2015-06-25 20:09:41 +02:00
|
|
|
import json
|
|
|
|
|
import time
|
|
|
|
|
import re
|
|
|
|
|
import os
|
|
|
|
|
import copy
|
2019-03-15 21:06:59 +01:00
|
|
|
import base64
|
2019-03-20 00:48:51 +01:00
|
|
|
import sys
|
2015-06-25 20:09:41 +02:00
|
|
|
|
|
|
|
|
import gevent
|
|
|
|
|
|
version 0.2.0, new lib for bitcoin ecc, dont display or track notify errors, dont reload again within 1 sec, null peer ip fix, signingmoved to ContentManager, content.json include support, content.json multisig ready, content.json proper bitcoincore compatible signing, content.json include permissions, multithreaded publish, publish timeout 60s, no exception on invalid bitcoin address, testcase for new lib, bip32 based persite privatekey generation, multiuser ready, simple json database query command, websocket api fileGet, wrapper loading title stuck bugfix
2015-02-09 02:09:02 +01:00
|
|
|
from Debug import Debug
|
|
|
|
|
from Crypt import CryptHash
|
|
|
|
|
from Config import config
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
from util import helper
|
2016-04-06 13:54:32 +02:00
|
|
|
from util import Diff
|
2017-07-14 10:34:18 +02:00
|
|
|
from util import SafeRe
|
2015-10-11 02:22:53 +02:00
|
|
|
from Peer import PeerHashfield
|
2019-03-15 21:06:59 +01:00
|
|
|
from .ContentDbDict import ContentDbDict
|
2017-10-04 12:51:37 +02:00
|
|
|
from Plugin import PluginManager
|
2015-10-11 02:22:53 +02:00
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
|
2017-06-19 15:47:03 +02:00
|
|
|
class VerifyError(Exception):
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
2017-06-19 15:47:47 +02:00
|
|
|
class SignError(Exception):
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
2017-10-04 12:51:37 +02:00
|
|
|
@PluginManager.acceptPlugins
|
2015-06-18 00:08:45 +02:00
|
|
|
class ContentManager(object):
|
2015-06-25 20:09:41 +02:00
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
def __init__(self, site):
|
|
|
|
|
self.site = site
|
|
|
|
|
self.log = self.site.log
|
2016-09-04 17:41:04 +02:00
|
|
|
self.contents = ContentDbDict(site)
|
2015-10-11 02:22:53 +02:00
|
|
|
self.hashfield = PeerHashfield()
|
2016-09-04 17:41:04 +02:00
|
|
|
self.has_optional_files = False
|
|
|
|
|
|
2016-11-07 23:36:04 +01:00
|
|
|
# Load all content.json files
|
2016-09-04 17:41:04 +02:00
|
|
|
def loadContents(self):
|
|
|
|
|
if len(self.contents) == 0:
|
2019-12-17 14:23:47 +01:00
|
|
|
self.log.info("ContentDb not initialized, load files from filesystem...")
|
2016-09-04 17:41:04 +02:00
|
|
|
self.loadContent(add_bad_files=False, delete_removed_files=False)
|
2017-10-04 13:20:39 +02:00
|
|
|
self.site.settings["size"], self.site.settings["size_optional"] = self.getTotalSize()
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-09-04 17:43:30 +02:00
|
|
|
# Load hashfield cache
|
|
|
|
|
if "hashfield" in self.site.settings.get("cache", {}):
|
2019-03-15 21:06:59 +01:00
|
|
|
self.hashfield.frombytes(base64.b64decode(self.site.settings["cache"]["hashfield"]))
|
2016-09-04 17:43:30 +02:00
|
|
|
del self.site.settings["cache"]["hashfield"]
|
2017-10-04 13:20:39 +02:00
|
|
|
elif self.contents.get("content.json") and self.site.settings["size_optional"] > 0:
|
2016-09-04 17:43:30 +02:00
|
|
|
self.site.storage.updateBadFiles() # No hashfield cache created yet
|
2016-11-07 23:36:04 +01:00
|
|
|
self.has_optional_files = bool(self.hashfield)
|
|
|
|
|
|
2016-11-07 23:02:37 +01:00
|
|
|
self.contents.db.initSite(self.site)
|
2016-09-04 17:43:30 +02:00
|
|
|
|
2019-04-23 01:56:11 +02:00
|
|
|
def getFileChanges(self, old_files, new_files):
|
|
|
|
|
deleted = {key: val for key, val in old_files.items() if key not in new_files}
|
|
|
|
|
deleted_hashes = {val.get("sha512"): key for key, val in old_files.items() if key not in new_files}
|
|
|
|
|
added = {key: val for key, val in new_files.items() if key not in old_files}
|
|
|
|
|
renamed = {}
|
|
|
|
|
for relative_path, node in added.items():
|
|
|
|
|
hash = node.get("sha512")
|
|
|
|
|
if hash in deleted_hashes:
|
|
|
|
|
relative_path_old = deleted_hashes[hash]
|
|
|
|
|
renamed[relative_path_old] = relative_path
|
|
|
|
|
del(deleted[relative_path_old])
|
|
|
|
|
return list(deleted), renamed
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
# Load content.json to self.content
|
2015-09-16 00:01:23 +02:00
|
|
|
# Return: Changed files ["index.html", "data/messages.json"], Deleted files ["old.jpg"]
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
def loadContent(self, content_inner_path="content.json", add_bad_files=True, delete_removed_files=True, load_includes=True, force=False):
|
2016-03-26 00:22:27 +01:00
|
|
|
content_inner_path = content_inner_path.strip("/") # Remove / from beginning
|
2015-06-17 23:49:47 +02:00
|
|
|
old_content = self.contents.get(content_inner_path)
|
|
|
|
|
content_path = self.site.storage.getPath(content_inner_path)
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
content_dir = helper.getDirname(self.site.storage.getPath(content_inner_path))
|
|
|
|
|
content_inner_dir = helper.getDirname(content_inner_path)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
if os.path.isfile(content_path):
|
|
|
|
|
try:
|
2015-11-15 11:13:57 +01:00
|
|
|
# Check if file is newer than what we have
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
if not force and old_content and not self.site.settings.get("own"):
|
2015-11-15 11:13:57 +01:00
|
|
|
for line in open(content_path):
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
if '"modified"' not in line:
|
|
|
|
|
continue
|
2019-07-01 16:24:23 +02:00
|
|
|
match = re.search(r"([0-9\.]+),$", line.strip(" \r\n"))
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
if match and float(match.group(1)) <= old_content.get("modified", 0):
|
2016-04-06 13:42:15 +02:00
|
|
|
self.log.debug("%s loadContent same json file, skipping" % content_inner_path)
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
return [], []
|
2015-11-15 11:13:57 +01:00
|
|
|
|
2019-05-21 15:54:36 +02:00
|
|
|
new_content = self.site.storage.loadJson(content_inner_path)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-11-07 23:44:58 +01:00
|
|
|
self.log.warning("%s load error: %s" % (content_path, Debug.formatException(err)))
|
2015-09-16 00:01:23 +02:00
|
|
|
return [], []
|
2015-06-17 23:49:47 +02:00
|
|
|
else:
|
2018-04-28 21:45:28 +02:00
|
|
|
self.log.debug("Content.json not exist: %s" % content_path)
|
2015-09-16 00:01:23 +02:00
|
|
|
return [], [] # Content.json not exist
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
# Get the files where the sha512 changed
|
|
|
|
|
changed = []
|
2015-09-16 00:01:23 +02:00
|
|
|
deleted = []
|
|
|
|
|
# Check changed
|
2019-03-15 21:06:59 +01:00
|
|
|
for relative_path, info in new_content.get("files", {}).items():
|
2015-06-17 23:49:47 +02:00
|
|
|
if "sha512" in info:
|
|
|
|
|
hash_type = "sha512"
|
2016-03-26 00:22:27 +01:00
|
|
|
else: # Backward compatibility
|
2015-06-17 23:49:47 +02:00
|
|
|
hash_type = "sha1"
|
|
|
|
|
|
|
|
|
|
new_hash = info[hash_type]
|
2015-06-25 20:09:41 +02:00
|
|
|
if old_content and old_content["files"].get(relative_path): # We have the file in the old content
|
2015-06-17 23:49:47 +02:00
|
|
|
old_hash = old_content["files"][relative_path].get(hash_type)
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # The file is not in the old content
|
2015-06-17 23:49:47 +02:00
|
|
|
old_hash = None
|
2015-06-25 20:09:41 +02:00
|
|
|
if old_hash != new_hash:
|
2015-09-16 00:01:23 +02:00
|
|
|
changed.append(content_inner_dir + relative_path)
|
|
|
|
|
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
# Check changed optional files
|
2019-03-15 21:06:59 +01:00
|
|
|
for relative_path, info in new_content.get("files_optional", {}).items():
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
file_inner_path = content_inner_dir + relative_path
|
|
|
|
|
new_hash = info["sha512"]
|
2016-08-10 12:58:19 +02:00
|
|
|
if old_content and old_content.get("files_optional", {}).get(relative_path):
|
|
|
|
|
# We have the file in the old content
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
old_hash = old_content["files_optional"][relative_path].get("sha512")
|
2016-11-07 23:39:04 +01:00
|
|
|
if old_hash != new_hash and self.site.isDownloadable(file_inner_path):
|
|
|
|
|
changed.append(file_inner_path) # Download new file
|
|
|
|
|
elif old_hash != new_hash and self.hashfield.hasHash(old_hash) and not self.site.settings.get("own"):
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
try:
|
2018-03-29 02:54:52 +02:00
|
|
|
old_hash_id = self.hashfield.getHashId(old_hash)
|
|
|
|
|
self.optionalRemoved(file_inner_path, old_hash_id, old_content["files_optional"][relative_path]["size"])
|
2018-10-15 13:09:43 +02:00
|
|
|
self.optionalDelete(file_inner_path)
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
self.log.debug("Deleted changed optional file: %s" % file_inner_path)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2019-04-23 01:56:11 +02:00
|
|
|
self.log.warning("Error deleting file %s: %s" % (file_inner_path, Debug.formatException(err)))
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
else: # The file is not in the old content
|
2016-11-07 23:39:04 +01:00
|
|
|
if self.site.isDownloadable(file_inner_path):
|
|
|
|
|
changed.append(file_inner_path) # Download new file
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
|
2015-09-16 00:01:23 +02:00
|
|
|
# Check deleted
|
|
|
|
|
if old_content:
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
old_files = dict(
|
|
|
|
|
old_content.get("files", {}),
|
|
|
|
|
**old_content.get("files_optional", {})
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
new_files = dict(
|
|
|
|
|
new_content.get("files", {}),
|
|
|
|
|
**new_content.get("files_optional", {})
|
|
|
|
|
)
|
|
|
|
|
|
2019-04-23 01:56:11 +02:00
|
|
|
deleted, renamed = self.getFileChanges(old_files, new_files)
|
|
|
|
|
|
|
|
|
|
for relative_path_old, relative_path_new in renamed.items():
|
2019-05-02 17:17:00 +02:00
|
|
|
self.log.debug("Renaming: %s -> %s" % (relative_path_old, relative_path_new))
|
2019-04-29 16:54:07 +02:00
|
|
|
if relative_path_new in new_content.get("files_optional", {}):
|
2019-04-23 01:56:11 +02:00
|
|
|
self.optionalRenamed(content_inner_dir + relative_path_old, content_inner_dir + relative_path_new)
|
|
|
|
|
if self.site.storage.isFile(relative_path_old):
|
|
|
|
|
try:
|
|
|
|
|
self.site.storage.rename(relative_path_old, relative_path_new)
|
|
|
|
|
if relative_path_new in changed:
|
|
|
|
|
changed.remove(relative_path_new)
|
|
|
|
|
self.log.debug("Renamed: %s -> %s" % (relative_path_old, relative_path_new))
|
|
|
|
|
except Exception as err:
|
|
|
|
|
self.log.warning("Error renaming file: %s -> %s %s" % (relative_path_old, relative_path_new, err))
|
|
|
|
|
|
Rev571, Optional file sizes to sidebar, Download all optional files option in sidebar, Optional file number in peer stats, Delete removed or changed optional files, Auto download optional files if autodownloadoptional checked, SiteReload command, Peer use global file server if no site defined, Allow browser cache video files, Allow more keepalive connections, Gevent 1.1 ranged request bugfix, Dont sent optional files details on websocket, Remove files from workermanager tasks if no longer in bad_files, Notify local client about changes on external siteSign
2015-11-09 00:44:03 +01:00
|
|
|
if deleted and not self.site.settings.get("own"):
|
2015-09-16 00:01:23 +02:00
|
|
|
# Deleting files that no longer in content.json
|
2016-11-07 23:36:04 +01:00
|
|
|
for file_relative_path in deleted:
|
|
|
|
|
file_inner_path = content_inner_dir + file_relative_path
|
2015-09-17 02:20:43 +02:00
|
|
|
try:
|
2016-11-07 23:36:04 +01:00
|
|
|
# Check if the deleted file is optional
|
|
|
|
|
if old_content.get("files_optional") and old_content["files_optional"].get(file_relative_path):
|
2018-10-15 13:09:43 +02:00
|
|
|
self.optionalDelete(file_inner_path)
|
2016-11-07 23:36:04 +01:00
|
|
|
old_hash = old_content["files_optional"][file_relative_path].get("sha512")
|
|
|
|
|
if self.hashfield.hasHash(old_hash):
|
2018-10-15 13:15:11 +02:00
|
|
|
old_hash_id = self.hashfield.getHashId(old_hash)
|
2018-03-29 02:54:52 +02:00
|
|
|
self.optionalRemoved(file_inner_path, old_hash_id, old_content["files_optional"][file_relative_path]["size"])
|
2018-10-15 13:09:43 +02:00
|
|
|
else:
|
|
|
|
|
self.site.storage.delete(file_inner_path)
|
2016-11-07 23:36:04 +01:00
|
|
|
|
2015-09-17 02:20:43 +02:00
|
|
|
self.log.debug("Deleted file: %s" % file_inner_path)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2018-10-15 13:09:43 +02:00
|
|
|
self.log.debug("Error deleting file %s: %s" % (file_inner_path, Debug.formatException(err)))
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-03-26 00:22:27 +01:00
|
|
|
# Cleanup empty dirs
|
|
|
|
|
tree = {root: [dirs, files] for root, dirs, files in os.walk(self.site.storage.getPath(content_inner_dir))}
|
|
|
|
|
for root in sorted(tree, key=len, reverse=True):
|
|
|
|
|
dirs, files = tree[root]
|
|
|
|
|
if dirs == [] and files == []:
|
|
|
|
|
root_inner_path = self.site.storage.getInnerPath(root.replace("\\", "/"))
|
|
|
|
|
self.log.debug("Empty directory: %s, cleaning up." % root_inner_path)
|
|
|
|
|
try:
|
|
|
|
|
self.site.storage.deleteDir(root_inner_path)
|
|
|
|
|
# Remove from tree dict to reflect changed state
|
|
|
|
|
tree[os.path.dirname(root)][0].remove(os.path.basename(root))
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-03-26 00:22:27 +01:00
|
|
|
self.log.debug("Error deleting empty directory %s: %s" % (root_inner_path, err))
|
|
|
|
|
|
2016-08-10 12:55:39 +02:00
|
|
|
# Check archived
|
|
|
|
|
if old_content and "user_contents" in new_content and "archived" in new_content["user_contents"]:
|
|
|
|
|
old_archived = old_content.get("user_contents", {}).get("archived", {})
|
|
|
|
|
new_archived = new_content.get("user_contents", {}).get("archived", {})
|
2016-11-08 15:02:44 +01:00
|
|
|
self.log.debug("old archived: %s, new archived: %s" % (len(old_archived), len(new_archived)))
|
2016-08-10 12:55:39 +02:00
|
|
|
archived_changed = {
|
|
|
|
|
key: date_archived
|
2019-03-15 21:06:59 +01:00
|
|
|
for key, date_archived in new_archived.items()
|
2016-08-10 12:55:39 +02:00
|
|
|
if old_archived.get(key) != new_archived[key]
|
|
|
|
|
}
|
|
|
|
|
if archived_changed:
|
|
|
|
|
self.log.debug("Archived changed: %s" % archived_changed)
|
2019-03-15 21:06:59 +01:00
|
|
|
for archived_dirname, date_archived in archived_changed.items():
|
2016-08-10 12:55:39 +02:00
|
|
|
archived_inner_path = content_inner_dir + archived_dirname + "/content.json"
|
|
|
|
|
if self.contents.get(archived_inner_path, {}).get("modified", 0) < date_archived:
|
|
|
|
|
self.removeContent(archived_inner_path)
|
2018-09-17 15:30:02 +02:00
|
|
|
deleted += archived_inner_path
|
2017-10-04 13:20:39 +02:00
|
|
|
self.site.settings["size"], self.site.settings["size_optional"] = self.getTotalSize()
|
2016-08-10 12:55:39 +02:00
|
|
|
|
2018-09-17 15:30:02 +02:00
|
|
|
# Check archived before
|
|
|
|
|
if old_content and "user_contents" in new_content and "archived_before" in new_content["user_contents"]:
|
|
|
|
|
old_archived_before = old_content.get("user_contents", {}).get("archived_before", 0)
|
|
|
|
|
new_archived_before = new_content.get("user_contents", {}).get("archived_before", 0)
|
|
|
|
|
if old_archived_before != new_archived_before:
|
|
|
|
|
self.log.debug("Archived before changed: %s -> %s" % (old_archived_before, new_archived_before))
|
|
|
|
|
|
|
|
|
|
# Remove downloaded archived files
|
|
|
|
|
num_removed_contents = 0
|
|
|
|
|
for archived_inner_path in self.listModified(before=new_archived_before):
|
|
|
|
|
if archived_inner_path.startswith(content_inner_dir) and archived_inner_path != content_inner_path:
|
|
|
|
|
self.removeContent(archived_inner_path)
|
|
|
|
|
num_removed_contents += 1
|
|
|
|
|
self.site.settings["size"], self.site.settings["size_optional"] = self.getTotalSize()
|
|
|
|
|
|
|
|
|
|
# Remove archived files from download queue
|
|
|
|
|
num_removed_bad_files = 0
|
2019-03-15 21:06:59 +01:00
|
|
|
for bad_file in list(self.site.bad_files.keys()):
|
2018-09-17 15:30:02 +02:00
|
|
|
if bad_file.endswith("content.json"):
|
|
|
|
|
del self.site.bad_files[bad_file]
|
|
|
|
|
num_removed_bad_files += 1
|
|
|
|
|
|
|
|
|
|
if num_removed_bad_files > 0:
|
|
|
|
|
self.site.worker_manager.removeSolvedFileTasks(mark_as_good=False)
|
|
|
|
|
gevent.spawn(self.site.update, since=0)
|
|
|
|
|
|
|
|
|
|
self.log.debug("Archived removed contents: %s, removed bad files: %s" % (num_removed_contents, num_removed_bad_files))
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
# Load includes
|
|
|
|
|
if load_includes and "includes" in new_content:
|
2019-03-15 21:06:59 +01:00
|
|
|
for relative_path, info in list(new_content["includes"].items()):
|
2015-09-16 00:01:23 +02:00
|
|
|
include_inner_path = content_inner_dir + relative_path
|
2015-06-25 20:09:41 +02:00
|
|
|
if self.site.storage.isFile(include_inner_path): # Content.json exists, load it
|
2015-09-16 00:01:23 +02:00
|
|
|
include_changed, include_deleted = self.loadContent(
|
|
|
|
|
include_inner_path, add_bad_files=add_bad_files, delete_removed_files=delete_removed_files
|
|
|
|
|
)
|
|
|
|
|
if include_changed:
|
|
|
|
|
changed += include_changed # Add changed files
|
|
|
|
|
if include_deleted:
|
|
|
|
|
deleted += include_deleted # Add changed files
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # Content.json not exist, add to changed files
|
2015-06-17 23:49:47 +02:00
|
|
|
self.log.debug("Missing include: %s" % include_inner_path)
|
|
|
|
|
changed += [include_inner_path]
|
|
|
|
|
|
|
|
|
|
# Load blind user includes (all subdir)
|
|
|
|
|
if load_includes and "user_contents" in new_content:
|
2015-09-16 00:01:23 +02:00
|
|
|
for relative_dir in os.listdir(content_dir):
|
|
|
|
|
include_inner_path = content_inner_dir + relative_dir + "/content.json"
|
2015-06-25 20:09:41 +02:00
|
|
|
if not self.site.storage.isFile(include_inner_path):
|
|
|
|
|
continue # Content.json not exist
|
2015-09-16 00:01:23 +02:00
|
|
|
include_changed, include_deleted = self.loadContent(
|
|
|
|
|
include_inner_path, add_bad_files=add_bad_files, delete_removed_files=delete_removed_files,
|
|
|
|
|
load_includes=False
|
|
|
|
|
)
|
|
|
|
|
if include_changed:
|
|
|
|
|
changed += include_changed # Add changed files
|
|
|
|
|
if include_deleted:
|
|
|
|
|
deleted += include_deleted # Add changed files
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-04-06 13:42:15 +02:00
|
|
|
# Save some memory
|
|
|
|
|
new_content["signs"] = None
|
|
|
|
|
if "cert_sign" in new_content:
|
|
|
|
|
new_content["cert_sign"] = None
|
2016-11-07 23:36:04 +01:00
|
|
|
|
|
|
|
|
if new_content.get("files_optional"):
|
|
|
|
|
self.has_optional_files = True
|
2015-06-17 23:49:47 +02:00
|
|
|
# Update the content
|
|
|
|
|
self.contents[content_inner_path] = new_content
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2017-01-11 13:13:37 +01:00
|
|
|
self.log.warning("%s parse error: %s" % (content_inner_path, Debug.formatException(err)))
|
2015-09-16 00:01:23 +02:00
|
|
|
return [], [] # Content.json parse error
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
# Add changed files to bad files
|
|
|
|
|
if add_bad_files:
|
|
|
|
|
for inner_path in changed:
|
2015-09-16 00:01:23 +02:00
|
|
|
self.site.bad_files[inner_path] = self.site.bad_files.get(inner_path, 0) + 1
|
2016-08-10 12:58:54 +02:00
|
|
|
for inner_path in deleted:
|
|
|
|
|
if inner_path in self.site.bad_files:
|
|
|
|
|
del self.site.bad_files[inner_path]
|
2018-09-17 15:30:02 +02:00
|
|
|
self.site.worker_manager.removeSolvedFileTasks()
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-08-10 12:59:19 +02:00
|
|
|
if new_content.get("modified", 0) > self.site.settings.get("modified", 0):
|
2015-06-25 20:09:41 +02:00
|
|
|
# Dont store modifications in the far future (more than 10 minute)
|
|
|
|
|
self.site.settings["modified"] = min(time.time() + 60 * 10, new_content["modified"])
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2015-09-16 00:01:23 +02:00
|
|
|
return changed, deleted
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-08-10 12:55:39 +02:00
|
|
|
def removeContent(self, inner_path):
|
|
|
|
|
inner_dir = helper.getDirname(inner_path)
|
2016-09-14 10:52:41 +02:00
|
|
|
try:
|
|
|
|
|
content = self.contents[inner_path]
|
|
|
|
|
files = dict(
|
|
|
|
|
content.get("files", {}),
|
|
|
|
|
**content.get("files_optional", {})
|
|
|
|
|
)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-09-14 10:52:41 +02:00
|
|
|
self.log.debug("Error loading %s for removeContent: %s" % (inner_path, Debug.formatException(err)))
|
|
|
|
|
files = {}
|
2016-08-10 12:55:39 +02:00
|
|
|
files["content.json"] = True
|
|
|
|
|
# Deleting files that no longer in content.json
|
|
|
|
|
for file_relative_path in files:
|
|
|
|
|
file_inner_path = inner_dir + file_relative_path
|
|
|
|
|
try:
|
|
|
|
|
self.site.storage.delete(file_inner_path)
|
|
|
|
|
self.log.debug("Deleted file: %s" % file_inner_path)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-08-10 12:55:39 +02:00
|
|
|
self.log.debug("Error deleting file %s: %s" % (file_inner_path, err))
|
|
|
|
|
try:
|
|
|
|
|
self.site.storage.deleteDir(inner_dir)
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-08-10 12:55:39 +02:00
|
|
|
self.log.debug("Error deleting dir %s: %s" % (inner_dir, err))
|
|
|
|
|
|
2016-09-14 10:52:41 +02:00
|
|
|
try:
|
|
|
|
|
del self.contents[inner_path]
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2016-09-14 10:52:41 +02:00
|
|
|
self.log.debug("Error key from contents: %s" % inner_path)
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
# Get total size of site
|
|
|
|
|
# Return: 32819 (size of files in kb)
|
|
|
|
|
def getTotalSize(self, ignore=None):
|
2017-10-04 13:20:39 +02:00
|
|
|
return self.contents.db.getTotalSize(self.site, ignore)
|
2016-09-04 18:06:18 +02:00
|
|
|
|
2018-09-17 15:30:02 +02:00
|
|
|
def listModified(self, after=None, before=None):
|
|
|
|
|
return self.contents.db.listModified(self.site, after=after, before=before)
|
2016-09-04 17:50:29 +02:00
|
|
|
|
2016-09-04 18:07:09 +02:00
|
|
|
def listContents(self, inner_path="content.json", user_files=False):
|
2016-12-04 18:54:22 +01:00
|
|
|
if inner_path not in self.contents:
|
|
|
|
|
return []
|
2016-09-04 18:07:09 +02:00
|
|
|
back = [inner_path]
|
|
|
|
|
content_inner_dir = helper.getDirname(inner_path)
|
2019-03-15 21:06:59 +01:00
|
|
|
for relative_path in list(self.contents[inner_path].get("includes", {}).keys()):
|
2016-09-04 18:07:09 +02:00
|
|
|
include_inner_path = content_inner_dir + relative_path
|
|
|
|
|
back += self.listContents(include_inner_path)
|
|
|
|
|
return back
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2016-08-10 12:55:39 +02:00
|
|
|
# Returns if file with the given modification date is archived or not
|
|
|
|
|
def isArchived(self, inner_path, modified):
|
2019-07-01 16:24:23 +02:00
|
|
|
match = re.match(r"(.*)/(.*?)/", inner_path)
|
2016-08-10 12:55:39 +02:00
|
|
|
if not match:
|
|
|
|
|
return False
|
2018-03-18 21:26:20 +01:00
|
|
|
user_contents_inner_path = match.group(1) + "/content.json"
|
|
|
|
|
relative_directory = match.group(2)
|
|
|
|
|
|
|
|
|
|
file_info = self.getFileInfo(user_contents_inner_path)
|
2018-09-17 15:30:02 +02:00
|
|
|
if file_info:
|
|
|
|
|
time_archived_before = file_info.get("archived_before", 0)
|
2019-03-15 21:06:59 +01:00
|
|
|
time_directory_archived = file_info.get("archived", {}).get(relative_directory, 0)
|
2018-09-17 15:30:02 +02:00
|
|
|
if modified <= time_archived_before or modified <= time_directory_archived:
|
|
|
|
|
return True
|
|
|
|
|
else:
|
|
|
|
|
return False
|
2016-08-10 12:55:39 +02:00
|
|
|
else:
|
|
|
|
|
return False
|
|
|
|
|
|
2018-03-29 02:59:11 +02:00
|
|
|
def isDownloaded(self, inner_path, hash_id=None):
|
|
|
|
|
if not hash_id:
|
|
|
|
|
file_info = self.getFileInfo(inner_path)
|
|
|
|
|
if not file_info or "sha512" not in file_info:
|
|
|
|
|
return False
|
|
|
|
|
hash_id = self.hashfield.getHashId(file_info["sha512"])
|
|
|
|
|
return hash_id in self.hashfield
|
|
|
|
|
|
2019-02-02 00:11:47 +01:00
|
|
|
# Is modified since signing
|
|
|
|
|
def isModified(self, inner_path):
|
|
|
|
|
s = time.time()
|
|
|
|
|
if inner_path.endswith("content.json"):
|
|
|
|
|
try:
|
|
|
|
|
is_valid = self.verifyFile(inner_path, self.site.storage.open(inner_path), ignore_same=False)
|
|
|
|
|
if is_valid:
|
|
|
|
|
is_modified = False
|
|
|
|
|
else:
|
|
|
|
|
is_modified = True
|
|
|
|
|
except VerifyError:
|
|
|
|
|
is_modified = True
|
|
|
|
|
else:
|
|
|
|
|
try:
|
|
|
|
|
self.verifyFile(inner_path, self.site.storage.open(inner_path), ignore_same=False)
|
|
|
|
|
is_modified = False
|
|
|
|
|
except VerifyError:
|
|
|
|
|
is_modified = True
|
|
|
|
|
return is_modified
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
# Find the file info line from self.contents
|
2015-07-12 20:36:46 +02:00
|
|
|
# Return: { "sha512": "c29d73d...21f518", "size": 41 , "content_inner_path": "content.json"}
|
2017-10-16 15:11:19 +02:00
|
|
|
def getFileInfo(self, inner_path, new_file=False):
|
2015-06-25 20:09:41 +02:00
|
|
|
dirs = inner_path.split("/") # Parent dirs of content.json
|
|
|
|
|
inner_path_parts = [dirs.pop()] # Filename relative to content.json
|
2015-06-17 23:49:47 +02:00
|
|
|
while True:
|
|
|
|
|
content_inner_path = "%s/content.json" % "/".join(dirs)
|
2017-10-26 10:43:10 +02:00
|
|
|
content_inner_path = content_inner_path.strip("/")
|
|
|
|
|
content = self.contents.get(content_inner_path)
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
|
|
|
|
|
# Check in files
|
|
|
|
|
if content and "files" in content:
|
2015-06-17 23:49:47 +02:00
|
|
|
back = content["files"].get("/".join(inner_path_parts))
|
|
|
|
|
if back:
|
|
|
|
|
back["content_inner_path"] = content_inner_path
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
back["optional"] = False
|
2017-01-27 14:00:28 +01:00
|
|
|
back["relative_path"] = "/".join(inner_path_parts)
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
return back
|
|
|
|
|
|
|
|
|
|
# Check in optional files
|
|
|
|
|
if content and "files_optional" in content: # Check if file in this content.json
|
|
|
|
|
back = content["files_optional"].get("/".join(inner_path_parts))
|
|
|
|
|
if back:
|
|
|
|
|
back["content_inner_path"] = content_inner_path
|
|
|
|
|
back["optional"] = True
|
2017-01-27 14:00:28 +01:00
|
|
|
back["relative_path"] = "/".join(inner_path_parts)
|
2015-06-17 23:49:47 +02:00
|
|
|
return back
|
|
|
|
|
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
# Return the rules if user dir
|
|
|
|
|
if content and "user_contents" in content:
|
2015-06-17 23:49:47 +02:00
|
|
|
back = content["user_contents"]
|
2017-10-04 13:24:44 +02:00
|
|
|
content_inner_path_dir = helper.getDirname(content_inner_path)
|
|
|
|
|
relative_content_path = inner_path[len(content_inner_path_dir):]
|
2019-07-01 16:24:23 +02:00
|
|
|
user_auth_address_match = re.match(r"([A-Za-z0-9]+)/.*", relative_content_path)
|
2018-11-08 01:36:12 +01:00
|
|
|
if user_auth_address_match:
|
|
|
|
|
user_auth_address = user_auth_address_match.group(1)
|
2017-10-04 13:24:44 +02:00
|
|
|
back["content_inner_path"] = "%s%s/content.json" % (content_inner_path_dir, user_auth_address)
|
|
|
|
|
else:
|
|
|
|
|
back["content_inner_path"] = content_inner_path_dir + "content.json"
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
back["optional"] = None
|
2017-10-16 15:11:19 +02:00
|
|
|
back["relative_path"] = "/".join(inner_path_parts)
|
|
|
|
|
return back
|
|
|
|
|
|
|
|
|
|
if new_file and content:
|
|
|
|
|
back = {}
|
|
|
|
|
back["content_inner_path"] = content_inner_path
|
|
|
|
|
back["relative_path"] = "/".join(inner_path_parts)
|
|
|
|
|
back["optional"] = None
|
2015-06-17 23:49:47 +02:00
|
|
|
return back
|
|
|
|
|
|
|
|
|
|
# No inner path in this dir, lets try the parent dir
|
|
|
|
|
if dirs:
|
|
|
|
|
inner_path_parts.insert(0, dirs.pop())
|
|
|
|
|
else: # No more parent dirs
|
|
|
|
|
break
|
|
|
|
|
|
|
|
|
|
# Not found
|
|
|
|
|
return False
|
|
|
|
|
|
|
|
|
|
# Get rules for the file
|
|
|
|
|
# Return: The rules for the file or False if not allowed
|
|
|
|
|
def getRules(self, inner_path, content=None):
|
2015-06-25 20:09:41 +02:00
|
|
|
if not inner_path.endswith("content.json"): # Find the files content.json first
|
2015-06-17 23:49:47 +02:00
|
|
|
file_info = self.getFileInfo(inner_path)
|
2015-06-25 20:09:41 +02:00
|
|
|
if not file_info:
|
|
|
|
|
return False # File not found
|
2015-06-17 23:49:47 +02:00
|
|
|
inner_path = file_info["content_inner_path"]
|
2017-06-13 10:36:38 +02:00
|
|
|
|
2017-10-04 13:24:22 +02:00
|
|
|
if inner_path == "content.json": # Root content.json
|
2017-06-13 10:36:38 +02:00
|
|
|
rules = {}
|
|
|
|
|
rules["signers"] = self.getValidSigners(inner_path, content)
|
|
|
|
|
return rules
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
dirs = inner_path.split("/") # Parent dirs of content.json
|
|
|
|
|
inner_path_parts = [dirs.pop()] # Filename relative to content.json
|
|
|
|
|
inner_path_parts.insert(0, dirs.pop()) # Dont check in self dir
|
2015-06-17 23:49:47 +02:00
|
|
|
while True:
|
|
|
|
|
content_inner_path = "%s/content.json" % "/".join(dirs)
|
|
|
|
|
parent_content = self.contents.get(content_inner_path.strip("/"))
|
|
|
|
|
if parent_content and "includes" in parent_content:
|
|
|
|
|
return parent_content["includes"].get("/".join(inner_path_parts))
|
|
|
|
|
elif parent_content and "user_contents" in parent_content:
|
|
|
|
|
return self.getUserContentRules(parent_content, inner_path, content)
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # No inner path in this dir, lets try the parent dir
|
2015-06-17 23:49:47 +02:00
|
|
|
if dirs:
|
|
|
|
|
inner_path_parts.insert(0, dirs.pop())
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # No more parent dirs
|
2015-06-17 23:49:47 +02:00
|
|
|
break
|
|
|
|
|
|
|
|
|
|
return False
|
|
|
|
|
|
|
|
|
|
# Get rules for a user file
|
|
|
|
|
# Return: The rules of the file or False if not allowed
|
|
|
|
|
def getUserContentRules(self, parent_content, inner_path, content):
|
|
|
|
|
user_contents = parent_content["user_contents"]
|
2017-10-04 13:24:22 +02:00
|
|
|
|
|
|
|
|
# Delivered for directory
|
|
|
|
|
if "inner_path" in parent_content:
|
|
|
|
|
parent_content_dir = helper.getDirname(parent_content["inner_path"])
|
2019-07-01 16:24:23 +02:00
|
|
|
user_address = re.match(r"([A-Za-z0-9]*?)/", inner_path[len(parent_content_dir):]).group(1)
|
2017-10-04 13:24:22 +02:00
|
|
|
else:
|
2019-07-01 16:24:23 +02:00
|
|
|
user_address = re.match(r".*/([A-Za-z0-9]*?)/.*?$", inner_path).group(1)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
try:
|
2015-06-25 20:09:41 +02:00
|
|
|
if not content:
|
|
|
|
|
content = self.site.storage.loadJson(inner_path) # Read the file if no content specified
|
2016-08-10 12:57:24 +02:00
|
|
|
user_urn = "%s/%s" % (content["cert_auth_type"], content["cert_user_id"]) # web/nofish@zeroid.bit
|
2016-08-22 03:40:55 +02:00
|
|
|
cert_user_id = content["cert_user_id"]
|
2016-03-17 01:56:25 +01:00
|
|
|
except Exception: # Content.json not exist
|
2016-08-22 03:40:55 +02:00
|
|
|
user_urn = "n-a/n-a"
|
|
|
|
|
cert_user_id = "n-a"
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-10-16 20:26:41 +02:00
|
|
|
if user_address in user_contents["permissions"]:
|
|
|
|
|
rules = copy.copy(user_contents["permissions"].get(user_address, {})) # Default rules based on address
|
|
|
|
|
else:
|
|
|
|
|
rules = copy.copy(user_contents["permissions"].get(cert_user_id, {})) # Default rules based on username
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if rules is False:
|
2016-03-17 01:56:25 +01:00
|
|
|
banned = True
|
|
|
|
|
rules = {}
|
|
|
|
|
else:
|
|
|
|
|
banned = False
|
2015-06-17 23:49:47 +02:00
|
|
|
if "signers" in rules:
|
|
|
|
|
rules["signers"] = rules["signers"][:] # Make copy of the signers
|
2019-03-15 21:06:59 +01:00
|
|
|
for permission_pattern, permission_rules in list(user_contents["permission_rules"].items()): # Regexp rules
|
2017-07-14 10:34:18 +02:00
|
|
|
if not SafeRe.match(permission_pattern, user_urn):
|
2015-06-25 20:09:41 +02:00
|
|
|
continue # Rule is not valid for user
|
2015-06-17 23:49:47 +02:00
|
|
|
# Update rules if its better than current recorded ones
|
2019-03-15 21:06:59 +01:00
|
|
|
for key, val in permission_rules.items():
|
2015-06-17 23:49:47 +02:00
|
|
|
if key not in rules:
|
|
|
|
|
if type(val) is list:
|
|
|
|
|
rules[key] = val[:] # Make copy
|
|
|
|
|
else:
|
|
|
|
|
rules[key] = val
|
|
|
|
|
elif type(val) is int: # Int, update if larger
|
|
|
|
|
if val > rules[key]:
|
|
|
|
|
rules[key] = val
|
|
|
|
|
elif hasattr(val, "startswith"): # String, update if longer
|
2015-06-25 20:09:41 +02:00
|
|
|
if len(val) > len(rules[key]):
|
|
|
|
|
rules[key] = val
|
2015-06-17 23:49:47 +02:00
|
|
|
elif type(val) is list: # List, append
|
|
|
|
|
rules[key] += val
|
|
|
|
|
|
2018-11-08 01:35:15 +01:00
|
|
|
# Accepted cert signers
|
|
|
|
|
rules["cert_signers"] = user_contents.get("cert_signers", {})
|
|
|
|
|
rules["cert_signers_pattern"] = user_contents.get("cert_signers_pattern")
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if "signers" not in rules:
|
|
|
|
|
rules["signers"] = []
|
2016-03-17 01:56:25 +01:00
|
|
|
|
|
|
|
|
if not banned:
|
|
|
|
|
rules["signers"].append(user_address) # Add user as valid signer
|
2015-06-17 23:49:47 +02:00
|
|
|
rules["user_address"] = user_address
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
rules["includes_allowed"] = False
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
return rules
|
|
|
|
|
|
2016-04-06 13:54:32 +02:00
|
|
|
# Get diffs for changed files
|
2016-08-10 12:58:19 +02:00
|
|
|
def getDiffs(self, inner_path, limit=30 * 1024, update_files=True):
|
|
|
|
|
if inner_path not in self.contents:
|
2017-01-05 02:25:49 +01:00
|
|
|
return {}
|
2016-04-06 13:54:32 +02:00
|
|
|
diffs = {}
|
|
|
|
|
content_inner_path_dir = helper.getDirname(inner_path)
|
|
|
|
|
for file_relative_path in self.contents[inner_path].get("files", {}):
|
|
|
|
|
file_inner_path = content_inner_path_dir + file_relative_path
|
2016-08-10 12:58:19 +02:00
|
|
|
if self.site.storage.isFile(file_inner_path + "-new"): # New version present
|
2016-04-06 13:54:32 +02:00
|
|
|
diffs[file_relative_path] = Diff.diff(
|
|
|
|
|
list(self.site.storage.open(file_inner_path)),
|
2016-08-10 12:58:19 +02:00
|
|
|
list(self.site.storage.open(file_inner_path + "-new")),
|
2016-04-06 13:54:32 +02:00
|
|
|
limit=limit
|
|
|
|
|
)
|
|
|
|
|
if update_files:
|
|
|
|
|
self.site.storage.delete(file_inner_path)
|
2016-08-10 12:58:19 +02:00
|
|
|
self.site.storage.rename(file_inner_path + "-new", file_inner_path)
|
|
|
|
|
if self.site.storage.isFile(file_inner_path + "-old"): # Old version present
|
2016-04-06 13:54:32 +02:00
|
|
|
diffs[file_relative_path] = Diff.diff(
|
2016-08-10 12:58:19 +02:00
|
|
|
list(self.site.storage.open(file_inner_path + "-old")),
|
2016-04-06 13:54:32 +02:00
|
|
|
list(self.site.storage.open(file_inner_path)),
|
|
|
|
|
limit=limit
|
|
|
|
|
)
|
|
|
|
|
if update_files:
|
2016-08-10 12:58:19 +02:00
|
|
|
self.site.storage.delete(file_inner_path + "-old")
|
2016-04-06 13:54:32 +02:00
|
|
|
return diffs
|
|
|
|
|
|
2017-07-13 14:58:16 +02:00
|
|
|
def hashFile(self, dir_inner_path, file_relative_path, optional=False):
|
|
|
|
|
back = {}
|
|
|
|
|
file_inner_path = dir_inner_path + "/" + file_relative_path
|
|
|
|
|
|
|
|
|
|
file_path = self.site.storage.getPath(file_inner_path)
|
|
|
|
|
file_size = os.path.getsize(file_path)
|
|
|
|
|
sha512sum = CryptHash.sha512sum(file_path) # Calculate sha512 sum of file
|
|
|
|
|
if optional and not self.hashfield.hasHash(sha512sum):
|
2018-03-29 02:54:52 +02:00
|
|
|
self.optionalDownloaded(file_inner_path, self.hashfield.getHashId(sha512sum), file_size, own=True)
|
2017-07-13 14:58:16 +02:00
|
|
|
|
|
|
|
|
back[file_relative_path] = {"sha512": sha512sum, "size": os.path.getsize(file_path)}
|
|
|
|
|
return back
|
|
|
|
|
|
2017-07-13 14:58:52 +02:00
|
|
|
def isValidRelativePath(self, relative_path):
|
2019-08-19 09:09:32 +02:00
|
|
|
if ".." in relative_path.replace("\\", "/").split("/"):
|
2017-07-13 14:58:52 +02:00
|
|
|
return False
|
|
|
|
|
elif len(relative_path) > 255:
|
|
|
|
|
return False
|
2020-03-21 19:51:44 +01:00
|
|
|
elif relative_path[0] in ("/", "\\"): # Starts with
|
2019-11-07 02:47:19 +01:00
|
|
|
return False
|
|
|
|
|
elif relative_path[-1] in (".", " "): # Ends with
|
|
|
|
|
return False
|
|
|
|
|
elif re.match(r".*(^|/)(CON|PRN|AUX|NUL|COM[1-9]|LPT[1-9]|CONOUT\$|CONIN\$)(\.|/|$)", relative_path, re.IGNORECASE): # Protected on Windows
|
|
|
|
|
return False
|
2017-07-13 14:58:52 +02:00
|
|
|
else:
|
2019-11-07 02:18:27 +01:00
|
|
|
return re.match(r"^[^\x00-\x1F\"*:<>?\\|]+$", relative_path)
|
2017-07-13 14:58:52 +02:00
|
|
|
|
2017-10-04 13:25:07 +02:00
|
|
|
def sanitizePath(self, inner_path):
|
2019-11-07 02:18:27 +01:00
|
|
|
return re.sub("[\x00-\x1F\"*:<>?\\|]", "", inner_path)
|
2017-10-04 13:25:07 +02:00
|
|
|
|
2015-09-28 22:07:26 +02:00
|
|
|
# Hash files in directory
|
|
|
|
|
def hashFiles(self, dir_inner_path, ignore_pattern=None, optional_pattern=None):
|
|
|
|
|
files_node = {}
|
|
|
|
|
files_optional_node = {}
|
2019-12-17 14:23:18 +01:00
|
|
|
db_inner_path = self.site.storage.getDbFile()
|
2017-07-14 10:34:18 +02:00
|
|
|
if dir_inner_path and not self.isValidRelativePath(dir_inner_path):
|
2015-10-24 13:57:46 +02:00
|
|
|
ignored = True
|
|
|
|
|
self.log.error("- [ERROR] Only ascii encoded directories allowed: %s" % dir_inner_path)
|
2015-09-28 22:07:26 +02:00
|
|
|
|
2017-12-20 23:25:25 +01:00
|
|
|
for file_relative_path in self.site.storage.walk(dir_inner_path, ignore_pattern):
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
file_name = helper.getFilename(file_relative_path)
|
2015-09-28 22:07:26 +02:00
|
|
|
|
|
|
|
|
ignored = optional = False
|
|
|
|
|
if file_name == "content.json":
|
|
|
|
|
ignored = True
|
2016-04-06 13:54:48 +02:00
|
|
|
elif file_name.startswith(".") or file_name.endswith("-old") or file_name.endswith("-new"):
|
2015-09-28 22:07:26 +02:00
|
|
|
ignored = True
|
2017-07-13 14:58:52 +02:00
|
|
|
elif not self.isValidRelativePath(file_relative_path):
|
2015-10-24 13:57:46 +02:00
|
|
|
ignored = True
|
2017-07-13 14:58:52 +02:00
|
|
|
self.log.error("- [ERROR] Invalid filename: %s" % file_relative_path)
|
2019-12-17 14:23:18 +01:00
|
|
|
elif dir_inner_path == "" and db_inner_path and file_relative_path.startswith(db_inner_path):
|
2017-10-22 11:13:09 +02:00
|
|
|
ignored = True
|
2017-07-14 10:34:18 +02:00
|
|
|
elif optional_pattern and SafeRe.match(optional_pattern, file_relative_path):
|
2015-09-28 22:07:26 +02:00
|
|
|
optional = True
|
|
|
|
|
|
2016-03-21 09:43:53 +01:00
|
|
|
if ignored: # Ignore content.json, defined regexp and files starting with .
|
2015-09-28 22:07:26 +02:00
|
|
|
self.log.info("- [SKIPPED] %s" % file_relative_path)
|
|
|
|
|
else:
|
|
|
|
|
if optional:
|
2017-07-13 14:58:16 +02:00
|
|
|
self.log.info("- [OPTIONAL] %s" % file_relative_path)
|
|
|
|
|
files_optional_node.update(
|
|
|
|
|
self.hashFile(dir_inner_path, file_relative_path, optional=True)
|
|
|
|
|
)
|
2015-09-28 22:07:26 +02:00
|
|
|
else:
|
2017-07-13 14:58:16 +02:00
|
|
|
self.log.info("- %s" % file_relative_path)
|
|
|
|
|
files_node.update(
|
|
|
|
|
self.hashFile(dir_inner_path, file_relative_path)
|
|
|
|
|
)
|
2015-09-28 22:07:26 +02:00
|
|
|
return files_node, files_optional_node
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
# Create and sign a content.json
|
|
|
|
|
# Return: The new content if filewrite = False
|
2017-01-27 12:02:14 +01:00
|
|
|
def sign(self, inner_path="content.json", privatekey=None, filewrite=True, update_changed_files=False, extend=None, remove_missing_optional=False):
|
2017-07-19 16:45:28 +02:00
|
|
|
if not inner_path.endswith("content.json"):
|
|
|
|
|
raise SignError("Invalid file name, you can only sign content.json files")
|
|
|
|
|
|
2016-04-06 13:42:15 +02:00
|
|
|
if inner_path in self.contents:
|
2017-04-07 18:16:58 +02:00
|
|
|
content = self.contents.get(inner_path)
|
|
|
|
|
if content and content.get("cert_sign", False) is None and self.site.storage.isFile(inner_path):
|
2016-04-06 13:42:15 +02:00
|
|
|
# Recover cert_sign from file
|
|
|
|
|
content["cert_sign"] = self.site.storage.loadJson(inner_path).get("cert_sign")
|
|
|
|
|
else:
|
|
|
|
|
content = None
|
2015-06-25 20:09:41 +02:00
|
|
|
if not content: # Content not exist yet, load default one
|
2015-06-17 23:49:47 +02:00
|
|
|
self.log.info("File %s not exist yet, loading default values..." % inner_path)
|
2017-03-12 13:13:30 +01:00
|
|
|
|
|
|
|
|
if self.site.storage.isFile(inner_path):
|
|
|
|
|
content = self.site.storage.loadJson(inner_path)
|
|
|
|
|
if "files" not in content:
|
|
|
|
|
content["files"] = {}
|
|
|
|
|
if "signs" not in content:
|
|
|
|
|
content["signs"] = {}
|
|
|
|
|
else:
|
|
|
|
|
content = {"files": {}, "signs": {}} # Default content.json
|
|
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
if inner_path == "content.json": # It's the root content.json, add some more fields
|
|
|
|
|
content["title"] = "%s - ZeroNet_" % self.site.address
|
|
|
|
|
content["description"] = ""
|
|
|
|
|
content["signs_required"] = 1
|
|
|
|
|
content["ignore"] = ""
|
2016-08-10 12:57:55 +02:00
|
|
|
|
|
|
|
|
if extend:
|
|
|
|
|
# Add extend keys if not exists
|
2019-03-15 21:06:59 +01:00
|
|
|
for key, val in list(extend.items()):
|
2017-10-04 12:51:24 +02:00
|
|
|
if not content.get(key):
|
2016-08-10 12:57:55 +02:00
|
|
|
content[key] = val
|
2017-10-04 12:51:24 +02:00
|
|
|
self.log.info("Extending content.json with: %s" % key)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
directory = helper.getDirname(self.site.storage.getPath(inner_path))
|
|
|
|
|
inner_directory = helper.getDirname(inner_path)
|
2015-06-17 23:49:47 +02:00
|
|
|
self.log.info("Opening site data directory: %s..." % directory)
|
|
|
|
|
|
|
|
|
|
changed_files = [inner_path]
|
2015-10-11 02:22:53 +02:00
|
|
|
files_node, files_optional_node = self.hashFiles(
|
|
|
|
|
helper.getDirname(inner_path), content.get("ignore"), content.get("optional")
|
|
|
|
|
)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-01-27 12:02:14 +01:00
|
|
|
if not remove_missing_optional:
|
2019-03-15 21:06:59 +01:00
|
|
|
for file_inner_path, file_details in content.get("files_optional", {}).items():
|
2017-01-27 12:02:14 +01:00
|
|
|
if file_inner_path not in files_optional_node:
|
|
|
|
|
files_optional_node[file_inner_path] = file_details
|
|
|
|
|
|
2015-09-28 22:07:26 +02:00
|
|
|
# Find changed files
|
|
|
|
|
files_merged = files_node.copy()
|
|
|
|
|
files_merged.update(files_optional_node)
|
2019-03-15 21:06:59 +01:00
|
|
|
for file_relative_path, file_details in files_merged.items():
|
2016-08-10 12:57:24 +02:00
|
|
|
old_hash = content.get("files", {}).get(file_relative_path, {}).get("sha512")
|
2015-09-28 22:07:26 +02:00
|
|
|
new_hash = files_merged[file_relative_path]["sha512"]
|
|
|
|
|
if old_hash != new_hash:
|
|
|
|
|
changed_files.append(inner_directory + file_relative_path)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
self.log.debug("Changed files: %s" % changed_files)
|
|
|
|
|
if update_changed_files:
|
|
|
|
|
for file_path in changed_files:
|
|
|
|
|
self.site.storage.onUpdated(file_path)
|
|
|
|
|
|
|
|
|
|
# Generate new content.json
|
|
|
|
|
self.log.info("Adding timestamp and sha512sums to new content.json...")
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
new_content = content.copy() # Create a copy of current content.json
|
2015-09-28 22:07:26 +02:00
|
|
|
new_content["files"] = files_node # Add files sha512 hash
|
|
|
|
|
if files_optional_node:
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
new_content["files_optional"] = files_optional_node
|
|
|
|
|
elif "files_optional" in new_content:
|
|
|
|
|
del new_content["files_optional"]
|
|
|
|
|
|
2017-01-07 01:06:47 +01:00
|
|
|
new_content["modified"] = int(time.time()) # Add timestamp
|
2015-06-17 23:49:47 +02:00
|
|
|
if inner_path == "content.json":
|
|
|
|
|
new_content["zeronet_version"] = config.version
|
|
|
|
|
new_content["signs_required"] = content.get("signs_required", 1)
|
|
|
|
|
|
Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width
2016-02-18 11:22:21 +01:00
|
|
|
new_content["address"] = self.site.address
|
|
|
|
|
new_content["inner_path"] = inner_path
|
|
|
|
|
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
# Verify private key
|
2015-06-17 23:49:47 +02:00
|
|
|
from Crypt import CryptBitcoin
|
|
|
|
|
self.log.info("Verifying private key...")
|
|
|
|
|
privatekey_address = CryptBitcoin.privatekeyToAddress(privatekey)
|
|
|
|
|
valid_signers = self.getValidSigners(inner_path, new_content)
|
|
|
|
|
if privatekey_address not in valid_signers:
|
2017-06-19 15:47:47 +02:00
|
|
|
raise SignError(
|
2015-07-12 20:36:46 +02:00
|
|
|
"Private key invalid! Valid signers: %s, Private key address: %s" %
|
|
|
|
|
(valid_signers, privatekey_address)
|
|
|
|
|
)
|
2015-06-17 23:49:47 +02:00
|
|
|
self.log.info("Correct %s in valid signers: %s" % (privatekey_address, valid_signers))
|
|
|
|
|
|
2015-07-12 20:36:46 +02:00
|
|
|
if inner_path == "content.json" and privatekey_address == self.site.address:
|
|
|
|
|
# If signing using the root key, then sign the valid signers
|
2017-09-02 14:26:39 +02:00
|
|
|
signers_data = "%s:%s" % (new_content["signs_required"], ",".join(valid_signers))
|
|
|
|
|
new_content["signers_sign"] = CryptBitcoin.sign(str(signers_data), privatekey)
|
2015-06-25 20:09:41 +02:00
|
|
|
if not new_content["signers_sign"]:
|
|
|
|
|
self.log.info("Old style address, signers_sign is none")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
self.log.info("Signing %s..." % inner_path)
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if "signs" in new_content:
|
|
|
|
|
del(new_content["signs"]) # Delete old signs
|
|
|
|
|
if "sign" in new_content:
|
|
|
|
|
del(new_content["sign"]) # Delete old sign (backward compatibility)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
sign_content = json.dumps(new_content, sort_keys=True)
|
|
|
|
|
sign = CryptBitcoin.sign(sign_content, privatekey)
|
2015-06-25 20:09:41 +02:00
|
|
|
# new_content["signs"] = content.get("signs", {}) # TODO: Multisig
|
|
|
|
|
if sign: # If signing is successful (not an old address)
|
2015-06-17 23:49:47 +02:00
|
|
|
new_content["signs"] = {}
|
|
|
|
|
new_content["signs"][privatekey_address] = sign
|
|
|
|
|
|
2017-06-19 15:47:03 +02:00
|
|
|
self.verifyContent(inner_path, new_content)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
if filewrite:
|
|
|
|
|
self.log.info("Saving to %s..." % inner_path)
|
|
|
|
|
self.site.storage.writeJson(inner_path, new_content)
|
Version 0.3.4, Rev656, CryptMessage plugin for AES and ECIES encryption, Added pyelliptic lib for OpenSSSL based encryption methods, Test CryptMessage plugin, Force reload content.json before signing and after write, Escaped Sql IN queries support, Test Sql parameter escaping, ui_websocket Test fixture, Plugin testing support, Always return websocket errors as dict, Wait for file on weboscket fileGet command if its already in bad_files queue, PushState and ReplaceState url manipulation support in wrapper API, Per auth-address localstorage, Longer timeout for udp tracker query
2015-12-10 21:36:20 +01:00
|
|
|
self.contents[inner_path] = new_content
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
self.log.info("File %s signed!" % inner_path)
|
|
|
|
|
|
|
|
|
|
if filewrite: # Written to file
|
|
|
|
|
return True
|
|
|
|
|
else: # Return the new content
|
|
|
|
|
return new_content
|
|
|
|
|
|
|
|
|
|
# The valid signers of content.json file
|
|
|
|
|
# Return: ["1KRxE1s3oDyNDawuYWpzbLUwNm8oDbeEp6", "13ReyhCsjhpuCVahn1DHdf6eMqqEVev162"]
|
|
|
|
|
def getValidSigners(self, inner_path, content=None):
|
|
|
|
|
valid_signers = []
|
2015-06-25 20:09:41 +02:00
|
|
|
if inner_path == "content.json": # Root content.json
|
2015-06-17 23:49:47 +02:00
|
|
|
if "content.json" in self.contents and "signers" in self.contents["content.json"]:
|
2017-03-23 23:24:30 +01:00
|
|
|
valid_signers += self.contents["content.json"]["signers"][:]
|
2015-06-17 23:49:47 +02:00
|
|
|
else:
|
|
|
|
|
rules = self.getRules(inner_path, content)
|
|
|
|
|
if rules and "signers" in rules:
|
|
|
|
|
valid_signers += rules["signers"]
|
|
|
|
|
|
|
|
|
|
if self.site.address not in valid_signers:
|
|
|
|
|
valid_signers.append(self.site.address) # Site address always valid
|
|
|
|
|
return valid_signers
|
|
|
|
|
|
|
|
|
|
# Return: The required number of valid signs for the content.json
|
|
|
|
|
def getSignsRequired(self, inner_path, content=None):
|
|
|
|
|
return 1 # Todo: Multisig
|
|
|
|
|
|
2020-01-04 16:54:34 +01:00
|
|
|
def verifyCertSign(self, user_address, user_auth_type, user_name, issuer_address, sign):
|
2015-06-17 23:49:47 +02:00
|
|
|
from Crypt import CryptBitcoin
|
2020-01-04 16:54:34 +01:00
|
|
|
cert_subject = "%s#%s/%s" % (user_address, user_auth_type, user_name)
|
|
|
|
|
return CryptBitcoin.verify(cert_subject, issuer_address, sign)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2020-01-04 16:54:34 +01:00
|
|
|
def verifyCert(self, inner_path, content):
|
2015-06-17 23:49:47 +02:00
|
|
|
rules = self.getRules(inner_path, content)
|
2016-08-22 03:40:55 +02:00
|
|
|
|
2018-11-08 01:35:15 +01:00
|
|
|
if not rules:
|
|
|
|
|
raise VerifyError("No rules for this file")
|
|
|
|
|
|
|
|
|
|
if not rules.get("cert_signers") and not rules.get("cert_signers_pattern"):
|
2015-06-25 20:09:41 +02:00
|
|
|
return True # Does not need cert
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-10-04 12:51:24 +02:00
|
|
|
if "cert_user_id" not in content:
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Missing cert_user_id")
|
|
|
|
|
|
2018-11-08 01:35:15 +01:00
|
|
|
if content["cert_user_id"].count("@") != 1:
|
|
|
|
|
raise VerifyError("Invalid domain in cert_user_id")
|
|
|
|
|
|
|
|
|
|
name, domain = content["cert_user_id"].rsplit("@", 1)
|
2015-06-17 23:49:47 +02:00
|
|
|
cert_address = rules["cert_signers"].get(domain)
|
2018-11-08 01:35:15 +01:00
|
|
|
if not cert_address: # Unknown Cert signer
|
|
|
|
|
if rules.get("cert_signers_pattern") and SafeRe.match(rules["cert_signers_pattern"], domain):
|
|
|
|
|
cert_address = domain
|
|
|
|
|
else:
|
|
|
|
|
raise VerifyError("Invalid cert signer: %s" % domain)
|
2017-04-12 00:31:37 +02:00
|
|
|
|
2020-01-04 16:54:34 +01:00
|
|
|
return self.verifyCertSign(rules["user_address"], content["cert_auth_type"], name, cert_address, content["cert_sign"])
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
# Checks if the content.json content is valid
|
|
|
|
|
# Return: True or False
|
2015-09-28 22:07:26 +02:00
|
|
|
def verifyContent(self, inner_path, content):
|
2019-03-15 21:06:59 +01:00
|
|
|
content_size = len(json.dumps(content, indent=1)) + sum([file["size"] for file in list(content["files"].values()) if file["size"] >= 0]) # Size of new content
|
2016-03-18 19:41:25 +01:00
|
|
|
# Calculate old content size
|
|
|
|
|
old_content = self.contents.get(inner_path)
|
|
|
|
|
if old_content:
|
2019-03-15 21:06:59 +01:00
|
|
|
old_content_size = len(json.dumps(old_content, indent=1)) + sum([file["size"] for file in list(old_content.get("files", {}).values())])
|
|
|
|
|
old_content_size_optional = sum([file["size"] for file in list(old_content.get("files_optional", {}).values())])
|
2016-03-18 19:41:25 +01:00
|
|
|
else:
|
|
|
|
|
old_content_size = 0
|
2016-11-07 23:36:04 +01:00
|
|
|
old_content_size_optional = 0
|
2016-09-04 17:44:45 +02:00
|
|
|
|
2017-11-28 18:16:37 +01:00
|
|
|
# Reset site site on first content.json
|
|
|
|
|
if not old_content and inner_path == "content.json":
|
|
|
|
|
self.site.settings["size"] = 0
|
|
|
|
|
|
2019-03-15 21:06:59 +01:00
|
|
|
content_size_optional = sum([file["size"] for file in list(content.get("files_optional", {}).values()) if file["size"] >= 0])
|
2016-03-18 19:41:25 +01:00
|
|
|
site_size = self.site.settings["size"] - old_content_size + content_size # Site size without old content plus the new
|
2016-11-07 23:36:04 +01:00
|
|
|
site_size_optional = self.site.settings["size_optional"] - old_content_size_optional + content_size_optional # Site size without old content plus the new
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
site_size_limit = self.site.getSizeLimit() * 1024 * 1024
|
2015-06-17 23:49:47 +02:00
|
|
|
|
Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width
2016-02-18 11:22:21 +01:00
|
|
|
# Check site address
|
|
|
|
|
if content.get("address") and content["address"] != self.site.address:
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Wrong site address: %s != %s" % (content["address"], self.site.address))
|
Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width
2016-02-18 11:22:21 +01:00
|
|
|
|
|
|
|
|
# Check file inner path
|
|
|
|
|
if content.get("inner_path") and content["inner_path"] != inner_path:
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Wrong inner_path: %s" % content["inner_path"])
|
Rev903, FeedQuery command only available for ADMIN sites, Show bad files in sidebar, Log unknown messages, Add and check inner_path and site address on sign/verify, Better peer cleanup limit, Log site load times, Testcase for address and inner_path verification, Re-sign testsite with new fields, Fix unnecessary loading screen display when browsing sub-folder with index.html, Fix safari notification width
2016-02-18 11:22:21 +01:00
|
|
|
|
2019-09-10 18:18:21 +02:00
|
|
|
# If our content.json file bigger than the size limit throw error
|
|
|
|
|
if inner_path == "content.json":
|
|
|
|
|
content_size_file = len(json.dumps(content, indent=1))
|
|
|
|
|
if content_size_file > site_size_limit:
|
|
|
|
|
# Save site size to display warning
|
2016-11-07 23:43:08 +01:00
|
|
|
self.site.settings["size"] = site_size
|
2019-11-25 14:43:28 +01:00
|
|
|
task = self.site.worker_manager.tasks.findTask(inner_path)
|
2019-09-10 18:18:21 +02:00
|
|
|
if task: # Dont try to download from other peers
|
|
|
|
|
self.site.worker_manager.failTask(task)
|
|
|
|
|
raise VerifyError("Content too large %s B > %s B, aborting task..." % (site_size, site_size_limit))
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-07-13 19:32:54 +02:00
|
|
|
# Verify valid filenames
|
2019-03-15 21:06:59 +01:00
|
|
|
for file_relative_path in list(content.get("files", {}).keys()) + list(content.get("files_optional", {}).keys()):
|
2017-07-13 19:32:54 +02:00
|
|
|
if not self.isValidRelativePath(file_relative_path):
|
|
|
|
|
raise VerifyError("Invalid relative path: %s" % file_relative_path)
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if inner_path == "content.json":
|
2016-11-07 23:36:04 +01:00
|
|
|
self.site.settings["size"] = site_size
|
|
|
|
|
self.site.settings["size_optional"] = site_size_optional
|
2015-06-25 20:09:41 +02:00
|
|
|
return True # Root content.json is passed
|
2017-07-13 19:32:54 +02:00
|
|
|
else:
|
|
|
|
|
if self.verifyContentInclude(inner_path, content, content_size, content_size_optional):
|
|
|
|
|
self.site.settings["size"] = site_size
|
|
|
|
|
self.site.settings["size_optional"] = site_size_optional
|
|
|
|
|
return True
|
|
|
|
|
else:
|
2019-12-17 14:23:31 +01:00
|
|
|
raise VerifyError("Content verify error")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-07-13 19:32:54 +02:00
|
|
|
def verifyContentInclude(self, inner_path, content, content_size, content_size_optional):
|
2015-06-17 23:49:47 +02:00
|
|
|
# Load include details
|
|
|
|
|
rules = self.getRules(inner_path, content)
|
|
|
|
|
if not rules:
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("No rules")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
# Check include size limit
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
if rules.get("max_size") is not None: # Include size limit
|
2015-06-17 23:49:47 +02:00
|
|
|
if content_size > rules["max_size"]:
|
2017-07-13 15:00:04 +02:00
|
|
|
raise VerifyError("Include too large %sB > %sB" % (content_size, rules["max_size"]))
|
2015-06-17 23:49:47 +02:00
|
|
|
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
if rules.get("max_size_optional") is not None: # Include optional files limit
|
|
|
|
|
if content_size_optional > rules["max_size_optional"]:
|
2017-07-13 15:00:04 +02:00
|
|
|
raise VerifyError("Include optional files too large %sB > %sB" % (
|
2017-06-19 15:47:03 +02:00
|
|
|
content_size_optional, rules["max_size_optional"])
|
2015-10-11 02:22:53 +02:00
|
|
|
)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
# Filename limit
|
|
|
|
|
if rules.get("files_allowed"):
|
2019-03-15 21:06:59 +01:00
|
|
|
for file_inner_path in list(content["files"].keys()):
|
2019-07-01 16:24:23 +02:00
|
|
|
if not SafeRe.match(r"^%s$" % rules["files_allowed"], file_inner_path):
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("File not allowed: %s" % file_inner_path)
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
|
|
|
|
|
if rules.get("files_allowed_optional"):
|
2019-03-15 21:06:59 +01:00
|
|
|
for file_inner_path in list(content.get("files_optional", {}).keys()):
|
2019-07-01 16:24:23 +02:00
|
|
|
if not SafeRe.match(r"^%s$" % rules["files_allowed_optional"], file_inner_path):
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Optional file not allowed: %s" % file_inner_path)
|
2015-06-17 23:49:47 +02:00
|
|
|
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
# Check if content includes allowed
|
|
|
|
|
if rules.get("includes_allowed") is False and content.get("includes"):
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Includes not allowed")
|
Rev467, requirements.txt accept newer dependecies, Boost dbschema.json, Move getDirname getFilename to helper, Verify optional files, Includes not allowed in user files, Optional files rules, Peer hashfield functions, Test optional files signing, Test file info, Test verify file, Test helpers
2015-10-01 01:35:13 +02:00
|
|
|
|
2015-06-17 23:49:47 +02:00
|
|
|
return True # All good
|
|
|
|
|
|
|
|
|
|
# Verify file validity
|
|
|
|
|
# Return: None = Same as before, False = Invalid, True = Valid
|
2015-06-25 20:09:41 +02:00
|
|
|
def verifyFile(self, inner_path, file, ignore_same=True):
|
|
|
|
|
if inner_path.endswith("content.json"): # content.json: Check using sign
|
2015-06-17 23:49:47 +02:00
|
|
|
from Crypt import CryptBitcoin
|
|
|
|
|
try:
|
2016-04-20 23:40:26 +02:00
|
|
|
if type(file) is dict:
|
|
|
|
|
new_content = file
|
|
|
|
|
else:
|
2019-12-31 12:44:47 +01:00
|
|
|
try:
|
|
|
|
|
if sys.version_info.major == 3 and sys.version_info.minor < 6:
|
|
|
|
|
new_content = json.loads(file.read().decode("utf8"))
|
|
|
|
|
else:
|
|
|
|
|
new_content = json.load(file)
|
|
|
|
|
except Exception as err:
|
|
|
|
|
raise VerifyError("Invalid json file: %s" % err)
|
2015-06-17 23:49:47 +02:00
|
|
|
if inner_path in self.contents:
|
2016-11-07 23:44:38 +01:00
|
|
|
old_content = self.contents.get(inner_path, {"modified": 0})
|
2015-06-17 23:49:47 +02:00
|
|
|
# Checks if its newer the ours
|
2015-06-25 20:09:41 +02:00
|
|
|
if old_content["modified"] == new_content["modified"] and ignore_same: # Ignore, have the same content.json
|
2015-06-17 23:49:47 +02:00
|
|
|
return None
|
2015-06-25 20:09:41 +02:00
|
|
|
elif old_content["modified"] > new_content["modified"]: # We have newer
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError(
|
|
|
|
|
"We have newer (Our: %s, Sent: %s)" %
|
|
|
|
|
(old_content["modified"], new_content["modified"])
|
2015-07-12 20:36:46 +02:00
|
|
|
)
|
|
|
|
|
if new_content["modified"] > time.time() + 60 * 60 * 24: # Content modified in the far future (allow 1 day+)
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Modify timestamp is in the far future!")
|
2016-08-10 12:55:39 +02:00
|
|
|
if self.isArchived(inner_path, new_content["modified"]):
|
2017-03-12 13:13:08 +01:00
|
|
|
if inner_path in self.site.bad_files:
|
|
|
|
|
del self.site.bad_files[inner_path]
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("This file is archived!")
|
2015-06-17 23:49:47 +02:00
|
|
|
# Check sign
|
|
|
|
|
sign = new_content.get("sign")
|
|
|
|
|
signs = new_content.get("signs", {})
|
2015-06-25 20:09:41 +02:00
|
|
|
if "sign" in new_content:
|
|
|
|
|
del(new_content["sign"]) # The file signed without the sign
|
|
|
|
|
if "signs" in new_content:
|
|
|
|
|
del(new_content["signs"]) # The file signed without the signs
|
2017-01-07 01:06:24 +01:00
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
sign_content = json.dumps(new_content, sort_keys=True) # Dump the json to string to remove whitepsace
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2017-01-07 01:06:24 +01:00
|
|
|
# Fix float representation error on Android
|
|
|
|
|
modified = new_content["modified"]
|
|
|
|
|
if config.fix_float_decimals and type(modified) is float and not str(modified).endswith(".0"):
|
|
|
|
|
modified_fixed = "{:.6f}".format(modified).strip("0.")
|
|
|
|
|
sign_content = sign_content.replace(
|
|
|
|
|
'"modified": %s' % repr(modified),
|
|
|
|
|
'"modified": %s' % modified_fixed
|
|
|
|
|
)
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if signs: # New style signing
|
2015-06-17 23:49:47 +02:00
|
|
|
valid_signers = self.getValidSigners(inner_path, new_content)
|
|
|
|
|
signs_required = self.getSignsRequired(inner_path, new_content)
|
|
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if inner_path == "content.json" and len(valid_signers) > 1: # Check signers_sign on root content.json
|
2017-06-19 15:47:03 +02:00
|
|
|
signers_data = "%s:%s" % (signs_required, ",".join(valid_signers))
|
|
|
|
|
if not CryptBitcoin.verify(signers_data, self.site.address, new_content["signers_sign"]):
|
|
|
|
|
raise VerifyError("Invalid signers_sign!")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
if inner_path != "content.json" and not self.verifyCert(inner_path, new_content): # Check if cert valid
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Invalid cert!")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
valid_signs = 0
|
|
|
|
|
for address in valid_signers:
|
2015-06-25 20:09:41 +02:00
|
|
|
if address in signs:
|
|
|
|
|
valid_signs += CryptBitcoin.verify(sign_content, address, signs[address])
|
|
|
|
|
if valid_signs >= signs_required:
|
|
|
|
|
break # Break if we has enough signs
|
2017-06-19 15:47:03 +02:00
|
|
|
if valid_signs < signs_required:
|
|
|
|
|
raise VerifyError("Valid signs: %s/%s" % (valid_signs, signs_required))
|
|
|
|
|
else:
|
2018-03-29 02:55:53 +02:00
|
|
|
return self.verifyContent(inner_path, new_content)
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # Old style signing
|
2019-03-16 02:36:45 +01:00
|
|
|
raise VerifyError("Invalid old-style sign")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2019-03-15 21:06:59 +01:00
|
|
|
except Exception as err:
|
2017-10-04 12:51:24 +02:00
|
|
|
self.log.warning("%s: verify sign error: %s" % (inner_path, Debug.formatException(err)))
|
2017-06-19 15:47:03 +02:00
|
|
|
raise err
|
2015-06-17 23:49:47 +02:00
|
|
|
|
|
|
|
|
else: # Check using sha512 hash
|
|
|
|
|
file_info = self.getFileInfo(inner_path)
|
|
|
|
|
if file_info:
|
2017-10-16 15:11:19 +02:00
|
|
|
if CryptHash.sha512sum(file) != file_info.get("sha512", ""):
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("Invalid hash")
|
|
|
|
|
|
2015-09-13 12:52:11 +02:00
|
|
|
if file_info.get("size", 0) != file.tell():
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError(
|
|
|
|
|
"File size does not match %s <> %s" %
|
|
|
|
|
(inner_path, file.tell(), file_info.get("size", 0))
|
2015-07-12 20:36:46 +02:00
|
|
|
)
|
2017-06-19 15:47:03 +02:00
|
|
|
|
|
|
|
|
return True
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2015-06-25 20:09:41 +02:00
|
|
|
else: # File not in content.json
|
2017-06-19 15:47:03 +02:00
|
|
|
raise VerifyError("File not in content.json")
|
2015-06-17 23:49:47 +02:00
|
|
|
|
2018-10-15 13:09:43 +02:00
|
|
|
def optionalDelete(self, inner_path):
|
|
|
|
|
self.site.storage.delete(inner_path)
|
|
|
|
|
|
2018-03-29 02:54:52 +02:00
|
|
|
def optionalDownloaded(self, inner_path, hash_id, size=None, own=False):
|
2016-11-07 23:36:04 +01:00
|
|
|
if size is None:
|
|
|
|
|
size = self.site.storage.getSize(inner_path)
|
2018-03-29 02:54:52 +02:00
|
|
|
|
|
|
|
|
done = self.hashfield.appendHashId(hash_id)
|
2016-11-07 23:36:04 +01:00
|
|
|
self.site.settings["optional_downloaded"] += size
|
|
|
|
|
return done
|
|
|
|
|
|
2018-03-29 02:54:52 +02:00
|
|
|
def optionalRemoved(self, inner_path, hash_id, size=None):
|
2016-11-07 23:36:04 +01:00
|
|
|
if size is None:
|
|
|
|
|
size = self.site.storage.getSize(inner_path)
|
2018-03-29 02:54:52 +02:00
|
|
|
done = self.hashfield.removeHashId(hash_id)
|
|
|
|
|
|
2016-11-07 23:36:04 +01:00
|
|
|
self.site.settings["optional_downloaded"] -= size
|
|
|
|
|
return done
|
2019-04-23 01:56:11 +02:00
|
|
|
|
|
|
|
|
def optionalRenamed(self, inner_path_old, inner_path_new):
|
2019-04-29 16:54:07 +02:00
|
|
|
return True
|
