xbps/lib/plist_fetch.c

298 lines
7.0 KiB
C
Raw Normal View History

/*-
* Copyright (c) 2009-2014 Juan Romero Pardines.
* Copyright (c) 2008, 2009 Joerg Sonnenberger <joerg (at) NetBSD.org>
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*-
* From: $NetBSD: pkg_io.c,v 1.9 2009/08/16 21:10:15 joerg Exp $
*/
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <errno.h>
#include "xbps_api_impl.h"
/**
* @file lib/plist_fetch.c
* @brief Package URL metadata files handling
* @defgroup plist_fetch Package URL metadata files handling
*/
struct fetch_archive {
struct url *url;
struct fetchIO *fetch;
char buffer[32768];
};
static int
2018-07-17 22:24:26 -04:00
fetch_archive_open(struct archive *a UNUSED, void *client_data)
{
struct fetch_archive *f = client_data;
f->fetch = fetchGet(f->url, NULL);
if (f->fetch == NULL)
return ENOENT;
return 0;
}
static ssize_t
2018-07-17 22:24:26 -04:00
fetch_archive_read(struct archive *a UNUSED, void *client_data, const void **buf)
{
struct fetch_archive *f = client_data;
*buf = f->buffer;
return fetchIO_read(f->fetch, f->buffer, sizeof(f->buffer));
}
static int
2018-07-17 22:24:26 -04:00
fetch_archive_close(struct archive *a UNUSED, void *client_data)
{
struct fetch_archive *f = client_data;
if (f->fetch != NULL)
fetchIO_close(f->fetch);
free(f);
return 0;
}
static struct archive *
open_archive_by_url(struct url *url)
{
struct fetch_archive *f;
struct archive *a;
f = malloc(sizeof(struct fetch_archive));
if (f == NULL)
return NULL;
f->url = url;
if ((a = archive_read_new()) == NULL) {
free(f);
return NULL;
}
archive_read_support_filter_gzip(a);
archive_read_support_filter_bzip2(a);
archive_read_support_filter_xz(a);
archive_read_support_filter_lz4(a);
archive_read_support_filter_zstd(a);
archive_read_support_format_tar(a);
if (archive_read_open(a, f, fetch_archive_open, fetch_archive_read,
fetch_archive_close)) {
archive_read_finish(a);
return NULL;
}
return a;
}
static struct archive *
open_archive(const char *url)
{
struct url *u;
struct archive *a;
if (!xbps_repository_is_remote(url)) {
if ((a = archive_read_new()) == NULL)
return NULL;
archive_read_support_filter_gzip(a);
archive_read_support_filter_bzip2(a);
archive_read_support_filter_xz(a);
archive_read_support_filter_lz4(a);
archive_read_support_filter_zstd(a);
archive_read_support_format_tar(a);
if (archive_read_open_filename(a, url, 32768)) {
archive_read_finish(a);
return NULL;
}
return a;
}
if ((u = fetchParseURL(url)) == NULL)
return NULL;
a = open_archive_by_url(u);
fetchFreeURL(u);
return a;
}
char *
xbps_archive_fetch_file(const char *url, const char *fname)
{
struct archive *a;
struct archive_entry *entry;
char *buf = NULL;
assert(url);
assert(fname);
2011-01-25 04:14:33 +01:00
if ((a = open_archive(url)) == NULL)
return NULL;
while ((archive_read_next_header(a, &entry)) == ARCHIVE_OK) {
const char *bfile;
bfile = archive_entry_pathname(entry);
if (bfile[0] == '.')
bfile++; /* skip first dot */
if (strcmp(bfile, fname) == 0) {
buf = xbps_archive_get_file(a, entry);
break;
}
archive_read_data_skip(a);
}
archive_read_finish(a);
return buf;
}
bool
xbps_repo_fetch_remote(struct xbps_repo *repo, const char *url)
{
struct archive *a;
struct archive_entry *entry;
2019-10-01 21:18:25 +02:00
xbps_dictionary_t idxmeta_tmp = NULL;
size_t meta_signature_len = 0;
uint8_t i = 0;
2019-10-01 21:18:25 +02:00
bool verified = false;
const char *signature_type = NULL;
2019-10-01 21:18:25 +02:00
unsigned char *meta_digest = NULL;
unsigned char *meta_signature = NULL;
assert(url);
assert(repo);
if ((a = open_archive(url)) == NULL)
return false;
while ((archive_read_next_header(a, &entry)) == ARCHIVE_OK) {
const char *bfile;
char *buf;
bfile = archive_entry_pathname(entry);
if (bfile[0] == '.')
bfile++; /* skip first dot */
if (strcmp(bfile, XBPS_REPOIDX_META) == 0) {
buf = xbps_archive_get_file(a, entry);
2019-10-01 21:18:25 +02:00
meta_digest = xbps_buffer_hash_raw(buf, strlen(buf));
idxmeta_tmp = xbps_dictionary_internalize(buf);
free(buf);
i++;
2019-10-01 21:18:25 +02:00
} else if (strcmp(bfile, XBPS_REPOIDXMETA_SIG) == 0) {
meta_signature = (unsigned char *) xbps_archive_get_file(a, entry);
meta_signature_len = (size_t) archive_entry_size(entry);
i++;
} else if (strcmp(bfile, XBPS_REPOIDX) == 0) {
buf = xbps_archive_get_file(a, entry);
repo->idx = xbps_dictionary_internalize(buf);
free(buf);
i++;
} else {
archive_read_data_skip(a);
}
2019-10-01 21:18:25 +02:00
if (i == 3)
break;
}
archive_read_finish(a);
2019-10-01 21:18:25 +02:00
verified = xbps_verify_digest_signature(repo, idxmeta_tmp, meta_signature, meta_signature_len, meta_digest);
if (verified) {
xbps_dbg_printf(repo->xhp, "Verification of repo's '%s' signature passed.\n", url);
} else {
xbps_warn_printf("Verification of repo's '%s' signature failed. Taking safe part.\n", url);
idxmeta_tmp = get_safe_idxmeta(idxmeta_tmp);
}
repo->idxmeta = idxmeta_tmp;
if (xbps_dictionary_get_cstring_nocopy(repo->idxmeta, "signature-type", &signature_type))
repo->is_signed = true;
if (xbps_object_type(repo->idx) == XBPS_TYPE_DICTIONARY)
return true;
2019-10-01 21:18:25 +02:00
free(meta_digest);
free(meta_signature);
return false;
}
int
xbps_archive_fetch_file_into_fd(const char *url, const char *fname, int fd)
{
struct archive *a;
struct archive_entry *entry;
int rv = 0;
assert(url);
assert(fname);
assert(fd != -1);
if ((a = open_archive(url)) == NULL)
return EINVAL;
while ((archive_read_next_header(a, &entry)) == ARCHIVE_OK) {
const char *bfile;
bfile = archive_entry_pathname(entry);
if (bfile[0] == '.')
bfile++; /* skip first dot */
if (strcmp(bfile, fname) == 0) {
rv = archive_read_data_into_fd(a, fd);
if (rv != 0)
rv = archive_errno(a);
break;
}
archive_read_data_skip(a);
}
archive_read_finish(a);
return rv;
}
xbps_dictionary_t
xbps_archive_fetch_plist(const char *url, const char *plistf)
{
xbps_dictionary_t d;
char *buf;
if ((buf = xbps_archive_fetch_file(url, plistf)) == NULL)
return NULL;
d = xbps_dictionary_internalize(buf);
free(buf);
return d;
}