@@ -1,3 +1,8 @@

+Mon Mar 28 20:24:40 CEST 2011 (tk)

+----------------------------------

+ * libclamav: add skeleton code for SWF parser

+ * libclamav/others.h: bump f-level

+

 Thu Mar 17 17:46:09 CET 2011 (tk)

 ---------------------------------

  * sigtool, freshclam: put .info on top of container to speed up loading

@@ -362,7 +362,9 @@ libclamav_la_SOURCES = \

 	bytecode_detect.h\

 	builtin_bytecodes.h\

 	events.c\

-	events.h

+	events.h \

+	swf.c \

+	swf.h

 if !LINK_TOMMATH

 libclamav_la_SOURCES += bignum.c \

@@ -157,8 +157,8 @@ am__libclamav_la_SOURCES_DIST = clamav.h matcher-ac.c matcher-ac.h \

 	ishield.c ishield.h type_desc.h bcfeatures.h bytecode_api.c \

 	bytecode_api_decl.c bytecode_api.h bytecode_api_impl.h \

 	bytecode_hooks.h cache.c cache.h bytecode_detect.c \

-	bytecode_detect.h builtin_bytecodes.h events.c events.h \

-	bignum.c bignum_class.h

+	bytecode_detect.h builtin_bytecodes.h events.c events.h swf.c \

+	swf.h bignum.c bignum_class.h

 @LINK_TOMMATH_FALSE@am__objects_1 = libclamav_la-bignum.lo

 am_libclamav_la_OBJECTS = libclamav_la-matcher-ac.lo \

 	libclamav_la-matcher-bm.lo libclamav_la-matcher-hash.lo \

@@ -210,7 +210,7 @@ am_libclamav_la_OBJECTS = libclamav_la-matcher-ac.lo \

 	libclamav_la-ishield.lo libclamav_la-bytecode_api.lo \

 	libclamav_la-bytecode_api_decl.lo libclamav_la-cache.lo \

 	libclamav_la-bytecode_detect.lo libclamav_la-events.lo \

-	$(am__objects_1)

+	libclamav_la-swf.lo $(am__objects_1)

 libclamav_la_OBJECTS = $(am_libclamav_la_OBJECTS)

 AM_V_lt = $(am__v_lt_$(V))

 am__v_lt_ = $(am__v_lt_$(AM_DEFAULT_VERBOSITY))

@@ -663,8 +663,8 @@ libclamav_la_SOURCES = clamav.h matcher-ac.c matcher-ac.h matcher-bm.c \

 	ishield.c ishield.h type_desc.h bcfeatures.h bytecode_api.c \

 	bytecode_api_decl.c bytecode_api.h bytecode_api_impl.h \

 	bytecode_hooks.h cache.c cache.h bytecode_detect.c \

-	bytecode_detect.h builtin_bytecodes.h events.c events.h \

-	$(am__append_7)

+	bytecode_detect.h builtin_bytecodes.h events.c events.h swf.c \

+	swf.h $(am__append_7)

 noinst_LTLIBRARIES = libclamav_internal_utils.la libclamav_internal_utils_nothreads.la libclamav_nocxx.la

 COMMON_CLEANFILES = version.h version.h.tmp *.gcda *.gcno

 @MAINTAINER_MODE_TRUE@BUILT_SOURCES = jsparse/generated/operators.h jsparse/generated/keywords.h jsparse-keywords.gperf

@@ -869,6 +869,7 @@ distclean-compile:

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-sis.Plo@am__quote@

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-special.Plo@am__quote@

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-spin.Plo@am__quote@

+@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-swf.Plo@am__quote@

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-table.Plo@am__quote@

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-text.Plo@am__quote@

 @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libclamav_la-textdet.Plo@am__quote@

@@ -1728,6 +1729,14 @@ libclamav_la-events.lo: events.c

 @AMDEP_TRUE@@am__fastdepCC_FALSE@	DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@

 @am__fastdepCC_FALSE@	$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libclamav_la_CFLAGS) $(CFLAGS) -c -o libclamav_la-events.lo `test -f 'events.c' || echo '$(srcdir)/'`events.c

+libclamav_la-swf.lo: swf.c

+@am__fastdepCC_TRUE@	$(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libclamav_la_CFLAGS) $(CFLAGS) -MT libclamav_la-swf.lo -MD -MP -MF $(DEPDIR)/libclamav_la-swf.Tpo -c -o libclamav_la-swf.lo `test -f 'swf.c' || echo '$(srcdir)/'`swf.c

+@am__fastdepCC_TRUE@	$(AM_V_at)$(am__mv) $(DEPDIR)/libclamav_la-swf.Tpo $(DEPDIR)/libclamav_la-swf.Plo

+@am__fastdepCC_FALSE@	$(AM_V_CC) @AM_BACKSLASH@

+@AMDEP_TRUE@@am__fastdepCC_FALSE@	source='swf.c' object='libclamav_la-swf.lo' libtool=yes @AMDEPBACKSLASH@

+@AMDEP_TRUE@@am__fastdepCC_FALSE@	DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@

+@am__fastdepCC_FALSE@	$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libclamav_la_CFLAGS) $(CFLAGS) -c -o libclamav_la-swf.lo `test -f 'swf.c' || echo '$(srcdir)/'`swf.c

+

 libclamav_la-bignum.lo: bignum.c

 @am__fastdepCC_TRUE@	$(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libclamav_la_CFLAGS) $(CFLAGS) -MT libclamav_la-bignum.lo -MD -MP -MF $(DEPDIR)/libclamav_la-bignum.Tpo -c -o libclamav_la-bignum.lo `test -f 'bignum.c' || echo '$(srcdir)/'`bignum.c

 @am__fastdepCC_TRUE@	$(AM_V_at)$(am__mv) $(DEPDIR)/libclamav_la-bignum.Tpo $(DEPDIR)/libclamav_la-bignum.Plo

@@ -96,6 +96,7 @@ static const struct ftmap_s {

     { "CL_TYPE_AUTOIT",		CL_TYPE_AUTOIT		},

     { "CL_TYPE_ISHIELD_MSI",	CL_TYPE_ISHIELD_MSI	},

     { "CL_TYPE_7Z",		CL_TYPE_7Z		},

+    { "CL_TYPE_SWF",		CL_TYPE_SWF		},

     { NULL,			CL_TYPE_IGNORED		}

 };

@@ -72,6 +72,7 @@ typedef enum {

     CL_TYPE_HTML_UTF16,

     CL_TYPE_RTF,

     CL_TYPE_7Z,

+    CL_TYPE_SWF,

     /* bigger numbers have higher priority (in o-t-f detection) */

     CL_TYPE_HTML, /* on the fly */

@@ -152,6 +152,8 @@ static const char *ftypes_int[] = {

   "0:0:303730373037:CPIO ODC:CL_TYPE_ANY:CL_TYPE_CPIO_ODC:45",

   "0:0:71c7:CPIO OLD BINARY BE:CL_TYPE_ANY:CL_TYPE_CPIO_OLD:45",

   "0:0:c771:CPIO OLD BINARY LE:CL_TYPE_ANY:CL_TYPE_CPIO_OLD:45",

+  "0:0:435753:SWF (compressed):CL_TYPE_ANY:CL_TYPE_SWF:61",

+  "0:0:465753:SWF (uncompressed):CL_TYPE_ANY:CL_TYPE_SWF:61",

   NULL

 };

@@ -54,7 +54,7 @@

  * in re-enabling affected modules.

  */

-#define CL_FLEVEL 60

+#define CL_FLEVEL 61

 #define CL_FLEVEL_DCONF	CL_FLEVEL

 #define CL_FLEVEL_SIGTOOL CL_FLEVEL

@@ -2326,6 +2326,11 @@ static int magic_scandesc(int desc, cli_ctx *ctx, cli_file_t type)

 	        ret = cli_scanscript(ctx);

 	    break;

+	case CL_TYPE_SWF:

+	    /* FIXME: add dconf&co. */

+	    ret = cli_scanswf(ctx);

+	    break;

+

 	case CL_TYPE_RTF:

 	    ctx->container_type = CL_TYPE_RTF;

 	    ctx->container_size = sb.st_size;

new file mode 100644

@@ -0,0 +1,340 @@

+/*

+ *  Copyright (C) 2011 Sourcefire, Inc.

+ *  Authors: Tomasz Kojm <tkojm@clamav.net>

+ *

+ *  The code is based on Flasm, command line assembler & disassembler of Flash

+ *  ActionScript bytecode Copyright (c) 2001 Opaque Industries, (c) 2002-2007

+ *  Igor Kogan, (c) 2005 Wang Zhen. All rights reserved.

+ *

+ *  Redistribution and use in source and binary forms, with or without modification,

+ *  are permitted provided that the following conditions are met:

+ *

+ *  - Redistributions of source code must retain the above copyright notice, this list

+ *  of conditions and the following disclaimer.

+ *  - Redistributions in binary form must reproduce the above copyright notice, this

+ *  list of conditions and the following disclaimer in the documentation and/or other

+ *  materials provided with the distribution.

+ *  - Neither the name of the Opaque Industries nor the names of its contributors may

+ *  be used to endorse or promote products derived from this software without specific

+ *  prior written permission.

+ *

+ *  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY 

+ *  EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 

+ *  OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT 

+ *  SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 

+ *  INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED 

+ *  TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR 

+ *  BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 

+ *  CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY 

+ *  WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

+ */

+

+#if HAVE_CONFIG_H

+#include "clamav-config.h"

+#endif

+

+#include <stdio.h>

+#include <string.h>

+#include <sys/types.h>

+#include <sys/stat.h>

+#include <fcntl.h>

+#include <sys/stat.h>

+#ifdef	HAVE_UNISTD_H

+#include <unistd.h>

+#endif

+#include <time.h>

+#include <zlib.h>

+

+#include "cltypes.h"

+#include "swf.h"

+#include "clamav.h"

+

+#define EC16(v)	le16_to_host(v)

+#define EC32(v)	le32_to_host(v)

+

+#define INITBITS								\

+{										\

+    if(fmap_readn(map, &get_c, offset, sizeof(get_c)) == sizeof(get_c)) {	\

+	bitpos = 8;								\

+	bitbuf = (unsigned int) get_c;						\

+	offset += sizeof(get_c);						\

+    }										\

+}

+

+#define GETBITS(v, n)								\

+{										\

+    getbits_n = n;								\

+    bits = 0;									\

+    while(getbits_n > bitpos) {							\

+	getbits_n -= bitpos;							\

+	bits |= bitbuf << getbits_n;						\

+	if(fmap_readn(map, &get_c, offset, sizeof(get_c)) == sizeof(get_c)) {	\

+	    bitbuf = (unsigned int) get_c;					\

+	    bitpos = 8;								\

+	    offset += sizeof(get_c);						\

+	}									\

+    }										\

+    bitpos -= getbits_n;							\

+    bits |= bitbuf >> bitpos;							\

+    bitbuf &= 0xff >> (8 - bitpos);						\

+    v = bits & 0xffff;								\

+}

+

+#define GETWORD(v)								\

+{										\

+    if(fmap_readn(map, &get_c, offset, sizeof(get_c)) == sizeof(get_c)) {	\

+	getword_1 = (unsigned int) get_c;					\

+	offset += sizeof(get_c);						\

+    }										\

+    if(fmap_readn(map, &get_c, offset, sizeof(get_c)) == sizeof(get_c)) {	\

+	getword_2 = (unsigned int) get_c;					\

+	offset += sizeof(get_c);						\

+    }										\

+    v = (uint16_t)(getword_1 & 0xff) | ((getword_2 & 0xff) << 8);		\

+}

+

+#define GETDWORD(v)								\

+{										\

+    GETWORD(getdword_1);							\

+    GETWORD(getdword_2);							\

+    v = (uint32_t)(getdword_1 | (getdword_2 << 16));				\

+}

+

+struct swf_file_hdr {

+    char signature[3];

+    uint8_t version;

+    uint32_t filesize;

+};

+

+static int scancws(cli_ctx *ctx, struct swf_file_hdr *hdr)

+{

+	z_stream stream;

+	char inbuff[FILEBUFF], outbuff[FILEBUFF];

+	fmap_t *map = *ctx->fmap;

+	int offset = 8, ret, zret, outsize = 8, count;

+	char *tmpname;

+	int fd;

+

+    if((ret = cli_gentempfd(ctx->engine->tmpdir, &tmpname, &fd)) != CL_SUCCESS) {

+	cli_errmsg("scancws: Can't generate temporary file\n");

+	return ret;

+    }

+

+    hdr->signature[0] = 'F';

+    if(cli_writen(fd, hdr, sizeof(struct swf_file_hdr)) != sizeof(struct swf_file_hdr)) {

+	cli_errmsg("scancws: Can't write to file %s\n", tmpname);

+	return CL_EWRITE;

+    }

+

+    stream.avail_in = 0;

+    stream.next_in = inbuff;

+    stream.next_out = outbuff;

+    stream.zalloc = (alloc_func) NULL;

+    stream.zfree = (free_func) NULL;

+    stream.opaque = (voidpf) 0;

+    stream.avail_out = FILEBUFF;

+

+    zret = inflateInit(&stream);

+    if(zret != Z_OK) {

+	cli_errmsg("scancws: inflateInit() failed\n");

+        close(fd);

+	if(cli_unlink(tmpname)) {

+	    free(tmpname);

+	    return CL_EUNLINK;

+	}

+	free(tmpname);

+	return CL_EUNPACK;

+    }

+

+    do {

+	if(stream.avail_in == 0) {

+	    stream.next_in = inbuff;

+	    ret = fmap_readn(map, inbuff, offset, FILEBUFF);

+	    if(ret < 0) {

+		cli_errmsg("scancws: Error reading SWF file\n");

+		close(fd);

+		if(cli_unlink(tmpname)) {

+		    free(tmpname);

+		    return CL_EUNLINK;

+		}

+		free(tmpname);

+		return CL_EUNPACK;

+	    }

+	    if(!ret)

+		break;

+	    stream.avail_in = ret;

+	    offset += ret;

+	}

+	zret = inflate(&stream, Z_SYNC_FLUSH);

+	count = FILEBUFF - stream.avail_out;

+	if(count) {

+	    if(cli_checklimits("SWF", ctx, outsize + count, 0, 0) != CL_SUCCESS)

+		break;

+	    if(cli_writen(fd, outbuff, count) != count) {

+		cli_errmsg("scancws: Can't write to file %s\n", tmpname);

+		close(fd);

+		if(cli_unlink(tmpname)) {

+		    free(tmpname);

+		    return CL_EUNLINK;

+		}

+		free(tmpname);

+		return CL_EWRITE;

+	    }

+	    outsize += count;

+	}

+	stream.next_out = outbuff;

+	stream.avail_out = FILEBUFF;

+    } while(zret == Z_OK);

+

+    if((zret != Z_STREAM_END && zret != Z_OK) || (zret = inflateEnd(&stream)) != Z_OK) {

+	cli_errmsg("scancws: Error decompressing SWF file\n");

+	close(fd);

+	if(cli_unlink(tmpname)) {

+	    free(tmpname);

+	    return CL_EUNLINK;

+	}

+	free(tmpname);

+	return CL_EUNPACK;

+    }

+    cli_dbgmsg("SWF: Decompressed to %s, size %d\n", tmpname, outsize);

+

+    ret = cli_magic_scandesc(fd, ctx);

+

+    close(fd);

+    if(!ctx->engine->keeptmp) {

+	if(cli_unlink(tmpname)) {

+	    free(tmpname);

+	    return CL_EUNLINK;

+	}

+    }

+    free(tmpname);

+    return ret;

+}

+

+static const char *tagname(tag_id id)

+{

+	unsigned int i;

+

+    for(i = 0; tag_names[i].name; i++)

+	if(tag_names[i].id == id)

+	    return tag_names[i].name;

+    return NULL;

+}

+

+int cli_scanswf(cli_ctx *ctx)

+{

+	struct swf_file_hdr file_hdr;

+	int compressed = 0;

+	fmap_t *map = *ctx->fmap;

+	unsigned int bitpos, bitbuf, getbits_n, nbits, getword_1, getword_2, getdword_1, getdword_2;

+	char get_c;

+	unsigned int fr, fps, foo, offset = 0, tag_hdr, tag_type, tag_len;

+	unsigned long int bits;

+

+

+    cli_dbgmsg("in cli_scanswf()\n");

+

+    if(fmap_readn(map, &file_hdr, offset, sizeof(file_hdr)) != sizeof(file_hdr)) {

+	cli_dbgmsg("SWF: Can't read file header\n");

+	return CL_CLEAN;

+    }

+    offset += sizeof(file_hdr);

+

+    if(!strncmp(file_hdr.signature, "CWS", 3)) {

+	cli_dbgmsg("SWF: Compressed file\n");

+	return scancws(ctx, &file_hdr);

+    } else if(!strncmp(file_hdr.signature, "FWS", 3)) {

+	cli_dbgmsg("SWF: Uncompressed file\n");

+    } else {

+	cli_dbgmsg("SWF: Not a SWF file\n");

+	return CL_CLEAN;

+    }

+

+    cli_dbgmsg("SWF: Version: %u\n", file_hdr.version);

+    cli_dbgmsg("SWF: File size: %u\n", EC32(file_hdr.filesize));

+

+    INITBITS;

+

+    GETBITS(nbits, 5);

+    GETBITS(foo, nbits); /* xMin */

+    GETBITS(foo, nbits); /* xMax */

+    GETBITS(foo, nbits); /* yMin */

+    GETBITS(foo, nbits); /* yMax */

+

+    GETWORD(foo);

+    GETWORD(fr);

+    cli_dbgmsg("SWF: Frames total: %d\n", fr);

+

+    while(offset < map->len) {

+	GETWORD(tag_hdr);

+	tag_type = tag_hdr >> 6;

+	if(tag_type == 0)

+	    break;

+	tag_len = tag_hdr & 0x3f;

+	if(tag_len == 0x3f)

+	    GETDWORD(tag_len);

+

+	cli_dbgmsg("SWF: %s\n", tagname(tag_type) ? tagname(tag_type) : "UNKNOWN TAG");

+	cli_dbgmsg("SWF: Tag length: %u\n", tag_len);

+	offset += tag_len;

+	continue;

+

+	switch(tag_type) {

+	    case TAG_DOACTION:

+		break;

+

+	    case TAG_INITMOVIECLIP:

+		break;

+

+	    case TAG_PLACEOBJECT2:

+		break;

+

+	    case TAG_PLACEOBJECT3:

+		break;

+

+	    case TAG_DEFINEBUTTON2:

+		break;

+

+	    case TAG_SHOWFRAME:

+		break;

+

+	    case TAG_SCRIPTLIMITS: {

+		    unsigned int recursion, timeout;

+		GETWORD(recursion);

+		GETWORD(timeout);

+		cli_dbgmsg("SWF: scriptLimits recursion %u timeout %u\n", recursion, timeout);

+		break;

+	    }

+

+	    case TAG_PROTECT:

+		break;

+

+	    case TAG_ENABLEDEBUGGER:

+		break;

+

+	    case TAG_ENABLEDEBUGGER2:

+		break;

+

+	    case TAG_DEFINEMOVIECLIP:

+		break;

+

+	    case TAG_EXPORTASSETS:

+		break;

+

+	    case TAG_IMPORTASSETS:

+	    case TAG_IMPORTASSETS2:

+		break;

+

+	    case TAG_METADATA:

+		break;

+

+	    case TAG_FILEATTRIBUTES:

+		break;

+

+	    default:

+		break;

+	}

+    }

+

+    return CL_CLEAN;

+}

new file mode 100644

@@ -0,0 +1,201 @@

+/*

+ *  Copyright (C) 2011 Sourcefire, Inc.

+ *  Authors: Tomasz Kojm <tkojm@clamav.net>

+ *

+ *  The code is based on Flasm, command line assembler & disassembler of Flash

+ *  ActionScript bytecode Copyright (c) 2001 Opaque Industries, (c) 2002-2007

+ *  Igor Kogan, (c) 2005 Wang Zhen. All rights reserved.

+ *

+ *  Redistribution and use in source and binary forms, with or without modification,

+ *  are permitted provided that the following conditions are met:

+ *

+ *  - Redistributions of source code must retain the above copyright notice, this list

+ *  of conditions and the following disclaimer.

+ *  - Redistributions in binary form must reproduce the above copyright notice, this

+ *  list of conditions and the following disclaimer in the documentation and/or other

+ *  materials provided with the distribution.

+ *  - Neither the name of the Opaque Industries nor the names of its contributors may

+ *  be used to endorse or promote products derived from this software without specific

+ *  prior written permission.

+ *

+ *  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY 

+ *  EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 

+ *  OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT 

+ *  SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 

+ *  INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED 

+ *  TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR 

+ *  BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 

+ *  CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY 

+ *  WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

+ */

+

+#ifndef __SWF_H

+#define __SWF_H

+

+#include "others.h"

+

+int cli_scanswf(cli_ctx *ctx);

+

+typedef enum

+{

+    TAG_END			= 0,

+    TAG_SHOWFRAME		= 1,

+    TAG_DEFINESHAPE		= 2,

+    TAG_FREECHARACTER		= 3,

+    TAG_PLACEOBJECT		= 4,

+    TAG_REMOVEOBJECT		= 5,

+    TAG_DEFINEBITS		= 6,

+    TAG_DEFINEBUTTON		= 7,

+    TAG_JPEGTABLES		= 8,

+    TAG_SETBACKGROUNDCOLOR	= 9,

+    TAG_DEFINEFONT		= 10,

+    TAG_DEFINETEXT		= 11,

+    TAG_DOACTION		= 12,

+    TAG_DEFINEFONTINFO		= 13,

+    TAG_DEFINESOUND		= 14,

+    TAG_STARTSOUND		= 15,

+    TAG_STOPSOUND		= 16,

+    TAG_DEFINEBUTTONSOUND	= 17,

+    TAG_SOUNDSTREAMHEAD		= 18,

+    TAG_SOUNDSTREAMBLOCK	= 19,

+    TAG_DEFINEBITSLOSSLESS	= 20,

+    TAG_DEFINEBITSJPEG2		= 21,

+    TAG_DEFINESHAPE2		= 22,

+    TAG_DEFINEBUTTONCXFORM	= 23,

+    TAG_PROTECT			= 24,

+    TAG_PATHSAREPOSTSCRIPT	= 25,

+    TAG_PLACEOBJECT2		= 26,

+    TAG_REMOVEOBJECT2		= 28,

+    TAG_SYNCFRAME		= 29,

+    TAG_FREEALL			= 31,

+    TAG_DEFINESHAPE3		= 32,

+    TAG_DEFINETEXT2		= 33,

+    TAG_DEFINEBUTTON2		= 34,

+    TAG_DEFINEBITSJPEG3		= 35,

+    TAG_DEFINEBITSLOSSLESS2	= 36,

+    TAG_DEFINEEDITTEXT		= 37,

+    TAG_DEFINEVIDEO		= 38,

+    TAG_DEFINEMOVIECLIP		= 39,

+    TAG_NAMECHARACTER		= 40,

+    TAG_SERIALNUMBER		= 41,

+    TAG_DEFINETEXTFORMAT	= 42,

+    TAG_FRAMELABEL		= 43,

+    TAG_SOUNDSTREAMHEAD2	= 45,

+    TAG_DEFINEMORPHSHAPE	= 46,

+    TAG_GENFRAME		= 47,

+    TAG_DEFINEFONT2		= 48,

+    TAG_GENCOMMAND		= 49,

+    TAG_DEFINECOMMANDOBJ	= 50,

+    TAG_CHARACTERSET		= 51,

+    TAG_FONTREF			= 52,

+    TAG_EXPORTASSETS		= 56,

+    TAG_IMPORTASSETS		= 57,

+    TAG_ENABLEDEBUGGER		= 58,

+    TAG_INITMOVIECLIP		= 59,

+    TAG_DEFINEVIDEOSTREAM	= 60,

+    TAG_VIDEOFRAME		= 61,

+    TAG_DEFINEFONTINFO2		= 62,

+    TAG_DEBUGID			= 63,

+    TAG_ENABLEDEBUGGER2		= 64,

+    TAG_SCRIPTLIMITS		= 65,

+    TAG_SETTABINDEX		= 66,

+    TAG_DEFINESHAPE4		= 67,

+    TAG_FILEATTRIBUTES		= 69,

+    TAG_PLACEOBJECT3		= 70,

+    TAG_IMPORTASSETS2		= 71,

+    TAG_DEFINEFONTINFO3		= 73,

+    TAG_DEFINETEXTINFO		= 74,

+    TAG_DEFINEFONT3		= 75,

+    TAG_AVM2DECL		= 76,

+    TAG_METADATA		= 77,

+    TAG_SLICE9			= 78,

+    TAG_AVM2ACTION		= 82,

+    TAG_DEFINESHAPE5		= 83,

+    TAG_DEFINEMORPHSHAPE2	= 84,

+    TAG_DEFINEBITSPTR		= 1023,

+    TAG_UNKNOWN			= 9999

+} tag_id;

+

+static const struct tag_names_s {

+    const char *name;

+    tag_id  id;

+} tag_names[] = {

+    { "TAG_END",			TAG_END			},

+    { "TAG_SHOWFRAME",			TAG_SHOWFRAME		},

+    { "TAG_DEFINESHAPE",		TAG_DEFINESHAPE		},

+    { "TAG_FREECHARACTER",		TAG_FREECHARACTER	},

+    { "TAG_PLACEOBJECT",		TAG_PLACEOBJECT		},

+    { "TAG_REMOVEOBJECT",		TAG_REMOVEOBJECT	},

+    { "TAG_DEFINEBITS",			TAG_DEFINEBITS		},

+    { "TAG_DEFINEBUTTON",		TAG_DEFINEBUTTON	},

+    { "TAG_JPEGTABLES",			TAG_JPEGTABLES		},

+    { "TAG_SETBACKGROUNDCOLOR",		TAG_SETBACKGROUNDCOLOR	},

+    { "TAG_DEFINEFONT",			TAG_DEFINEFONT		},

+    { "TAG_DEFINETEXT",			TAG_DEFINETEXT		},

+    { "TAG_DOACTION",			TAG_DOACTION		},

+    { "TAG_DEFINEFONTINFO",		TAG_DEFINEFONTINFO	},

+    { "TAG_DEFINESOUND",		TAG_DEFINESOUND		},

+    { "TAG_STARTSOUND",			TAG_STARTSOUND		},

+    { "TAG_STOPSOUND",			TAG_STOPSOUND		},

+    { "TAG_DEFINEBUTTONSOUND",		TAG_DEFINEBUTTONSOUND	},

+    { "TAG_SOUNDSTREAMHEAD",		TAG_SOUNDSTREAMHEAD	},

+    { "TAG_SOUNDSTREAMBLOCK",		TAG_SOUNDSTREAMBLOCK	},

+    { "TAG_DEFINEBITSLOSSLESS",		TAG_DEFINEBITSLOSSLESS	},

+    { "TAG_DEFINEBITSJPEG2",		TAG_DEFINEBITSJPEG2	},

+    { "TAG_DEFINESHAPE2",		TAG_DEFINESHAPE2	},

+    { "TAG_DEFINEBUTTONCXFORM",		TAG_DEFINEBUTTONCXFORM	},

+    { "TAG_PROTECT",			TAG_PROTECT		},

+    { "TAG_PATHSAREPOSTSCRIPT",		TAG_PATHSAREPOSTSCRIPT	},

+    { "TAG_PLACEOBJECT2",		TAG_PLACEOBJECT2	},

+    { "TAG_REMOVEOBJECT2",		TAG_REMOVEOBJECT2	},

+    { "TAG_SYNCFRAME",			TAG_SYNCFRAME		},

+    { "TAG_FREEALL",			TAG_FREEALL		},

+    { "TAG_DEFINESHAPE3",		TAG_DEFINESHAPE3	},

+    { "TAG_DEFINETEXT2",		TAG_DEFINETEXT2		},

+    { "TAG_DEFINEBUTTON2",		TAG_DEFINEBUTTON2	},

+    { "TAG_DEFINEBITSJPEG3",		TAG_DEFINEBITSJPEG3	},

+    { "TAG_DEFINEBITSLOSSLESS2",	TAG_DEFINEBITSLOSSLESS2	},

+    { "TAG_DEFINEEDITTEXT",		TAG_DEFINEEDITTEXT	},

+    { "TAG_DEFINEVIDEO",		TAG_DEFINEVIDEO		},

+    { "TAG_DEFINEMOVIECLIP",		TAG_DEFINEMOVIECLIP	},

+    { "TAG_NAMECHARACTER",		TAG_NAMECHARACTER	},

+    { "TAG_SERIALNUMBER",		TAG_SERIALNUMBER	},

+    { "TAG_DEFINETEXTFORMAT",		TAG_DEFINETEXTFORMAT	},

+    { "TAG_FRAMELABEL",			TAG_FRAMELABEL		},

+    { "TAG_SOUNDSTREAMHEAD2",		TAG_SOUNDSTREAMHEAD2	},

+    { "TAG_DEFINEMORPHSHAPE",		TAG_DEFINEMORPHSHAPE	},

+    { "TAG_GENFRAME",			TAG_GENFRAME		},

+    { "TAG_DEFINEFONT2",		TAG_DEFINEFONT2		},

+    { "TAG_GENCOMMAND",			TAG_GENCOMMAND		},

+    { "TAG_DEFINECOMMANDOBJ",		TAG_DEFINECOMMANDOBJ	},

+    { "TAG_CHARACTERSET",		TAG_CHARACTERSET	},

+    { "TAG_FONTREF",			TAG_FONTREF		},

+    { "TAG_EXPORTASSETS",		TAG_EXPORTASSETS	},

+    { "TAG_IMPORTASSETS",		TAG_IMPORTASSETS	},

+    { "TAG_ENABLEDEBUGGER",		TAG_ENABLEDEBUGGER	},

+    { "TAG_INITMOVIECLIP",		TAG_INITMOVIECLIP	},

+    { "TAG_DEFINEVIDEOSTREAM",		TAG_DEFINEVIDEOSTREAM	},

+    { "TAG_VIDEOFRAME",			TAG_VIDEOFRAME		},

+    { "TAG_DEFINEFONTINFO2",		TAG_DEFINEFONTINFO2	},

+    { "TAG_DEBUGID",			TAG_DEBUGID		},

+    { "TAG_ENABLEDEBUGGER2",		TAG_ENABLEDEBUGGER2	},

+    { "TAG_SCRIPTLIMITS",		TAG_SCRIPTLIMITS	},

+    { "TAG_SETTABINDEX",		TAG_SETTABINDEX		},

+    { "TAG_DEFINESHAPE4",		TAG_DEFINESHAPE4	},

+    { "TAG_FILEATTRIBUTES",		TAG_FILEATTRIBUTES	},

+    { "TAG_PLACEOBJECT3",		TAG_PLACEOBJECT3	},

+    { "TAG_IMPORTASSETS2",		TAG_IMPORTASSETS2	},

+    { "TAG_DEFINEFONTINFO3",		TAG_DEFINEFONTINFO3	},

+    { "TAG_DEFINETEXTINFO",		TAG_DEFINETEXTINFO	},

+    { "TAG_DEFINEFONT3",		TAG_DEFINEFONT3		},

+    { "TAG_AVM2DECL",			TAG_AVM2DECL		},

+    { "TAG_METADATA",			TAG_METADATA		},

+    { "TAG_SLICE9",			TAG_SLICE9		},

+    { "TAG_AVM2ACTION",			TAG_AVM2ACTION		},

+    { "TAG_DEFINESHAPE5",		TAG_DEFINESHAPE5	},

+    { "TAG_DEFINEMORPHSHAPE2",		TAG_DEFINEMORPHSHAPE2	},

+    { "TAG_DEFINEBITSPTR",		TAG_DEFINEBITSPTR	},

+    { NULL,				TAG_UNKNOWN		},

+};

+

+#endif