mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 1012 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
36406 Commits
430 Branches
Tree: 55bf9e3f71
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '55bf9e3f71'
${ noResults }
nextcloud/lib/private/Installer.php

Installer.php 16KB
Raw Normal View History

moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Fix others
8 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Fix others
8 years ago
Update license headers
8 years ago
Update license headers
9 years ago
Happy new year!
8 years ago
Update license headers
9 years ago
Update license headers
8 years ago
Update license headers
9 years ago
Fix others
8 years ago
Update license headers
9 years ago
Update license headers
8 years ago
update licence headers via script
8 years ago
Update license headers
9 years ago
Update with robin
8 years ago
Fix others
8 years ago
Update license headers
9 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Update license headers
9 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Update license headers
9 years ago
make it possible to update shipped apps via the appstore
10 years ago
Update license headers
9 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Update license headers
9 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Update license headers
9 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Revert "Updating license headers" This reverts commit 6a1a4880f0d556fb090f19a5019fec31916f5c36.
9 years ago
OC_Installer -> \OC\Installer
8 years ago
Use a better error message and point the users to the support channels Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Fixing CodeChecker usage :see_no_evil:
8 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Move to non-static version The static version is used nowhere in the code and just decreases coverage Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
OC_Installer -> \OC\Installer
8 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
don't allow installation of already installed apps - fixes #14004
9 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
don't allow installation of already installed apps - fixes #14004
9 years ago
OC_Installer -> \OC\Installer
8 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
make it possible to update shipped apps via the appstore
10 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Fix more documentation failes Issue #7111
10 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use findAppInDirectories The other function doesn't work if the appstore is disabled Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
make it possible to update shipped apps via the appstore
10 years ago
Remove OC_Appconfig
9 years ago
make it possible to update shipped apps via the appstore
10 years ago
Allow declaration of background jobs in info.xml
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
- isolate include calls in installer.php which prevents local variables to be overwritten - add the app to the autoloader before calling install.php
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
Adding repair steps for install and uninstall - fixes #24306
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
Don't use cached informations for app version When installing an app from the appstore the `\OC_App::getAppVersion` code is triggered twice: - First when the downloader tries to compare the current version to the new version on the appstore to check if there is a newer version. This protects against downgrade attacks and is implemented in `\OC\Installer::downloadApp`. - Second, when the app is actually installed the current version is written to the database. (`\OC\Installer::installApp`) This fails however when the version is actually cached. Because in step 1 the cached version will be set to "0" and then be reused in the second step. While this is probably not the cleanest version I assume this is an approach that is least invasive. Feedback and suggestions welcome :) Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
OC_Installer -> \OC\Installer
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
OC_Installer -> \OC\Installer
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
OC_Installer -> \OC\Installer
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
OC_Installer -> \OC\Installer
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
OC_Installer -> \OC\Installer
8 years ago
make it possible to update shipped apps via the appstore
10 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
display app update error messages - fixes #14611
9 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
add unit test
10 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
add unit test
10 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
add unit test
10 years ago
make it possible to update shipped apps via the appstore
10 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
make it possible to update shipped apps via the appstore
10 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add support for CRL Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add support for CRL Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use correct variable name.
12 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use correct variable name.
12 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Move to non-static version The static version is used nowhere in the code and just decreases coverage Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use correct variable name.
12 years ago
Prevent downgrade attacks for apps We should verify the app versions when installing a new update, otherwise this could result in downgrade attacks when an attacker just copies the old signature. Plus it prevents the case that in case of a bug in the appstore actually an older version gets installed. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Replace with exception instead of boolean return value Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
App installer backend. Not yet attached to the gui
13 years ago
Add tests for installer method Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
make it possible to update shipped apps via the appstore
10 years ago
style fixes
11 years ago
make it possible to update shipped apps via the appstore
10 years ago
style fixes
11 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
style fixes
11 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
don't show update button when appstore is disabled or no writable dir exists
10 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
apps updater is now working
11 years ago
we are getting closer. updating is not working yet.
11 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
style fixes
11 years ago
we are getting closer. updating is not working yet.
11 years ago
style fixes
11 years ago
Remove all occurences of @brief and @returns from PHPDoc * test case added to avoid adding them later
10 years ago
Fix more documentation failes Issue #7111
10 years ago
style fixes
11 years ago
Use new appstore API This change introduces the new appstore API in Nextcloud. Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
OC_Installer -> \OC\Installer
8 years ago
add button for properly uninstalling apps
10 years ago
we are getting closer. updating is not working yet.
11 years ago
add button for properly uninstalling apps
10 years ago
style fixes
11 years ago
we are getting closer. updating is not working yet.
11 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Remove all occurences of @brief and @returns from PHPDoc * test case added to avoid adding them later
10 years ago
Make non-static Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
add button for properly uninstalling apps
10 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Adding repair steps for install and uninstall - fixes #24306
8 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
Adding repair steps for install and uninstall - fixes #24306
8 years ago
add button for properly uninstalling apps
10 years ago
we are getting closer. updating is not working yet.
11 years ago
Adding repair steps for install and uninstall - fixes #24306
8 years ago
we are getting closer. updating is not working yet.
11 years ago
add button for properly uninstalling apps
10 years ago
we are getting closer. updating is not working yet.
11 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
install shipped apps also in "installed apps" page
13 years ago
Remove all occurences of @brief and @returns from PHPDoc * test case added to avoid adding them later
10 years ago
install shipped apps also in "installed apps" page
13 years ago
only install shipped apps on setup that should be enabled by default
12 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
install shipped apps also in "installed apps" page
13 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
OC_Installer -> \OC\Installer
8 years ago
adding space between) and {
12 years ago
an-app-is-identified-by-having-a-info.xml-app.php-should-not-be-mandatory
8 years ago
OC_Installer -> \OC\Installer
8 years ago
work with non existing apps directory. thanks to Antonio for the hint
12 years ago
Only enable apps that are not intentionally disabled
8 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
OC_Installer -> \OC\Installer
8 years ago
Correctly catch the "soft errors" now Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
OC_Installer -> \OC\Installer
8 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
Only enable apps that are not intentionally disabled
8 years ago
work with non existing apps directory. thanks to Antonio for the hint
12 years ago
Correct remote and public, and last occurence of OC::
12 years ago
install shipped apps also in "installed apps" page
13 years ago
close only if exist
12 years ago
install shipped apps also in "installed apps" page
13 years ago
Do not abort with an exception when a default app can not be enabled
8 years ago
install shipped apps also in "installed apps" page
13 years ago
fix installing shipped apps
13 years ago
Fix more documentation failes Issue #7111
10 years ago
fix installing shipped apps
13 years ago
adding space between) and {
12 years ago
fix installing shipped apps
13 years ago
- isolate include calls in installer.php which prevents local variables to be overwritten - add the app to the autoloader before calling install.php
8 years ago
Use a better error message and point the users to the support channels Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
Correctly catch the "soft errors" now Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
Use a better error message and point the users to the support channels Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
fix installing shipped apps
13 years ago
Correctly register autoloading before install.php and loading commands
8 years ago
- isolate include calls in installer.php which prevents local variables to be overwritten - add the app to the autoloader before calling install.php
8 years ago
error handling in case a requested app doesn't exists
10 years ago
Allow declaration of background jobs in info.xml
8 years ago
Replace old config code with usage of proper APIs
8 years ago
Adding repair steps for install and uninstall - fixes #24306
8 years ago
Replace old config code with usage of proper APIs
8 years ago
read ocsid from shipped apps on install
10 years ago
Replace old config code with usage of proper APIs
8 years ago
read ocsid from shipped apps on install
10 years ago
Use correct variable name.
12 years ago
implement php code checker to detect usage of not allowed private APIs - including console command to check local code to be used by developers
9 years ago
adding space between) and {
12 years ago
Replace old config code with usage of proper APIs
8 years ago
also set remote/public paths on installing apps
12 years ago
adding space between) and {
12 years ago
Replace old config code with usage of proper APIs
8 years ago
also set remote/public paths on installing apps
12 years ago
Use correct variable name.
12 years ago
cache app types during install or update
12 years ago
Use correct variable name.
12 years ago
make sure shipped apps also setup their admin settings on a fresh install
8 years ago
register app autoload instead of loading apps
8 years ago
make sure shipped apps also setup their admin settings on a fresh install
8 years ago
Small changes to allow updating main menu dynamically.
12 years ago
fix installing shipped apps
13 years ago
Add a static code checker for evil patterns in apps. Disabled by default for now. We will check for private api calls here later once the public api is in place
12 years ago
some indention fixes
12 years ago
Fix more documentation failes Issue #7111
10 years ago
some indention fixes
12 years ago
integrate code checker in the installer
9 years ago
Add a static code checker for evil patterns in apps. Disabled by default for now. We will check for private api calls here later once the public api is in place
12 years ago
Replace old config code with usage of proper APIs
8 years ago
some indention fixes
12 years ago
Add a static code checker for evil patterns in apps. Disabled by default for now. We will check for private api calls here later once the public api is in place
12 years ago
integrate code checker in the installer
9 years ago
Fixing CodeChecker usage :see_no_evil:
8 years ago
Add app name to the call Regression from 69b063f4c614a46bbe5f0ffcab11ddb08c183f04 Signed-off-by: Joas Schilling <coding@schilljs.com>
7 years ago
integrate code checker in the installer
9 years ago
some indention fixes
12 years ago
- isolate include calls in installer.php which prevents local variables to be overwritten - add the app to the autoloader before calling install.php
8 years ago
Add update support Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
7 years ago
- isolate include calls in installer.php which prevents local variables to be overwritten - add the app to the autoloader before calling install.php
8 years ago
moved app install/remove/update functions to lib/installer.php added OC_APP::getAppInfo() for reading app metadata
13 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552 
  1. <?php

  2. /**

  3.  * @copyright Copyright (c) 2016, ownCloud, Inc.

  4.  * @copyright Copyright (c) 2016, Lukas Reschke <lukas@statuscode.ch>

  5.  *

  6.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>

  7.  * @author Bart Visscher <bartv@thisnet.nl>

  8.  * @author Brice Maron <brice@bmaron.net>

  9.  * @author Christian Weiske <cweiske@cweiske.de>

  10.  * @author Christopher Schäpers <kondou@ts.unde.re>

  11.  * @author Frank Karlitschek <frank@karlitschek.de>

  12.  * @author Georg Ehrke <georg@owncloud.com>

  13.  * @author Jakob Sack <mail@jakobsack.de>

  14.  * @author Joas Schilling <coding@schilljs.com>

  15.  * @author Jörn Friedrich Dreyer <jfd@butonic.de>

  16.  * @author Kamil Domanski <kdomanski@kdemail.net>

  17.  * @author Lukas Reschke <lukas@statuscode.ch>

  18.  * @author michag86 <micha_g@arcor.de>

  19.  * @author Morris Jobke <hey@morrisjobke.de>

  20.  * @author Robin Appelman <robin@icewind.nl>

  21.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  22.  * @author root <root@oc.(none)>

  23.  * @author Thomas Müller <thomas.mueller@tmit.eu>

  24.  * @author Thomas Tanghus <thomas@tanghus.net>

  25.  *

  26.  * @license AGPL-3.0

  27.  *

  28.  * This code is free software: you can redistribute it and/or modify

  29.  * it under the terms of the GNU Affero General Public License, version 3,

  30.  * as published by the Free Software Foundation.

  31.  *

  32.  * This program is distributed in the hope that it will be useful,

  33.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  34.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  35.  * GNU Affero General Public License for more details.

  36.  *

  37.  * You should have received a copy of the GNU Affero General Public License, version 3,

  38.  * along with this program.  If not, see <http://www.gnu.org/licenses/>

  39.  *

  40.  */

  41. 

  42. namespace OC;

  43. 

  44. use Doctrine\DBAL\Exception\TableExistsException;

  45. use OC\App\AppStore\Fetcher\AppFetcher;

  46. use OC\App\CodeChecker\CodeChecker;

  47. use OC\App\CodeChecker\EmptyCheck;

  48. use OC\App\CodeChecker\PrivateCheck;

  49. use OC\Archive\Archive;

  50. use OC\Archive\TAR;

  51. use OC_App;

  52. use OC_DB;

  53. use OC_Helper;

  54. use OCP\Http\Client\IClientService;

  55. use OCP\ILogger;

  56. use OCP\ITempManager;

  57. use phpseclib\File\X509;

  58. 

  59. /**

  60.  * This class provides the functionality needed to install, update and remove apps

  61.  */

  62. class Installer {

  63. 	/** @var AppFetcher */

  64. 	private $appFetcher;

  65. 	/** @var IClientService */

  66. 	private $clientService;

  67. 	/** @var ITempManager */

  68. 	private $tempManager;

  69. 	/** @var ILogger */

  70. 	private $logger;

  71. 

  72. 	/**

  73. 	 * @param AppFetcher $appFetcher

  74. 	 * @param IClientService $clientService

  75. 	 * @param ITempManager $tempManager

  76. 	 * @param ILogger $logger

  77. 	 */

  78. 	public function __construct(AppFetcher $appFetcher,

  79. 								IClientService $clientService,

  80. 								ITempManager $tempManager,

  81. 								ILogger $logger) {

  82. 		$this->appFetcher = $appFetcher;

  83. 		$this->clientService = $clientService;

  84. 		$this->tempManager = $tempManager;

  85. 		$this->logger = $logger;

  86. 	}

  87. 

  88. 	/**

  89. 	 * Installs an app that is located in one of the app folders already

  90. 	 *

  91. 	 * @param string $appId App to install

  92. 	 * @throws \Exception

  93. 	 * @return integer

  94. 	 */

  95. 	public function installApp($appId) {

  96. 		$app = \OC_App::findAppInDirectories($appId);

  97. 		if($app === false) {

  98. 			throw new \Exception('App not found in any app directory');

  99. 		}

  100. 

  101. 		$basedir = $app['path'].'/'.$appId;

  102. 		$info = OC_App::getAppInfo($basedir.'/appinfo/info.xml', true);

  103. 

  104. 		//install the database

  105. 		if(is_file($basedir.'/appinfo/database.xml')) {

  106. 			if (\OC::$server->getAppConfig()->getValue($info['id'], 'installed_version') === null) {

  107. 				OC_DB::createDbFromStructure($basedir.'/appinfo/database.xml');

  108. 			} else {

  109. 				OC_DB::updateDbFromStructure($basedir.'/appinfo/database.xml');

  110. 			}

  111. 		}

  112. 

  113. 		\OC_App::setupBackgroundJobs($info['background-jobs']);

  114. 

  115. 		//run appinfo/install.php

  116. 		if((!isset($data['noinstall']) or $data['noinstall']==false)) {

  117. 			self::includeAppScript($basedir . '/appinfo/install.php');

  118. 		}

  119. 

  120. 		$appData = OC_App::getAppInfo($appId);

  121. 		OC_App::executeRepairSteps($appId, $appData['repair-steps']['install']);

  122. 

  123. 		//set the installed version

  124. 		\OC::$server->getConfig()->setAppValue($info['id'], 'installed_version', OC_App::getAppVersion($info['id'], false));

  125. 		\OC::$server->getConfig()->setAppValue($info['id'], 'enabled', 'no');

  126. 

  127. 		//set remote/public handlers

  128. 		foreach($info['remote'] as $name=>$path) {

  129. 			\OC::$server->getConfig()->setAppValue('core', 'remote_'.$name, $info['id'].'/'.$path);

  130. 		}

  131. 		foreach($info['public'] as $name=>$path) {

  132. 			\OC::$server->getConfig()->setAppValue('core', 'public_'.$name, $info['id'].'/'.$path);

  133. 		}

  134. 

  135. 		OC_App::setAppTypes($info['id']);

  136. 

  137. 		return $info['id'];

  138. 	}

  139. 

  140. 	/**

  141. 	 * @brief checks whether or not an app is installed

  142. 	 * @param string $app app

  143. 	 * @returns bool

  144. 	 *

  145. 	 * Checks whether or not an app is installed, i.e. registered in apps table.

  146. 	 */

  147. 	public static function isInstalled( $app ) {

  148. 		return (\OC::$server->getConfig()->getAppValue($app, "installed_version", null) !== null);

  149. 	}

  150. 

  151. 	/**

  152. 	 * Updates the specified app from the appstore

  153. 	 *

  154. 	 * @param string $appId

  155. 	 * @return bool

  156. 	 */

  157. 	public function updateAppstoreApp($appId) {

  158. 		if(self::isUpdateAvailable($appId, $this->appFetcher)) {

  159. 			try {

  160. 				$this->downloadApp($appId);

  161. 			} catch (\Exception $e) {

  162. 				$this->logger->error($e->getMessage(), ['app' => 'core']);

  163. 				return false;

  164. 			}

  165. 			return OC_App::updateApp($appId);

  166. 		}

  167. 

  168. 		return false;

  169. 	}

  170. 

  171. 	/**

  172. 	 * Downloads an app and puts it into the app directory

  173. 	 *

  174. 	 * @param string $appId

  175. 	 *

  176. 	 * @throws \Exception If the installation was not successful

  177. 	 */

  178. 	public function downloadApp($appId) {

  179. 		$appId = strtolower($appId);

  180. 

  181. 		$apps = $this->appFetcher->get();

  182. 		foreach($apps as $app) {

  183. 			if($app['id'] === $appId) {

  184. 				// Load the certificate

  185. 				$certificate = new X509();

  186. 				$certificate->loadCA(file_get_contents(__DIR__ . '/../../resources/codesigning/root.crt'));

  187. 				$loadedCertificate = $certificate->loadX509($app['certificate']);

  188. 

  189. 				// Verify if the certificate has been revoked

  190. 				$crl = new X509();

  191. 				$crl->loadCA(file_get_contents(__DIR__ . '/../../resources/codesigning/root.crt'));

  192. 				$crl->loadCRL(file_get_contents(__DIR__ . '/../../resources/codesigning/root.crl'));

  193. 				if($crl->validateSignature() !== true) {

  194. 					throw new \Exception('Could not validate CRL signature');

  195. 				}

  196. 				$csn = $loadedCertificate['tbsCertificate']['serialNumber']->toString();

  197. 				$revoked = $crl->getRevoked($csn);

  198. 				if ($revoked !== false) {

  199. 					throw new \Exception(

  200. 						sprintf(

  201. 							'Certificate "%s" has been revoked',

  202. 							$csn

  203. 						)

  204. 					);

  205. 				}

  206. 

  207. 				// Verify if the certificate has been issued by the Nextcloud Code Authority CA

  208. 				if($certificate->validateSignature() !== true) {

  209. 					throw new \Exception(

  210. 						sprintf(

  211. 							'App with id %s has a certificate not issued by a trusted Code Signing Authority',

  212. 							$appId

  213. 						)

  214. 					);

  215. 				}

  216. 

  217. 				// Verify if the certificate is issued for the requested app id

  218. 				$certInfo = openssl_x509_parse($app['certificate']);

  219. 				if(!isset($certInfo['subject']['CN'])) {

  220. 					throw new \Exception(

  221. 						sprintf(

  222. 							'App with id %s has a cert with no CN',

  223. 							$appId

  224. 						)

  225. 					);

  226. 				}

  227. 				if($certInfo['subject']['CN'] !== $appId) {

  228. 					throw new \Exception(

  229. 						sprintf(

  230. 							'App with id %s has a cert issued to %s',

  231. 							$appId,

  232. 							$certInfo['subject']['CN']

  233. 						)

  234. 					);

  235. 				}

  236. 

  237. 				// Download the release

  238. 				$tempFile = $this->tempManager->getTemporaryFile('.tar.gz');

  239. 				$client = $this->clientService->newClient();

  240. 				$client->get($app['releases'][0]['download'], ['save_to' => $tempFile]);

  241. 

  242. 				// Check if the signature actually matches the downloaded content

  243. 				$certificate = openssl_get_publickey($app['certificate']);

  244. 				$verified = (bool)openssl_verify(file_get_contents($tempFile), base64_decode($app['releases'][0]['signature']), $certificate, OPENSSL_ALGO_SHA512);

  245. 				openssl_free_key($certificate);

  246. 

  247. 				if($verified === true) {

  248. 					// Seems to match, let's proceed

  249. 					$extractDir = $this->tempManager->getTemporaryFolder();

  250. 					$archive = new TAR($tempFile);

  251. 

  252. 					if($archive) {

  253. 						$archive->extract($extractDir);

  254. 						$allFiles = scandir($extractDir);

  255. 						$folders = array_diff($allFiles, ['.', '..']);

  256. 						$folders = array_values($folders);

  257. 

  258. 						if(count($folders) > 1) {

  259. 							throw new \Exception(

  260. 								sprintf(

  261. 									'Extracted app %s has more than 1 folder',

  262. 									$appId

  263. 								)

  264. 							);

  265. 						}

  266. 

  267. 						// Check if appinfo/info.xml has the same app ID as well

  268. 						$loadEntities = libxml_disable_entity_loader(false);

  269. 						$xml = simplexml_load_file($extractDir . '/' . $folders[0] . '/appinfo/info.xml');

  270. 						libxml_disable_entity_loader($loadEntities);

  271. 						if((string)$xml->id !== $appId) {

  272. 							throw new \Exception(

  273. 								sprintf(

  274. 									'App for id %s has a wrong app ID in info.xml: %s',

  275. 									$appId,

  276. 									(string)$xml->id

  277. 								)

  278. 							);

  279. 						}

  280. 

  281. 						// Check if the version is lower than before

  282. 						$currentVersion = OC_App::getAppVersion($appId);

  283. 						$newVersion = (string)$xml->version;

  284. 						if(version_compare($currentVersion, $newVersion) === 1) {

  285. 							throw new \Exception(

  286. 								sprintf(

  287. 									'App for id %s has version %s and tried to update to lower version %s',

  288. 									$appId,

  289. 									$currentVersion,

  290. 									$newVersion

  291. 								)

  292. 							);

  293. 						}

  294. 

  295. 						$baseDir = OC_App::getInstallPath() . '/' . $appId;

  296. 						// Remove old app with the ID if existent

  297. 						OC_Helper::rmdirr($baseDir);

  298. 						// Move to app folder

  299. 						if(@mkdir($baseDir)) {

  300. 							$extractDir .= '/' . $folders[0];

  301. 							OC_Helper::copyr($extractDir, $baseDir);

  302. 						}

  303. 						OC_Helper::copyr($extractDir, $baseDir);

  304. 						OC_Helper::rmdirr($extractDir);

  305. 						return;

  306. 					} else {

  307. 						throw new \Exception(

  308. 							sprintf(

  309. 								'Could not extract app with ID %s to %s',

  310. 								$appId,

  311. 								$extractDir

  312. 							)

  313. 						);

  314. 					}

  315. 				} else {

  316. 					// Signature does not match

  317. 					throw new \Exception(

  318. 						sprintf(

  319. 							'App with id %s has invalid signature',

  320. 							$appId

  321. 						)

  322. 					);

  323. 				}

  324. 			}

  325. 		}

  326. 

  327. 		throw new \Exception(

  328. 			sprintf(

  329. 				'Could not download app %s',

  330. 				$appId

  331. 			)

  332. 		);

  333. 	}

  334. 

  335. 	/**

  336. 	 * Check if an update for the app is available

  337. 	 *

  338. 	 * @param string $appId

  339. 	 * @param AppFetcher $appFetcher

  340. 	 * @return string|false false or the version number of the update

  341. 	 */

  342. 	public static function isUpdateAvailable($appId,

  343. 									  AppFetcher $appFetcher) {

  344. 		static $isInstanceReadyForUpdates = null;

  345. 

  346. 		if ($isInstanceReadyForUpdates === null) {

  347. 			$installPath = OC_App::getInstallPath();

  348. 			if ($installPath === false || $installPath === null) {

  349. 				$isInstanceReadyForUpdates = false;

  350. 			} else {

  351. 				$isInstanceReadyForUpdates = true;

  352. 			}

  353. 		}

  354. 

  355. 		if ($isInstanceReadyForUpdates === false) {

  356. 			return false;

  357. 		}

  358. 

  359. 		$apps = $appFetcher->get();

  360. 		foreach($apps as $app) {

  361. 			if($app['id'] === $appId) {

  362. 				$currentVersion = OC_App::getAppVersion($appId);

  363. 				$newestVersion = $app['releases'][0]['version'];

  364. 				if (version_compare($newestVersion, $currentVersion, '>')) {

  365. 					return $newestVersion;

  366. 				} else {

  367. 					return false;

  368. 				}

  369. 			}

  370. 		}

  371. 

  372. 		return false;

  373. 	}

  374. 

  375. 	/**

  376. 	 * Check if app is already downloaded

  377. 	 * @param string $name name of the application to remove

  378. 	 * @return boolean

  379. 	 *

  380. 	 * The function will check if the app is already downloaded in the apps repository

  381. 	 */

  382. 	public function isDownloaded($name) {

  383. 		foreach(\OC::$APPSROOTS as $dir) {

  384. 			$dirToTest  = $dir['path'];

  385. 			$dirToTest .= '/';

  386. 			$dirToTest .= $name;

  387. 			$dirToTest .= '/';

  388. 

  389. 			if (is_dir($dirToTest)) {

  390. 				return true;

  391. 			}

  392. 		}

  393. 

  394. 		return false;

  395. 	}

  396. 

  397. 	/**

  398. 	 * Removes an app

  399. 	 * @param string $appId ID of the application to remove

  400. 	 * @return boolean

  401. 	 *

  402. 	 *

  403. 	 * This function works as follows

  404. 	 *   -# call uninstall repair steps

  405. 	 *   -# removing the files

  406. 	 *

  407. 	 * The function will not delete preferences, tables and the configuration,

  408. 	 * this has to be done by the function oc_app_uninstall().

  409. 	 */

  410. 	public function removeApp($appId) {

  411. 		if($this->isDownloaded( $appId )) {

  412. 			$appDir = OC_App::getInstallPath() . '/' . $appId;

  413. 			OC_Helper::rmdirr($appDir);

  414. 			return true;

  415. 		}else{

  416. 			\OCP\Util::writeLog('core', 'can\'t remove app '.$appId.'. It is not installed.', \OCP\Util::ERROR);

  417. 

  418. 			return false;

  419. 		}

  420. 

  421. 	}

  422. 

  423. 	/**

  424. 	 * Installs shipped apps

  425. 	 *

  426. 	 * This function installs all apps found in the 'apps' directory that should be enabled by default;

  427. 	 * @param bool $softErrors When updating we ignore errors and simply log them, better to have a

  428. 	 *                         working ownCloud at the end instead of an aborted update.

  429. 	 * @return array Array of error messages (appid => Exception)

  430. 	 */

  431. 	public static function installShippedApps($softErrors = false) {

  432. 		$errors = [];

  433. 		foreach(\OC::$APPSROOTS as $app_dir) {

  434. 			if($dir = opendir( $app_dir['path'] )) {

  435. 				while( false !== ( $filename = readdir( $dir ))) {

  436. 					if( substr( $filename, 0, 1 ) != '.' and is_dir($app_dir['path']."/$filename") ) {

  437. 						if( file_exists( $app_dir['path']."/$filename/appinfo/info.xml" )) {

  438. 							if(!Installer::isInstalled($filename)) {

  439. 								$info=OC_App::getAppInfo($filename);

  440. 								$enabled = isset($info['default_enable']);

  441. 								if (($enabled || in_array($filename, \OC::$server->getAppManager()->getAlwaysEnabledApps()))

  442. 									  && \OC::$server->getConfig()->getAppValue($filename, 'enabled') !== 'no') {

  443. 									if ($softErrors) {

  444. 										try {

  445. 											Installer::installShippedApp($filename);

  446. 										} catch (HintException $e) {

  447. 											if ($e->getPrevious() instanceof TableExistsException) {

  448. 												$errors[$filename] = $e;

  449. 												continue;

  450. 											}

  451. 											throw $e;

  452. 										}

  453. 									} else {

  454. 										Installer::installShippedApp($filename);

  455. 									}

  456. 									\OC::$server->getConfig()->setAppValue($filename, 'enabled', 'yes');

  457. 								}

  458. 							}

  459. 						}

  460. 					}

  461. 				}

  462. 				closedir( $dir );

  463. 			}

  464. 		}

  465. 

  466. 		return $errors;

  467. 	}

  468. 

  469. 	/**

  470. 	 * install an app already placed in the app folder

  471. 	 * @param string $app id of the app to install

  472. 	 * @return integer

  473. 	 */

  474. 	public static function installShippedApp($app) {

  475. 		//install the database

  476. 		$appPath = OC_App::getAppPath($app);

  477. 		if(is_file("$appPath/appinfo/database.xml")) {

  478. 			try {

  479. 				OC_DB::createDbFromStructure("$appPath/appinfo/database.xml");

  480. 			} catch (TableExistsException $e) {

  481. 				throw new HintException(

  482. 					'Failed to enable app ' . $app,

  483. 					'Please ask for help via one of our <a href="https://nextcloud.com/support/" target="_blank" rel="noreferrer">support channels</a>.',

  484. 					0, $e

  485. 				);

  486. 			}

  487. 		}

  488. 

  489. 		//run appinfo/install.php

  490. 		\OC_App::registerAutoloading($app, $appPath);

  491. 		self::includeAppScript("$appPath/appinfo/install.php");

  492. 

  493. 		$info = OC_App::getAppInfo($app);

  494. 		if (is_null($info)) {

  495. 			return false;

  496. 		}

  497. 		\OC_App::setupBackgroundJobs($info['background-jobs']);

  498. 

  499. 		OC_App::executeRepairSteps($app, $info['repair-steps']['install']);

  500. 

  501. 		$config = \OC::$server->getConfig();

  502. 

  503. 		$config->setAppValue($app, 'installed_version', OC_App::getAppVersion($app));

  504. 		if (array_key_exists('ocsid', $info)) {

  505. 			$config->setAppValue($app, 'ocsid', $info['ocsid']);

  506. 		}

  507. 

  508. 		//set remote/public handlers

  509. 		foreach($info['remote'] as $name=>$path) {

  510. 			$config->setAppValue('core', 'remote_'.$name, $app.'/'.$path);

  511. 		}

  512. 		foreach($info['public'] as $name=>$path) {

  513. 			$config->setAppValue('core', 'public_'.$name, $app.'/'.$path);

  514. 		}

  515. 

  516. 		OC_App::setAppTypes($info['id']);

  517. 

  518. 		if(isset($info['settings']) && is_array($info['settings'])) {

  519. 			// requires that autoloading was registered for the app,

  520. 			// as happens before running the install.php some lines above

  521. 			\OC::$server->getSettingsManager()->setupSettings($info['settings']);

  522. 		}

  523. 

  524. 		return $info['id'];

  525. 	}

  526. 

  527. 	/**

  528. 	 * check the code of an app with some static code checks

  529. 	 * @param string $folder the folder of the app to check

  530. 	 * @return boolean true for app is o.k. and false for app is not o.k.

  531. 	 */

  532. 	public static function checkCode($folder) {

  533. 		// is the code checker enabled?

  534. 		if(!\OC::$server->getConfig()->getSystemValue('appcodechecker', false)) {

  535. 			return true;

  536. 		}

  537. 

  538. 		$codeChecker = new CodeChecker(new PrivateCheck(new EmptyCheck()));

  539. 		$errors = $codeChecker->analyseFolder(basename($folder), $folder);

  540. 

  541. 		return empty($errors);

  542. 	}

  543. 

  544. 	/**

  545. 	 * @param string $script

  546. 	 */

  547. 	private static function includeAppScript($script) {

  548. 		if ( file_exists($script) ){

  549. 			include $script;

  550. 		}

  551. 	}

  552. }