summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2021-07-30manifest: support v3 packagesTimo Teräs1-0/+42
2021-07-30verify: support v3 packagesTimo Teräs2-4/+24
2021-07-30mkndx: support v3 packagesTimo Teräs1-0/+14
2021-07-30extract: use extraction api, and implement it for v3 packagesTimo Teräs6-209/+298
The extract applet now works with both v2 and v3 packages.
2021-07-27Further refactor extract API to have separate ops vtableTimo Teräs7-135/+162
This splits the callbacks by type, and further prepares the API to be usable for v3 files too.
2021-07-27Refactor .apk extraction codeTimo Teräs25-749/+744
This moves and isolates the tar code to tar.c. And the actual file extraction to disk is moved to extract.c. A new API is introduced and used for v2 file extraction. This essentially moves and isolates the apk_sign_ctx_* beast into extract_v2.c and offers a saner interface to handling packages. A place holder is added for v3 extraction.
2021-07-26extract: fix handling of error of regular file extractionTimo Teräs2-3/+16
fix the error checking, allow --force-overwrite to work and do not delete existing file in case of error
2021-07-26libfetch: fix range checking for http/ftp protocol parsingTimo Teräs5-61/+70
Various parsing of numeric strings were not having adequate range checking causing information leak or potential crash. CVE-2021-36159 fixes #10749 Co-authored-by: Ariadne Conill <ariadne@dereferenced.org> Reported-by: Samanta Navarro <ferivoz@riseup.net>
2021-07-26adb: fix some error handling pathsTimo Teräs3-9/+9
2021-07-26db: add some error checking to database state writeTimo Teräs2-40/+51
Make errors more observable. Unfortunately full rollback is non-trivial to implement. This is something to be fixed with the v3 database format.
2021-07-26db: fix installed db writing with long namesSamanta Navarro1-5/+10
Packages containing files with path names longer than 1024 characters cannot fit into the buffer which is used to write "installed" database. This leads to bbuf being APK_BLOB_NULL in apk_db_write_fdb because apk_blob_push_blob notices the condition and correctly handles it. The problem occurs when arguments to apk_ostream_write are manually calculated by pointer arithmetics. Since bbuf.ptr is NULL in such a case, bbuf.ptr - buf leads to a huge size value while buf still points into the stack. fixes #10751 [TT: minor edit to commit and abbreviating the commit message]
2021-07-26Use __attribute__ ((format)) where possible and fix issues found by itTimo Teräs4-8/+9
2021-07-26adb: adb_walk_adb fix out of boundary writeTimo Teräs3-37/+58
If a signature is longer than max allowed adb signature length then adb_walk_block writes out of boundary of stack variable tmp. The len += snprintf is not safe per standard snprintf implementation (kernel does it differently). Introduce and use apk_blob_push_fmt which does the checking better. Fixes #10752 Reported-by: Samanta Navarro <ferivoz@riseup.net>
2021-07-25io_archive: Use SOURCE_DATE_EPOCH for meta files instead of current timekpcyrd3-1/+18
[TT: minor stylistic changes]
2021-07-25adb: fix error handling of non-adb filesTimo Teräs2-3/+7
2021-07-23db: allow read-only operations without cacheTimo Teräs4-4/+24
fixes #10748
2021-07-23extract: rework uvol name logicTimo Teräs2-15/+16
Add uvol_name to struct apk_file_info so it can be passed down the extract callbacks in future work. Modify uvol name to not include the path, but just the filename portion.
2021-07-23extract: fix uvol parameter orderDaniel Golle1-1/+1
2021-07-22extract: remove unneeded argument from uvol_extractTimo Teräs1-3/+3
2021-07-22adb: add a small adb blob header with versions and root objectTimo Teräs5-39/+74
2021-07-22adb: refactor struct adb_header to adb_file_headerTimo Teräs4-39/+37
In struct adb, do not keep the whole header, just the schema in host byte order.
2021-07-22adb: make adb mmap/stream parser more united, add ADB_BLOCK_DATAXTimo Teräs4-47/+61
Harden the error checking of expected block types and their order. Add ADB_BLOCK_DATAX as reserved for >1GB blocks.
2021-07-22adb, convndx: check istream_close resultTimo Teräs2-3/+2
2021-07-22io: make apk_istream_get/read() fail on incomplete readTimo Teräs5-59/+44
2021-07-22io: formalize apk_ostream_write() always writing full dataTimo Teräs6-60/+46
2021-07-22rework apk_istream_splice and apk_istream_teeTimo Teräs10-204/+120
- apk_istream_splice usage is converted to apk_stream_copy which is the newer variant. With caching enabled by default, this makes more sense mmapping or using separate buffers. - apk_istream_tee is reworked to write to apk_ostream, which simplifies quite a bit of various things
2021-07-22io: rework apk_istream_get_* to not return erros in blob valueTimo Teräs10-66/+68
The interface was slightly cumbersome, so replace these functions to return explicit error, and make the return blob a pointer arg.
2021-07-22adb: remove the now unused get_default_int() hookTimo Teräs2-8/+1
It is no longer needed, and can be later reintroduced if needed.
2021-07-22adb: unify various interfaces to adb_m_processTimo Teräs12-220/+252
Removes code duplication, and puts important checks in one place. Support seamless decompression in adbdump.
2021-07-22adbsign: support compressed adb filesTimo Teräs4-6/+9
2021-07-22adb: support seamless de/compression of adb filesTimo Teräs9-22/+111
Add compression header of adb files. Support uncompressed and deflate compression at this time.
2021-07-22convndx: add error reportingTimo Teräs1-1/+5
2021-07-16libfetch: simplify code by merging protocol error handling branchesTimo Teräs2-36/+22
removes some code duplication
2021-07-16extract: fix integrity check failure to remove the bad file/volumeTimo Teräs1-33/+31
2021-07-16genhelp: improve to work with lua 5.1Timo Teräs2-7/+7
Fix the script to not contain \x00 escape which was the only new feature used. Fix the meson build script to use given lua interpreter for running the genhelp.lua. Based on patch from Daniel Golle <daniel@makrotopia.org>
2021-07-16check trust in adb_trust_write_signatures()Timo Teräs1-1/+3
Based on patch from Daniel Golle <daniel@makrotopia.org>
2021-07-06define APK_DEFAULT_ARCH for loongarch targetsAriadne Conill1-0/+6
Macros used have been taken from Loongson's work-in-progress GCC 12 port.
2021-06-23mkpkg, extract: implement support for symlinks, devices and fifosTimo Teräs4-33/+101
2021-06-21openssl: explicitly ignore BIO_reset() return valueTimo Teräs1-1/+1
This caused some -Wall errors on certain gcc versions due to BIO_reset() being a macro with explicit cast.
2021-06-21db: check syscall errors in update_permissions()Timo Teräs1-5/+18
2021-06-21print: handle write() errors in apk_print_progress()Timo Teräs3-19/+25
2021-06-19doc: add missing options to index, info, and versionRodrigo Lourenço3-12/+23
2021-06-19reduce misuse of error codes from errno.hTimo Teräs17-118/+141
2021-06-19crypto: improve compatibilityTimo Teräs3-7/+9
EVP_MD_CTX_set_pkey_ctx() is fairly new openssl function, and not existing in many alternative. Use EVP_MD_CTX_reset() which is slightly more heavy but more portable. Add also signature buffer lengths to work with RSA.
2021-06-19mkpkg: ignore special files with warning instead of erroringTimo Teräs1-2/+1
2021-06-19fixup some includesTimo Teräs7-6/+1
- remove unneeded assert.h - add needed limits.h
2021-06-19Document apk-searchRodrigo Lourenço3-0/+45
Fixes #10746.
2021-06-19Remove AUTHORS section from man pagesTimo Teräs22-110/+0
Use of an AUTHORS section is strongly discouraged. Generally, it is better not to clutter every page with a list of (over time potentially numerous) authors. Add your name to comments in sources, or the root level AUTHORS file instead.
2021-06-14update Makefile to include new v3 code and appletsTimo Teräs1-11/+11
2021-06-12crypto: make EVP_MD_CTX_FLAG_FINALISE optionalTimo Teräs1-0/+2
Improves compatibility with libressl, wolfssl and older openssl libraries not having the flag. Usage of this is optional as it's purely performance optimization related flag.
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-11-16 05:56:52 +0000