almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-29 10:12:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 11

qubes: Store the process for the spawned qube

Browse source 
Store, in an instance attribute, the process that we have started for
the spawned disposable qube. In subsequent commits, we will use it from
other places as well, aside from the `_convert` method.

Note that this commit does not alter the conversion logic, and only does
the following:
1. Renames `p.` to `self.proc.`
2. Adds an `__init__` method to the Qubes isolation provider, and
   initializes the `self.proc` attribute to `None`.
3. Adds an assert that `self.proc` is not `None` after it's spawned, to
   placate Mypy.
This commit is contained in:
Alex Pyrgiotis 2023-09-26 16:32:18 +03:00
parent e08b6defc3
commit 0273522fb1
No known key found for this signature in database
GPG key ID: B6C15EBA0357C9AA
1 changed files with 23 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

40
dangerzone/isolation_provider/qubes.py
View file

@ -61,6 +61,10 @@ def read_debug_text(f: IO[bytes], size: int) -> str:
class Qubes(IsolationProvider): class Qubes(IsolationProvider):
"""Uses a disposable qube for performing the conversion""" """Uses a disposable qube for performing the conversion"""
def __init__(self) -> None:
self.proc: Optional[subprocess.Popen] = None
super().__init__()
def install(self) -> bool: def install(self) -> bool:
return True return True
@ -89,22 +93,23 @@ class Qubes(IsolationProvider):
# Use dz.ConvertDev RPC call instead, if we are in development mode. # Use dz.ConvertDev RPC call instead, if we are in development mode.
# Basically, the change is that we also transfer the necessary Python # Basically, the change is that we also transfer the necessary Python
# code as a zipfile, before sending the doc that the user requested. # code as a zipfile, before sending the doc that the user requested.
p = subprocess.Popen( self.proc = subprocess.Popen(
["/usr/bin/qrexec-client-vm", "@dispvm:dz-dvm", "dz.ConvertDev"], ["/usr/bin/qrexec-client-vm", "@dispvm:dz-dvm", "dz.ConvertDev"],
stdin=subprocess.PIPE, stdin=subprocess.PIPE,
stdout=subprocess.PIPE, stdout=subprocess.PIPE,
stderr=subprocess.PIPE, stderr=subprocess.PIPE,
) )
assert p.stdin is not None assert self.proc is not None
assert self.proc.stdin is not None
# Send the dangerzone module first. # Send the dangerzone module first.
self.teleport_dz_module(p.stdin) self.teleport_dz_module(self.proc.stdin)
# Finally, send the document, as in the normal case. # Finally, send the document, as in the normal case.
p.stdin.write(f.read()) self.proc.stdin.write(f.read())
p.stdin.close() self.proc.stdin.close()
else: else:
p = subprocess.Popen( self.proc = subprocess.Popen(
["/usr/bin/qrexec-client-vm", "@dispvm:dz-dvm", "dz.Convert"], ["/usr/bin/qrexec-client-vm", "@dispvm:dz-dvm", "dz.Convert"],
stdin=f, stdin=f,
stdout=subprocess.PIPE, stdout=subprocess.PIPE,
@ -115,11 +120,12 @@ class Qubes(IsolationProvider):
size = os.path.getsize(document.input_filename) / 1024**2 size = os.path.getsize(document.input_filename) / 1024**2
timeout = calculate_timeout(size) + STARTUP_TIME_SECONDS timeout = calculate_timeout(size) + STARTUP_TIME_SECONDS
assert p.stdout is not None assert self.proc is not None
os.set_blocking(p.stdout.fileno(), False) assert self.proc.stdout is not None
os.set_blocking(self.proc.stdout.fileno(), False)
try: try:
n_pages = read_int(p.stdout, timeout) n_pages = read_int(self.proc.stdout, timeout)
except ValueError: except ValueError:
error_code = p.wait() error_code = p.wait()
# XXX Reconstruct exception from error code # XXX Reconstruct exception from error code
@ -139,10 +145,10 @@ class Qubes(IsolationProvider):
for page in range(1, n_pages + 1): for page in range(1, n_pages + 1):
# TODO handle too width > MAX_PAGE_WIDTH # TODO handle too width > MAX_PAGE_WIDTH
# TODO handle too big height > MAX_PAGE_HEIGHT # TODO handle too big height > MAX_PAGE_HEIGHT
width = read_int(p.stdout, timeout=sw.remaining) width = read_int(self.proc.stdout, timeout=sw.remaining)
height = read_int(p.stdout, timeout=sw.remaining) height = read_int(self.proc.stdout, timeout=sw.remaining)
untrusted_pixels = read_bytes( untrusted_pixels = read_bytes(
p.stdout, self.proc.stdout,
width * height * 3, width * height * 3,
timeout=sw.remaining, timeout=sw.remaining,
) # three color channels ) # three color channels
@ -161,17 +167,17 @@ class Qubes(IsolationProvider):
self.print_progress_trusted(document, False, text, percentage) self.print_progress_trusted(document, False, text, percentage)
# Ensure nothing else is read after all bitmaps are obtained # Ensure nothing else is read after all bitmaps are obtained
p.stdout.close() self.proc.stdout.close()
# TODO handle leftover code input # TODO handle leftover code input
text = "Converted document to pixels" text = "Converted document to pixels"
self.print_progress_trusted(document, False, text, percentage) self.print_progress_trusted(document, False, text, percentage)
if getattr(sys, "dangerzone_dev", False): if getattr(sys, "dangerzone_dev", False):
assert p.stderr is not None assert self.proc.stderr is not None
os.set_blocking(p.stderr.fileno(), False) os.set_blocking(self.proc.stderr.fileno(), False)
untrusted_log = read_debug_text(p.stderr, MAX_CONVERSION_LOG_CHARS) untrusted_log = read_debug_text(self.proc.stderr, MAX_CONVERSION_LOG_CHARS)
p.stderr.close() self.proc.stderr.close()
log.info( log.info(
f"Conversion output (doc to pixels)\n{self.sanitize_conversion_str(untrusted_log)}" f"Conversion output (doc to pixels)\n{self.sanitize_conversion_str(untrusted_log)}"
) )