Python encrypt_sym 예제들

예제 #1

 def test_raw_decrypt(monitored_benchmark, payload):
     """
     Decrypt raw payload using default mode from crypto module.
     """
     key = payload(32)
     iv, ciphertext = _crypto.encrypt_sym(payload(size), key)
     monitored_benchmark(_crypto.decrypt_sym, ciphertext, key, iv)

예제 #2

파일: test_crypto.py 프로젝트: leapcode/soledad

 def test_raw_decrypt(monitored_benchmark, payload):
     """
     Decrypt raw payload using default mode from crypto module.
     """
     key = payload(32)
     iv, ciphertext = _crypto.encrypt_sym(payload(size), key)
     monitored_benchmark(_crypto.decrypt_sym, ciphertext, key, iv)

예제 #3

파일: test_crypto.py 프로젝트: leapcode/soledad

 def test_encrypt_decrypt_sym(self):
     # generate 256-bit key
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     plaintext = _crypto.decrypt_sym(cyphertext, key, iv)
     self.assertEqual('data', plaintext)

예제 #4

 def test_encrypt_decrypt_sym(self):
     # generate 256-bit key
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     plaintext = _crypto.decrypt_sym(cyphertext, key, iv)
     self.assertEqual('data', plaintext)

예제 #5

파일: test_crypto.py 프로젝트: leapcode/soledad

 def test_decrypt_with_wrong_key_raises(self):
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     wrongkey = os.urandom(32)  # 256-bits key
     # ensure keys are different in case we are extremely lucky
     while wrongkey == key:
         wrongkey = os.urandom(32)
     with pytest.raises(InvalidTag):
         _crypto.decrypt_sym(cyphertext, wrongkey, iv)

예제 #6

 def test_decrypt_with_wrong_key_raises(self):
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     wrongkey = os.urandom(32)  # 256-bits key
     # ensure keys are different in case we are extremely lucky
     while wrongkey == key:
         wrongkey = os.urandom(32)
     with pytest.raises(InvalidTag):
         _crypto.decrypt_sym(cyphertext, wrongkey, iv)

예제 #7

파일: test_crypto.py 프로젝트: leapcode/soledad

 def test_decrypt_with_wrong_iv_raises(self):
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     # get a different iv by changing the first byte
     rawiv = binascii.a2b_base64(iv)
     wrongiv = rawiv
     while wrongiv == rawiv:
         wrongiv = os.urandom(1) + rawiv[1:]
     with pytest.raises(InvalidTag):
         _crypto.decrypt_sym(
             cyphertext, key, iv=binascii.b2a_base64(wrongiv))

예제 #8

 def test_decrypt_with_wrong_iv_raises(self):
     key = os.urandom(32)
     iv, cyphertext = _crypto.encrypt_sym('data', key)
     self.assertTrue(cyphertext is not None)
     self.assertTrue(cyphertext != '')
     self.assertTrue(cyphertext != 'data')
     # get a different iv by changing the first byte
     rawiv = binascii.a2b_base64(iv)
     wrongiv = rawiv
     while wrongiv == rawiv:
         wrongiv = os.urandom(1) + rawiv[1:]
     with pytest.raises(InvalidTag):
         _crypto.decrypt_sym(cyphertext,
                             key,
                             iv=binascii.b2a_base64(wrongiv))

예제 #9

파일: crypto.py 프로젝트: leapcode/soledad

 def encrypt(self, secrets):
     encoded = {}
     for name, value in secrets.iteritems():
         encoded[name] = binascii.b2a_base64(value)
     plaintext = json.dumps(encoded)
     salt = os.urandom(64)  # TODO: get salt length from somewhere else
     key = self._get_key(salt)
     iv, ciphertext = encrypt_sym(plaintext, key,
                                  method=ENC_METHOD.aes_256_gcm)
     encrypted = {
         'version': self.VERSION,
         'kdf': 'scrypt',
         'kdf_salt': binascii.b2a_base64(salt),
         'kdf_length': len(key),
         'cipher': ENC_METHOD.aes_256_gcm,
         'length': len(plaintext),
         'iv': str(iv),
         'secrets': binascii.b2a_base64(ciphertext),
     }
     return encrypted

예제 #10

 def encrypt(self, secrets):
     encoded = {}
     for name, value in secrets.iteritems():
         encoded[name] = binascii.b2a_base64(value)
     plaintext = json.dumps(encoded)
     salt = os.urandom(64)  # TODO: get salt length from somewhere else
     key = self._get_key(salt)
     iv, ciphertext = encrypt_sym(plaintext, key,
                                  method=ENC_METHOD.aes_256_gcm)
     encrypted = {
         'version': self.VERSION,
         'kdf': 'scrypt',
         'kdf_salt': binascii.b2a_base64(salt),
         'kdf_length': len(key),
         'cipher': ENC_METHOD.aes_256_gcm,
         'length': len(plaintext),
         'iv': str(iv),
         'secrets': binascii.b2a_base64(ciphertext),
     }
     return encrypted

예제 #11

파일: test_crypto.py 프로젝트: DarkDare/soledad

 def test_raw_decrypt(benchmark, payload):
     key = payload(32)
     iv, ciphertext = _crypto.encrypt_sym(payload(size), key)
     benchmark(_crypto.decrypt_sym, ciphertext, key, iv)