Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix shasum path #1793

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Fix shasum path #1793

wants to merge 2 commits into from

Conversation

unreturned
Copy link

On different systems shasum have different path, like this /usr/bin/shasum or /usr/bin/core_perl/shasum and etc

@unreturned
Fix shasum path
fe69a54 
Signed-off-by: Dmitrii Kovalkov <kovalkov.dmitriy@gmail.com>
@unreturned unreturned requested a review from a team as a code owner December 3, 2023 18:41
@codecov Codecov
Copy link

codecov bot commented Dec 4, 2023
edited

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (d378ced) 32% compared to head (2065cac) 32%.
Report is 2 commits behind head on master.

Additional details and impacted files 
@@          Coverage Diff           @@
##           master   #1793   +/-   ##
======================================
  Coverage      32%     32%           
======================================
  Files          45      45           
  Lines        2609    2609           
  Branches      337     337           
======================================
  Hits          859     859           
  Misses       1750    1750
Flag Coverage Δ
apple 15% <ø> (ø)
ios 15% <ø> (?)
maccatalyst ?
macos 15% <ø> (?)
unittests 32% <ø> (ø)
www 40% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

fortuna
fortuna requested changes Dec 4, 2023
View reviewed changes
src/electron/routing_service.ts Outdated
@@ -323,7 +323,7 @@ async function installLinuxRoutingServices(): Promise<void> {
command +=
' && ' +
installationFileDescriptors
.map(({filename, sha256}) => `/usr/bin/echo "${sha256} ${path.join(tmp, filename)}" | /usr/bin/shasum -a 256 -c`)
.map(({filename, sha256}) => `/usr/bin/echo "${sha256} ${path.join(tmp, filename)}" | $(which shasum) -a 256 -c`)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can't use the path because it opens up a security vulnerability, that's why we use absolute paths to read-only files.
One alternative would be to check a few absolute paths instead.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/cc @jyyi1

jyyi1
jyyi1 requested changes Dec 5, 2023
View reviewed changes
Copy link
Contributor

@jyyi1 jyyi1 left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Relative path is not secure, it allows a normal user running arbitrary code as root.

@unreturned
Turn to absolute path
2065cac 
Signed-off-by: Dmitrii Kovalkov <kovalkov.dmitriy@gmail.com>
@unreturned
Copy link
Author

Moved to absolute paths, check it, please

fortuna
fortuna requested changes Dec 28, 2023
View reviewed changes
src/electron/routing_service.ts
@@ -323,7 +323,7 @@ async function installLinuxRoutingServices(): Promise<void> {
command +=
' && ' +
installationFileDescriptors
.map(({filename, sha256}) => `/usr/bin/echo "${sha256} ${path.join(tmp, filename)}" | /usr/bin/shasum -a 256 -c`)
.map(({filename, sha256}) => `/usr/bin/echo "${sha256} ${path.join(tmp, filename)}" | (/usr/bin/shasum -a 256 -c || /usr/bin/core_perl/shasum -a 256 -c)`)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is not really the logic we want. If the first command fails for whatever reason (e.g. fingerpring fails) we don't want to run the second command. And we don't want to try to run the first command if it doesn't exist. It's a lot cleaner and easier to reason about if you check the existence of the files before running them.

This also needs to be tested to make sure it works on Ubuntu/Debian, which is our only supported Linux.

/cc @jyyi1 to review

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agreed, I'd rather test which shasum (either /usr/bin/shasum or /usr/bin/core_perl/shasum) exists before running the command, and only append the correct full shasum path to the command:

shasumCmd = findShasum() // this function returns `/usr/bin/shasum` or `/usr/bin/core_perl/shasum` depending on which one exists
command +=
  ' && ' +
  installationFileDescriptors
    .map(({filename, sha256}) => `/usr/bin/echo "${sha256}  ${path.join(tmp, filename)}" | ${shasumCmd} -a 256 -c`)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jyyi1 jyyi1 jyyi1 requested changes

@fortuna fortuna fortuna requested changes

@daniellacosse daniellacosse daniellacosse approved these changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@unreturned @fortuna @daniellacosse @jyyi1