SIZE ||
1419 new_print_name_nchars * sizeof(utf16lechar) >= REPARSE_POINT_MAX_SIZE)
1421 ERROR("Path names too long to do reparse point fixup!");
1422 return WIMLIB_ERR_REPARSE_POINT_FIXUP_FAILED;
1424 rpdata.substitute_name = new_target;
1425 rpdata.substitute_name_nbytes = new_target_nchars * sizeof(utf16lechar);
1426 rpdata.print_name = new_print_name;
1427 rpdata.print_name_nbytes = new_print_name_nchars * sizeof(utf16lechar);
1428 return make_reparse_buffer(&rpdata, rpbuf);
1431 /* Wrapper around the FSCTL_SET_REPARSE_POINT ioctl to set the reparse data on
1432 * an extracted reparse point. */
1434 win32_set_reparse_data(HANDLE h,
1435 const struct wim_inode *inode,
1436 const struct wim_lookup_table_entry *lte,
1437 const wchar_t *path,
1438 const struct apply_args *args)
1441 u8 rpbuf[REPARSE_POINT_MAX_SIZE];
1442 DWORD bytesReturned;
1444 DEBUG("Setting reparse data on \"%ls\"", path);
1446 ret = wim_inode_get_reparse_data(inode, rpbuf);
1450 if (args->extract_flags & WIMLIB_EXTRACT_FLAG_RPFIX &&
1451 (inode->i_reparse_tag == WIM_IO_REPARSE_TAG_SYMLINK ||
1452 inode->i_reparse_tag == WIM_IO_REPARSE_TAG_MOUNT_POINT) &&
1453 !inode->i_not_rpfixed)
1455 ret = win32_extract_try_rpfix(rpbuf,
1456 args->target_realpath,
1457 args->target_realpath_len);
1459 return WIMLIB_ERR_REPARSE_POINT_FIXUP_FAILED;
1462 /* Set the reparse data on the open file using the
1463 * FSCTL_SET_REPARSE_POINT ioctl.
1465 * There are contradictions in Microsoft's documentation for this:
1467 * "If hDevice was opened without specifying FILE_FLAG_OVERLAPPED,
1468 * lpOverlapped is ignored."
1470 * --- So setting lpOverlapped to NULL is okay since it's ignored.
1472 * "If lpOverlapped is NULL, lpBytesReturned cannot be NULL. Even when an
1473 * operation returns no output data and lpOutBuffer is NULL,
1474 * DeviceIoControl makes use of lpBytesReturned. After such an
1475 * operation, the value of lpBytesReturned is meaningless."
1477 * --- So lpOverlapped not really ignored, as it affects another
1478 * parameter. This is the actual behavior: lpBytesReturned must be
1479 * specified, even though lpBytesReturned is documented as:
1481 * "Not used with this operation; set to NULL."
1483 if (!DeviceIoControl(h, FSCTL_SET_REPARSE_POINT, rpbuf,
1484 8 + le16_to_cpu(*(u16*)(rpbuf + 4)),
1486 &bytesReturned /* lpBytesReturned */,
1487 NULL /* lpOverlapped */))
1489 DWORD err = GetLastError();
1490 ERROR("Failed to set reparse data on \"%ls\"", path);
1492 if (err == ERROR_ACCESS_DENIED || err == ERROR_PRIVILEGE_NOT_HELD)
1493 return WIMLIB_ERR_INSUFFICIENT_PRIVILEGES_TO_EXTRACT;
1494 else if (inode->i_reparse_tag == WIM_IO_REPARSE_TAG_SYMLINK ||
1495 inode->i_reparse_tag == WIM_IO_REPARSE_TAG_MOUNT_POINT)
1496 return WIMLIB_ERR_LINK;
1498 return WIMLIB_ERR_WRITE;
1503 /* Wrapper around the FSCTL_SET_COMPRESSION ioctl to change the
1504 * FILE_ATTRIBUTE_COMPRESSED flag of a file or directory. */
1506 win32_set_compression_state(HANDLE hFile, USHORT format, const wchar_t *path)
1508 DWORD bytesReturned;
1509 if (!DeviceIoControl(hFile, FSCTL_SET_COMPRESSION,
1510 &format, sizeof(USHORT),
1512 &bytesReturned, NULL))
1514 /* Could be a warning only, but we only call this if the volume
1515 * supports compression. So I'm calling this an error. */
1516 DWORD err = GetLastError();
1517 ERROR("Failed to set compression flag on \"%ls\"", path);
1519 if (err == ERROR_ACCESS_DENIED || err == ERROR_PRIVILEGE_NOT_HELD)
1520 return WIMLIB_ERR_INSUFFICIENT_PRIVILEGES_TO_EXTRACT;
1522 return WIMLIB_ERR_WRITE;
1527 /* Wrapper around FSCTL_SET_SPARSE ioctl to set a file as sparse. */
1529 win32_set_sparse(HANDLE hFile, const wchar_t *path)
1531 DWORD bytesReturned;
1532 if (!DeviceIoControl(hFile, FSCTL_SET_SPARSE,
1535 &bytesReturned, NULL))
1537 /* Could be a warning only, but we only call this if the volume
1538 * supports sparse files. So I'm calling this an error. */
1539 DWORD err = GetLastError();
1540 WARNING("Failed to set sparse flag on \"%ls\"", path);
1542 if (err == ERROR_ACCESS_DENIED || err == ERROR_PRIVILEGE_NOT_HELD)
1543 return WIMLIB_ERR_INSUFFICIENT_PRIVILEGES_TO_EXTRACT;
1545 return WIMLIB_ERR_WRITE;
1551 * Sets the security descriptor on an extracted file.
1554 win32_set_security_data(const struct wim_inode *inode,
1556 const wchar_t *path,
1557 struct apply_args *args)
1559 PSECURITY_DESCRIPTOR descriptor;
1562 const struct wim_security_data *sd;
1564 SECURITY_INFORMATION securityInformation = 0;
1571 BOOL owner_defaulted;
1572 BOOL group_defaulted;
1574 BOOL dacl_defaulted;
1576 BOOL sacl_defaulted;
1578 sd = wim_const_security_data(args->w);
1579 descriptor = sd->descriptors[inode->i_security_id];
1581 GetSecurityDescriptorOwner(descriptor, &owner, &owner_defaulted);
1583 securityInformation |= OWNER_SECURITY_INFORMATION;
1585 GetSecurityDescriptorGroup(descriptor, &group, &group_defaulted);
1587 securityInformation |= GROUP_SECURITY_INFORMATION;
1589 GetSecurityDescriptorDacl(descriptor, &dacl_present,
1590 &dacl, &dacl_defaulted);
1592 securityInformation |= DACL_SECURITY_INFORMATION;
1594 GetSecurityDescriptorSacl(descriptor, &sacl_present,
1595 &sacl, &sacl_defaulted);
1597 securityInformation |= SACL_SECURITY_INFORMATION;
1600 if (securityInformation == 0)
1602 if (SetSecurityInfo(hFile, SE_FILE_OBJECT,
1603 securityInformation, owner, group, dacl, sacl))
1605 err = GetLastError();
1606 if (args->extract_flags & WIMLIB_EXTRACT_FLAG_STRICT_ACLS)
1609 case ERROR_PRIVILEGE_NOT_HELD:
1610 if (securityInformation & SACL_SECURITY_INFORMATION) {
1611 n = args->num_set_sacl_priv_notheld++;
1612 securityInformation &= ~SACL_SECURITY_INFORMATION;
1614 if (n < MAX_SET_SACL_PRIV_NOTHELD_WARNINGS) {
1616 "We don't have enough privileges to set the full security\n"
1617 " descriptor on \"%ls\"!\n", path);
1618 if (args->num_set_sd_access_denied +
1619 args->num_set_sacl_priv_notheld == 1)
1621 WARNING("%ls", apply_access_denied_msg);
1623 WARNING("Re-trying with SACL omitted.\n", path);
1624 } else if (n == MAX_GET_SACL_PRIV_NOTHELD_WARNINGS) {
1626 "Suppressing further 'privileges not held' error messages when setting\n"
1627 " security descriptors.");
1632 case ERROR_INVALID_OWNER:
1633 case ERROR_ACCESS_DENIED:
1634 n = args->num_set_sd_access_denied++;
1635 if (n < MAX_SET_SD_ACCESS_DENIED_WARNINGS) {
1636 WARNING("Failed to set security descriptor on \"%ls\": "
1637 "Access denied!\n", path);
1638 if (args->num_set_sd_access_denied +
1639 args->num_set_sacl_priv_notheld == 1)
1641 WARNING("%ls", apply_access_denied_msg);
1643 } else if (n == MAX_SET_SD_ACCESS_DENIED_WARNINGS) {
1645 "Suppressing further access denied error messages when setting\n"
1646 " security descriptors");
1651 ERROR("Failed to set security descriptor on \"%ls\"", path);
1653 if (err == ERROR_ACCESS_DENIED || err == ERROR_PRIVILEGE_NOT_HELD)
1654 return WIMLIB_ERR_INSUFFICIENT_PRIVILEGES_TO_EXTRACT;
1656 return WIMLIB_ERR_WRITE;
1662 win32_extract_chunk(const void *buf, size_t len, void *arg)
1664 HANDLE hStream = arg;
1666 DWORD nbytes_written;
1667 wimlib_assert(len <= 0xffffffff);
1669 if (!WriteFile(hStream, buf, len, &nbytes_written, NULL) ||
1670 nbytes_written != len)
1672 DWORD err = GetLastError();
1673 ERROR("WriteFile(): write error");
1675 return WIMLIB_ERR_WRITE;
1681 do_win32_extract_stream(HANDLE hStream, const struct wim_lookup_table_entry *lte)
1683 return extract_wim_resource(lte, wim_resource_size(lte),
1684 win32_extract_chunk, hStream);
1687 struct win32_encrypted_extract_ctx {
1689 int wimlib_err_code;
1692 pthread_cond_t cond;
1693 pthread_mutex_t mutex;
1694 u8 buf[WIM_CHUNK_SIZE];
1699 win32_encrypted_import_cb(unsigned char *data, void *_ctx,
1700 unsigned long *len_p)
1702 struct win32_encrypted_extract_ctx *ctx = _ctx;
1703 unsigned long len = *len_p;
1706 pthread_mutex_lock(&ctx->mutex);
1708 size_t bytes_to_copy;
1709 DEBUG("Importing up to %lu more bytes of raw encrypted data", len);
1711 if (ctx->done && ctx->win32_err_code != ERROR_SUCCESS)
1713 while (ctx->buf_filled == 0) {
1716 pthread_cond_wait(&ctx->cond, &ctx->mutex);
1718 bytes_to_copy = min(len, ctx->buf_filled);
1719 memcpy(data, ctx->buf, bytes_to_copy);
1720 len -= bytes_to_copy;
1721 data += bytes_to_copy;
1722 ctx->buf_filled -= bytes_to_copy;
1723 memmove(ctx->buf, ctx->buf + bytes_to_copy, ctx->buf_filled);
1724 pthread_cond_signal(&ctx->cond);
1726 ret = ERROR_SUCCESS;
1729 ret = ctx->win32_err_code;
1732 pthread_mutex_unlock(&ctx->mutex);
1736 /* Extract ("Import") an encrypted file in a different thread. */
1738 win32_encrypted_import_proc(void *arg)
1740 struct win32_encrypted_extract_ctx *ctx = arg;
1742 ret = WriteEncryptedFileRaw(win32_encrypted_import_cb, ctx,
1744 pthread_mutex_lock(&ctx->mutex);
1745 if (ret == ERROR_SUCCESS) {
1746 ctx->wimlib_err_code = 0;
1748 ERROR("Failed to extract raw encrypted file");
1750 ctx->wimlib_err_code = WIMLIB_ERR_WRITE;
1753 pthread_cond_signal(&ctx->cond);
1754 pthread_mutex_unlock(&ctx->mutex);
1760 win32_extract_raw_encrypted_chunk(const void *buf, size_t len, void *arg)
1762 struct win32_encrypted_extract_ctx *ctx = arg;
1763 size_t bytes_to_copy;
1766 DEBUG("Extracting up to %zu more bytes of encrypted data", len);
1767 pthread_mutex_lock(&ctx->mutex);
1770 while (ctx->buf_filled == WIM_CHUNK_SIZE) {
1771 pthread_cond_wait(&ctx->cond, &ctx->mutex);
1775 bytes_to_copy = min(len, WIM_CHUNK_SIZE - ctx->buf_filled);
1776 memcpy(&ctx->buf[ctx->buf_filled], buf, bytes_to_copy);
1777 len -= bytes_to_copy;
1778 buf += bytes_to_copy;
1779 ctx->buf_filled += bytes_to_copy;
1780 pthread_cond_signal(&ctx->cond);
1781 pthread_mutex_unlock(&ctx->mutex);
1785 pthread_mutex_unlock(&ctx->mutex);
1786 return ctx->wimlib_err_code;
1789 /* Create an encrypted file and extract the raw encrypted data to it.
1791 * @path: Path to encrypted file to create.
1792 * @lte: WIM lookup_table entry for the raw encrypted data.
1794 * This is separate from do_win32_extract_stream() because the WIM is supposed
1795 * to contain the *raw* encrypted data, which needs to be extracted ("imported")
1796 * using the special APIs OpenEncryptedFileRawW(), WriteEncryptedFileRaw(), and
1797 * CloseEncryptedFileRaw().
1799 * Returns 0 on success; nonzero on failure.
1802 do_win32_extract_encrypted_stream(const wchar_t *path,
1803 const struct wim_lookup_table_entry *lte)
1805 struct win32_encrypted_extract_ctx ctx;
1807 pthread_t import_thread;
1811 DEBUG("Opening file \"%ls\" to extract raw encrypted data", path);
1813 ret = OpenEncryptedFileRawW(path, CREATE_FOR_IMPORT, &file_ctx);
1815 ERROR("Failed to open \"%ls\" to write raw encrypted data", path);
1817 return WIMLIB_ERR_OPEN;
1823 /* Hack alert: WriteEncryptedFileRaw() requires the callback function
1824 * to work with a buffer whose size we cannot control. This doesn't
1825 * play well with our read_resource_prefix() function, which itself uses
1826 * a callback function to extract WIM_CHUNK_SIZE chunks of data. We
1827 * work around this problem by calling WriteEncryptedFileRaw() in a
1828 * different thread and feeding it the data as needed. */
1829 ctx.file_ctx = file_ctx;
1832 ctx.wimlib_err_code = 0;
1833 if (pthread_mutex_init(&ctx.mutex, NULL)) {
1834 ERROR_WITH_ERRNO("Can't create mutex");
1835 ret = WIMLIB_ERR_NOMEM;
1838 if (pthread_cond_init(&ctx.cond, NULL)) {
1839 ERROR_WITH_ERRNO("Can't create condition variable");
1840 ret = WIMLIB_ERR_NOMEM;
1841 goto out_pthread_mutex_destroy;
1843 ret = pthread_create(&import_thread, NULL,
1844 win32_encrypted_import_proc, &ctx);
1847 ERROR_WITH_ERRNO("Failed to create thread");
1848 ret = WIMLIB_ERR_FORK;
1849 goto out_pthread_cond_destroy;
1852 ret = extract_wim_resource(lte, wim_resource_size(lte),
1853 win32_extract_raw_encrypted_chunk, &ctx);
1854 pthread_mutex_lock(&ctx.mutex);
1856 ctx.win32_err_code = ERROR_READ_FAULT;
1858 ctx.win32_err_code = ERROR_SUCCESS;
1860 pthread_cond_signal(&ctx.cond);
1861 pthread_mutex_unlock(&ctx.mutex);
1862 ret2 = pthread_join(import_thread, NULL);
1865 ERROR_WITH_ERRNO("Failed to join encrypted import thread");
1867 ret = WIMLIB_ERR_WRITE;
1870 ret = ctx.wimlib_err_code;
1871 out_pthread_cond_destroy:
1872 pthread_cond_destroy(&ctx.cond);
1873 out_pthread_mutex_destroy:
1874 pthread_mutex_destroy(&ctx.mutex);
1876 CloseEncryptedFileRaw(file_ctx);
1878 ERROR("Failed to extract encrypted file \"%ls\"", path);
1883 path_is_root_of_drive(const wchar_t *path)
1888 if (*path != L'/' && *path != L'\\') {
1889 if (*(path + 1) == L':')
1894 while (*path == L'/' || *path == L'\\')
1896 return (*path == L'\0');
1900 win32_mask_attributes(DWORD i_attributes)
1902 return i_attributes & ~(FILE_ATTRIBUTE_SPARSE_FILE |
1903 FILE_ATTRIBUTE_COMPRESSED |
1904 FILE_ATTRIBUTE_REPARSE_POINT |
1905 FILE_ATTRIBUTE_DIRECTORY |
1906 FILE_ATTRIBUTE_ENCRYPTED |
1907 FILE_FLAG_DELETE_ON_CLOSE |
1908 FILE_FLAG_NO_BUFFERING |
1909 FILE_FLAG_OPEN_NO_RECALL |
1910 FILE_FLAG_OVERLAPPED |
1911 FILE_FLAG_RANDOM_ACCESS |
1912 /*FILE_FLAG_SESSION_AWARE |*/
1913 FILE_FLAG_SEQUENTIAL_SCAN |
1914 FILE_FLAG_WRITE_THROUGH);
1918 win32_get_create_flags_and_attributes(DWORD i_attributes)
1921 * Some attributes cannot be set by passing them to CreateFile(). In
1924 * FILE_ATTRIBUTE_DIRECTORY:
1925 * CreateDirectory() must be called instead of CreateFile().
1927 * FILE_ATTRIBUTE_SPARSE_FILE:
1929 * See: win32_set_sparse().
1931 * FILE_ATTRIBUTE_COMPRESSED:
1932 * Not clear from the documentation, but apparently this needs an
1934 * See: win32_set_compressed().
1936 * FILE_ATTRIBUTE_REPARSE_POINT:
1937 * Needs an ioctl, with the reparse data specified.
1938 * See: win32_set_reparse_data().
1940 * In addition, clear any file flags in the attributes that we don't
1941 * want, but also specify FILE_FLAG_OPEN_REPARSE_POINT and
1942 * FILE_FLAG_BACKUP_SEMANTICS as we are a backup application.
1944 return win32_mask_attributes(i_attributes) |
1945 FILE_FLAG_OPEN_REPARSE_POINT |
1946 FILE_FLAG_BACKUP_SEMANTICS;
1949 /* Set compression and/or sparse attributes on a stream, if supported by the
1952 win32_set_special_stream_attributes(HANDLE hFile, const struct wim_inode *inode,
1953 struct wim_lookup_table_entry *unnamed_stream_lte,
1954 const wchar_t *path, unsigned vol_flags)
1958 if (inode->i_attributes & FILE_ATTRIBUTE_COMPRESSED) {
1959 if (vol_flags & FILE_FILE_COMPRESSION) {
1960 ret = win32_set_compression_state(hFile,
1961 COMPRESSION_FORMAT_DEFAULT,
1966 DEBUG("Cannot set compression attribute on \"%ls\": "
1967 "volume does not support transparent compression",
1972 if (inode->i_attributes & FILE_ATTRIBUTE_SPARSE_FILE) {
1973 if (vol_flags & FILE_SUPPORTS_SPARSE_FILES) {
1974 DEBUG("Setting sparse flag on \"%ls\"", path);
1975 ret = win32_set_sparse(hFile, path);
1979 DEBUG("Cannot set sparse attribute on \"%ls\": "
1980 "volume does not support sparse files",
1987 /* Pre-create directories; extract encrypted streams */
1989 win32_begin_extract_unnamed_stream(const struct wim_inode *inode,
1990 const struct wim_lookup_table_entry *lte,
1991 const wchar_t *path,
1992 DWORD *creationDisposition_ret,
1993 unsigned int vol_flags)
1998 /* Directories must be created with CreateDirectoryW(). Then the call
1999 * to CreateFileW() will merely open the directory that was already
2000 * created rather than creating a new file. */
2001 if (inode->i_attributes & FILE_ATTRIBUTE_DIRECTORY &&
2002 !path_is_root_of_drive(path)) {
2003 if (!CreateDirectoryW(path, NULL)) {
2004 err = GetLastError();
2005 if (err != ERROR_ALREADY_EXISTS) {
2006 ERROR("Failed to create directory \"%ls\"",
2009 return WIMLIB_ERR_MKDIR;
2012 DEBUG("Created directory \"%ls\"", path);
2013 *creationDisposition_ret = OPEN_EXISTING;
2015 if (inode->i_attributes & FILE_ATTRIBUTE_ENCRYPTED &&
2016 vol_flags & FILE_SUPPORTS_ENCRYPTION)
2018 if (inode->i_attributes & FILE_ATTRIBUTE_DIRECTORY) {
2019 if (!EncryptFile(path)) {
2020 err = GetLastError();
2021 ERROR("Failed to encrypt directory \"%ls\"",
2024 return WIMLIB_ERR_WRITE;
2027 ret = do_win32_extract_encrypted_stream(path, lte);
2030 DEBUG("Extracted encrypted file \"%ls\"", path);
2032 *creationDisposition_ret = OPEN_EXISTING;
2035 /* Set file attributes if we created the file. Otherwise, we haven't
2036 * created the file set and we will set the attributes in the call to
2039 * The FAT filesystem does not let you change the attributes of the root
2040 * directory, so treat that as a special case and do not set attributes.
2042 if (*creationDisposition_ret == OPEN_EXISTING &&
2043 !path_is_root_of_drive(path))
2045 if (!SetFileAttributesW(path,
2046 win32_mask_attributes(inode->i_attributes)))
2048 err = GetLastError();
2049 ERROR("Failed to set attributes on \"%ls\"", path);
2051 return WIMLIB_ERR_WRITE;
2057 /* Set security descriptor and extract stream data or reparse data (skip the
2058 * unnamed data stream of encrypted files, which was already extracted). */
2060 win32_finish_extract_stream(HANDLE h, const struct wim_inode *inode,
2061 const struct wim_lookup_table_entry *lte,
2062 const wchar_t *stream_path,
2063 const wchar_t *stream_name_utf16,
2064 struct apply_args *args)
2067 if (stream_name_utf16 == NULL) {
2068 /* Unnamed stream. */
2070 /* Set security descriptor, unless the extract_flags indicate
2071 * not to or the volume does not supported it. Note that this
2072 * is only done when the unnamed stream is being extracted, as
2073 * security descriptors are per-file and not per-stream. */
2074 if (inode->i_security_id >= 0 &&
2075 !(args->extract_flags & WIMLIB_EXTRACT_FLAG_NO_ACLS)
2076 && (args->vol_flags & FILE_PERSISTENT_ACLS))
2078 ret = win32_set_security_data(inode, h, stream_path, args);
2083 /* Handle reparse points. The data for them needs to be set
2084 * using a special ioctl. Note that the reparse point may have
2085 * been created using CreateFileW() in the case of
2086 * non-directories or CreateDirectoryW() in the case of
2087 * directories; but the ioctl works either way. Also, it is
2088 * only this step that actually sets the
2089 * FILE_ATTRIBUTE_REPARSE_POINT, as it is not valid to set it
2090 * using SetFileAttributesW() or CreateFileW().
2092 * If the volume does not support reparse points we simply
2093 * ignore the reparse data. (N.B. the code currently doesn't
2094 * actually reach this case because reparse points are skipped
2095 * entirely on such volumes.) */
2096 if (inode->i_attributes & FILE_ATTRIBUTE_REPARSE_POINT) {
2097 if (args->vol_flags & FILE_SUPPORTS_REPARSE_POINTS) {
2098 ret = win32_set_reparse_data(h, inode,
2104 DEBUG("Cannot set reparse data on \"%ls\": volume "
2105 "does not support reparse points", stream_path);
2107 } else if (lte != NULL &&
2108 !(args->vol_flags & FILE_SUPPORTS_ENCRYPTION &&
2109 inode->i_attributes & FILE_ATTRIBUTE_ENCRYPTED))
2111 /* Extract the data of the unnamed stream, unless the
2112 * lookup table entry is NULL (indicating an empty
2113 * stream for which no data needs to be extracted), or
2114 * the stream is encrypted and therefore was already
2115 * extracted as a special case. */
2116 ret = do_win32_extract_stream(h, lte);
2119 /* Extract the data for a named data stream. */
2121 DEBUG("Extracting named data stream \"%ls\" (len = %"PRIu64")",
2122 stream_path, wim_resource_size(lte));
2123 ret = do_win32_extract_stream(h, lte);
2130 win32_decrypt_file(HANDLE open_handle, const wchar_t *path)
2133 /* We cannot call DecryptFileW() while there is an open handle to the
2134 * file. So close it first. */
2135 if (!CloseHandle(open_handle)) {
2136 err = GetLastError();
2137 ERROR("Failed to close handle for \"%ls\"", path);
2139 return WIMLIB_ERR_WRITE;
2141 if (!DecryptFileW(path, 0 /* reserved parameter; set to 0 */)) {
2142 err = GetLastError();
2143 ERROR("Failed to decrypt file \"%ls\"", path);
2145 return WIMLIB_ERR_WRITE;
2151 * Create and extract a stream to a file, or create a directory, using the
2154 * This handles reparse points, directories, alternate data streams, encrypted
2155 * files, compressed files, etc.
2157 * @inode: WIM inode containing the stream.
2159 * @path: Path to extract the file to.
2161 * @stream_name_utf16:
2162 * Name of the stream, or NULL if the stream is unnamed. This will
2163 * be called with a NULL stream_name_utf16 before any non-NULL
2164 * stream_name_utf16's.
2166 * @lte: WIM lookup table entry for the stream. May be NULL to indicate
2167 * a stream of length 0.
2169 * @args: Additional apply context, including flags indicating supported
2172 * Returns 0 on success; nonzero on failure.
2175 win32_extract_stream(const struct wim_inode *inode,
2176 const wchar_t *path,
2177 const wchar_t *stream_name_utf16,
2178 struct wim_lookup_table_entry *lte,
2179 struct apply_args *args)
2181 wchar_t *stream_path;
2185 DWORD creationDisposition = CREATE_ALWAYS;
2186 DWORD requestedAccess;
2187 BY_HANDLE_FILE_INFORMATION file_info;
2189 if (stream_name_utf16) {
2190 /* Named stream. Create a buffer that contains the UTF-16LE
2191 * string [./]path:stream_name_utf16. This is needed to
2192 * create and open the stream using CreateFileW(). I'm not
2193 * aware of any other APIs to do this. Note: the '$DATA' suffix
2194 * seems to be unneeded. Additional note: a "./" prefix needs
2195 * to be added when the path is not absolute to avoid ambiguity
2196 * with drive letters. */
2197 size_t stream_path_nchars;
2199 size_t stream_name_nchars;
2200 const wchar_t *prefix;
2202 path_nchars = wcslen(path);
2203 stream_name_nchars = wcslen(stream_name_utf16);
2204 stream_path_nchars = path_nchars + 1 + stream_name_nchars;
2205 if (path[0] != cpu_to_le16(L'\0') &&
2206 path[0] != cpu_to_le16(L'/') &&
2207 path[0] != cpu_to_le16(L'\\') &&
2208 path[1] != cpu_to_le16(L':'))
2211 stream_path_nchars += 2;
2215 stream_path = alloca((stream_path_nchars + 1) * sizeof(wchar_t));
2216 swprintf(stream_path, L"%ls%ls:%ls",
2217 prefix, path, stream_name_utf16);
2219 /* Unnamed stream; its path is just the path to the file itself.
2221 stream_path = (wchar_t*)path;
2223 ret = win32_begin_extract_unnamed_stream(inode, lte, path,
2224 &creationDisposition,
2230 DEBUG("Opening \"%ls\"", stream_path);
2231 requestedAccess = GENERIC_READ | GENERIC_WRITE |
2232 ACCESS_SYSTEM_SECURITY;
2234 /* Open the stream to be extracted. Depending on what we have set
2235 * creationDisposition to, we may be creating this for the first time,
2236 * or we may be opening on existing stream we already created using
2237 * CreateDirectoryW() or OpenEncryptedFileRawW(). */
2238 h = CreateFileW(stream_path,
2242 creationDisposition,
2243 win32_get_create_flags_and_attributes(inode->i_attributes),
2245 if (h == INVALID_HANDLE_VALUE) {
2246 err = GetLastError();
2247 if (err == ERROR_ACCESS_DENIED &&
2248 path_is_root_of_drive(stream_path))
2253 if ((err == ERROR_PRIVILEGE_NOT_HELD ||
2254 err == ERROR_ACCESS_DENIED) &&
2255 (requestedAccess & ACCESS_SYSTEM_SECURITY))
2257 /* Try opening the file again without privilege to
2259 requestedAccess &= ~ACCESS_SYSTEM_SECURITY;
2260 goto try_open_again;
2262 ERROR("Failed to create \"%ls\"", stream_path);
2264 ret = WIMLIB_ERR_OPEN;
2268 /* Check the attributes of the file we just opened, and remove
2269 * encryption or compression if either was set by default but is not
2270 * supposed to be set based on the WIM inode attributes. */
2271 if (!GetFileInformationByHandle(h, &file_info)) {
2272 err = GetLastError();
2273 ERROR("Failed to get attributes of \"%ls\"", stream_path);
2275 ret = WIMLIB_ERR_STAT;
2276 goto fail_close_handle;
2279 /* Remove encryption? */
2280 if (file_info.dwFileAttributes & FILE_ATTRIBUTE_ENCRYPTED &&
2281 !(inode->i_attributes & FILE_ATTRIBUTE_ENCRYPTED))
2283 /* File defaulted to encrypted due to being in an encrypted
2284 * directory, but is not actually supposed to be encrypted.
2286 * This is a workaround, because I'm not aware of any way to
2287 * directly (e.g. with CreateFileW()) create an unencrypted file
2288 * in a directory with FILE_ATTRIBUTE_ENCRYPTED set. */
2289 ret = win32_decrypt_file(h, stream_path);
2291 goto fail; /* win32_decrypt_file() closed the handle. */
2292 creationDisposition = OPEN_EXISTING;
2293 goto try_open_again;
2296 /* Remove compression? */
2297 if (file_info.dwFileAttributes & FILE_ATTRIBUTE_COMPRESSED &&
2298 !(inode->i_attributes & FILE_ATTRIBUTE_COMPRESSED))
2300 /* Similar to the encrypted case, above, if the file defaulted
2301 * to compressed due to being in an compressed directory, but is
2302 * not actually supposed to be compressed, explicitly set the
2303 * compression format to COMPRESSION_FORMAT_NONE. */
2304 ret = win32_set_compression_state(h, COMPRESSION_FORMAT_NONE,
2307 goto fail_close_handle;
2310 /* Set compression and/or sparse attributes if needed */
2311 ret = win32_set_special_stream_attributes(h, inode, lte, path,
2315 goto fail_close_handle;
2317 /* At this point we have at least created the needed stream with the
2318 * appropriate attributes. We have yet to set the appropriate security
2319 * descriptor and actually extract the stream data (other than for
2320 * extracted files, which were already extracted).
2321 * win32_finish_extract_stream() handles these additional steps. */
2322 ret = win32_finish_extract_stream(h, inode, lte, stream_path,
2323 stream_name_utf16, args);
2325 goto fail_close_handle;
2327 /* Done extracting the stream. Close the handle and return. */
2328 DEBUG("Closing \"%ls\"", stream_path);
2329 if (!CloseHandle(h)) {
2330 err = GetLastError();
2331 ERROR("Failed to close \"%ls\"", stream_path);
2333 ret = WIMLIB_ERR_WRITE;
2341 ERROR("Error extracting \"%ls\"", stream_path);
2347 * Creates a file, directory, or reparse point and extracts all streams to it
2348 * (unnamed data stream and/or reparse point stream, plus any alternate data
2349 * streams). Handles sparse, compressed, and/or encrypted files.
2351 * @inode: WIM inode for this file or directory.
2352 * @path: UTF-16LE external path to extract the inode to.
2353 * @args: Additional extraction context.
2355 * Returns 0 on success; nonzero on failure.
2358 win32_extract_streams(const struct wim_inode *inode,
2359 const wchar_t *path, struct apply_args *args)
2361 struct wim_lookup_table_entry *unnamed_lte;
2364 /* First extract the unnamed stream. */
2366 unnamed_lte = inode_unnamed_lte_resolved(inode);
2367 ret = win32_extract_stream(inode, path, NULL, unnamed_lte, args);
2371 /* Extract any named streams, if supported by the volume. */
2373 if (!(args->vol_flags & FILE_NAMED_STREAMS))
2375 for (u16 i = 0; i < inode->i_num_ads; i++) {
2376 const struct wim_ads_entry *ads_entry = &inode->i_ads_entries[i];
2378 /* Skip the unnamed stream if it's in the ADS entries (we
2379 * already extracted it...) */
2380 if (ads_entry->stream_name_nbytes == 0)
2383 /* Skip special UNIX data entries (see documentation for
2384 * WIMLIB_ADD_IMAGE_FLAG_UNIX_DATA) */
2385 if (ads_entry->stream_name_nbytes == WIMLIB_UNIX_DATA_TAG_UTF16LE_NBYTES
2386 && !memcmp(ads_entry->stream_name,
2387 WIMLIB_UNIX_DATA_TAG_UTF16LE,
2388 WIMLIB_UNIX_DATA_TAG_UTF16LE_NBYTES))
2391 /* Extract the named stream */
2392 ret = win32_extract_stream(inode,
2394 ads_entry->stream_name,
2404 /* If not done already, load the supported feature flags for the volume onto
2405 * which the image is being extracted, and warn the user about any missing
2406 * features that could be important. */
2408 win32_check_vol_flags(const wchar_t *output_path, struct apply_args *args)
2410 if (args->have_vol_flags)
2413 win32_get_vol_flags(output_path, &args->vol_flags);
2414 args->have_vol_flags = true;
2415 /* Warn the user about data that may not be extracted. */
2416 if (!(args->vol_flags & FILE_SUPPORTS_SPARSE_FILES))
2417 WARNING("Volume does not support sparse files!\n"
2418 " Sparse files will be extracted as non-sparse.");
2419 if (!(args->vol_flags & FILE_SUPPORTS_REPARSE_POINTS))
2420 WARNING("Volume does not support reparse points!\n"
2421 " Reparse point data will not be extracted.");
2422 if (!(args->vol_flags & FILE_NAMED_STREAMS)) {
2423 WARNING("Volume does not support named data streams!\n"
2424 " Named data streams will not be extracted.");
2426 if (!(args->vol_flags & FILE_SUPPORTS_ENCRYPTION)) {
2427 WARNING("Volume does not support encryption!\n"
2428 " Encrypted files will be extracted as raw data.");
2430 if (!(args->vol_flags & FILE_FILE_COMPRESSION)) {
2431 WARNING("Volume does not support transparent compression!\n"
2432 " Compressed files will be extracted as non-compressed.");
2434 if (!(args->vol_flags & FILE_PERSISTENT_ACLS)) {
2435 if (args->extract_flags & WIMLIB_EXTRACT_FLAG_STRICT_ACLS) {
2436 ERROR("Strict ACLs requested, but the volume does not "
2438 return WIMLIB_ERR_VOLUME_LACKS_FEATURES;
2440 WARNING("Volume does not support persistent ACLS!\n"
2441 " File permissions will not be extracted.");
2448 * Try extracting a hard link.
2450 * @output_path: Path to link to be extracted.
2452 * @inode: WIM inode that the link is to; inode->i_extracted_file
2453 * the path to a name of the file that has already been
2454 * extracted (we use this to create the hard link).
2456 * @args: Additional apply context, used here to keep track of
2457 * the number of times creating a hard link failed due to
2458 * ERROR_INVALID_FUNCTION. This error should indicate that hard
2459 * links are not supported by the volume, and we would like to
2460 * warn the user a few times, but not too many times.
2462 * Returns 0 if the hard link was successfully extracted. Returns
2463 * WIMLIB_ERR_LINK (> 0) if an error occurred, other than hard links possibly
2464 * being unsupported by the volume. Returns a negative value if creating the
2465 * hard link failed due to ERROR_INVALID_FUNCTION.
2468 win32_try_hard_link(const wchar_t *output_path, const struct wim_inode *inode,
2469 struct apply_args *args)
2473 /* There is a volume flag for this (FILE_SUPPORTS_HARD_LINKS),
2474 * but it's only available on Windows 7 and later. So no use
2475 * even checking it, really. Instead, CreateHardLinkW() will
2476 * apparently return ERROR_INVALID_FUNCTION if the volume does
2477 * not support hard links. */
2478 DEBUG("Creating hard link \"%ls => %ls\"",
2479 output_path, inode->i_extracted_file);
2480 if (CreateHardLinkW(output_path, inode->i_extracted_file, NULL))
2483 err = GetLastError();
2484 if (err != ERROR_INVALID_FUNCTION) {
2485 ERROR("Can't create hard link \"%ls => %ls\"",
2486 output_path, inode->i_extracted_file);
2488 return WIMLIB_ERR_LINK;
2490 args->num_hard_links_failed++;
2491 if (args->num_hard_links_failed < MAX_CREATE_HARD_LINK_WARNINGS) {
2492 WARNING("Can't create hard link \"%ls => %ls\":\n"
2493 " Volume does not support hard links!\n"
2494 " Falling back to extracting a copy of the file.",
2495 output_path, inode->i_extracted_file);
2496 } else if (args->num_hard_links_failed == MAX_CREATE_HARD_LINK_WARNINGS) {
2497 WARNING("Suppressing further hard linking warnings...");
2503 /* Extract a file, directory, reparse point, or hard link to an
2504 * already-extracted file using the Win32 API */
2506 win32_do_apply_dentry(const wchar_t *output_path,
2507 size_t output_path_num_chars,
2508 struct wim_dentry *dentry,
2509 struct apply_args *args)
2512 struct wim_inode *inode = dentry->d_inode;
2514 ret = win32_check_vol_flags(output_path, args);
2517 if (inode->i_nlink > 1 && inode->i_extracted_file != NULL) {
2518 /* Linked file, with another name already extracted. Create a
2520 ret = win32_try_hard_link(output_path, inode, args);
2523 /* Negative return value from win32_try_hard_link() indicates
2524 * that hard links are probably not supported by the volume.
2525 * Fall back to extracting a copy of the file. */
2528 /* If this is a reparse point and the volume does not support reparse
2529 * points, just skip it completely. */
2530 if (inode->i_attributes & FILE_ATTRIBUTE_REPARSE_POINT &&
2531 !(args->vol_flags & FILE_SUPPORTS_REPARSE_POINTS))
2533 WARNING("Skipping extraction of reparse point \"%ls\":\n"
2534 " Not supported by destination filesystem",
2537 /* Create the file, directory, or reparse point, and extract the
2539 ret = win32_extract_streams(inode, output_path, args);
2543 if (inode->i_extracted_file == NULL) {
2544 const struct wim_lookup_table_entry *lte;
2546 /* Tally bytes extracted, including all alternate data streams,
2547 * unless we extracted a hard link (or, at least extracted a
2548 * name that was supposed to be a hard link) */
2549 for (unsigned i = 0; i <= inode->i_num_ads; i++) {
2550 lte = inode_stream_lte_resolved(inode, i);
2552 args->progress.extract.completed_bytes +=
2553 wim_resource_size(lte);
2555 if (inode->i_nlink > 1) {
2556 /* Save extracted path for a later call to
2557 * CreateHardLinkW() if this inode has multiple links.
2559 inode->i_extracted_file = WSTRDUP(output_path);
2560 if (!inode->i_extracted_file)
2561 return WIMLIB_ERR_NOMEM;
2567 /* Set timestamps on an extracted file using the Win32 API */
2569 win32_do_apply_dentry_timestamps(const wchar_t *path,
2570 size_t path_num_chars,
2571 const struct wim_dentry *dentry,
2572 const struct apply_args *args)
2576 const struct wim_inode *inode = dentry->d_inode;
2578 if (inode->i_attributes & FILE_ATTRIBUTE_REPARSE_POINT &&
2579 !(args->vol_flags & FILE_SUPPORTS_REPARSE_POINTS))
2581 /* Skip reparse points not extracted */
2585 /* Windows doesn't let you change the timestamps of the root directory
2586 * (at least on FAT, which is dumb but expected since FAT doesn't store
2587 * any metadata about the root directory...) */
2588 if (path_is_root_of_drive(path))
2591 DEBUG("Opening \"%ls\" to set timestamps", path);
2592 h = win32_open_existing_file(path, FILE_WRITE_ATTRIBUTES);
2593 if (h == INVALID_HANDLE_VALUE) {
2594 err = GetLastError();
2598 FILETIME creationTime = {.dwLowDateTime = inode->i_creation_time & 0xffffffff,
2599 .dwHighDateTime = inode->i_creation_time >> 32};
2600 FILETIME lastAccessTime = {.dwLowDateTime = inode->i_last_access_time & 0xffffffff,
2601 .dwHighDateTime = inode->i_last_access_time >> 32};
2602 FILETIME lastWriteTime = {.dwLowDateTime = inode->i_last_write_time & 0xffffffff,
2603 .dwHighDateTime = inode->i_last_write_time >> 32};
2605 DEBUG("Calling SetFileTime() on \"%ls\"", path);
2606 if (!SetFileTime(h, &creationTime, &lastAccessTime, &lastWriteTime)) {
2607 err = GetLastError();
2611 DEBUG("Closing \"%ls\"", path);
2612 if (!CloseHandle(h)) {
2613 err = GetLastError();
2618 /* Only warn if setting timestamps failed; still return 0. */
2619 WARNING("Can't set timestamps on \"%ls\"", path);
2625 /* Replacement for POSIX fsync() */
2632 h = (HANDLE)_get_osfhandle(fd);
2633 if (h == INVALID_HANDLE_VALUE) {
2634 err = GetLastError();
2635 ERROR("Could not get Windows handle for file descriptor");
2640 if (!FlushFileBuffers(h)) {
2641 err = GetLastError();
2642 ERROR("Could not flush file buffers to disk");
2650 /* Use the Win32 API to get the number of processors */
2652 win32_get_number_of_processors()
2654 SYSTEM_INFO sysinfo;
2655 GetSystemInfo(&sysinfo);
2656 return sysinfo.dwNumberOfProcessors;
2659 /* Replacement for POSIX-2008 realpath(). Warning: partial functionality only
2660 * (resolved_path must be NULL). Also I highly doubt that GetFullPathName
2661 * really does the right thing under all circumstances. */
2663 realpath(const wchar_t *path, wchar_t *resolved_path)
2666 wimlib_assert(resolved_path == NULL);
2669 ret = GetFullPathNameW(path, 0, NULL, NULL);
2671 err = GetLastError();
2675 resolved_path = TMALLOC(ret);
2678 ret = GetFullPathNameW(path, ret, resolved_path, NULL);
2680 err = GetLastError();
2681 free(resolved_path);
2682 resolved_path = NULL;
2690 return resolved_path;
2693 /* rename() on Windows fails if the destination file exists. And we need to
2694 * make it work on wide characters. Fix it. */
2696 win32_rename_replacement(const wchar_t *oldpath, const wchar_t *newpath)
2698 if (MoveFileExW(oldpath, newpath, MOVEFILE_REPLACE_EXISTING)) {
2701 /* As usual, the possible error values are not documented */
2702 DWORD err = GetLastError();
2703 ERROR("MoveFileEx(): Can't rename \"%ls\" to \"%ls\"",
2711 /* Replacement for POSIX fnmatch() (partial functionality only) */
2713 fnmatch(const wchar_t *pattern, const wchar_t *string, int flags)
2715 if (PathMatchSpecW(string, pattern))
2721 /* truncate() replacement */
2723 win32_truncate_replacement(const wchar_t *path, off_t size)
2725 DWORD err = NO_ERROR;
2726 LARGE_INTEGER liOffset;
2728 HANDLE h = win32_open_existing_file(path, GENERIC_WRITE);
2729 if (h == INVALID_HANDLE_VALUE)
2732 liOffset.QuadPart = size;
2733 if (!SetFilePointerEx(h, liOffset, NULL, FILE_BEGIN))
2734 goto fail_close_handle;
2736 if (!SetEndOfFile(h))
2737 goto fail_close_handle;
2742 err = GetLastError();
2745 if (err == NO_ERROR)
2746 err = GetLastError();
2747 ERROR("Can't truncate \"%ls\" to %"PRIu64" bytes", path, size);
2754 /* This really could be replaced with _wcserror_s, but this doesn't seem to
2755 * actually be available in MSVCRT.DLL on Windows XP (perhaps it's statically
2756 * linked in by Visual Studio...?). */
2758 win32_strerror_r_replacement(int errnum, wchar_t *buf, size_t buflen)
2760 static pthread_mutex_t strerror_lock = PTHREAD_MUTEX_INITIALIZER;
2762 pthread_mutex_lock(&strerror_lock);
2763 mbstowcs(buf, strerror(errnum), buflen);
2764 buf[buflen - 1] = '\0';
2765 pthread_mutex_unlock(&strerror_lock);
2769 #endif /* __WIN32__ */
git://wimlib.net / wimlib / blob