gallery-dl/gallery_dl/cloudflare.py

# -*- coding: utf-8 -*-

# Copyright 2015-2019 Mike Fährmann
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2 as
# published by the Free Software Foundation.

"""Methods to access sites behind Cloudflare protection"""

import re
import time
import operator
import collections
import urllib.parse
from . import text, exception
from .cache import memcache


def is_challenge(response):
    return (response.status_code == 503 and
            response.headers.get("Server", "").startswith("cloudflare") and
            b"jschl-answer" in response.content)


def is_captcha(response):
    return (response.status_code == 403 and
            b'name="captcha-bypass"' in response.content)


def solve_challenge(session, response, kwargs):
    """Solve Cloudflare challenge and get cfclearance cookie"""
    parsed = urllib.parse.urlsplit(response.url)
    root = parsed.scheme + "://" + parsed.netloc

    cf_kwargs = {}
    headers = cf_kwargs["headers"] = collections.OrderedDict()
    params = cf_kwargs["params"] = collections.OrderedDict()

    page = response.text
    params["s"] = text.extract(page, 'name="s" value="', '"')[0]
    params["jschl_vc"] = text.extract(page, 'name="jschl_vc" value="', '"')[0]
    params["pass"] = text.extract(page, 'name="pass" value="', '"')[0]
    params["jschl_answer"] = solve_js_challenge(page, parsed.netloc)
    headers["Referer"] = response.url

    time.sleep(4)

    url = root + "/cdn-cgi/l/chk_jschl"
    cf_kwargs["allow_redirects"] = False
    cf_response = session.request("GET", url, **cf_kwargs)

    location = cf_response.headers.get("Location")
    if not location:
        import logging
        log = logging.getLogger("cloudflare")
        rtype = "CAPTCHA" if is_captcha(cf_response) else "Unexpected"
        log.error("%s response", rtype)
        log.debug("Headers:\n%s", cf_response.headers)
        log.debug("Content:\n%s", cf_response.text)
        raise exception.StopExtraction()
    if location[0] == "/":
        location = root + location

    for cookie in cf_response.cookies:
        if cookie.name == "cf_clearance":
            return location, cookie.domain, {
                cookie.name: cookie.value,
                "__cfduid" : response.cookies.get("__cfduid", ""),
            }
    return location, "", {}


def solve_js_challenge(page, netloc):
    """Evaluate JS challenge in 'page' to get 'jschl_answer' value"""

    # build variable name
    # e.g. '...f, wqnVscP={"DERKbJk":+(...' --> wqnVscP.DERKbJk
    data, pos = text.extract_all(page, (
        ('var' , ',f, ', '='),
        ('key' , '"'   , '"'),
        ('expr', ':'   , '}'),
    ))
    variable = "{}.{}".format(data["var"], data["key"])
    vlength = len(variable)

    # evaluate the initial expression
    solution = evaluate_expression(data["expr"], page, netloc)

    # iterator over all remaining expressions
    # and combine their values in 'solution'
    expressions = text.extract(
        page, "'challenge-form');", "f.submit();", pos)[0]
    for expr in expressions.split(";")[1:]:

        if expr.startswith(variable):
            # select arithmetc function based on operator (+/-/*)
            func = OPERATORS[expr[vlength]]
            # evaluate the rest of the expression
            value = evaluate_expression(expr[vlength+2:], page, netloc)
            # combine expression value with our current solution
            solution = func(solution, value)

        elif expr.startswith("a.value"):
            if "t.length)" in expr:
                # add length of hostname
                solution += len(netloc)
            if ".toFixed(" in expr:
                # trim solution to 10 decimal places
                # and strip trailing zeros
                solution = "{:.10f}".format(solution).rstrip("0")
            return solution


def evaluate_expression(expr, page, netloc, *,
                        split_re=re.compile(r"[(+]+([^)]*)\)")):
    """Evaluate a single Javascript expression for the challenge"""

    if expr.startswith("function(p)"):
        # get HTML element with ID k and evaluate the expression inside
        # 'eval(eval("document.getElementById(k).innerHTML"))'
        k, pos = text.extract(page, "k = '", "'")
        e, pos = text.extract(page, 'id="'+k+'"', '<')
        return evaluate_expression(e.partition(">")[2], page, netloc)

    if "/" in expr:
        # split the expression in numerator and denominator subexpressions,
        # evaluate them separately,
        # and return their fraction-result
        num, _, denom = expr.partition("/")
        num = evaluate_expression(num, page, netloc)
        denom = evaluate_expression(denom, page, netloc)
        return num / denom

    if "function(p)" in expr:
        # split initial expression and function code
        initial, _, func = expr.partition("function(p)")
        # evaluate said expression
        initial = evaluate_expression(initial, page, netloc)
        # get function argument and use it as index into 'netloc'
        index = evaluate_expression(func[func.index("}")+1:], page, netloc)
        return initial + ord(netloc[int(index)])

    # iterate over all subexpressions,
    # evaluate them,
    # and accumulate their values in 'result'
    result = ""
    for subexpr in split_re.findall(expr) or (expr,):
        result += str(sum(
            VALUES[part]
            for part in subexpr.split("[]")
        ))
    return int(result)


OPERATORS = {
    "+": operator.add,
    "-": operator.sub,
    "*": operator.mul,
}

VALUES = {
    "": 0,
    "+": 0,
    "!+": 1,
    "!!": 1,
    "+!!": 1,
}


@memcache(keyarg=0)
def cookies(category):
    return None
module to bypass cloudflare protection 9 years ago			`# -- coding: utf-8 --`

automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`# Copyright 2015-2019 Mike Fährmann`
module to bypass cloudflare protection 9 years ago			`#`
			`# This program is free software; you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License version 2 as`
			`# published by the Free Software Foundation.`

document and fix smaller bugs 9 years ago			`"""Methods to access sites behind Cloudflare protection"""`

improve and document cloudflare bypass code 7 years ago			`import re`
module to bypass cloudflare protection 9 years ago			`import time`
			`import operator`
ensure consistent headers and params ordering Necessary to avoid being labeled a bot and getting a CAPTCHA response after solving a Cloudflare challenge. 6 years ago			`import collections`
document and fix smaller bugs 9 years ago			`import urllib.parse`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`from . import text, exception`
cache cfclearance cookies 6 years ago			`from .cache import memcache`
module to bypass cloudflare protection 9 years ago
code adjustments according to pep8 8 years ago
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`def is_challenge(response):`
			`return (response.status_code == 503 and`
			`response.headers.get("Server", "").startswith("cloudflare") and`
			`b"jschl-answer" in response.content)`
implement decorator for cloudflare bypass this method for enabling and caching a cloudflare bypass for a requests.session object allows for different cache-timeouts for different domains 8 years ago
code adjustments according to pep8 8 years ago
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`def is_captcha(response):`
			`return (response.status_code == 403 and`
			`b'name="captcha-bypass"' in response.content)`


automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`def solve_challenge(session, response, kwargs):`
			`"""Solve Cloudflare challenge and get cfclearance cookie"""`
			`parsed = urllib.parse.urlsplit(response.url)`
			`root = parsed.scheme + "://" + parsed.netloc`

ensure consistent headers and params ordering Necessary to avoid being labeled a bot and getting a CAPTCHA response after solving a Cloudflare challenge. 6 years ago			`cf_kwargs = {}`
			`headers = cf_kwargs["headers"] = collections.OrderedDict()`
			`params = cf_kwargs["params"] = collections.OrderedDict()`
improve and document cloudflare bypass code 7 years ago
rewrite parts of the cloudflare bypass system 8 years ago			`page = response.text`
update and fix Cloudflare bypass 6 years ago			`params["s"] = text.extract(page, 'name="s" value="', '"')[0]`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`params["jschl_vc"] = text.extract(page, 'name="jschl_vc" value="', '"')[0]`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`params["pass"] = text.extract(page, 'name="pass" value="', '"')[0]`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`params["jschl_answer"] = solve_js_challenge(page, parsed.netloc)`
			`headers["Referer"] = response.url`
improve and document cloudflare bypass code 7 years ago
module to bypass cloudflare protection 9 years ago			`time.sleep(4)`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago
			`url = root + "/cdn-cgi/l/chk_jschl"`
			`cf_kwargs["allow_redirects"] = False`
ensure consistent headers and params ordering Necessary to avoid being labeled a bot and getting a CAPTCHA response after solving a Cloudflare challenge. 6 years ago			`cf_response = session.request("GET", url, **cf_kwargs)`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`location = cf_response.headers.get("Location")`
			`if not location:`
			`import logging`
			`log = logging.getLogger("cloudflare")`
			`rtype = "CAPTCHA" if is_captcha(cf_response) else "Unexpected"`
			`log.error("%s response", rtype)`
			`log.debug("Headers:\n%s", cf_response.headers)`
			`log.debug("Content:\n%s", cf_response.text)`
			`raise exception.StopExtraction()`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`if location[0] == "/":`
			`location = root + location`
cache cfclearance cookies 6 years ago
			`for cookie in cf_response.cookies:`
			`if cookie.name == "cf_clearance":`
			`return location, cookie.domain, {`
			`cookie.name: cookie.value,`
			`"__cfduid" : response.cookies.get("__cfduid", ""),`
			`}`
			`return location, "", {}`
module to bypass cloudflare protection 9 years ago
code adjustments according to pep8 8 years ago
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`def solve_js_challenge(page, netloc):`
			`"""Evaluate JS challenge in 'page' to get 'jschl_answer' value"""`
improve and document cloudflare bypass code 7 years ago
			`# build variable name`
			`# e.g. '...f, wqnVscP={"DERKbJk":+(...' --> wqnVscP.DERKbJk`
module to bypass cloudflare protection 9 years ago			`data, pos = text.extract_all(page, (`
fix cloudflare bypass 8 years ago			`('var' , ',f, ', '='),`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`('key' , '"' , '"'),`
			`('expr', ':' , '}'),`
module to bypass cloudflare protection 9 years ago			`))`
			`variable = "{}.{}".format(data["var"], data["key"])`
			`vlength = len(variable)`
improve and document cloudflare bypass code 7 years ago
			`# evaluate the initial expression`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`solution = evaluate_expression(data["expr"], page, netloc)`
improve and document cloudflare bypass code 7 years ago
			`# iterator over all remaining expressions`
			`# and combine their values in 'solution'`
code adjustments according to pep8 8 years ago			`expressions = text.extract(`
improve and document cloudflare bypass code 7 years ago			`page, "'challenge-form');", "f.submit();", pos)[0]`
module to bypass cloudflare protection 9 years ago			`for expr in expressions.split(";")[1:]:`
improve and document cloudflare bypass code 7 years ago
module to bypass cloudflare protection 9 years ago			`if expr.startswith(variable):`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`# select arithmetc function based on operator (+/-/*)`
			`func = OPERATORS[expr[vlength]]`
improve and document cloudflare bypass code 7 years ago			`# evaluate the rest of the expression`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`value = evaluate_expression(expr[vlength+2:], page, netloc)`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`# combine expression value with our current solution`
module to bypass cloudflare protection 9 years ago			`solution = func(solution, value)`
improve and document cloudflare bypass code 7 years ago
module to bypass cloudflare protection 9 years ago			`elif expr.startswith("a.value"):`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`if "t.length)" in expr:`
			`# add length of hostname`
			`solution += len(netloc)`
[cloudflare] fix bypass procedure Cloudflare challenges, at least for kissmanga and readcomiconline, now use slightly different Javascript expressions. Instead of a single value per expression, they now have a numerator and a denominator of a fractional value, which in the end gets truncated to 10 decimal places. 7 years ago			`if ".toFixed(" in expr:`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`# trim solution to 10 decimal places`
improve and document cloudflare bypass code 7 years ago			`# and strip trailing zeros`
smaller changes and fixes - fix the cloudflare challenge result if the last decimal places are zero (JS`s toFixed() removes trailing zeroes) - fix downloading of kissmanga chapter-pages hosted on blogspot (accessing blogspot with "kissmanga.com" as referrer yields a 401) - disable certificate validation for 'mangahere' tests - update flickr test result 7 years ago			`solution = "{:.10f}".format(solution).rstrip("0")`
[cloudflare] fix bypass procedure Cloudflare challenges, at least for kissmanga and readcomiconline, now use slightly different Javascript expressions. Instead of a single value per expression, they now have a numerator and a denominator of a fractional value, which in the end gets truncated to 10 decimal places. 7 years ago			`return solution`
module to bypass cloudflare protection 9 years ago
code adjustments according to pep8 8 years ago
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`def evaluate_expression(expr, page, netloc, *,`
			`split_re=re.compile(r"[(+]+([^)]*)\)")):`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`"""Evaluate a single Javascript expression for the challenge"""`
improve and document cloudflare bypass code 7 years ago
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`if expr.startswith("function(p)"):`
			`# get HTML element with ID k and evaluate the expression inside`
			`# 'eval(eval("document.getElementById(k).innerHTML"))'`
			`k, pos = text.extract(page, "k = '", "'")`
			`e, pos = text.extract(page, 'id="'+k+'"', '<')`
			`return evaluate_expression(e.partition(">")[2], page, netloc)`

[cloudflare] fix bypass procedure Cloudflare challenges, at least for kissmanga and readcomiconline, now use slightly different Javascript expressions. Instead of a single value per expression, they now have a numerator and a denominator of a fractional value, which in the end gets truncated to 10 decimal places. 7 years ago			`if "/" in expr:`
improve and document cloudflare bypass code 7 years ago			`# split the expression in numerator and denominator subexpressions,`
			`# evaluate them separately,`
			`# and return their fraction-result`
[cloudflare] fix bypass procedure Cloudflare challenges, at least for kissmanga and readcomiconline, now use slightly different Javascript expressions. Instead of a single value per expression, they now have a numerator and a denominator of a fractional value, which in the end gets truncated to 10 decimal places. 7 years ago			`num, _, denom = expr.partition("/")`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`num = evaluate_expression(num, page, netloc)`
			`denom = evaluate_expression(denom, page, netloc)`
			`return num / denom`

			`if "function(p)" in expr:`
			`# split initial expression and function code`
			`initial, _, func = expr.partition("function(p)")`
			`# evaluate said expression`
			`initial = evaluate_expression(initial, page, netloc)`
			`# get function argument and use it as index into 'netloc'`
			`index = evaluate_expression(func[func.index("}")+1:], page, netloc)`
			`return initial + ord(netloc[int(index)])`
[cloudflare] fix bypass procedure Cloudflare challenges, at least for kissmanga and readcomiconline, now use slightly different Javascript expressions. Instead of a single value per expression, they now have a numerator and a denominator of a fractional value, which in the end gets truncated to 10 decimal places. 7 years ago
improve and document cloudflare bypass code 7 years ago			`# iterate over all subexpressions,`
			`# evaluate them,`
			`# and accumulate their values in 'result'`
			`result = ""`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`for subexpr in split_re.findall(expr) or (expr,):`
improve and document cloudflare bypass code 7 years ago			`result += str(sum(`
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`VALUES[part]`
improve and document cloudflare bypass code 7 years ago			`for part in subexpr.split("[]")`
			`))`
			`return int(result)`
module to bypass cloudflare protection 9 years ago
code adjustments according to pep8 8 years ago
automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`OPERATORS = {`
module to bypass cloudflare protection 9 years ago			`"+": operator.add,`
			`"-": operator.sub,`
			`"*": operator.mul,`
			`}`

automatically detect and bypass cloudflare challenge pages TODO: cache and re-apply cfclearance cookies 6 years ago			`VALUES = {`
module to bypass cloudflare protection 9 years ago			`"": 0,`
			`"+": 0,`
			`"!+": 1,`
update cloudflare bypass (wip) This commit adds support for the two new JS expressions embedded in the overall challenge code. It does compute the correct 'js_answer' value, but the HTTP request to /cdn-cgi/l/chk_jschl to get the 'cf_clearance' cookie always results in a 403 response with a CAPTCHA inside (hence 'wip') All steps to make this HTTP request indistinguishable from a regular web browser (which passes the test) show no effect. This includes: - using the exact same HTTP headers as a web browser - follow query argument order - different wait times 6 years ago			`"!!": 1,`
module to bypass cloudflare protection 9 years ago			`"+!!": 1,`
			`}`
cache cfclearance cookies 6 years ago

			`@memcache(keyarg=0)`
			`def cookies(category):`
			`return None`