PageRenderTime 101ms CodeModel.GetById 20ms RepoModel.GetById 0ms app.codeStats 0ms

/tools/PickleRPCHandler.py

https://bitbucket.org/rfc1437/toolserver
Python | 82 lines | 60 code | 14 blank | 8 comment | 6 complexity | 573db71329646828cc8e1a591b89f027 MD5 | raw file
    

  1. # -*- Mode: Python -*-
    2. 

  2. 

  3. # pickle_handler is a RPC handler for medusa built on xmlrpc_handler that
    4. 

  4. # uses base64 encoded pickles instead of XML
    5. 

  5. #
    6. 

  6. # this adaption was done by Georg Bauer <bauer@gws.ms>
    7. 

  7. 

  8. # See http://www.xml-rpc.com/
    9. 

  9. #     http://www.pythonware.com/products/xmlrpc/
    10. 

  10. 

  11. # Based on "xmlrpcserver.py" by Fredrik Lundh (fredrik@pythonware.com)
    12. 

  12. 

  13. from base64 import encodestring, decodestring
    14. 

  14. try: from cPickle import dumps, loads
    15. 

  15. except ImportError: from pickle import dumps, loads
    16. 

  16. 

  17. from zlib import compress, decompress
    18. 

  18. 

  19. from Toolserver.Config import config, hasCrypto
    20. 

  20. from Toolserver.RPCHandler import rpc_handler, registerRPCHandler
    21. 

  21. from Toolserver.Authentication import privatekeys, publickeys
    22. 

  22. from Toolserver.Utils import logWarning, ForbiddenError
    23. 

  23. 

  24. randompool = None
    25. 

  25. if hasCrypto:
    26. 

  26. 	from Crypto.Cipher import Blowfish
    27. 

  27. 	from Crypto.Util.randpool import RandomPool
    28. 

  28. 	randompool = RandomPool(500)
    29. 

  29. 

  30. def genPassword():
    31. 

  31. 	randompool.stir()
    32. 

  32. 	secret = randompool.get_bytes(16)
    33. 

  33. 	randompool.stir()
    34. 

  34. 	return secret
    35. 

  35. 

  36. class pickle_handler(rpc_handler):
    37. 

  37. 

  38. 	_prefix = 'PYRPC'
    39. 

  39. 	_name = 'PickleRPC'
    40. 

  40. 	_mime_type = 'text/plain'
    41. 

  41. 

  42. 	def parse_request(self, data, request):
    43. 

  43. 		key = request.get_header('X-PickleRPC-Secret')
    44. 

  44. 		key = (decodestring(key),)
    45. 

  45. 		key = privatekeys[config.serverhostname].decrypt(key)
    46. 

  46. 		s = decodestring(data)
    47. 

  47. 		b = Blowfish.new(key, Blowfish.MODE_CBC)
    48. 

  48. 		s = b.decrypt(s)
    49. 

  49. 		s = decompress(s)
    50. 

  50. 		(method, args, kw) = loads(s)
    51. 

  51. 		if not hasattr(request, '_my_secret'):
    52. 

  52. 			request._my_secret = genPassword()
    53. 

  53. 		return (args, kw, kw.keys(), method)
    54. 

  54. 

  55. 	def build_exception(self, request, excinfo, reason):
    56. 

  56. 		(e, d, tb) = excinfo
    57. 

  57. 		res = dumps(d, 1)
    58. 

  58. 		res = compress(res)
    59. 

  59. 		if not hasattr(request, '_my_secret'):
    60. 

  60. 			request._my_secret = genPassword()
    61. 

  61. 		b = Blowfish.new(request._my_secret, Blowfish.MODE_CBC)
    62. 

  62. 		res = b.encrypt(res+' '*(8-len(res)%8))
    63. 

  63. 		return encodestring(res)
    64. 

  64. 

  65. 	def build_result(self, request, method, result):
    66. 

  66. 		res = dumps(result, 1)
    67. 

  67. 		res = compress(res)
    68. 

  68. 		if not hasattr(request, '_my_secret'):
    69. 

  69. 			request._my_secret = genPassword()
    70. 

  70. 		b = Blowfish.new(request._my_secret, Blowfish.MODE_CBC)
    71. 

  71. 		res = b.encrypt(res+' '*(8-len(res)%8))
    72. 

  72. 		return encodestring(res)
    73. 

  73. 

  74. 	def outgoing_header_hook(self, request, data):
    75. 

  75. 		key = publickeys[request.get_header('X-TooFPy-Signer')].encrypt(request._my_secret, '')
    76. 

  76. 		key = key[0]
    77. 

  77. 		key = encodestring(key).strip().replace('\n','')
    78. 

  78. 		request['X-PickleRPC-Secret'] = key
    79. 

  79. 

  80. if hasCrypto and config.allowpicklerpc and config.rsaauthenticate:
    81. 

  81. 	registerRPCHandler(pickle_handler)
    82. 

  82. 

  83.