1berry/fdroidserver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add timeout argument to requests.(get,post)

Browse Source
This commit is contained in:
Jochen Sprickerhof 2022-09-05 17:15:15 +02:00
parent cf0100cf11
commit c89a9f0e8b
No known key found for this signature in database
GPG Key ID: 5BFFDCC258E69433
11 changed files with 23 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
fdroidserver/common.py
View File

@ -1331,7 +1331,7 @@ class vcs_gitsvn(vcs):
# git-svn sucks at certificate validation, this throws useful errors: # git-svn sucks at certificate validation, this throws useful errors:
try: try:
import requests import requests
r = requests.head(remote) r = requests.head(remote, timeout=300)
r.raise_for_status() r.raise_for_status()
except Exception as e: except Exception as e:
raise VCSException('SVN certificate pre-validation failed: ' + str(e)) from e raise VCSException('SVN certificate pre-validation failed: ' + str(e)) from e

10
fdroidserver/deploy.py
View File

@ -506,7 +506,7 @@ def upload_apk_to_android_observatory(path):
apkfilename = os.path.basename(path) apkfilename = os.path.basename(path)
r = requests.post('https://androidobservatory.org/', r = requests.post('https://androidobservatory.org/',
data={'q': update.sha256sum(path), 'searchby': 'hash'}, data={'q': update.sha256sum(path), 'searchby': 'hash'},
headers=net.HEADERS) headers=net.HEADERS, timeout=300)
if r.status_code == 200: if r.status_code == 200:
# from now on XPath will be used to retrieve the message in the HTML # from now on XPath will be used to retrieve the message in the HTML
# androidobservatory doesn't have a nice API to talk with # androidobservatory doesn't have a nice API to talk with
@ -534,7 +534,7 @@ def upload_apk_to_android_observatory(path):
r = requests.post('https://androidobservatory.org/upload', r = requests.post('https://androidobservatory.org/upload',
files={'apk': (apkfilename, open(path, 'rb'))}, files={'apk': (apkfilename, open(path, 'rb'))},
headers=net.HEADERS, headers=net.HEADERS,
allow_redirects=False) allow_redirects=False, timeout=300)
def upload_to_virustotal(repo_section, virustotal_apikey): def upload_to_virustotal(repo_section, virustotal_apikey):
@ -586,7 +586,7 @@ def upload_apk_to_virustotal(virustotal_apikey, packageName, apkName, hash,
needs_file_upload = False needs_file_upload = False
while True: while True:
r = requests.get('https://www.virustotal.com/vtapi/v2/file/report?' r = requests.get('https://www.virustotal.com/vtapi/v2/file/report?'
+ urllib.parse.urlencode(data), headers=headers) + urllib.parse.urlencode(data), headers=headers, timeout=300)
if r.status_code == 200: if r.status_code == 200:
response = r.json() response = r.json()
if response['response_code'] == 0: if response['response_code'] == 0:
@ -620,7 +620,7 @@ def upload_apk_to_virustotal(virustotal_apikey, packageName, apkName, hash,
elif size > 32000000: elif size > 32000000:
# VirusTotal API requires fetching a URL to upload bigger files # VirusTotal API requires fetching a URL to upload bigger files
r = requests.get('https://www.virustotal.com/vtapi/v2/file/scan/upload_url?' r = requests.get('https://www.virustotal.com/vtapi/v2/file/scan/upload_url?'
+ urllib.parse.urlencode(data), headers=headers) + urllib.parse.urlencode(data), headers=headers, timeout=300)
if r.status_code == 200: if r.status_code == 200:
upload_url = r.json().get('upload_url') upload_url = r.json().get('upload_url')
elif r.status_code == 403: elif r.status_code == 403:
@ -638,7 +638,7 @@ def upload_apk_to_virustotal(virustotal_apikey, packageName, apkName, hash,
files = { files = {
'file': (apkName, open(repofilename, 'rb')) 'file': (apkName, open(repofilename, 'rb'))
} }
r = requests.post(upload_url, data=data, headers=headers, files=files) r = requests.post(upload_url, data=data, headers=headers, files=files, timeout=300)
logging.debug(_('If this upload fails, try manually uploading to {url}') logging.debug(_('If this upload fails, try manually uploading to {url}')
.format(url=manual_url)) .format(url=manual_url))
r.raise_for_status() r.raise_for_status()

4
fdroidserver/net.py
View File

@ -28,7 +28,9 @@ def download_file(url, local_filename=None, dldir='tmp'):
if local_filename is None: if local_filename is None:
local_filename = os.path.join(dldir, filename) local_filename = os.path.join(dldir, filename)
# the stream=True parameter keeps memory usage low # the stream=True parameter keeps memory usage low
r = requests.get(url, stream=True, allow_redirects=True, headers=HEADERS) r = requests.get(
url, stream=True, allow_redirects=True, headers=HEADERS, timeout=300
)
r.raise_for_status() r.raise_for_status()
with open(local_filename, 'wb') as f: with open(local_filename, 'wb') as f:
for chunk in r.iter_content(chunk_size=1024): for chunk in r.iter_content(chunk_size=1024):

2
fdroidserver/scanner.py
View File

@ -174,7 +174,7 @@ def load_exodus_trackers_signatures():
""" """
signatures = [] signatures = []
exodus_url = "https://reports.exodus-privacy.eu.org/api/trackers" exodus_url = "https://reports.exodus-privacy.eu.org/api/trackers"
r = requests.get(exodus_url) r = requests.get(exodus_url, timeout=300)
data = r.json() data = r.json()
for e in data['trackers']: for e in data['trackers']:
signatures.append( signatures.append(

5
tests/gradle-release-checksums.py
View File

@ -14,7 +14,10 @@ checksums = None
versions = dict() versions = dict()
while not checksums: while not checksums:
r = requests.get('https://gitlab.com/fdroid/gradle-transparency-log/-/raw/master/checksums.json') r = requests.get(
'https://gitlab.com/fdroid/gradle-transparency-log/-/raw/master/checksums.json',
timeout=300,
)
if r.status_code == 200: if r.status_code == 200:
checksums = r.json() checksums = r.json()

2
tests/import_subcommand.TestCase
View File

@ -45,7 +45,7 @@ class ImportTest(unittest.TestCase):
fdroidserver.common.config = config fdroidserver.common.config = config
url = 'https://gitlab.com/fdroid/ci-test-app' url = 'https://gitlab.com/fdroid/ci-test-app'
r = requests.head(url) r = requests.head(url, timeout=300)
if r.status_code != 200: if r.status_code != 200:
print("ERROR", url, 'unreachable (', r.status_code, ')') print("ERROR", url, 'unreachable (', r.status_code, ')')
print('Skipping ImportTest!') print('Skipping ImportTest!')

3
tests/ndk-release-checksums.py
View File

@ -15,7 +15,8 @@ versions = dict()
while not checksums: while not checksums:
r = requests.get( r = requests.get(
'https://gitlab.com/fdroid/android-sdk-transparency-log/-/raw/master/checksums.json' 'https://gitlab.com/fdroid/android-sdk-transparency-log/-/raw/master/checksums.json',
timeout=300,
) )
if r.status_code == 200: if r.status_code == 200:
checksums = r.json() checksums = r.json()

2
tests/net.TestCase
View File

@ -35,7 +35,7 @@ class NetTest(unittest.TestCase):
@patch('requests.get') @patch('requests.get')
def test_download_file_url_parsing(self, requests_get): def test_download_file_url_parsing(self, requests_get):
def _get(url, stream, allow_redirects, headers): # pylint: disable=W0613 def _get(url, stream, allow_redirects, headers, timeout): # pylint: disable=W0613
return MagicMock() return MagicMock()
requests_get.side_effect = _get requests_get.side_effect = _get

2
tests/nightly.TestCase
View File

@ -33,7 +33,7 @@ class NightlyTest(unittest.TestCase):
]: ]:
url = nightly.get_repo_base_url(clone_url, repo_git_base) url = nightly.get_repo_base_url(clone_url, repo_git_base)
self.assertEqual(result, url) self.assertEqual(result, url)
r = requests.head(os.path.join(url, 'repo/index-v1.jar')) r = requests.head(os.path.join(url, 'repo/index-v1.jar'), timeout=300)
# gitlab.com often returns 403 Forbidden from their cloudflare restrictions # gitlab.com often returns 403 Forbidden from their cloudflare restrictions
self.assertTrue(r.status_code in (200, 403), 'should not be a redirect') self.assertTrue(r.status_code in (200, 403), 'should not be a redirect')

2
tests/openssl-version-check-test.py
View File

@ -13,7 +13,7 @@ import requests
versions = [ versions = [
] ]
r = requests.get('https://www.openssl.org/news/changelog.html') r = requests.get('https://www.openssl.org/news/changelog.html', timeout=300)
safe = set() safe = set()
bad = set() bad = set()

4
tests/scanner.TestCase
View File

@ -428,7 +428,9 @@ class Test_load_exodus_trackers_signatures(unittest.TestCase):
"fdroidserver.scanner._exodus_compile_signatures", self.compilesig_func "fdroidserver.scanner._exodus_compile_signatures", self.compilesig_func
): ):
result_sigs, result_regex = fdroidserver.scanner.load_exodus_trackers_signatures() result_sigs, result_regex = fdroidserver.scanner.load_exodus_trackers_signatures()
self.requests_func.assert_called_once_with("https://reports.exodus-privacy.eu.org/api/trackers") self.requests_func.assert_called_once_with(
"https://reports.exodus-privacy.eu.org/api/trackers", timeout=300
)
self.assertEqual(len(result_sigs), 2) self.assertEqual(len(result_sigs), 2)
self.assertListEqual([1, 2], sorted([x.id for x in result_sigs])) self.assertListEqual([1, 2], sorted([x.id for x in result_sigs]))