security-and-privacy/mat2
security-and-privacy
/
mat2
mirror of
1
0
Fork 0
Code Releases Activity
503 Commits 1 Branch 26 Tags 12 MiB
Commit Graph

190 Commits

Author SHA1 Message Date
jvoisin a517f8d36e Please pylint 2020-11-30 18:52:07 +01:00
jvoisin 61dce89fbd Raise a ValueError explicitly 2020-11-30 18:52:07 +01:00
jvoisin 148bcbba52 Bump coverage 2020-11-13 17:27:23 +01:00
jvoisin b3def8b5de Mount /etc/alternatives inside bubblewrap 
This is now required by ffmpeg
 2020-11-13 17:18:20 +01:00
jvoisin 77dde8a049 Please pylint 2020-11-13 12:09:25 +01:00
Romain Vigier 1b361ec27e
Don't set a default value when retrieving Xmlns key for SVG metadata 2020-11-12 22:46:14 +01:00
jvoisin f638168033 Better handling of malformed pdf 2020-11-06 16:05:24 +01:00
jvoisin b84f73c5c3 Handle multiple namespaces in MSOffice's content types 2020-11-06 15:29:42 +01:00
jvoisin 96e639dfd3 Fix a regexp for xsls files 
This should increase a bit the compability with Excel files
 2020-11-06 15:26:30 +01:00
jvoisin 46b3ae1672 Fix a crash affecting some mp3 files 2020-07-22 15:47:35 +02:00
jvoisin d8b68ef68e Improve a bit Microsoft word support 2020-05-17 16:53:36 +02:00
jvoisin c8dc020dc5 Improve xlsx support 2020-04-06 20:47:32 +02:00
jvoisin 599909a760 Improve xlsx support 2020-04-02 20:58:10 +02:00
jvoisin d7a03d907b Vastly improve ppt compatibility 2020-03-08 14:06:27 +01:00
jvoisin a23dc001cd Improve compatibility with MS Office of cleaned ppt 2020-03-07 14:34:07 +01:00
jvoisin f93df85d03 Improve a bit ppt support 2020-03-07 05:22:36 -08:00
jvoisin e5b1068ed6 Improve a bit the support of ppt files 2020-03-07 12:49:45 +01:00
tguinot 56d2c4aa5f Add which pathfinding for executables 2020-02-11 17:23:11 +01:00
jvoisin 5270071b94 Remove a couple of residual metadata in pdf 
This commit takes care of removing residual metadata
added by mat2 during the cleaning of pdf.
 2020-02-08 17:00:37 +01:00
jvoisin ee704db2ff Add support for wav files 2020-01-01 19:47:46 +01:00
jvoisin 693408f1a6 Please mypy 
Mypy doesn't like some annotation in web.py,
this commits aims at pleasing it.
 2019-12-29 15:20:48 +01:00
Ivy Fay b2efffdaa4 sandbox: stop mounting new filesystem on /tmp 
Mounting new, empty filesystem on /tmp makes impossible to use mat2 for manipulating files stored there. Especially it breaks running tests while creating package and using /tmp as temporary builddir which is common setup in Arch Linux:
https://aur.archlinux.org/packages/mat2/#comment-721221
 2019-12-18 02:23:43 -08:00
jvoisin 7465cedee7 Handle tiff images with a .tif extension 2019-12-16 14:55:35 -08:00
jvoisin f5aef1b391 Improve the reliability of Exiftool-base parsers 2019-12-15 09:04:51 -08:00
jvoisin 2e3496d3d4 Improve the reliability of Gdk-based parsers 2019-12-15 07:05:53 -08:00
jvoisin be24c681ff Improve the reliability of PNG parsing 2019-12-15 06:57:32 -08:00
jvoisin efa525c102 Improve the robustness of the HTML parser 2019-12-15 06:50:54 -08:00
jvoisin f67cd9d7dc Improve the robustness of the CSS parser 2019-12-15 06:44:21 -08:00
jvoisin e4114af3b5 Improve a bit ppt support 2019-11-30 11:38:22 +01:00
jvoisin d56f83bed1 Improve a bit odt handling 2019-11-30 10:25:24 +01:00
georg 697cb36b81 This is mat2, not MAT2 
Closes #131
 2019-11-30 01:14:41 -08:00
jvoisin df1eb98a40 Please the new version of pylint 2019-11-26 22:12:56 +01:00
jvoisin 655c19d17d Improve a bit the support for ppt files 2019-10-17 23:02:17 +02:00
jvoisin 5f0b3beb46 Add a way to disable the sandbox 
Due to bubblewrap's pickiness, mat2 can now be run
without a sandbox, even if bubblewrap is installed.
 2019-10-12 16:13:49 -07:00
jvoisin 3cef7fe7fc Refactor tests 2019-10-12 13:32:04 -07:00
jvoisin 12489bb682 Remove a useless `\` 2019-10-12 21:36:28 +02:00
jvoisin bb903ec309 Remove useless parenthesis 2019-10-12 21:36:19 +02:00
jvoisin 4483c06f19 Replace abstractstaticmethod with abstractmethod 
Apparently, abstractstaticmethod is deprecated
since python3.3.
 2019-10-12 21:28:27 +02:00
madaidan 58773088ac Mount a new tmpfs on /tmp and drop all capabilities 
This mounts a new tmpfs on /tmp so any files residing there would be hidden
from the sandbox. Many programs store some files in there that might be useful
to an attacker.  It also drops all capabilities incase it is ever run with
extra capabilities for whatever reason.
 2019-10-05 15:21:40 +02:00
jvoisin 3714553185 Fix bubblewrap 
On some machines (like mine), `/proc` has to be mounted.  Also, since
sandboxing with bubblewrap is best effort and assumes that an attacker doesn't
have control outside of the file to clean, it's safe to __try__ to enable some
bubblewrap features, and to silently fail otherwise.
 2019-09-21 14:14:39 +02:00
jvoisin 1678d37856 Mark a comment as FP 2019-09-01 19:01:33 +02:00
jvoisin 397a18b0cc Add support for ppm 2019-09-01 09:28:46 -07:00
jvoisin 0170f0e37e Improve a bit the comments in the code 
This is related to the previous commit
 2019-09-01 13:52:02 +02:00
jvoisin 0cf0541ad9 Remove nsid fields from MSOffice documents 
nsids are random identifiers, usually used to ease merging
between documents, and can trivially be used for fingerprinting.
 2019-09-01 13:52:02 +02:00
jvoisin 0c75cd15dc Remove a mypy workaround to bump coverage back to 100% 2019-07-22 23:28:51 +02:00
jvoisin 5280b6c2b3 Add a test for svg namespace 2019-07-22 23:21:06 +02:00
georg 8bb2826f7a CI: Add job to run codespell, a spell checking software 2019-07-22 13:31:40 -07:00
jvoisin 5c33b290ae Fix mypy 2019-07-20 16:05:55 +02:00
jvoisin dc5603eb1d Please mypy 2019-07-13 23:25:44 +02:00
jvoisin 4999209f9c Add support for svg 2019-07-13 21:26:05 +02:00