Halaman utama Jelajahi Bantuan
Masuk
lance
/
DexDemo
1
0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Pohon: 4ae9ad96b0
Ranting Tag
DexDemo
/
frontend
/
venv
/
lib
/
python3.12
/
site-packages
/
Crypto
/
Cipher
/
_mode_kw.py

_mode_kw.py 4.3 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. import struct
    2. 

  2. from collections import deque
    3. 

  3. 

  4. from types import ModuleType
    5. 

  5. from typing import Union
    6. 

  6. 

  7. from Crypto.Util.strxor import strxor
    8. 

  8. 

  9. 

  10. def W(cipher: ModuleType,
    11. 

  11.       plaintext: Union[bytes, bytearray]) -> bytes:
    12. 

  12. 

  13.     S = [plaintext[i:i+8] for i in range(0, len(plaintext), 8)]
    14. 

  14.     n = len(S)
    15. 

  15.     s = 6 * (n - 1)
    16. 

  16.     A = S[0]
    17. 

  17.     R = deque(S[1:])
    18. 

  18. 

  19.     for t in range(1, s + 1):
    20. 

  20.         t_64 = struct.pack('>Q', t)
    21. 

  21.         ct = cipher.encrypt(A + R.popleft())
    22. 

  22.         A = strxor(ct[:8], t_64)
    23. 

  23.         R.append(ct[8:])
    24. 

  24. 

  25.     return A + b''.join(R)
    26. 

  26. 

  27. 

  28. def W_inverse(cipher: ModuleType,
    29. 

  29.               ciphertext: Union[bytes, bytearray]) -> bytes:
    30. 

  30. 

  31.     C = [ciphertext[i:i+8] for i in range(0, len(ciphertext), 8)]
    32. 

  32.     n = len(C)
    33. 

  33.     s = 6 * (n - 1)
    34. 

  34.     A = C[0]
    35. 

  35.     R = deque(C[1:])
    36. 

  36. 

  37.     for t in range(s, 0, -1):
    38. 

  38.         t_64 = struct.pack('>Q', t)
    39. 

  39.         pt = cipher.decrypt(strxor(A, t_64) + R.pop())
    40. 

  40.         A = pt[:8]
    41. 

  41.         R.appendleft(pt[8:])
    42. 

  42. 

  43.     return A + b''.join(R)
    44. 

  44. 

  45. 

  46. class KWMode(object):
    47. 

  47.     """Key Wrap (KW) mode.
    48. 

  48. 

  49.     This is a deterministic Authenticated Encryption (AE) mode
    50. 

  50.     for protecting cryptographic keys. See `NIST SP800-38F`_.
    51. 

  51. 

  52.     It provides both confidentiality and authenticity, and it designed
    53. 

  53.     so that any bit of the ciphertext depends on all bits of the plaintext.
    54. 

  54. 

  55.     This mode is only available for ciphers that operate on 128 bits blocks
    56. 

  56.     (e.g., AES).
    57. 

  57. 

  58.     .. _`NIST SP800-38F`: http://csrc.nist.gov/publications/nistpubs/800-38F/SP-800-38F.pdf
    59. 

  59. 

  60.     :undocumented: __init__
    61. 

  61.     """
    62. 

  62. 

  63.     def __init__(self,
    64. 

  64.                  factory: ModuleType,
    65. 

  65.                  key: Union[bytes, bytearray]):
    66. 

  66. 

  67.         self.block_size = factory.block_size
    68. 

  68.         if self.block_size != 16:
    69. 

  69.             raise ValueError("Key Wrap mode is only available for ciphers"
    70. 

  70.                              " that operate on 128 bits blocks")
    71. 

  71. 

  72.         self._factory = factory
    73. 

  73.         self._cipher = factory.new(key, factory.MODE_ECB)
    74. 

  74.         self._done = False
    75. 

  75. 

  76.     def seal(self, plaintext: Union[bytes, bytearray]) -> bytes:
    77. 

  77.         """Encrypt and authenticate (wrap) a cryptographic key.
    78. 

  78. 

  79.         Args:
    80. 

  80.           plaintext:
    81. 

  81.             The cryptographic key to wrap.
    82. 

  82.             It must be at least 16 bytes long, and its length
    83. 

  83.             must be a multiple of 8.
    84. 

  84. 

  85.         Returns:
    86. 

  86.             The wrapped key.
    87. 

  87.         """
    88. 

  88. 

  89.         if self._done:
    90. 

  90.             raise ValueError("The cipher cannot be used more than once")
    91. 

  91. 

  92.         if len(plaintext) % 8:
    93. 

  93.             raise ValueError("The plaintext must have length multiple of 8 bytes")
    94. 

  94. 

  95.         if len(plaintext) < 16:
    96. 

  96.             raise ValueError("The plaintext must be at least 16 bytes long")
    97. 

  97. 

  98.         if len(plaintext) >= 2**32:
    99. 

  99.             raise ValueError("The plaintext is too long")
    100. 

  100. 

  101.         res = W(self._cipher, b'\xA6\xA6\xA6\xA6\xA6\xA6\xA6\xA6' + plaintext)
    102. 

  102.         self._done = True
    103. 

  103.         return res
    104. 

  104. 

  105.     def unseal(self, ciphertext: Union[bytes, bytearray]) -> bytes:
    106. 

  106.         """Decrypt and authenticate (unwrap) a cryptographic key.
    107. 

  107. 

  108.         Args:
    109. 

  109.           ciphertext:
    110. 

  110.             The cryptographic key to unwrap.
    111. 

  111.             It must be at least 24 bytes long, and its length
    112. 

  112.             must be a multiple of 8.
    113. 

  113. 

  114.         Returns:
    115. 

  115.             The original key.
    116. 

  116. 

  117.         Raises: ValueError
    118. 

  118.            If the ciphertext or the key are not valid.
    119. 

  119.         """
    120. 

  120. 

  121.         if self._done:
    122. 

  122.             raise ValueError("The cipher cannot be used more than once")
    123. 

  123. 

  124.         if len(ciphertext) % 8:
    125. 

  125.             raise ValueError("The ciphertext must have length multiple of 8 bytes")
    126. 

  126. 

  127.         if len(ciphertext) < 24:
    128. 

  128.             raise ValueError("The ciphertext must be at least 24 bytes long")
    129. 

  129. 

  130.         pt = W_inverse(self._cipher, ciphertext)
    131. 

  131. 

  132.         if pt[:8] != b'\xA6\xA6\xA6\xA6\xA6\xA6\xA6\xA6':
    133. 

  133.             raise ValueError("Incorrect integrity check value")
    134. 

  134.         self._done = True
    135. 

  135. 

  136.         return pt[8:]
    137. 

  137. 

  138. 

  139. def _create_kw_cipher(factory: ModuleType,
    140. 

  140.                       **kwargs: Union[bytes, bytearray]) -> KWMode:
    141. 

  141.     """Create a new block cipher in Key Wrap mode.
    142. 

  142. 

  143.     Args:
    144. 

  144.       factory:
    145. 

  145.         A block cipher module, taken from `Crypto.Cipher`.
    146. 

  146.         The cipher must have block length of 16 bytes, such as AES.
    147. 

  147. 

  148.     Keywords:
    149. 

  149.       key:
    150. 

  150.         The secret key to use to seal or unseal.
    151. 

  151.     """
    152. 

  152. 

  153.     try:
    154. 

  154.         key = kwargs["key"]
    155. 

  155.     except KeyError as e:
    156. 

  156.         raise TypeError("Missing parameter:" + str(e))
    157. 

  157. 

  158.     return KWMode(factory, key)
    159.