almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

Prevent user from using illegal characters in output filename

Browse source 
Add some checks in the Dangerzone GUI and CLI that will prevent a user
from mistakenly adding illegal characters in the output filename.
This commit is contained in:
bnewc 2024-06-11 17:36:54 -07:00 committed by Alex Pyrgiotis
parent 275189587e
commit 752eff02d8
No known key found for this signature in database
GPG key ID: B6C15EBA0357C9AA
4 changed files with 79 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
dangerzone/document.py
View file

@ -1,8 +1,10 @@
import enum import enum
import logging import logging
import os import os
import platform
import re
import secrets import secrets
from pathlib import Path from pathlib import Path, PurePosixPath, PureWindowsPath
from typing import Optional from typing import Optional
from . import errors, util from . import errors, util
@ -68,6 +70,20 @@ class Document:
def validate_output_filename(filename: str) -> None: def validate_output_filename(filename: str) -> None:
if not filename.endswith(".pdf"): if not filename.endswith(".pdf"):
raise errors.NonPDFOutputFileException() raise errors.NonPDFOutputFileException()
if platform.system() == "Windows":
final_filename = PureWindowsPath(filename).name
illegal_chars_regex = re.compile(r"[\"*/:<>?\\|]")
else:
final_filename = PurePosixPath(filename).name
illegal_chars_regex = re.compile(r"[\\]")
if platform.system() in ("Windows", "Darwin"):
match = illegal_chars_regex.search(final_filename)
if match:
# filename contains illegal characters
raise errors.IllegalOutputFilenameException(match.group(0))
if not os.access(Path(filename).parent, os.W_OK): if not os.access(Path(filename).parent, os.W_OK):
# in unwriteable directory # in unwriteable directory
raise errors.UnwriteableOutputDirException() raise errors.UnwriteableOutputDirException()

7
dangerzone/errors.py
View file

@ -42,6 +42,13 @@ class NonPDFOutputFileException(DocumentFilenameException):
super().__init__("Safe PDF filename must end in '.pdf'") super().__init__("Safe PDF filename must end in '.pdf'")
class IllegalOutputFilenameException(DocumentFilenameException):
"""Exception for when the output file contains illegal characters."""
def __init__(self, char: str) -> None:
super().__init__(f"Illegal character: {char}")
class UnwriteableOutputDirException(DocumentFilenameException): class UnwriteableOutputDirException(DocumentFilenameException):
"""Exception for when the output file is not writeable.""" """Exception for when the output file is not writeable."""

50
dangerzone/gui/main_window.py
View file

@ -810,23 +810,29 @@ class SettingsWidget(QtWidgets.QWidget):
self.safe_extension = QtWidgets.QLineEdit() self.safe_extension = QtWidgets.QLineEdit()
self.safe_extension.setStyleSheet("margin-left: -6px;") # no left margin self.safe_extension.setStyleSheet("margin-left: -6px;") # no left margin
self.safe_extension.textChanged.connect(self.update_ui) self.safe_extension.textChanged.connect(self.update_ui)
self.safe_extension_invalid = QtWidgets.QLabel("(must end in .pdf)") self.safe_extension_invalid = QtWidgets.QLabel("")
self.safe_extension_invalid.setStyleSheet("color: red") self.safe_extension_invalid.setStyleSheet("color: red")
self.safe_extension_invalid.hide() self.safe_extension_invalid.hide()
self.safe_extension_name_layout = QtWidgets.QHBoxLayout() self.safe_extension_name_layout = QtWidgets.QHBoxLayout()
self.safe_extension_name_layout.setSpacing(0) self.safe_extension_name_layout.setSpacing(0)
self.safe_extension_name_layout.addWidget(self.safe_extension_filename) self.safe_extension_name_layout.addWidget(self.safe_extension_filename)
self.safe_extension_name_layout.addWidget(self.safe_extension) self.safe_extension_name_layout.addWidget(self.safe_extension)
# FIXME: Workaround for https://github.com/freedomofpress/dangerzone/issues/339. # FIXME: Workaround for https://github.com/freedomofpress/dangerzone/issues/339.
# We should drop this once we drop Ubuntu Focal support. # We should drop this once we drop Ubuntu Focal support.
if hasattr(QtGui, "QRegularExpressionValidator"): if hasattr(QtGui, "QRegularExpressionValidator"):
dot_pdf_regex = QtCore.QRegularExpression(r".*\.[Pp][Dd][Ff]") QRegEx = QtCore.QRegularExpression
validator = QtGui.QRegularExpressionValidator(dot_pdf_regex) QRegExValidator = QtGui.QRegularExpressionValidator
else: else:
dot_pdf_regex = QtCore.QRegExp(r".*\.[Pp][Dd][Ff]") # type: ignore [assignment] QRegEx = QtCore.QRegExp # type: ignore [assignment]
validator = QtGui.QRegExpValidator(dot_pdf_regex) # type: ignore [call-overload] QRegExValidator = QtGui.QRegExpValidator # type: ignore [assignment]
self.safe_extension.setValidator(validator) self.dot_pdf_validator = QRegExValidator(QRegEx(r".*\.[Pp][Dd][Ff]"))
if platform.system() == "Linux":
illegal_chars_regex = r"[/]"
elif platform.system() == "Darwin":
illegal_chars_regex = r"[\\]"
else:
illegal_chars_regex = r"[\"*/:<>?\\|]"
self.illegal_chars_regex = QRegEx(illegal_chars_regex)
self.safe_extension_layout = QtWidgets.QHBoxLayout() self.safe_extension_layout = QtWidgets.QHBoxLayout()
self.safe_extension_layout.addWidget(self.save_checkbox) self.safe_extension_layout.addWidget(self.save_checkbox)
self.safe_extension_layout.addWidget(self.safe_extension_label) self.safe_extension_layout.addWidget(self.safe_extension_label)
@ -969,14 +975,32 @@ class SettingsWidget(QtWidgets.QWidget):
# ignore validity if not saving file # ignore validity if not saving file
self.safe_extension_invalid.hide() self.safe_extension_invalid.hide()
return True return True
return (
self.check_safe_extension_illegal_chars()
and self.check_safe_extension_dot_pdf()
)
if self.safe_extension.hasAcceptableInput(): def check_safe_extension_illegal_chars(self) -> bool:
self.safe_extension_invalid.hide() match = self.illegal_chars_regex.match(self.safe_extension.text())
return True if match.hasMatch():
else: self.set_safe_extension_invalid_label(
# prevent starting conversion until correct f"illegal character: {match.captured()}"
self.safe_extension_invalid.show() )
return False return False
self.safe_extension_invalid.hide()
return True
def check_safe_extension_dot_pdf(self) -> bool:
self.safe_extension.setValidator(self.dot_pdf_validator)
if not self.safe_extension.hasAcceptableInput():
self.set_safe_extension_invalid_label("must end in .pdf")
return False
self.safe_extension_invalid.hide()
return True
def set_safe_extension_invalid_label(self, string: str) -> None:
self.safe_extension_invalid.setText(string)
self.safe_extension_invalid.show()
def check_either_save_or_open(self) -> bool: def check_either_save_or_open(self) -> bool:
return ( return (

18
tests/test_document.py
View file

@ -79,6 +79,24 @@ def test_output_file_not_pdf(tmp_path: Path) -> None:
assert not os.path.exists(docx_file) assert not os.path.exists(docx_file)
@pytest.mark.skipif(platform.system() != "Windows", reason="Windows-specific")
def test_illegal_output_filename_windows(tmp_path: Path) -> None:
d = Document()
for char in '"*:<>?':
with pytest.raises(errors.IllegalOutputFilenameException):
d.output_filename = str(tmp_path / f"illegal{char}name.pdf")
@pytest.mark.skipif(platform.system() != "Darwin", reason="MacOS-specific")
def test_illegal_output_filename_macos(tmp_path: Path) -> None:
illegal_name = str(tmp_path / "illegal\\name.pdf")
d = Document()
with pytest.raises(errors.IllegalOutputFilenameException):
d.output_filename = illegal_name
@pytest.mark.skipif(platform.system() == "Windows", reason="Unix-specific") @pytest.mark.skipif(platform.system() == "Windows", reason="Unix-specific")
def test_archive_unwriteable_dir(tmp_path: Path) -> None: def test_archive_unwriteable_dir(tmp_path: Path) -> None:
doc = tmp_path / "doc.pdf" doc = tmp_path / "doc.pdf"