2007-09-16 05:29:14 +08:00
|
|
|
import base64
|
|
|
|
|
import os
|
|
|
|
|
import random
|
|
|
|
|
import sys
|
|
|
|
|
import time
|
2008-06-08 04:28:06 +08:00
|
|
|
from datetime import datetime, timedelta
|
2007-09-16 05:29:14 +08:00
|
|
|
try:
|
|
|
|
|
import cPickle as pickle
|
|
|
|
|
except ImportError:
|
|
|
|
|
import pickle
|
|
|
|
|
|
2008-06-23 13:08:07 +08:00
|
|
|
from django.conf import settings
|
|
|
|
|
from django.core.exceptions import SuspiciousOperation
|
2008-08-02 13:56:57 +08:00
|
|
|
from django.utils.hashcompat import md5_constructor
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
from django.utils.crypto import constant_time_compare, salted_hmac
|
2008-06-23 13:08:07 +08:00
|
|
|
|
2008-08-14 11:57:18 +08:00
|
|
|
# Use the system (hardware-based) random number generator if it exists.
|
|
|
|
|
if hasattr(random, 'SystemRandom'):
|
2008-08-14 21:54:22 +08:00
|
|
|
randrange = random.SystemRandom().randrange
|
2008-08-14 11:57:18 +08:00
|
|
|
else:
|
2008-08-14 21:54:22 +08:00
|
|
|
randrange = random.randrange
|
2008-08-14 11:57:18 +08:00
|
|
|
MAX_SESSION_KEY = 18446744073709551616L # 2 << 63
|
|
|
|
|
|
|
|
|
|
class CreateError(Exception):
|
|
|
|
|
"""
|
|
|
|
|
Used internally as a consistent exception type to catch from save (see the
|
|
|
|
|
docstring for SessionBase.save() for details).
|
|
|
|
|
"""
|
|
|
|
|
pass
|
2008-06-23 13:08:07 +08:00
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
class SessionBase(object):
|
|
|
|
|
"""
|
|
|
|
|
Base class for all Session classes.
|
|
|
|
|
"""
|
|
|
|
|
TEST_COOKIE_NAME = 'testcookie'
|
|
|
|
|
TEST_COOKIE_VALUE = 'worked'
|
|
|
|
|
|
|
|
|
|
def __init__(self, session_key=None):
|
|
|
|
|
self._session_key = session_key
|
|
|
|
|
self.accessed = False
|
|
|
|
|
self.modified = False
|
|
|
|
|
|
|
|
|
|
def __contains__(self, key):
|
|
|
|
|
return key in self._session
|
|
|
|
|
|
|
|
|
|
def __getitem__(self, key):
|
|
|
|
|
return self._session[key]
|
|
|
|
|
|
|
|
|
|
def __setitem__(self, key, value):
|
|
|
|
|
self._session[key] = value
|
|
|
|
|
self.modified = True
|
|
|
|
|
|
|
|
|
|
def __delitem__(self, key):
|
|
|
|
|
del self._session[key]
|
|
|
|
|
self.modified = True
|
|
|
|
|
|
|
|
|
|
def keys(self):
|
|
|
|
|
return self._session.keys()
|
|
|
|
|
|
|
|
|
|
def items(self):
|
|
|
|
|
return self._session.items()
|
|
|
|
|
|
|
|
|
|
def get(self, key, default=None):
|
|
|
|
|
return self._session.get(key, default)
|
|
|
|
|
|
|
|
|
|
def pop(self, key, *args):
|
2007-10-20 18:12:59 +08:00
|
|
|
self.modified = self.modified or key in self._session
|
2007-09-16 05:29:14 +08:00
|
|
|
return self._session.pop(key, *args)
|
|
|
|
|
|
2007-12-02 23:27:29 +08:00
|
|
|
def setdefault(self, key, value):
|
|
|
|
|
if key in self._session:
|
|
|
|
|
return self._session[key]
|
|
|
|
|
else:
|
|
|
|
|
self.modified = True
|
|
|
|
|
self._session[key] = value
|
|
|
|
|
return value
|
|
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def set_test_cookie(self):
|
|
|
|
|
self[self.TEST_COOKIE_NAME] = self.TEST_COOKIE_VALUE
|
|
|
|
|
|
|
|
|
|
def test_cookie_worked(self):
|
|
|
|
|
return self.get(self.TEST_COOKIE_NAME) == self.TEST_COOKIE_VALUE
|
|
|
|
|
|
|
|
|
|
def delete_test_cookie(self):
|
|
|
|
|
del self[self.TEST_COOKIE_NAME]
|
2007-09-20 12:35:03 +08:00
|
|
|
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
def _hash(self, value):
|
|
|
|
|
key_salt = "django.contrib.sessions" + self.__class__.__name__
|
|
|
|
|
return salted_hmac(key_salt, value).hexdigest()
|
|
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def encode(self, session_dict):
|
|
|
|
|
"Returns the given session dictionary pickled and encoded as a string."
|
|
|
|
|
pickled = pickle.dumps(session_dict, pickle.HIGHEST_PROTOCOL)
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
hash = self._hash(pickled)
|
|
|
|
|
return base64.encodestring(hash + ":" + pickled)
|
2007-09-16 05:29:14 +08:00
|
|
|
|
|
|
|
|
def decode(self, session_data):
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
encoded_data = base64.decodestring(session_data)
|
|
|
|
|
try:
|
|
|
|
|
# could produce ValueError if there is no ':'
|
|
|
|
|
hash, pickled = encoded_data.split(':', 1)
|
|
|
|
|
expected_hash = self._hash(pickled)
|
|
|
|
|
if not constant_time_compare(hash, expected_hash):
|
|
|
|
|
raise SuspiciousOperation("Session data corrupted")
|
|
|
|
|
else:
|
|
|
|
|
return pickle.loads(pickled)
|
|
|
|
|
except Exception:
|
|
|
|
|
# ValueError, SuspiciousOperation, unpickling exceptions
|
|
|
|
|
# Fall back to Django 1.2 method
|
|
|
|
|
# PendingDeprecationWarning <- here to remind us to
|
|
|
|
|
# remove this fallback in Django 1.5
|
|
|
|
|
try:
|
|
|
|
|
return self._decode_old(session_data)
|
|
|
|
|
except Exception:
|
|
|
|
|
# Unpickling can cause a variety of exceptions. If something happens,
|
|
|
|
|
# just return an empty dictionary (an empty session).
|
|
|
|
|
return {}
|
|
|
|
|
|
|
|
|
|
def _decode_old(self, session_data):
|
2007-09-16 05:29:14 +08:00
|
|
|
encoded_data = base64.decodestring(session_data)
|
|
|
|
|
pickled, tamper_check = encoded_data[:-32], encoded_data[-32:]
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
if not constant_time_compare(md5_constructor(pickled + settings.SECRET_KEY).hexdigest(),
|
|
|
|
|
tamper_check):
|
2007-09-16 05:29:14 +08:00
|
|
|
raise SuspiciousOperation("User tampered with session cookie.")
|
Fixed #14445 - Use HMAC and constant-time comparison functions where needed.
All adhoc MAC applications have been updated to use HMAC, using SHA1 to
generate unique keys for each application based on the SECRET_KEY, which is
common practice for this situation. In all cases, backwards compatibility
with existing hashes has been maintained, aiming to phase this out as per
the normal deprecation process. In this way, under most normal
circumstances the old hashes will have expired (e.g. by session expiration
etc.) before they become invalid.
In the case of the messages framework and the cookie backend, which was
already using HMAC, there is the possibility of a backwards incompatibility
if the SECRET_KEY is shorter than the default 50 bytes, but the low
likelihood and low impact meant compatibility code was not worth it.
All known instances where tokens/hashes were compared using simple string
equality, which could potentially open timing based attacks, have also been
fixed using a constant-time comparison function.
There are no known practical attacks against the existing implementations,
so these security improvements will not be backported.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@14218 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-15 04:54:30 +08:00
|
|
|
return pickle.loads(pickled)
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2008-06-18 20:07:46 +08:00
|
|
|
def update(self, dict_):
|
|
|
|
|
self._session.update(dict_)
|
|
|
|
|
self.modified = True
|
|
|
|
|
|
|
|
|
|
def has_key(self, key):
|
|
|
|
|
return self._session.has_key(key)
|
|
|
|
|
|
|
|
|
|
def values(self):
|
|
|
|
|
return self._session.values()
|
|
|
|
|
|
|
|
|
|
def iterkeys(self):
|
|
|
|
|
return self._session.iterkeys()
|
|
|
|
|
|
|
|
|
|
def itervalues(self):
|
|
|
|
|
return self._session.itervalues()
|
|
|
|
|
|
|
|
|
|
def iteritems(self):
|
|
|
|
|
return self._session.iteritems()
|
|
|
|
|
|
2008-08-14 11:57:30 +08:00
|
|
|
def clear(self):
|
2008-08-15 22:59:11 +08:00
|
|
|
# To avoid unnecessary persistent storage accesses, we set up the
|
|
|
|
|
# internals directly (loading data wastes time, since we are going to
|
|
|
|
|
# set it to an empty dict anyway).
|
|
|
|
|
self._session_cache = {}
|
|
|
|
|
self.accessed = True
|
2008-08-14 11:57:30 +08:00
|
|
|
self.modified = True
|
|
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def _get_new_session_key(self):
|
|
|
|
|
"Returns session key that isn't being used."
|
|
|
|
|
# The random module is seeded when this Apache child is created.
|
|
|
|
|
# Use settings.SECRET_KEY as added salt.
|
2007-09-20 10:19:48 +08:00
|
|
|
try:
|
|
|
|
|
pid = os.getpid()
|
|
|
|
|
except AttributeError:
|
|
|
|
|
# No getpid() in Jython, for example
|
|
|
|
|
pid = 1
|
2007-09-16 05:29:14 +08:00
|
|
|
while 1:
|
2008-08-14 11:57:18 +08:00
|
|
|
session_key = md5_constructor("%s%s%s%s"
|
2008-08-14 21:54:22 +08:00
|
|
|
% (randrange(0, MAX_SESSION_KEY), pid, time.time(),
|
2008-08-14 11:57:18 +08:00
|
|
|
settings.SECRET_KEY)).hexdigest()
|
2007-09-16 05:29:14 +08:00
|
|
|
if not self.exists(session_key):
|
|
|
|
|
break
|
|
|
|
|
return session_key
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def _get_session_key(self):
|
|
|
|
|
if self._session_key:
|
|
|
|
|
return self._session_key
|
|
|
|
|
else:
|
|
|
|
|
self._session_key = self._get_new_session_key()
|
|
|
|
|
return self._session_key
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def _set_session_key(self, session_key):
|
|
|
|
|
self._session_key = session_key
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
session_key = property(_get_session_key, _set_session_key)
|
|
|
|
|
|
2008-08-15 03:43:08 +08:00
|
|
|
def _get_session(self, no_load=False):
|
|
|
|
|
"""
|
|
|
|
|
Lazily loads session from storage (unless "no_load" is True, when only
|
|
|
|
|
an empty dict is stored) and stores it in the current instance.
|
|
|
|
|
"""
|
2007-09-16 05:29:14 +08:00
|
|
|
self.accessed = True
|
|
|
|
|
try:
|
|
|
|
|
return self._session_cache
|
|
|
|
|
except AttributeError:
|
2008-08-15 03:43:08 +08:00
|
|
|
if self._session_key is None or no_load:
|
2007-09-16 05:29:14 +08:00
|
|
|
self._session_cache = {}
|
|
|
|
|
else:
|
|
|
|
|
self._session_cache = self.load()
|
|
|
|
|
return self._session_cache
|
|
|
|
|
|
|
|
|
|
_session = property(_get_session)
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2008-06-08 04:28:06 +08:00
|
|
|
def get_expiry_age(self):
|
|
|
|
|
"""Get the number of seconds until the session expires."""
|
|
|
|
|
expiry = self.get('_session_expiry')
|
|
|
|
|
if not expiry: # Checks both None and 0 cases
|
|
|
|
|
return settings.SESSION_COOKIE_AGE
|
|
|
|
|
if not isinstance(expiry, datetime):
|
|
|
|
|
return expiry
|
|
|
|
|
delta = expiry - datetime.now()
|
|
|
|
|
return delta.days * 86400 + delta.seconds
|
|
|
|
|
|
|
|
|
|
def get_expiry_date(self):
|
|
|
|
|
"""Get session the expiry date (as a datetime object)."""
|
|
|
|
|
expiry = self.get('_session_expiry')
|
|
|
|
|
if isinstance(expiry, datetime):
|
|
|
|
|
return expiry
|
|
|
|
|
if not expiry: # Checks both None and 0 cases
|
|
|
|
|
expiry = settings.SESSION_COOKIE_AGE
|
|
|
|
|
return datetime.now() + timedelta(seconds=expiry)
|
|
|
|
|
|
|
|
|
|
def set_expiry(self, value):
|
|
|
|
|
"""
|
2008-06-23 13:08:07 +08:00
|
|
|
Sets a custom expiration for the session. ``value`` can be an integer,
|
|
|
|
|
a Python ``datetime`` or ``timedelta`` object or ``None``.
|
2008-06-08 04:28:06 +08:00
|
|
|
|
|
|
|
|
If ``value`` is an integer, the session will expire after that many
|
|
|
|
|
seconds of inactivity. If set to ``0`` then the session will expire on
|
|
|
|
|
browser close.
|
|
|
|
|
|
|
|
|
|
If ``value`` is a ``datetime`` or ``timedelta`` object, the session
|
|
|
|
|
will expire at that specific future time.
|
|
|
|
|
|
|
|
|
|
If ``value`` is ``None``, the session uses the global session expiry
|
|
|
|
|
policy.
|
|
|
|
|
"""
|
|
|
|
|
if value is None:
|
|
|
|
|
# Remove any custom expiration for this session.
|
|
|
|
|
try:
|
|
|
|
|
del self['_session_expiry']
|
|
|
|
|
except KeyError:
|
|
|
|
|
pass
|
|
|
|
|
return
|
|
|
|
|
if isinstance(value, timedelta):
|
|
|
|
|
value = datetime.now() + value
|
|
|
|
|
self['_session_expiry'] = value
|
|
|
|
|
|
|
|
|
|
def get_expire_at_browser_close(self):
|
|
|
|
|
"""
|
|
|
|
|
Returns ``True`` if the session is set to expire when the browser
|
|
|
|
|
closes, and ``False`` if there's an expiry date. Use
|
|
|
|
|
``get_expiry_date()`` or ``get_expiry_age()`` to find the actual expiry
|
|
|
|
|
date/age, if there is one.
|
|
|
|
|
"""
|
|
|
|
|
if self.get('_session_expiry') is None:
|
|
|
|
|
return settings.SESSION_EXPIRE_AT_BROWSER_CLOSE
|
|
|
|
|
return self.get('_session_expiry') == 0
|
|
|
|
|
|
2008-08-14 11:57:46 +08:00
|
|
|
def flush(self):
|
|
|
|
|
"""
|
|
|
|
|
Removes the current session data from the database and regenerates the
|
|
|
|
|
key.
|
|
|
|
|
"""
|
|
|
|
|
self.clear()
|
|
|
|
|
self.delete()
|
|
|
|
|
self.create()
|
|
|
|
|
|
2008-08-21 21:54:53 +08:00
|
|
|
def cycle_key(self):
|
|
|
|
|
"""
|
|
|
|
|
Creates a new session key, whilst retaining the current session data.
|
|
|
|
|
"""
|
|
|
|
|
data = self._session_cache
|
|
|
|
|
key = self.session_key
|
|
|
|
|
self.create()
|
|
|
|
|
self._session_cache = data
|
|
|
|
|
self.delete(key)
|
|
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
# Methods that child classes must implement.
|
2007-09-20 12:35:03 +08:00
|
|
|
|
2007-09-16 05:29:14 +08:00
|
|
|
def exists(self, session_key):
|
|
|
|
|
"""
|
|
|
|
|
Returns True if the given session_key already exists.
|
|
|
|
|
"""
|
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
2008-08-14 11:57:18 +08:00
|
|
|
def create(self):
|
|
|
|
|
"""
|
|
|
|
|
Creates a new session instance. Guaranteed to create a new object with
|
|
|
|
|
a unique key and will have saved the result once (with empty data)
|
|
|
|
|
before the method returns.
|
|
|
|
|
"""
|
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
|
|
|
|
def save(self, must_create=False):
|
2007-09-16 05:29:14 +08:00
|
|
|
"""
|
2008-08-14 11:57:18 +08:00
|
|
|
Saves the session data. If 'must_create' is True, a new session object
|
|
|
|
|
is created (otherwise a CreateError exception is raised). Otherwise,
|
|
|
|
|
save() can update an existing object with the same key.
|
2007-09-16 05:29:14 +08:00
|
|
|
"""
|
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
2008-08-14 11:57:46 +08:00
|
|
|
def delete(self, session_key=None):
|
2007-09-16 05:29:14 +08:00
|
|
|
"""
|
2008-08-14 11:57:46 +08:00
|
|
|
Deletes the session data under this key. If the key is None, the
|
|
|
|
|
current session key value is used.
|
2007-09-16 05:29:14 +08:00
|
|
|
"""
|
|
|
|
|
raise NotImplementedError
|
|
|
|
|
|
|
|
|
|
def load(self):
|
|
|
|
|
"""
|
|
|
|
|
Loads the session data and returns a dictionary.
|
|
|
|
|
"""
|
|
|
|
|
raise NotImplementedError
|
