Can't use Password with Unicode #427
Comments
|
It looks like 7-zip won't allow you to create a .zip file with that password, not sure offhand if that's something decided by 7-zip, or is in the spec somewhere. Looking at the code, I wonder if there is an issue with the way it handles passwords for ZipCrypto - it currently converts the supplied password to a byte array using the codepage specified in ZipStrings (which currently defaults to UTF-8), and i'm not certain if that is something that should be configurable? |
|
I'm not even sure we're talking about ZipCrypto (we should probably start using this name since 7zip calls it that) or about AES encryption passwords. I have not looked into using the extra fields for this though. But if nothing else, we should at least only use CP437/1252 right now. |
|
I took the comment about Windows giving you a wrong password error to mean ZipCrypto, as I don't think Explorer will extract AES encrypted files created by 7zip etc anyway (you get an error rather than a password request trying to read such entries I think?) Perhaps I misunderstood though) |
|
That i know!
I uses 7-ZIP for my attempt to unzip the File.
… I took the comment about Windows giving you a wrong password error to mean ZipCrypto, as I don't think Explorer will extract > AES encrypted files created by 7zip etc anyway? (perhaps I misunderstood though)
|
I like how it uses MUST there, while also saying that the format of the 0x0008 field is undefined :-( |
What's the situation with doing that in .NET Standard and/or .NET Core? (you might need to use the System.Text.Encoding.CodePages package to ensure the code pages are available in Core I think?) |
|
.NET Core supports Unicode and ISO 8859-1 (CP 28591), so we can at least fall back to using that if 437 is not available. The differences can be seen here: https://en.wikipedia.org/wiki/Windows-1252#Character_set |
The shared ones being ASCII, from the looks of it? That's the approach that 7-Zip seems to take anyway:
|
|
The shared ones are all but some parts of 0x80-0x9f, they are indicated by the thick border in the linked table. |
|
I might be confusing myself reading the different tables, but the character in the ops password looks to map to 0x81 in CP437 and 0xFC in 1252, which is what I meant by not-shared (it isn't in the bordered area in the 1252 table). (Edit: I took your previous comment to mean throw if a character is one that would be different between CP437 and ISO 8859-1, which looks like a larger range than 0x80-0x9f) |
|
Anyway, I'll look at doing a PR that makes the basic change to use 437 by default anyway. |
|
Yeah, sorry, I think I got the code pages mixed somehow. You're right, they don't have that much overlap. |
|
I did some extra tests a while back but apparently forgot to update the bug, so: The file WinZipZipCrypto.zip was created with WinZip on an English version of Windows, using the password On my English Windows 10 system, 7-Zip and Explorer will both decrypt the file, as will SharpZipLib iff the string conversions for the ZipCrypto password are done with codepage 1252 (but not with 437 or utf-8). I haven't tried to see what happens on an OS with different language settings, it may or may not be different. (I think i read somewhere that 7-Zip uses CP_ACP for doing conversions, but i'm not certain, and that may or may not be meaningful). So, not really sure where that leaves the default approach that should be used. |
|
In #592 the encoding can be set independently. The default is currently set to |
|
I see this bug has been fixed but is there any timeline for getting it (i.e. 1.4) out there? |
Steps to reproduce
Create zipFile using Password "DatenFürDich" which uses the german ü == u with dots.
Expected behavior
the Password should be usefull when extracting files
Actual behavior
When trying zu extract again with Windows or 7Zip --> Wrong Password
Version of SharpZipLib
1.2.0
Obtained from (only keep the relevant lines)
The text was updated successfully, but these errors were encountered: