brew/Library/Homebrew/cask/quarantine.rb

# typed: false
# frozen_string_literal: true

require "development_tools"
require "cask/exceptions"

module Cask
  # Helper module for quarantining files.
  #
  # @api private
  module Quarantine
    extend T::Sig

    module_function

    QUARANTINE_ATTRIBUTE = "com.apple.quarantine"

    QUARANTINE_SCRIPT = (HOMEBREW_LIBRARY_PATH/"cask/utils/quarantine.swift").freeze

    def swift
      @swift ||= DevelopmentTools.locate("swift")
    end
    private :swift

    def xattr
      @xattr ||= DevelopmentTools.locate("xattr")
    end
    private :xattr

    sig { returns(Symbol) }
    def check_quarantine_support
      odebug "Checking quarantine support"

      if !system_command(xattr, args: ["-h"], print_stderr: false).success?
        odebug "There's no working version of `xattr` on this system."
        :xattr_broken
      elsif swift.nil?
        odebug "Swift is not available on this system."
        :no_swift
      else
        api_check = system_command(swift,
                                   args:         [QUARANTINE_SCRIPT],
                                   print_stderr: false)

        case api_check.exit_status
        when 5
          odebug "This feature requires the macOS 10.10 SDK or higher."
          :no_quarantine
        when 2
          odebug "Quarantine is available."
          :quarantine_available
        else
          odebug "Unknown support status"
          :unknown
        end
      end
    end

    def available?
      @status ||= check_quarantine_support

      @status == :quarantine_available
    end

    def detect(file)
      return if file.nil?

      odebug "Verifying Gatekeeper status of #{file}"

      quarantine_status = !status(file).empty?

      odebug "#{file} is #{quarantine_status ? "quarantined" : "not quarantined"}"

      quarantine_status
    end

    def status(file)
      system_command(xattr,
                     args:         ["-p", QUARANTINE_ATTRIBUTE, file],
                     print_stderr: false).stdout.rstrip
    end

    def toggle_no_translocation_bit(attribute)
      fields = attribute.split(";")

      # Fields: status, epoch, download agent, event ID
      # Let's toggle the app translocation bit, bit 8
      # http://www.openradar.me/radar?id=5022734169931776

      fields[0] = (fields[0].to_i(16) | 0x0100).to_s(16).rjust(4, "0")

      fields.join(";")
    end

    def release!(download_path: nil)
      return unless detect(download_path)

      odebug "Releasing #{download_path} from quarantine"

      quarantiner = system_command(xattr,
                                   args:         [
                                     "-d",
                                     QUARANTINE_ATTRIBUTE,
                                     download_path,
                                   ],
                                   print_stderr: false)

      return if quarantiner.success?

      raise CaskQuarantineReleaseError.new(download_path, quarantiner.stderr)
    end

    def cask!(cask: nil, download_path: nil, action: true)
      return if cask.nil? || download_path.nil?

      return if detect(download_path)

      odebug "Quarantining #{download_path}"

      quarantiner = system_command(swift,
                                   args:         [
                                     QUARANTINE_SCRIPT,
                                     download_path,
                                     cask.url.to_s,
                                     cask.homepage.to_s,
                                   ],
                                   print_stderr: false)

      return if quarantiner.success?

      case quarantiner.exit_status
      when 2
        raise CaskQuarantineError.new(download_path, "Insufficient parameters")
      else
        raise CaskQuarantineError.new(download_path, quarantiner.stderr)
      end
    end

    def propagate(from: nil, to: nil)
      return if from.nil? || to.nil?

      raise CaskError, "#{from} was not quarantined properly." unless detect(from)

      odebug "Propagating quarantine from #{from} to #{to}"

      quarantine_status = toggle_no_translocation_bit(status(from))

      resolved_paths = Pathname.glob(to/"**/*", File::FNM_DOTMATCH).reject(&:symlink?)

      system_command!("/usr/bin/xargs",
                      args:  [
                        "-0",
                        "--",
                        "/bin/chmod",
                        "-h",
                        "u+w",
                      ],
                      input: resolved_paths.join("\0"))

      quarantiner = system_command("/usr/bin/xargs",
                                   args:         [
                                     "-0",
                                     "--",
                                     xattr,
                                     "-w",
                                     QUARANTINE_ATTRIBUTE,
                                     quarantine_status,
                                   ],
                                   input:        resolved_paths.join("\0"),
                                   print_stderr: false)

      return if quarantiner.success?

      raise CaskQuarantinePropagationError.new(to, quarantiner.stderr)
    end
  end
end
Move type annotations into files. 2020-10-10 14:16:11 +02:00			`# typed: false`
Add frozen_string_literal to all files. 2019-04-19 15:38:03 +09:00			`# frozen_string_literal: true`

Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`require "development_tools"`
Move `cask/all` to just `cask`. 2020-08-09 01:34:07 +02:00			`require "cask/exceptions"`

Rename `Hbc` module to `Cask`. 2018-09-06 08:29:14 +02:00			`module Cask`
Document `Quarantine`. 2020-08-24 23:44:12 +02:00			`# Helper module for quarantining files.`
			`#`
			`# @api private`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`module Quarantine`
Add more type signatures. 2020-10-20 12:03:48 +02:00			`extend T::Sig`

Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`module_function`

Add frozen_string_literal to all files. 2019-04-19 15:38:03 +09:00			`QUARANTINE_ATTRIBUTE = "com.apple.quarantine"`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
cask: move cask/lib/hbc/* to cask/*. Fix the load path, requires and some filenames accordingly. 2018-09-03 19:39:07 +01:00			`QUARANTINE_SCRIPT = (HOMEBREW_LIBRARY_PATH/"cask/utils/quarantine.swift").freeze`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
			`def swift`
			`@swift \|\|= DevelopmentTools.locate("swift")`
			`end`
Document `Quarantine`. 2020-08-24 23:44:12 +02:00			`private :swift`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`def xattr`
			`@xattr \|\|= DevelopmentTools.locate("xattr")`
			`end`
Document `Quarantine`. 2020-08-24 23:44:12 +02:00			`private :xattr`
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00
Add more type signatures. 2020-10-20 12:03:48 +02:00			`sig { returns(Symbol) }`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`def check_quarantine_support`
			`odebug "Checking quarantine support"`

refactor the format 2021-07-19 10:02:19 +08:00			`if !system_command(xattr, args: ["-h"], print_stderr: false).success?`
use backticks around suggested input, flags, and binaries 2021-01-24 21:40:41 -05:00			odebug "There's no working version of `xattr` on this system."
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`:xattr_broken`
			`elsif swift.nil?`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`odebug "Swift is not available on this system."`
Cask: constrain quarantine support status Quarantine is available ONLY if the script exits with '2'. It is definitely NOT available if Swift doesn't exist or if it exits with '5' (incompatible SDK). All other cases are from now on treated as unsupported. Also print to standard error only when explictly required (via an exception). 2018-09-14 15:48:16 +00:00			`:no_swift`
			`else`
			`api_check = system_command(swift,`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: [QUARANTINE_SCRIPT],`
Cask: constrain quarantine support status Quarantine is available ONLY if the script exits with '2'. It is definitely NOT available if Swift doesn't exist or if it exits with '5' (incompatible SDK). All other cases are from now on treated as unsupported. Also print to standard error only when explictly required (via an exception). 2018-09-14 15:48:16 +00:00			`print_stderr: false)`

			`case api_check.exit_status`
			`when 5`
			`odebug "This feature requires the macOS 10.10 SDK or higher."`
			`:no_quarantine`
			`when 2`
			`odebug "Quarantine is available."`
			`:quarantine_available`
			`else`
			`odebug "Unknown support status"`
			`:unknown`
			`end`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`end`
			`end`

Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`def available?`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`@status \|\|= check_quarantine_support`

			`@status == :quarantine_available`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`end`

			`def detect(file)`
			`return if file.nil?`

			`odebug "Verifying Gatekeeper status of #{file}"`

			`quarantine_status = !status(file).empty?`

			`odebug "#{file} is #{quarantine_status ? "quarantined" : "not quarantined"}"`

			`quarantine_status`
			`end`

Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`def status(file)`
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`system_command(xattr,`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`args: ["-p", QUARANTINE_ATTRIBUTE, file],`
			`print_stderr: false).stdout.rstrip`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`end`

Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`def toggle_no_translocation_bit(attribute)`
			`fields = attribute.split(";")`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
			`# Fields: status, epoch, download agent, event ID`
			`# Let's toggle the app translocation bit, bit 8`
secure/fix URLs 2018-10-03 21:03:22 +00:00			`# http://www.openradar.me/radar?id=5022734169931776`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
			`fields[0] = (fields[0].to_i(16) \| 0x0100).to_s(16).rjust(4, "0")`

			`fields.join(";")`
			`end`

Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`def release!(download_path: nil)`
			`return unless detect(download_path)`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`odebug "Releasing #{download_path} from quarantine"`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`quarantiner = system_command(xattr,`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: [`
Cask: constrain quarantine support status Quarantine is available ONLY if the script exits with '2'. It is definitely NOT available if Swift doesn't exist or if it exits with '5' (incompatible SDK). All other cases are from now on treated as unsupported. Also print to standard error only when explictly required (via an exception). 2018-09-14 15:48:16 +00:00			`"-d",`
			`QUARANTINE_ATTRIBUTE,`
			`download_path,`
			`],`
			`print_stderr: false)`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`return if quarantiner.success?`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`raise CaskQuarantineReleaseError.new(download_path, quarantiner.stderr)`
			`end`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`def cask!(cask: nil, download_path: nil, action: true)`
			`return if cask.nil? \|\| download_path.nil?`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`return if detect(download_path)`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`odebug "Quarantining #{download_path}"`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`quarantiner = system_command(swift,`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: [`
Cask: constrain quarantine support status Quarantine is available ONLY if the script exits with '2'. It is definitely NOT available if Swift doesn't exist or if it exits with '5' (incompatible SDK). All other cases are from now on treated as unsupported. Also print to standard error only when explictly required (via an exception). 2018-09-14 15:48:16 +00:00			`QUARANTINE_SCRIPT,`
			`download_path,`
			`cask.url.to_s,`
			`cask.homepage.to_s,`
			`],`
			`print_stderr: false)`
Cask: fixes for quarantining Gatekeeper's Path Randomization is currently making automated installation a nightmare. Let's manually toggle the (undocumented) app translocation bit in the `com.apple.quarantine` extended attribute. While we're at it, let's also toss in some fixes: - zip downloads with improper permissions that prevent us from quarantining - quarantine/release/skip downloads as requested by the user 2018-09-07 15:37:31 +00:00
Cask: split quarantine/release functions 2018-09-08 14:00:44 +00:00			`return if quarantiner.success?`

			`case quarantiner.exit_status`
			`when 2`
			`raise CaskQuarantineError.new(download_path, "Insufficient parameters")`
			`else`
			`raise CaskQuarantineError.new(download_path, quarantiner.stderr)`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`end`
			`end`

Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`def propagate(from: nil, to: nil)`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00			`return if from.nil? \|\| to.nil?`

			`raise CaskError, "#{from} was not quarantined properly." unless detect(from)`

			`odebug "Propagating quarantine from #{from} to #{to}"`

Cask: rename no-translocation-bit changer function 2018-09-08 20:20:25 +00:00			`quarantine_status = toggle_no_translocation_bit(status(from))`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00
Skip quarantining symlinks. 2019-10-15 18:32:37 +02:00			`resolved_paths = Pathname.glob(to/"*/", File::FNM_DOTMATCH).reject(&:symlink?)`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00
Cask: set write permissions on symlinks 2018-10-08 01:39:52 +00:00			`system_command!("/usr/bin/xargs",`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: [`
Cask: set write permissions on symlinks 2018-10-08 01:39:52 +00:00			`"-0",`
			`"--",`
			`"/bin/chmod",`
			`"-h",`
			`"u+w",`
			`],`
Cask: simplify chmod +w passes 2018-10-08 18:23:21 +00:00			`input: resolved_paths.join("\0"))`
Cask: set write permissions on symlinks 2018-10-08 01:39:52 +00:00
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`quarantiner = system_command("/usr/bin/xargs",`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`args: [`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`"-0",`
			`"--",`
Cask: check if xattr works before quarantining Fixes Homebrew/homebrew-cask#52128. 2018-09-26 20:55:54 +00:00			`xattr,`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`"-w",`
			`QUARANTINE_ATTRIBUTE,`
			`quarantine_status,`
			`],`
`brew style --fix` fixes. 2018-11-02 17:18:07 +00:00			`input: resolved_paths.join("\0"),`
Cask: check support of quarantine's tools - In some cases (usually old CLT versions) Swift is available but needs an extra guard to use the quarantine API. - xattr's native filesystem recursion is an Apple extension which is not available in Mojave; so let's use xargs. - Insert a quarantine support check in brew cask doctor. Fixes Homebrew/homebrew-cask#51554, and fixes Homebrew/homebrew-cask#51538. 2018-09-04 21:11:29 +00:00			`print_stderr: false)`
Enable quarantining of Homebrew-Cask's downloads 2018-08-31 13:16:11 +00:00
			`return if quarantiner.success?`

			`raise CaskQuarantinePropagationError.new(to, quarantiner.stderr)`
			`end`
			`end`
			`end`