GitHub/Anki
1
0
Fork 0
mirror of https://github.com/ankitects/anki.git synced 2025-11-13 16:17:13 -05:00
Code Issues Projects Releases Packages 1 Wiki Activity Actions
Anki/pylib/anki/media.py
Damien Elmes f3acf5fe59 Ensure media files are passed relative to the media folder (#4041) 
We were (partially) doing this for MpvManager, but not for
Windows' SimpleMpvPlayer. By passing a media file starting
with a special scheme, a malicious actor could have caused a file to
be written to the filesystem on Windows.

Thanks once again to Michael Lappas for the report.

(cherry picked from commit 96ff27d1fb)
2025-06-01 14:10:23 +07:00

251 lines
8.8 KiB
Python
Raw Blame History

# Copyright: Ankitects Pty Ltd and contributors
# License: GNU AGPL, version 3 or later; http://www.gnu.org/licenses/agpl.html
from __future__ import annotations
import os
import pprint
import re
import sys
import time
from collections.abc import Callable, Sequence
from anki import media_pb2
from anki._legacy import DeprecatedNamesMixin, deprecated_keywords
from anki.consts import *
from anki.latex import render_latex, render_latex_returning_errors
from anki.models import NotetypeId
from anki.sound import SoundOrVideoTag
from anki.template import av_tags_to_native
from anki.utils import int_time
def media_paths_from_col_path(col_path: str) -> tuple[str, str]:
media_folder = re.sub(r"(?i)\.(anki2)$", ".media", col_path)
media_db = f"{media_folder}.db2"
return (media_folder, media_db)
CheckMediaResponse = media_pb2.CheckMediaResponse
class MediaManager(DeprecatedNamesMixin):
sound_regexps = [r"(?i)(\[sound:(?P<fname>[^]]+)\])"]
html_media_regexps = [
# src element quoted case
r"(?i)(<(?:img|audio|source)\b[^>]* src=(?P<str>[\"'])(?P<fname>[^>]+?)(?P=str)[^>]*>)",
# unquoted case
r"(?i)(<(?:img|audio|source)\b[^>]* src=(?!['\"])(?P<fname>[^ >]+)[^>]*?>)",
# src element quoted case
r"(?i)(<object\b[^>]* data=(?P<str>[\"'])(?P<fname>[^>]+?)(?P=str)[^>]*>)",
# unquoted case
r"(?i)(<object\b[^>]* data=(?!['\"])(?P<fname>[^ >]+)[^>]*?>)",
]
regexps = sound_regexps + html_media_regexps
def __init__(self, col: anki.collection.Collection, server: bool) -> None:
self.col = col.weakref()
if server:
return
# media directory
self._dir = media_paths_from_col_path(self.col.path)[0]
if not os.path.exists(self._dir):
os.makedirs(self._dir)
def __repr__(self) -> str:
dict_ = dict(self.__dict__)
del dict_["col"]
return f"{super().__repr__()} {pprint.pformat(dict_, width=300)}"
def dir(self) -> str:
return self._dir
def force_resync(self) -> None:
try:
os.unlink(media_paths_from_col_path(self.col.path)[1])
except FileNotFoundError:
pass
def empty_trash(self) -> None:
self.col._backend.empty_trash()
def restore_trash(self) -> None:
self.col._backend.restore_trash()
def strip_av_tags(self, text: str) -> str:
return self.col._backend.strip_av_tags(text)
def _extract_filenames(self, text: str) -> list[str]:
"This only exists to support a legacy function; do not use."
out = self.col._backend.extract_av_tags(text=text, question_side=True)
return [
x.filename
for x in av_tags_to_native(out.av_tags)
if isinstance(x, SoundOrVideoTag)
]
# File manipulation
##########################################################################
def add_file(self, path: str) -> str:
"""Add basename of path to the media folder, renaming if not unique.
Returns possibly-renamed filename."""
with open(path, "rb") as file:
return self.write_data(os.path.basename(path), file.read())
def write_data(self, desired_fname: str, data: bytes) -> str:
"""Write the file to the media folder, renaming if not unique.
Returns possibly-renamed filename."""
return self.col._backend.add_media_file(desired_name=desired_fname, data=data)
def add_extension_based_on_mime(self, fname: str, content_type: str) -> str:
"Add extension based on mime for common audio and image format if missing extension."
if not os.path.splitext(fname)[1]:
# mimetypes is returning '.jpe' even after calling .init(), so we'll do
# it manually instead
type_map = {
"audio/mpeg": ".mp3",
"audio/ogg": ".oga",
"audio/opus": ".opus",
"audio/wav": ".wav",
"audio/webm": ".weba",
"audio/aac": ".aac",
"image/jpeg": ".jpg",
"image/png": ".png",
"image/svg+xml": ".svg",
"image/webp": ".webp",
"image/avif": ".avif",
}
if content_type in type_map:
fname += type_map[content_type]
return fname
def have(self, fname: str) -> bool:
return os.path.exists(os.path.join(self.dir(), fname))
def trash_files(self, fnames: list[str]) -> None:
"Move provided files to the trash."
self.col._backend.trash_media_files(fnames)
# String manipulation
##########################################################################
@deprecated_keywords(includeRemote="include_remote")
def files_in_str(
self, mid: NotetypeId, string: str, include_remote: bool = False
) -> list[str]:
files = []
model = self.col.models.get(mid)
# handle latex
string = render_latex(string, model, self.col)
# extract filenames
for reg in self.regexps:
for match in re.finditer(reg, string):
fname = match.group("fname")
is_local = not re.match("(https?|ftp)://", fname.lower())
if is_local or include_remote:
files.append(fname)
return files
def extract_static_media_files(self, mid: NotetypeId) -> Sequence[str]:
return self.col._backend.extract_static_media_files(mid)
def transform_names(self, txt: str, func: Callable) -> str:
for reg in self.regexps:
txt = re.sub(reg, func, txt)
return txt
def strip(self, txt: str) -> str:
"Return text with sound and image tags removed."
for reg in self.regexps:
txt = re.sub(reg, "", txt)
return txt
def escape_images(self, string: str, unescape: bool = False) -> str:
"escape_media_filenames alias for compatibility with add-ons."
return self.escape_media_filenames(string, unescape)
def escape_media_filenames(self, string: str, unescape: bool = False) -> str:
"Apply or remove percent encoding to filenames in html tags (audio, image, object)."
if unescape:
return self.col._backend.decode_iri_paths(string)
else:
return self.col._backend.encode_iri_paths(string)
# Checking media
##########################################################################
def check(self) -> CheckMediaResponse:
output = self.col._backend.check_media()
return output
def render_all_latex(
self, progress_cb: Callable[[int], bool] | None = None
) -> tuple[int, str] | None:
"""Render any LaTeX that is missing.
If a progress callback is provided and it returns false, the operation
will be aborted.
If an error is encountered, returns (note_id, error_message)
"""
last_progress = time.time()
checked = 0
for nid, mid, flds in self.col.db.execute(
"select id, mid, flds from notes where flds like '%[%'"
):
model = self.col.models.get(mid)
_html, errors = render_latex_returning_errors(
flds, model, self.col, expand_clozes=True
)
if errors:
return (nid, "\n".join(errors))
checked += 1
elap = time.time() - last_progress
if elap >= 0.3 and progress_cb is not None:
last_progress = int_time()
if not progress_cb(checked):
return None
return None
# Legacy
##########################################################################
_illegalCharReg = re.compile(r'[][><:"/?*^\\|\0\r\n]')
def _legacy_strip_illegal(self, str: str) -> str:
# currently used by ankiconnect
return re.sub(self._illegalCharReg, "", str)
def _legacy_has_illegal(self, string: str) -> bool:
if re.search(self._illegalCharReg, string):
return True
try:
string.encode(sys.getfilesystemencoding())
except UnicodeEncodeError:
return True
return False
def _legacy_find_changes(self) -> None:
pass
@deprecated_keywords(typeHint="type_hint")
def _legacy_write_data(
self, opath: str, data: bytes, type_hint: str | None = None
) -> str:
fname = os.path.basename(opath)
if type_hint:
fname = self.add_extension_based_on_mime(fname, type_hint)
return self.write_data(fname, data)
MediaManager.register_deprecated_attributes(
stripIllegal=(MediaManager._legacy_strip_illegal, None),
hasIllegal=(MediaManager._legacy_has_illegal, None),
findChanges=(MediaManager._legacy_find_changes, None),
writeData=(MediaManager._legacy_write_data, MediaManager.write_data),
)
Reference in a new issue View git blame Copy permalink