nucypher/nkms/characters.py

from kademlia.network import Server
from nkms.crypto.constants import NOT_SIGNED
from nkms.crypto.keyring import KeyRing
from nkms.network.server import NuCypherDHTServer, NuCypherSeedOnlyDHTServer


class Character(object):
    """
    A base-class for any character in our cryptography protocol narrative.
    """
    _server = None
    _server_class = Server
    _actor_mapping = {}

    def __init__(self, attach_server=True, keyring: KeyRing=None):
        if attach_server:
            self.attach_server()
        self.keyring = keyring or KeyRing()

    def attach_server(self, ksize=20, alpha=3, id=None, storage=None,
                      *args, **kwargs) -> None:
        self._server = self._server_class(ksize, alpha, id, storage, *args, **kwargs)

    @property
    def server(self) -> Server:
        if self._server:
            return self._server
        else:
            raise RuntimeError("Server hasn't been attached.")

    def learn_about_actor(self, actor_id, actor):
        self._actor_mapping[actor_id] = actor

    def encrypt_for(self, recipient: str, cleartext: bytes, sign: bool = True,
                    sign_cleartext=True) -> tuple:
        """
        Looks up recipient actor, finds that actor's pubkey_enc on our keyring, and encrypts for them.
        Optionally signs the message as well.

        :param recipient: The character whose public key will be used to encrypt cleartext.
        :param cleartext: The secret to be encrypted.
        :param sign: Whether or not to sign the message.
        :param sign_cleartext: When signing, the cleartext is signed if this is True,  Otherwise, the resulting ciphertext is signed.
        :return: A tuple, (ciphertext, signature).  If sign==False, then signature will be NOT_SIGNED.
        """
        actor = self._lookup_actor(recipient)
        pubkey_sign_id = actor.pubkey_collection['signing']
        ciphertext = self.keyring.encrypt_for(pubkey_sign_id)

        if sign:
            if sign_cleartext:
                signature = self.keyring.sign(cleartext)
            else:
                signature = self.keyring.sign(ciphertext)
        else:
            signature = NOT_SIGNED

        return ciphertext, signature

    def verify_from(self, actor_whom_sender_claims_to_be: str, signature: bytes,
                    ciphertext: bytes = None, decrypt=True,
                    signature_is_on_cleartext=True) -> tuple:
        """
        Inverse of encrypt_for.

        :param actor_that_sender_claims_to_be: The str representation of the actor on this KeyRing
            that the sender is claiming to be.
        :param ciphertext:
        :param decrypt:
        :param signature_is_on_cleartext:
        :return:
        """
        actor = self._lookup_actor(actor_whom_sender_claims_to_be)
        pubkey_sign_id = actor.pubkey_collection['signing']
        signature = self.keyring.sign()
        self.keyring.encrypt_for(pubkey_sign_id)

    def _lookup_actor(self, actor_id: str):
        try:
            return self._actor_mapping[actor_id]
        except KeyError::
            raise self.ActorNotFound("We haven't learned of an actor with ID {}".format(actor_id))


class Ursula(Character):
    _server_class = NuCypherDHTServer


class Alice(Character):
    _server_class = NuCypherSeedOnlyDHTServer

    def find_best_ursula(self):
        # TODO: Right now this just finds the nearest node and returns its ip and port.  Make it do something useful.
        return self.server.bootstrappableNeighbors()[0]
First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00			`from kademlia.network import Server`
Moving interface functions to Character class; let's see how this looks. 2017-10-05 19:20:53 +00:00			`from nkms.crypto.constants import NOT_SIGNED`
Create a KeyRing object on __init__ 2017-09-28 17:03:54 +00:00			`from nkms.crypto.keyring import KeyRing`
First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00			`from nkms.network.server import NuCypherDHTServer, NuCypherSeedOnlyDHTServer`


			`class Character(object):`
			`"""`
			`A base-class for any character in our cryptography protocol narrative.`
			`"""`
			`_server = None`
			`_server_class = Server`
Moving interface functions to Character class; let's see how this looks. 2017-10-05 19:20:53 +00:00			`_actor_mapping = {}`
First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00
Moving interface functions to Character class; let's see how this looks. 2017-10-05 19:20:53 +00:00			`def __init__(self, attach_server=True, keyring: KeyRing=None):`
First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00			`if attach_server:`
			`self.attach_server()`
Moving interface functions to Character class; let's see how this looks. 2017-10-05 19:20:53 +00:00			`self.keyring = keyring or KeyRing()`
First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00
			`def attach_server(self, ksize=20, alpha=3, id=None, storage=None,`
			`args, *kwargs) -> None:`
			`self._server = self._server_class(ksize, alpha, id, storage, args, *kwargs)`

			`@property`
			`def server(self) -> Server:`
			`if self._server:`
			`return self._server`
			`else:`
			`raise RuntimeError("Server hasn't been attached.")`

Moving interface functions to Character class; let's see how this looks. 2017-10-05 19:20:53 +00:00			`def learn_about_actor(self, actor_id, actor):`
			`self._actor_mapping[actor_id] = actor`

			`def encrypt_for(self, recipient: str, cleartext: bytes, sign: bool = True,`
			`sign_cleartext=True) -> tuple:`
			`"""`
			`Looks up recipient actor, finds that actor's pubkey_enc on our keyring, and encrypts for them.`
			`Optionally signs the message as well.`

			`:param recipient: The character whose public key will be used to encrypt cleartext.`
			`:param cleartext: The secret to be encrypted.`
			`:param sign: Whether or not to sign the message.`
			`:param sign_cleartext: When signing, the cleartext is signed if this is True, Otherwise, the resulting ciphertext is signed.`
			`:return: A tuple, (ciphertext, signature). If sign==False, then signature will be NOT_SIGNED.`
			`"""`
			`actor = self._lookup_actor(recipient)`
			`pubkey_sign_id = actor.pubkey_collection['signing']`
			`ciphertext = self.keyring.encrypt_for(pubkey_sign_id)`

			`if sign:`
			`if sign_cleartext:`
			`signature = self.keyring.sign(cleartext)`
			`else:`
			`signature = self.keyring.sign(ciphertext)`
			`else:`
			`signature = NOT_SIGNED`

			`return ciphertext, signature`

			`def verify_from(self, actor_whom_sender_claims_to_be: str, signature: bytes,`
			`ciphertext: bytes = None, decrypt=True,`
			`signature_is_on_cleartext=True) -> tuple:`
			`"""`
			`Inverse of encrypt_for.`

			`:param actor_that_sender_claims_to_be: The str representation of the actor on this KeyRing`
			`that the sender is claiming to be.`
			`:param ciphertext:`
			`:param decrypt:`
			`:param signature_is_on_cleartext:`
			`:return:`
			`"""`
			`actor = self._lookup_actor(actor_whom_sender_claims_to_be)`
			`pubkey_sign_id = actor.pubkey_collection['signing']`
			`signature = self.keyring.sign()`
			`self.keyring.encrypt_for(pubkey_sign_id)`

			`def _lookup_actor(self, actor_id: str):`
			`try:`
			`return self._actor_mapping[actor_id]`
			`except KeyError::`
			`raise self.ActorNotFound("We haven't learned of an actor with ID {}".format(actor_id))`

First draft of Character classes, along with a test of the moment that Alice finds Ursula. 2017-09-28 00:07:36 +00:00
			`class Ursula(Character):`
			`_server_class = NuCypherDHTServer`


			`class Alice(Character):`
			`_server_class = NuCypherSeedOnlyDHTServer`

			`def find_best_ursula(self):`
			`# TODO: Right now this just finds the nearest node and returns its ip and port. Make it do something useful.`
			`return self.server.bootstrappableNeighbors()[0]`