libervia-backend: libervia/backend/plugins/plugin_sec

comparison libervia/backend/plugins/plugin_sec_aesgcm.py @ 4270:0d7bb4df2343

Reformatted code base using black.

author	Goffi <goffi@goffi.org>
date	Wed, 19 Jun 2024 18:44:57 +0200
parents	4b842c1fb686
children

comparison

equal deleted inserted replaced

-:64a85ce8be70
+:0d7bb4df2343
 C.PI_TYPE: "SEC",
 C.PI_PROTOCOLS: ["OMEMO Media sharing"],
 C.PI_DEPENDENCIES: ["XEP-0363", "XEP-0384", "DOWNLOAD", "ATTACH"],
 C.PI_MAIN: "AESGCM",
 C.PI_HANDLER: "no",
-C.PI_DESCRIPTION: dedent(_("""\
+C.PI_DESCRIPTION: dedent(
+_(
+"""\
 Implementation of AES-GCM scheme, a way to encrypt files (not official XMPP standard).
 See https://xmpp.org/extensions/inbox/omemo-media-sharing.html for details
-""")),
+"""
+)
+),
 }
 AESGCM_RE = re.compile(
-r'aesgcm:\/\/(www\.)?[-a-zA-Z0-9@:%._\+~#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b([-a-zA-Z0-9'
+r"aesgcm:\/\/(www\.)?[-a-zA-Z0-9@:%._\+~#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b([-a-zA-Z0-9"
-r'()@:%_\+.~#?&\/\/=]*)')
+r"()@:%_\+.~#?&\/\/=]*)"
+)
 class AESGCM(object):
 def __init__(self, host):
 self.host = host
 log.info(_("AESGCM plugin initialization"))
-self._http_upload = host.plugins['XEP-0363']
+self._http_upload = host.plugins["XEP-0363"]
 self._attach = host.plugins["ATTACH"]
-host.plugins["DOWNLOAD"].register_scheme(
+host.plugins["DOWNLOAD"].register_scheme("aesgcm", self.download)
-"aesgcm", self.download
+self._attach.register(self.can_handle_attachment, self.attach, encrypted=True)
-)
-self._attach.register(
-self.can_handle_attachment, self.attach, encrypted=True)
 host.trigger.add("XEP-0363_upload_pre_slot", self._upload_pre_slot)
 host.trigger.add("XEP-0363_upload", self._upload_trigger)
 host.trigger.add("message_received", self._message_received_trigger)
 async def download(self, client, uri_parsed, dest_path, options):
 iv_size = 16
 elif len(fragment) == 44:
 iv_size = 12
 else:
 raise ValueError(
-f"Invalid URL fragment, can't decrypt file at {uri_parsed.get_url()}")
+f"Invalid URL fragment, can't decrypt file at {uri_parsed.get_url()}"
+)
 iv, key = fragment[:iv_size], fragment[iv_size:]
 decryptor = ciphers.Cipher(
 ciphers.algorithms.AES(key),
 modes.GCM(iv),
 backend=backends.default_backend(),
 ).decryptor()
 download_url = parse.urlunparse(
-('https', uri_parsed.netloc, uri_parsed.path, '', '', ''))
+("https", uri_parsed.netloc, uri_parsed.path, "", "", "")
+)
-if options.get('ignore_tls_errors', False):
-log.warning(
+if options.get("ignore_tls_errors", False):
-"TLS certificate check disabled, this is highly insecure"
+log.warning("TLS certificate check disabled, this is highly insecure")
-)
 treq_client = treq_client_no_ssl
 else:
 treq_client = treq
 head_data = await treq_client.head(download_url)
-content_length = int(head_data.headers.getRawHeaders('content-length')[0])
+content_length = int(head_data.headers.getRawHeaders("content-length")[0])
 # the 128 bits tag is put at the end
 file_size = content_length - 16
 file_obj = stream.SatFile(
 self.host,
 client,
 dest_path,
 mode="wb",
-size = file_size,
+size=file_size,
 )
 progress_id = file_obj.uid
 resp = await treq_client.get(download_url, unbuffered=True)
 if resp.code == 200:
-d = treq.collect(resp, partial(
+d = treq.collect(
-self.on_data_download,
+resp,
-client=client,
+partial(
-file_obj=file_obj,
+self.on_data_download,
-decryptor=decryptor))
+client=client,
+file_obj=file_obj,
+decryptor=decryptor,
+),
+)
 else:
 d = defer.Deferred()
 self.host.plugins["DOWNLOAD"].errback_download(file_obj, d, resp)
 return progress_id, d
 return False
 else:
 return True
 async def _upload_cb(self, client, filepath, filename, extra):
-extra['encryption'] = C.ENC_AES_GCM
+extra["encryption"] = C.ENC_AES_GCM
 return await self._http_upload.file_http_upload(
-client=client,
+client=client, filepath=filepath, filename=filename, extra=extra
-filepath=filepath,
-filename=filename,
-extra=extra
 )
 async def attach(self, client, data):
 # XXX: the attachment removal/resend code below is due to the one file per
 #   message limitation of OMEMO media sharing unofficial XEP. We have to remove
 #   attachments from original message, and send them one by one.
 # TODO: this is to be removed when a better mechanism is available with OMEMO (now
 #   possible with the 0.4 version of OMEMO, it's possible to encrypt other stanza
 #   elements than body).
 attachments = data["extra"][C.KEY_ATTACHMENTS]
-if not data['message'] or data['message'] == {'': ''}:
+if not data["message"] or data["message"] == {"": ""}:
 extra_attachments = attachments[1:]
 del attachments[1:]
 await self._attach.upload_files(client, data, upload_cb=self._upload_cb)
 else:
 # we have a message, we must send first attachment separately
 body_elt.addContent(attachment["url"])
 for attachment in extra_attachments:
 # we send all remaining attachment in a separate message
 await client.sendMessage(
-to_jid=data['to'],
+to_jid=data["to"],
-message={'': ''},
+message={"": ""},
-subject=data['subject'],
+subject=data["subject"],
-mess_type=data['type'],
+mess_type=data["type"],
 extra={C.KEY_ATTACHMENTS: [attachment]},
 )
-if ((not data['extra']
+if (
-and (not data['message'] or data['message'] == {'': ''})
+not data["extra"]
-and not data['subject'])):
+and (not data["message"] or data["message"] == {"": ""})
+and not data["subject"]
+):
 # nothing left to send, we can cancel the message
 raise exceptions.CancelError("Cancelled by AESGCM attachment handling")
 def on_data_download(self, data, client, file_obj, decryptor):
 if file_obj.tell() + len(data) > file_obj.size:
 else:
 decrypted = decryptor.update(data)
 file_obj.write(decrypted)
 def _upload_pre_slot(self, client, extra, file_metadata):
-if extra.get('encryption') != C.ENC_AES_GCM:
+if extra.get("encryption") != C.ENC_AES_GCM:
 return True
 # the tag is appended to the file
 file_metadata["size"] += 16
 return True
 ret = encryptor.finalize()
 tag = encryptor.tag
 return ret + tag
 except AlreadyFinalized:
 # as we have already finalized, we can now send EOF
-return b''
+return b""
 def _upload_trigger(self, client, extra, sat_file, file_producer, slot):
-if extra.get('encryption') != C.ENC_AES_GCM:
+if extra.get("encryption") != C.ENC_AES_GCM:
 return True
 log.debug("encrypting file with AES-GCM")
 iv = secrets.token_bytes(12)
 key = secrets.token_bytes(32)
-fragment = f'{iv.hex()}{key.hex()}'
+fragment = f"{iv.hex()}{key.hex()}"
 ori_url = parse.urlparse(slot.get)
 # we change the get URL with the one with aesgcm scheme and containing the
 # encoded key + iv
-slot.get = parse.urlunparse(['aesgcm', *ori_url[1:5], fragment])
+slot.get = parse.urlunparse(["aesgcm", *ori_url[1:5], fragment])
 # encrypted data size will be bigger than original file size
 # so we need to check with final data length to avoid a warning on close()
 sat_file.check_size_with_read = True
 backend=backends.default_backend(),
 ).encryptor()
 if sat_file.data_cb is not None:
 raise exceptions.InternalError(
-f"data_cb was expected to be None, it is set to {sat_file.data_cb}")
+f"data_cb was expected to be None, it is set to {sat_file.data_cb}"
+)
 # with data_cb we encrypt the file on the fly
 sat_file.data_cb = partial(self._encrypt, encryptor=encryptor)
 return True
 def _pop_aesgcm_links(self, match, links):
 link = match.group()
 if link not in links:
 links.append(link)
 return ""
 def _check_aesgcm_attachments(self, client, data):
-if not data.get('message'):
+if not data.get("message"):
 return data
 links = []
-for lang, message in list(data['message'].items()):
+for lang, message in list(data["message"].items()):
-message = AESGCM_RE.sub(
+message = AESGCM_RE.sub(partial(self._pop_aesgcm_links, links=links), message)
-partial(self._pop_aesgcm_links, links=links),
-message)
 if links:
 message = message.strip()
 if not message:
-del data['message'][lang]
+del data["message"][lang]
 else:
-data['message'][lang] = message
+data["message"][lang] = message
 mess_encrypted = client.encryption.isEncrypted(data)
-attachments = data['extra'].setdefault(C.KEY_ATTACHMENTS, [])
+attachments = data["extra"].setdefault(C.KEY_ATTACHMENTS, [])
 for link in links:
 path = parse.urlparse(link).path
 attachment = {
 "url": link,
 }
 if mess_encrypted:
 # we don't add the encrypted flag if the message itself is not
 # encrypted, because the decryption key is part of the link,
 # so sending it over unencrypted channel is like having no
 # encryption at all.
-attachment['encrypted'] = True
+attachment["encrypted"] = True
 attachments.append(attachment)
 return data
 def _message_received_trigger(self, client, message_elt, post_treat):

Mercurial > libervia-backend

comparison libervia/backend/plugins/plugin_sec_aesgcm.py @ 4270:0d7bb4df2343