Kezdőlap Felfedezés Súgó
Bejelentkezés
ajdunevent
/
gnu-social
másolva diogo/gnu-social
Figyelés 1
Kedvenc 0
Másolás 0
Fájlok
Fa: 6e031d623a
Branch-ok Tag-ek
gnu-social
/
plugins
/
ActivityPub
/
classes
/
Activitypub_rsa.php

Activitypub_rsa.php 7.0 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191 
  1. <?php
    2. 

  2. // This file is part of GNU social - https://www.gnu.org/software/social
    3. 

  3. //
    4. 

  4. // GNU social is free software: you can redistribute it and/or modify
    5. 

  5. // it under the terms of the GNU Affero General Public License as published by
    6. 

  6. // the Free Software Foundation, either version 3 of the License, or
    7. 

  7. // (at your option) any later version.
    8. 

  8. //
    9. 

  9. // GNU social is distributed in the hope that it will be useful,
    10. 

  10. // but WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    12. 

  12. // GNU Affero General Public License for more details.
    13. 

  13. //
    14. 

  14. // You should have received a copy of the GNU Affero General Public License
    15. 

  15. // along with GNU social.  If not, see <http://www.gnu.org/licenses/>.
    16. 

  16. 

  17. /**
    18. 

  18.  * ActivityPub implementation for GNU social
    19. 

  19.  *
    20. 

  20.  * @package   GNUsocial
    21. 

  21.  * @author    Diogo Cordeiro <diogo@fc.up.pt>
    22. 

  22.  * @copyright 2018-2019 Free Software Foundation, Inc http://www.fsf.org
    23. 

  23.  * @license   https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later
    24. 

  24.  * @link      http://www.gnu.org/software/social/
    25. 

  25.  */
    26. 

  26. 

  27. defined('GNUSOCIAL') || die();
    28. 

  28. 

  29. /**
    30. 

  30.  * ActivityPub Keys System
    31. 

  31.  *
    32. 

  32.  * @category  Plugin
    33. 

  33.  * @package   GNUsocial
    34. 

  34.  * @author    Diogo Cordeiro <diogo@fc.up.pt>
    35. 

  35.  * @license   https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later
    36. 

  36.  */
    37. 

  37. class Activitypub_rsa extends Managed_DataObject
    38. 

  38. {
    39. 

  39.     public $__table = 'activitypub_rsa';
    40. 

  40.     public $profile_id;                      // int(4)  primary_key not_null
    41. 

  41.     public $private_key;                     // text()   not_null
    42. 

  42.     public $public_key;                      // text()   not_null
    43. 

  43.     public $created;                         // datetime()
    44. 

  44.     public $modified;                        // timestamp()  not_null default_CURRENT_TIMESTAMP
    45. 

  45. 

  46.     /**
    47. 

  47.      * Return table definition for Schema setup and DB_DataObject usage.
    48. 

  48.      *
    49. 

  49.      * @return array array of column definitions
    50. 

  50.      * @author Diogo Cordeiro <diogo@fc.up.pt>
    51. 

  51.      */
    52. 

  52.     public static function schemaDef()
    53. 

  53.     {
    54. 

  54.         return [
    55. 

  55.             'fields' => [
    56. 

  56.                 'profile_id' => ['type' => 'int', 'not null' => true],
    57. 

  57.                 'private_key' => ['type' => 'text'],
    58. 

  58.                 'public_key' => ['type' => 'text', 'not null' => true],
    59. 

  59.                 'created' => ['type' => 'datetime', 'description' => 'date this record was created'],
    60. 

  60.                 'modified' => ['type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'],
    61. 

  61.             ],
    62. 

  62.             'primary key' => ['profile_id'],
    63. 

  63.             'foreign keys' => [
    64. 

  64.                 'activitypub_rsa_profile_id_fkey' => ['profile', ['profile_id' => 'id']],
    65. 

  65.             ],
    66. 

  66.         ];
    67. 

  67.     }
    68. 

  68. 

  69.     /**
    70. 

  70.      * Private key getter
    71. 

  71.      *
    72. 

  72.      * @param Profile $profile
    73. 

  73.      * @return string The private key
    74. 

  74.      * @throws Exception Throws exception if tries to fetch a private key of an actor we don't own
    75. 

  75.      */
    76. 

  76.     public function get_private_key(Profile $profile): string
    77. 

  77.     {
    78. 

  78.         $this->profile_id = $profile->getID();
    79. 

  79.         $apRSA = self::getKV('profile_id', $this->profile_id);
    80. 

  80.         if (!$apRSA instanceof Activitypub_rsa) {
    81. 

  81.             // Nonexistent key pair for this profile
    82. 

  82.             if ($profile->isLocal()) {
    83. 

  83.                 self::generate_keys($this->private_key, $this->public_key);
    84. 

  84.                 $this->store_keys();
    85. 

  85.                 $apRSA->private_key = $this->private_key;
    86. 

  86.             } else {
    87. 

  87.                 throw new Exception('This is a remote Profile, there is no Private Key for this Profile.');
    88. 

  88.             }
    89. 

  89.         }
    90. 

  90.         return $apRSA->private_key;
    91. 

  91.     }
    92. 

  92. 

  93.     /**
    94. 

  94.      * Guarantees a Public Key for a given profile.
    95. 

  95.      *
    96. 

  96.      * @param Profile $profile
    97. 

  97.      * @param bool $fetch=true Should attempt to fetch keys from a remote profile?
    98. 

  98.      * @return string The public key
    99. 

  99.      * @throws ServerException It should never occur, but if so, we break everything!
    100. 

  100.      * @throws Exception
    101. 

  101.      * @author Diogo Cordeiro <diogo@fc.up.pt>
    102. 

  102.      */
    103. 

  103.     public function ensure_public_key(Profile $profile, bool $fetch = true): string
    104. 

  104.     {
    105. 

  105.         $this->profile_id = $profile->getID();
    106. 

  106.         $apRSA = self::getKV('profile_id', $this->profile_id);
    107. 

  107.         if (!$apRSA instanceof Activitypub_rsa) {
    108. 

  108.             // No existing key pair for this profile
    109. 

  109.             if ($profile->isLocal()) {
    110. 

  110.                 self::generate_keys($this->private_key, $this->public_key);
    111. 

  111.                 $this->store_keys();
    112. 

  112.                 $apRSA->public_key = $this->public_key;
    113. 

  113.             } else {
    114. 

  114.                 // ASSERT: This should never happen, but try to recover!
    115. 

  115.                 common_log(LOG_ERR, "Activitypub_rsa: An impossible thing has happened... Please let the devs know that it entered in line 116 at Activitypub_rsa.php");
    116. 

  116.                 if ($fetch) {
    117. 

  117.                     $res = Activitypub_explorer::get_remote_user_activity($profile->getUri());
    118. 

  118.                     Activitypub_rsa::update_public_key($profile, $res['publicKey']['publicKeyPem']);
    119. 

  119.                     return self::ensure_public_key($profile, false);
    120. 

  120.                 } else {
    121. 

  121.                     throw new ServerException('Activitypub_rsa: Failed to find keys for given profile. That should have not happened!');
    122. 

  122.                 }
    123. 

  123.             }
    124. 

  124.         }
    125. 

  125.         return $apRSA->public_key;
    126. 

  126.     }
    127. 

  127. 

  128.     /**
    129. 

  129.      * Insert the current object variables into the database.
    130. 

  130.      *
    131. 

  131.      * @throws ServerException
    132. 

  132.      * @author Diogo Cordeiro <diogo@fc.up.pt>
    133. 

  133.      * @access public
    134. 

  134.      */
    135. 

  135.     public function store_keys(): void
    136. 

  136.     {
    137. 

  137.         $this->created = $this->modified = common_sql_now();
    138. 

  138.         $ok = $this->insert();
    139. 

  139.         if ($ok === false) {
    140. 

  140.             throw new ServerException('Cannot save ActivityPub RSA.');
    141. 

  141.         }
    142. 

  142.     }
    143. 

  143. 

  144.     /**
    145. 

  145.      * Generates a pair of RSA keys.
    146. 

  146.      *
    147. 

  147.      * @param string $private_key out
    148. 

  148.      * @param string $public_key out
    149. 

  149.      * @author PHP Manual Contributed Notes <dirt@awoms.com>
    150. 

  150.      */
    151. 

  151.     public static function generate_keys(?string &$private_key, ?string &$public_key): void
    152. 

  152.     {
    153. 

  153.         $config = [
    154. 

  154.             'digest_alg' => 'sha512',
    155. 

  155.             'private_key_bits' => 2048,
    156. 

  156.             'private_key_type' => OPENSSL_KEYTYPE_RSA,
    157. 

  157.         ];
    158. 

  158. 

  159.         // Create the private and public key
    160. 

  160.         $res = openssl_pkey_new($config);
    161. 

  161. 

  162.         // Extract the private key from $res to $private_key
    163. 

  163.         openssl_pkey_export($res, $private_key);
    164. 

  164. 

  165.         // Extract the public key from $res to $pubKey
    166. 

  166.         $pubKey = openssl_pkey_get_details($res);
    167. 

  167.         $public_key = $pubKey["key"];
    168. 

  168.         unset($pubKey);
    169. 

  169.     }
    170. 

  170. 

  171.     /**
    172. 

  172.      * Update public key.
    173. 

  173.      *
    174. 

  174.      * @param Profile|Activitypub_profile $profile
    175. 

  175.      * @param string $public_key
    176. 

  176.      * @throws Exception
    177. 

  177.      * @author Diogo Cordeiro <diogo@fc.up.pt>
    178. 

  178.      */
    179. 

  179.     public static function update_public_key($profile, string $public_key): void
    180. 

  180.     {
    181. 

  181.         // Public Key
    182. 

  182.         $apRSA = new Activitypub_rsa();
    183. 

  183.         $apRSA->profile_id = $profile->getID();
    184. 

  184.         $apRSA->public_key = $public_key;
    185. 

  185.         $apRSA->created = common_sql_now();
    186. 

  186.         if (!$apRSA->update()) {
    187. 

  187.             $apRSA->insert();
    188. 

  188.         }
    189. 

  189.     }
    190. 

  190. }
    191. 

  191.