gpg-lacre/gpg-mailgate.py

#!/usr/bin/python

#
#	gpg-mailgate
#
#	This file is part of the gpg-mailgate source code.
#
#	gpg-mailgate is free software: you can redistribute it and/or modify
#	it under the terms of the GNU General Public License as published by
#	the Free Software Foundation, either version 3 of the License, or
#	(at your option) any later version.
#
#	gpg-mailgate source code is distributed in the hope that it will be useful,
#	but WITHOUT ANY WARRANTY; without even the implied warranty of
#	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
#	GNU General Public License for more details.
#
#	You should have received a copy of the GNU General Public License
#	along with gpg-mailgate source code. If not, see <http://www.gnu.org/licenses/>.
#

from ConfigParser import RawConfigParser
from email.mime.base import MIMEBase
import email
import email.message
import re
import GnuPG
import smtplib
import sys

def appendLog(msg):
	if cfg.has_key('logging') and cfg['logging'].has_key('file'):
		log = open(cfg['logging']['file'], 'a')
		log.write(msg + "\n")
		log.close()

# Read configuration from /etc/gpg-mailgate.conf
_cfg = RawConfigParser()
_cfg.read('/etc/gpg-mailgate.conf')
cfg = dict()
for sect in _cfg.sections():
	cfg[sect] = dict()
	for (name, value) in _cfg.items(sect):
		cfg[sect][name] = value

# Read e-mail from stdin
raw = sys.stdin.read()
raw_message = email.message_from_string( raw )
from_addr = raw_message['From']
to_addrs = sys.argv[1:]

def send_msg( message, recipients = None ):
	if recipients == None:
		recipients = to_addrs
	appendLog("Sending email to: <%s>" % '> <'.join( recipients ))
	relay = (cfg['relay']['host'], int(cfg['relay']['port']))
	smtp = smtplib.SMTP(relay[0], relay[1])
	smtp.sendmail( from_addr, recipients, message.as_string() )

def encrypt_payload( payload, gpg_to_cmdline ):
	raw_payload = payload.get_payload(decode=True)
	if "-----BEGIN PGP MESSAGE-----" in raw_payload and "-----END PGP MESSAGE-----" in raw_payload:
		return payload
	gpg = GnuPG.GPGEncryptor( cfg['gpg']['keyhome'], gpg_to_cmdline, payload.get_content_charset() )
	gpg.update( raw_payload )
	payload.set_payload( gpg.encrypt() )

	isAttachment = payload.get_param( 'attachment', None, 'Content-Disposition' ) is not None

	if isAttachment:
		filename = payload.get_filename()

		if filename:
			pgpFilename = filename + ".pgp"

			if payload.get('Content-Disposition') is not None:
				payload.set_param( 'filename', pgpFilename, 'Content-Disposition' )
			if payload.get('Content-Type') is not None:
				if payload.get_param( 'name' ) is not None:
					payload.set_param( 'name', pgpFilename )

	if payload.get('Content-Transfer-Encoding') is not None:
		payload.replace_header( 'Content-Transfer-Encoding', "7bit" )

	return payload

def encrypt_all_payloads( message, gpg_to_cmdline ):
	encrypted_payloads = list()
	if type( message.get_payload() ) == str:
		return encrypt_payload( message, gpg_to_cmdline ).get_payload()
	for payload in message.get_payload():
		if( type( payload.get_payload() ) == list ):
			encrypted_payloads.extend( encrypt_all_payloads( payload, gpg_to_cmdline ) )
		else:
			encrypted_payloads.append( encrypt_payload( payload, gpg_to_cmdline ) )
	return encrypted_payloads

def get_msg( message ):
	if not message.is_multipart():
		return message.get_payload()
	return '\n\n'.join( [str(m) for m in message.get_payload()] )

keys = GnuPG.public_keys( cfg['gpg']['keyhome'] )
gpg_to = list()
ungpg_to = list()

for to in to_addrs:
	if to in keys and not ( cfg['default'].has_key('keymap_only') and cfg['default']['keymap_only'] == 'yes'  ):
		gpg_to.append( (to, to) )
	elif cfg.has_key('keymap') and cfg['keymap'].has_key(to):
		gpg_to.append( (to, cfg['keymap'][to]) )
	else:
		ungpg_to.append(to)

if gpg_to == list():
	if cfg['default'].has_key('add_header') and cfg['default']['add_header'] == 'yes':
		raw_message['X-GPG-Mailgate'] = 'Not encrypted, public key not found'
	send_msg( raw_message )
	exit()

if ungpg_to != list():
	send_msg( raw_message, ungpg_to )

appendLog("Encrypting email to: %s" % ' '.join( map(lambda x: x[0], gpg_to) ))

if cfg['default'].has_key('add_header') and cfg['default']['add_header'] == 'yes':
	raw_message['X-GPG-Mailgate'] = 'Encrypted by GPG Mailgate'

gpg_to_cmdline = list()
gpg_to_smtp = list()
for rcpt in gpg_to:
	gpg_to_smtp.append(rcpt[0])
	gpg_to_cmdline.extend(rcpt[1].split(','))

encrypted_payloads = encrypt_all_payloads( raw_message, gpg_to_cmdline )
raw_message.set_payload( encrypted_payloads )

send_msg( raw_message, gpg_to_smtp )
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`#!/usr/bin/python`

Release under GNU Lesser General Public License. 2013-09-28 04:21:55 +02:00			`#`
			`# gpg-mailgate`
			`#`
			`# This file is part of the gpg-mailgate source code.`
			`#`
			`# gpg-mailgate is free software: you can redistribute it and/or modify`
Update license to GNU GPL v3. 2013-10-02 20:27:28 +02:00			`# it under the terms of the GNU General Public License as published by`
Release under GNU Lesser General Public License. 2013-09-28 04:21:55 +02:00			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# gpg-mailgate source code is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
Update license to GNU GPL v3. 2013-10-02 20:27:28 +02:00			`# GNU General Public License for more details.`
Release under GNU Lesser General Public License. 2013-09-28 04:21:55 +02:00			`#`
Update license to GNU GPL v3. 2013-10-02 20:27:28 +02:00			`# You should have received a copy of the GNU General Public License`
Release under GNU Lesser General Public License. 2013-09-28 04:21:55 +02:00			`# along with gpg-mailgate source code. If not, see <http://www.gnu.org/licenses/>.`
			`#`

GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`from ConfigParser import RawConfigParser`
Remove unnecessary X-GPG headers (after use) 2013-04-15 15:10:00 +02:00			`from email.mime.base import MIMEBase`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`import email`
Fixed plain text messages encryption 2013-04-14 13:13:52 +02:00			`import email.message`
- Fixed broken content type (which was preventing mail clients to display message properly) - Fixed bug when messages were sent multiple times - Fixed To/Cc/Bcc addresses parsing 2013-04-02 21:37:12 +02:00			`import re`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`import GnuPG`
			`import smtplib`
			`import sys`

Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`def appendLog(msg):`
			`if cfg.has_key('logging') and cfg['logging'].has_key('file'):`
			`log = open(cfg['logging']['file'], 'a')`
			`log.write(msg + "\n")`
			`log.close()`

GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`# Read configuration from /etc/gpg-mailgate.conf`
			`_cfg = RawConfigParser()`
			`_cfg.read('/etc/gpg-mailgate.conf')`
			`cfg = dict()`
			`for sect in _cfg.sections():`
			`cfg[sect] = dict()`
			`for (name, value) in _cfg.items(sect):`
			`cfg[sect][name] = value`

			`# Read e-mail from stdin`
			`raw = sys.stdin.read()`
			`raw_message = email.message_from_string( raw )`
			`from_addr = raw_message['From']`
Greatly improve recipient selection mechanism. This resolves many errors, such as forwarding loops arising from mailing lists. 2013-08-09 08:41:06 +02:00			`to_addrs = sys.argv[1:]`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00
			`def send_msg( message, recipients = None ):`
			`if recipients == None:`
Revert part of commit 43b3392162f5e3ed2411197232af21d6a66fa8aa, so that we still send if there are no PGP recipients. 2013-08-09 08:35:57 +02:00			`recipients = to_addrs`
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`appendLog("Sending email to: <%s>" % '> <'.join( recipients ))`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`relay = (cfg['relay']['host'], int(cfg['relay']['port']))`
			`smtp = smtplib.SMTP(relay[0], relay[1])`
			`smtp.sendmail( from_addr, recipients, message.as_string() )`

Added attachments support (payload encryption) 2013-04-03 16:32:38 +02:00			`def encrypt_payload( payload, gpg_to_cmdline ):`
			`raw_payload = payload.get_payload(decode=True)`
Enable encryption for signed messages. 2013-09-28 16:28:00 +02:00			`if "-----BEGIN PGP MESSAGE-----" in raw_payload and "-----END PGP MESSAGE-----" in raw_payload:`
Rudimentary support for not re-encrypting already encrypted messages 2013-06-19 03:46:41 +02:00			`return payload`
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`gpg = GnuPG.GPGEncryptor( cfg['gpg']['keyhome'], gpg_to_cmdline, payload.get_content_charset() )`
Fixed encrypted messages check Moved it to the top of the method, to avoid unnecessary GnuPG class invocation. 2013-09-16 19:26:45 +02:00			`gpg.update( raw_payload )`
Added attachments support (payload encryption) 2013-04-03 16:32:38 +02:00			`payload.set_payload( gpg.encrypt() )`
Initial commit for gpg-mailgate-web addition. 2013-09-27 01:40:27 +02:00
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`isAttachment = payload.get_param( 'attachment', None, 'Content-Disposition' ) is not None`
Initial commit for gpg-mailgate-web addition. 2013-09-27 01:40:27 +02:00
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`if isAttachment:`
			`filename = payload.get_filename()`
Initial commit for gpg-mailgate-web addition. 2013-09-27 01:40:27 +02:00
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`if filename:`
			`pgpFilename = filename + ".pgp"`
Initial commit for gpg-mailgate-web addition. 2013-09-27 01:40:27 +02:00
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`if payload.get('Content-Disposition') is not None:`
			`payload.set_param( 'filename', pgpFilename, 'Content-Disposition' )`
			`if payload.get('Content-Type') is not None:`
			`if payload.get_param( 'name' ) is not None:`
			`payload.set_param( 'name', pgpFilename )`

			`if payload.get('Content-Transfer-Encoding') is not None:`
Use correct content transfer encoding (7bit). 2013-09-22 21:14:48 +02:00			`payload.replace_header( 'Content-Transfer-Encoding', "7bit" )`
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00
Added attachments support (payload encryption) 2013-04-03 16:32:38 +02:00			`return payload`

Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`def encrypt_all_payloads( message, gpg_to_cmdline ):`
Fixed nested multiparts 2013-04-04 20:07:32 +02:00			`encrypted_payloads = list()`
Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`if type( message.get_payload() ) == str:`
			`return encrypt_payload( message, gpg_to_cmdline ).get_payload()`
			`for payload in message.get_payload():`
Fixed nested multiparts 2013-04-04 20:07:32 +02:00			`if( type( payload.get_payload() ) == list ):`
Use extend instead of append to fix list problem. 2013-08-12 04:20:12 +02:00			`encrypted_payloads.extend( encrypt_all_payloads( payload, gpg_to_cmdline ) )`
Fixed nested multiparts 2013-04-04 20:07:32 +02:00			`else:`
Fix problem with previous commit. 2013-08-11 17:06:27 +02:00			`encrypted_payloads.append( encrypt_payload( payload, gpg_to_cmdline ) )`
			`return encrypted_payloads`
Fixed nested multiparts 2013-04-04 20:07:32 +02:00
Some new stuff 2010-01-21 15:50:51 +01:00			`def get_msg( message ):`
			`if not message.is_multipart():`
			`return message.get_payload()`
Convert multi-part message parts to strings before joining them 2013-04-02 21:30:53 +02:00			`return '\n\n'.join( [str(m) for m in message.get_payload()] )`
Some new stuff 2010-01-21 15:50:51 +01:00
Added X-GPG headers for parametrization of encrypting behavior 2013-04-14 12:18:14 +02:00			`keys = GnuPG.public_keys( cfg['gpg']['keyhome'] )`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`gpg_to = list()`
GPG Mailgate 0.11 2010-01-20 22:09:34 +01:00			`ungpg_to = list()`
Merge remote-tracking branch 'ajgon/master' Conflicts: gpg-mailgate.py 2013-09-22 21:10:17 +02:00
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`for to in to_addrs:`
Add keymap_only configuration, to ignore public_keys list. This means the keymap will be exclusively used to determine which email addresses to sign with which keys. 2013-09-24 05:28:35 +02:00			`if to in keys and not ( cfg['default'].has_key('keymap_only') and cfg['default']['keymap_only'] == 'yes' ):`
Remove useless domains configuration setting. 2013-09-22 21:13:15 +02:00			`gpg_to.append( (to, to) )`
			`elif cfg.has_key('keymap') and cfg['keymap'].has_key(to):`
			`gpg_to.append( (to, cfg['keymap'][to]) )`
GPG Mailgate 0.11 2010-01-20 22:09:34 +01:00			`else:`
			`ungpg_to.append(to)`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00
			`if gpg_to == list():`
			`if cfg['default'].has_key('add_header') and cfg['default']['add_header'] == 'yes':`
			`raw_message['X-GPG-Mailgate'] = 'Not encrypted, public key not found'`
			`send_msg( raw_message )`
- Fixed broken content type (which was preventing mail clients to display message properly) - Fixed bug when messages were sent multiple times - Fixed To/Cc/Bcc addresses parsing 2013-04-02 21:37:12 +02:00			`exit()`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00
GPG Mailgate 0.11 2010-01-20 22:09:34 +01:00			`if ungpg_to != list():`
			`send_msg( raw_message, ungpg_to )`

Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`appendLog("Encrypting email to: %s" % ' '.join( map(lambda x: x[0], gpg_to) ))`
Some new stuff 2010-01-21 15:50:51 +01:00
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00			`if cfg['default'].has_key('add_header') and cfg['default']['add_header'] == 'yes':`
Some new stuff 2010-01-21 15:50:51 +01:00			`raw_message['X-GPG-Mailgate'] = 'Encrypted by GPG Mailgate'`
GPG Mailgate 0.1 2010-01-20 21:53:25 +01:00
GPG Mailgate 0.11 2010-01-20 22:09:34 +01:00			`gpg_to_cmdline = list()`
			`gpg_to_smtp = list()`
			`for rcpt in gpg_to:`
			`gpg_to_smtp.append(rcpt[0])`
			`gpg_to_cmdline.extend(rcpt[1].split(','))`

Fix bug causing messages to have extra characters or failing to encode properly. 2013-08-11 14:35:48 +02:00			`encrypted_payloads = encrypt_all_payloads( raw_message, gpg_to_cmdline )`
Added attachments support (payload encryption) 2013-04-03 16:32:38 +02:00			`raw_message.set_payload( encrypted_payloads )`

GPG Mailgate 0.11 2010-01-20 22:09:34 +01:00			`send_msg( raw_message, gpg_to_smtp )`