Skip to content

Commit

Permalink
Merge branch 'devel' of https://gitlab.anticorruzione.it/servizi-inte…
Browse files Browse the repository at this point in the history 
…rni/whistleblowing/globaleaks into devel
  • Loading branch information
Anna Bellifemine committed Nov 13, 2024
2 parents 288be68 + 2e6112f commit bb24cb2
Show file tree
Hide file tree
Showing 4 changed files with 81 additions and 36 deletions.
6 changes: 5 additions & 1 deletion backend/globaleaks/handlers/recipient/rtip.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1601,8 +1601,12 @@ def upload_file(self, session, tid, user_id, itip_id, uploaded_file):
@inlineCallbacks
def process(self, tid, user_id, itip_id, uploaded_file):
ret = yield self.upload_file(tid, user_id, itip_id, uploaded_file)

if not isinstance(uploaded_file.get('visibility'), int):
uploaded_file['visibility'] = uploaded_file['visibility'].decode()

deferToThread(
self.forward_file, self.uploaded_file['filename'], itip_id, uploaded_file['visibility'].decode())
self.forward_file, self.uploaded_file['filename'], itip_id, uploaded_file['visibility'])
return ret

def post(self, itip_id):
Expand Down
102 changes: 69 additions & 33 deletions backend/globaleaks/handlers/whistleblower/wbtip.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@
from globaleaks.handlers.user import user_serialize_user
from globaleaks.models import serializers, EnumStateFile
from globaleaks.models.config import ConfigFactory
from globaleaks.orm import db_get, transact
from globaleaks.orm import db_get, db_log, transact
from globaleaks.rest import errors, requests
from globaleaks.state import State
from globaleaks.utils.crypto import Base64Encoder, GCE
Expand All @@ -38,14 +38,15 @@ def db_notify_report_update(session, user, rtip, itip):
:param itip: A itip ORM object
"""
data = {
'type': 'tip_update',
'user': user_serialize_user(session, user, user.language),
'node': db_admin_serialize_node(session, user.tid, user.language),
'tip': serializers.serialize_rtip(session, itip, rtip, user.language),
'type': 'tip_update',
'user': user_serialize_user(session, user, user.language),
'node': db_admin_serialize_node(session, user.tid, user.language),
'tip': serializers.serialize_rtip(session, itip, rtip, user.language),
}

if data['node']['mode'] == 'default':
data['notification'] = db_get_notification(session, user.tid, user.language)
data['notification'] = db_get_notification(
session, user.tid, user.language)
else:
data['notification'] = db_get_notification(session, 1, user.language)

Expand All @@ -58,6 +59,7 @@ def db_notify_report_update(session, user, rtip, itip):
'tid': user.tid
}))


def db_notify_recipients_of_tip_update(session, itip_id):
for user, rtip, itip in session.query(models.User, models.ReceiverTip, models.InternalTip) \
.filter(models.User.id == models.ReceiverTip.receiver_id,
Expand All @@ -67,7 +69,8 @@ def db_notify_recipients_of_tip_update(session, itip_id):


def db_get_wbtip(session, itip_id, language):
itip = db_get(session, models.InternalTip, models.InternalTip.id == itip_id)
itip = db_get(session, models.InternalTip,
models.InternalTip.id == itip_id)

itip.last_access = datetime_now()

Expand All @@ -78,6 +81,7 @@ def db_get_wbtip(session, itip_id, language):
def get_wbtip(session, itip_id, language):
return db_get_wbtip(session, itip_id, language)


@transact
def is_download(session, file_location, name, state, can_download_infected):
url_clam_av = ConfigFactory(session, 1).get_val('url_file_analysis')
Expand All @@ -86,7 +90,8 @@ def is_download(session, file_location, name, state, can_download_infected):
status = af.read_file_for_scanning(file_location, name, state)
except (errors.FilePendingDownloadPermissionDenied, errors.FileInfectedDownloadPermissionDenied) as e_p:
logging.debug(e_p)
status = EnumStateFile.pending if isinstance(e_p, errors.FilePendingDownloadPermissionDenied) else EnumStateFile.infected
status = EnumStateFile.pending if isinstance(
e_p, errors.FilePendingDownloadPermissionDenied) else EnumStateFile.infected
if can_download_infected:
save_status_file_scanning(name, status)
return status, True
Expand All @@ -101,6 +106,7 @@ def is_download(session, file_location, name, state, can_download_infected):
save_status_file_scanning(name, status)
return status, True


@transact
def create_comment(session, tid, user_id, content):
itip = db_get(session,
Expand All @@ -113,7 +119,8 @@ def create_comment(session, tid, user_id, content):

_content = content
if itip.crypto_tip_pub_key:
_content = base64.b64encode(GCE.asymmetric_encrypt(itip.crypto_tip_pub_key, content)).decode()
_content = base64.b64encode(GCE.asymmetric_encrypt(
itip.crypto_tip_pub_key, content)).decode()

comment = models.Comment()
comment.internaltip_id = itip.id
Expand All @@ -136,7 +143,8 @@ def update_identity_information(session, tid, user_id, identity_field_id, wbi, l
models.InternalTip.tid == tid))

if itip.crypto_tip_pub_key:
wbi = base64.b64encode(GCE.asymmetric_encrypt(itip.crypto_tip_pub_key, json.dumps(wbi).encode())).decode()
wbi = base64.b64encode(GCE.asymmetric_encrypt(
itip.crypto_tip_pub_key, json.dumps(wbi).encode())).decode()

db_set_internaltip_data(session, itip.id, 'whistleblower_identity', wbi)

Expand All @@ -158,11 +166,13 @@ def store_additional_questionnaire_answers(session, tid, user_id, answers, langu
if not context.additional_questionnaire_id:
return

steps = db_get_questionnaire(session, tid, context.additional_questionnaire_id, None)['steps']
steps = db_get_questionnaire(
session, tid, context.additional_questionnaire_id, None)['steps']
questionnaire_hash = db_archive_questionnaire_schema(session, steps)

if itip.crypto_tip_pub_key:
answers = base64.b64encode(GCE.asymmetric_encrypt(itip.crypto_tip_pub_key, json.dumps(answers).encode())).decode()
answers = base64.b64encode(GCE.asymmetric_encrypt(
itip.crypto_tip_pub_key, json.dumps(answers).encode())).decode()

db_set_internaltip_answers(session, itip.id, questionnaire_hash, answers)

Expand All @@ -182,15 +192,18 @@ def change_receipt(session, itip_id, cc, new_receipt, receipt_change_needed):
tid = itip.tid

# update receipt
itip.receipt_hash = GCE.hash_password(new_receipt, State.tenants[tid].cache.receipt_salt)
itip.receipt_hash = GCE.hash_password(
new_receipt, State.tenants[tid].cache.receipt_salt)

if cc is None:
return

wb_key = GCE.derive_key(new_receipt.encode(), State.tenants[tid].cache.receipt_salt)
wb_key = GCE.derive_key(new_receipt.encode(),
State.tenants[tid].cache.receipt_salt)

# update private keys
itip.crypto_prv_key = Base64Encoder.encode(GCE.symmetric_encrypt(wb_key, cc))
itip.crypto_prv_key = Base64Encoder.encode(
GCE.symmetric_encrypt(wb_key, cc))

itip.receipt_change_needed = receipt_change_needed

Expand All @@ -202,7 +215,8 @@ class Operations(BaseHandler):
check_roles = "whistleblower"

def put(self):
request = self.validate_request(self.request.content.read(), requests.OpsDesc)
request = self.validate_request(
self.request.content.read(), requests.OpsDesc)
if request["operation"] != "change_receipt":
raise errors.InputValidationError("Invalid command")

Expand Down Expand Up @@ -236,7 +250,8 @@ class WBTipCommentCollection(BaseHandler):
check_roles = 'whistleblower'

def post(self):
request = self.validate_request(self.request.content.read(), requests.WbTipCommentDesc)
request = self.validate_request(
self.request.content.read(), requests.WbTipCommentDesc)
return create_comment(self.request.tid, self.session.user_id, request['content'])


Expand All @@ -255,7 +270,11 @@ def download_wbfile(self, session, tid, user_id, file_id):
(models.InternalFile.id == file_id,
models.InternalFile.internaltip_id == models.InternalTip.id,
models.InternalTip.id == user_id))
log.debug("Download of file %s by whistleblower %s" % (ifile.id, user_id))

log.debug("Download of file %s by whistleblower %s" %
(ifile.id, user_id))
db_log(session, tid=tid, type='whistleblower_download_wbfile',
user_id=user_id, object_id=file_id)

return ifile.name, ifile.id, itip.crypto_tip_prv_key, ifile.state, False

Expand All @@ -266,20 +285,26 @@ def get(self, wbfile_id):
self.session.user_id, wbfile_id
)

file_location = os.path.join(self.state.settings.attachments_path, ifile_id)
file_location = os.path.join(
self.state.settings.attachments_path, ifile_id)
aux_file = os.path.join(self.state.settings.attachments_path, ifile_id)
directory_traversal_check(self.state.settings.attachments_path, file_location)
directory_traversal_check(
self.state.settings.attachments_path, file_location)
self.check_file_presence(file_location)

if tip_prv_key:
tip_prv_key = GCE.asymmetric_decrypt(self.session.cc, base64.b64decode(tip_prv_key))
name = GCE.asymmetric_decrypt(tip_prv_key, base64.b64decode(name.encode())).decode()
tip_prv_key = GCE.asymmetric_decrypt(
self.session.cc, base64.b64decode(tip_prv_key))
name = GCE.asymmetric_decrypt(
tip_prv_key, base64.b64decode(name.encode())).decode()

try:
# First attempt
aux_path = file_location
file_location = GCE.streaming_encryption_open('DECRYPT', tip_prv_key, file_location)
aux_file = GCE.streaming_encryption_open('DECRYPT', tip_prv_key, aux_path)
file_location = GCE.streaming_encryption_open(
'DECRYPT', tip_prv_key, file_location)
aux_file = GCE.streaming_encryption_open(
'DECRYPT', tip_prv_key, aux_path)
except Exception as e:
logging.debug(e)
status, run_download = yield is_download(aux_file, name, state, dl_infected)
Expand Down Expand Up @@ -310,7 +335,10 @@ def download_rfile(self, session, tid, file_id):
if rfile.access_date == datetime_null():
rfile.access_date = datetime_now()

log.debug("Download of file %s by whistleblower %s", rfile.id, self.session.user_id)
log.debug("Download of file %s by whistleblower %s",
rfile.id, self.session.user_id)
db_log(session, tid=tid, type='whistleblower_download_rfile',
user_id=self.session.user_id, object_id=file_id)

return rfile.name, rfile.id, base64.b64decode(wbtip.crypto_tip_prv_key), '', rfile.state, can_download_infected

Expand All @@ -321,16 +349,22 @@ def get(self, rfile_id):
rfile_id
)

filelocation = os.path.join(self.state.settings.attachments_path, filelocation)
aux_file = os.path.join(self.state.settings.attachments_path, filelocation)
directory_traversal_check(self.state.settings.attachments_path, filelocation)
filelocation = os.path.join(
self.state.settings.attachments_path, filelocation)
aux_file = os.path.join(
self.state.settings.attachments_path, filelocation)
directory_traversal_check(
self.state.settings.attachments_path, filelocation)

if tip_prv_key:
tip_prv_key = GCE.asymmetric_decrypt(self.session.cc, tip_prv_key)
name = GCE.asymmetric_decrypt(tip_prv_key, base64.b64decode(name.encode())).decode()
name = GCE.asymmetric_decrypt(
tip_prv_key, base64.b64decode(name.encode())).decode()
aux_path = filelocation
filelocation = GCE.streaming_encryption_open('DECRYPT', tip_prv_key, filelocation)
aux_file = GCE.streaming_encryption_open('DECRYPT', tip_prv_key, aux_path)
filelocation = GCE.streaming_encryption_open(
'DECRYPT', tip_prv_key, filelocation)
aux_file = GCE.streaming_encryption_open(
'DECRYPT', tip_prv_key, aux_path)
status, run_download = yield is_download(aux_file, name, state, dl_infected)
if not run_download:
if status == EnumStateFile.infected:
Expand All @@ -346,7 +380,8 @@ class WBTipIdentityHandler(BaseHandler):
check_roles = 'whistleblower'

def post(self):
request = self.validate_request(self.request.content.read(), requests.WhisleblowerIdentityAnswers)
request = self.validate_request(
self.request.content.read(), requests.WhisleblowerIdentityAnswers)

return update_identity_information(self.request.tid,
self.session.user_id,
Expand All @@ -362,7 +397,8 @@ class WBTipAdditionalQuestionnaire(BaseHandler):
check_roles = 'whistleblower'

def post(self):
request = self.validate_request(self.request.content.read(), requests.AdditionalQuestionnaireAnswers)
request = self.validate_request(
self.request.content.read(), requests.AdditionalQuestionnaireAnswers)
return store_additional_questionnaire_answers(self.request.tid,
self.session.user_id,
request['answers'],
Expand Down
Binary file modified backend/globaleaks/tests/db/empty/globaleaks-69.db
View file
Binary file not shown.
9 changes: 7 additions & 2 deletions backend/globaleaks/tests/helpers.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -321,7 +321,7 @@ def __init__(self):
'rootdomain': 'antani.gov',
'email': '[email protected]',
'languages_supported': [], # ignored
'languages_enabled': ['it', 'en'],
'languages_enabled': ['en'],
'latest_version': __version__,
'receipt_salt': '<<the Lannisters send their regards>>',
'maximum_filesize': 30,
Expand Down Expand Up @@ -370,7 +370,12 @@ def __init__(self):
'custom_support_url': '',
'pgp': False,
'user_privacy_policy_text': '',
'user_privacy_policy_url': ''
'user_privacy_policy_url': '',
'backup_enable': True,
'backup_time_ISO_8601': '',
'backup_destination_path': '',
'url_file_analysis': '',
'external_organization_activation': True
}

self.dummyNetwork = {
Expand Down

0 comments on commit bb24cb2

Please sign in to comment.