-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathjournalist.py
187 lines (155 loc) · 8.29 KB
/
journalist.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
import argparse
import json
from base64 import b64encode
from datetime import datetime
from os import listdir, mkdir, path
from time import time
import requests
from nacl.encoding import Base64Encoder, HexEncoder
from nacl.public import PrivateKey
from nacl.secret import SecretBox
import commons
import journalist_db
import pki
def add_ephemeral_keys(journalist_key, journalist_id):
ephemeral_keys = []
for key in range(commons.ONETIMEKEYS):
# Generate an ephemeral key, sign it and load the signature
ephemeral_sig, ephemeral_key = pki.generate_ephemeral(journalist_key, journalist_id)
ephemeral_keys.append({"ephemeral_key": ephemeral_key.public_key.encode(Base64Encoder).decode("ascii"),
"ephemeral_sig": ephemeral_sig.signature.decode("ascii")})
# Send both to server, the server verifies the signature and the trust chain prior to storing/publishing
response = requests.post(f"http://{commons.SERVER}/ephemeral_keys", json={"journalist_key": journalist_key.verify_key.encode(Base64Encoder).decode("ascii"),
"ephemeral_keys": ephemeral_keys})
return (response.status_code == 200)
# Load the journalist ephemeral keys from the journalist key directory.
# On an actual implementation this would more likely be a sqlite (or sqlcipher)
# database.
def load_ephemeral_keys(journalist_key, journalist_id):
ephemeral_keys = []
key_file_list = listdir(f"{commons.DIR}journalists/{journalist_key.verify_key.encode(HexEncoder).decode('ascii')}/")
for file_name in key_file_list:
if file_name.endswith('.key'):
with open(f"{commons.DIR}journalists/{journalist_key.verify_key.encode(HexEncoder).decode('ascii')}/{file_name}", "r") as f:
key = f.read()
ephemeral_keys.append(PrivateKey(key, Base64Encoder))
return ephemeral_keys
# Try all the ephemeral keys to build an encryption shared secret to decrypt a message.
# This is inefficient, but on an actual implementation we would discard already used keys
def decrypt_message(ephemeral_keys, message):
for ephemeral_key in ephemeral_keys:
message_plaintext = commons.decrypt_message_ciphertext(
ephemeral_key, message["message_public_key"],
message["message_ciphertext"])
if message_plaintext:
return message_plaintext
def journalist_reply(message, reply, journalist_key):
# This function builds the per-message keys and returns a nacl encrypting box
message_public_key, message_gdh, box = commons.build_message(
message["source_fetching_public_key"],
message["source_encryption_public_key"])
# The actual message struct varies depending on the sending party.
# Still it is client controlled, so in each client we shall watch out a bit.
message_dict = {"message": reply,
# do we want to sign messages? how do we attest source authoriship?
"sender": journalist_key.verify_key.encode(HexEncoder).decode('ascii'),
# "receiver": "source_id_placeholder",
# we could list the journalists involved in the conversation here
# if the source choose not to pick everybody
"group_members": [],
"timestamp": int(time())}
message_ciphertext = b64encode(
box.encrypt((json.dumps(message_dict)).ljust(1024).encode('ascii'))
).decode("ascii")
# Send the message to the server API using the generic /send endpoint
commons.send_message(message_ciphertext, message_public_key, message_gdh)
def main(args):
# Get and check the journalist number we are impersonating
journalist_id = args.journalist
assert (journalist_id >= 0 and journalist_id < commons.JOURNALISTS)
journalist_sig, journalist_key, journalist_fetching_sig, journalist_fetching_key = pki.load_and_verify_journalist_keypair(journalist_id)
jdb = journalist_db.JournalistDatabase('files/.jdb.sqlite3')
if args.action == "upload_keys":
commons.add_journalist(journalist_key, journalist_sig, journalist_fetching_key, journalist_fetching_sig)
# Generate and upload a bunch (30) of ephemeral keys
add_ephemeral_keys(journalist_key, journalist_id)
elif args.action == "fetch":
# Check if there are messages
messages_list = commons.fetch_messages_id(journalist_fetching_key)
try:
nmessages = len(messages_list)
except Exception:
nmessages = 0
if nmessages > 0:
print(f"[+] Found {nmessages} message(s)")
for message_id in messages_list:
print(f"\t{message_id}")
print()
else:
print("[-] There are no messages")
print()
elif args.action == "read":
message_id = args.id
message = commons.get_message(message_id)
ephemeral_keys = load_ephemeral_keys(journalist_key, journalist_id)
message_plaintext = decrypt_message(ephemeral_keys, message)
if message_plaintext:
# Create a download folder if we have attachments
if (message_plaintext["attachments"] and
len(message_plaintext["attachments"]) > 0):
try:
mkdir('downloads/')
except Exception:
pass
else:
message_plaintext["attachments"] = []
sender = message_plaintext['source_encryption_public_key']
print(f"[+] Successfully decrypted message {message_id}")
print()
print(f"\tID: {message_id}")
print(f"\tFrom: {sender}")
print(f"\tDate: {datetime.fromtimestamp(message_plaintext['timestamp'])}")
for attachment in message_plaintext["attachments"]:
print(f"\tAttachment: name={attachment['name']};size={attachment['size']};parts_count={attachment['parts_count']}")
attachment_name = path.basename(attachment['name'])
attachment_size = attachment['size']
with open(f"downloads/{int(time())}_{attachment_name}", "wb") as f:
part_number = 0
written_size = 0
while written_size < attachment_size:
for part in attachment["parts"]:
if part["number"] == part_number:
part_key = bytes.fromhex(part['key'])
encrypted_part = commons.get_file(part["id"])
written_size += part["size"]
box = SecretBox(part_key)
f.write(box.decrypt(encrypted_part)[0:part["size"]])
part_number += 1
print(f"\tText: {message_plaintext['message']}")
print()
jdb.insert_message(sender, datetime.fromtimestamp(message_plaintext['timestamp']), message_plaintext['message'])
elif args.action == "thread":
sender = args.thread
messages = jdb.select_messages(sender)
for message in messages:
print(f'[{message[0]}]: {message[1]}')
elif args.action == "reply":
message_id = args.id
message = commons.get_message(message_id)
ephemeral_keys = load_ephemeral_keys(journalist_key, journalist_id)
message_plaintext = decrypt_message(ephemeral_keys, message)
journalist_reply(message_plaintext, args.message, journalist_key)
elif args.action == "delete":
message_id = args.id
commons.delete_message(message_id)
print(f"[+] Message {message_id} deleted")
print()
if __name__ == '__main__':
parser = argparse.ArgumentParser()
parser.add_argument("-j", "--journalist", help="Journalist number", type=int, choices=range(0, commons.JOURNALISTS), metavar=f"[0, {commons.JOURNALISTS - 1}]", required=True)
parser.add_argument("-a", "--action", help="Action to perform", default="fetch", choices=["upload_keys", "fetch", "read", "reply", "delete", "thread"])
parser.add_argument("-i", "--id", help="Message id")
parser.add_argument("-t", "--thread", help="Thread id")
parser.add_argument("-m", "--message", help="Plaintext message content for replies")
args = parser.parse_args()
main(args)