AkkomaGang/akkoma
AkkomaGang/akkoma
15
66
Fork 94
Code Issues 180 Pull requests 27 Projects 2 Releases 14 Packages Wiki Activity

Exiftool: Strip all non-essential metadata tags #745

Merged
floatingghost merged 5 commits from Oneric/akkoma:exiftool-strip-all into develop 2024-04-26 17:38:47 +00:00
Conversation 8 Commits 5 Files changed 8 +166 -18
Oneric commented 2024-04-15 22:16:49 +00:00
Member
Copy link

Documentation was already clear on this only stripping GPS tags. But there are more metadata tags which can potentially be sensitive (e.g. author and possibly description) and the filter’s name alone suggests a broader effect than it currently has.
Thus change the filter to strip all metadata except for colourspace info and orientation.

Additionally fix a doc typo and enable stripping of HEIC and JXL (confirmed to work with exiftool 12.70 and 12.57, released on Feb. 23, 2023)
Judging from release logs, write support for JPEG XL was added in 12.25 (2021-04-22) and for HEIC in 11.33 (2019-03-28).
As a point of reference, Debian stable (bookworm) has a new enough version for both, oldstable (bullseye) has exiftool 12.16 lacking JXL (however, release logs mentioned making JXL support "official" in 12.25, potentially it already worked to some degree earlier)

HEIC and JXL samples for testing can be found here:

If desired i can make “strip all” vs “strip only GPS” a config option though personally i currently don’t see why one would want to strip one but not the other

.

There’s some relation to description extraction from #744 / #241:

  • if we now strip everything renaming the filter to StripLocation no longer makes sense
  • Pleroma.Upload.Filter.Exiftool.ReadDescriptionmust be placed before metadata stripping to wrok correctly
    If the image description contained sensitive data, uploaders will now get a chance to review and edit it before publishing a post with it (assuming metadata stripping is active).
Documentation was already clear on this only stripping GPS tags. But there are more metadata tags which can potentially be sensitive (e.g. author and possibly description) and the filter’s name alone suggests a broader effect than it currently has. Thus change the filter to strip all metadata except for colourspace info and orientation. Additionally fix a doc typo and enable stripping of HEIC and JXL (confirmed to work with exiftool 12.70 and 12.57, released on Feb. 23, 2023) Judging from release logs, write support for JPEG XL was added in 12.25 (2021-04-22) and for HEIC in 11.33 (2019-03-28). As a point of reference, Debian stable (bookworm) has a new enough version for both, oldstable (bullseye) has exiftool 12.16 lacking JXL *(however, release logs mentioned making JXL support "official" in 12.25, potentially it already worked to some degree earlier)* HEIC and JXL samples for testing can be found here: - https://heic.digital/samples/ - https://jpegxl.info/art/ If desired i can make “strip all” vs “strip only GPS” a config option though personally i currently don’t see why one would want to strip one but not the other . There’s some relation to description extraction from #744 / #241: - if we now strip everything renaming the filter to `StripLocation` no longer makes sense - `Pleroma.Upload.Filter.Exiftool.ReadDescription`must be placed before metadata stripping to wrok correctly If the image description contained sensitive data, uploaders will now get a chance to review and edit it before publishing a post with it *(assuming metadata stripping is active)*.
Oneric commented 2024-04-18 00:09:01 +00:00
Author
Member
Copy link

TODO note for me, make this more configurable as suggested by timorl

Quoting my comment over at the “read description“ PR

As for metadata stripping being more configurable in general (but independent of other loaded filters) to allow preserving/deleting specific tag (groups) this is a good point. It would probably be easiest to expose a purge and preserve string list which will just get mapped directly to exiftool commandline parameters. The drawback being misspelling something here will result in all uploads failing

TODO note for me, make this more configurable as suggested by timorl Quoting my comment over at the “read description“ PR > As for metadata stripping being more configurable in general (but independent of other loaded filters) to allow preserving/deleting specific tag (groups) this is a good point. It would probably be easiest to expose a purge and preserve string list which will just get mapped directly to exiftool commandline parameters. The drawback being misspelling something here will result in all uploads failing
Oneric force-pushed exiftool-strip-all from 5a2fd2908f to f01ace481a 2024-04-18 22:36:23 +00:00 Compare
Oneric commented 2024-04-18 22:49:21 +00:00
Author
Member
Copy link

Exact metadata tags to be stripped are now configurable, plus more tests.
For new config to show up in admin-fe AkkomaGang/admin-fe#25 is required

cc @timorl: to save you the trouble of now also having to migrate the filter’s config option, adjust all their docs and the relevant admin-fe code, i pulled in the renaming bits into this PR. You can just drop everything related to renaming

Exact metadata tags to be stripped are now configurable, plus more tests. For new config to show up in admin-fe https://akkoma.dev/AkkomaGang/admin-fe/pulls/25 is required cc @timorl: to save you the trouble of now also having to migrate the filter’s config option, adjust all their docs and the relevant admin-fe code, i pulled in the renaming bits into this PR. You can just drop everything related to renaming
timorl commented 2024-04-19 19:02:56 +00:00
Contributor
Copy link

Aaa, I should've checked here before writing the other comment! :D

Looks nice, what do you think about checking the config on startup as I suggested in #744? Is that doable and a good idea even?

Aaa, I should've checked here before writing the other comment! :D Looks nice, what do you think about checking the config on startup as I suggested in #744? Is that doable and a good idea even?
Oneric force-pushed exiftool-strip-all from f01ace481a to 09798f5121 2024-04-20 23:24:36 +00:00 Compare
Oneric commented 2024-04-20 23:32:42 +00:00
Author
Member
Copy link

Looks nice, what do you think about checking the config on startup as I suggested in #744? Is that doable and a good idea even?

In theory this might be nice, but we’d need to ship unremovable fixed-location sample files and e.g. Mogrify i think already suffers from the same problem and if we add too much it will slow down startup.

More problematic however is something i just recalled from 3.12.2’s base_url check: those deprecation checks happen before the database is loaded (since in theory deprecated options might also affect how to connect to the db?). And once the db is up the whole server is running and accepting requests.
Meaning, we can’t know which filters and which options are selected here if in-database config is used. Ofc this also means, this deprecation warning and gracefull fallback as well as all other deprecation checks don’t work for in-db config... but given the renames comes with a migration for in-db config this shouldn’t actually be an issue here (but it would be for the startup test).

> Looks nice, what do you think about checking the config on startup as I suggested in #744? Is that doable and a good idea even? In theory this might be nice, but we’d need to ship unremovable fixed-location sample files and e.g. `Mogrify` i think already suffers from the same problem and if we add too much it will slow down startup. More problematic however is something i just recalled from 3.12.2’s `base_url` check: those deprecation checks happen _before_ the database is loaded *(since in theory deprecated options might also affect how to connect to the db?)*. And once the db is up the whole server is running and accepting requests. Meaning, we can’t know which filters and which options are selected here if in-database config is used. Ofc this also means, this deprecation warning and gracefull fallback as well as all other deprecation checks don’t work for in-db config... but given the renames comes with a migration for in-db config this shouldn’t actually be an issue here (but it would be for the startup test).
👍 1
floatingghost commented 2024-04-25 12:53:05 +00:00
Owner
Copy link

bit of a merge conflict here after the other exiftool PR i think

bit of a merge conflict here after the other exiftool PR i think
Oneric force-pushed exiftool-strip-all from 09798f5121 to 3430aaec91 2024-04-25 23:11:43 +00:00 Compare
Oneric commented 2024-04-25 23:13:00 +00:00
Author
Member
Copy link

bit of a merge conflict here after the other exiftool PR i think

rebased and resolved conflicts dropping the duplicate rename
should be good again now

> bit of a merge conflict here after the other exiftool PR i think rebased and resolved conflicts dropping the duplicate rename should be good again now
Oneric commented 2024-04-26 16:35:07 +00:00
Author
Member
Copy link

noticed this leaves the temporary stripped files around after running tests.
I’m not sure how this was cleaned up prevuiously, the officially sanctioned methods seem to be an on_exit callback or @(module)tag :tmp_dir (the latter since elixir 1.11)
Will update shortly

noticed this leaves the temporary stripped files around after running tests. I’m not sure how this was cleaned up prevuiously, the officially sanctioned methods seem to be an `on_exit` callback or `@(module)tag :tmp_dir` (the latter since elixir 1.11) Will update shortly
Oneric force-pushed exiftool-strip-all from fb7c172d5e to 5bc64c5753 2024-04-26 16:58:02 +00:00 Compare
Oneric commented 2024-04-26 16:59:10 +00:00
Author
Member
Copy link

Will update shortly

done (using tmp_dir)

> Will update shortly done (using `tmp_dir`)
floatingghost reviewed 2024-04-26 17:35:50 +00:00
floatingghost left a comment
Owner
Copy link

yeppers looks cool, i'll wait for tests to pass :nod:

yeppers looks cool, i'll wait for tests to pass :nod:
docs/docs/installation/optional/media_graphics_packages.md
@ -15,3 +15,3 @@
It is required for the following Akkoma features:
* `Pleroma.Upload.Filters.Mogrify`, `Pleroma.Upload.Filters.Mogrifun` upload filters (related config: `Plaroma.Upload/filters` in `config/config.exs`)
* `Pleroma.Upload.Filters.Mogrify`, `Pleroma.Upload.Filters.Mogrifun` upload filters (related config: `Pleroma.Upload/filters` in `config/config.exs`)
floatingghost commented 2024-04-26 17:34:15 +00:00
Owner
Copy link

hehe plaroma

hehe plaroma
test/pleroma/upload/filter/exiftool/strip_location_test.exs
@ -32,0 +41,4 @@
assert String.match?(exif_filtered, ~r/Color Space/)
end
# this is a nonsensical configuration, but it shouldn't explode
floatingghost commented 2024-04-26 17:35:28 +00:00
Owner
Copy link

good call, we all know the first thing someone will do is supply a nonsensical config :hehe:

good call, we all know the first thing someone will do is supply a nonsensical config :hehe:
floatingghost merged commit 7da6f41718 into develop 2024-04-26 17:38:47 +00:00
floatingghost deleted branch exiftool-strip-all 2024-04-26 17:38:47 +00:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
approved, awaiting change

   
bug

Something is not working

  
configuration

This requires config changes

  
documentation

This is about human-readable docs

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
extremely low priority

   
feature request

Something new?

  
Fix it yourself

Support has been attempted

  
help wanted

Need some help

  
invalid

Something is wrong

  
mastodon_api

   
needs docs

   
needs tests

   
not a bug

   
planned

   
pleroma_api

   
privacy

   
question

More information is needed

  
static_fe

   
triage

   
wontfix

This won't be fixed

No labels
approved, awaiting change
bug
configuration
documentation
duplicate
enhancement
extremely low priority
feature request
Fix it yourself
help wanted
invalid
mastodon_api
needs docs
needs tests
not a bug
planned
pleroma_api
privacy
question
static_fe
triage
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
3 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: AkkomaGang/akkoma#745
No description provided.
Delete branch "Oneric/akkoma:exiftool-strip-all"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?