Merge pull request #3989 from pi-hole/release/v5.2.3

Pi-hole Core v5.2.3
Merge pull request #3987 from pi-hole/fix/GitHubAPI
2021-01-15 19:45:55 +00:00 · 2021-01-13 09:38:09 -08:00 · 2021-01-12 13:42:51 -08:00 · 2021-01-07 11:56:52 +01:00 · 2021-01-06 10:59:27 -08:00 · 2020-12-31 12:19:32 +01:00
4 changed files with 44 additions and 17 deletions
--- a/advanced/Scripts/chronometer.sh
+++ b/advanced/Scripts/chronometer.sh
@@ -13,6 +13,7 @@ LC_NUMERIC=C

 # Retrieve stats from FTL engine
 pihole-FTL() {
+    local ftl_port LINE
    ftl_port=$(cat /run/pihole-FTL.port 2> /dev/null)
    if [[ -n "$ftl_port" ]]; then
        # Open connection to FTL
@@ -20,12 +21,13 @@ pihole-FTL() {

        # Test if connection is open
        if { "true" >&3; } 2> /dev/null; then
-            # Send command to FTL
-            echo -e ">$1" >&3
+            # Send command to FTL and ask to quit when finished
+            echo -e ">$1 >quit" >&3

-            # Read input
+            # Read input until we received an empty string and the connection is
+            # closed
            read -r -t 1 LINE <&3
-            until [[ ! $? ]] || [[ "$LINE" == *"EOM"* ]]; do
+            until [[ -z "${LINE}" ]] && [[ ! -t 3 ]]; do
                echo "$LINE" >&1
                read -r -t 1 LINE <&3
            done
--- a/advanced/Scripts/webpage.sh
+++ b/advanced/Scripts/webpage.sh
@@ -486,10 +486,15 @@ SetWebUITheme() {
 }

 CheckUrl(){
-    local regex
+    local regex check_url
    # Check for characters NOT allowed in URLs
-    regex="[^a-zA-Z0-9:/?&%=~._-]"
-    if [[ "${1}" =~ ${regex} ]]; then
+    regex="[^a-zA-Z0-9:/?&%=~._()-;]"
+
+    # this will remove first @ that is after schema and before domain
+    # \1 is optional schema, \2 is userinfo
+    check_url="$( sed -re 's#([^:/]*://)?([^/]+)@#\1\2#' <<< "$1" )"
+
+    if [[ "${check_url}" =~ ${regex} ]]; then
        return 1
    else
        return 0
--- a/install/basic-install.sh
+++ b/install/basic-install.sh
@@ -85,6 +85,8 @@ QUERY_LOGGING=true
 INSTALL_WEB_INTERFACE=true
 PRIVACY_LEVEL=0
 CACHE_SIZE=10000
+# Placeholder variable for the list of available APT packages to be parsed subsequently
+APT_PACKAGE_LIST=""

 if [ -z "${USER}" ]; then
  USER="$(id -un)"
@@ -179,6 +181,19 @@ is_command() {
    command -v "${check_command}" >/dev/null 2>&1
 }

+is_apt_package(){
+    # Checks whether a package, or one that provides it, is available in
+    # the installed APT repository lists.
+    local check_package=$1
+
+    # Obtain the list of available packages once
+    if [[ -z $APT_PACKAGE_LIST ]]; then
+        APT_PACKAGE_LIST=$(apt-cache dumpavail | grep -E '^P(ackage|rovides):')
+    fi
+
+    grep -qE " $check_package(,|$)" <<< "$APT_PACKAGE_LIST"
+}
+
 os_check() {
    if [ "$PIHOLE_SKIP_OS_CHECK" != true ]; then
        # This function gets a list of supported OS versions from a TXT record at versions.pi-hole.net
@@ -303,10 +318,10 @@ if is_command apt-get ; then
    # Update package cache. This is required already here to assure apt-cache calls have package lists available.
    update_package_cache || exit 1
    # Debian 7 doesn't have iproute2 so check if it's available first
-    if apt-cache show iproute2 > /dev/null 2>&1; then
+    if is_apt_package iproute2; then
        iproute_pkg="iproute2"
    # Otherwise, check if iproute is available
-    elif apt-cache show iproute > /dev/null 2>&1; then
+    elif is_apt_package iproute; then
        iproute_pkg="iproute"
    # Else print error and exit
    else
@@ -326,10 +341,10 @@ if is_command apt-get ; then
    # Check if installed php is v 7.0, or newer to determine packages to install
    if [[ "$phpInsNewer" != true ]]; then
        # Prefer the php metapackage if it's there
-        if apt-cache show php > /dev/null 2>&1; then
+        if is_apt_package php; then
            phpVer="php"
        # Else fall back on the php5 package if it's there
-        elif apt-cache show php5 > /dev/null 2>&1; then
+        elif is_apt_package php5; then
            phpVer="php5"
        # Else print error and exit
        else
@@ -341,9 +356,9 @@ if is_command apt-get ; then
        phpVer="php$phpInsMajor.$phpInsMinor"
    fi
    # We also need the correct version for `php-sqlite` (which differs across distros)
-    if apt-cache show "${phpVer}-sqlite3" > /dev/null 2>&1; then
+    if is_apt_package "${phpVer}-sqlite3"; then
        phpSqlite="sqlite3"
-    elif apt-cache show "${phpVer}-sqlite" > /dev/null 2>&1; then
+    elif is_apt_package "${phpVer}-sqlite"; then
        phpSqlite="sqlite"
    else
        printf "  %b Aborting installation: No SQLite PHP module was found in APT repository.\\n" "${CROSS}"
@@ -408,7 +423,7 @@ elif is_command rpm ; then
        SUPPORTED_CENTOS_VERSION=7
        SUPPORTED_CENTOS_PHP_VERSION=7
        # Check current CentOS major release version
-        CURRENT_CENTOS_VERSION=$(grep -oP '(?<= )[0-9]+(?=\.)' /etc/redhat-release)
+        CURRENT_CENTOS_VERSION=$(grep -oP '(?<= )[0-9]+(?=\.?)' /etc/redhat-release)
        # Check if CentOS version is supported
        if [[ $CURRENT_CENTOS_VERSION -lt $SUPPORTED_CENTOS_VERSION ]]; then
            printf "  %b CentOS %s is not supported.\\n" "${CROSS}" "${CURRENT_CENTOS_VERSION}"
@@ -2540,7 +2555,7 @@ FTLcheckUpdate() {
            FTLversion=$(/usr/bin/pihole-FTL tag)
            local FTLlatesttag

-            if ! FTLlatesttag=$(curl -sI https://github.com/pi-hole/FTL/releases/latest | grep --color=never -i Location | awk -F / '{print $NF}' | tr -d '[:cntrl:]'); then
+            if ! FTLlatesttag=$(curl -sI https://github.com/pi-hole/FTL/releases/latest | grep --color=never -i Location: | awk -F / '{print $NF}' | tr -d '[:cntrl:]'); then
                # There was an issue while retrieving the latest version
                printf "  %b Failed to retrieve latest FTL release metadata" "${CROSS}"
                return 3
--- a/gravity.sh
+++ b/gravity.sh
@@ -393,10 +393,15 @@ gravity_DownloadBlocklists() {
    esac

    echo -e "  ${INFO} Target: ${url}"
-    local regex
+    local regex check_url
    # Check for characters NOT allowed in URLs
    regex="[^a-zA-Z0-9:/?&%=~._()-;]"
-    if [[ "${url}" =~ ${regex} ]]; then
+
+    # this will remove first @ that is after schema and before domain
+    # \1 is optional schema, \2 is userinfo
+    check_url="$( sed -re 's#([^:/]*://)?([^/]+)@#\1\2#' <<< "$url" )"
+
+    if [[ "${check_url}" =~ ${regex} ]]; then
        echo -e "  ${CROSS} Invalid Target"
    else
       gravity_DownloadBlocklistFromUrl "${url}" "${cmd_ext}" "${agent}" "${sourceIDs[$i]}" "${saveLocation}" "${target}" "${compression}"
Author	SHA1	Message	Date
Adam Warner	cbc3fbdfe6	Merge pull request #3989 from pi-hole/release/v5.2.3 Pi-hole Core v5.2.3	2021-01-15 19:45:55 +00:00
Dan Schaper	020b6b8064	Merge pull request #3987 from pi-hole/fix/GitHubAPI Use the 'Location:' header only for latest FTL tag API check.	2021-01-13 09:38:09 -08:00
Dan Schaper	523f650157	Use the 'Location:' header only. Signed-off-by: Dan Schaper <dan.schaper@pi-hole.net>	2021-01-12 13:42:51 -08:00
DL6ER	c5ed8f8bed	Merge pull request #3537 from MichaIng/patch-2 Further failsafe check for available APT packages	2021-01-07 11:56:52 +01:00
Dan Schaper	66dfa5fc1e	Merge pull request #3958 from pi-hole/Fix/centos_stream Fix release check for centos stream	2021-01-06 10:59:27 -08:00
DL6ER	1791fe22f6	Merge pull request #3912 from mdujava/basic_auth Fix validation of adlist url	2020-12-31 12:19:32 +01:00
bcambl	a5422dbdf6	fix release check for centos stream fixes #3947 #3953 Signed-off-by: bcambl <blayne@blaynecampbell.com>	2020-12-30 19:45:51 -06:00
DL6ER	7507d533ac	Merge pull request #3954 from pi-hole/fix/chronometer_connection_reset Fix connection mechanism between Chronometer and FTL	2020-12-30 11:13:05 +01:00
DL6ER	e033ee6664	Fix connection mechanism between Chronometer and FTL Signed-off-by: DL6ER <dl6er@dl6er.de>	2020-12-29 10:29:02 +01:00
Matej Dujava	ef0bdf6470	Fix validation of adlist url Already existing regex validation will be used on url after removing @ (in case its in separating userinfo and host). Signed-off-by: Matej Dujava <mdujava@kocurkovo.cz> Fixes: https://github.com/pi-hole/pi-hole/issues/3911 Fixes: `7d19ee1b`: validate blocklist URL before adding to the database (#3237)	2020-12-21 12:50:02 +01:00
MichaIng	eb5661b553	Further failsafe check for available APT packages - "apt-cache show package" succeeds as well if package is listed as (optional) dependency or conflict by another package, hence is not a 100% reliable measure. - There is no command which explicitly checks which package/name can be selected by apt-get for install. An install simulation/dry-run is possible as it was before Pi-hole v5.1, or the whole package cache can be scraped, which is still the less time consuming solution. - Allow to succeed if another package "provides" it, like "php7.3-apcu" provided by "php-apcu" or "awk" provided by "mawk" and "gawk", in which case the non-virtual package is selected automatically by apt-get. For reference: `066b89fa41` Signed-off-by: MichaIng <micha@dietpi.com>	2020-12-18 23:20:24 +01:00