February 2014 - tor-commits - lists.torproject.org

[bridgedb/master] Add Sphinx docstring to CaptchaProtectedResource.render_POST().
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit dc9757df396b9d8cf5fda0e8bdb838ab9af33a53 Author: Isis Lovecruft <isis(a)torproject.org> Date: Sun Jan 26 02:49:00 2014 +0000 Add Sphinx docstring to CaptchaProtectedResource.render_POST(). --- lib/bridgedb/HTTPServer.py | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 9b4c515..5ce8b72 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -112,6 +112,18 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): return rendered def render_POST(self, request): + """Process a client CAPTCHA by sending it to the ReCaptcha server. + + The client's IP address is not sent to the ReCaptcha server; instead, + a completely random IP is generated and sent instead. + + :type request: :api:`twisted.web.http.Request` + :param request: A ``Request`` object containing the POST arguments + should include two key/value pairs: one key being + ``'recaptcha_challange_field'``, and the other, + ``'recaptcha_response_field'``. These POST arguments + should be obtained from :meth:`render_GET`. + """ try: challenge = request.args['recaptcha_challenge_field'][0] response = request.args['recaptcha_response_field'][0]

1 0

[bridgedb/master] Catch error case in HTTPServer where ReCaptcha image is None.
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit c47420c63b010ed66d286c8e1bb5665424aec729 Author: Isis Lovecruft <isis(a)torproject.org> Date: Sun Jan 26 02:47:23 2014 +0000 Catch error case in HTTPServer where ReCaptcha image is None. --- lib/bridgedb/HTTPServer.py | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 26bc5ad..9b4c515 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -96,6 +96,15 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): except Exception as error: logging.fatal("Connection to Recaptcha server failed: %s" % error) + if c.image is None: + # TODO: We should have a general "Something went wrong!" page + # which displays here, rather than displaying the img alt text + # (which says "Upgrade your browser to Firefox"), so that users + # don't think the problem is on their end when it's actually a + # problem with ReCaptcha or BridgeDB. + logging.warn("No CAPTCHA image received from ReCaptcha server!") + c.image = '' + # TODO: this does not work for versions of IE < 8.0 imgstr = 'data:image/jpeg;base64,%s' % base64.b64encode(c.image) template = lookup.get_template('captcha.html')

1 0

[bridgedb/master] Preserve HTTP POST args across redirects.
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit 458e490881e96069642ceaffe9f2ce8c5f251cd8 Author: Isis Lovecruft <isis(a)torproject.org> Date: Sun Jan 26 04:26:06 2014 +0000 Preserve HTTP POST args across redirects. * FIXES #10737, an issue where if a CAPTCHA was entered incorrectly, the client would be redirected back to /bridges.html without the original HTTP POST arguments (which specify the requested pluggable transports, IP version, etc.). --- lib/bridgedb/HTTPServer.py | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 5ce8b72..ddb1812 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -145,7 +145,10 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): % (remote_ip, request.args)) logging.info("Recaptcha error code: %r" % recaptcha_response.error_code) - return redirectTo(request.URLPath(), request) + + logging.debug("Client failed a recaptcha; returning redirect to %s" + % request.uri) + return redirectTo(request.uri, request) class WebResource(twisted.web.resource.Resource): """This resource is used by Twisted Web to give a web page with some

1 0

[bridgedb/master] Fix typos in two docstrings in HTTPServer.
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit ca1544c38005262df7ada31806f7ca6e0f0ccbb0 Author: Isis Lovecruft <isis(a)torproject.org> Date: Sun Jan 26 05:45:17 2014 +0000 Fix typos in two docstrings in HTTPServer. --- lib/bridgedb/HTTPServer.py | 13 ++++++------- 1 file changed, 6 insertions(+), 7 deletions(-) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 3bffe81..104e924 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -432,11 +432,11 @@ def usingRTLLang(request): return False def getAssumedChosenLang(langs): - """ - Return the first language in ``langs`` and we supprt + """Return the first language in **langs** that we support. - :param langs list: All requested languages - :returns string: Chosen language + :param list langs: All requested languages + :rtype: str + :returns: A country code for the client's preferred language. """ i18npath = os.path.join(os.path.dirname(__file__), 'i18n') path = filepath.FilePath(i18npath) @@ -456,9 +456,8 @@ def setLocaleFromRequestHeader(request): Parse the languages in the header, and attempt to install the first one in the list. If that fails, we receive a :class:`gettext.NullTranslation` object, if it worked then we have a :class:`gettext.GNUTranslation` - object. Whichever one we end up with, add the other get the other - languages and add them as fallbacks to the first. Lastly, install this - chain of translations. + object. Whichever one we end up with, get the other languages and add them + as fallbacks to the first. Lastly, install this chain of translations. :type request: :api:`twisted.web.server.Request` :param request: An incoming request from a client.

1 0

[bridgedb/master] Fix indentation level in method docstring.
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit 2bd2c85ef5fee1381a469839498c4d8384d78067 Author: Isis Lovecruft <isis(a)torproject.org> Date: Sun Jan 26 05:42:05 2014 +0000 Fix indentation level in method docstring. --- lib/bridgedb/HTTPServer.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index ddb1812..3bffe81 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -112,7 +112,7 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): return rendered def render_POST(self, request): - """Process a client CAPTCHA by sending it to the ReCaptcha server. + """Process a client CAPTCHA by sending it to the ReCaptcha server. The client's IP address is not sent to the ReCaptcha server; instead, a completely random IP is generated and sent instead.

1 0

[bridgedb/master] Implement a simple error page to replace all webserver tracebacks.
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit 7e21184d4432b4c25f775eb27aa8b9de68d650b5 Author: Isis Lovecruft <isis(a)torproject.org> Date: Tue Jan 28 17:01:57 2014 +0000 Implement a simple error page to replace all webserver tracebacks. * ADD HTTPServer.replaceErrorPage() function for catching templating errors and sending them to the logger. The user is served a very simply "Somthing went wrong page". * CHANGE all calls to mako.templates.Template.render() to be wrapped in a try/except block which directs to the new HTTPServer.replaceErrorPage() function. --- lib/bridgedb/HTTPServer.py | 87 +++++++++++++++++++++++++++++++++----------- 1 file changed, 66 insertions(+), 21 deletions(-) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 104e924..5794be7 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -34,6 +34,7 @@ from bridgedb.Filters import filterBridgesByNotBlockedIn from bridgedb.parse import headers from ipaddr import IPv4Address, IPv6Address from random import randint +import mako.exceptions from mako.template import Template from mako.lookup import TemplateLookup from zope.interface import Interface, Attribute, implements @@ -66,6 +67,39 @@ else: logging.info("GeoIP database loaded") +def replaceErrorPage(error, template_name=None): + """Create a general error page for displaying in place of tracebacks. + + Log the error to BridgeDB's logger, and then display a very plain "Sorry! + Something went wrong!" page to the client. + + :type error: :exc:`Exception` + :param error: Any exeption which has occurred while attempting to retrieve + a template, render a page, or retrieve a resource. + :param str template_name: A string describing which template/page/resource + was being used when the exception occurred, + i.e. ``'index.html'``. + :returns: A string containing HTML to serve to the client (rather than + serving a traceback). + """ + logging.error("Error while attempting to render %s: %s" + % (template_name or 'template', + mako.exceptions.text_error_template().render())) + + errmsg = _("Sorry! Something went wrong with your request.") + rendered = """<html> + <head> + <link href="/assets/bootstrap.min.css" rel="stylesheet"> + <link href="/assets/custom.css" rel="stylesheet"> + </head> + <body> + <p>{0}</p> + </body> + </html>""".format(errmsg) + + return rendered + + class CaptchaProtectedResource(twisted.web.resource.Resource): def __init__(self, useRecaptcha=False, recaptchaPrivKey='', recaptchaPubKey='', useForwardedHeader=False, resource=None): @@ -97,18 +131,17 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): logging.fatal("Connection to Recaptcha server failed: %s" % error) if c.image is None: - # TODO: We should have a general "Something went wrong!" page - # which displays here, rather than displaying the img alt text - # (which says "Upgrade your browser to Firefox"), so that users - # don't think the problem is on their end when it's actually a - # problem with ReCaptcha or BridgeDB. logging.warn("No CAPTCHA image received from ReCaptcha server!") - c.image = '' - # TODO: this does not work for versions of IE < 8.0 - imgstr = 'data:image/jpeg;base64,%s' % base64.b64encode(c.image) - template = lookup.get_template('captcha.html') - rendered = template.render(imgstr=imgstr, challenge_field=c.challenge) + try: + # TODO: this does not work for versions of IE < 8.0 + imgstr = 'data:image/jpeg;base64,%s' % base64.b64encode(c.image) + template = lookup.get_template('captcha.html') + rendered = template.render(imgstr=imgstr, + challenge_field=c.challenge) + except Exception as err: + rendered = replaceErrorPage(err, 'captcha.html') + return rendered def render_POST(self, request): @@ -135,21 +168,27 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): randint(1,255),randint(1,255)) recaptcha_response = captcha.submit(challenge, response, - self.recaptchaPrivKey, remote_ip) + self.recaptchaPrivKey, remote_ip) + logging.debug("Captcha from client with masked IP %r. Parameters:\n%r" + % (remote_ip, request.args)) + if recaptcha_response.is_valid: - logging.info("Valid recaptcha from %s. Parameters were %r" - % (remote_ip, request.args)) - return self.resource.render(request) + logging.info("Valid recaptcha from client with masked IP %r." + % remote_ip) + try: + rendered = self.resource.render(request) + except Exception as err: + rendered = replaceErrorPage(err) + return rendered else: - logging.info("Invalid recaptcha from %s. Parameters were %r" - % (remote_ip, request.args)) - logging.info("Recaptcha error code: %r" - % recaptcha_response.error_code) + logging.info("Invalid recaptcha from client with masked IP %r: %r" + % (remote_ip, recaptcha_response.error_code)) logging.debug("Client failed a recaptcha; returning redirect to %s" % request.uri) return redirectTo(request.uri, request) + class WebResource(twisted.web.resource.Resource): """This resource is used by Twisted Web to give a web page with some bridges in response to a request.""" @@ -312,11 +351,17 @@ class WebResource(twisted.web.resource.Resource): """ if format == 'plain': request.setHeader("Content-Type", "text/plain") - return answer + rendered = bridgeLines else: request.setHeader("Content-Type", "text/html; charset=utf-8") - return lookup.get_template('bridges.html').render(answer=bridgeLines, - rtl=rtl) + try: + template = lookup.get_template('bridges.html') + rendered = template.render(answer=bridgeLines, rtl=rtl) + except Exception as err: + rendered = replaceErrorPage(err) + + return rendered + class WebRoot(twisted.web.resource.Resource): """The parent resource of all other documents hosted by the webserver."""

1 0

[bridgedb/master] Merge branch 'fix/6127-simple-error-page' into develop
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit 8ec29d7a7f09c979de79faa15302d25e7e95fe13 Merge: b8e307f 7e21184 Author: Isis Lovecruft <isis(a)torproject.org> Date: Tue Jan 28 17:24:12 2014 +0000 Merge branch 'fix/6127-simple-error-page' into develop lib/bridgedb/HTTPServer.py | 87 +++++++++++++++++++++++++++++++++----------- 1 file changed, 66 insertions(+), 21 deletions(-)

1 0

[bridgedb/master] Merge branch 'fix/10737-post-args-redirects' into develop
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit b8e307f7189a64b1db01888655a81b16e3c67ba3 Merge: b52786f ca1544c Author: Isis Lovecruft <isis(a)torproject.org> Date: Tue Jan 28 16:53:07 2014 +0000 Merge branch 'fix/10737-post-args-redirects' into develop lib/bridgedb/HTTPServer.py | 58 ++++++++++++++++++++++++++++++++------------ 1 file changed, 42 insertions(+), 16 deletions(-)

1 0

[bridgedb/master] Add Sphinx docstring to CaptchaProtectedResource.render_GET().
by isis＠torproject.org 04 Feb '14

04 Feb '14

commit 16d084e4392f9f845452c58dfaa9138ff4c3bd28 Author: Isis Lovecruft <isis(a)torproject.org> Date: Tue Jan 28 17:24:51 2014 +0000 Add Sphinx docstring to CaptchaProtectedResource.render_GET(). --- lib/bridgedb/HTTPServer.py | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/lib/bridgedb/HTTPServer.py b/lib/bridgedb/HTTPServer.py index 5794be7..ddac918 100644 --- a/lib/bridgedb/HTTPServer.py +++ b/lib/bridgedb/HTTPServer.py @@ -123,8 +123,16 @@ class CaptchaProtectedResource(twisted.web.resource.Resource): return ip def render_GET(self, request): - # get a captcha + """Retrieve a ReCaptcha from the API server and serve it to the client. + + :type request: :api:`twisted.web.http.Request` + :param request: A ``Request`` object for 'bridges.html'. + :rtype: str + :returns: A rendered HTML page containing a ReCaptcha challenge image + for the client to solve. + """ c = Raptcha(self.recaptchaPubKey, self.recaptchaPrivKey) + try: c.get() except Exception as error:

1 0

[tor-launcher/master] Bump version.
by mikeperry＠torproject.org 03 Feb '14

03 Feb '14

commit 81d4224382d1acb397b5fd578106bbf416ce42eb Author: Mike Perry <mikeperry-git(a)torproject.org> Date: Mon Feb 3 13:59:57 2014 -0800 Bump version. --- src/install.rdf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/install.rdf b/src/install.rdf index 3dd7640..9e45c8a 100644 --- a/src/install.rdf +++ b/src/install.rdf @@ -7,7 +7,7 @@ <em:creator>The Tor Project, Inc.</em:creator> <em:contributor>Pearl Crescent, LLC</em:contributor> <em:id>tor-launcher(a)torproject.org</em:id> - <em:version>0.2.4.3</em:version> + <em:version>0.2.4.4</em:version> <em:homepageURL>https://www.torproject.org/projects/torbrowser.html</em:homepageURL> <em:updateURL>https://127.0.0.1/</em:updateURL> <!--

1 0