[edward.git] / edward

#! /usr/bin/env python3
# -*- coding: utf-8 -*-
"""*********************************************************************
* Edward is free software: you can redistribute it and/or modify       *
* it under the terms of the GNU Affero Public License as published by  *
* the Free Software Foundation, either version 3 of the License, or    *
* (at your option) any later version.                                  *
*                                                                      *
* Edward is distributed in the hope that it will be useful,            *
* but WITHOUT ANY WARRANTY; without even the implied warranty of       *
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
* GNU Affero Public License for more details.                          *
*                                                                      *
* You should have received a copy of the GNU Affero Public License     *
* along with Edward.  If not, see <http://www.gnu.org/licenses/>.      *
*                                                                      *
* Copyright (C) 2014-2015 Andrew Engelbrecht                (AGPLv3+)  *
* Copyright (C) 2014      Josh Drake                        (AGPLv3+)  *
* Copyright (C) 2014      Lisa Marie Maginnis               (AGPLv3+)  *
* Copyright (C) 2009-2015 Tails developers <tails@boum.org> ( GPLv3+)  *
* Copyright (C) 2009      W. Trevor King <wking@drexel.edu> ( GPLv2+)  *
*                                                                      *
* Special thanks to Josh Drake for writing the original edward bot! :) *
*                                                                      *
************************************************************************

Code sourced from these projects:

  * http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz
  * https://git-tails.immerda.ch/whisperback/tree/whisperBack/encryption.py?h=feature/python3
  * http://www.physics.drexel.edu/~wking/code/python/send_pgp_mime
"""

import sys
import gpgme
import re
import io
import os
import importlib

import email.parser
import email.message
import email.encoders

from email.mime.multipart       import MIMEMultipart
from email.mime.application     import MIMEApplication
from email.mime.nonmultipart    import MIMENonMultipart

import edward_config

langs = ["an", "de", "el", "en", "fr", "ja", "pt-br", "ro", "ru", "tr"]

match_types =  [('clearsign',
                '-----BEGIN PGP SIGNED MESSAGE-----.*?-----BEGIN PGP SIGNATURE-----.*?-----END PGP SIGNATURE-----'),
                ('message',
                '-----BEGIN PGP MESSAGE-----.*?-----END PGP MESSAGE-----'),
                ('pubkey',
                '-----BEGIN PGP PUBLIC KEY BLOCK-----.*?-----END PGP PUBLIC KEY BLOCK-----'),
                ('detachedsig',
                '-----BEGIN PGP SIGNATURE-----.*?-----END PGP SIGNATURE-----')]


class EddyMsg (object):
    def __init__(self):
        self.multipart          = False
        self.subparts           = []

        self.charset            = None
        self.payload_bytes      = None
        self.payload_pieces     = []

        self.filename           = None
        self.content_type       = None
        self.description_list   = None


class PayloadPiece (object):
    def __init__(self):
        self.piece_type         = None
        self.string             = None
        self.gpg_data           = None


class GPGData (object):
    def __init__(self):
        self.decrypted          = False

        self.plainobj           = None
        self.sigs               = []
        self.keys               = []


def main ():

    handle_args()

    gpgme_ctx = get_gpg_context(edward_config.gnupghome,
                              edward_config.sign_with_key)

    email_text = sys.stdin.read()
    email_struct = parse_pgp_mime(email_text, gpgme_ctx)

    email_to, email_from, email_subject = email_to_from_subject(email_text)
    lang = import_lang(email_to)

    reply_plaintext = build_reply(email_struct)

    debug(lang.replies['success_decrypt'])
    print(reply_plaintext)

#    encrypt_to_key = choose_reply_encryption_key(gpgme_ctx, fingerprints)
#
#    reply_mime = generate_encrypted_mime(plaintext, email_from, \
#                                         email_subject, encrypt_to_key,
#                                         gpgme_ctx)


def get_gpg_context (gnupghome, sign_with_key_fp):

    os.environ['GNUPGHOME'] = gnupghome

    gpgme_ctx = gpgme.Context()
    gpgme_ctx.armor = True

    try:
        sign_with_key = gpgme_ctx.get_key(sign_with_key_fp)
    except:
        error("unable to load signing key. is the gnupghome "
                + "and signing key properly set in the edward_config.py?")
        exit(1)

    gpgme_ctx.signers = [sign_with_key]

    return gpgme_ctx


def parse_pgp_mime (email_text, gpgme_ctx):

    email_struct = email.parser.Parser().parsestr(email_text)

    eddy_obj = parse_mime(email_struct)
    eddy_obj = split_payloads(eddy_obj)
    eddy_obj = gpg_on_payloads(eddy_obj, gpgme_ctx)

    return eddy_obj


def parse_mime(msg_struct):

    eddy_obj = EddyMsg()

    if msg_struct.is_multipart() == True:
        payloads = msg_struct.get_payload()

        eddy_obj.multipart = True
        eddy_obj.subparts = list(map(parse_mime, payloads))

    else:
        eddy_obj = get_subpart_data(msg_struct)

    return eddy_obj


def scan_and_split (payload_piece, match_type, pattern):

    # don't try to re-split pieces containing gpg data
    if payload_piece.piece_type != "text":
        return [payload_piece]

    flags = re.DOTALL | re.MULTILINE
    matches = re.search("(?P<beginning>.*?)(?P<match>" + pattern +
                        ")(?P<rest>.*)", payload_piece.string, flags=flags)

    if matches == None:
        pieces = [payload_piece]

    else:

        beginning               = PayloadPiece()
        beginning.string        = matches.group('beginning')
        beginning.piece_type    = payload_piece.piece_type

        match                   = PayloadPiece()
        match.string            = matches.group('match')
        match.piece_type        = match_type

        rest                    = PayloadPiece()
        rest.string             = matches.group('rest')
        rest.piece_type         = payload_piece.piece_type

        more_pieces = scan_and_split(rest, match_type, pattern)
        pieces = [beginning, match ] + more_pieces

    return pieces


def get_subpart_data (part):

    obj = EddyMsg()

    obj.charset             = part.get_content_charset()
    obj.payload_bytes       = part.get_payload(decode=True)

    obj.filename            = part.get_filename()
    obj.content_type        = part.get_content_type()
    obj.description_list    = part['content-description']

    # your guess is as good as a-myy-ee-ine...
    if obj.charset == None:
        obj.charset = 'utf-8'

    if obj.payload_bytes != None:
        try:
            payload = PayloadPiece()
            payload.string = obj.payload_bytes.decode(obj.charset)
            payload.piece_type = 'text'

            obj.payload_pieces = [payload]
        except UnicodeDecodeError:
            pass

    return obj


def do_to_eddys_pieces (function_to_do, eddy_obj, data):

    if eddy_obj == None:
        return []

    if eddy_obj.multipart == True:
        result_list = []
        for sub in eddy_obj.subparts:
            result_list += do_to_eddys_pieces(function_to_do, sub, data)
    else:
        result_list = [function_to_do(eddy_obj, data)]

    return result_list


def split_payloads (eddy_obj):

    for match_type in match_types:
        do_to_eddys_pieces(split_payload_pieces, eddy_obj, match_type)

    return eddy_obj


def split_payload_pieces (eddy_obj, match_type):

    (match_name, pattern) = match_type

    new_pieces_list = []
    for piece in eddy_obj.payload_pieces:
        new_pieces_list += scan_and_split(piece, match_name, pattern)

    eddy_obj.payload_pieces = new_pieces_list


def gpg_on_payloads (eddy_obj, gpgme_ctx):

    do_to_eddys_pieces(gpg_on_payload_pieces, eddy_obj, gpgme_ctx)

    return eddy_obj


def gpg_on_payload_pieces (eddy_obj, gpgme_ctx):

    for piece in eddy_obj.payload_pieces:

        if piece.piece_type == "text":
            # don't transform the plaintext.
            pass

        elif piece.piece_type == "message":
            (plaintext, sigs) = decrypt_block (piece.string, gpgme_ctx)

            if plaintext:
                piece.gpg_data = GPGData()
                piece.gpg_data.sigs = sigs
                # recurse!
                piece.gpg_data.plainobj = parse_pgp_mime(plaintext, gpgme_ctx)

        elif piece.piece_type == "pubkey":
            fingerprints = add_gpg_key(piece.string, gpgme_ctx)

            if fingerprints != []:
                piece.gpg_data = GPGData()
                piece.gpg_data.keys = fingerprints

        elif piece.piece_type == "clearsign":
            (plaintext, fingerprints) = verify_clear_signature(piece.string, gpgme_ctx)

            if fingerprints != []:
                piece.gpg_data = GPGData()
                piece.gpg_data.sigs = fingerprints
                piece.gpg_data.plainobj = parse_pgp_mime(plaintext, gpgme_ctx)

        else:
            pass


def build_reply (eddy_obj):

    string = "\n".join(do_to_eddys_pieces(build_reply_pieces, eddy_obj, None))

    return string


def build_reply_pieces (eddy_obj, _ignore):

    string = ""
    for piece in eddy_obj.payload_pieces:
        if piece.piece_type == "text":
            string += piece.string
        elif piece.gpg_data == None:
            string += "Hmmm... I wasn't able to get that part.\n"
        elif piece.piece_type == "message":
            # recursive!
            string += build_reply(piece.gpg_data.plainobj)
        elif piece.piece_type == "pubkey":
            string += "thanks for your public key:"
            for key in piece.gpg_data.keys:
                string += "\n" + key
        elif piece.piece_type == "clearsign":
            string += "*** Begin signed part ***\n"
            string += build_reply(piece.gpg_data.plainobj)
            string += "\n*** End signed part ***"

    return string


def add_gpg_key (key_block, gpgme_ctx):

    fp = io.BytesIO(key_block.encode('ascii'))

    result = gpgme_ctx.import_(fp)
    imports = result.imports

    fingerprints = []

    if imports != []:
        for import_ in imports:
            fingerprint = import_[0]
            fingerprints += [fingerprint]

            debug("added gpg key: " + fingerprint)

    return fingerprints


def verify_clear_signature (sig_block, gpgme_ctx):

    # FIXME: this might require the un-decoded bytes
    # or the correct re-encoding with the carset of the mime part.
    msg_fp = io.BytesIO(sig_block.encode('utf-8'))
    ptxt_fp = io.BytesIO()

    result = gpgme_ctx.verify(msg_fp, None, ptxt_fp)

    # FIXME: this might require using the charset of the mime part.
    plaintext = ptxt_fp.getvalue().decode('utf-8')

    fingerprints = []
    for res_ in result:
        fingerprints += [res_.fpr]

    return plaintext, fingerprints


def decrypt_block (msg_block, gpgme_ctx):

    block_b = io.BytesIO(msg_block.encode('ascii'))
    plain_b = io.BytesIO()

    try:
        sigs = gpgme_ctx.decrypt_verify(block_b, plain_b)
    except:
        return ("",[])

    plaintext = plain_b.getvalue().decode('utf-8')
    return (plaintext, sigs)


def choose_reply_encryption_key (gpgme_ctx, fingerprints):

    reply_key = None
    for fp in fingerprints:
        try:
            key = gpgme_ctx.get_key(fp)

            if (key.can_encrypt == True):
                reply_key = key
                break
        except:
            continue


    return reply_key


def email_to_from_subject (email_text):

    email_struct = email.parser.Parser().parsestr(email_text)

    email_to        = email_struct['To']
    email_from      = email_struct['From']
    email_subject   = email_struct['Subject']

    return email_to, email_from, email_subject


def import_lang(email_to):

    for lang in langs:
        if "edward-" + lang in email_to:
            lang = "lang." + re.sub('-', '_', lang)
            language = importlib.import_module(lang)

            return language

    return importlib.import_module("lang.en")


def generate_encrypted_mime (plaintext, email_from, email_subject, encrypt_to_key,
                    gpgme_ctx):


    reply  = "To: " + email_from + "\n"
    reply += "Subject: " + email_subject + "\n"

    if (encrypt_to_key != None):
        plaintext_reply  = "thanks for the message!\n\n\n"
        plaintext_reply += email_quote_text(plaintext)

        # quoted printable encoding lets most ascii characters look normal
        # before the decrypted mime message is decoded.
        char_set = email.charset.Charset("utf-8")
        char_set.body_encoding = email.charset.QP

        # MIMEText doesn't allow setting the text encoding
        # so we use MIMENonMultipart.
        plaintext_mime = MIMENonMultipart('text', 'plain')
        plaintext_mime.set_payload(plaintext_reply, charset=char_set)

        encrypted_text = encrypt_sign_message(plaintext_mime.as_string(),
                                              encrypt_to_key,
                                              gpgme_ctx)

        control_mime = MIMEApplication("Version: 1",
                                       _subtype='pgp-encrypted',
                                       _encoder=email.encoders.encode_7or8bit)
        control_mime['Content-Description'] = 'PGP/MIME version identification'
        control_mime.set_charset('us-ascii')

        encoded_mime = MIMEApplication(encrypted_text,
                                       _subtype='octet-stream; name="encrypted.asc"',
                                       _encoder=email.encoders.encode_7or8bit)
        encoded_mime['Content-Description'] = 'OpenPGP encrypted message'
        encoded_mime['Content-Disposition'] = 'inline; filename="encrypted.asc"'
        encoded_mime.set_charset('us-ascii')

        message_mime = MIMEMultipart(_subtype="encrypted", protocol="application/pgp-encrypted")
        message_mime.attach(control_mime)
        message_mime.attach(encoded_mime)
        message_mime['Content-Disposition'] = 'inline'

        reply += message_mime.as_string()

    else:
        reply += "\n"
        reply += "Sorry, i couldn't find your key.\n"
        reply += "I'll need that to encrypt a message to you."

    return reply


def email_quote_text (text):

    quoted_message = re.sub(r'^', r'> ', text, flags=re.MULTILINE)

    return quoted_message


def encrypt_sign_message (plaintext, encrypt_to_key, gpgme_ctx):

    plaintext_bytes = io.BytesIO(plaintext.encode('ascii'))
    encrypted_bytes = io.BytesIO()

    gpgme_ctx.encrypt_sign([encrypt_to_key], gpgme.ENCRYPT_ALWAYS_TRUST,
            plaintext_bytes, encrypted_bytes)

    encrypted_txt = encrypted_bytes.getvalue().decode('ascii')
    return encrypted_txt


def error (error_msg):

    sys.stderr.write(progname + ": " + str(error_msg) + "\n")


def debug (debug_msg):

    if edward_config.debug == True:
        error(debug_msg)


def handle_args ():
    if __name__ == "__main__":

        global progname
        progname = sys.argv[0]

        if len(sys.argv) > 1:
            print(progname + ": error, this program doesn't " \
                    "need any arguments.", file=sys.stderr)
            exit(1)


main()
Commit	Line	Data
0bec96d6	1	#! /usr/bin/env python3
ff4136c7	2	# -- coding: utf-8 --
0bec96d6 AE	3	"""*********************************************************************
	4	* Edward is free software: you can redistribute it and/or modify *
	5	* it under the terms of the GNU Affero Public License as published by *
	6	* the Free Software Foundation, either version 3 of the License, or *
	7	* (at your option) any later version. *
	8	* *
	9	* Edward is distributed in the hope that it will be useful, *
	10	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	11	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	12	* GNU Affero Public License for more details. *
	13	* *
	14	* You should have received a copy of the GNU Affero Public License *
	15	* along with Edward. If not, see <http://www.gnu.org/licenses/>. *
	16	* *
	17	* Copyright (C) 2014-2015 Andrew Engelbrecht (AGPLv3+) *
	18	* Copyright (C) 2014 Josh Drake (AGPLv3+) *
	19	* Copyright (C) 2014 Lisa Marie Maginnis (AGPLv3+) *
8bdfb6d4 AE	20	* Copyright (C) 2009-2015 Tails developers <tails@boum.org> ( GPLv3+) *
8bdfb6d4 AE	21	* Copyright (C) 2009 W. Trevor King <wking@drexel.edu> ( GPLv2+) *
0bec96d6 AE	22	* *
	23	* Special thanks to Josh Drake for writing the original edward bot! :) *
	24	* *
	25	************************************************************************
	26
a5385c04	27	Code sourced from these projects:
0bec96d6	28
8bdfb6d4 AE	29	* http://agpl.fsf.org/emailselfdefense.fsf.org/edward/CURRENT/edward.tar.gz
	30	* https://git-tails.immerda.ch/whisperback/tree/whisperBack/encryption.py?h=feature/python3
	31	* http://www.physics.drexel.edu/~wking/code/python/send_pgp_mime
0bec96d6 AE	32	"""
	33
	34	import sys
0bec96d6 AE	35	import gpgme
	36	import re
	37	import io
40c37ab3	38	import os
adcef2f7	39	import importlib
0bec96d6	40
8bdfb6d4 AE	41	import email.parser
	42	import email.message
	43	import email.encoders
	44
	45	from email.mime.multipart import MIMEMultipart
	46	from email.mime.application import MIMEApplication
	47	from email.mime.nonmultipart import MIMENonMultipart
	48
40c37ab3	49	import edward_config
c96f3837	50
adcef2f7 AE	51	langs = ["an", "de", "el", "en", "fr", "ja", "pt-br", "ro", "ru", "tr"]
adcef2f7 AE	52
38738401 AE	53	match_types = [('clearsign',
	54	'-----BEGIN PGP SIGNED MESSAGE-----.?-----BEGIN PGP SIGNATURE-----.?-----END PGP SIGNATURE-----'),
	55	('message',
56578eaf AE	56	'-----BEGIN PGP MESSAGE-----.*?-----END PGP MESSAGE-----'),
	57	('pubkey',
	58	'-----BEGIN PGP PUBLIC KEY BLOCK-----.*?-----END PGP PUBLIC KEY BLOCK-----'),
	59	('detachedsig',
38738401	60	'-----BEGIN PGP SIGNATURE-----.*?-----END PGP SIGNATURE-----')]
56578eaf AE	61
	62
	63	class EddyMsg (object):
	64	def __init__(self):
	65	self.multipart = False
	66	self.subparts = []
	67
	68	self.charset = None
	69	self.payload_bytes = None
	70	self.payload_pieces = []
	71
	72	self.filename = None
	73	self.content_type = None
	74	self.description_list = None
	75
	76
	77	class PayloadPiece (object):
	78	def __init__(self):
	79	self.piece_type = None
	80	self.string = None
	81	self.gpg_data = None
	82
	83
38738401 AE	84	class GPGData (object):
	85	def __init__(self):
	86	self.decrypted = False
	87
	88	self.plainobj = None
	89	self.sigs = []
	90	self.keys = []
	91
	92
0bec96d6 AE	93	def main ():
0bec96d6 AE	94
20f6e7c5	95	handle_args()
0bec96d6	96
0a064403 AE	97	gpgme_ctx = get_gpg_context(edward_config.gnupghome,
	98	edward_config.sign_with_key)
	99
c96f3837	100	email_text = sys.stdin.read()
adcef2f7 AE	101	email_struct = parse_pgp_mime(email_text, gpgme_ctx)
	102
	103	email_to, email_from, email_subject = email_to_from_subject(email_text)
	104	lang = import_lang(email_to)
fafa21c3	105
adcef2f7 AE	106	reply_plaintext = build_reply(email_struct)
	107
	108	debug(lang.replies['success_decrypt'])
	109	print(reply_plaintext)
1fccb295	110
56578eaf AE	111	# encrypt_to_key = choose_reply_encryption_key(gpgme_ctx, fingerprints)
56578eaf AE	112	#
bf79a93e AE	113	# reply_mime = generate_encrypted_mime(plaintext, email_from, \
	114	# email_subject, encrypt_to_key,
	115	# gpgme_ctx)
c96f3837	116
0bec96d6	117
0a064403 AE	118	def get_gpg_context (gnupghome, sign_with_key_fp):
	119
	120	os.environ['GNUPGHOME'] = gnupghome
	121
	122	gpgme_ctx = gpgme.Context()
	123	gpgme_ctx.armor = True
	124
	125	try:
	126	sign_with_key = gpgme_ctx.get_key(sign_with_key_fp)
	127	except:
	128	error("unable to load signing key. is the gnupghome "
	129	+ "and signing key properly set in the edward_config.py?")
	130	exit(1)
	131
	132	gpgme_ctx.signers = [sign_with_key]
	133
	134	return gpgme_ctx
	135
	136
38738401	137	def parse_pgp_mime (email_text, gpgme_ctx):
394a1476 AE	138
	139	email_struct = email.parser.Parser().parsestr(email_text)
	140
56578eaf AE	141	eddy_obj = parse_mime(email_struct)
56578eaf AE	142	eddy_obj = split_payloads(eddy_obj)
8f61c66a	143	eddy_obj = gpg_on_payloads(eddy_obj, gpgme_ctx)
8bb4b0d5	144
56578eaf	145	return eddy_obj
0bec96d6	146
0bec96d6	147
56578eaf	148	def parse_mime(msg_struct):
0bec96d6	149
56578eaf	150	eddy_obj = EddyMsg()
8bb4b0d5	151
56578eaf AE	152	if msg_struct.is_multipart() == True:
56578eaf AE	153	payloads = msg_struct.get_payload()
0bec96d6	154
56578eaf	155	eddy_obj.multipart = True
dd11a483 AE	156	eddy_obj.subparts = list(map(parse_mime, payloads))
dd11a483 AE	157
56578eaf AE	158	else:
56578eaf AE	159	eddy_obj = get_subpart_data(msg_struct)
394a1476	160
56578eaf	161	return eddy_obj
c267c233	162
80119cab	163
56578eaf	164	def scan_and_split (payload_piece, match_type, pattern):
cf75de65	165
a5d37d44 AE	166	# don't try to re-split pieces containing gpg data
	167	if payload_piece.piece_type != "text":
	168	return [payload_piece]
	169
56578eaf AE	170	flags = re.DOTALL \| re.MULTILINE
	171	matches = re.search("(?P<beginning>.*?)(?P<match>" + pattern +
	172	")(?P<rest>.*)", payload_piece.string, flags=flags)
86663388	173
56578eaf AE	174	if matches == None:
56578eaf AE	175	pieces = [payload_piece]
c96f3837	176
56578eaf	177	else:
d437f8b2	178
56578eaf AE	179	beginning = PayloadPiece()
	180	beginning.string = matches.group('beginning')
	181	beginning.piece_type = payload_piece.piece_type
d437f8b2	182
56578eaf AE	183	match = PayloadPiece()
	184	match.string = matches.group('match')
	185	match.piece_type = match_type
d437f8b2	186
56578eaf AE	187	rest = PayloadPiece()
	188	rest.string = matches.group('rest')
	189	rest.piece_type = payload_piece.piece_type
d437f8b2	190
56578eaf	191	more_pieces = scan_and_split(rest, match_type, pattern)
4615b156	192	pieces = [beginning, match ] + more_pieces
d437f8b2	193
56578eaf	194	return pieces
d437f8b2	195
d437f8b2	196
56578eaf	197	def get_subpart_data (part):
0bec96d6	198
56578eaf	199	obj = EddyMsg()
0bec96d6	200
56578eaf AE	201	obj.charset = part.get_content_charset()
	202	obj.payload_bytes = part.get_payload(decode=True)
	203
	204	obj.filename = part.get_filename()
	205	obj.content_type = part.get_content_type()
	206	obj.description_list = part['content-description']
	207
	208	# your guess is as good as a-myy-ee-ine...
	209	if obj.charset == None:
	210	obj.charset = 'utf-8'
	211
	212	if obj.payload_bytes != None:
0eb75d9c AE	213	try:
	214	payload = PayloadPiece()
	215	payload.string = obj.payload_bytes.decode(obj.charset)
	216	payload.piece_type = 'text'
	217
	218	obj.payload_pieces = [payload]
	219	except UnicodeDecodeError:
	220	pass
56578eaf AE	221
	222	return obj
	223
	224
dd11a483	225	def do_to_eddys_pieces (function_to_do, eddy_obj, data):
56578eaf	226
e33518c8 AE	227	if eddy_obj == None:
	228	return []
	229
56578eaf	230	if eddy_obj.multipart == True:
dd11a483 AE	231	result_list = []
	232	for sub in eddy_obj.subparts:
	233	result_list += do_to_eddys_pieces(function_to_do, sub, data)
394a1476	234	else:
a5d37d44	235	result_list = [function_to_do(eddy_obj, data)]
dd11a483 AE	236
	237	return result_list
	238
	239
a5d37d44 AE	240	def split_payloads (eddy_obj):
	241
	242	for match_type in match_types:
	243	do_to_eddys_pieces(split_payload_pieces, eddy_obj, match_type)
	244
	245	return eddy_obj
	246
	247
	248	def split_payload_pieces (eddy_obj, match_type):
	249
	250	(match_name, pattern) = match_type
	251
	252	new_pieces_list = []
	253	for piece in eddy_obj.payload_pieces:
	254	new_pieces_list += scan_and_split(piece, match_name, pattern)
	255
	256	eddy_obj.payload_pieces = new_pieces_list
	257
	258
8f61c66a	259	def gpg_on_payloads (eddy_obj, gpgme_ctx):
38738401	260
8f61c66a	261	do_to_eddys_pieces(gpg_on_payload_pieces, eddy_obj, gpgme_ctx)
38738401 AE	262
	263	return eddy_obj
	264
	265
8f61c66a	266	def gpg_on_payload_pieces (eddy_obj, gpgme_ctx):
38738401	267
a5d37d44	268	for piece in eddy_obj.payload_pieces:
38738401 AE	269
	270	if piece.piece_type == "text":
	271	# don't transform the plaintext.
	272	pass
	273
	274	elif piece.piece_type == "message":
	275	(plaintext, sigs) = decrypt_block (piece.string, gpgme_ctx)
	276
	277	if plaintext:
	278	piece.gpg_data = GPGData()
	279	piece.gpg_data.sigs = sigs
	280	# recurse!
	281	piece.gpg_data.plainobj = parse_pgp_mime(plaintext, gpgme_ctx)
129543c3	282
8f61c66a AE	283	elif piece.piece_type == "pubkey":
	284	fingerprints = add_gpg_key(piece.string, gpgme_ctx)
	285
	286	if fingerprints != []:
	287	piece.gpg_data = GPGData()
	288	piece.gpg_data.keys = fingerprints
129543c3 AE	289
	290	elif piece.piece_type == "clearsign":
	291	(plaintext, fingerprints) = verify_clear_signature(piece.string, gpgme_ctx)
	292
	293	if fingerprints != []:
	294	piece.gpg_data = GPGData()
	295	piece.gpg_data.sigs = fingerprints
	296	piece.gpg_data.plainobj = parse_pgp_mime(plaintext, gpgme_ctx)
	297
38738401 AE	298	else:
	299	pass
	300
	301
adcef2f7	302	def build_reply (eddy_obj):
dd11a483	303
adcef2f7	304	string = "\n".join(do_to_eddys_pieces(build_reply_pieces, eddy_obj, None))
56578eaf AE	305
	306	return string
	307
	308
adcef2f7	309	def build_reply_pieces (eddy_obj, _ignore):
0bec96d6	310
56578eaf	311	string = ""
a5d37d44	312	for piece in eddy_obj.payload_pieces:
38738401 AE	313	if piece.piece_type == "text":
38738401 AE	314	string += piece.string
efe7336d AE	315	elif piece.gpg_data == None:
efe7336d AE	316	string += "Hmmm... I wasn't able to get that part.\n"
38738401 AE	317	elif piece.piece_type == "message":
38738401 AE	318	# recursive!
adcef2f7	319	string += build_reply(piece.gpg_data.plainobj)
8f61c66a AE	320	elif piece.piece_type == "pubkey":
	321	string += "thanks for your public key:"
	322	for key in piece.gpg_data.keys:
	323	string += "\n" + key
129543c3 AE	324	elif piece.piece_type == "clearsign":
129543c3 AE	325	string += "* Begin signed part *\n"
adcef2f7	326	string += build_reply(piece.gpg_data.plainobj)
129543c3	327	string += "\n* End signed part *"
56578eaf AE	328
	329	return string
	330
	331
8f61c66a	332	def add_gpg_key (key_block, gpgme_ctx):
c267c233	333
8f61c66a	334	fp = io.BytesIO(key_block.encode('ascii'))
c267c233	335
8f61c66a AE	336	result = gpgme_ctx.import_(fp)
8f61c66a AE	337	imports = result.imports
c267c233	338
8f61c66a	339	fingerprints = []
c267c233	340
8f61c66a AE	341	if imports != []:
	342	for import_ in imports:
	343	fingerprint = import_[0]
d0489345	344	fingerprints += [fingerprint]
c267c233	345
e49673aa	346	debug("added gpg key: " + fingerprint)
ec1e779a	347
d0489345	348	return fingerprints
ec1e779a AE	349
ec1e779a AE	350
129543c3	351	def verify_clear_signature (sig_block, gpgme_ctx):
cf75de65	352
129543c3 AE	353	# FIXME: this might require the un-decoded bytes
	354	# or the correct re-encoding with the carset of the mime part.
	355	msg_fp = io.BytesIO(sig_block.encode('utf-8'))
	356	ptxt_fp = io.BytesIO()
cf75de65	357
129543c3	358	result = gpgme_ctx.verify(msg_fp, None, ptxt_fp)
cf75de65	359
129543c3 AE	360	# FIXME: this might require using the charset of the mime part.
129543c3 AE	361	plaintext = ptxt_fp.getvalue().decode('utf-8')
cf75de65	362
129543c3 AE	363	fingerprints = []
	364	for res_ in result:
	365	fingerprints += [res_.fpr]
cf75de65 AE	366
	367	return plaintext, fingerprints
	368
	369
5b3053c1	370	def decrypt_block (msg_block, gpgme_ctx):
0bec96d6	371
5b3053c1	372	block_b = io.BytesIO(msg_block.encode('ascii'))
0bec96d6 AE	373	plain_b = io.BytesIO()
0bec96d6 AE	374
afc1f64c AE	375	try:
	376	sigs = gpgme_ctx.decrypt_verify(block_b, plain_b)
	377	except:
	378	return ("",[])
0bec96d6	379
6aa41372	380	plaintext = plain_b.getvalue().decode('utf-8')
394a1476	381	return (plaintext, sigs)
0bec96d6 AE	382
0bec96d6 AE	383
d0489345	384	def choose_reply_encryption_key (gpgme_ctx, fingerprints):
fafa21c3 AE	385
fafa21c3 AE	386	reply_key = None
d0489345 AE	387	for fp in fingerprints:
	388	try:
	389	key = gpgme_ctx.get_key(fp)
	390
	391	if (key.can_encrypt == True):
	392	reply_key = key
	393	break
	394	except:
	395	continue
	396
fafa21c3	397
216708e9	398	return reply_key
fafa21c3 AE	399
fafa21c3 AE	400
d65993b8 AE	401	def email_to_from_subject (email_text):
	402
	403	email_struct = email.parser.Parser().parsestr(email_text)
	404
	405	email_to = email_struct['To']
	406	email_from = email_struct['From']
	407	email_subject = email_struct['Subject']
	408
	409	return email_to, email_from, email_subject
	410
	411
adcef2f7 AE	412	def import_lang(email_to):
	413
	414	for lang in langs:
	415	if "edward-" + lang in email_to:
	416	lang = "lang." + re.sub('-', '_', lang)
	417	language = importlib.import_module(lang)
	418
	419	return language
	420
	421	return importlib.import_module("lang.en")
	422
	423
bf79a93e	424	def generate_encrypted_mime (plaintext, email_from, email_subject, encrypt_to_key,
0a064403	425	gpgme_ctx):
1da9b527	426
8bdfb6d4	427
1da9b527 AE	428	reply = "To: " + email_from + "\n"
1da9b527 AE	429	reply += "Subject: " + email_subject + "\n"
216708e9 AE	430
	431	if (encrypt_to_key != None):
	432	plaintext_reply = "thanks for the message!\n\n\n"
	433	plaintext_reply += email_quote_text(plaintext)
	434
8bdfb6d4 AE	435	# quoted printable encoding lets most ascii characters look normal
	436	# before the decrypted mime message is decoded.
	437	char_set = email.charset.Charset("utf-8")
	438	char_set.body_encoding = email.charset.QP
	439
	440	# MIMEText doesn't allow setting the text encoding
	441	# so we use MIMENonMultipart.
	442	plaintext_mime = MIMENonMultipart('text', 'plain')
	443	plaintext_mime.set_payload(plaintext_reply, charset=char_set)
	444
	445	encrypted_text = encrypt_sign_message(plaintext_mime.as_string(),
	446	encrypt_to_key,
40c37ab3	447	gpgme_ctx)
8bdfb6d4 AE	448
	449	control_mime = MIMEApplication("Version: 1",
	450	_subtype='pgp-encrypted',
	451	_encoder=email.encoders.encode_7or8bit)
	452	control_mime['Content-Description'] = 'PGP/MIME version identification'
	453	control_mime.set_charset('us-ascii')
	454
	455	encoded_mime = MIMEApplication(encrypted_text,
	456	_subtype='octet-stream; name="encrypted.asc"',
	457	_encoder=email.encoders.encode_7or8bit)
	458	encoded_mime['Content-Description'] = 'OpenPGP encrypted message'
	459	encoded_mime['Content-Disposition'] = 'inline; filename="encrypted.asc"'
	460	encoded_mime.set_charset('us-ascii')
	461
	462	message_mime = MIMEMultipart(_subtype="encrypted", protocol="application/pgp-encrypted")
	463	message_mime.attach(control_mime)
	464	message_mime.attach(encoded_mime)
	465	message_mime['Content-Disposition'] = 'inline'
216708e9	466
8bdfb6d4	467	reply += message_mime.as_string()
216708e9 AE	468
216708e9 AE	469	else:
8bdfb6d4	470	reply += "\n"
216708e9 AE	471	reply += "Sorry, i couldn't find your key.\n"
216708e9 AE	472	reply += "I'll need that to encrypt a message to you."
1da9b527 AE	473
	474	return reply
	475
	476
f87041f8 AE	477	def email_quote_text (text):
	478
	479	quoted_message = re.sub(r'^', r'> ', text, flags=re.MULTILINE)
	480
	481	return quoted_message
	482
	483
0a064403	484	def encrypt_sign_message (plaintext, encrypt_to_key, gpgme_ctx):
897cbaf6	485
6aa41372	486	plaintext_bytes = io.BytesIO(plaintext.encode('ascii'))
1da9b527 AE	487	encrypted_bytes = io.BytesIO()
1da9b527 AE	488
897cbaf6	489	gpgme_ctx.encrypt_sign([encrypt_to_key], gpgme.ENCRYPT_ALWAYS_TRUST,
1da9b527 AE	490	plaintext_bytes, encrypted_bytes)
1da9b527 AE	491
6aa41372	492	encrypted_txt = encrypted_bytes.getvalue().decode('ascii')
1da9b527 AE	493	return encrypted_txt
	494
	495
0a064403 AE	496	def error (error_msg):
0a064403 AE	497
e4fb2ab2	498	sys.stderr.write(progname + ": " + str(error_msg) + "\n")
0a064403 AE	499
0a064403 AE	500
5e8f9094 AE	501	def debug (debug_msg):
	502
	503	if edward_config.debug == True:
0a064403	504	error(debug_msg)
5e8f9094 AE	505
5e8f9094 AE	506
20f6e7c5 AE	507	def handle_args ():
	508	if __name__ == "__main__":
	509
	510	global progname
	511	progname = sys.argv[0]
	512
	513	if len(sys.argv) > 1:
	514	print(progname + ": error, this program doesn't " \
	515	"need any arguments.", file=sys.stderr)
	516	exit(1)
	517
	518
0bec96d6 AE	519	main()
0bec96d6 AE	520