From 043d20c05de68a7c58e6d754c1fc152662dfd81d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marek=20Marczykowski-G=C3=B3recki?= Date: Wed, 26 Oct 2016 20:45:24 +0200 Subject: [PATCH] backup: fix handling non-ascii characters in backup passphrase Fixes QubesOS/qubes-issues#2398 --- qubes/backup.py | 25 ++++++++++++------------- 1 file changed, 12 insertions(+), 13 deletions(-) diff --git a/qubes/backup.py b/qubes/backup.py index 74abd01b..832e9832 100644 --- a/qubes/backup.py +++ b/qubes/backup.py @@ -271,7 +271,7 @@ def launch_scrypt(action, input_name, output_name, passphrase): if actual_prompt != prompt: raise qubes.exc.QubesException( 'Unexpected prompt from scrypt: {}'.format(actual_prompt)) - pty.write(passphrase + '\n') + pty.write(passphrase.encode('utf-8') + b'\n') pty.flush() # save it here, so garbage collector would not close it (which would kill # the child) @@ -551,8 +551,8 @@ class Backup(object): backup_header.save(header_file_path) # Start encrypt, scrypt will also handle integrity # protection - scrypt_passphrase = HEADER_FILENAME + '!' + self.passphrase.encode( - 'utf-8') + scrypt_passphrase = u'{filename}!{passphrase}'.format( + filename=HEADER_FILENAME, passphrase=self.passphrase) scrypt = launch_scrypt( 'enc', header_file_path, header_file_path + '.hmac', scrypt_passphrase) @@ -610,8 +610,6 @@ class Backup(object): backup_app.domains[qid].features['backup-size'] = vm_info.size backup_app.save() - passphrase = self.passphrase.encode('utf-8') - vmproc = None tar_sparse = None if self.target_vm is not None: @@ -735,11 +733,11 @@ class Backup(object): # Start encrypt, scrypt will also handle integrity # protection scrypt_passphrase = \ - '{backup_id}!{filename}!{passphrase}'.format( + u'{backup_id}!{filename}!{passphrase}'.format( backup_id=self.backup_id, filename=os.path.relpath(chunkfile[:-4], self.tmpdir), - passphrase=passphrase) + passphrase=self.passphrase) scrypt = launch_scrypt( "enc", "-", chunkfile, scrypt_passphrase) @@ -1651,13 +1649,14 @@ class BackupRestore(object): else: fulloutput = os.path.join(self.tmpdir, origname) if origname == HEADER_FILENAME: - passphrase = origname + '!' + self.passphrase.encode('utf-8') + passphrase = u'{filename}!{passphrase}'.format( + filename=origname, + passphrase=self.passphrase) else: - passphrase = \ - '{backup_id}!{filename}!{passphrase}'.format( - backup_id=self.header_data.backup_id, - filename=origname, - passphrase=self.passphrase.encode('utf-8')) + passphrase = u'{backup_id}!{filename}!{passphrase}'.format( + backup_id=self.header_data.backup_id, + filename=origname, + passphrase=self.passphrase) p = launch_scrypt('dec', fullname, fulloutput, passphrase) (_, stderr) = p.communicate() if p.returncode != 0: