kamp/fdroidserver
1
0
Fork 0
mirror of https://gitlab.com/fdroid/fdroidserver.git synced 2024-11-14 11:00:10 +01:00
Code Activity

Merge branch 'minor-security-fixups' into 'master'

Browse Source 
Minor security fixups

Closes #163

See merge request fdroid/fdroidserver!570
This commit is contained in:
Marcus 2018-09-04 11:05:25 +00:00
commit de5455e273
5 changed files with 44 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
buildserver/provision-apt-get-install
View File

@ -89,6 +89,7 @@ packages="
python-lxml python-lxml
python-magic python-magic
python-setuptools python-setuptools
python3-defusedxml
python3-git/jessie-backports python3-git/jessie-backports
python3-gitdb/jessie-backports python3-gitdb/jessie-backports
python3-gnupg python3-gnupg

23
fdroidserver/common.py
View File

@ -39,7 +39,12 @@ import base64
import zipfile import zipfile
import tempfile import tempfile
import json import json
import defusedxml.ElementTree as XMLElementTree
# TODO change to only import defusedxml once its installed everywhere
try:
import defusedxml.ElementTree as XMLElementTree
except ImportError:
import xml.etree.ElementTree as XMLElementTree # nosec this is a fallback only
from binascii import hexlify from binascii import hexlify
from datetime import datetime, timedelta from datetime import datetime, timedelta
@ -1511,14 +1516,26 @@ def parse_androidmanifests(paths, app):
if max_version is None: if max_version is None:
max_version = "Unknown" max_version = "Unknown"
if max_package and not is_valid_package_name(max_package): if max_package and not is_valid_java_package_name(max_package):
raise FDroidException(_("Invalid package name {0}").format(max_package)) raise FDroidException(_("Invalid package name {0}").format(max_package))
return (max_version, max_vercode, max_package) return (max_version, max_vercode, max_package)
def is_valid_package_name(name): def is_valid_package_name(name):
return re.match("[A-Za-z_][A-Za-z_0-9.]+$", name) """Check whether name is a valid fdroid package name
APKs and manually defined package names must use a valid Java
Package Name. Automatically generated package names for non-APK
files use the SHA-256 sum.
"""
return re.match("^([a-f0-9]+|[A-Za-z_][A-Za-z_0-9.]+)$", name)
def is_valid_java_package_name(name):
"""Check whether name is a valid Java package name aka Application ID"""
return re.match("^[A-Za-z_][A-Za-z_0-9.]+$", name)
def getsrclib(spec, srclib_dir, subdir=None, basepath=False, def getsrclib(spec, srclib_dir, subdir=None, basepath=False,

3
fdroidserver/metadata.py
View File

@ -805,6 +805,9 @@ def read_metadata(xref=True, check_vcs=[], refresh=True, sort_by_time=False):
if metadatapath == '.fdroid.txt': if metadatapath == '.fdroid.txt':
warn_or_exception(_('.fdroid.txt is not supported! Convert to .fdroid.yml or .fdroid.json.')) warn_or_exception(_('.fdroid.txt is not supported! Convert to .fdroid.yml or .fdroid.json.'))
appid, _ignored = fdroidserver.common.get_extension(os.path.basename(metadatapath)) appid, _ignored = fdroidserver.common.get_extension(os.path.basename(metadatapath))
if appid != '.fdroid' and not fdroidserver.common.is_valid_package_name(appid):
warn_or_exception(_("{appid} from {path} is not a valid Java Package Name!")
.format(appid=appid, path=metadatapath))
if appid in apps: if appid in apps:
warn_or_exception(_("Found multiple metadata files for {appid}") warn_or_exception(_("Found multiple metadata files for {appid}")
.format(appid=appid)) .format(appid=appid))

4
fdroidserver/update.py
View File

@ -1064,6 +1064,10 @@ def scan_apk(apk_file):
else: else:
scan_apk_aapt(apk, apk_file) scan_apk_aapt(apk, apk_file)
if not common.is_valid_java_package_name(apk['packageName']):
raise BuildException(_("{appid} from {path} is not a valid Java Package Name!")
.format(appid=apk['packageName'], path=apk_file))
# Get the signature, or rather the signing key fingerprints # Get the signature, or rather the signing key fingerprints
logging.debug('Getting signature of {0}'.format(os.path.basename(apk_file))) logging.debug('Getting signature of {0}'.format(os.path.basename(apk_file)))
apk['sig'] = getsig(apk_file) apk['sig'] = getsig(apk_file)

18
tests/common.TestCase
View File

@ -158,9 +158,10 @@ class CommonTest(unittest.TestCase):
self.assertFalse(debuggable, self.assertFalse(debuggable,
"debuggable APK state was not properly parsed!") "debuggable APK state was not properly parsed!")
def testPackageNameValidity(self): def test_is_valid_package_name(self):
for name in ["org.fdroid.fdroid", for name in ["org.fdroid.fdroid",
"org.f_droid.fdr0ID"]: "org.f_droid.fdr0ID",
"05041684efd9b16c2888b1eddbadd0359f655f311b89bdd1737f560a10d20fb8"]:
self.assertTrue(fdroidserver.common.is_valid_package_name(name), self.assertTrue(fdroidserver.common.is_valid_package_name(name),
"{0} should be a valid package name".format(name)) "{0} should be a valid package name".format(name))
for name in ["0rg.fdroid.fdroid", for name in ["0rg.fdroid.fdroid",
@ -170,6 +171,19 @@ class CommonTest(unittest.TestCase):
self.assertFalse(fdroidserver.common.is_valid_package_name(name), self.assertFalse(fdroidserver.common.is_valid_package_name(name),
"{0} should not be a valid package name".format(name)) "{0} should not be a valid package name".format(name))
def test_is_valid_java_package_name(self):
for name in ["org.fdroid.fdroid",
"org.f_droid.fdr0ID"]:
self.assertTrue(fdroidserver.common.is_valid_java_package_name(name),
"{0} should be a valid package name".format(name))
for name in ["0rg.fdroid.fdroid",
".f_droid.fdr0ID",
"org.fdroid/fdroid",
"/org.fdroid.fdroid",
"05041684efd9b16c2888b1eddbadd0359f655f311b89bdd1737f560a10d20fb8"]:
self.assertFalse(fdroidserver.common.is_valid_java_package_name(name),
"{0} should not be a valid package name".format(name))
def test_prepare_sources(self): def test_prepare_sources(self):
testint = 99999999 testint = 99999999
teststr = 'FAKE_STR_FOR_TESTING' teststr = 'FAKE_STR_FOR_TESTING'