def test_rsa_provider_basic(self):
silently_remove('./rsa-test.public_key.pem')
silently_remove('./rsa-test.private_key.pem')
provider = LocalRsaProvider(dir='./',
key='rsa-test',
passphrase=random_string(8))
self.assertEqual(provider.wrap_alg,
"RSA/NONE/OAEPWithSHA-1AndMGF1Padding")
self.assertEqual(provider.cipher.alg, "AES/CTR/NoPadding")
plain_key = provider.get_key()
self.assertEqual(len(plain_key), provider.cipher.key_len)
plain_iv = provider.get_iv()
with patch.object(oss2.utils,
'random_key',
return_value=plain_key,
autospect=True):
with patch.object(oss2.utils,
'random_iv',
return_value=plain_iv,
autospect=True):
content_crypto_material = provider.create_content_material()
self.assertFalse(content_crypto_material.is_unencrypted())
decrypted_key = provider.decrypt_encrypted_key(
content_crypto_material.encrypted_key)
decrypted_iv = provider.decrypt_encrypted_iv(
content_crypto_material.encrypted_iv)
self.assertEqual(plain_key, decrypted_key)
self.assertEqual(plain_iv, decrypted_iv)
silently_remove('./rsa-test.public_key.pem')
silently_remove('./rsa-test.private_key.pem')
provider = RsaProvider(key_pair=key_pair, passphrase=random_string(8))
self.assertEqual(provider.wrap_alg, "RSA/NONE/PKCS1Padding")
self.assertEqual(provider.cipher.alg, "AES/CTR/NoPadding")
plain_key = provider.get_key()
self.assertEqual(len(plain_key), provider.cipher.key_len)
plain_iv = provider.get_iv()
with patch.object(oss2.utils,
'random_key',
return_value=plain_key,
autospect=True):
with patch.object(oss2.utils,
'random_iv',
return_value=plain_iv,
autospect=True):
content_crypto_material = provider.create_content_material()
self.assertFalse(content_crypto_material.is_unencrypted())
decrypted_key = provider.decrypt_encrypted_key(
content_crypto_material.encrypted_key)
decrypted_iv = provider.decrypt_encrypted_iv(
content_crypto_material.encrypted_iv)
self.assertEqual(plain_key, decrypted_key)
self.assertEqual(plain_iv, decrypted_iv)
def test_rsa_provider_adapter(self):
silently_remove('./rsa-test.public_key.pem')
silently_remove('./rsa-test.private_key.pem')
provider = LocalRsaProvider(dir='./', key='rsa-test')
content = b'a' * random.randint(1, 100) * 1024
content_crypto_material = provider.create_content_material()
plain_key = provider.decrypt_encrypted_key(
content_crypto_material.encrypted_key)
plain_iv = provider.decrypt_encrypted_iv(
content_crypto_material.encrypted_iv)
cipher = content_crypto_material.cipher
stream_encrypted = provider.make_encrypt_adapter(content, cipher)
encrypted_content = stream_encrypted.read()
# reset cipher
cipher.initialize(plain_key, plain_iv)
stream_decrypted = provider.make_decrypt_adapter(
encrypted_content, cipher)
self.assertEqual(content, stream_decrypted.read())
silently_remove('./rsa-test.public_key.pem')
silently_remove('./rsa-test.private_key.pem')
provider = RsaProvider(key_pair)
content = b'b' * random.randint(1, 100) * 1024
content_crypto_material = provider.create_content_material()
plain_key = provider.decrypt_encrypted_key(
content_crypto_material.encrypted_key)
plain_iv = provider.decrypt_encrypted_iv(
content_crypto_material.encrypted_iv)
cipher = content_crypto_material.cipher
stream_encrypted = provider.make_encrypt_adapter(content, cipher)
encrypted_content = stream_encrypted.read()
# reset cipher
cipher.initialize(plain_key, plain_iv)
stream_decrypted = provider.make_decrypt_adapter(
encrypted_content, cipher)
self.assertEqual(content, stream_decrypted.read())