2017-02-21 16:33:03 +03:00
|
|
|
import json, hashlib, ntpath, os, sys
|
2018-02-15 18:02:52 -05:00
|
|
|
import pbincli.actions, pbincli.settings
|
|
|
|
from sjcl import SJCL
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-02-20 20:56:37 +03:00
|
|
|
from base64 import b64encode, b64decode
|
2017-02-21 03:34:34 +03:00
|
|
|
from mimetypes import guess_type
|
2017-02-19 13:26:22 +03:00
|
|
|
from pbincli.transports import privatebin
|
2017-02-21 03:34:34 +03:00
|
|
|
from pbincli.utils import PBinCLIException, check_readable, check_writable, json_load_byteified
|
2017-02-18 21:00:40 +03:00
|
|
|
|
2017-03-02 14:23:05 +03:00
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# Initialise settings
|
2017-03-02 13:09:52 +03:00
|
|
|
pbincli.settings.init()
|
2017-02-20 15:13:42 +03:00
|
|
|
|
2017-03-02 14:23:05 +03:00
|
|
|
|
2017-02-21 00:14:56 +03:00
|
|
|
def path_leaf(path):
|
|
|
|
head, tail = ntpath.split(path)
|
|
|
|
return tail or ntpath.basename(head)
|
2017-02-20 20:56:37 +03:00
|
|
|
|
2017-02-20 15:13:42 +03:00
|
|
|
|
2017-02-21 00:14:56 +03:00
|
|
|
def send(args):
|
2018-02-16 11:56:13 +03:00
|
|
|
if args.stdin:
|
|
|
|
text = args.stdin.read()
|
|
|
|
elif args.comment:
|
2017-02-21 05:09:38 +03:00
|
|
|
text = args.comment
|
|
|
|
elif args.file:
|
2017-02-23 14:13:03 +03:00
|
|
|
text = "Sending a file to you!"
|
2017-02-21 05:09:38 +03:00
|
|
|
else:
|
|
|
|
print("Nothing to send!")
|
|
|
|
sys.exit(1)
|
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# Formatting request
|
2017-03-02 13:09:52 +03:00
|
|
|
request = {'expire':args.expire,'formatter':args.format,'burnafterreading':int(args.burn),'opendiscussion':int(args.discus)}
|
|
|
|
|
2017-02-21 01:27:32 +03:00
|
|
|
passphrase = b64encode(os.urandom(32))
|
2017-02-21 16:33:03 +03:00
|
|
|
if args.debug: print("Passphrase:\t{}".format(passphrase))
|
2017-02-23 14:13:03 +03:00
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# If we set PASSWORD variable
|
2017-02-19 20:15:26 +03:00
|
|
|
if args.password:
|
2017-02-21 16:33:03 +03:00
|
|
|
digest = hashlib.sha256(args.password.encode("UTF-8")).hexdigest()
|
|
|
|
password = passphrase + digest.encode("UTF-8")
|
2017-02-20 15:13:42 +03:00
|
|
|
else:
|
2017-02-21 01:27:32 +03:00
|
|
|
password = passphrase
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-02-21 01:27:32 +03:00
|
|
|
if args.debug: print("Password:\t{}".format(password))
|
2017-02-19 23:27:37 +03:00
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# Encrypting text (comment)
|
2018-02-16 11:56:13 +03:00
|
|
|
cipher = SJCL().encrypt(text.encode("UTF-8"), password, mode='gcm')
|
2018-02-15 18:02:52 -05:00
|
|
|
|
|
|
|
# TODO: should be implemented in upstream
|
|
|
|
for k in ['salt', 'iv', 'ct']: cipher[k] = cipher[k].decode()
|
|
|
|
|
2017-03-02 13:09:52 +03:00
|
|
|
request['data'] = json.dumps(cipher, ensure_ascii=False).replace(' ','')
|
2017-02-23 14:13:03 +03:00
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# If we set FILE variable
|
2017-02-21 00:14:56 +03:00
|
|
|
if args.file:
|
|
|
|
check_readable(args.file)
|
|
|
|
with open(args.file, "rb") as f:
|
|
|
|
contents = f.read()
|
|
|
|
f.close()
|
2017-02-21 03:34:34 +03:00
|
|
|
mime = guess_type(args.file)
|
|
|
|
if args.debug: print("Filename:\t{}\nMIME-type:\t{}".format(path_leaf(args.file), mime[0]))
|
2017-02-21 00:14:56 +03:00
|
|
|
|
2018-02-15 18:02:52 -05:00
|
|
|
file = "data:" + mime[0] + ";base64," + b64encode(contents).decode()
|
2017-02-21 03:34:34 +03:00
|
|
|
filename = path_leaf(args.file)
|
2017-02-21 00:14:56 +03:00
|
|
|
|
2018-02-15 18:02:52 -05:00
|
|
|
cipherfile = SJCL().encrypt(file.encode("utf-8"), password, mode='gcm')
|
|
|
|
# TODO: should be implemented in upstream
|
|
|
|
for k in ['salt', 'iv', 'ct']: cipherfile[k] = cipherfile[k].decode()
|
|
|
|
cipherfilename = SJCL().encrypt(filename.encode("utf-8"), password, mode='gcm')
|
|
|
|
for k in ['salt', 'iv', 'ct']: cipherfilename[k] = cipherfilename[k].decode()
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-02-21 03:34:34 +03:00
|
|
|
request['attachment'] = json.dumps(cipherfile, ensure_ascii=False).replace(' ','')
|
|
|
|
request['attachmentname'] = json.dumps(cipherfilename, ensure_ascii=False).replace(' ','')
|
2017-02-21 00:14:56 +03:00
|
|
|
|
2017-02-20 15:13:42 +03:00
|
|
|
if args.debug: print("Request:\t{}".format(request))
|
|
|
|
|
2018-02-12 17:28:18 +03:00
|
|
|
# If we use dry option, exit now
|
|
|
|
if args.dry: sys.exit(0)
|
|
|
|
|
2017-03-02 13:09:52 +03:00
|
|
|
server = pbincli.settings.server
|
|
|
|
result = privatebin().post(request)
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2018-02-16 11:56:13 +03:00
|
|
|
if args.debug: print("Response:\t{}\n".format(result))
|
2017-02-21 16:33:03 +03:00
|
|
|
|
|
|
|
try:
|
|
|
|
result = json.loads(result)
|
|
|
|
except ValueError as e:
|
|
|
|
print("PBinCLI Error: {}".format(e))
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
if 'status' in result and not result['status']:
|
2018-02-15 18:02:52 -05:00
|
|
|
print("Paste uploaded!\nPasteID:\t{}\nPassword:\t{}\nDelete token:\t{}\n\nLink:\t\t{}?{}#{}".format(result['id'], passphrase.decode(), result['deletetoken'], server, result['id'], passphrase.decode()))
|
2017-02-21 16:33:03 +03:00
|
|
|
elif 'status' in result and result['status']:
|
|
|
|
print("Something went wrong...\nError:\t\t{}".format(result['message']))
|
|
|
|
sys.exit(1)
|
2017-02-20 15:13:42 +03:00
|
|
|
else:
|
2017-02-21 16:33:03 +03:00
|
|
|
print("Something went wrong...\nError: Empty response.")
|
2017-02-20 15:13:42 +03:00
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
|
|
|
|
def get(args):
|
2017-02-21 16:33:03 +03:00
|
|
|
pasteid, passphrase = args.pasteinfo.split("#")
|
|
|
|
|
|
|
|
if pasteid and passphrase:
|
|
|
|
if args.debug: print("PasteID:\t{}\nPassphrase:\t{}".format(pasteid, passphrase))
|
2017-02-21 01:27:32 +03:00
|
|
|
|
|
|
|
if args.password:
|
2017-02-21 16:33:03 +03:00
|
|
|
digest = hashlib.sha256(args.password.encode("UTF-8")).hexdigest()
|
|
|
|
password = passphrase + digest.encode("UTF-8")
|
2017-02-21 01:27:32 +03:00
|
|
|
else:
|
2017-02-21 16:33:03 +03:00
|
|
|
password = passphrase
|
2017-02-21 01:27:32 +03:00
|
|
|
|
2017-02-21 16:33:03 +03:00
|
|
|
if args.debug: print("Password:\t{}".format(password))
|
2017-02-21 01:27:32 +03:00
|
|
|
|
2017-02-21 16:33:03 +03:00
|
|
|
result = privatebin().get(pasteid)
|
2017-02-20 15:13:42 +03:00
|
|
|
else:
|
|
|
|
print("PBinCLI error: Incorrect request")
|
|
|
|
sys.exit(1)
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2018-02-16 11:56:13 +03:00
|
|
|
if args.debug: print("Response:\t{}\n".format(result))
|
2017-02-20 20:56:37 +03:00
|
|
|
|
2017-02-21 16:33:03 +03:00
|
|
|
try:
|
|
|
|
result = json.loads(result)
|
|
|
|
except ValueError as e:
|
|
|
|
print("PBinCLI Error: {}".format(e))
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
if 'status' in result and not result['status']:
|
2017-02-21 00:14:56 +03:00
|
|
|
print("Paste received! Text inside:")
|
2018-02-15 18:02:52 -05:00
|
|
|
data = json.loads(result['data'])
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-02-23 14:13:03 +03:00
|
|
|
if args.debug: print("Text:\t{}\n".format(data))
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2018-02-15 18:02:52 -05:00
|
|
|
text = SJCL().decrypt(data, password)
|
|
|
|
print("{}\n".format(text.decode()))
|
2017-02-21 00:14:56 +03:00
|
|
|
|
2017-02-21 01:27:32 +03:00
|
|
|
check_writable("paste.txt")
|
|
|
|
with open("paste.txt", "wb") as f:
|
2017-02-20 18:10:19 -05:00
|
|
|
f.write(text)
|
2017-02-21 01:27:32 +03:00
|
|
|
f.close
|
|
|
|
|
2017-02-21 00:14:56 +03:00
|
|
|
if 'attachment' in result and 'attachmentname' in result:
|
|
|
|
print("Found file, attached to paste. Decoding it and saving")
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2018-02-15 18:02:52 -05:00
|
|
|
cipherfile = json.loads(result['attachment'])
|
|
|
|
cipherfilename = json.loads(result['attachmentname'])
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-02-21 03:34:34 +03:00
|
|
|
if args.debug: print("Name:\t{}\nData:\t{}".format(cipherfilename, cipherfile))
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2018-02-15 18:02:52 -05:00
|
|
|
attachmentf = SJCL().decrypt(cipherfile, password)
|
|
|
|
attachmentname = SJCL().decrypt(cipherfilename, password)
|
2017-02-21 03:34:34 +03:00
|
|
|
|
|
|
|
attachment = str(attachmentf.split(',', 1)[1:])
|
|
|
|
file = b64decode(attachment)
|
|
|
|
filename = attachmentname
|
2017-02-21 16:33:03 +03:00
|
|
|
|
2017-03-02 22:34:50 +03:00
|
|
|
print("Filename:\t{}\n".format(filename))
|
2017-02-21 00:14:56 +03:00
|
|
|
|
|
|
|
check_writable(filename)
|
|
|
|
with open(filename, "wb") as f:
|
|
|
|
f.write(file)
|
|
|
|
f.close
|
2017-02-20 15:13:42 +03:00
|
|
|
|
|
|
|
if 'burnafterreading' in result['meta'] and result['meta']['burnafterreading']:
|
2017-02-21 01:27:32 +03:00
|
|
|
print("Burn afrer reading flag found. Deleting paste...")
|
2017-02-21 16:33:03 +03:00
|
|
|
result = privatebin().delete(pasteid, 'burnafterreading')
|
|
|
|
|
2018-02-16 11:56:13 +03:00
|
|
|
if args.debug: print("Delete response:\t{}\n".format(result))
|
2017-02-21 01:27:32 +03:00
|
|
|
|
2017-02-21 16:33:03 +03:00
|
|
|
try:
|
|
|
|
result = json.loads(result)
|
|
|
|
except ValueError as e:
|
|
|
|
print("PBinCLI Error: {}".format(e))
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
if 'status' in result and not result['status']:
|
|
|
|
print("Paste successfully deleted!")
|
|
|
|
elif 'status' in result and result['status']:
|
|
|
|
print("Something went wrong...\nError:\t\t{}".format(result['message']))
|
|
|
|
sys.exit(1)
|
|
|
|
else:
|
|
|
|
print("Something went wrong...\nError: Empty response.")
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
elif 'status' in result and result['status']:
|
|
|
|
print("Something went wrong...\nError:\t\t{}".format(result['message']))
|
|
|
|
sys.exit(1)
|
|
|
|
else:
|
|
|
|
print("Something went wrong...\nError: Empty response.")
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
|
|
|
|
def delete(args):
|
|
|
|
pasteid = args.paste
|
|
|
|
token = args.token
|
|
|
|
|
|
|
|
if args.debug: print("PasteID:\t{}\nToken:\t\t{}".format(pasteid, token))
|
|
|
|
|
|
|
|
result = privatebin().delete(pasteid, token)
|
|
|
|
|
2018-02-16 11:56:13 +03:00
|
|
|
if args.debug: print("Response:\t{}\n".format(result))
|
2017-02-21 16:33:03 +03:00
|
|
|
|
|
|
|
try:
|
|
|
|
result = json.loads(result)
|
|
|
|
except ValueError as e:
|
|
|
|
print("PBinCLI Error: {}".format(e))
|
|
|
|
sys.exit(1)
|
|
|
|
|
|
|
|
if 'status' in result and not result['status']:
|
|
|
|
print("Paste successfully deleted!")
|
|
|
|
elif 'status' in result and result['status']:
|
|
|
|
print("Something went wrong...\nError:\t\t{}".format(result['message']))
|
|
|
|
sys.exit(1)
|
2017-02-20 15:13:42 +03:00
|
|
|
else:
|
2017-02-21 16:33:03 +03:00
|
|
|
print("Something went wrong...\nError: Empty response.")
|
2017-02-20 15:13:42 +03:00
|
|
|
sys.exit(1)
|