Internet radio browser GUI for music/video streams from various directory services.

⌈⌋ branch:  streamtuner2


Changes To project state

Next Previous

Changes to "project state" between 2015-05-11 21:14:38 and 2015-05-21 20:17:48

1
2
3
4

5
6
7
8

9
10
11
12
13

14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

30
31

32
33
34
35
36
37
1
2
3

4
5
6
7

8
9
10
11
12

13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28

29


30


31
32
33
34



-
+



-
+




-
+















-
+
-
-
+
-
-




## Stability
 
* The application runs mostly stable. The GUI interfaces are workable.
* It's supposed to run on Gtk2 and Gtk3.
* It's supposed to run on Gtk2 and Gtk3. Albeit threading is still an issue.
* Python3 support is achieved.  
* There haven't been any optimizations regarding memory usage and 
  performance.
* The current internal API is vastly undocumented. 
* The current internal API is still somewhat underdocumented. 
 
## Current bugs

* <s>Audio- and list-format support is not very robust / needs better API</s>
* Not all keyboard shortcuts work 
* <s>Not all keyboard shortcuts work</s>
* <s>Some internal UI state flags remain, that need to be substituted with Gtk callbacks.</s>
 
## Features

* Treeview layouts and lists are dynamically from datamap[] structure and stream{} dicts.
* Channel categories are often built-in defaults (can be freshened up however) 
* Config vars and cache data get stored as JSON in ~/.config/streamtuner2/ 
* Plugin meta data spec is mostly used now for configuration description, and plugin management.
 
## Missing:

* Localization (not actually planned for)

## Security notes

* Directory scrapers use partially complex regular expressions - which is probably 
* FAULTY DATA: Directory scrapers use partially complex regular expressions - which is probably not a security risk, but can lead to inexact decoding. Albeit HTML entitiy cleanup and constraints are in place. Charset fixups are done on a case-by-case basis. Doesn't help for Xiph however (already receiving garbage there). As for fragile, some DOM/PyQuery extraction targets are less exact even.
  not a security risk, but might lead to faulty data. Albeit HTML entitiy cleanup and constraints are in place. (As for fragile, the InternetRadio DOM method is less exact even.)
* MEDIUM: integrity checking for .pls / .m3u references and files only on conversion
* MEDIUM: integrity checking for .pls / .m3u references and files is only done on conversion. (Set audio players to use `%xspf` for maximum filtering.)
* minimal XML/SGML entity decoding (-> faulty data) 
* fixed: now uses only proper Python json module (no longer Python-style dicts and eval)
* <s>HIGH RISK: no verification of downloaded favicon image files (ico/png), 
 as they are passed to gtk.gdk.Pixbuf (OTOH data pre-filtered by Google)</s>
* MEDIUM: audio players / decoders are easily affected by buffer overflows 
  from corrupt mp3/stream data. However nothing we can preassert here, streamtuner2 just passes them on.