Qubes/core-admin-client
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
10f15e6669
core-admin-client/qubesadmin
History
Marek Marczykowski-Górecki 10f15e6669
backup/restore: reject uncommon compression filters and improve header validation 
Compression filter named in a backup header is executed in restore
environment (commonly dom0). While this field is properly authenticated,
there may be cases where backup archive comes from less
trusted source, like migrating from potentially compromised
system.

Modify backup header parsing code to add field specific validators.
Whitelist only know crypto, hmac and compression algorithms.

Based on a patch by Jean-Philippe Ouellet <jpo@vt.edu>
Reported-by: Jean-Philippe Ouellet <jpo@vt.edu>
2019-09-10 15:24:15 +02:00
..
backup backup/restore: reject uncommon compression filters and improve header validation 2019-09-10 15:24:15 +02:00
events events: simplify handling qubesd reconnect 2019-02-24 05:32:51 +01:00
tests Merge remote-tracking branch 'origin/pr/98' 2019-08-08 15:35:34 +02:00
tools qvm-device: prevent parser allowing abbreviations 2019-08-24 13:39:37 +02:00
vm Make vm.run_with_args working on python2 2019-03-07 03:05:09 +01:00
__init__.py Choose QubesLocal or QubesRemote based on /etc/qubes-release presence 2017-07-18 01:58:33 +02:00
app.py qubesadmin: define methods list_vmclass and list_devicesclass 2019-08-10 22:08:31 +02:00
base.py Make pylint happy 2019-03-07 03:17:29 +01:00
config.py tools: add qvm-template-postprocess 2017-05-26 01:33:43 +02:00
devices.py qubesadmin: define methods list_vmclass and list_devicesclass 2019-08-10 22:08:31 +02:00
exc.py Remove useless 'pass' to make pylint happy 2018-12-03 23:22:50 +01:00
features.py features: serialize True as '1' 2017-07-28 13:56:05 +02:00
firewall.py Make pylint happy 2019-03-07 03:17:29 +01:00
label.py Rename Mgmt API to Admin API: methods names 2017-05-12 19:36:03 +02:00
log.py Drop log.DBusHandler 2017-10-16 01:33:03 +02:00
qubesadmin qvm-device: handle 'list-device-classes' and 'list-classes' 2019-08-24 13:39:36 +02:00
spinner.py qubesadmin/spinner: fix licence 2017-06-08 08:12:58 +02:00
storage.py doc: fix rst syntax in documentation, including docstrings 2018-12-08 23:53:55 +01:00
tags.py tags support 2017-06-20 01:34:16 +02:00
utils.py Make pylint happy 2019-03-07 03:17:29 +01:00