Implement git:// protocol check

e8af2d38 · f-a · Mikolaj · cc65775f · e8af2d38 · e8af2d38
Commit e8af2d38 authored 6 months ago by f-a Committed by Mikolaj 6 months ago
--- a/Cabal/src/Distribution/PackageDescription/Check.hs
+++ b/Cabal/src/Distribution/PackageDescription/Check.hs
@@ -684,6 +684,7 @@ checkSourceRepos rs = do
        checkP
          (isNothing repoLocation_)
          (PackageDistInexcusable MissingLocation)
+        checkGitProtocol repoLocation_
        checkP
          ( repoType_ == Just (KnownRepoType CVS)
              && isNothing repoModule_
@@ -722,6 +723,17 @@ checkMissingVcsInfo rs =
    repoTypeDirname Monotone = ["_MTN"]
    repoTypeDirname Pijul = [".pijul"]

+-- git:// lacks TLS or other encryption, see
+-- https://git-scm.com/book/en/v2/Git-on-the-Server-The-Protocols#_the_cons_4
+checkGitProtocol
+  :: Monad m
+  => Maybe String -- Repository location
+  -> CheckM m ()
+checkGitProtocol mloc =
+  checkP
+    (fmap (isPrefixOf "git://") mloc == Just True)
+    (PackageBuildWarning GitProtocol)
+
 -- ------------------------------------------------------------
 -- Package and distribution checks
 -- ------------------------------------------------------------

--- a/Cabal/src/Distribution/PackageDescription/Check/Warning.hs
+++ b/Cabal/src/Distribution/PackageDescription/Check/Warning.hs
@@ -193,6 +193,7 @@ data CheckExplanation
  | UnrecognisedSourceRepo String
  | MissingType
  | MissingLocation
+  | GitProtocol
  | MissingModule
  | MissingTag
  | SubdirRelPath
@@ -355,6 +356,7 @@ data CheckExplanationID
  | CIUnrecognisedSourceRepo
  | CIMissingType
  | CIMissingLocation
+  | CIGitProtocol
  | CIMissingModule
  | CIMissingTag
  | CISubdirRelPath
@@ -496,6 +498,7 @@ checkExplanationId (NoLicenseFile{}) = CINoLicenseFile
 checkExplanationId (UnrecognisedSourceRepo{}) = CIUnrecognisedSourceRepo
 checkExplanationId (MissingType{}) = CIMissingType
 checkExplanationId (MissingLocation{}) = CIMissingLocation
+checkExplanationId (GitProtocol{}) = CIGitProtocol
 checkExplanationId (MissingModule{}) = CIMissingModule
 checkExplanationId (MissingTag{}) = CIMissingTag
 checkExplanationId (SubdirRelPath{}) = CISubdirRelPath
@@ -642,6 +645,7 @@ ppCheckExplanationId CINoLicenseFile = "no-license-file"
 ppCheckExplanationId CIUnrecognisedSourceRepo = "unrecognised-repo-type"
 ppCheckExplanationId CIMissingType = "repo-no-type"
 ppCheckExplanationId CIMissingLocation = "repo-no-location"
+ppCheckExplanationId CIGitProtocol = "git-protocol"
 ppCheckExplanationId CIMissingModule = "repo-no-module"
 ppCheckExplanationId CIMissingTag = "repo-no-tag"
 ppCheckExplanationId CISubdirRelPath = "repo-relative-dir"
@@ -964,6 +968,9 @@ ppExplanation MissingType =
  "The source-repository 'type' is a required field."
 ppExplanation MissingLocation =
  "The source-repository 'location' is a required field."
+ppExplanation GitProtocol =
+  "Cloning over git:// might lead to an arbitrary code execution "
+    ++ "vulnerability. Use https:// or ssh:// instead."
 ppExplanation MissingModule =
  "For a CVS source-repository, the 'module' is a required field."
 ppExplanation MissingTag =