eta
/
whatsxmpp
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Activity
A WhatsApp (Web) transport for XMPP.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
82 Commits
1 Branch
1.1MB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
whatsxmpp/media.lisp

198 lines
12KB
Raw Permalink Blame History 

  1. ;;;; Handling media uploading / downloading

  2. 

  3. (in-package :whatsxmpp)

  4. 

  5. (defun squonch-image-to-jpeg-thumbnail (opticl-image)

  6.   "Resize the provided OPTICL-IMAGE to a small 640x480 thumbnail and return an octet vector of JPEG data for this thumbnail."

  7.   (check-type opticl-image opticl:image)

  8.   (let* ((image-out-stream (flexi-streams:make-in-memory-output-stream))

  9.          (resized-image (opticl:resize-image opticl-image 480 640))

  10.          (useless (opticl:write-jpeg-stream image-out-stream resized-image)) ; squonch

  11.          (image-thumbnail (flexi-streams:get-output-stream-sequence image-out-stream)))

  12.     (declare (ignore useless))

  13.     (concatenate '(vector (unsigned-byte 8)) image-thumbnail)))

  14. 

  15. (defun maybe-upload-whatsapp-media (conn media-url)

  16.   "If the media at MEDIA-URL can be sent natively as a WhatsApp upload, download it and re-host it on WhatsApp.

  17. Returns a promise that resolves with either a STRING (if the media could not be rehosted or is ineligible) or WHATSCL:MESSAGE-CONTENTS-IMAGE (if the media pointed to is an image and it's been successfully re-uploaded)."

  18.   (check-type media-url string)

  19.   (let ((opticl-function (opticl::get-image-stream-reader (pathname-type media-url))))

  20.     (if opticl-function

  21.         (attach

  22.          (download-remote-media media-url)

  23.          (lambda (media-data)

  24.            (let* ((image-stream (flexi-streams:make-in-memory-input-stream media-data))

  25.                   (image-mime (or (trivial-mimes:mime-lookup media-url)

  26.                                   (error "Couldn't guess image MIME type for ~A" media-url)))

  27.                   (parsed-image (funcall opticl-function image-stream))

  28.                   (squonched-image (squonch-image-to-jpeg-thumbnail parsed-image)))

  29.              (opticl:with-image-bounds (image-y image-x) parsed-image

  30.                (attach

  31.                 (put-whatsapp-media-file conn media-data :image image-mime)

  32.                 (lambda (file-info)

  33.                   (make-instance 'whatscl::message-contents-image

  34.                                  :file-info file-info

  35.                                  :width-px image-x

  36.                                  :height-px image-y

  37.                                  :jpeg-thumbnail squonched-image)))))))

  38.         (promisify media-url))))

  39. 

  40. (defun download-remote-media (media-url)

  41.   "Returns a promise that downloads the remote MEDIA-URL and resolves with an octet vector of the downloaded data."

  42.   ;; FIXME FIXME FIXME: this function is a trivial DoS vector, if you provide an infinite file like time.gif,

  43.   ;; or a file that's like 1GB.

  44.   (check-type media-url string)

  45.   (with-promise-from-thread ()

  46.     (format *debug-io* "~&downloading remote media: ~A~%" media-url)

  47.     (multiple-value-bind (response status-code)

  48.         (drakma:http-request media-url

  49.                              :force-binary t)

  50.       (unless (eql status-code 200)

  51.         (format *error-output* "~&downloading failed! status ~A~%" status-code)

  52.         (error "Remote media download failed with status code ~A~~%%" status-code))

  53.       (check-type response (simple-array (unsigned-byte 8)))

  54.       (format *debug-io* "~&downloaded ~A (length: ~A)~%" media-url (length response))

  55.       response)))

  56. 

  57. (defun put-whatsapp-media-file (conn file-data media-type mime-type)

  58.   "Encrypts and uploads FILE-DATA (an octet vector), a WhatsApp media file of type MEDIA-TYPE (one of :IMAGE, :VIDEO, :AUDIO, or :DOCUMENT) to WhatsApp, returning a promise that resolves with a WHATSCL:FILE-INFO when done."

  59.   (check-type file-data (simple-array (unsigned-byte 8)))

  60.   (check-type media-type (member :image :video :audio :document))

  61.   (attach

  62.    (with-promise (resolve reject)

  63.      (format *debug-io* "~&requesting WhatsApp upload slot~%")

  64.      (whatscl::start-media-upload

  65.       conn

  66.       (lambda (conn auth-token ttl hosts)

  67.         (declare (ignore conn))

  68.         (if auth-token

  69.             (resolve auth-token ttl hosts)

  70.             (reject (make-condition 'error

  71.                                     "WhatsApp upload slot request rejected"))))))

  72.    (lambda (auth-token ttl hosts)

  73.      (declare (ignore ttl))

  74.      (with-promise-from-thread ()

  75.        (multiple-value-bind (encrypted-blob media-key file-sha256 file-enc-sha256)

  76.            (whatscl::encrypt-media-data file-data media-type)

  77.          (let* ((token (qbase64:encode-bytes file-enc-sha256 :scheme :uri))

  78.                 (url-to-use (format nil "https://~A/mms/~(~A~)/~A"

  79.                                     (first hosts) (symbol-name media-type) token))

  80.                 (headers `(("Origin" . "https://web.whatsapp.com")

  81.                            ("Referer" . "https://web.whatsapp.com")))

  82.                 (qs-params `(("auth" . ,auth-token) ("token" . ,token))))

  83.            (format *debug-io* "~&uploading encrypted media file (length ~A) to ~A"

  84.                    (length encrypted-blob) url-to-use)

  85.            (multiple-value-bind (response status-code)

  86.                (drakma:http-request url-to-use

  87.                                     :method :post

  88.                                     :content encrypted-blob

  89.                                     :content-type "application/octet-stream"

  90.                                     :parameters qs-params

  91.                                     :additional-headers headers)

  92.              (let ((response (babel:octets-to-string response)))

  93.                (unless (eql status-code 200)

  94.                  (format *debug-io* "~&whatsapp upload failed! status ~A / ~A" status-code response)

  95.                  (error "Downloading media failed with status ~A / ~A" status-code response))

  96.                (let* ((json-response (cl-json:decode-json-from-string response))

  97.                       (url (or (whatscl::cassoc :url json-response)

  98.                                (error "No :URL field in upload response ~A" json-response))))

  99.                  (format *debug-io* "~&got whatsapp uploaded media url ~A~%" url)

  100.                  (make-instance 'whatscl::file-info

  101.                                 :media-key media-key

  102.                                 :url (pb:string-field url)

  103.                                 :sha256 file-sha256

  104.                                 :enc-sha256 file-enc-sha256

  105.                                 :length-bytes (length encrypted-blob)

  106.                                 :mime-type (pb:string-field mime-type)))))))))))

  107. 

  108. (defun upload-whatsapp-media-file (comp file-info media-type &optional filename)

  109.   "Downloads the WhatsApp media file specified by FILE-INFO, uploads it via COMP, and returns a promise which resolves to the URL of the uploaded media.

  110. MEDIA-TYPE is one of (:image :video :audio :document)."

  111.   (declare (type (member :image :video :audio :document) media-type))

  112.   (with-component-data-lock (comp)

  113.     (with-accessors ((url whatscl::file-info-url)

  114.                      (mime-type whatscl::file-info-mime-type)

  115.                      (sha256 whatscl::file-info-sha256)

  116.                      (enc-sha256 whatscl::file-info-enc-sha256)

  117.                      (length-bytes whatscl::file-info-length-bytes)

  118.                      (media-key whatscl::file-info-media-key))

  119.         file-info

  120.       (let* ((mime-type (first (uiop:split-string mime-type :separator ";")))

  121.              (extension (or (mimes:mime-file-type mime-type) "what"))

  122.              (filename (or filename

  123.                            (concatenate 'string (octets-to-lowercase-hex sha256) "." extension))))

  124.         (format *debug-io* "~&requesting an upload slot for whatsapp media (type ~A, length ~A): ~A~%" mime-type length-bytes filename)

  125.         (attach

  126.          (request-http-upload-slot comp (component-upload-component-name comp)

  127.                                    filename length-bytes mime-type)

  128.          (lambda (slot)

  129.            (destructuring-bind ((put-url . headers) get-url) slot

  130.              (format *debug-io* "~&got put-url: ~A~%    get-url: ~A~%" put-url get-url)

  131.              (with-promise-from-thread ()

  132.                (format *debug-io* "~&fetching whatsapp media url: ~A~%" url)

  133.                (multiple-value-bind (file-data status-code)

  134.                    (drakma:http-request url)

  135.                  (unless (eql status-code 200)

  136.                    (format *debug-io* "~&couldn't fetch whatsapp media! status ~A, body ~A~%" status-code file-data)

  137.                    (error "Downloading media failed with status ~A" status-code))

  138.                  (format *debug-io* "~&got ~A bytes, decrypting~%" (length file-data))

  139.                  (let ((sha256-expected (ironclad:digest-sequence :sha256 file-data))

  140.                        (decrypted-file (whatscl::decrypt-media-data media-key file-data media-type)))

  141.                    (unless (equalp enc-sha256 sha256-expected)

  142.                      (error "Encrypted SHA256 mismatch"))

  143.                    (multiple-value-bind (body status-code)

  144.                        (drakma:http-request put-url

  145.                                             :additional-headers headers

  146.                                             :content-length (length decrypted-file)

  147.                                             :content-type mime-type

  148.                                             :method :put

  149.                                             :content decrypted-file)

  150.                      (unless (and (>= status-code 200) (< status-code 300))

  151.                        (format *debug-io* "~&upload failed! status ~A, body ~A~%" status-code body)

  152.                        (error "HTTP upload failed with status ~A" status-code))

  153.                      get-url)))))))))))

  154. 

  155. (defun send-qrcode (comp jid text)

  156.   "Send a QR code containing TEXT to JID."

  157.   (with-component-data-lock (comp)

  158.     (uiop:with-temporary-file (:stream stream

  159.                                :pathname path

  160.                                :keep t) ; Needed because async

  161.       (format *debug-io* "~&using path ~A~%" path)

  162.       (cl-qrencode:encode-png-stream text stream)

  163.       (force-output stream) ; otherwise the QR codes get chopped off?

  164.       (catcher

  165.        (let ((content-length (file-length stream)))

  166.          (attach

  167.           (request-http-upload-slot comp (component-upload-component-name comp)

  168.                                     "qrcode.png"

  169.                                     (file-length stream)

  170.                                     "image/png")

  171.           (lambda (slot)

  172.             (with-promise-from-thread ()

  173.               (destructuring-bind ((put-url . headers) get-url) slot

  174.                 (format *debug-io* "~&got put-url: ~A~%   get-url: ~A~%" put-url get-url)

  175.                 (multiple-value-bind (body status-code)

  176.                     (drakma:http-request put-url

  177.                                          :additional-headers headers

  178.                                          :content-type "image/png"

  179.                                          :content-length content-length

  180.                                          :method :put

  181.                                          :content path)

  182.                   (unless (and (>= status-code 200) (< status-code 300))

  183.                     (format *debug-io* "~&upload failed! status ~A, body ~A~%" status-code body)

  184.                     (error "HTTP upload failed with status ~A" status-code))

  185.                   (with-component-data-lock (comp)

  186.                     (let ((ajid (admin-jid comp)))

  187.                       (admin-msg comp jid "WhatsApp Web registration: Scan the following QR code with your device! (Menu -> WhatsApp Web)")

  188.                       (with-message (comp jid :from ajid)

  189.                         (cxml:with-element "body"

  190.                           (cxml:text get-url))

  191.                         (cxml:with-element "x"

  192.                           (cxml:attribute "xmlns" +oob-ns+)

  193.                           (cxml:with-element "url"

  194.                             (cxml:text get-url))))

  195.                       (admin-msg comp jid "(Code expired? Be faster next time. Get a new one with `connect`.)")))))))))

  196.        (t (e)

  197.           (admin-msg comp jid (format nil "Failed to upload QR code!~%Report the following error to the bridge admin: `~A`" e)))))))