i2p.plugins.tor-updater/get/get.go

package tbget

import (
	"encoding/json"
	"fmt"
	"io"
	"io/ioutil"
	"net/http"
	"os"
	"path/filepath"
	"runtime"
	"strings"

	"github.com/cloudfoundry/jibber_jabber"

	"github.com/jchavannes/go-pgp/pgp"
	"golang.org/x/crypto/openpgp"
)

var wd, _ = os.Getwd()

var DOWNLOAD_PATH = filepath.Join(wd, "tor-browser")

const TOR_UPDATES_URL string = "https://aus1.torproject.org/torbrowser/update_3/release/downloads.json"

var (
	defaultIETFLang, _ = jibber_jabber.DetectIETF()
)

func GetRuntimePair() string {
	var OS, ARCH string
	switch runtime.GOOS {
	case "darwin":
		OS = "osx"
	case "linux":
		OS = "linux"
	case "windows":
		OS = "win"
	default:
		OS = "unknown"
	}
	switch runtime.GOARCH {
	case "amd64":
		ARCH = "64"
	case "386":
		ARCH = "32"
	default:
		ARCH = "unknown"
	}
	return fmt.Sprintf("%s%s", OS, ARCH)
}

func GetUpdater() (string, string, error) {
	return GetUpdaterForLang(defaultIETFLang)
}

func GetUpdaterForLang(ietf string) (string, string, error) {
	jsonText, err := http.Get(TOR_UPDATES_URL)
	if err != nil {
		return "", "", fmt.Errorf("GetUpdaterForLang: %s", err)
	}
	defer jsonText.Body.Close()
	return GetUpdaterForLangFromJson(jsonText.Body, ietf)
}

func GetUpdaterForLangFromJson(body io.ReadCloser, ietf string) (string, string, error) {
	jsonBytes, err := io.ReadAll(body)
	if err != nil {
		return "", "", fmt.Errorf("GetUpdaterForLangFromJson: %s", err)
	}
	return GetUpdaterForLangFromJsonBytes(jsonBytes, ietf)
}

func GetUpdaterForLangFromJsonBytes(jsonBytes []byte, ietf string) (string, string, error) {
	var dat map[string]interface{}
	if err := json.Unmarshal(jsonBytes, &dat); err != nil {
		return "", "", fmt.Errorf("FuncName: %s", err)
	}
	if platform, ok := dat["downloads"]; ok {
		rtp := GetRuntimePair()
		if updater, ok := platform.(map[string]interface{})[rtp]; ok {
			if langUpdater, ok := updater.(map[string]interface{})[ietf]; ok {
				return langUpdater.(map[string]interface{})["binary"].(string), langUpdater.(map[string]interface{})["sig"].(string), nil
			}
			// If we didn't find the language, try splitting at the hyphen
			lang := strings.Split(ietf, "-")[0]
			if langUpdater, ok := updater.(map[string]interface{})[lang]; ok {
				return langUpdater.(map[string]interface{})["binary"].(string), langUpdater.(map[string]interface{})["sig"].(string), nil
			}
			// If we didn't find the language after splitting at the hyphen, try the default
			return GetUpdaterForLangFromJsonBytes(jsonBytes, defaultIETFLang)
		}
	}
	return "", "", fmt.Errorf("GetUpdaterForLangFromJsonBytes: no updater for language %s", ietf)
}

func SingleFileDownload(url, name string) (string, error) {
	file, err := http.Get(url)
	if err != nil {
		return "", fmt.Errorf("SingleFileDownload: %s", err)
	}
	defer file.Body.Close()
	path := filepath.Join(DOWNLOAD_PATH, name)
	outFile, err := os.Create(path)
	if err != nil {
		return "", fmt.Errorf("SingleFileDownload: %s", err)
	}
	defer outFile.Close()
	io.Copy(outFile, file.Body)
	return path, nil
}

func DownloadUpdater() (string, string, error) {
	binary, sig, err := GetUpdater()
	if err != nil {
		return "", "", fmt.Errorf("DownloadUpdater: %s", err)
	}
	sigpath, err := SingleFileDownload(sig, "tor-browser-"+GetRuntimePair()+"-"+defaultIETFLang+".tar.xz.asc")
	if err != nil {
		return "", "", fmt.Errorf("DownloadUpdater: %s", err)
	}
	binpath, err := SingleFileDownload(binary, "tor-browser-"+GetRuntimePair()+"-"+defaultIETFLang+".tar.xz")
	if err != nil {
		return "", sigpath, fmt.Errorf("DownloadUpdater: %s", err)
	}
	return binpath, sigpath, nil
}

func DownloadUpdaterForLang(ietf string) (string, string, error) {
	binary, sig, err := GetUpdaterForLang(ietf)
	if err != nil {
		return "", "", fmt.Errorf("DownloadUpdaterForLang: %s", err)
	}
	sigpath, err := SingleFileDownload(sig, "tor-browser-"+GetRuntimePair()+"-"+ietf+".tar.xz.asc")
	if err != nil {
		return "", "", fmt.Errorf("DownloadUpdaterForLang: %s", err)
	}
	binpath, err := SingleFileDownload(binary, "tor-browser-"+GetRuntimePair()+"-"+ietf+".tar.xz")
	if err != nil {
		return "", sigpath, fmt.Errorf("DownloadUpdaterForLang: %s", err)
	}
	return binpath, sigpath, nil
}

func CheckSignature(binpath, sigpath string) error {
	var pkBytes []byte
	var pk *openpgp.Entity
	var sig []byte
	var bin []byte
	var err error
	if pkBytes, err = ioutil.ReadFile(filepath.Join(DOWNLOAD_PATH, "TPO-signing-key.pub")); err != nil {
		return fmt.Errorf("CheckSignature pkBytes: %s", err)
	}
	if pk, err = pgp.GetEntity(pkBytes, nil); err != nil {
		return fmt.Errorf("CheckSignature pk: %s", err)
	}
	if bin, err = ioutil.ReadFile(binpath); err != nil {
		return fmt.Errorf("CheckSignature bin: %s", err)
	}
	if sig, err = ioutil.ReadFile(sigpath); err != nil {
		return fmt.Errorf("CheckSignature sig: %s", err)
	}
	if err = pgp.Verify(pk, sig, bin); err != nil {
		return nil
	}
	err = fmt.Errorf("signature check failed")
	return fmt.Errorf("CheckSignature: %s", err)
}

func BoolCheckSignature(binpath, sigpath string) bool {
	err := CheckSignature(binpath, sigpath)
	return err == nil
}
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`package tbget`

			`import (`
			`"encoding/json"`
			`"fmt"`
			`"io"`
			`"io/ioutil"`
			`"net/http"`
			`"os"`
			`"path/filepath"`
			`"runtime"`
			`"strings"`

			`"github.com/cloudfoundry/jibber_jabber"`
add resources 2022-01-16 15:33:47 -05:00
			`"github.com/jchavannes/go-pgp/pgp"`
			`"golang.org/x/crypto/openpgp"`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`)`

			`var wd, _ = os.Getwd()`

			`var DOWNLOAD_PATH = filepath.Join(wd, "tor-browser")`

			`const TOR_UPDATES_URL string = "https://aus1.torproject.org/torbrowser/update_3/release/downloads.json"`

			`var (`
			`defaultIETFLang, _ = jibber_jabber.DetectIETF()`
			`)`

			`func GetRuntimePair() string {`
			`var OS, ARCH string`
			`switch runtime.GOOS {`
			`case "darwin":`
			`OS = "osx"`
			`case "linux":`
			`OS = "linux"`
			`case "windows":`
			`OS = "win"`
			`default:`
			`OS = "unknown"`
			`}`
			`switch runtime.GOARCH {`
			`case "amd64":`
			`ARCH = "64"`
			`case "386":`
			`ARCH = "32"`
			`default:`
			`ARCH = "unknown"`
			`}`
			`return fmt.Sprintf("%s%s", OS, ARCH)`
			`}`

			`func GetUpdater() (string, string, error) {`
			`return GetUpdaterForLang(defaultIETFLang)`
			`}`

			`func GetUpdaterForLang(ietf string) (string, string, error) {`
			`jsonText, err := http.Get(TOR_UPDATES_URL)`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("GetUpdaterForLang: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`defer jsonText.Body.Close()`
			`return GetUpdaterForLangFromJson(jsonText.Body, ietf)`
			`}`

			`func GetUpdaterForLangFromJson(body io.ReadCloser, ietf string) (string, string, error) {`
			`jsonBytes, err := io.ReadAll(body)`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("GetUpdaterForLangFromJson: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`return GetUpdaterForLangFromJsonBytes(jsonBytes, ietf)`
			`}`

			`func GetUpdaterForLangFromJsonBytes(jsonBytes []byte, ietf string) (string, string, error) {`
			`var dat map[string]interface{}`
			`if err := json.Unmarshal(jsonBytes, &dat); err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("FuncName: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`if platform, ok := dat["downloads"]; ok {`
			`rtp := GetRuntimePair()`
			`if updater, ok := platform.(map[string]interface{})[rtp]; ok {`
			`if langUpdater, ok := updater.(map[string]interface{})[ietf]; ok {`
			`return langUpdater.(map[string]interface{})["binary"].(string), langUpdater.(map[string]interface{})["sig"].(string), nil`
			`}`
			`// If we didn't find the language, try splitting at the hyphen`
			`lang := strings.Split(ietf, "-")[0]`
			`if langUpdater, ok := updater.(map[string]interface{})[lang]; ok {`
			`return langUpdater.(map[string]interface{})["binary"].(string), langUpdater.(map[string]interface{})["sig"].(string), nil`
			`}`
			`// If we didn't find the language after splitting at the hyphen, try the default`
			`return GetUpdaterForLangFromJsonBytes(jsonBytes, defaultIETFLang)`
			`}`
			`}`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("GetUpdaterForLangFromJsonBytes: no updater for language %s", ietf)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`

			`func SingleFileDownload(url, name string) (string, error) {`
			`file, err := http.Get(url)`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", fmt.Errorf("SingleFileDownload: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`defer file.Body.Close()`
			`path := filepath.Join(DOWNLOAD_PATH, name)`
add resources 2022-01-16 15:33:47 -05:00			`outFile, err := os.Create(path)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", fmt.Errorf("SingleFileDownload: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`defer outFile.Close()`
			`io.Copy(outFile, file.Body)`
			`return path, nil`
			`}`

			`func DownloadUpdater() (string, string, error) {`
			`binary, sig, err := GetUpdater()`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("DownloadUpdater: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`sigpath, err := SingleFileDownload(sig, "tor-browser-"+GetRuntimePair()+"-"+defaultIETFLang+".tar.xz.asc")`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("DownloadUpdater: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`binpath, err := SingleFileDownload(binary, "tor-browser-"+GetRuntimePair()+"-"+defaultIETFLang+".tar.xz")`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", sigpath, fmt.Errorf("DownloadUpdater: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`return binpath, sigpath, nil`
			`}`

fix typo 2022-01-16 14:43:10 -05:00			`func DownloadUpdaterForLang(ietf string) (string, string, error) {`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`binary, sig, err := GetUpdaterForLang(ietf)`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("DownloadUpdaterForLang: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`sigpath, err := SingleFileDownload(sig, "tor-browser-"+GetRuntimePair()+"-"+ietf+".tar.xz.asc")`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", "", fmt.Errorf("DownloadUpdaterForLang: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`binpath, err := SingleFileDownload(binary, "tor-browser-"+GetRuntimePair()+"-"+ietf+".tar.xz")`
			`if err != nil {`
add resources 2022-01-16 15:33:47 -05:00			`return "", sigpath, fmt.Errorf("DownloadUpdaterForLang: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
			`return binpath, sigpath, nil`
			`}`

			`func CheckSignature(binpath, sigpath string) error {`
add resources 2022-01-16 15:33:47 -05:00			`var pkBytes []byte`
			`var pk *openpgp.Entity`
			`var sig []byte`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`var bin []byte`
			`var err error`
add resources 2022-01-16 15:33:47 -05:00			`if pkBytes, err = ioutil.ReadFile(filepath.Join(DOWNLOAD_PATH, "TPO-signing-key.pub")); err != nil {`
			`return fmt.Errorf("CheckSignature pkBytes: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
add resources 2022-01-16 15:33:47 -05:00			`if pk, err = pgp.GetEntity(pkBytes, nil); err != nil {`
			`return fmt.Errorf("CheckSignature pk: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
add resources 2022-01-16 15:33:47 -05:00			`if bin, err = ioutil.ReadFile(binpath); err != nil {`
			`return fmt.Errorf("CheckSignature bin: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
add resources 2022-01-16 15:33:47 -05:00			`if sig, err = ioutil.ReadFile(sigpath); err != nil {`
			`return fmt.Errorf("CheckSignature sig: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`
add resources 2022-01-16 15:33:47 -05:00			`if err = pgp.Verify(pk, sig, bin); err != nil {`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`return nil`
			`}`
			`err = fmt.Errorf("signature check failed")`
add resources 2022-01-16 15:33:47 -05:00			`return fmt.Errorf("CheckSignature: %s", err)`
clone tb-updater in a language that isn't awful. 2022-01-16 14:31:31 -05:00			`}`

			`func BoolCheckSignature(binpath, sigpath string) bool {`
			`err := CheckSignature(binpath, sigpath)`
			`return err == nil`
			`}`