fetcher.py

#!/usr/bin/python3

import argparse
import codecs
import json
import hashlib
import os
import shutil
import socket
import struct
import subprocess
import tempfile
import urllib.request
from OpenSSL import crypto


parser = argparse.ArgumentParser(description='iconograph fetcher')
parser.add_argument(
    '--base-url',
    dest='base_url',
    action='store',
    required=True)
parser.add_argument(
    '--ca-cert',
    dest='ca_cert',
    action='store',
    required=True)
parser.add_argument(
    '--image-type',
    dest='image_type',
    action='store',
    required=True)
FLAGS = parser.parse_args()


class Fetcher(object):

  _MAX_BP = 10000

  def __init__(self, base_url, image_type, ca_cert):
    self._base_url = base_url
    self._image_type = image_type
    self._ca_cert_path = ca_cert

  def _VerifyChain(self, untrusted_certs, cert):
    tempdir = tempfile.mkdtemp()

    try:
      untrusted_path = os.path.join(tempdir, 'untrusted.pem')
      with open(untrusted_path, 'w') as fh:
        for cert_str in untrusted_certs:
          fh.write(cert_str)

      cert_path = os.path.join(tempdir, 'cert.pem')
      with open(cert_path, 'w') as fh:
        fh.write(cert)

      # Rely on pipe buffering to eat the stdout junk
      subprocess.check_call([
          'openssl', 'verify',
          '-CAfile', self._ca_cert_path,
          '-untrusted', untrusted_path,
          cert_path,
      ], stdout=subprocess.PIPE)
    finally:
      shutil.rmtree(tempdir)

  def _Unwrap(self, wrapped):
    self._VerifyChain(wrapped.get('other_certs', []), wrapped['cert'])

    cert = crypto.load_certificate(crypto.FILETYPE_PEM, wrapped['cert'])
    sig = codecs.decode(wrapped['sig'], 'hex')
    crypto.verify(
        cert,
        sig,
        wrapped['inner'].encode('utf8'),
        'sha256')

    return json.loads(wrapped['inner'])

  def _GetManifest(self):
    url = '%s/%s.manifest.json' % (self._base_url, self._image_type)
    resp = urllib.request.urlopen(url).read().decode('utf8')
    return self._Unwrap(json.loads(resp))

  def _ChooseImage(self, manifest):
    hostname = socket.gethostname()
    hash_base = hashlib.sha256(hostname.encode('ascii'))
    for image in manifest:
      hashobj = hash_base.copy()
      hashobj.update(struct.pack('!L', image['timestamp']))
      my_bp = struct.unpack('!I', hashobj.digest()[-4:])[0] % self._MAX_BP
      if my_bp < image['rollout_‱']:
        return image

  def Fetch(self):
    manifest = self._GetManifest()
    image = self._ChooseImage(manifest)
    print(image)


fetcher = Fetcher(FLAGS.base_url, FLAGS.image_type, FLAGS.ca_cert)
fetcher.Fetch()
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`#!/usr/bin/python3`

			`import argparse`
Cert chain verification 2016-03-29 17:43:21 -07:00			`import codecs`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`import json`
			`import hashlib`
Cert chain verification 2016-03-29 17:43:21 -07:00			`import os`
			`import shutil`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`import socket`
			`import struct`
Cert chain verification 2016-03-29 17:43:21 -07:00			`import subprocess`
			`import tempfile`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`import urllib.request`
Cert chain verification 2016-03-29 17:43:21 -07:00			`from OpenSSL import crypto`
Initial manifest parsing 2016-03-28 22:06:04 -07:00

			`parser = argparse.ArgumentParser(description='iconograph fetcher')`
			`parser.add_argument(`
Style cleanup. 2016-03-29 10:24:22 -07:00			`'--base-url',`
			`dest='base_url',`
			`action='store',`
			`required=True)`
File wrapping framework. 2016-03-29 11:27:10 -07:00			`parser.add_argument(`
			`'--ca-cert',`
			`dest='ca_cert',`
			`action='store',`
			`required=True)`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`parser.add_argument(`
Style cleanup. 2016-03-29 10:24:22 -07:00			`'--image-type',`
			`dest='image_type',`
			`action='store',`
			`required=True)`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`FLAGS = parser.parse_args()`


			`class Fetcher(object):`

			`_MAX_BP = 10000`

File wrapping framework. 2016-03-29 11:27:10 -07:00			`def __init__(self, base_url, image_type, ca_cert):`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`self._base_url = base_url`
			`self._image_type = image_type`
Cert chain verification 2016-03-29 17:43:21 -07:00			`self._ca_cert_path = ca_cert`

			`def _VerifyChain(self, untrusted_certs, cert):`
			`tempdir = tempfile.mkdtemp()`

			`try:`
			`untrusted_path = os.path.join(tempdir, 'untrusted.pem')`
			`with open(untrusted_path, 'w') as fh:`
			`for cert_str in untrusted_certs:`
			`fh.write(cert_str)`

			`cert_path = os.path.join(tempdir, 'cert.pem')`
			`with open(cert_path, 'w') as fh:`
			`fh.write(cert)`

			`# Rely on pipe buffering to eat the stdout junk`
			`subprocess.check_call([`
			`'openssl', 'verify',`
			`'-CAfile', self._ca_cert_path,`
			`'-untrusted', untrusted_path,`
			`cert_path,`
			`], stdout=subprocess.PIPE)`
			`finally:`
			`shutil.rmtree(tempdir)`
File wrapping framework. 2016-03-29 11:27:10 -07:00
			`def _Unwrap(self, wrapped):`
Cert chain verification 2016-03-29 17:43:21 -07:00			`self._VerifyChain(wrapped.get('other_certs', []), wrapped['cert'])`

File wrapping framework. 2016-03-29 11:27:10 -07:00			`cert = crypto.load_certificate(crypto.FILETYPE_PEM, wrapped['cert'])`
Cert chain verification 2016-03-29 17:43:21 -07:00			`sig = codecs.decode(wrapped['sig'], 'hex')`
File wrapping framework. 2016-03-29 11:27:10 -07:00			`crypto.verify(`
			`cert,`
Cert chain verification 2016-03-29 17:43:21 -07:00			`sig,`
			`wrapped['inner'].encode('utf8'),`
File wrapping framework. 2016-03-29 11:27:10 -07:00			`'sha256')`
Initial manifest parsing 2016-03-28 22:06:04 -07:00
Cert chain verification 2016-03-29 17:43:21 -07:00			`return json.loads(wrapped['inner'])`

Initial manifest parsing 2016-03-28 22:06:04 -07:00			`def _GetManifest(self):`
			`url = '%s/%s.manifest.json' % (self._base_url, self._image_type)`
File wrapping framework. 2016-03-29 11:27:10 -07:00			`resp = urllib.request.urlopen(url).read().decode('utf8')`
			`return self._Unwrap(json.loads(resp))`
Initial manifest parsing 2016-03-28 22:06:04 -07:00
			`def _ChooseImage(self, manifest):`
			`hostname = socket.gethostname()`
			`hash_base = hashlib.sha256(hostname.encode('ascii'))`
			`for image in manifest:`
			`hashobj = hash_base.copy()`
			`hashobj.update(struct.pack('!L', image['timestamp']))`
			`my_bp = struct.unpack('!I', hashobj.digest()[-4:])[0] % self._MAX_BP`
			`if my_bp < image['rollout_‱']:`
			`return image`

			`def Fetch(self):`
			`manifest = self._GetManifest()`
Cert chain verification 2016-03-29 17:43:21 -07:00			`image = self._ChooseImage(manifest)`
			`print(image)`
Initial manifest parsing 2016-03-28 22:06:04 -07:00

File wrapping framework. 2016-03-29 11:27:10 -07:00			`fetcher = Fetcher(FLAGS.base_url, FLAGS.image_type, FLAGS.ca_cert)`
Initial manifest parsing 2016-03-28 22:06:04 -07:00			`fetcher.Fetch()`