From mboxrd@z Thu Jan 1 00:00:00 1970 From: Stefan Schantl To: development@lists.ipfire.org Subject: [PATCH 5/5] ids-functions.pl: Use libarchive to extract archives Date: Sat, 30 Mar 2024 12:35:30 +0100 Message-ID: <20240330113530.1710702-5-stefan.schantl@ipfire.org> In-Reply-To: <20240330113530.1710702-1-stefan.schantl@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============1386727385526747161==" List-Id: --===============1386727385526747161== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable This gives us a lot of benefits: * Speed up the extraction process * More supported archive types due the power of libarchive * Support of passphrase protected archives It also fixes a problem with non extracted files next to a zero sized file inside an archive. Fixes #13632. Signed-off-by: Stefan Schantl --- config/cfgroot/ids-functions.pl | 56 +++++++++++---------------------- 1 file changed, 18 insertions(+), 38 deletions(-) diff --git a/config/cfgroot/ids-functions.pl b/config/cfgroot/ids-functions.pl index c29a5151f..3eb883aa9 100644 --- a/config/cfgroot/ids-functions.pl +++ b/config/cfgroot/ids-functions.pl @@ -30,7 +30,7 @@ require "${General::swroot}/network-functions.pl"; require "${General::swroot}/suricata/ruleset-sources"; =20 # Load perl module to deal with Archives. -use Archive::Tar; +use Archive::Peek::Libarchive; =20 # Load perl module to deal with files and path. use File::Basename; @@ -515,9 +515,6 @@ sub downloadruleset ($) { sub extractruleset ($) { my ($provider) =3D @_; =20 - # Disable chown functionality when uncompressing files. - $Archive::Tar::CHOWN =3D "0"; - # Get full path and downloaded rulesfile for the given provider. my $tarball =3D &_get_dl_rulesfile($provider); =20 @@ -547,13 +544,11 @@ sub extractruleset ($) { =20 } elsif ( $type eq "archive") { # Initialize the tar module. - my $tar =3D Archive::Tar->new($tarball); - - # Get the filelist inside the tarball. - my @packed_files =3D $tar->list_files; + my $tar =3D Archive::Peek::Libarchive->new(filename =3D> $tarball); =20 - # Loop through the filelist. - foreach my $packed_file (@packed_files) { + # Loop through the archive + $tar->iterate( sub { + my ($packed_file, $content) =3D @_; my $destination; =20 # Splitt the packed file into chunks. @@ -572,13 +567,13 @@ sub extractruleset ($) { # Handle rules files. } elsif ($file =3D~ m/\.rules$/) { # Skip rule files which are not located in the rules directory or archiv= e root. - next unless(($packed_file =3D~ /^rules\//) || ($packed_file =3D~ /^$prov= ider-rules\//) || ($packed_file !~ /\//)); + return unless(($packed_file =3D~ /^rules\//) || ($packed_file =3D~ /^$pr= ovider-rules\//) || ($packed_file !~ /\//)); =20 # Skip deleted.rules. # # Mostly they have been taken out for correctness or performance reasons= and therfore # it is not a great idea to enable any of them. - next if($file =3D~ m/deleted.rules$/); + return if($file =3D~ m/deleted.rules$/); =20 my $rulesfilename; =20 @@ -615,39 +610,24 @@ sub extractruleset ($) { $destination =3D "$tmp_rules_directory/$rulesfilename"; } else { # Skip all other files. - next; + return; } =20 # Check if the destination file exists. unless(-e "$destination") { - # Extract the file to the temporary directory. - $tar->extract_file("$packed_file", "$destination"); + # Open filehandle to write the content to a new file. + open(FILE, ">", "$destination") or die "Could not open $destination. $!\= n"; } else { - # Generate temporary file name, located in the temporary rules directory= and a suffix of ".tmp". - my $tmp =3D File::Temp->new( SUFFIX =3D> ".tmp", DIR =3D> "$tmp_rules_di= rectory", UNLINK =3D> 0 ); - my $tmpfile =3D $tmp->filename(); - - # Extract the file to the new temporary file name. - $tar->extract_file("$packed_file", "$tmpfile"); - - # Open the the existing file. - open(DESTFILE, ">>", "$destination") or die "Could not open $destination= . $!\n"; - open(TMPFILE, "<", "$tmpfile") or die "Could not open $tmpfile. $!\n"; - - # Loop through the content of the temporary file. - while () { - # Append the content line by line to the destination file. - print DESTFILE "$_"; - } + # Open filehandle to append the content to the existing file. + open(FILE, ">>", "$destination") or die "Could not open $destination. $!= \n"; + } =20 - # Close the file handles. - close(TMPFILE); - close(DESTFILE); + # Write the extracted file content to the filehandle. + print FILE "$content" if ($content); =20 - # Remove the temporary file. - unlink("$tmpfile"); - } - } + # Close the file handle. + close(FILE); + }); } } =20 --=20 2.39.2 --===============1386727385526747161==--