Skip to content

Commit

Permalink
Embedded icon only opens a stream for Read (#3969)
Browse files Browse the repository at this point in the history
  • Loading branch information
@donnie-msft
donnie-msft authored Mar 27, 2021
1 parent 44210f1 commit 58795a4
Show file tree
Hide file tree
Showing 2 changed files with 119 additions and 1 deletion.
2 changes: 1 addition & 1 deletion src/NuGet.Clients/NuGet.PackageManagement.VisualStudio/Services/NuGetPackageFileService.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -147,7 +147,7 @@ public NuGetPackageFileService(IServiceBroker serviceBroker, INuGetTelemetryProv
// use GetFullPath to normalize "..", so that zip slip attack cannot allow a user to walk up the file directory
if (Path.GetFullPath(extractedIconPath).StartsWith(dirPath, StringComparison.OrdinalIgnoreCase) && File.Exists(extractedIconPath))
{
Stream fileStream = new FileStream(extractedIconPath, FileMode.Open);
Stream fileStream = new FileStream(extractedIconPath, FileMode.Open, FileAccess.Read, FileShare.ReadWrite);
return fileStream;
}
else
Expand Down
118 changes: 118 additions & 0 deletions ....Tests/NuGet.PackageManagement.VisualStudio.Test/Services/NuGetPackageFileServiceTests.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,124 @@ public async void AddIconToCache_WhenAdded_IsFound()
}
}

[Fact]
public async void GetPackageIconAsync_EmbeddedFromFallbackFolder_HasOnlyReadAccess()
{
// Arrange
using (TestDirectory testDirectory = TestDirectory.Create())
{
string fileContents = "testFileContents";
string filePath = Path.Combine(testDirectory.Path, "testFile.txt");

File.WriteAllText(filePath, fileContents);

var packageFileService = new NuGetPackageFileService(
default(ServiceActivationOptions),
Mock.Of<IServiceBroker>(),
new AuthorizationServiceClient(Mock.Of<IAuthorizationService>()),
_telemetryProvider.Object);
var packageIdentity = new PackageIdentity(nameof(GetPackageIconAsync_EmbeddedFromFallbackFolder_HasOnlyReadAccess), NuGetVersion.Parse("1.0.0"));

// Add a fragment to consider this an embedded icon.
// Note: file:// is required for Uri to parse the Fragment (possibly a Uri bug).
var uri = new Uri("file://" + filePath + "#testFile.txt");

NuGetPackageFileService.AddIconToCache(packageIdentity, uri);


// Act
Stream iconStream = await packageFileService.GetPackageIconAsync(packageIdentity, CancellationToken.None);

// Assert
Assert.NotNull(iconStream);
Assert.True(iconStream.CanRead);
Assert.False(iconStream.CanWrite);

Assert.Equal(fileContents.Length, iconStream.Length);
}
}

[Fact]
public async void GetPackageIconAsync_EmbeddedFromFallbackFolder_DoesNotLockFile()
{
//Arrange
using (TestDirectory testDirectory = TestDirectory.Create())
{
string fileContents = "testFileContents";
string filePath = Path.Combine(testDirectory.Path, "testFile.txt");

File.WriteAllText(filePath, fileContents);

var packageFileService = new NuGetPackageFileService(
default(ServiceActivationOptions),
Mock.Of<IServiceBroker>(),
new AuthorizationServiceClient(Mock.Of<IAuthorizationService>()),
_telemetryProvider.Object);
var packageIdentity = new PackageIdentity(nameof(GetPackageIconAsync_EmbeddedFromFallbackFolder_DoesNotLockFile), NuGetVersion.Parse("1.0.0"));

// Add a fragment to consider this an embedded icon.
// Note: file:// is required for Uri to parse the Fragment (possibly a Uri bug).
var uri = new Uri("file://" + filePath + "#testFile.txt");

NuGetPackageFileService.AddIconToCache(packageIdentity, uri);

FileStream fileNotLocked = File.Open(uri.LocalPath, FileMode.Open, FileAccess.ReadWrite, FileShare.Read);

// Act
// System.IO.IOException would occur in the Act if we're locking the icon file.
Stream iconStream = await packageFileService.GetPackageIconAsync(packageIdentity, CancellationToken.None);
fileNotLocked.Close();
FileStream fileNotLocked2 = File.Open(uri.LocalPath, FileMode.Open, FileAccess.ReadWrite, FileShare.Read);

// Assert
Assert.NotNull(iconStream);
Assert.True(iconStream.CanRead);
Assert.False(iconStream.CanWrite);

Assert.Equal(fileContents.Length, iconStream.Length);
}
}

[Fact]
public async void GetPackageIconAsync_EmbeddedFromFallbackFolder_CanOpenReadOnlyFile()
{
// Arrange
using (TestDirectory testDirectory = TestDirectory.Create())
{
string fileContents = "testFileContents";

string pathAndFileReadOnly = Path.Combine(testDirectory.Path, "testFile.txt");
File.WriteAllText(pathAndFileReadOnly, fileContents);
// Set as a read-only file.
FileInfo fileInfo = new FileInfo(pathAndFileReadOnly);
fileInfo.IsReadOnly = true;

var packageFileService = new NuGetPackageFileService(
default(ServiceActivationOptions),
Mock.Of<IServiceBroker>(),
new AuthorizationServiceClient(Mock.Of<IAuthorizationService>()),
_telemetryProvider.Object);
var packageIdentity = new PackageIdentity(nameof(GetPackageIconAsync_EmbeddedFromFallbackFolder_DoesNotLockFile), NuGetVersion.Parse("1.0.0"));

// Add a fragment to consider this an embedded icon.
// Note: file:// is required for Uri to parse the Fragment (possibly a Uri bug).
var uri = new Uri("file://" + pathAndFileReadOnly + "#testFile.txt");

NuGetPackageFileService.AddIconToCache(packageIdentity, uri);

// Act
// System.UnauthorizedAccessException would occur in the Act if we're requiring Write access on the Read-Only file.
Stream iconStream = await packageFileService.GetPackageIconAsync(packageIdentity, CancellationToken.None);

// Assert
Assert.NotNull(iconStream);
Assert.True(iconStream.CanRead);
Assert.False(iconStream.CanWrite);

Assert.Equal(fileContents.Length, iconStream.Length);
}
}

[Fact]
public async void AddIconToCache_WhenAddedTwice_UsesSecond()
{
Expand Down

0 comments on commit 58795a4

Please sign in to comment.