bookwyrm/bookwyrm/signatures.py

''' signs activitypub activities '''
import hashlib
from urllib.parse import urlparse
import datetime
from base64 import b64encode, b64decode

from Crypto import Random
from Crypto.PublicKey import RSA
from Crypto.Signature import pkcs1_15 #pylint: disable=no-name-in-module
from Crypto.Hash import SHA256

MAX_SIGNATURE_AGE = 300

def create_key_pair():
    ''' a new public/private key pair, used for creating new users '''
    random_generator = Random.new().read
    key = RSA.generate(1024, random_generator)
    private_key = key.export_key().decode('utf8')
    public_key = key.publickey().export_key().decode('utf8')

    return private_key, public_key


def make_signature(sender, destination, date, digest):
    ''' uses a private key to sign an outgoing message '''
    inbox_parts = urlparse(destination)
    signature_headers = [
        '(request-target): post %s' % inbox_parts.path,
        'host: %s' % inbox_parts.netloc,
        'date: %s' % date,
        'digest: %s' % digest,
    ]
    message_to_sign = '\n'.join(signature_headers)
    signer = pkcs1_15.new(RSA.import_key(sender.private_key))
    signed_message = signer.sign(SHA256.new(message_to_sign.encode('utf8')))
    signature = {
        'keyId': '%s#main-key' % sender.remote_id,
        'algorithm': 'rsa-sha256',
        'headers': '(request-target) host date digest',
        'signature': b64encode(signed_message).decode('utf8'),
    }
    return ','.join('%s="%s"' % (k, v) for (k, v) in signature.items())


def make_digest(data):
    ''' creates a message digest for signing '''
    return 'SHA-256=' + b64encode(hashlib.sha256(data.encode('utf-8'))\
                        .digest()).decode('utf-8')


def verify_digest(request):
    ''' checks if a digest is syntactically valid and matches the message '''
    algorithm, digest = request.headers['digest'].split('=', 1)
    if algorithm == 'SHA-256':
        hash_function = hashlib.sha256
    elif algorithm == 'SHA-512':
        hash_function = hashlib.sha512
    else:
        raise ValueError("Unsupported hash function: {}".format(algorithm))

    expected = hash_function(request.body).digest()
    if b64decode(digest) != expected:
        raise ValueError("Invalid HTTP Digest header")

class Signature:
    ''' read and validate incoming signatures '''
    def __init__(self, key_id, headers, signature):
        self.key_id = key_id
        self.headers = headers
        self.signature = signature

    @classmethod
    def parse(cls, request):
        ''' extract and parse a signature from an http request '''
        signature_dict = {}
        for pair in request.headers['Signature'].split(','):
            k, v = pair.split('=', 1)
            v = v.replace('"', '')
            signature_dict[k] = v

        try:
            key_id = signature_dict['keyId']
            headers = signature_dict['headers']
            signature = b64decode(signature_dict['signature'])
        except KeyError:
            raise ValueError('Invalid auth header')

        return cls(key_id, headers, signature)

    def verify(self, public_key, request):
        ''' verify rsa signature '''
        if False:#http_date_age(request.headers['date']) > MAX_SIGNATURE_AGE:
            raise ValueError(
                "Request too old: %s" % (request.headers['date'],))
        public_key = RSA.import_key(public_key)

        comparison_string = []
        for signed_header_name in self.headers.split(' '):
            if signed_header_name == '(request-target)':
                comparison_string.append(
                    '(request-target): post %s' % request.path)
            else:
                if signed_header_name == 'digest':
                    verify_digest(request)
                comparison_string.append('%s: %s' % (
                    signed_header_name,
                    request.headers[signed_header_name]
                ))
        comparison_string = '\n'.join(comparison_string)

        signer = pkcs1_15.new(public_key)
        digest = SHA256.new()
        digest.update(comparison_string.encode())

        # raises a ValueError if it fails
        signer.verify(digest, self.signature)


def http_date_age(datestr):
    ''' age of a signature in seconds '''
    parsed = datetime.datetime.strptime(datestr, '%a, %d %b %Y %H:%M:%S GMT')
    delta = datetime.datetime.utcnow() - parsed
    return delta.total_seconds()
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' signs activitypub activities '''`
Verify http digest is correct if specified in signature. 2020-05-18 18:42:22 +00:00			`import hashlib`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`from urllib.parse import urlparse`
Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00			`import datetime`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`from base64 import b64encode, b64decode`

			`from Crypto import Random`
			`from Crypto.PublicKey import RSA`
			`from Crypto.Signature import pkcs1_15 #pylint: disable=no-name-in-module`
			`from Crypto.Hash import SHA256`

Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00			`MAX_SIGNATURE_AGE = 300`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00
			`def create_key_pair():`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' a new public/private key pair, used for creating new users '''`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`random_generator = Random.new().read`
			`key = RSA.generate(1024, random_generator)`
			`private_key = key.export_key().decode('utf8')`
			`public_key = key.publickey().export_key().decode('utf8')`

			`return private_key, public_key`


Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00			`def make_signature(sender, destination, date, digest):`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' uses a private key to sign an outgoing message '''`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`inbox_parts = urlparse(destination)`
			`signature_headers = [`
			`'(request-target): post %s' % inbox_parts.path,`
			`'host: %s' % inbox_parts.netloc,`
			`'date: %s' % date,`
Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00			`'digest: %s' % digest,`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`]`
			`message_to_sign = '\n'.join(signature_headers)`
			`signer = pkcs1_15.new(RSA.import_key(sender.private_key))`
			`signed_message = signer.sign(SHA256.new(message_to_sign.encode('utf8')))`
			`signature = {`
			`'keyId': '%s#main-key' % sender.remote_id,`
			`'algorithm': 'rsa-sha256',`
Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00			`'headers': '(request-target) host date digest',`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`'signature': b64encode(signed_message).decode('utf8'),`
			`}`
			`return ','.join('%s="%s"' % (k, v) for (k, v) in signature.items())`

Fixes linter issues 2020-09-21 17:25:26 +00:00
Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00			`def make_digest(data):`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' creates a message digest for signing '''`
Stop double-encoding broadcasts Fixes #234 2020-11-02 23:19:58 +00:00			`return 'SHA-256=' + b64encode(hashlib.sha256(data.encode('utf-8'))\`
			`.digest()).decode('utf-8')`
Fixes linter issues 2020-09-21 17:25:26 +00:00
Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00
Verify http digest is correct if specified in signature. 2020-05-18 18:42:22 +00:00			`def verify_digest(request):`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' checks if a digest is syntactically valid and matches the message '''`
Verify http digest is correct if specified in signature. 2020-05-18 18:42:22 +00:00			`algorithm, digest = request.headers['digest'].split('=', 1)`
			`if algorithm == 'SHA-256':`
			`hash_function = hashlib.sha256`
			`elif algorithm == 'SHA-512':`
			`hash_function = hashlib.sha512`
			`else:`
Add digests for outgoing messages, and testing. 2020-05-19 20:33:47 +00:00			`raise ValueError("Unsupported hash function: {}".format(algorithm))`
Verify http digest is correct if specified in signature. 2020-05-18 18:42:22 +00:00
			`expected = hash_function(request.body).digest()`
			`if b64decode(digest) != expected:`
Raise don't return an exception if digest is wrong. 2020-08-19 12:53:17 +00:00			`raise ValueError("Invalid HTTP Digest header")`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00
			`class Signature:`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' read and validate incoming signatures '''`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`def __init__(self, key_id, headers, signature):`
			`self.key_id = key_id`
			`self.headers = headers`
			`self.signature = signature`

			`@classmethod`
			`def parse(cls, request):`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' extract and parse a signature from an http request '''`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`signature_dict = {}`
			`for pair in request.headers['Signature'].split(','):`
			`k, v = pair.split('=', 1)`
			`v = v.replace('"', '')`
			`signature_dict[k] = v`

			`try:`
			`key_id = signature_dict['keyId']`
			`headers = signature_dict['headers']`
			`signature = b64decode(signature_dict['signature'])`
			`except KeyError:`
			`raise ValueError('Invalid auth header')`

			`return cls(key_id, headers, signature)`

			`def verify(self, public_key, request):`
			`''' verify rsa signature '''`
refactors tag model to fit ordered collection structure 2020-11-28 19:00:40 +00:00			`if False:#http_date_age(request.headers['date']) > MAX_SIGNATURE_AGE:`
Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00			`raise ValueError(`
			`"Request too old: %s" % (request.headers['date'],))`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`public_key = RSA.import_key(public_key)`

			`comparison_string = []`
			`for signed_header_name in self.headers.split(' '):`
			`if signed_header_name == '(request-target)':`
			`comparison_string.append(`
			`'(request-target): post %s' % request.path)`
			`else:`
Verify http digest is correct if specified in signature. 2020-05-18 18:42:22 +00:00			`if signed_header_name == 'digest':`
			`verify_digest(request)`
Move signature code into fedireads.signatures. 2020-05-14 13:24:37 +00:00			`comparison_string.append('%s: %s' % (`
			`signed_header_name,`
			`request.headers[signed_header_name]`
			`))`
			`comparison_string = '\n'.join(comparison_string)`

			`signer = pkcs1_15.new(public_key)`
			`digest = SHA256.new()`
			`digest.update(comparison_string.encode())`

			`# raises a ValueError if it fails`
			`signer.verify(digest, self.signature)`
Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00
Fixes linter issues 2020-09-21 17:25:26 +00:00
Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00			`def http_date_age(datestr):`
Fixes linter issues 2020-09-21 17:25:26 +00:00			`''' age of a signature in seconds '''`
Check that the date in the signature isn't too old. 2020-05-20 14:26:01 +00:00			`parsed = datetime.datetime.strptime(datestr, '%a, %d %b %Y %H:%M:%S GMT')`
			`delta = datetime.datetime.utcnow() - parsed`
			`return delta.total_seconds()`