Why does OpenLauncher use hastebin?

idroid25 · May 1, 2022, 7:13am

I’ve been using OpenLauncher for half a year and discovered it has a double tap feature to lock the screen, which requires enabling system setting

Since there are some risks with enabling system setting, I used virustotal to scan it and it shows an url about hastebin:

I searched the codes and found it here: (line 505)
Codes about hastebin: (line 493-514)

github.com

OpenLauncherTeam/openlauncher/blob/1b29f27ad967613f99943133fcbd566b67666804/app/src/main/java/net/gsantner/opoc/util/ShareUtil.java

/*#######################################################
 *
 *   Maintained by Gregor Santner, 2017-
 *   https://gsantner.net/
 *
 *   License of this file: Apache 2.0 (Commercial upon request)
 *     https://www.apache.org/licenses/LICENSE-2.0
 *     https://github.com/gsantner/opoc/#licensing
 *
#########################################################*/
package net.gsantner.opoc.util;

import android.Manifest;
import android.annotation.SuppressLint;
import android.app.Activity;
import android.content.ActivityNotFoundException;
import android.content.BroadcastReceiver;
import android.content.ClipData;
import android.content.Context;
import android.content.Intent;

This file has been truncated. show original

It says, “Share given text on a hastebin compatible server.”

What does it mean? What information does it share?
(I know nothing about codes)

TheLastProject · May 1, 2022, 10:46am

The odd thing is that if you grab the function name (pasteOnHastebin) and search through the whole codebase, it only appears once: at that function definition:

/tmp/OpenLauncherTeam/openlauncher 
$ grep -ri "pasteOnHastebin" *
app/src/main/java/net/gsantner/opoc/util/ShareUtil.java:    public void pasteOnHastebin(final String text, final Callback.a2<Boolean, String> callback, final String... serverOrNothing) {

It looks to me like there used to be a feature using this piece of code, but that feature got removed and currently this feature is never called again.

It may be worth reporting this to the OpenLauncher team on Issues · OpenLauncherTeam/openlauncher · GitHub so they can clean up this code.

SkewedZeppelin · May 2, 2022, 3:40am

It was added in 6e105d21d358ba4b93c395737dae5c274fea4efd and never used

git log -S astebin --source --all
commit 6e105d21d358ba4b93c395737dae5c274fea4efd refs/tags/v0.6.0
Author: -snip-
Date:   Mon Apr 23 00:29:29 2018 +0200

    Use gsantner/opoc/MoreInfoFragment

idroid25 · May 2, 2022, 11:02am

Thanks for explaining!

From my research pastebin might be associated with some malicious purposes in some cases.
What might an app use pastebin for?

Also what does Line 443 mean? It says,
“Replace (primary) clipboard contents with given {@code text}”

github.com

OpenLauncherTeam/openlauncher/blob/1b29f27ad967613f99943133fcbd566b67666804/app/src/main/java/net/gsantner/opoc/util/ShareUtil.java

/*#######################################################
 *
 *   Maintained by Gregor Santner, 2017-
 *   https://gsantner.net/
 *
 *   License of this file: Apache 2.0 (Commercial upon request)
 *     https://www.apache.org/licenses/LICENSE-2.0
 *     https://github.com/gsantner/opoc/#licensing
 *
#########################################################*/
package net.gsantner.opoc.util;

import android.Manifest;
import android.annotation.SuppressLint;
import android.app.Activity;
import android.content.ActivityNotFoundException;
import android.content.BroadcastReceiver;
import android.content.ClipData;
import android.content.Context;
import android.content.Intent;

This file has been truncated. show original

TheLastProject · May 2, 2022, 5:08pm

Most commonly to give users an easy way to upload debug logs to share with the developers.

Seems to put text in the clipboard. I don’t know what it’s for, I don’t use OpenLauncher, but given it’s in a file named ShareUtil it’s probably part of some kind of sharing system in the app.

system · July 1, 2022, 5:08pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.