nucypher/nkms/crypto/keypairs.py

import msgpack
import sha3
from random import SystemRandom
from py_ecc.secp256k1 import N, privtopub, ecdsa_raw_sign, ecdsa_raw_recover
from npre import umbral
from typing import Iterable


class EncryptingKeypair(object):
    KEYSIZE = 32

    def __init__(self, privkey=None):
        self.pre = umbral.PRE()

        if not privkey:
            self.priv_key = self.pre.gen_priv()
        else:
            self.priv_key = privkey
        self._pub_key = None

    @property
    def pub_key(self):
        if self._pub_key is None:
            self._pub_key = self.pre.priv2pub(self.priv_key)
        return self._pub_key

    def generate_key(self, pubkey=None):
        """
        Generate a raw symmetric key and its encrypted counterpart.

        :rtype: Tuple(bytes, bytes)
        :return: Tuple of the raw encrypted key and the encrypted key
        """
        pubkey = pubkey or self.pub_key
        symm_key, enc_symm_key = self.pre.encapsulate(pubkey)
        return (symm_key, enc_symm_key)

    def decrypt_key(self, enc_key, privkey=None):
        """
        Decrypts an ECIES encrypted symmetric key.

        :param int enc_key: The ECIES encrypted key as an integer
        :param bytes privkey: The privkey to decapsulate from

        :rtype: int
        :return: Decrypted key as an integer
        """
        priv_key = privkey or self.priv_key
        return self.pre.decapsulate(priv_key, enc_key)

    def rekey(self, privkey_a, privkey_b):
        """
        Generates a re-encryption key in interactive mode.

        :param bytes privkey_a: Alice's private key
        :param bytes privkey_b: Bob's private key (or an ephemeral privkey)

        :rtype: bytes
        :return: Bytestring of a re-encryption key
        """
        return self.pre.rekey(privkey_a, privkey_b)

    def split_rekey(self, privkey_a, privkey_b, min_shares, num_shares):
        """
        Generates key shares that can be used to re-encrypt data. Requires
        `min_shares` to be able to successfully combine data for full key.

        :param int privkey_a: Alice's private key
        :param int privkey_b: Bob's private key (or an ephemeral privkey)
        :param int min_shares: Threshold of shares needed to reconstruct key
        :param int num_shares: Total number of shares to generate

        :rtype: List(RekeyFrag)
        :return: List of `num_shares` RekeyFrags
        """
        return self.pre.split_rekey(privkey_a, privkey_b, min_shares,
                                    num_shares)

    def combine(self, shares):
        """
        Reconstructs a secret from the given shares.

        :param list shares: List of secret share fragments.

        :rtype: EncryptedKey
        :return: EncryptedKey from `shares`
        """
        # TODO: What to do if not enough shares, or invalid?
        return self.pre.combine(shares)

    def reencrypt(self, reenc_key, ciphertext):
        """
        Re-encrypts the provided ciphertext for the recipient of the generated
        re-encryption key.

        :param bytes reenc_key: The re-encryption key from the proxy to Bob
        :param bytes ciphertext: The ciphertext to re-encrypt to Bob

        :rtype: bytes
        :return: Re-encrypted ciphertext
        """
        return self.pre.reencrypt(reenc_key, ciphertext)


class SigningKeypair(object):
    def __init__(self, privkey_bytes=None):
        self.secure_rand = SystemRandom()
        if privkey_bytes:
            self.priv_key = privkey_bytes
        else:
            # Key generation is random([1, N - 1])
            priv_number = self.secure_rand.randrange(1, N)
            self.priv_key = priv_number.to_bytes(32, byteorder='big')
        # Get the public component
        self.pub_key = privtopub(self.priv_key)

    def pubkey_bytes(self):
        return b''.join(i.to_bytes(32, 'big') for i in self.pub_key)

    def _vrs_msgpack_dump(self, v, r, s):
        v_bytes = v.to_bytes(1, byteorder='big')
        r_bytes = r.to_bytes(32, byteorder='big')
        s_bytes = s.to_bytes(32, byteorder='big')
        return msgpack.dumps((v_bytes, r_bytes, s_bytes))

    def _vrs_msgpack_load(self, msgpack_vrs):
        sig = msgpack.loads(msgpack_vrs)
        v = int.from_bytes(sig[0], byteorder='big')
        r = int.from_bytes(sig[1], byteorder='big')
        s = int.from_bytes(sig[2], byteorder='big')
        return (v, r, s)

    def digest(self, *messages):
        """
        Accepts an iterable containing bytes and digests it.

        :param bytes *args: Data to hash

        :rtype: bytes
        :return: bytestring of digested data
        """
        hash = sha3.keccak_256()
        for message in messages:
            hash.update(message)
        return hash.digest()

    def sign(self, msghash):
        """
        Signs a hashed message and returns a msgpack'ed v, r, and s.

        :param bytes msghash: Hash of the message

        :rtype: Bytestring
        :return: Msgpacked bytestring of v, r, and s (the signature)
        """
        v, r, s = ecdsa_raw_sign(msghash, self.priv_key)
        return self._vrs_msgpack_dump(v, r, s)

    def verify(self, msghash, signature, pubkey=None):
        """
        Takes a msgpacked signature and verifies the message.

        :param bytes msghash: The hashed message to verify
        :param bytes signature: The msgpacked signature (v, r, and s)
        :param bytes pubkey: Pubkey to validate signature for
                             Default is the keypair's pub_key.

        :rtype: Boolean
        :return: Is the signature valid or not?
        """
        if not pubkey:
            pubkey = self.pub_key
        sig = self._vrs_msgpack_load(signature)
        # Generate the public key from the signature and validate
        # TODO: Look into fixed processing time functions for comparison
        verify_sig = ecdsa_raw_recover(msghash, sig)
        return verify_sig == pubkey
Add sign/verify functions 2017-09-18 17:25:36 +00:00			`import msgpack`
Add digest function to handle iterables in SigningKeypair 2017-10-03 21:49:22 +00:00			`import sha3`
Add SigningKeypair object and add key generation capabilities 2017-09-18 16:59:34 +00:00			`from random import SystemRandom`
Add sign/verify functions 2017-09-18 17:25:36 +00:00			`from py_ecc.secp256k1 import N, privtopub, ecdsa_raw_sign, ecdsa_raw_recover`
Add generate_key method for umbral in EncryptingKeypair 2017-09-25 20:13:45 +00:00			`from npre import umbral`
Add digest function to handle iterables in SigningKeypair 2017-10-03 21:49:22 +00:00			`from typing import Iterable`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00

			`class EncryptingKeypair(object):`
Add KEYSIZE constant in EncryptingKeypair 2017-09-26 16:46:49 +00:00			`KEYSIZE = 32`

Lazy generation of pubkey 2017-09-30 02:44:26 +00:00			`def __init__(self, privkey=None):`
Add generate_key method for umbral in EncryptingKeypair 2017-09-25 20:13:45 +00:00			`self.pre = umbral.PRE()`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00
Lazy generation of pubkey 2017-09-30 02:44:26 +00:00			`if not privkey:`
			`self.priv_key = self.pre.gen_priv()`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00			`else:`
Lazy generation of pubkey 2017-09-30 02:44:26 +00:00			`self.priv_key = privkey`
			`self._pub_key = None`

			`@property`
			`def pub_key(self):`
			`if self._pub_key is None:`
			`self._pub_key = self.pre.priv2pub(self.priv_key)`
			`return self._pub_key`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00
Allow generate_key to have a pubkey param 2017-09-26 20:06:52 +00:00			`def generate_key(self, pubkey=None):`
Add generate_key method for umbral in EncryptingKeypair 2017-09-25 20:13:45 +00:00			`"""`
			`Generate a raw symmetric key and its encrypted counterpart.`

			`:rtype: Tuple(bytes, bytes)`
			`:return: Tuple of the raw encrypted key and the encrypted key`
			`"""`
Allow generate_key to have a pubkey param 2017-09-26 20:06:52 +00:00			`pubkey = pubkey or self.pub_key`
			`symm_key, enc_symm_key = self.pre.encapsulate(pubkey)`
Add generate_key method for umbral in EncryptingKeypair 2017-09-25 20:13:45 +00:00			`return (symm_key, enc_symm_key)`

Fix test_rekey_and_reencryption 2017-09-27 06:35:00 +00:00			`def decrypt_key(self, enc_key, privkey=None):`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00			`"""`
Add decrypt_key method and remove unneeded encrypt/decrypt methods 2017-09-25 20:17:03 +00:00			`Decrypts an ECIES encrypted symmetric key.`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00
Handle serialization from bytes->int on KeyRing.decrypt_key 2017-09-26 16:47:18 +00:00			`:param int enc_key: The ECIES encrypted key as an integer`
Fix test_rekey_and_reencryption 2017-09-27 06:35:00 +00:00			`:param bytes privkey: The privkey to decapsulate from`
Handle serialization from bytes->int on KeyRing.decrypt_key 2017-09-26 16:47:18 +00:00
			`:rtype: int`
			`:return: Decrypted key as an integer`
Move packages around and use namespace nkms.crypto.keypairs and nkms.crypto.keyring 2017-09-19 15:34:14 +00:00			`"""`
Fix test_rekey_and_reencryption 2017-09-27 06:35:00 +00:00			`priv_key = privkey or self.priv_key`
			`return self.pre.decapsulate(priv_key, enc_key)`
Add SigningKeypair object and add key generation capabilities 2017-09-18 16:59:34 +00:00
Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`def rekey(self, privkey_a, privkey_b):`
Add rekey method in EncryptingKeypair 2017-09-21 22:13:01 +00:00			`"""`
Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`Generates a re-encryption key in interactive mode.`
Add rekey method in EncryptingKeypair 2017-09-21 22:13:01 +00:00
Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`:param bytes privkey_a: Alice's private key`
			`:param bytes privkey_b: Bob's private key (or an ephemeral privkey)`
Add rekey method in EncryptingKeypair 2017-09-21 22:13:01 +00:00
			`:rtype: bytes`
Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`:return: Bytestring of a re-encryption key`
Add rekey method in EncryptingKeypair 2017-09-21 22:13:01 +00:00			`"""`
Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`return self.pre.rekey(privkey_a, privkey_b)`

Add split_rekey method to EncryptingKeypair 2017-09-25 20:54:09 +00:00			`def split_rekey(self, privkey_a, privkey_b, min_shares, num_shares):`
			`"""`
Fix methods in EncryptingKeypair and fix split key reencryption tests 2017-09-25 23:28:53 +00:00			`Generates key shares that can be used to re-encrypt data. Requires`
			`min_shares` to be able to successfully combine data for full key.
Add split_rekey method to EncryptingKeypair 2017-09-25 20:54:09 +00:00
			`:param int privkey_a: Alice's private key`
			`:param int privkey_b: Bob's private key (or an ephemeral privkey)`
			`:param int min_shares: Threshold of shares needed to reconstruct key`
			`:param int num_shares: Total number of shares to generate`

			`:rtype: List(RekeyFrag)`
			:return: List of `num_shares` RekeyFrags
			`"""`
			`return self.pre.split_rekey(privkey_a, privkey_b, min_shares,`
			`num_shares)`

Rename EncryptingKeypair build_secret to combine 2017-09-26 16:38:54 +00:00			`def combine(self, shares):`
Add method build_rekey for EncryptingKeypair 2017-09-25 20:58:27 +00:00			`"""`
Fix methods in EncryptingKeypair and fix split key reencryption tests 2017-09-25 23:28:53 +00:00			`Reconstructs a secret from the given shares.`
Add method build_rekey for EncryptingKeypair 2017-09-25 20:58:27 +00:00
Fix methods in EncryptingKeypair and fix split key reencryption tests 2017-09-25 23:28:53 +00:00			`:param list shares: List of secret share fragments.`
Add method build_rekey for EncryptingKeypair 2017-09-25 20:58:27 +00:00
			`:rtype: EncryptedKey`
			:return: EncryptedKey from `shares`
			`"""`
			`# TODO: What to do if not enough shares, or invalid?`
			`return self.pre.combine(shares)`

Add rekey and reencrypt methods to EncryptingKeypair 2017-09-25 20:27:03 +00:00			`def reencrypt(self, reenc_key, ciphertext):`
			`"""`
			`Re-encrypts the provided ciphertext for the recipient of the generated`
			`re-encryption key.`

			`:param bytes reenc_key: The re-encryption key from the proxy to Bob`
			`:param bytes ciphertext: The ciphertext to re-encrypt to Bob`

			`:rtype: bytes`
			`:return: Re-encrypted ciphertext`
			`"""`
			`return self.pre.reencrypt(reenc_key, ciphertext)`
Add rekey method in EncryptingKeypair 2017-09-21 22:13:01 +00:00

Add SigningKeypair object and add key generation capabilities 2017-09-18 16:59:34 +00:00			`class SigningKeypair(object):`
			`def __init__(self, privkey_bytes=None):`
			`self.secure_rand = SystemRandom()`
			`if privkey_bytes:`
			`self.priv_key = privkey_bytes`
			`else:`
			`# Key generation is random([1, N - 1])`
			`priv_number = self.secure_rand.randrange(1, N)`
			`self.priv_key = priv_number.to_bytes(32, byteorder='big')`
			`# Get the public component`
			`self.pub_key = privtopub(self.priv_key)`
Add sign/verify functions 2017-09-18 17:25:36 +00:00
Removed the awful list comp tuple pack in favor of @michwell's much better way. If anybody ever accuses me of writing that thing, I reserve the right to say I was hacked. 2017-10-04 04:34:49 +00:00			`def pubkey_bytes(self):`
			`return b''.join(i.to_bytes(32, 'big') for i in self.pub_key)`

Refactor the v, r, and s msgpack loading into their own methods 2017-09-18 17:54:59 +00:00			`def _vrs_msgpack_dump(self, v, r, s):`
			`v_bytes = v.to_bytes(1, byteorder='big')`
			`r_bytes = r.to_bytes(32, byteorder='big')`
			`s_bytes = s.to_bytes(32, byteorder='big')`
			`return msgpack.dumps((v_bytes, r_bytes, s_bytes))`

			`def _vrs_msgpack_load(self, msgpack_vrs):`
			`sig = msgpack.loads(msgpack_vrs)`
			`v = int.from_bytes(sig[0], byteorder='big')`
			`r = int.from_bytes(sig[1], byteorder='big')`
			`s = int.from_bytes(sig[2], byteorder='big')`
			`return (v, r, s)`

Policy models are now worked out such that the TreasureMap is stored on a 'free tier' k:v DHT. 2017-10-04 04:13:46 +00:00			`def digest(self, *messages):`
Add digest function to handle iterables in SigningKeypair 2017-10-03 21:49:22 +00:00			`"""`
			`Accepts an iterable containing bytes and digests it.`

Use *args instead of an iterable for SigningKeypair.digest 2017-10-04 00:08:40 +00:00			`:param bytes *args: Data to hash`
Add digest function to handle iterables in SigningKeypair 2017-10-03 21:49:22 +00:00
			`:rtype: bytes`
			`:return: bytestring of digested data`
			`"""`
			`hash = sha3.keccak_256()`
Policy models are now worked out such that the TreasureMap is stored on a 'free tier' k:v DHT. 2017-10-04 04:13:46 +00:00			`for message in messages:`
			`hash.update(message)`
Add digest function to handle iterables in SigningKeypair 2017-10-03 21:49:22 +00:00			`return hash.digest()`

Add sign/verify functions 2017-09-18 17:25:36 +00:00			`def sign(self, msghash):`
			`"""`
			`Signs a hashed message and returns a msgpack'ed v, r, and s.`

			`:param bytes msghash: Hash of the message`

			`:rtype: Bytestring`
			`:return: Msgpacked bytestring of v, r, and s (the signature)`
			`"""`
			`v, r, s = ecdsa_raw_sign(msghash, self.priv_key)`
Refactor the v, r, and s msgpack loading into their own methods 2017-09-18 17:54:59 +00:00			`return self._vrs_msgpack_dump(v, r, s)`
Add sign/verify functions 2017-09-18 17:25:36 +00:00
Add pubkey param to signing keypair's verify methods 2017-09-19 16:10:09 +00:00			`def verify(self, msghash, signature, pubkey=None):`
Add sign/verify functions 2017-09-18 17:25:36 +00:00			`"""`
			`Takes a msgpacked signature and verifies the message.`

			`:param bytes msghash: The hashed message to verify`
			`:param bytes signature: The msgpacked signature (v, r, and s)`
Add pubkey param to signing keypair's verify methods 2017-09-19 16:10:09 +00:00			`:param bytes pubkey: Pubkey to validate signature for`
			`Default is the keypair's pub_key.`
Add sign/verify functions 2017-09-18 17:25:36 +00:00
			`:rtype: Boolean`
			`:return: Is the signature valid or not?`
			`"""`
Add pubkey param to signing keypair's verify methods 2017-09-19 16:10:09 +00:00			`if not pubkey:`
			`pubkey = self.pub_key`
Refactor the v, r, and s msgpack loading into their own methods 2017-09-18 17:54:59 +00:00			`sig = self._vrs_msgpack_load(signature)`
Add sign/verify functions 2017-09-18 17:25:36 +00:00			`# Generate the public key from the signature and validate`
			`# TODO: Look into fixed processing time functions for comparison`
Refactor the v, r, and s msgpack loading into their own methods 2017-09-18 17:54:59 +00:00			`verify_sig = ecdsa_raw_recover(msghash, sig)`
Add pubkey param to signing keypair's verify methods 2017-09-19 16:10:09 +00:00			`return verify_sig == pubkey`