synapse-product/synapse/crypto/event_signing.py

# -*- coding: utf-8 -*-

# Copyright 2014 OpenMarket Ltd
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.


from synapse.federation.units import Pdu
from synapse.api.events.utils import prune_pdu, prune_event
from syutil.jsonutil import encode_canonical_json
from syutil.base64util import encode_base64, decode_base64
from syutil.crypto.jsonsign import sign_json, verify_signed_json

import copy
import hashlib
import logging

logger = logging.getLogger(__name__)


def add_event_pdu_content_hash(pdu, hash_algorithm=hashlib.sha256):
    hashed = _compute_content_hash(pdu, hash_algorithm)
    pdu.hashes[hashed.name] = encode_base64(hashed.digest())
    return pdu


def check_event_pdu_content_hash(pdu, hash_algorithm=hashlib.sha256):
    """Check whether the hash for this PDU matches the contents"""
    computed_hash = _compute_content_hash(pdu, hash_algorithm)
    if computed_hash.name not in pdu.hashes:
        raise Exception("Algorithm %s not in hashes %s" % (
            computed_hash.name, list(pdu.hashes)
        ))
    message_hash_base64 = pdu.hashes[computed_hash.name]
    try:
        message_hash_bytes = decode_base64(message_hash_base64)
    except:
        raise Exception("Invalid base64: %s" % (message_hash_base64,))
    return message_hash_bytes == computed_hash.digest()


def _compute_content_hash(pdu, hash_algorithm):
    pdu_json = pdu.get_dict()
    #TODO: Make "age_ts" key internal
    pdu_json.pop("age_ts", None)
    pdu_json.pop("unsigned", None)
    pdu_json.pop("signatures", None)
    pdu_json.pop("hashes", None)
    pdu_json_bytes = encode_canonical_json(pdu_json)
    return hash_algorithm(pdu_json_bytes)


def compute_pdu_event_reference_hash(pdu, hash_algorithm=hashlib.sha256):
    tmp_pdu = Pdu(**pdu.get_dict())
    tmp_pdu = prune_pdu(tmp_pdu)
    pdu_json = tmp_pdu.get_dict()
    pdu_json.pop("signatures", None)
    pdu_json_bytes = encode_canonical_json(pdu_json)
    hashed = hash_algorithm(pdu_json_bytes)
    return (hashed.name, hashed.digest())


def compute_event_reference_hash(event, hash_algorithm=hashlib.sha256):
    tmp_event = copy.deepcopy(event)
    tmp_event = prune_event(tmp_event)
    event_json = tmp_event.get_dict()
    event_json.pop("signatures", None)
    event_json_bytes = encode_canonical_json(event_json)
    hashed = hash_algorithm(event_json_bytes)
    return (hashed.name, hashed.digest())


def sign_event_pdu(pdu, signature_name, signing_key):
    tmp_pdu = Pdu(**pdu.get_dict())
    tmp_pdu = prune_pdu(tmp_pdu)
    pdu_json = tmp_pdu.get_dict()
    pdu_json = sign_json(pdu_json, signature_name, signing_key)
    pdu.signatures = pdu_json["signatures"]
    return pdu


def verify_signed_event_pdu(pdu, signature_name, verify_key):
    tmp_pdu = Pdu(**pdu.get_dict())
    tmp_pdu = prune_pdu(tmp_pdu)
    pdu_json = tmp_pdu.get_dict()
    verify_signed_json(pdu_json, signature_name, verify_key)


def add_hashes_and_signatures(event, signature_name, signing_key,
                              hash_algorithm=hashlib.sha256):
    tmp_event = copy.deepcopy(event)
    tmp_event = prune_event(tmp_event)
    redact_json = tmp_event.get_dict()
    redact_json.pop("signatures", None)
    redact_json = sign_json(redact_json, signature_name, signing_key)
    event.signatures = redact_json["signatures"]

    event_json = event.get_full_dict()
    #TODO: We need to sign the JSON that is going out via fedaration.
    event_json.pop("age_ts", None)
    event_json.pop("unsigned", None)
    event_json.pop("signatures", None)
    event_json.pop("hashes", None)
    event_json_bytes = encode_canonical_json(event_json)
    hashed = hash_algorithm(event_json_bytes)
    if not hasattr(event, "hashes"):
        event.hashes = {}
    event.hashes[hashed.name] = encode_base64(hashed.digest())
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`# -- coding: utf-8 --`

			`# Copyright 2014 OpenMarket Ltd`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`


Sign outgoing PDUs. 2014-10-15 19:09:48 -04:00			`from synapse.federation.units import Pdu`
Make prev_event signing work again. 2014-10-31 11:35:39 -04:00			`from synapse.api.events.utils import prune_pdu, prune_event`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`from syutil.jsonutil import encode_canonical_json`
			`from syutil.base64util import encode_base64, decode_base64`
			`from syutil.crypto.jsonsign import sign_json, verify_signed_json`

Make prev_event signing work again. 2014-10-31 11:35:39 -04:00			`import copy`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`import hashlib`
Remove signatures from pdu when computing hashes to use for prev pdus, make sure is_state is a boolean. 2014-10-17 14:41:32 -04:00			`import logging`

			`logger = logging.getLogger(__name__)`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00

Hash the same content covered by the signature when referencing previous PDUs rather than reusing the PDU content hashes 2014-10-17 06:40:35 -04:00			`def add_event_pdu_content_hash(pdu, hash_algorithm=hashlib.sha256):`
			`hashed = _compute_content_hash(pdu, hash_algorithm)`
Sign outgoing PDUs. 2014-10-15 19:09:48 -04:00			`pdu.hashes[hashed.name] = encode_base64(hashed.digest())`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`return pdu`


Hash the same content covered by the signature when referencing previous PDUs rather than reusing the PDU content hashes 2014-10-17 06:40:35 -04:00			`def check_event_pdu_content_hash(pdu, hash_algorithm=hashlib.sha256):`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`"""Check whether the hash for this PDU matches the contents"""`
fix pyflakes warnings 2014-10-27 07:19:15 -04:00			`computed_hash = _compute_content_hash(pdu, hash_algorithm)`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`if computed_hash.name not in pdu.hashes:`
			`raise Exception("Algorithm %s not in hashes %s" % (`
			`computed_hash.name, list(pdu.hashes)`
			`))`
fix pyflakes warnings 2014-10-27 07:19:15 -04:00			`message_hash_base64 = pdu.hashes[computed_hash.name]`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`try:`
			`message_hash_bytes = decode_base64(message_hash_base64)`
			`except:`
			`raise Exception("Invalid base64: %s" % (message_hash_base64,))`
			`return message_hash_bytes == computed_hash.digest()`


Hash the same content covered by the signature when referencing previous PDUs rather than reusing the PDU content hashes 2014-10-17 06:40:35 -04:00			`def _compute_content_hash(pdu, hash_algorithm):`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`pdu_json = pdu.get_dict()`
Rename 'meta' to 'unsigned' 2014-10-17 11:50:04 -04:00			`#TODO: Make "age_ts" key internal`
Remove signatures from pdu when computing hashes to use for prev pdus, make sure is_state is a boolean. 2014-10-17 14:41:32 -04:00			`pdu_json.pop("age_ts", None)`
Rename 'meta' to 'unsigned' 2014-10-17 11:50:04 -04:00			`pdu_json.pop("unsigned", None)`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`pdu_json.pop("signatures", None)`
fix pyflakes warnings 2014-10-27 07:19:15 -04:00			`pdu_json.pop("hashes", None)`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`pdu_json_bytes = encode_canonical_json(pdu_json)`
			`return hash_algorithm(pdu_json_bytes)`


Hash the same content covered by the signature when referencing previous PDUs rather than reusing the PDU content hashes 2014-10-17 06:40:35 -04:00			`def compute_pdu_event_reference_hash(pdu, hash_algorithm=hashlib.sha256):`
			`tmp_pdu = Pdu(**pdu.get_dict())`
			`tmp_pdu = prune_pdu(tmp_pdu)`
			`pdu_json = tmp_pdu.get_dict()`
Remove signatures from pdu when computing hashes to use for prev pdus, make sure is_state is a boolean. 2014-10-17 14:41:32 -04:00			`pdu_json.pop("signatures", None)`
Hash the same content covered by the signature when referencing previous PDUs rather than reusing the PDU content hashes 2014-10-17 06:40:35 -04:00			`pdu_json_bytes = encode_canonical_json(pdu_json)`
			`hashed = hash_algorithm(pdu_json_bytes)`
			`return (hashed.name, hashed.digest())`


Make prev_event signing work again. 2014-10-31 11:35:39 -04:00			`def compute_event_reference_hash(event, hash_algorithm=hashlib.sha256):`
			`tmp_event = copy.deepcopy(event)`
			`tmp_event = prune_event(tmp_event)`
			`event_json = tmp_event.get_dict()`
			`event_json.pop("signatures", None)`
			`event_json_bytes = encode_canonical_json(event_json)`
			`hashed = hash_algorithm(event_json_bytes)`
			`return (hashed.name, hashed.digest())`


persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`def sign_event_pdu(pdu, signature_name, signing_key):`
			`tmp_pdu = Pdu(**pdu.get_dict())`
			`tmp_pdu = prune_pdu(tmp_pdu)`
			`pdu_json = tmp_pdu.get_dict()`
fix pyflakes warnings 2014-10-27 07:19:15 -04:00			`pdu_json = sign_json(pdu_json, signature_name, signing_key)`
persist hashes and origin signatures for PDUs 2014-10-15 12:09:04 -04:00			`pdu.signatures = pdu_json["signatures"]`
			`return pdu`


			`def verify_signed_event_pdu(pdu, signature_name, verify_key):`
			`tmp_pdu = Pdu(**pdu.get_dict())`
			`tmp_pdu = prune_pdu(tmp_pdu)`
			`pdu_json = tmp_pdu.get_dict()`
			`verify_signed_json(pdu_json, signature_name, verify_key)`
Sign evnets 2014-10-31 13:08:52 -04:00

			`def add_hashes_and_signatures(event, signature_name, signing_key,`
			`hash_algorithm=hashlib.sha256):`
			`tmp_event = copy.deepcopy(event)`
			`tmp_event = prune_event(tmp_event)`
			`redact_json = tmp_event.get_dict()`
			`redact_json.pop("signatures", None)`
			`redact_json = sign_json(redact_json, signature_name, signing_key)`
			`event.signatures = redact_json["signatures"]`

			`event_json = event.get_full_dict()`
			`#TODO: We need to sign the JSON that is going out via fedaration.`
			`event_json.pop("age_ts", None)`
			`event_json.pop("unsigned", None)`
			`event_json.pop("signatures", None)`
			`event_json.pop("hashes", None)`
			`event_json_bytes = encode_canonical_json(event_json)`
			`hashed = hash_algorithm(event_json_bytes)`
Don't assume event has hashes key already 2014-11-03 06:32:12 -05:00			`if not hasattr(event, "hashes"):`
			`event.hashes = {}`
Sign evnets 2014-10-31 13:08:52 -04:00			`event.hashes[hashed.name] = encode_base64(hashed.digest())`