mirror of
https://github.com/Stirling-Tools/Stirling-PDF.git
synced 2025-06-06 18:30:57 +00:00
test
This commit is contained in:
Anthony Stirling
parent
1f37c4b742
commit
364b8c7c26
33
.github/workflows/file_hash_generation.yml
vendored
33
.github/workflows/file_hash_generation.yml
vendored
@ -34,6 +34,31 @@ jobs:
|
|||||||
# Create output directory if it doesn't exist
|
# Create output directory if it doesn't exist
|
||||||
mkdir -p $(dirname "$OUTPUT_FILE")
|
mkdir -p $(dirname "$OUTPUT_FILE")
|
||||||
|
|
||||||
|
# Text file extensions that need normalization
|
||||||
|
TEXT_EXTENSIONS=("html" "htm" "css" "js" "txt" "md" "xml" "json" "csv" "properties")
|
||||||
|
|
||||||
|
# Function to check if a file is a text file
|
||||||
|
is_text_file() {
|
||||||
|
ext="${1##*.}"
|
||||||
|
for text_ext in "${TEXT_EXTENSIONS[@]}"; do
|
||||||
|
if [ "$ext" = "$text_ext" ]; then
|
||||||
|
return 0
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
return 1
|
||||||
|
}
|
||||||
|
|
||||||
|
# Function to calculate normalized hash for text files
|
||||||
|
calculate_text_hash() {
|
||||||
|
# Normalize line endings to LF and calculate CRC32
|
||||||
|
tr -d '\r' < "$1" | cksum | awk '{print $1}'
|
||||||
|
}
|
||||||
|
|
||||||
|
# Function to calculate hash for binary files
|
||||||
|
calculate_binary_hash() {
|
||||||
|
cksum "$1" | awk '{print $1}'
|
||||||
|
}
|
||||||
|
|
||||||
# Start JSON
|
# Start JSON
|
||||||
echo "{" > "$OUTPUT_FILE"
|
echo "{" > "$OUTPUT_FILE"
|
||||||
|
|
||||||
@ -43,8 +68,12 @@ jobs:
|
|||||||
# Get relative path from src/main/resources
|
# Get relative path from src/main/resources
|
||||||
REL_PATH=$(echo "$file" | sed 's|^src/main/resources/||')
|
REL_PATH=$(echo "$file" | sed 's|^src/main/resources/||')
|
||||||
|
|
||||||
# Calculate CRC32 hash (faster than MD5)
|
# Calculate hash based on file type
|
||||||
HASH=$(crc32 "$file" 2>/dev/null || cksum "$file" | awk '{print $1}')
|
if is_text_file "$file"; then
|
||||||
|
HASH=$(calculate_text_hash "$file")
|
||||||
|
else
|
||||||
|
HASH=$(calculate_binary_hash "$file")
|
||||||
|
fi
|
||||||
|
|
||||||
# Add to JSON
|
# Add to JSON
|
||||||
if [ "$FIRST" = true ]; then
|
if [ "$FIRST" = true ]; then
|
||||||
|
|||||||
@ -1,5 +1,6 @@
|
|||||||
package stirling.software.SPDF.config;
|
package stirling.software.SPDF.config;
|
||||||
|
|
||||||
|
|
||||||
import org.slf4j.Logger;
|
import org.slf4j.Logger;
|
||||||
import org.slf4j.LoggerFactory;
|
import org.slf4j.LoggerFactory;
|
||||||
import org.springframework.beans.factory.annotation.Value;
|
import org.springframework.beans.factory.annotation.Value;
|
||||||
@ -10,6 +11,7 @@ import org.springframework.core.io.ResourceLoader;
|
|||||||
|
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
import java.io.InputStream;
|
import java.io.InputStream;
|
||||||
|
import java.nio.charset.StandardCharsets;
|
||||||
import java.nio.file.Files;
|
import java.nio.file.Files;
|
||||||
import java.nio.file.Path;
|
import java.nio.file.Path;
|
||||||
import java.nio.file.Paths;
|
import java.nio.file.Paths;
|
||||||
@ -35,6 +37,9 @@ public class TemplateIntegrityConfig {
|
|||||||
@Value("${template.directories:classpath:templates/,classpath:static/}")
|
@Value("${template.directories:classpath:templates/,classpath:static/}")
|
||||||
private String[] templateDirectories;
|
private String[] templateDirectories;
|
||||||
|
|
||||||
|
@Value("${template.normalize.line.endings:true}")
|
||||||
|
private boolean normalizeLineEndings;
|
||||||
|
|
||||||
public TemplateIntegrityConfig(ResourceLoader resourceLoader) {
|
public TemplateIntegrityConfig(ResourceLoader resourceLoader) {
|
||||||
this.resourceLoader = resourceLoader;
|
this.resourceLoader = resourceLoader;
|
||||||
}
|
}
|
||||||
@ -46,7 +51,7 @@ public class TemplateIntegrityConfig {
|
|||||||
|
|
||||||
// Check for modifications with early termination
|
// Check for modifications with early termination
|
||||||
if (checkForModifications(referenceHashes)) {
|
if (checkForModifications(referenceHashes)) {
|
||||||
logger.info("SECURITY WARNING: Templates appear to have been modified from the release version!");
|
logger.warn("SECURITY WARNING: Templates appear to have been modified from the release version!");
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -70,13 +75,17 @@ public class TemplateIntegrityConfig {
|
|||||||
private Map<String, String> parseHashJson(String json) {
|
private Map<String, String> parseHashJson(String json) {
|
||||||
Map<String, String> result = new HashMap<>();
|
Map<String, String> result = new HashMap<>();
|
||||||
// Simple JSON parsing to avoid additional dependencies
|
// Simple JSON parsing to avoid additional dependencies
|
||||||
|
// Remove all whitespace first to make parsing more robust
|
||||||
|
json = json.replaceAll("\\s+", "");
|
||||||
String[] entries = json.replaceAll("[{}\"]", "").split(",");
|
String[] entries = json.replaceAll("[{}\"]", "").split(",");
|
||||||
for (String entry : entries) {
|
for (String entry : entries) {
|
||||||
String[] parts = entry.trim().split(":");
|
if (entry.isEmpty()) continue;
|
||||||
|
String[] parts = entry.split(":");
|
||||||
if (parts.length == 2) {
|
if (parts.length == 2) {
|
||||||
result.put(parts[0].trim(), parts[1].trim());
|
result.put(parts[0], parts[1]);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
logger.debug("Loaded {} reference hashes", result.size());
|
||||||
return result;
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -111,27 +120,42 @@ public class TemplateIntegrityConfig {
|
|||||||
if (modified.get()) return; // Skip if already found modification
|
if (modified.get()) return; // Skip if already found modification
|
||||||
|
|
||||||
try {
|
try {
|
||||||
String relativePath = directory.relativize(path).toString();
|
String basePath = dirPath.replace("/", "");
|
||||||
// Track that we found this file
|
String relativePath = basePath + "/" + directory.relativize(path).toString().replace("\\", "/");
|
||||||
foundFiles.put(relativePath, true);
|
|
||||||
|
// Debug log the path normalization
|
||||||
|
logger.debug("Processing file: {} -> {}", path, relativePath);
|
||||||
|
|
||||||
// Check if this file is in our reference
|
// Check if this file is in our reference
|
||||||
String referenceHash = referenceHashes.get(relativePath);
|
String referenceHash = referenceHashes.get(relativePath);
|
||||||
if (referenceHash == null) {
|
if (referenceHash == null) {
|
||||||
// New file found
|
// Try with different path format
|
||||||
logger.info("New file detected: {}", relativePath);
|
relativePath = directory.relativize(path).toString().replace("\\", "/");
|
||||||
modified.set(true);
|
referenceHash = referenceHashes.get(relativePath);
|
||||||
return;
|
|
||||||
|
if (referenceHash == null) {
|
||||||
|
// New file found
|
||||||
|
logger.warn("New file detected: {}", relativePath);
|
||||||
|
modified.set(true);
|
||||||
|
return;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Track that we found this file
|
||||||
|
foundFiles.put(relativePath, true);
|
||||||
|
|
||||||
// Check if the hash matches
|
// Check if the hash matches
|
||||||
String currentHash = computeFileHash(path);
|
String currentHash = computeFileHash(path);
|
||||||
|
|
||||||
|
logger.debug("Hash comparison for {}: reference={}, current={}",
|
||||||
|
relativePath, referenceHash, currentHash);
|
||||||
|
|
||||||
if (!currentHash.equals(referenceHash)) {
|
if (!currentHash.equals(referenceHash)) {
|
||||||
logger.info("Modified file detected: {}", relativePath);
|
logger.warn("Modified file detected: {}", relativePath);
|
||||||
modified.set(true);
|
modified.set(true);
|
||||||
}
|
}
|
||||||
} catch (IOException e) {
|
} catch (IOException e) {
|
||||||
logger.info("Failed to hash file: {}", path, e);
|
logger.warn("Failed to hash file: {}", path, e);
|
||||||
modified.set(true); // Fail safe
|
modified.set(true); // Fail safe
|
||||||
}
|
}
|
||||||
});
|
});
|
||||||
@ -147,7 +171,7 @@ public class TemplateIntegrityConfig {
|
|||||||
for (Map.Entry<String, Boolean> entry : foundFiles.entrySet()) {
|
for (Map.Entry<String, Boolean> entry : foundFiles.entrySet()) {
|
||||||
if (!entry.getValue()) {
|
if (!entry.getValue()) {
|
||||||
// File was in reference but not found
|
// File was in reference but not found
|
||||||
logger.info("Missing file detected: {}", entry.getKey());
|
logger.warn("Missing file detected: {}", entry.getKey());
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -157,7 +181,38 @@ public class TemplateIntegrityConfig {
|
|||||||
}
|
}
|
||||||
|
|
||||||
private String computeFileHash(Path filePath) throws IOException {
|
private String computeFileHash(Path filePath) throws IOException {
|
||||||
Checksum checksum = new CRC32(); // Much faster than MD5 or SHA
|
// For text files like HTML, normalize content before hashing
|
||||||
|
String extension = getFileExtension(filePath.toString()).toLowerCase();
|
||||||
|
if (normalizeLineEndings && isTextFile(extension)) {
|
||||||
|
return computeNormalizedTextFileHash(filePath, extension);
|
||||||
|
} else {
|
||||||
|
// Binary files use direct CRC32
|
||||||
|
return computeBinaryFileHash(filePath);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
private String computeNormalizedTextFileHash(Path filePath, String extension) throws IOException {
|
||||||
|
byte[] content = Files.readAllBytes(filePath);
|
||||||
|
String text = new String(content, StandardCharsets.UTF_8);
|
||||||
|
|
||||||
|
// Normalize line endings to LF
|
||||||
|
text = text.replace("\r\n", "\n");
|
||||||
|
|
||||||
|
// Additional HTML-specific normalization if needed
|
||||||
|
if (extension.equals("html") || extension.equals("htm")) {
|
||||||
|
// Optional: normalize whitespace between HTML tags
|
||||||
|
// text = text.replaceAll(">\\s+<", "><");
|
||||||
|
}
|
||||||
|
|
||||||
|
byte[] normalizedBytes = text.getBytes(StandardCharsets.UTF_8);
|
||||||
|
|
||||||
|
Checksum checksum = new CRC32();
|
||||||
|
checksum.update(normalizedBytes, 0, normalizedBytes.length);
|
||||||
|
return Long.toHexString(checksum.getValue());
|
||||||
|
}
|
||||||
|
|
||||||
|
private String computeBinaryFileHash(Path filePath) throws IOException {
|
||||||
|
Checksum checksum = new CRC32();
|
||||||
|
|
||||||
try (InputStream is = Files.newInputStream(filePath)) {
|
try (InputStream is = Files.newInputStream(filePath)) {
|
||||||
byte[] buffer = new byte[BUFFER_SIZE];
|
byte[] buffer = new byte[BUFFER_SIZE];
|
||||||
@ -169,4 +224,21 @@ public class TemplateIntegrityConfig {
|
|||||||
|
|
||||||
return Long.toHexString(checksum.getValue());
|
return Long.toHexString(checksum.getValue());
|
||||||
}
|
}
|
||||||
|
|
||||||
|
private String getFileExtension(String filename) {
|
||||||
|
int lastDot = filename.lastIndexOf('.');
|
||||||
|
if (lastDot == -1 || lastDot == filename.length() - 1) {
|
||||||
|
return "";
|
||||||
|
}
|
||||||
|
return filename.substring(lastDot + 1);
|
||||||
|
}
|
||||||
|
|
||||||
|
private boolean isTextFile(String extension) {
|
||||||
|
// List of common text file extensions
|
||||||
|
return extension.equals("html") || extension.equals("htm") ||
|
||||||
|
extension.equals("css") || extension.equals("js") ||
|
||||||
|
extension.equals("txt") || extension.equals("md") ||
|
||||||
|
extension.equals("xml") || extension.equals("json") ||
|
||||||
|
extension.equals("csv") || extension.equals("properties");
|
||||||
|
}
|
||||||
}
|
}
|
||||||
@ -1086,8 +1086,6 @@
|
|||||||
"static/site.webmanifest": "3021430456"
|
"static/site.webmanifest": "3021430456"
|
||||||
,
|
,
|
||||||
"static/sun.svg": "1486406585"
|
"static/sun.svg": "1486406585"
|
||||||
,
|
|
||||||
"templates/about.html": "3988973309"
|
|
||||||
,
|
,
|
||||||
"templates/account.html": "3385103374"
|
"templates/account.html": "3385103374"
|
||||||
,
|
,
|
||||||
|
|||||||
@ -1,21 +0,0 @@
|
|||||||
<!DOCTYPE html>
|
|
||||||
<html th:lang="${#locale.language}" th:dir="#{language.direction}" th:data-language="${#locale.toString()}" xmlns:th="https://www.thymeleaf.org">
|
|
||||||
<head>
|
|
||||||
<th:block th:insert="~{fragments/common :: head(title='<3')}"></th:block>
|
|
||||||
</head>
|
|
||||||
|
|
||||||
<body>
|
|
||||||
<div id="page-container">
|
|
||||||
<div id="content-wrap">
|
|
||||||
<th:block th:insert="~{fragments/navbar.html :: navbar}"></th:block>
|
|
||||||
<br><br>
|
|
||||||
<div class="container">
|
|
||||||
<div class="row justify-content-center">
|
|
||||||
<div class="col-md-6 bg-card"></div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<th:block th:insert="~{fragments/footer.html :: footer}"></th:block>
|
|
||||||
</div>
|
|
||||||
</body>
|
|
||||||
</html>
|
|
||||||
Loading…
x
Reference in New Issue
Block a user