This repository has been archived on 2024-12-14. You can view files and clone it, but cannot push or open issues or pull requests.
PyBitmessage-2024-12-14/src/plugins/proxyconfig_stem.py

158 lines
5.7 KiB
Python
Raw Normal View History

2019-07-23 17:57:46 +02:00
# -*- coding: utf-8 -*-
2019-09-23 12:38:34 +02:00
"""
2019-10-22 09:10:41 +02:00
Configure tor proxy and hidden service with
`stem <https://stem.torproject.org/>`_ depending on *bitmessagesettings*:
* try to start own tor instance on *socksport* if *sockshostname*
is unset or set to localhost;
* if *socksport* is already in use that instance is used only for
hidden service (if *sockslisten* is also set True);
* create ephemeral hidden service v3 if there is already *onionhostname*;
* otherwise use stem's 'BEST' version and save onion keys to the new
section using *onionhostname* as name for future use.
2019-09-23 12:38:34 +02:00
"""
2019-07-23 17:57:46 +02:00
import logging
import os
2022-04-29 17:05:48 +02:00
import random
2021-06-12 00:00:26 +02:00
import sys
2019-07-23 17:57:46 +02:00
import tempfile
import stem
import stem.control
import stem.process
2019-08-09 16:15:00 +02:00
import stem.version
2019-07-23 17:57:46 +02:00
2019-12-21 08:15:29 +01:00
class DebugLogger(object): # pylint: disable=too-few-public-methods
2019-07-23 17:57:46 +02:00
"""Safe logger wrapper for tor and plugin's logs"""
def __init__(self):
self._logger = logging.getLogger('default')
2019-07-23 17:57:46 +02:00
self._levels = {
'err': 40,
'warn': 30,
'notice': 20
}
def __call__(self, line):
try:
2021-06-12 00:00:26 +02:00
level, line = line.split('[', 1)[1].split(']', 1)
2019-07-23 17:57:46 +02:00
except IndexError:
# Plugin's debug or unexpected log line from tor
self._logger.debug(line)
2021-06-12 00:00:26 +02:00
except ValueError: # some error while splitting
self._logger.warning(line)
2019-07-23 17:57:46 +02:00
else:
2019-09-23 12:38:34 +02:00
self._logger.log(self._levels.get(level, 10), '(tor) %s', line)
2019-07-23 17:57:46 +02:00
2021-06-12 00:00:26 +02:00
# pylint: disable=too-many-branches,too-many-statements
def connect_plugin(config):
2019-10-22 09:10:41 +02:00
"""
Run stem proxy configurator
:param config: current configuration instance
:type config: :class:`pybitmessage.bmconfigparser.BMConfigParser`
:return: True if configuration was done successfully
"""
2019-07-23 17:57:46 +02:00
logwrite = DebugLogger()
2019-10-22 09:10:41 +02:00
if config.safeGet('bitmessagesettings', 'sockshostname', '') not in (
'localhost', '127.0.0.1', ''
2019-07-23 17:57:46 +02:00
):
# remote proxy is choosen for outbound connections,
# nothing to do here, but need to set socksproxytype to SOCKS5!
config.set('bitmessagesettings', 'socksproxytype', 'SOCKS5')
2019-07-23 17:57:46 +02:00
logwrite(
'sockshostname is set to remote address,'
' aborting stem proxy configuration')
return
2021-06-12 00:00:26 +02:00
tor_config = {'SocksPort': '9050'}
2019-07-23 17:57:46 +02:00
datadir = tempfile.mkdtemp()
2021-06-12 00:00:26 +02:00
if sys.platform.startswith('win'):
# no ControlSocket on windows because there is no Unix sockets
tor_config['DataDirectory'] = datadir
else:
control_socket = os.path.join(datadir, 'control')
tor_config['ControlSocket'] = control_socket
port = config.safeGetInt('bitmessagesettings', 'socksport', 9050)
2019-07-23 17:57:46 +02:00
for attempt in range(50):
if attempt > 0:
2022-04-29 17:05:48 +02:00
port = random.randint(32767, 65535) # nosec B311
2019-07-23 17:57:46 +02:00
tor_config['SocksPort'] = str(port)
2021-06-12 00:00:26 +02:00
if tor_config.get('DataDirectory'):
control_port = port + 1
tor_config['ControlPort'] = str(control_port)
2019-07-23 17:57:46 +02:00
# It's recommended to use separate tor instance for hidden services.
# So if there is a system wide tor, use it for outbound connections.
try:
stem.process.launch_tor_with_config(
2021-06-12 00:00:26 +02:00
tor_config, take_ownership=True,
timeout=(None if sys.platform.startswith('win') else 20),
2019-08-09 16:15:00 +02:00
init_msg_handler=logwrite)
2019-07-23 17:57:46 +02:00
except OSError:
2019-08-09 16:15:00 +02:00
if not attempt:
try:
stem.version.get_system_tor_version()
except IOError:
return
2019-07-23 17:57:46 +02:00
continue
else:
logwrite('Started tor on port %s' % port)
break
2021-06-12 00:00:26 +02:00
else:
logwrite('Failed to start tor')
return
2019-07-23 17:57:46 +02:00
config.setTemp('bitmessagesettings', 'socksproxytype', 'SOCKS5')
2019-07-23 17:57:46 +02:00
if config.safeGetBoolean('bitmessagesettings', 'sockslisten'):
# need a hidden service for inbound connections
try:
2021-06-12 00:00:26 +02:00
controller = (
stem.control.Controller.from_port(port=control_port)
if sys.platform.startswith('win') else
stem.control.Controller.from_socket_file(control_socket)
)
2019-07-23 17:57:46 +02:00
controller.authenticate()
except stem.SocketError:
# something goes wrong way
logwrite('Failed to instantiate or authenticate on controller')
return
onionhostname = config.safeGet('bitmessagesettings', 'onionhostname')
onionkey = config.safeGet(onionhostname, 'privsigningkey')
if onionhostname and not onionkey:
2019-12-21 08:15:29 +01:00
logwrite('The hidden service found in config ): %s' %
onionhostname)
2019-07-23 17:57:46 +02:00
onionkeytype = config.safeGet(onionhostname, 'keytype')
response = controller.create_ephemeral_hidden_service(
2019-12-20 09:53:31 +01:00
{config.safeGetInt('bitmessagesettings', 'onionport', 8444):
config.safeGetInt('bitmessagesettings', 'port', 8444)},
2019-07-23 17:57:46 +02:00
key_type=(onionkeytype or 'NEW'),
key_content=(onionkey or onionhostname and 'ED25519-V3' or 'BEST')
2019-07-23 17:57:46 +02:00
)
if not response.is_ok():
logwrite('Bad response from controller ):')
return
if not onionkey:
logwrite('Started hidden service %s.onion' % response.service_id)
2019-12-21 08:15:29 +01:00
# only save new service keys
# if onionhostname was not set previously
2019-07-23 17:57:46 +02:00
if not onionhostname:
onionhostname = response.service_id + '.onion'
config.set(
'bitmessagesettings', 'onionhostname', onionhostname)
config.add_section(onionhostname)
config.set(
onionhostname, 'privsigningkey', response.private_key)
config.set(
onionhostname, 'keytype', response.private_key_type)
config.save()
2019-08-09 16:15:00 +02:00
return True