suspicious-source: whitelist font source formats. Thanks to Nicolas

Spalinger for the patch (LP: #365147).
2025-04-16 12:51:08 +00:00 · 2010-08-10 23:17:13 +02:00 · 2010-08-10 23:17:13 +02:00 · 1c90e2a4f6
commit 1c90e2a4f6
parent 1aab6931a6
2 changed files with 27 additions and 3 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -7,7 +7,11 @@ ubuntu-dev-tools (0.102) UNRELEASED; urgency=low
  [ Kees Cook ]
  * mk-sbuild: update examples to include "-A".

- -- Kees Cook <kees@ubuntu.com>  Tue, 10 Aug 2010 11:46:32 -0700
+  [ Benjamin Drung ]
+  * suspicious-source: whitelist font source formats. Thanks to Nicolas
+    Spalinger for the patch (LP: #365147).
+
+ -- Benjamin Drung <bdrung@ubuntu.com>  Tue, 10 Aug 2010 23:13:05 +0200

 ubuntu-dev-tools (0.101) unstable; urgency=low

--- a/24
+++ b/24
@ -20,11 +20,17 @@ import os
 import sys

 default_whitelisted_mimetypes = [
-	"application/xml",
+	"application/vnd.font-fontforge-sfd", # font source: fontforge
 	"application/x-elc",
 	"application/x-empty",
+	"application/x-font-otf",             # font object and source
+	"application/x-font-ttf",             # font object and source
+	"application/x-font-woff",            # font object and source
 	"application/x-symlink",
+	"application/xml",
 	"audio/x-wav",
+	"font/otf",                           # font object and source
+	"font/ttf",                           # font object and source
 	"image/gif",
 	"image/jpeg",
 	"image/png",
@ -58,7 +64,21 @@ default_whitelisted_mimetypes = [
 ]

 default_whitelisted_extensions = [
-	".rsa"
+	".fea",   # font source format: afdko (Adobe font development kit for OpenType)
+	".fog",   # font source format: Fontographer
+	".g2n",   # font source format: fontforge
+	".gdh",   # font source format: Graphite (headers)
+	".gdl",   # font source format: Graphite
+	".glyph", # font source format: cross-toolkit UFO
+	".plate", # font source format: Spiro
+	".rsa",
+	".sfd",   # font source format: fontforge
+	".sfdir", # font source format: fontforge
+	".ttx",   # font source format: fonttools
+	".ufo",   # font source format: cross-toolkit UFO
+	".vfb"    # font source format: FontLab
+	".vtp",   # font source format: OpenType (VOLT)
+	".xgf",   # font source format: Xgridfit
 ]

 def main(whitelisted_mimetypes, whitelisted_extensions, directory, verbose=False):