open.source/magic-wormhole
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
fd867a9cd6
magic-wormhole/src/wormhole/tor_manager.py

119 lines
4.5 KiB
Python
Raw Normal View History

added unicode_literals import to all apropriate modules bug in twisted serverFromString prevents test.common and transit from using unicode properly should revisit if twisted gets patched
2016-06-04 06:07:50 +00:00
from __future__ import print_function, unicode_literals
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
import sys
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
from attr import attrib, attrs
get a TorManager working
2016-03-03 20:24:07 +00:00
from twisted.internet.defer import inlineCallbacks, returnValue
tor_manager: pass endpoints to txtorcon.connect(), not descriptors This was breaking any uses of --tor-control-port=: the client would always fall back to using the default SOCKS port.
2017-09-14 22:48:35 +00:00
from twisted.internet.endpoints import clientFromString
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
from zope.interface.declarations import directlyProvides
from . import _interfaces, errors
from .timing import DebugTiming
rewrite Tor support (py2 only) The new TorManager adds --launch-tor and --tor-control-port= arguments (requiring the user to explicitly request a new Tor process, if that's what they want). The default (when --tor is enabled) looks for a control port in the usual places (/var/run/tor/control, localhost:9051, localhost:9151), then falls back to hoping there's a SOCKS port in the usual place (localhost:9050). (closes #64) The ssh utilities should now accept the same tor arguments as ordinary send/receive commands. There are now full tests for TorManager, and basic tests for how send/receive use it. (closes #97) Note that Tor is only supported on python2.7 for now, since txsocksx (and therefore txtorcon) doesn't work on py3. You need to do "pip install magic-wormhole[tor]" to get Tor support, and that will get you an inscrutable error on py3 (referencing vcversioner, "install_requires must be a string or list of strings", and "int object not iterable"). To run tests, you must install with the [dev] extra (to get "mock" and other libraries). Our setup.py only includes "txtorcon" in the [dev] extra when on py2, not on py3. Unit tests tolerate the lack of txtorcon (they mock out everything txtorcon would provide), so they should provide the same coverage on both py2 and py3.
2017-01-16 03:24:23 +00:00
try:
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
import txtorcon
rewrite Tor support (py2 only) The new TorManager adds --launch-tor and --tor-control-port= arguments (requiring the user to explicitly request a new Tor process, if that's what they want). The default (when --tor is enabled) looks for a control port in the usual places (/var/run/tor/control, localhost:9051, localhost:9151), then falls back to hoping there's a SOCKS port in the usual place (localhost:9050). (closes #64) The ssh utilities should now accept the same tor arguments as ordinary send/receive commands. There are now full tests for TorManager, and basic tests for how send/receive use it. (closes #97) Note that Tor is only supported on python2.7 for now, since txsocksx (and therefore txtorcon) doesn't work on py3. You need to do "pip install magic-wormhole[tor]" to get Tor support, and that will get you an inscrutable error on py3 (referencing vcversioner, "install_requires must be a string or list of strings", and "int object not iterable"). To run tests, you must install with the [dev] extra (to get "mock" and other libraries). Our setup.py only includes "txtorcon" in the [dev] extra when on py2, not on py3. Unit tests tolerate the lack of txtorcon (they mock out everything txtorcon would provide), so they should provide the same coverage on both py2 and py3.
2017-01-16 03:24:23 +00:00
except ImportError:
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
txtorcon = None
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
get a TorManager working
2016-03-03 20:24:07 +00:00
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
@attrs
class SocksOnlyTor(object):
_reactor = attrib()
def stream_via(self, host, port, tls=False):
return txtorcon.TorClientEndpoint(
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
host,
port,
socks_endpoint=None, # tries localhost:9050 and 9150
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
tls=tls,
reactor=self._reactor,
)
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
@inlineCallbacks
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
def get_tor(reactor,
launch_tor=False,
tor_control_port=None,
timing=None,
stderr=sys.stderr):
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
"""
If launch_tor=True, I will try to launch a new Tor process, ask it
for its SOCKS and control ports, and use those for outbound
connections (and inbound onion-service listeners, if necessary).
Otherwise if tor_control_port is provided, I will attempt to connect
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
to an existing Tor's control port at the endpoint it specifies. I'll
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
ask that Tor for its SOCKS port.
With no arguments, I will try to connect to an existing Tor's control
port at the usual places: [unix:/var/run/tor/control,
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
tcp:127.0.0.1:9051, tcp:127.0.0.1:9151]. If any are successful, I'll
ask that Tor for its SOCKS port. If none are successful, I'll
attempt to do SOCKS to the usual places: [tcp:127.0.0.1:9050,
tcp:127.0.0.1:9150].
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
If I am unable to make a SOCKS connection, the initial connection to
the Rendezvous Server will fail, and the program will terminate.
Control-port connections can only succeed if I can authenticate (by
reading a cookie file named by the Tor process), so the current user
must have permission to read that file (either they started Tor, e.g.
TorBrowser, or they are in a unix group that's been given access,
e.g. debian-tor).
"""
# rationale: launching a new Tor takes a long time, so only do it if
# the user specifically asks for it with --launch-tor. Using an
# existing Tor should be much faster, but still requires general
# permission via --tor.
if not txtorcon:
raise errors.NoTorError()
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
if not isinstance(launch_tor, bool): # note: False is int
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
raise TypeError("launch_tor= must be boolean")
if not isinstance(tor_control_port, (type(""), type(None))):
raise TypeError("tor_control_port= must be str or None")
assert tor_control_port != ""
if launch_tor and tor_control_port is not None:
raise ValueError("cannot combine --launch-tor and --tor-control-port=")
timing = timing or DebugTiming()
# Connect to an existing Tor, or create a new one. If we need to
# launch an onion service, then we need a working control port (and
# authentication cookie). If we're only acting as a client, we don't
# need the control port.
if launch_tor:
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
print(
" launching a new Tor process, this may take a while..",
file=stderr)
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
with timing.add("launch tor"):
tor = yield txtorcon.launch(reactor,
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
# data_directory=,
# tor_binary=,
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
)
tor_manager: expose errors when --tor-control-port= is provided If you pass --tor-control-port= and we can't use it, throw an error that will kill the whole process, instead of falling back to the default SOCKS port. If you omit --tor-control-port=, then if all default control port connections fail, we'll fall back to the default SOCKS port. Also, test each combination separately, and improve the status messages.
2017-09-14 23:46:26 +00:00
elif tor_control_port:
with timing.add("find tor"):
control_ep = clientFromString(reactor, tor_control_port)
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
tor = yield txtorcon.connect(reactor, control_ep) # might raise
print(
" using Tor via control port at %s" % tor_control_port,
file=stderr)
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
else:
tor_manager: expose errors when --tor-control-port= is provided If you pass --tor-control-port= and we can't use it, throw an error that will kill the whole process, instead of falling back to the default SOCKS port. If you omit --tor-control-port=, then if all default control port connections fail, we'll fall back to the default SOCKS port. Also, test each combination separately, and improve the status messages.
2017-09-14 23:46:26 +00:00
# Let txtorcon look through a list of usual places. If that fails,
# we'll arrange to attempt the default SOCKS port
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
with timing.add("find tor"):
try:
tor_manager: expose errors when --tor-control-port= is provided If you pass --tor-control-port= and we can't use it, throw an error that will kill the whole process, instead of falling back to the default SOCKS port. If you omit --tor-control-port=, then if all default control port connections fail, we'll fall back to the default SOCKS port. Also, test each combination separately, and improve the status messages.
2017-09-14 23:46:26 +00:00
tor = yield txtorcon.connect(reactor)
print(" using Tor via default control port", file=stderr)
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
except Exception:
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
# TODO: make this more specific. I think connect() is
# likely to throw a reactor.connectTCP -type error, like
# ConnectionFailed or ConnectionRefused or something
Make code pep-8 compliant
2018-04-21 07:30:08 +00:00
print(
" unable to find default Tor control port, using SOCKS",
file=stderr)
fall backs to SOCKS if we can't reach control port
2017-05-23 22:01:57 +00:00
tor = SocksOnlyTor(reactor)
rewrite tor support This shifts most reponsibility to the new txtorcon "Controller" object, where it belongs. We no longer need a list of likely control-port locations, nor do we need to keep track of the SOCKS port ourselves. The one downside is that if a control-port is not reachable, then this does not fall back to using a plain SOCKS port (usually tcp:localhost:9050). txtorcon no longer uses txsocksx, so it no longer advertises a simple way to use Tor without the control port. This shouldn't affect users who run the TorBrowserBundle, or who are running a tor daemon which they can control directly, but it may break for users who want to use a pre-existing tor daemon that they don't have permissions to speak control-port to.
2017-05-23 07:45:02 +00:00
directlyProvides(tor, _interfaces.ITorManager)
returnValue(tor)
Reference in New Issue Copy Permalink