PBinCLI/pbincli/actions.py

226 lines
7.6 KiB
Python
Raw Normal View History

2018-04-04 02:34:05 +00:00
import json, hashlib, ntpath, os, sys, zlib
import pbincli.actions, pbincli.settings
from sjcl import SJCL
2017-02-20 17:56:37 +00:00
from base64 import b64encode, b64decode
2017-02-21 00:34:34 +00:00
from mimetypes import guess_type
2017-02-19 10:26:22 +00:00
from pbincli.transports import privatebin
2017-02-21 00:34:34 +00:00
from pbincli.utils import PBinCLIException, check_readable, check_writable, json_load_byteified
2017-02-18 18:00:40 +00:00
2017-03-02 11:23:05 +00:00
2018-02-12 14:28:18 +00:00
# Initialise settings
2017-03-02 10:09:52 +00:00
pbincli.settings.init()
2017-02-20 12:13:42 +00:00
2017-03-02 11:23:05 +00:00
2017-02-20 21:14:56 +00:00
def path_leaf(path):
head, tail = ntpath.split(path)
return tail or ntpath.basename(head)
2017-02-20 17:56:37 +00:00
2017-02-20 12:13:42 +00:00
2018-04-04 02:34:05 +00:00
def decompress(s):
return zlib.decompress(bytearray(map(ord, b64decode(s.encode('utf-8')).decode('utf-8'))), -zlib.MAX_WBITS)
def compress(s):
co = zlib.compressobj(wbits=-zlib.MAX_WBITS)
b = co.compress(s) + co.flush()
return b64encode(''.join(map(chr, b)).encode('utf-8'))
2017-02-20 21:14:56 +00:00
def send(args):
if args.stdin:
text = args.stdin.read()
elif args.comment:
2017-02-21 02:09:38 +00:00
text = args.comment
elif args.file:
text = "Sending a file to you!"
2017-02-21 02:09:38 +00:00
else:
print("Nothing to send!")
sys.exit(1)
2018-02-12 14:28:18 +00:00
# Formatting request
2017-03-02 10:09:52 +00:00
request = {'expire':args.expire,'formatter':args.format,'burnafterreading':int(args.burn),'opendiscussion':int(args.discus)}
2017-02-20 22:27:32 +00:00
passphrase = b64encode(os.urandom(32))
if args.debug: print("Passphrase:\t{}".format(passphrase))
2018-02-12 14:28:18 +00:00
# If we set PASSWORD variable
2017-02-19 17:15:26 +00:00
if args.password:
digest = hashlib.sha256(args.password.encode("UTF-8")).hexdigest()
password = passphrase + digest.encode("UTF-8")
2017-02-20 12:13:42 +00:00
else:
2017-02-20 22:27:32 +00:00
password = passphrase
2017-02-20 22:27:32 +00:00
if args.debug: print("Password:\t{}".format(password))
2017-02-19 20:27:37 +00:00
2018-02-12 14:28:18 +00:00
# Encrypting text (comment)
2018-04-04 02:34:05 +00:00
cipher = SJCL().encrypt(compress(text.encode('utf-8')), password, mode='gcm')
# TODO: should be implemented in upstream
for k in ['salt', 'iv', 'ct']: cipher[k] = cipher[k].decode()
2017-03-02 10:09:52 +00:00
request['data'] = json.dumps(cipher, ensure_ascii=False).replace(' ','')
2018-02-12 14:28:18 +00:00
# If we set FILE variable
2017-02-20 21:14:56 +00:00
if args.file:
check_readable(args.file)
with open(args.file, "rb") as f:
contents = f.read()
f.close()
2017-02-21 00:34:34 +00:00
mime = guess_type(args.file)
if args.debug: print("Filename:\t{}\nMIME-type:\t{}".format(path_leaf(args.file), mime[0]))
2017-02-20 21:14:56 +00:00
file = "data:" + mime[0] + ";base64," + b64encode(contents).decode()
2017-02-21 00:34:34 +00:00
filename = path_leaf(args.file)
2017-02-20 21:14:56 +00:00
2018-04-04 02:34:05 +00:00
cipherfile = SJCL().encrypt(compress(file.encode('utf-8')), password, mode='gcm')
# TODO: should be implemented in upstream
for k in ['salt', 'iv', 'ct']: cipherfile[k] = cipherfile[k].decode()
2018-04-04 02:34:05 +00:00
cipherfilename = SJCL().encrypt(compress(filename.encode('utf-8')), password, mode='gcm')
for k in ['salt', 'iv', 'ct']: cipherfilename[k] = cipherfilename[k].decode()
2017-02-21 00:34:34 +00:00
request['attachment'] = json.dumps(cipherfile, ensure_ascii=False).replace(' ','')
request['attachmentname'] = json.dumps(cipherfilename, ensure_ascii=False).replace(' ','')
2017-02-20 21:14:56 +00:00
2017-02-20 12:13:42 +00:00
if args.debug: print("Request:\t{}".format(request))
2018-02-12 14:28:18 +00:00
# If we use dry option, exit now
if args.dry: sys.exit(0)
2017-03-02 10:09:52 +00:00
server = pbincli.settings.server
result = privatebin().post(request)
if args.debug: print("Response:\t{}\n".format(result))
try:
result = json.loads(result)
except ValueError as e:
print("PBinCLI Error: {}".format(e))
sys.exit(1)
if 'status' in result and not result['status']:
print("Paste uploaded!\nPasteID:\t{}\nPassword:\t{}\nDelete token:\t{}\n\nLink:\t\t{}?{}#{}".format(result['id'], passphrase.decode(), result['deletetoken'], server, result['id'], passphrase.decode()))
elif 'status' in result and result['status']:
print("Something went wrong...\nError:\t\t{}".format(result['message']))
sys.exit(1)
2017-02-20 12:13:42 +00:00
else:
print("Something went wrong...\nError: Empty response.")
2017-02-20 12:13:42 +00:00
sys.exit(1)
def get(args):
pasteid, passphrase = args.pasteinfo.split("#")
if pasteid and passphrase:
if args.debug: print("PasteID:\t{}\nPassphrase:\t{}".format(pasteid, passphrase))
2017-02-20 22:27:32 +00:00
if args.password:
digest = hashlib.sha256(args.password.encode("UTF-8")).hexdigest()
password = passphrase + digest.encode("UTF-8")
2017-02-20 22:27:32 +00:00
else:
password = passphrase
2017-02-20 22:27:32 +00:00
if args.debug: print("Password:\t{}".format(password))
2017-02-20 22:27:32 +00:00
result = privatebin().get(pasteid)
2017-02-20 12:13:42 +00:00
else:
print("PBinCLI error: Incorrect request")
sys.exit(1)
if args.debug: print("Response:\t{}\n".format(result))
2017-02-20 17:56:37 +00:00
try:
result = json.loads(result)
except ValueError as e:
print("PBinCLI Error: {}".format(e))
sys.exit(1)
if 'status' in result and not result['status']:
2017-02-20 21:14:56 +00:00
print("Paste received! Text inside:")
data = json.loads(result['data'])
if args.debug: print("Text:\t{}\n".format(data))
text = SJCL().decrypt(data, password)
2018-04-04 02:34:05 +00:00
print("{}\n".format(decompress(text.decode())))
2017-02-20 21:14:56 +00:00
2017-02-20 22:27:32 +00:00
check_writable("paste.txt")
with open("paste.txt", "wb") as f:
2018-04-04 02:34:05 +00:00
f.write(decompress(text.decode()))
2017-02-20 22:27:32 +00:00
f.close
2017-02-20 21:14:56 +00:00
if 'attachment' in result and 'attachmentname' in result:
print("Found file, attached to paste. Decoding it and saving")
cipherfile = json.loads(result['attachment'])
cipherfilename = json.loads(result['attachmentname'])
2017-02-21 00:34:34 +00:00
if args.debug: print("Name:\t{}\nData:\t{}".format(cipherfilename, cipherfile))
attachmentf = SJCL().decrypt(cipherfile, password)
attachmentname = SJCL().decrypt(cipherfilename, password)
2017-02-21 00:34:34 +00:00
2018-04-04 02:34:05 +00:00
attachment = decompress(attachmentf.decode('utf-8')).decode('utf-8').split(',', 1)[1]
2017-02-21 00:34:34 +00:00
file = b64decode(attachment)
2018-04-04 02:34:05 +00:00
filename = decompress(attachmentname.decode('utf-8')).decode('utf-8')
2017-03-02 19:34:50 +00:00
print("Filename:\t{}\n".format(filename))
2017-02-20 21:14:56 +00:00
check_writable(filename)
with open(filename, "wb") as f:
f.write(file)
f.close
2017-02-20 12:13:42 +00:00
if 'burnafterreading' in result['meta'] and result['meta']['burnafterreading']:
2017-02-20 22:27:32 +00:00
print("Burn afrer reading flag found. Deleting paste...")
result = privatebin().delete(pasteid, 'burnafterreading')
if args.debug: print("Delete response:\t{}\n".format(result))
2017-02-20 22:27:32 +00:00
try:
result = json.loads(result)
except ValueError as e:
print("PBinCLI Error: {}".format(e))
sys.exit(1)
if 'status' in result and not result['status']:
print("Paste successfully deleted!")
elif 'status' in result and result['status']:
print("Something went wrong...\nError:\t\t{}".format(result['message']))
sys.exit(1)
else:
print("Something went wrong...\nError: Empty response.")
sys.exit(1)
elif 'status' in result and result['status']:
print("Something went wrong...\nError:\t\t{}".format(result['message']))
sys.exit(1)
else:
print("Something went wrong...\nError: Empty response.")
sys.exit(1)
def delete(args):
pasteid = args.paste
token = args.token
if args.debug: print("PasteID:\t{}\nToken:\t\t{}".format(pasteid, token))
result = privatebin().delete(pasteid, token)
if args.debug: print("Response:\t{}\n".format(result))
try:
result = json.loads(result)
except ValueError as e:
print("PBinCLI Error: {}".format(e))
sys.exit(1)
if 'status' in result and not result['status']:
print("Paste successfully deleted!")
elif 'status' in result and result['status']:
print("Something went wrong...\nError:\t\t{}".format(result['message']))
sys.exit(1)
2017-02-20 12:13:42 +00:00
else:
print("Something went wrong...\nError: Empty response.")
2017-02-20 12:13:42 +00:00
sys.exit(1)