onionshare/onionshare.py

#!/usr/bin/env python

import os, sys, subprocess, time, hashlib, inspect
from random import randint
from functools import wraps

lib_path = os.path.dirname(os.path.abspath(inspect.getfile(inspect.currentframe())))+'/lib'
sys.path.append(lib_path)

from stem.control import Controller
from stem import SocketError

from flask import Flask, Markup, Response, request, make_response, send_from_directory
app = Flask(__name__)

auth_username = auth_password = filename = filehash = filesize = ''

def is_equal(a, b):
    """Constant-time string comparison"""
    if len(a) != len(b):
        return False

    result = 0
    for x, y in zip(a, b):
        result |= ord(x) ^ ord(y)
    return result == 0

def check_auth(username, password):
    global auth_username, auth_password
    usernames_equal = is_equal(username, auth_username)
    passwords_equal = is_equal(password, auth_password)
    return usernames_equal & passwords_equal

def authenticate():
    return Response(
        'Could not verify your access level for that URL.\n'
        'You have to login with proper credentials', 401,
        {'WWW-Authenticate': 'Basic realm="Login Required"'})

def requires_auth(f):
    @wraps(f)
    def decorated(*args, **kwargs):
        auth = request.authorization
        if not auth or not check_auth(auth.username, auth.password):
            return authenticate()
        return f(*args, **kwargs)
    return decorated

@app.route("/")
@requires_auth
def index():
    global filename, filesize, filehash
    return "<html><head><title>OnionShare</title><style>body {{ background-color: #222222; color: #ffffff; text-align: center; font-family: arial; padding: 5em; }} a {{ color: #ffee00; text-decoration: none; }} a:hover{{ text-decoration: underline; }}</style></head><body><h1><a href='/download'>{0}</a></h1><p>SHA1 checksum: <strong>{1}</strong><br/>File size: <strong>{2} bytes</strong></p></body></html>".format(os.path.basename(filename), filehash, filesize)

@app.route("/download")
@requires_auth
def download():
    global filename
    dirname = os.path.dirname(filename)
    basename = os.path.basename(filename)
    return send_from_directory(dirname, basename, as_attachment=True)

def get_platform():
    if 'ONIONSHARE_PLATFORM' in os.environ:
        return os.environ['ONIONSHARE_PLATFORM']
    else:
        return 'unknown'

def tails_open_port(port):
    if get_platform() == 'Tails':
        print 'Punching a hole in the firewall'
        subprocess.call(['/sbin/iptables', '-I', 'OUTPUT', '-o', 'lo', '-p', 'tcp', '--dport', str(port), '-j', 'ACCEPT'])

def tails_close_port(port):
    if get_platform() == 'Tails':
        print 'Closing hole in firewall'
        subprocess.call(['/sbin/iptables', '-I', 'OUTPUT', '-o', 'lo', '-p', 'tcp', '--dport', str(port), '-j', 'REJECT'])

if __name__ == '__main__':
    # validate filename
    if len(sys.argv) != 2:
        sys.exit('Usage: {0} [filename]'.format(sys.argv[0]));
    filename = sys.argv[1]
    if not os.path.isfile(filename):
        sys.exit('{0} is not a file'.format(filename))

    # calculate filehash, file size
    sha1 = hashlib.sha1()
    f = open(filename, 'rb')
    try:
        sha1.update(f.read())
    finally:
        f.close()
    filehash = sha1.hexdigest()
    filesize = os.path.getsize(filename)

    # choose a port, username, and password
    port = randint(1025, 65535)
    auth_username = os.urandom(8).encode('hex')
    auth_password = os.urandom(8).encode('hex')

    # connect to the tor controlport
    print 'Connecting to Tor ControlPort to set up hidden service on port {0}'.format(port)
    controlports = [9051, 9151]
    controller = False
    for controlport in controlports:
        try:
            controller = Controller.from_port(port=controlport)
        except SocketError:
            pass
    if not controller:
        sys.exit('Cannot connect to Tor ControlPorts on ports {0}. Is Tor running?'.format(controlports))
    controller.authenticate()

    # set up hidden service
    controller.set_options([
        ('HiddenServiceDir', '/tmp/onionshare_hidden_service_{0}/'.format(port)),
        ('HiddenServicePort', '80 127.0.0.1:{0}'.format(port))
    ])
    onion_host = open('/tmp/onionshare_hidden_service_{0}/hostname'.format(port), 'r').read().strip()

    # punch a hole in the firewall
    tails_open_port(port)

    # instructions
    print '\nGive this information to the person you\'re sending the file to:'
    print 'URL: http://{0}/'.format(onion_host)
    print 'Username: {0}'.format(auth_username)
    print 'Password: {0}'.format(auth_password)
    print ''
    print 'Press Ctrl-C to stop server\n'

    # start the web server
    app.run(port=port)
    print '\n'

    # shutdown
    tails_close_port(port)
initial commit of the app code 2014-05-20 15:44:00 -04:00			`#!/usr/bin/env python`

finished bundling libraries 2014-05-20 19:02:33 -04:00			`import os, sys, subprocess, time, hashlib, inspect`
initial commit of the app code 2014-05-20 15:44:00 -04:00			`from random import randint`
			`from functools import wraps`
finished bundling libraries 2014-05-20 19:02:33 -04:00
			`lib_path = os.path.dirname(os.path.abspath(inspect.getfile(inspect.currentframe())))+'/lib'`
			`sys.path.append(lib_path)`

connect to Tor ControlPort instead of modifying torrc (fixes #1) 2014-05-21 14:23:37 -04:00			`from stem.control import Controller`
			`from stem import SocketError`

you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`from flask import Flask, Markup, Response, request, make_response, send_from_directory`
initial commit of the app code 2014-05-20 15:44:00 -04:00			`app = Flask(__name__)`

you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`auth_username = auth_password = filename = filehash = filesize = ''`
initial commit of the app code 2014-05-20 15:44:00 -04:00
Use constant-time string comparison (fixes #3) Note: this isn't 100% constant-time, as can be seen here: http://bugs.python.org/issue15061 Specifically: "Note that it takes different time to create a result of ord() depending whether it's <=100 or > 100 due to caching of small numbers." 2014-05-21 18:30:26 -04:00			`def is_equal(a, b):`
			`"""Constant-time string comparison"""`
			`if len(a) != len(b):`
using constant time string comparison for username/password, to prevent timing attacks. fixes #3 2014-05-21 18:27:12 -04:00			`return False`

Use constant-time string comparison (fixes #3) Note: this isn't 100% constant-time, as can be seen here: http://bugs.python.org/issue15061 Specifically: "Note that it takes different time to create a result of ord() depending whether it's <=100 or > 100 due to caching of small numbers." 2014-05-21 18:30:26 -04:00			`result = 0`
			`for x, y in zip(a, b):`
			`result \|= ord(x) ^ ord(y)`
			`return result == 0`

			`def check_auth(username, password):`
			`global auth_username, auth_password`
			`usernames_equal = is_equal(username, auth_username)`
			`passwords_equal = is_equal(password, auth_password)`
			`return usernames_equal & passwords_equal`
initial commit of the app code 2014-05-20 15:44:00 -04:00
			`def authenticate():`
			`return Response(`
			`'Could not verify your access level for that URL.\n'`
			`'You have to login with proper credentials', 401,`
			`{'WWW-Authenticate': 'Basic realm="Login Required"'})`

			`def requires_auth(f):`
			`@wraps(f)`
			`def decorated(args, *kwargs):`
			`auth = request.authorization`
			`if not auth or not check_auth(auth.username, auth.password):`
			`return authenticate()`
			`return f(args, *kwargs)`
			`return decorated`

			`@app.route("/")`
			`@requires_auth`
you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`def index():`
			`global filename, filesize, filehash`
escaped braces for .format() to work 2014-05-20 17:34:02 -04:00			`return "<html><head><title>OnionShare</title><style>body {{ background-color: #222222; color: #ffffff; text-align: center; font-family: arial; padding: 5em; }} a {{ color: #ffee00; text-decoration: none; }} a:hover{{ text-decoration: underline; }}</style></head><body><h1><a href='/download'>{0}</a></h1><p>SHA1 checksum: <strong>{1}</strong><br/>File size: <strong>{2} bytes</strong></p></body></html>".format(os.path.basename(filename), filehash, filesize)`
you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00
			`@app.route("/download")`
			`@requires_auth`
			`def download():`
			`global filename`
			`dirname = os.path.dirname(filename)`
			`basename = os.path.basename(filename)`
			`return send_from_directory(dirname, basename, as_attachment=True)`
initial commit of the app code 2014-05-20 15:44:00 -04:00
make script work even if ONIONSHARE_PLATFORM isn't set 2014-05-21 14:56:09 -04:00			`def get_platform():`
			`if 'ONIONSHARE_PLATFORM' in os.environ:`
			`return os.environ['ONIONSHARE_PLATFORM']`
			`else:`
			`return 'unknown'`

made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`def tails_open_port(port):`
make script work even if ONIONSHARE_PLATFORM isn't set 2014-05-21 14:56:09 -04:00			`if get_platform() == 'Tails':`
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`print 'Punching a hole in the firewall'`
			`subprocess.call(['/sbin/iptables', '-I', 'OUTPUT', '-o', 'lo', '-p', 'tcp', '--dport', str(port), '-j', 'ACCEPT'])`
initial commit of the app code 2014-05-20 15:44:00 -04:00
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`def tails_close_port(port):`
make script work even if ONIONSHARE_PLATFORM isn't set 2014-05-21 14:56:09 -04:00			`if get_platform() == 'Tails':`
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`print 'Closing hole in firewall'`
			`subprocess.call(['/sbin/iptables', '-I', 'OUTPUT', '-o', 'lo', '-p', 'tcp', '--dport', str(port), '-j', 'REJECT'])`
initial commit of the app code 2014-05-20 15:44:00 -04:00
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`if __name__ == '__main__':`
you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`# validate filename`
initial commit of the app code 2014-05-20 15:44:00 -04:00			`if len(sys.argv) != 2:`
			`sys.exit('Usage: {0} [filename]'.format(sys.argv[0]));`
			`filename = sys.argv[1]`
			`if not os.path.isfile(filename):`
			`sys.exit('{0} is not a file'.format(filename))`

you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`# calculate filehash, file size`
			`sha1 = hashlib.sha1()`
			`f = open(filename, 'rb')`
			`try:`
			`sha1.update(f.read())`
			`finally:`
			`f.close()`
			`filehash = sha1.hexdigest()`
			`filesize = os.path.getsize(filename)`

connect to Tor ControlPort instead of modifying torrc (fixes #1) 2014-05-21 14:23:37 -04:00			`# choose a port, username, and password`
initial commit of the app code 2014-05-20 15:44:00 -04:00			`port = randint(1025, 65535)`
			`auth_username = os.urandom(8).encode('hex')`
			`auth_password = os.urandom(8).encode('hex')`

connect to Tor ControlPort instead of modifying torrc (fixes #1) 2014-05-21 14:23:37 -04:00			`# connect to the tor controlport`
			`print 'Connecting to Tor ControlPort to set up hidden service on port {0}'.format(port)`
			`controlports = [9051, 9151]`
			`controller = False`
			`for controlport in controlports:`
			`try:`
			`controller = Controller.from_port(port=controlport)`
			`except SocketError:`
			`pass`
			`if not controller:`
			`sys.exit('Cannot connect to Tor ControlPorts on ports {0}. Is Tor running?'.format(controlports))`
			`controller.authenticate()`

initial commit of the app code 2014-05-20 15:44:00 -04:00			`# set up hidden service`
connect to Tor ControlPort instead of modifying torrc (fixes #1) 2014-05-21 14:23:37 -04:00			`controller.set_options([`
			`('HiddenServiceDir', '/tmp/onionshare_hidden_service_{0}/'.format(port)),`
			`('HiddenServicePort', '80 127.0.0.1:{0}'.format(port))`
			`])`
			`onion_host = open('/tmp/onionshare_hidden_service_{0}/hostname'.format(port), 'r').read().strip()`
initial commit of the app code 2014-05-20 15:44:00 -04:00
			`# punch a hole in the firewall`
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`tails_open_port(port)`
initial commit of the app code 2014-05-20 15:44:00 -04:00
			`# instructions`
you can download the file now, and it almost displays filename, size, and hash 2014-05-20 16:57:39 -04:00			`print '\nGive this information to the person you\'re sending the file to:'`
initial commit of the app code 2014-05-20 15:44:00 -04:00			`print 'URL: http://{0}/'.format(onion_host)`
			`print 'Username: {0}'.format(auth_username)`
			`print 'Password: {0}'.format(auth_password)`
			`print ''`
			`print 'Press Ctrl-C to stop server\n'`

			`# start the web server`
			`app.run(port=port)`
			`print '\n'`

			`# shutdown`
made onionshare-tails, specifically for running in Tails 2014-05-21 14:51:04 -04:00			`tails_close_port(port)`