From c53817859a0e46820a0a92bbd0697805f7e65445 Mon Sep 17 00:00:00 2001 From: Ozzie Isaacs Date: Sun, 6 Mar 2022 16:02:01 +0100 Subject: [PATCH] Version update Updated testresult --- SECURITY.md | 2 + cps/constants.py | 2 +- test/Calibre-Web TestSummary_Linux.html | 1222 +++++++++++++++++------ 3 files changed, 901 insertions(+), 325 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index 262e66e2a..26ce3c555 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -32,6 +32,8 @@ To receive fixes for security vulnerabilities it is required to always upgrade t | V 0.6.16 | JavaScript could get executed on authors page. Thanks to @alicaz || | V 0.6.16 | Localhost can no longer be used to upload covers. Thanks to @scara31 || | V 0.6.16 | Another case where public shelfs could be created without permission is prevented. Thanks to @nhiephon || +| V 0.6.17 | The SSRF Protection can no longer be bypassed via an HTTP redirect. Thanks to @416e6e61 || +| V 0.6.17 | The SSRF Protection can no longer be bypassed via 0.0.0.0 and it's ipv6 equivalent. Thanks to @r0hanSH || ## Staement regarding Log4j (CVE-2021-44228 and related) diff --git a/cps/constants.py b/cps/constants.py index f90031258..a96f614be 100644 --- a/cps/constants.py +++ b/cps/constants.py @@ -154,7 +154,7 @@ def selected_roles(dictionary): BookMeta = namedtuple('BookMeta', 'file_path, extension, title, author, cover, description, tags, series, ' 'series_id, languages, publisher') -STABLE_VERSION = {'version': '0.6.17 Beta'} +STABLE_VERSION = {'version': '0.6.17'} NIGHTLY_VERSION = dict() NIGHTLY_VERSION[0] = '$Format:%H$' diff --git a/test/Calibre-Web TestSummary_Linux.html b/test/Calibre-Web TestSummary_Linux.html index c569a45dd..5daf8267c 100644 --- a/test/Calibre-Web TestSummary_Linux.html +++ b/test/Calibre-Web TestSummary_Linux.html @@ -37,20 +37,20 @@

Calibre-Web Tests

-

Start Time: 2022-02-28 21:38:15

+

Start Time: 2022-03-02 20:56:18

-

Stop Time: 2022-03-01 01:36:56

+

Stop Time: 2022-03-03 01:48:44

-

Duration: 3h 14 min

+

Duration: 4h 5 min

@@ -1351,12 +1351,12 @@

Calibre-Web Tests

- + TestEditAuthorsGdrive 6 - 5 + 6 + 0 0 - 1 0 Detail @@ -1410,31 +1410,11 @@

Calibre-Web Tests

- +
TestEditAuthorsGdrive - test_rename_capital_on_upload
- -
- ERROR -
- - - - + PASS @@ -1641,12 +1621,12 @@

Calibre-Web Tests

- + TestEditBooksOnGdrive 20 - 15 + 17 3 - 2 + 0 0 Detail @@ -1664,31 +1644,11 @@

Calibre-Web Tests

- +
TestEditBooksOnGdrive - test_edit_author
- -
- ERROR -
- - - - + PASS @@ -1810,31 +1770,11 @@

Calibre-Web Tests

- +
TestEditBooksOnGdrive - test_edit_title
- -
- ERROR -
- - - - + PASS @@ -1927,7 +1867,7 @@

Calibre-Web Tests

Traceback (most recent call last):
   File "/home/ozzie/Development/calibre-web-test/test/test_edit_ebooks_gdrive.py", line 947, in test_watch_metadata
     self.assertNotIn('series', book)
-AssertionError: 'series' unexpectedly found in {'id': 5, 'reader': [], 'title': 'testbook', 'author': ['John Döe'], 'rating': 0, 'languages': ['English'], 'identifier': [], 'cover': '/cover/5?edit=cd72c8b1-57d4-4162-a993-661f44e62822', 'tag': [], 'publisher': ['Randomhäus'], 'pubdate': 'Jan 19, 2017', 'comment': 'Lorem ipsum dolor sit amet, consectetuer adipiscing elit.Aenean commodo ligula eget dolor.Aenean massa.Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus.Donec quam felis, ultricies nec, pellentesque eu, pretium quis, sem.Nulla consequat massa quis enim.Donec pede justo, fringilla vel, aliquet nec, vulputate', 'add_shelf': [], 'del_shelf': [], 'edit_enable': True, 'kindle': None, 'kindlebtn': None, 'download': ['EPUB (6.7 kB)'], 'read': False, 'archived': False, 'series_all': 'Book 1 of test', 'series_index': '1', 'series': 'test', 'cust_columns': []}
+AssertionError: 'series' unexpectedly found in {'id': 5, 'reader': [], 'title': 'testbook', 'author': ['John Döe'], 'rating': 0, 'languages': ['English'], 'identifier': [], 'cover': '/cover/5?edit=22ded0fa-26b4-429d-81fc-bc75707c4e4c', 'tag': [], 'publisher': ['Randomhäus'], 'pubdate': 'Jan 19, 2017', 'comment': 'Lorem ipsum dolor sit amet, consectetuer adipiscing elit.Aenean commodo ligula eget dolor.Aenean massa.Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus.Donec quam felis, ultricies nec, pellentesque eu, pretium quis, sem.Nulla consequat massa quis enim.Donec pede justo, fringilla vel, aliquet nec, vulputate', 'add_shelf': [], 'del_shelf': [], 'edit_enable': True, 'kindle': None, 'kindlebtn': None, 'download': ['EPUB (6.7 kB)'], 'read': False, 'archived': False, 'series_all': 'Book 1 of test', 'series_index': '1', 'series': 'test', 'cust_columns': []}
@@ -2004,11 +1944,11 @@

Calibre-Web Tests

- + TestSSL 7 - 6 - 1 + 7 + 0 0 0 @@ -2036,31 +1976,11 @@

Calibre-Web Tests

- +
TestSSL - test_SSL_logging_email
- -
- FAIL -
- - - - + PASS @@ -3754,275 +3674,929 @@

Calibre-Web Tests

- - _ErrorHolder - 6 + + TestUploadEPubs + 2 + 2 0 0 - 6 0 - Detail + Detail - + -
setUpClass (test_upload_epubs)
+
TestUploadEPubs - test_upload_epub_duplicate
- -
- ERROR -
- - - + PASS + + + + + + +
TestUploadEPubs - test_upload_epub_lang
+ PASS + + + + TestUserList + 18 + 18 + 0 + 0 + 0 + + Detail + + + + - + -
setUpClass (test_user_list)
+
TestUserList - test_edit_user_email
- -
- ERROR -
- - - + PASS + + + + + + +
TestUserList - test_list_visibility
+ PASS - + -
setUpClass (test_user_load)
+
TestUserList - test_user_list_admin_role
- -
- ERROR -
- - - + PASS + + + + + + +
TestUserList - test_user_list_check_sort
+ PASS - + -
setUpClass (test_user_template)
+
TestUserList - test_user_list_denied_tags
- -
- ERROR -
- - - + PASS + + + + + + +
TestUserList - test_user_list_download_role
+ PASS - + -
setUpClass (test_visiblilitys)
+
TestUserList - test_user_list_edit_button
- -
- ERROR -
- - - + PASS + + + + + + +
TestUserList - test_user_list_edit_email
+ PASS - + -
setUpClass (test_zz_helper)
+
TestUserList - test_user_list_edit_kindle
- -
- ERROR -
- - - + PASS + + + + + + +
TestUserList - test_user_list_edit_language
+ + PASS + + + + + + +
TestUserList - test_user_list_edit_locale
+ + PASS + + + + + + +
TestUserList - test_user_list_edit_name
+ + PASS + + + + + + +
TestUserList - test_user_list_edit_visiblility
+ + PASS + + + + + + +
TestUserList - test_user_list_guest_edit
+ PASS + + + + + + +
TestUserList - test_user_list_remove_admin
+ + PASS + + + + + + +
TestUserList - test_user_list_requests
+ + PASS + + + + + + +
TestUserList - test_user_list_search
+ + PASS + + + + + + +
TestUserList - test_user_list_sort
+ + PASS + + + + + + + TestUserLoad + 1 + 1 + 0 + 0 + 0 + + Detail + + + + + + + +
TestUserLoad - test_user_change_vis
+ + PASS + + + + + + + TestUserTemplate + 21 + 21 + 0 + 0 + 0 + + Detail + + + + + + + +
TestUserTemplate - test_allow_column_restriction
+ + PASS + + + + + + +
TestUserTemplate - test_allow_tag_restriction
+ + PASS + + + + + + +
TestUserTemplate - test_archived_format_template
+ + PASS + + + + + + +
TestUserTemplate - test_author_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_best_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_category_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_deny_column_restriction
+ + PASS + + + + + + +
TestUserTemplate - test_deny_tag_restriction
+ + PASS + + + + + + +
TestUserTemplate - test_detail_random_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_download_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_format_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_hot_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_language_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_limit_book_languages
+ + PASS + + + + + + +
TestUserTemplate - test_list_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_publisher_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_random_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_read_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_recent_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_series_user_template
+ + PASS + + + + + + +
TestUserTemplate - test_ui_language_settings
+ + PASS + + + + + + + TestCalibreWebVisibilitys + 34 + 34 + 0 + 0 + 0 + + Detail + + + + + + + +
TestCalibreWebVisibilitys - test_about
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_SMTP_Settings
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_add_user
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_password
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_archived
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_authors
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_category
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_file_formats
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_hot
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_language
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_publisher
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_random
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_rated
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_rating
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_read
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_admin_change_visibility_series
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_allow_columns
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_allow_tags
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_archive_books
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_authors_max_settings
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_change_title
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_checked_logged_in
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_hide_custom_column
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_link_column_to_read_status
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_random_books_available
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_request_link_column_to_read_status
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_restrict_columns
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_restrict_tags
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_save_views_recent
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_search_functions
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_search_order
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_search_string
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_user_email_available
+ + PASS + + + + + + +
TestCalibreWebVisibilitys - test_user_visibility_sidebar
+ + PASS + + + + + + + TestCalibreHelper + 16 + 16 + 0 + 0 + 0 + + Detail + + + + + + + +
TestCalibreHelper - test_author_sort
+ + PASS + + + + + + +
TestCalibreHelper - test_author_sort_comma
+ + PASS + + + + + + +
TestCalibreHelper - test_author_sort_junior
+ + PASS + + + + + + +
TestCalibreHelper - test_author_sort_oneword
+ + PASS + + + + + + +
TestCalibreHelper - test_author_sort_roman
+ + PASS + + + + + + +
TestCalibreHelper - test_check_Limit_Length
+ + PASS + + + + + + +
TestCalibreHelper - test_check_char_replacement
+ + PASS + + + + + + +
TestCalibreHelper - test_check_chinese_Characters
+ + PASS + + + + + + +
TestCalibreHelper - test_check_deg_eur_replacement
+ + PASS + + + + + + +
TestCalibreHelper - test_check_doubleS
+ + PASS + + + + + + +
TestCalibreHelper - test_check_finish_Dot
+ + PASS + + + + + + +
TestCalibreHelper - test_check_high23
+ + PASS + + + + + + +
TestCalibreHelper - test_check_umlauts
+ + PASS + + + + + + +
TestCalibreHelper - test_random_password
+ + PASS + + + + + + +
TestCalibreHelper - test_split_authors
+ + PASS + + + + + + +
TestCalibreHelper - test_whitespaces
+ + PASS Total - 318 - 298 - 4 - 9 + 404 + 394 + 3 + 0 7   @@ -4183,7 +4757,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestCliGdrivedb @@ -4213,7 +4787,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestEbookConvertCalibreGDrive @@ -4243,7 +4817,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestEbookConvertGDriveKepubify @@ -4285,7 +4859,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestEditAuthorsGdrive @@ -4321,7 +4895,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestEditBooksOnGdrive @@ -4363,7 +4937,7 @@

google-api-python-client - 2.38.0 + 2.39.0 TestSetupGdrive @@ -4453,7 +5027,7 @@