From dd1ef483ef90f35218f5a4a3ea37a624b38ca8da Mon Sep 17 00:00:00 2001
From: Wolfgang Müller
Date: Wed, 26 Mar 2025 17:29:22 +0100
Subject: backend: Handle corrupt zip files

Corrupt zip files would already make hircine throw an error, but
depending on the exact problem it would not report which file (or even
which entry in a zip file) is affected. Use ZipFile.testzip() to catch
common problems and make sure to re-raise any exception within as a
BadZipFile exception. This makes sure to also report decompression
problems that are raised as a zlib.error exception, for example.
---
 tests/scanner/test_scanner.py | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

(limited to 'tests/scanner/test_scanner.py')

diff --git a/tests/scanner/test_scanner.py b/tests/scanner/test_scanner.py
index 6fc6650..141698c 100644
--- a/tests/scanner/test_scanner.py
+++ b/tests/scanner/test_scanner.py
@@ -3,7 +3,7 @@ import os
 import shutil
 from datetime import datetime, timezone
 from pathlib import Path
-from zipfile import ZipFile
+from zipfile import BadZipFile, ZipFile
 
 import pytest
 from conftest import DB
@@ -309,3 +309,19 @@ async def test_scanner_reprocess(archive, data, scanner, capsys):
 
     captured = capsys.readouterr()
     assert captured.out == "[~] archive.zip\n"
+
+
+@pytest.mark.anyio
+async def test_scanner_handles_bad_zip_entry(data, scanner):
+    Path(data("bad/bad_entry.zip")).rename(data("contents/bad_entry.zip"))
+
+    with pytest.raises(BadZipFile):
+        await scanner.scan()
+
+
+@pytest.mark.anyio
+async def test_scanner_handles_bad_zip_compression(data, scanner):
+    Path(data("bad/bad_compression.zip")).rename(data("contents/bad_compression.zip"))
+
+    with pytest.raises(BadZipFile):
+        await scanner.scan()
-- 
cgit v1.2.3-2-gb3c3