mvt/mvt/android/download_apks.py

# Mobile Verification Toolkit (MVT)
# Copyright (c) 2021 The MVT Project Authors.
# Use of this software is governed by the MVT License 1.1 that can be found at
#   https://license.mvt.re/1.1/

import json
import logging
import os

from tqdm import tqdm

from mvt.common.module import InsufficientPrivileges

from .modules.adb.base import AndroidExtraction
from .modules.adb.packages import Packages

log = logging.getLogger(__name__)


# TODO: Would be better to replace tqdm with rich.progress to reduce
#       the number of dependencies. Need to investigate whether
#       it's possible to have a similar callback system.
class PullProgress(tqdm):
    """PullProgress is a tqdm update system for APK downloads."""

    def update_to(self, file_name, current, total):
        if total is not None:
            self.total = total
        self.update(current - self.n)


class DownloadAPKs(AndroidExtraction):
    """DownloadAPKs is the main class operating the download of APKs
    from the device.


    """

    def __init__(self, output_folder=None, all_apks=False, log=None,
                 packages=None):
        """Initialize module.
        :param output_folder: Path to the folder where data should be stored
        :param all_apks: Boolean indicating whether to download all packages
                         or filter known-goods
        :param packages: Provided list of packages, typically for JSON checks
        """
        super().__init__(output_folder=output_folder, log=log)

        self.packages = packages
        self.all_apks = all_apks
        self.output_folder_apk = None

    @classmethod
    def from_json(cls, json_path):
        """Initialize this class from an existing apks.json file.

        :param json_path: Path to the apks.json file to parse.

        """
        with open(json_path, "r") as handle:
            packages = json.load(handle)
            return cls(packages=packages)

    def pull_package_file(self, package_name, remote_path):
        """Pull files related to specific package from the device.

        :param package_name: Name of the package to download
        :param remote_path: Path to the file to download
        :returns: Path to the local copy

        """
        log.info("Downloading %s ...", remote_path)

        file_name = ""
        if "==/" in remote_path:
            file_name = "_" + remote_path.split("==/")[1].replace(".apk", "")

        local_path = os.path.join(self.output_folder_apk,
                                  f"{package_name}{file_name}.apk")
        name_counter = 0
        while True:
            if not os.path.exists(local_path):
                break

            name_counter += 1
            local_path = os.path.join(self.output_folder_apk,
                                      f"{package_name}{file_name}_{name_counter}.apk")

        try:
            with PullProgress(unit='B', unit_divisor=1024, unit_scale=True,
                              miniters=1) as pp:
                self._adb_download(remote_path, local_path,
                                   progress_callback=pp.update_to)
        except InsufficientPrivileges:
            log.warn("Unable to pull package file from %s: insufficient privileges, it might be a system app",
                     remote_path)
            self._adb_reconnect()
            return None
        except Exception as e:
            log.exception("Failed to pull package file from %s: %s",
                          remote_path, e)
            self._adb_reconnect()
            return None

        return local_path

    def get_packages(self):
        """Use the Packages adb module to retrieve the list of packages.
        We reuse the same extraction logic to then download the APKs.


        """
        self.log.info("Retrieving list of installed packages...")

        m = Packages()
        m.log = self.log
        m.run()

        self.packages = m.results

    def pull_packages(self):
        """Download all files of all selected packages from the device."""
        log.info("Starting extraction of installed APKs at folder %s", self.output_folder)

        if not os.path.exists(self.output_folder):
            os.mkdir(self.output_folder)

        # If the user provided the flag --all-apks we select all packages.
        packages_selection = []
        if self.all_apks:
            log.info("Selected all %d available packages", len(self.packages))
            packages_selection = self.packages
        else:
            # Otherwise we loop through the packages and get only those that
            # are not marked as system.
            for package in self.packages:
                if not package.get("system", False):
                    packages_selection.append(package)

            log.info("Selected only %d packages which are not marked as system",
                     len(packages_selection))

        if len(packages_selection) == 0:
            log.info("No packages were selected for download")
            return

        log.info("Downloading packages from device. This might take some time ...")

        self.output_folder_apk = os.path.join(self.output_folder, "apks")
        if not os.path.exists(self.output_folder_apk):
            os.mkdir(self.output_folder_apk)

        counter = 0
        for package in packages_selection:
            counter += 1

            log.info("[%d/%d] Package: %s", counter, len(packages_selection),
                     package["package_name"])

            # Sometimes the package path contains multiple lines for multiple apks.
            # We loop through each line and download each file.
            for package_file in package["files"]:
                device_path = package_file["path"]
                local_path = self.pull_package_file(package["package_name"],
                                                    device_path)
                if not local_path:
                    continue

                package_file["local_path"] = local_path

        log.info("Download of selected packages completed")

    def save_json(self):
        """Save the results to the package.json file."""
        json_path = os.path.join(self.output_folder, "apks.json")
        with open(json_path, "w") as handle:
            json.dump(self.packages, handle, indent=4)

    def run(self):
        """Run all steps of fetch-apk."""
        self.get_packages()
        self._adb_connect()
        self.pull_packages()
        self.save_json()
        self._adb_disconnect()
First commit 2021-07-16 06:05:01 +00:00			`# Mobile Verification Toolkit (MVT)`
More explicit copyright and licensing notes 2021-08-01 19:11:08 +00:00			`# Copyright (c) 2021 The MVT Project Authors.`
			`# Use of this software is governed by the MVT License 1.1 that can be found at`
			`# https://license.mvt.re/1.1/`
First commit 2021-07-16 06:05:01 +00:00
			`import json`
			`import logging`
Sorted imports 2021-07-30 09:40:09 +00:00			`import os`

First commit 2021-07-16 06:05:01 +00:00			`from tqdm import tqdm`

Catching errors more gracefully when downloading apks (closes: #158) 2021-08-17 11:06:31 +00:00			`from mvt.common.module import InsufficientPrivileges`
Sorted imports 2021-07-30 09:40:09 +00:00
First commit 2021-07-16 06:05:01 +00:00			`from .modules.adb.base import AndroidExtraction`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`from .modules.adb.packages import Packages`
First commit 2021-07-16 06:05:01 +00:00
			`log = logging.getLogger(__name__)`

Standardized code with flake8 2021-11-19 14:27:51 +00:00
First commit 2021-07-16 06:05:01 +00:00			`# TODO: Would be better to replace tqdm with rich.progress to reduce`
			`# the number of dependencies. Need to investigate whether`
Fixes typos 2021-07-22 21:21:31 +00:00			`# it's possible to have a similar callback system.`
First commit 2021-07-16 06:05:01 +00:00			`class PullProgress(tqdm):`
			`"""PullProgress is a tqdm update system for APK downloads."""`

			`def update_to(self, file_name, current, total):`
			`if total is not None:`
			`self.total = total`
			`self.update(current - self.n)`


			`class DownloadAPKs(AndroidExtraction):`
			`"""DownloadAPKs is the main class operating the download of APKs`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00			`from the device.`


			`"""`
First commit 2021-07-16 06:05:01 +00:00
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`def __init__(self, output_folder=None, all_apks=False, log=None,`
			`packages=None):`
Fixed download_apks init 2021-08-12 16:25:57 +00:00			`"""Initialize module.`
			`:param output_folder: Path to the folder where data should be stored`
			`:param all_apks: Boolean indicating whether to download all packages`
			`or filter known-goods`
			`:param packages: Provided list of packages, typically for JSON checks`
			`"""`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`super().__init__(output_folder=output_folder, log=log)`
First commit 2021-07-16 06:05:01 +00:00
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`self.packages = packages`
First commit 2021-07-16 06:05:01 +00:00			`self.all_apks = all_apks`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`self.output_folder_apk = None`
First commit 2021-07-16 06:05:01 +00:00
			`@classmethod`
			`def from_json(cls, json_path):`
Renamed packages.json to apks.json to avoid conflicts with other module 2021-08-17 11:26:26 +00:00			`"""Initialize this class from an existing apks.json file.`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00
Renamed packages.json to apks.json to avoid conflicts with other module 2021-08-17 11:26:26 +00:00			`:param json_path: Path to the apks.json file to parse.`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00
First commit 2021-07-16 06:05:01 +00:00			`"""`
			`with open(json_path, "r") as handle:`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`packages = json.load(handle)`
First commit 2021-07-16 06:05:01 +00:00			`return cls(packages=packages)`

			`def pull_package_file(self, package_name, remote_path):`
			`"""Pull files related to specific package from the device.`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00
First commit 2021-07-16 06:05:01 +00:00			`:param package_name: Name of the package to download`
			`:param remote_path: Path to the file to download`
			`:returns: Path to the local copy`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00
First commit 2021-07-16 06:05:01 +00:00			`"""`
			`log.info("Downloading %s ...", remote_path)`

			`file_name = ""`
			`if "==/" in remote_path:`
			`file_name = "_" + remote_path.split("==/")[1].replace(".apk", "")`

			`local_path = os.path.join(self.output_folder_apk,`
			`f"{package_name}{file_name}.apk")`
			`name_counter = 0`
			`while True:`
			`if not os.path.exists(local_path):`
			`break`

			`name_counter += 1`
			`local_path = os.path.join(self.output_folder_apk,`
			`f"{package_name}{file_name}_{name_counter}.apk")`

			`try:`
			`with PullProgress(unit='B', unit_divisor=1024, unit_scale=True,`
			`miniters=1) as pp:`
			`self._adb_download(remote_path, local_path,`
			`progress_callback=pp.update_to)`
Catching errors more gracefully when downloading apks (closes: #158) 2021-08-17 11:06:31 +00:00			`except InsufficientPrivileges:`
			`log.warn("Unable to pull package file from %s: insufficient privileges, it might be a system app",`
			`remote_path)`
			`self._adb_reconnect()`
			`return None`
First commit 2021-07-16 06:05:01 +00:00			`except Exception as e:`
			`log.exception("Failed to pull package file from %s: %s",`
			`remote_path, e)`
			`self._adb_reconnect()`
			`return None`

			`return local_path`

Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`def get_packages(self):`
			`"""Use the Packages adb module to retrieve the list of packages.`
			`We reuse the same extraction logic to then download the APKs.`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00

Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`"""`
			`self.log.info("Retrieving list of installed packages...")`

			`m = Packages()`
			`m.log = self.log`
			`m.run()`

			`self.packages = m.results`

First commit 2021-07-16 06:05:01 +00:00			`def pull_packages(self):`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00			`"""Download all files of all selected packages from the device."""`
First commit 2021-07-16 06:05:01 +00:00			`log.info("Starting extraction of installed APKs at folder %s", self.output_folder)`

			`if not os.path.exists(self.output_folder):`
			`os.mkdir(self.output_folder)`

Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`# If the user provided the flag --all-apks we select all packages.`
			`packages_selection = []`
			`if self.all_apks:`
			`log.info("Selected all %d available packages", len(self.packages))`
			`packages_selection = self.packages`
			`else:`
			`# Otherwise we loop through the packages and get only those that`
			`# are not marked as system.`
			`for package in self.packages:`
			`if not package.get("system", False):`
			`packages_selection.append(package)`

			`log.info("Selected only %d packages which are not marked as system",`
Standardized code with flake8 2021-11-19 14:27:51 +00:00			`len(packages_selection))`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00
			`if len(packages_selection) == 0:`
			`log.info("No packages were selected for download")`
			`return`

First commit 2021-07-16 06:05:01 +00:00			`log.info("Downloading packages from device. This might take some time ...")`

			`self.output_folder_apk = os.path.join(self.output_folder, "apks")`
			`if not os.path.exists(self.output_folder_apk):`
			`os.mkdir(self.output_folder_apk)`

			`counter = 0`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`for package in packages_selection:`
First commit 2021-07-16 06:05:01 +00:00			`counter += 1`

Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`log.info("[%d/%d] Package: %s", counter, len(packages_selection),`
			`package["package_name"])`
First commit 2021-07-16 06:05:01 +00:00
			`# Sometimes the package path contains multiple lines for multiple apks.`
			`# We loop through each line and download each file.`
Pull file hashes fom Packages module directly 2021-09-20 17:15:39 +00:00			`for package_file in package["files"]:`
			`device_path = package_file["path"]`
			`local_path = self.pull_package_file(package["package_name"],`
			`device_path)`
			`if not local_path:`
First commit 2021-07-16 06:05:01 +00:00			`continue`

Pull file hashes fom Packages module directly 2021-09-20 17:15:39 +00:00			`package_file["local_path"] = local_path`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00
			`log.info("Download of selected packages completed")`
First commit 2021-07-16 06:05:01 +00:00
			`def save_json(self):`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00			`"""Save the results to the package.json file."""`
Renamed packages.json to apks.json to avoid conflicts with other module 2021-08-17 11:26:26 +00:00			`json_path = os.path.join(self.output_folder, "apks.json")`
First commit 2021-07-16 06:05:01 +00:00			`with open(json_path, "w") as handle:`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`json.dump(self.packages, handle, indent=4)`
First commit 2021-07-16 06:05:01 +00:00
			`def run(self):`
Standardizing reST docstrings 2021-09-10 13:18:13 +00:00			`"""Run all steps of fetch-apk."""`
First commit 2021-07-16 06:05:01 +00:00			`self.get_packages()`
Changed mvt-android download-apks to only fetch non-system packages 2021-08-25 11:35:21 +00:00			`self._adb_connect()`
First commit 2021-07-16 06:05:01 +00:00			`self.pull_packages()`
			`self.save_json()`
			`self._adb_disconnect()`