mirrors/fdroidserver
1
0
Fork 0
mirror of https://github.com/f-droid/fdroidserver.git synced 2025-11-09 08:50:28 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
7391 commits 1 branch 69 tags 38 MiB
Commit graph

3232 commits

Author SHA1 Message Date
Jochen Sprickerhof
96f8284a50
Sync all status files 2022-09-29 19:41:12 +02:00
linsui
ec69be04ce scanner: allow repo.clojars.org 2022-09-26 18:58:15 +00:00
Jochen Sprickerhof
cf228d35a3 Work around old apksigner on f-droid.org publish server 2022-09-20 13:58:41 +00:00
Jochen Sprickerhof
0f48294a6e
Use old python-git exception API for getref 
The is_valid_object method is not even in Debian bullseye.
 2022-09-15 07:44:02 +02:00
linsui
ac96e43e13 scanner: add some rules 2022-09-14 15:02:37 +00:00
FestplattenSchnitzel
580ce85412 [lint] Fix comparisons in check_updates_expected 2022-09-14 10:10:20 +00:00
pmmayero
0ad45a94a8 Addition of IPFS CIDv1 to Index 
IPFS CIDv1 is only generated for APKs and "repo files"
 2022-09-14 09:28:02 +00:00
Jochen Sprickerhof
7b31535c25 git.getref: use python-git 
Fixes a "warning: refname is ambiguous." problem:

$ git clone https://gitlab.com/joshua.tee/wx.git
$ cd wx
$ git rev-parse 55699
warning: refname '55699' is ambiguous.

8760bb0ce7 (note_1090707468)
 2022-09-14 09:12:02 +00:00
FestplattenSchnitzel
d32e53798d
[lint] Check if checking for updates makes no sense 2022-09-12 12:27:38 +02:00
Hans-Christoph Steiner
e79585b0c0 index: remove unused, confusing args to file_entry() 2022-09-08 18:13:26 +02:00
Jochen Sprickerhof
8f24cae3be Fix added type 
The added time should be a datetime, not a time.struct_time.

Regression of 290b9050
Closes: #1012
 2022-09-05 20:36:41 +00:00
Jochen Sprickerhof
c89a9f0e8b
Add timeout argument to requests.(get,post) 2022-09-05 17:50:10 +02:00
Jochen Sprickerhof
cf0100cf11
Merge comparisons with 'in' 2022-09-05 17:14:51 +02:00
Hans-Christoph Steiner
c6cf0468ed nightly: update Raw URLs to fix breakage and avoid redirects 2022-08-26 07:18:19 +00:00
Jochen Sprickerhof
153f136e79 Also write status.json when command finished 2022-08-25 08:53:47 +00:00
FestplattenSchnitzel
7c89e923f6 Move methods specific to import to it's module 2022-08-24 22:21:37 +02:00
FestplattenSchnitzel
7b7f863c65 [import] Rename to import_subcommand internally 
This enables normal import of the module without the need for
workarounds.
 2022-08-24 22:21:35 +02:00
linsui
832ed18fca scanner: also scan classpath 2022-08-24 21:34:55 +02:00
linsui
b2eb189a3b Apply 1 suggestion(s) to 1 file(s) 2022-08-24 19:14:45 +00:00
linsui
82525dbc4e Apply 1 suggestion(s) to 1 file(s) 2022-08-24 19:14:45 +00:00
linsui
ae79e8b967 scanner: add sinaweibosdk 2022-08-24 19:14:45 +00:00
Hans-Christoph Steiner
ed3622ffff
convert verify.py and verify.TestCase to black code format 2022-08-24 19:16:36 +02:00
Hans-Christoph Steiner
9e58fc8cda
verify: normalize dicts via JSON for reliable comparisons 
13016c5d63 in !602 used a set to prevent
duplicate entries, but that worked poorly because it required lots of
data wrapping.  Instead, just normalize to JSON, then equality is easy.
 2022-08-24 19:16:33 +02:00
linsui
43ea0c35d8 Sort the xml file pathes for consistent result 2022-08-24 13:51:31 +00:00
fdroid-bot
53c6dffbce Android NDK None (None) 2022-08-24 11:07:33 +00:00
linsui
516a0c2ce8 Fix tag match with GitPython 2022-08-24 10:50:09 +00:00
linsui
cf7eb913d9 Show all unused scanner path at once 2022-08-19 18:01:31 +08:00
Jochen Sprickerhof
6ce271ac15
Fix variable in exception 2022-08-17 12:33:02 +02:00
proletarius101
8267fb2caf stop checking existence for build-tools, platform-tools, tools 2022-08-17 07:59:36 +00:00
linsui
f99dbec012 scanner: fix maven url check for kts files 2022-08-08 15:52:47 +00:00
Licaon_Kter
543c9fc77f Update approved official SPDX license tags 2022-08-04 10:45:41 +00:00
Jochen Sprickerhof
eb79522a36 Fix flake8 E275 missing whitespace after keyword 2022-07-31 09:48:14 +02:00
Jochen Sprickerhof
7822db2881 Catch DefusedXmlException (as ValueError) 
defusedxml can't handle the nbsp in the strings.xml (etree can).
 2022-07-25 09:30:25 +02:00
Jochen Sprickerhof
7e1d974351 Reduce try/except block 2022-07-25 08:51:47 +02:00
Jochen Sprickerhof
f8452c4f0c scan_binary: Log matched class 2022-07-18 15:12:43 +02:00
Michael Pöhn
ab579be6b5 add some basic tests for scanner.main 2022-07-17 15:52:52 +02:00
Michael Pöhn
07a366a4d6 add tests for scanner.load_exodus_trackers_signatures 2022-07-17 15:50:07 +02:00
Michael Pöhn
544772d3ab add missing "or" to scanner cli synopsis 2022-07-17 15:50:07 +02:00
Michael Pöhn
a1677b5cb0 add test case for _exodus_compile_signatures 2022-07-17 15:50:07 +02:00
Jochen Sprickerhof
3bd09ef7f4 Integrate Exodus (Closes: #566, #1008) 
Code taken from:

https://github.com/Exodus-Privacy/exodus-core/blob/v1/exodus_core/analysis/static_analysis.py
 2022-07-17 12:09:03 +00:00
Jochen Sprickerhof
ea9299f216 Use binary scanner with fdroid scanner path/to.apk 
Closes: #806
 2022-07-17 12:09:03 +00:00
linsui
534c170615 NDK r25 2022-07-14 06:35:55 +00:00
Hans-Christoph Steiner
3182b77d18
use apksigner to sign index-v2 with modern, supported algorithms 
The current signing method uses apksigner to sign the JAR so that it
will automatically select algorithms that are compatible with Android
SDK 23, which added the most recent algorithms:
https://developer.android.com/reference/java/security/Signature

This signing method uses then inherits the default signing algothim
settings, since Java and Android both maintain those.  That helps
avoid a repeat of being stuck on an old signing algorithm.  That means
specifically that this call to apksigner does not specify any of the
algorithms.

The old indexes must be signed by SHA1withRSA otherwise they will no
longer be compatible with old Androids.

apksigner 30.0.0+ is available in Debian/bullseye, Debian/buster-backports,
Ubuntu 21.10, and Ubuntu 20.04 from the fdroid PPA.  Here's a quick way to
test:

for f in `ls -1 /opt/android-sdk/build-tools/*/apksigner | sort ` /usr/bin/apksigner; do printf "$f : "; $f sign --v4-signing-enabled false; done

closes #1005
 2022-06-07 16:56:23 +02:00
Jochen Sprickerhof
e6c875b77e Archive _src.tar.gz.asc not .log.gz.asc 2022-06-07 11:37:29 +00:00
Jochen Sprickerhof
9933f54093 Fix --nosign semantics 
This reverts parts of 197ca7e36 as it never triggered the
FDroidException as 'keystore' not in common.config is always False.
 2022-06-07 13:22:02 +02:00
Jochen Sprickerhof
1073dd57f7 Make webBaseUrl configurable 2022-06-04 11:56:04 +02:00
Jochen Sprickerhof
72e3d07acb Simplify primary mirror logic 
Assume repo_url/archive_url to be valid URL and mark it as a primary
mirror.
 2022-06-04 11:56:04 +02:00
Jochen Sprickerhof
edc9390628 Pass --scan-binary to build server 2022-06-03 14:27:58 +00:00
Jochen Sprickerhof
8a2f013508 Archive .idsig and .log.gz.asc files as well 2022-06-03 10:56:22 +00:00
Jochen Sprickerhof
4ce79a7eaa explicitly re-raising exceptions 
To fix pylint.
 2022-06-01 22:52:22 +02:00