/lib/cyborghood/mail.rb - Annotate - CyborgHood - DuckCorp Projects

root/lib/cyborghood/mail.rb @ 979a7aaa

d32ee48a	Marc Dequenes	#--
		# CyborgHood, a distributed system management software.
e7315259	Marc Dequènes (Duck)	# Copyright (c) 2009-2010 Marc Dequènes (Duck) <Duck@DuckCorp.org>
d32ee48a	Marc Dequenes	#
		# This program is free software: you can redistribute it and/or modify
		# it under the terms of the GNU General Public License as published by
		# the Free Software Foundation, either version 3 of the License, or
		# (at your option) any later version.
		#
		# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
		#
		# You should have received a copy of the GNU General Public License
		# along with this program. If not, see <http://www.gnu.org/licenses/>.
		#++
30406d66	Marc Dequenes
bc4894ce	Marc Dequenes	require 'delegate'
1879aa76	Marc Dequènes (Duck)	require 'mail'
		require 'mail/gpg'
		require 'cyborghood/objects'
c7904e2c	Marc Dequenes	require 'fileutils'
		require 'digest/md5'
4672e230	Marc Dequènes (Duck)	require 'active_support/core_ext/hash/keys'
c7904e2c	Marc Dequenes
bc4894ce	Marc Dequenes
cb0d68fd	Marc Dequènes (Duck)	# This class handles RFC3156 signed/encrypted messages, validates them, and extract content properly.
		# It also implements a protection against replay attacks.
c427bfc7	Marc Dequenes	module CyborgHood
cb0d68fd	Marc Dequènes (Duck)	class MailReport
		attr_reader :error, :warn_sender, :user, :message
f0a75e9c	Marc Dequènes (Duck)
cb0d68fd	Marc Dequènes (Duck)	def initialize(params = {})
		@error = params[:error]
		@warn_sender = params[:warn_sender]
		@user = params[:user]
		@message = params[:message]
f0a75e9c	Marc Dequènes (Duck)
cb0d68fd	Marc Dequènes (Duck)	@warn_sender = false
f0a75e9c	Marc Dequènes (Duck)	end
5425b3f0	Marc Dequènes (Duck)
cb0d68fd	Marc Dequènes (Duck)	def ok?
1879aa76	Marc Dequènes (Duck)	!!(@error.nil? and @user and @message)
5425b3f0	Marc Dequènes (Duck)	end

		def warn_sender
		# send reply message if user is identified or in selected situations
		# (@warn_sender acts as an override)
		@warn_sender \|\| @user
		end
		end

c427bfc7	Marc Dequenes	class Mail < Delegator
ed09e1e5	Marc Dequènes (Duck)	include I18nTranslation
30406d66	Marc Dequenes
41310a41	Marc Dequènes (Duck)	# class variable SUX
		class << self; attr_accessor :delivery_initialized; end

ebccdcc4	Marc Dequènes (Duck)	attr_accessor :user, :signature_timestamp
5425b3f0	Marc Dequènes (Duck)
30406d66	Marc Dequenes	def initialize(msg = nil)
275e20ec	Marc Dequenes	@config = Config.instance

979a7aaa	Marc Dequènes (Duck)	# needs to be initialized before _any_ ::Mail object is created
		unless self.class.delivery_initialized
		params = @config.mail.smtp.nil? ? {} : @config.mail.smtp.to_h.symbolize_keys

		::Mail.defaults do
		delivery_method :smtp, params
		end

		self.class.delivery_initialized = true
		end

30406d66	Marc Dequenes	if msg.nil?
1879aa76	Marc Dequènes (Duck)	@mail = ::Mail.new
7193ea94	Marc Dequenes	set_custom_headers
1879aa76	Marc Dequènes (Duck)	elsif msg.is_a? ::Mail::Message
ebccdcc4	Marc Dequènes (Duck)	@mail = msg
30406d66	Marc Dequenes	else
1879aa76	Marc Dequènes (Duck)	@mail = ::Mail.new(msg)
30406d66	Marc Dequenes	end
c427bfc7	Marc Dequenes	end

8ddd43db	Marc Dequènes (Duck)	def self.blank
		m = self.new
		m.clear
		m
		end

1879aa76	Marc Dequènes (Duck)	def self.read(path)
		self.new(::Mail.read(path))
		end

c427bfc7	Marc Dequenes	def __getobj__
		@mail
		end

cb0d68fd	Marc Dequènes (Duck)	def process
c7904e2c	Marc Dequenes	if is_marked?
b0da6fb3	Marc Dequènes (Duck)	if @config.debug.flags.include?('ignorereplay')
ed931f4d	Marc Dequènes (Duck)	logger.warn "Debug: ignoring replay"
		else
		return MailReport.new(:error => _("Replay detected."))
		end
c7904e2c	Marc Dequenes	end

cb0d68fd	Marc Dequènes (Duck)	return process_signed() if is_pgp_signed?
		return process_encrypted() if is_pgp_encrypted?
5425b3f0	Marc Dequènes (Duck)
eb6e0359	Marc Dequènes (Duck)	MailReport.new(:error => _("Mail not RFC3156 compliant."))
960c259e	Marc Dequenes	end

1879aa76	Marc Dequènes (Duck)	def reply
		mail_reply = self.class.new(@mail.reply)
		mail_reply.from = @config.mail.from_address if @config.mail.from_address
		mail_reply.set_custom_headers
		mail_reply.user = @user
		mail_reply
09b32d70	Marc Dequenes	end

4311d63d	Marc Dequènes (Duck)	def create_simple_reject_reply(msg)
1879aa76	Marc Dequènes (Duck)	mail_reply = reply()
		mail_reply.charset = "utf-8"
		mail_reply.body = msg + self.default_body_signature
		mail_reply.sign
		mail_reply.crypt(mail_reply.user.keyFingerPrint) unless mail_reply.user.nil?
		mail_reply
56947466	Marc Dequènes (Duck)	end

09b32d70	Marc Dequenes	def set_custom_headers
		@mail['Organization'] = @config.mail.organization
		end

6ed10f49	Marc Dequènes (Duck)	def default_body_signature
		s = "\n" +
		"-- \n" +
		"#{CyborgHood::PRODUCT} v#{CyborgHood::VERSION}\n"
		s += _("Contact eMail:").to_s + " \"#{@config.contact.name}\" <#{@config.contact.email}>\n" if @config.contact.email
		s += _("Contact URL:").to_s + " #{@config.contact.url}\n" if @config.contact.url
		s
		end

09b32d70	Marc Dequenes	def to_s
		@mail.to_s
		end

958e72a0	Marc Dequènes (Duck)	def crypt(fingerprint = nil)
		@mail = @mail.create_encrypted(fingerprint \|\| @user.keyFingerPrint)
09b32d70	Marc Dequenes	end

		def sign
e77281ff	Marc Dequènes (Duck)	# we don't check the uid, as there is only one signer
c0979b3e	Marc Dequenes	@mail = @mail.create_signed(@config.mail.key_id) do \|uid_hint, passphrase_info, prev_was_bad\|
09b32d70	Marc Dequenes	@config.mail.key_passphrase
		end
		end

958e72a0	Marc Dequènes (Duck)	def sign_and_crypt(fingerprint = nil)
c0979b3e	Marc Dequenes	# not using sign_and_crypt(), to avoid repeating code
1879aa76	Marc Dequènes (Duck)	sign
958e72a0	Marc Dequènes (Duck)	crypt(fingerprint \|\| @user.keyFingerPrint)
09b32d70	Marc Dequenes	end

		private

cb0d68fd	Marc Dequènes (Duck)	def process_signed
09b32d70	Marc Dequenes	sigs_check = verify_pgp_signature()
eb6e0359	Marc Dequènes (Duck)	return MailReport.new(:error => _("Mail not formatted correctly (signed part).")) if sigs_check.nil? or sigs_check.size != 1
09b32d70	Marc Dequenes
1879aa76	Marc Dequènes (Duck)	sig = sigs_check.first
		return MailReport.new(:error => _("Mail content tampered or badly signed: %{sig_err}", :sig_err => sig.to_s)) if sig.bad?
5425b3f0	Marc Dequènes (Duck)
1879aa76	Marc Dequènes (Duck)	logger.info "Mail content was properly signed by key #{sig.fingerprint}"
		begin
		user = Person.find_by_fingerprint(sig.key.fingerprint)
		rescue EOFError => error
		return MailReport.new(:error => _("Could not get public key for '%{fpr}'", :fpr => check.fingerprint))
		end
eb6e0359	Marc Dequènes (Duck)	return MailReport.new(:error => _("Mail is from an unknown person."), :warn_sender => true) if user.nil?
5425b3f0	Marc Dequènes (Duck)
		logger.info "Mail is from user #{user.uid} (#{user.cn})"
958e72a0	Marc Dequènes (Duck)	@user = user
5425b3f0	Marc Dequènes (Duck)
1879aa76	Marc Dequènes (Duck)	drift = Time.new.to_i - sig.timestamp.to_i
5425b3f0	Marc Dequènes (Duck)	logger.debug "Signature drift time: #{drift}"
2f1c6b5b	Marc Dequènes (Duck)	unless drift.abs < @config.mail.max_drift_time
5425b3f0	Marc Dequènes (Duck)	if drift > 0
eb6e0359	Marc Dequènes (Duck)	return MailReport.new(:error => _("The signature was made too long ago (check your system clock). Rejected message to avoid replay attacks."), :user => user)
c427bfc7	Marc Dequenes	else
5425b3f0	Marc Dequènes (Duck)	# mark message to prevent later replay of the message
1879aa76	Marc Dequènes (Duck)	mark_processed(sig.timestamp)
eb6e0359	Marc Dequènes (Duck)	return MailReport.new(:error => _("The signature was made in the future (check your system clock). Rejected message to avoid replay attacks."), :user => user)
c427bfc7	Marc Dequenes	end
		end

cb0d68fd	Marc Dequènes (Duck)	logger.debug "Mail OK"
		mark_processed(self.signature_timestamp)

5425b3f0	Marc Dequènes (Duck)	signed_content = pgp_signed_part()

		# create a fake mail and chain parsing operations
1879aa76	Marc Dequènes (Duck)	plain_mail = self.class.new(signed_content.encoded)
958e72a0	Marc Dequènes (Duck)	plain_mail.user = @user
1879aa76	Marc Dequènes (Duck)	plain_mail.signature_timestamp = sig.timestamp
5425b3f0	Marc Dequènes (Duck)	# propagate message_id to be able to mark messages (replay protection)
ebccdcc4	Marc Dequènes (Duck)	plain_mail.message_id = @mail.message_id
cb0d68fd	Marc Dequènes (Duck)
		MailReport.new(:user => user, :message => plain_mail)
c427bfc7	Marc Dequenes	end
275e20ec	Marc Dequenes
cb0d68fd	Marc Dequènes (Duck)	def process_encrypted
960c259e	Marc Dequenes	catch :notforme do
		begin
		# block is not passed to delegate (limitation ?)
09b32d70	Marc Dequenes	clear_message = @mail.pgp_decrypt do \|uid_hint, passphrase_info, prev_was_bad\|
960c259e	Marc Dequenes	logger.info "Mail crypted for #{uid_hint}"

		# check if requesting passphrase for the expected key
		key_id = passphrase_info.split(" ")[1]
		throw :notforme if key_id != @config.mail.key_id[-(key_id.size)..-1]

		# sending key
		@config.mail.key_passphrase
		end

		# create a fake mail and chain parsing operations
		clear_mail = self.class.new(clear_message)
958e72a0	Marc Dequènes (Duck)	clear_mail.user = @user
c7904e2c	Marc Dequenes	# propagate message_id to be able to mark messages (replay protection)
		clear_mail.message_id = @mail.message_id
91d7d237	Marc Dequènes (Duck)	decrypted_mail = clear_mail.process
		# reverse propagate user information (convenience)
		@user = decrypted_mail.user

		return decrypted_mail
a6c766ec	Marc Dequènes (Duck)	rescue GPGME::Error::DecryptFailed
		# encrypted with an unknown key
960c259e	Marc Dequenes	rescue GPGME::Error, NotImplementedError => e
		raise CyberError.new(:unrecoverable, "protocol/mail", e.message)
		end
		end

a6c766ec	Marc Dequènes (Duck)	MailReport.new(:error => _("Mail not formatted correctly (encrypted part), or not encrypted with the correct key."))
960c259e	Marc Dequenes	end
c7904e2c	Marc Dequenes
		def mark_dir
d4b5798a	Marc Dequènes (Duck)	File.join(Config::VAR_DIR, "marks")
c7904e2c	Marc Dequenes	end

		def mark_filename
		File.join(mark_dir(), Digest::MD5.hexdigest(self.message_id))
		end

		def mark_processed(time)
		FileUtils.mkdir_p(mark_dir())
		File.open(mark_filename(), "w") do \|fp\|
		fp.write self.message_id
		end
		File.utime(Time.now.to_i, time.to_i, mark_filename())
		end

		def is_marked?
		File.exists?(mark_filename())
		end
c427bfc7	Marc Dequenes	end
		end

Project

General

Profile

DuckCorp » CyborgHood