Changeset 11813

Timestamp:

Jul 27, 2012, 10:48:39 PM (11 years ago)

Author:

Steffen Hoffmann

Message:

CryptoPlugin: Implement some functionality now, starting with OpenPGP, refs #10030 and #10080.

Location:

cryptoplugin/trunk

Files:

• COPYING (modified) (1 diff)
• crypto/admin.py (modified) (3 diffs)
• crypto/api.py (modified) (3 diffs)
• crypto/compat.py (added)
• crypto/htdocs (added)
• crypto/htdocs/crypto.css (added)
• crypto/openpgp.py (added)
• crypto/templates/admin_crypto.html (modified) (1 diff)
• crypto/tests/admin.py (modified) (1 diff)
• crypto/tests/openpgp.py (added)
• crypto/tests/web_ui.py (modified) (1 diff)
• crypto/web_ui.py (modified) (1 diff)
• setup.py (modified) (1 diff)

cryptoplugin/trunk/COPYING

@@ -27 +27 @@
 OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
 IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+----
+
+For OpenPGP operation this code relies on python-gnupg, a wrapper for the
+'gpg' command. So it's disclaimer follows here for completeness:
+
+Portions of this module are derived from A.M. Kuchling's well-designed
+GPG.py, using Richard Jones' updated version 1.3, which can be found
+in the pycrypto CVS repository on Sourceforge:
+
+http://pycrypto.cvs.sourceforge.net/viewvc/pycrypto/gpg/GPG.py
+
+This module is *not* forward-compatible with amk's; some of the
+old interface has changed.  For instance, since I've added decrypt
+functionality, I elected to initialize with a 'gnupghome' argument
+instead of 'keyring', so that gpg can find both the public and secret
+keyrings.  I've also altered some of the returned objects in order for
+the caller to not have to know as much about the internals of the
+result classes.
+
+While the rest of ISconf is released under the GPL, I am releasing
+this single file under the same terms that A.M. Kuchling used for
+pycrypto.
+
+Steve Traugott, stevegt@terraluna.org
+Thu Jun 23 21:27:20 PDT 2005
+
+This version of the module has been modified from Steve Traugott's version
+(see http://trac.t7a.org/isconf/browser/trunk/lib/python/isconf/GPG.py) by
+Vinay Sajip to make use of the subprocess module (Steve's version uses
+os.fork() and so does not work on Windows). Renamed to gnupg.py to avoid
+confusion with the previous versions.
+
+Modifications Copyright (C) 2008-2012 Vinay Sajip. All rights reserved.
+
+----
+
+Finally, the licensing terms of pycrypto are reproduced here for reference:
+
+===================================================================
+Distribute and use freely; there are no restrictions on further
+dissemination and usage except those imposed by the laws of your
+country of residence.  This software is provided "as is" without
+warranty of fitness for use or suitability for any purpose, express
+or implied. Use at your own risk or not at all.
+===================================================================
+
+Incorporating the code into commercial products is permitted; you do
+not have to make source available or contribute your changes back
+(though that would be nice).
+
+--amk                                                             (www.amk.ca)

cryptoplugin/trunk/crypto/admin.py

@@ -7 +7 @@
 # you should have received as part of this distribution.
 
+import os
+
+from datetime import datetime
+
 from trac.admin import IAdminPanelProvider
+from trac.config import Option
 from trac.core import implements
 from trac.perm import IPermissionRequestor
+from trac.util.datefmt import to_timestamp, utc
+from trac.web.chrome import add_notice, add_stylesheet, add_warning
 
-from crypto.api import _, dgettext
+from crypto.api import CryptoBase, _, dgettext
+from crypto.compat import exception_to_unicode
 from crypto.web_ui import CommonTemplateProvider
 
@@ -22 +30 @@
     # IPermissionRequestor method
     def get_permission_actions(self):
-        actions = ['CRYPTO_ADMIN']
+        action = ['CRYPTO_DELETE']
+        actions = [('CRYPTO_ADMIN', action), action[0]]
         return actions
 
@@ -32 +41 @@
 
     def render_admin_panel(self, req, cat, page, path_info):
+        if req.method == 'POST':
+            defaults = self.config.defaults().get('crypto')
+            ## Read admin form values.
+            # GnuPG settings
+            gpg_binary = req.args.get('gpg_binary')
+            gpg_home = req.args.get('gpg_home')
+            priv_key = req.args.get('priv_key')
+            # Key generation presets
+            expire_date = req.args.get('expire_date')
+            key_length = req.args.get('key_length')
+            key_type = req.args.get('key_type')
+            subkey_length = req.args.get('subkey_length')
+            subkey_type = req.args.get('subkey_type')
+            # Checkbox return value requires special parsing.
+            allow_usermod = bool(req.args.get('allow_usermod'))
+
+            # Overwrite deleted values with defaults.
+            if not gpg_binary and defaults:
+                gpg_binary = defaults['gpg_binary']
+            self.config.set('crypto', 'gpg_binary', gpg_binary)
+            if not gpg_home and defaults:
+                gpg_home = defaults['gpg_home']
+            self.config.set('crypto', 'gpg_home', gpg_home)
+            if not priv_key and defaults:
+                priv_key = defaults['private_key']
+            self.config.set('crypto', 'gpg_private_key', priv_key)
+
+            self.config.set('crypto', 'gpg_keygen_allow_usermod',
+                            allow_usermod)
+            if not expire_date and defaults:
+                expire_date = defaults['gpg_keygen_expire_date']
+            self.config.set('crypto', 'gpg_keygen_expire_date', expire_date)
+            if not key_length and defaults:
+                key_length = defaults['gpg_keygen_key_length']
+            self.config.set('crypto', 'gpg_keygen_key_length', key_length)
+            if not key_type and defaults:
+                key_type = defaults['gpg_keygen_key_type']
+            self.config.set('crypto', 'gpg_keygen_key_type', key_type)
+            if not subkey_length and defaults:
+                subkey_length = defaults['gpg_keygen_subkey_length']
+            self.config.set('crypto', 'gpg_keygen_subkey_length',
+                            subkey_length)
+            if not subkey_type and defaults:
+                subkey_type = defaults['gpg_keygen_subkey_type']
+            self.config.set('crypto', 'gpg_keygen_subkey_type', subkey_type)
+
+            # Save effective new configuration.
+            _save_config(self.config, req, self.log)
+            req.redirect(req.href.admin(cat, page))
+
         # Get current configuration.
-        if req.method == 'POST':
-            # Save configuration changes.
-            test = 'replace_with_real_code'
-        # Display current configuration.
-        data = {'_dgettext': dgettext}
+        gpg = {
+            'binary': self.config.get('crypto', 'gpg_binary'),
+            'home': self.config.get('crypto', 'gpg_home')
+        }
+        keygen = {
+            'allow_usermod': self.config.getbool('crypto',
+                                                 'gpg_keygen_allow_usermod'),
+            'expire_date': self.config.get('crypto', 'gpg_keygen_expire_date'),
+            'key_length': self.config.getint('crypto',
+                                             'gpg_keygen_key_length'),
+            'key_type': self.config.get('crypto', 'gpg_keygen_key_type'),
+            'subkey_length': self.config.getint('crypto',
+                                                'gpg_keygen_subkey_length'),
+            'subkey_type': self.config.get('crypto', 'gpg_keygen_subkey_type')
+        }
+        now_ts = to_timestamp(datetime.now(utc))
+        priv_key = self.config.get('crypto', 'gpg_private_key')
+        priv_keys = [dict(id='', label=_("(Select private key)"))] + [
+            dict(id=key['keyid'],
+                 label=' - '.join([key['keyid'], key.get('uids')[1]]),
+                 disabled=key.get('expires') and \
+                          int(key.get('expires')) < now_ts,
+                 selected=key['keyid'] == priv_key)
+            for key in CryptoBase(self.env).keys(private=True)
+        ]
+            
+        data = {
+            '_dgettext': dgettext,
+            'env_dir': os.path.abspath(self.env.path),
+            'gpg': gpg,
+            'keygen': keygen,
+            'priv_keys': priv_keys
+        }
+        add_stylesheet(req, 'crypto/crypto.css')
         return 'admin_crypto.html', data
+
+
+def _save_config(config, req, log):
+    """Try to save the config, and display either a success notice or a
+    failure warning (code copied verbatim from Trac core).
+    """
+    try:
+        config.save()
+        add_notice(req, _("Your changes have been saved."))
+    except Exception, e:
+        log.error('Error writing to trac.ini: %s', exception_to_unicode(e))
+        add_warning(req, _("""Error writing to trac.ini, make sure it is
+                           writable by the web server. Your changes have not
+                           been saved."""))

cryptoplugin/trunk/crypto/api.py

@@ -9 +9 @@
 from pkg_resources import resource_filename
 
-from trac.core import Component
+from trac.core import Component, ExtensionPoint, Interface, implements
 
 # Import standard i18n methods.
@@ -41 +41 @@
 
 
+class IKeyVault(Interface):
+    """Defines common key store operations."""
+
+    def keys(self, private=False, id_only=False):
+        """Returns the list of all available keys."""
+
+    def has_key(self, key_id, private=False):
+        """Returns whether a key with the given ID is available or not."""
+
+    def get_key(self, key_id, private=False):
+        """Returns a distinct key as dictionary of key properties."""
+
+    def create_key(self, **kwargs):
+        """Generate a new key with specified properties."""
+
+    def delete_key(self, key_id, perm):
+        """Delete the key specified by ID."""
+
+
+class ICipherModule(Interface):
+    """Defines common key operations."""
+
+
+class Credential(Component):
+
+    abstract = True
+
+
+class GenericFactory(Component):
+    """Provides common key store operations."""
+
+    abstract = True
+    implements(IKeyVault)
+    name = 'generic'
+
+    def keys(self, private=False, id_only=False):
+        """Returns the list of all available keys."""
+        return []
+
+    def has_key(self, key_id, private=False):
+        """Returns whether a key with the given ID is available or not."""
+        if key_id in self.keys(private=private, id_only=True):
+            return True
+        return False
+
+    def get_key(self, key_id, private=False):
+        """Returns a distinct key as dictionary of key properties."""
+        for key in self.keys(private=private):
+            if key_id == key['keyid']:
+                return key
+        return {}
+
+    def create_key(self, **kwargs):
+        """Generate a new key with specified properties."""
+        return {}
+
+    def delete_key(self, key_id, perm):
+        """Delete the key specified by ID."""
+        return False
+
+
 class CryptoBase(Component):
     """Cryptography foundation for Trac."""
+
+    _key_stores = ExtensionPoint(IKeyVault)
 
     def __init__(self):
@@ -48 +111 @@
         locale_dir = resource_filename(__name__, 'locale')
         add_domain(self.env.path, locale_dir)
+
+    def keys(self, private=False, id_only=False):
+        """Returns the list of all available keys."""
+        for store in self._key_stores:
+            for key in store.keys(private=private, id_only=id_only):
+                yield key
+
+    def has_key(self, key_id, private=False):
+        """Returns whether a key with the given ID is available or not."""
+        if key_id in self.keys(private=private, id_only=True):
+            return True
+        return False

cryptoplugin/trunk/crypto/templates/admin_crypto.html

@@ -17 +17 @@
   <body>
     <h2>Cryptography: Configuration</h2>
+    <form class="mod" id="modcrypto" method="post" action="">
+      <fieldset>
+        <legend>OpenPGP: GnuPG</legend>
+        <div class="field">
+          <label>Binary:<br />
+            <input type="text" id="gpg_binary" name="gpg_binary" size="48"
+                   value="$gpg.binary"/>
+          </label>
+          <p class="help">
+            GnuPG executable name, optionally including full path. For usual
+            installations that location is auto-detected by retaining the
+            default value <code>gpg</code>.
+          </p>
+        </div>
+        <div class="field">
+          <label>Directory:<br />
+            <input type="text" id="gpg_home" name="gpg_home" size="48"
+                   value="$gpg.home"/>
+          </label>
+          <p class="help" i18n:msg="dir">
+            This directory contains keyrings as well as other support files.
+            You could direct to an existing GnuPG home directory, or to a
+            new path so that it will be created upon next environment reload
+            and will be populated with new files including empty keyrings.
+            If you specify a relative path, that directory will reside inside
+            the project environment (<code>$env_dir</code>).
+          </p>
+        </div>
+        <div class="field">
+          <label>Server Key:<br />
+            <select id="priv_key" name="priv_key">
+              <option py:for="key in priv_keys" value="${key.id}"
+                      selected="${key.selected or None}"
+                      disabled="${key.disabled or None}">${key.label}</option>
+            </select>
+          </label>
+          <p class="help">
+            The selected key is used for signing auto-generated content. Such
+            unattended operation currently requires a blank private key
+            password. Directory and keyring file access must be narrowed down
+            carefully to limit exposure of this sensitive information.
+          </p>
+        </div>
+
+      <fieldset>
+        <legend>OpenPGP Key Generation Presets</legend>
+        <table>
+          <tr>
+            <th class="col1">
+              <label for="key_type">Key Type:</label>
+            </th>
+            <td class="col1">
+              <input type="text" id="key_type" name="key_type"
+                     value="$keygen.key_type"/>
+            </td>
+            <th class="col2">
+              <label for="key_length">Key Length:</label>
+            </th>
+            <td class="col2">
+              <input type="text" id="key_length" name="key_length"
+                     value="$keygen.key_length"/>
+            </td>
+          </tr>
+          <tr>
+            <th class="col1">
+              <label for="subkey_type">Subkey Type:</label>
+            </th>
+            <td class="col1">
+              <input type="text" id="subkey_type" name="subkey_type"
+                     value="$keygen.subkey_type"/>
+            </td>
+            <th class="col2">
+              <label for="subkey_length">Subkey Length:</label>
+            </th>
+            <td class="col2">
+              <input type="text" id="subkey_length" name="subkey_length"
+                     value="$keygen.subkey_length"/>
+            </td>
+          </tr>
+          <tr>
+            <th class="col1">
+              <label for="expire_date">Expiration Date:</label>
+            </th>
+            <td class="col1">
+              <input type="text" id="expire_date" name="expire_date"
+                     value="$keygen.expire_date"/>
+            </td>
+            <th class="col2">
+              <input type="checkbox" id="allow_usermod" name="allow_usermod"
+                     checked="${keygen.allow_usermod and 'checked' or None}"/>
+            </th>
+            <td class="col2">
+              <label for="allow_usermod">
+                Allow users to overwrite key generation presets.
+              </label>
+            </td>
+          </tr>
+        </table>
+      </fieldset>
+        <div class="buttons">
+          <input type="submit" value="${_('Apply changes')}"/>
+        </div>
+      </fieldset>
+    </form>
   </body>
 </html>

cryptoplugin/trunk/crypto/tests/admin.py

@@ -32 +32 @@
     def test_available_actions(self):
         self.failIf('CRYPTO_ADMIN' not in self.perm.get_actions())
+        self.failIf('CRYPTO_DELETE' not in self.perm.get_actions())
 
     def test_available_actions_no_perms(self):
         self.perm.grant_permission('admin', 'authenticated')
         self.assertFalse(self.perm.check_permission('CRYPTO_ADMIN', 'admin'))
+        self.assertFalse(self.perm.check_permission('CRYPTO_DELETE', 'admin'))
+
+    def test_available_actions_delete_only(self):
+        self.perm.grant_permission('admin', 'CRYPTO_DELETE')
+        self.assertFalse(self.perm.check_permission('CRYPTO_ADMIN', 'admin'))
+        self.assertTrue(self.perm.check_permission('CRYPTO_DELETE', 'admin'))
 
     def test_available_actions_full_perms(self):
         self.perm.grant_permission('admin', 'TRAC_ADMIN')
         self.assertTrue(self.perm.check_permission('CRYPTO_ADMIN', 'admin'))
+        self.assertTrue(self.perm.check_permission('CRYPTO_DELETE', 'admin'))
 
 

cryptoplugin/trunk/crypto/tests/web_ui.py

@@ -23 +23 @@
         self.env.path = tempfile.mkdtemp()
 
-        # CommonTemplateProvider is rather abstract, test it using a subclass.
+        # CommonTemplateProvider is abstract, test it using a subclass.
         self.crypto_up = UserCryptoPreferences(self.env)
 

cryptoplugin/trunk/crypto/web_ui.py

@@ -21 +21 @@
     implements(ITemplateProvider)
 
+    abstract = True
+
     # ITemplateProvider methods
 
     def get_htdocs_dirs(self):
-        return []
+        return [('crypto', resource_filename(__name__, 'htdocs'))]
 
     def get_templates_dirs(self):
-        return [resource_filename('crypto', 'templates')]
+        return [resource_filename(__name__, 'templates')]
 
 class UserCryptoPreferences(CommonTemplateProvider):

cryptoplugin/trunk/setup.py

@@ -53 +53 @@
             'crypto.api = crypto.api',
             'crypto.admin = crypto.admin',
+            'crypto.openpgp = crypto.openpgp',
             'crypto.web_ui = crypto.web_ui'
         ]