pyUmbral/umbral/dem.py

import os
from typing import Optional

from cryptography.hazmat.primitives.ciphers.aead import ChaCha20Poly1305


DEM_KEYSIZE = 32
DEM_NONCE_SIZE = 12


class UmbralDEM(object):
    def __init__(self, symm_key: bytes) -> None:
        """
        Initializes an UmbralDEM object. Requires a key to perform
        ChaCha20-Poly1305.
        """
        if len(symm_key) != DEM_KEYSIZE:
            raise ValueError(
                "Invalid key size, must be {} bytes".format(DEM_KEYSIZE)
            )

        self.cipher = ChaCha20Poly1305(symm_key)

    def encrypt(self, data: bytes, authenticated_data: Optional[bytes] = None) -> bytes:
        """
        Encrypts data using ChaCha20-Poly1305 with optional authenticated data.
        """
        nonce = os.urandom(DEM_NONCE_SIZE)
        enc_data = self.cipher.encrypt(nonce, data, authenticated_data)
        # Ciphertext will be a 12 byte nonce, the ciphertext, and a 16 byte tag.
        return nonce + enc_data

    def decrypt(self, ciphertext: bytes, authenticated_data: Optional[bytes] = None) -> bytes:
        """
        Decrypts data using ChaCha20-Poly1305 and validates the provided
        authenticated data.
        """
        nonce = ciphertext[:DEM_NONCE_SIZE]
        ciphertext = ciphertext[DEM_NONCE_SIZE:]
        cleartext = self.cipher.decrypt(nonce, ciphertext, authenticated_data)
        return cleartext
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`import os`
Initial bulk application of type hints to pyUmbral 2018-07-06 22:44:33 +00:00			`from typing import Optional`

Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`from cryptography.hazmat.primitives.ciphers.aead import ChaCha20Poly1305`
Add skeleton of DEM 2018-01-23 07:40:36 +00:00

Add tests for DEM and some fixes 2018-01-24 21:52:49 +00:00			`DEM_KEYSIZE = 32`
			`DEM_NONCE_SIZE = 12`


Add skeleton of DEM 2018-01-23 07:40:36 +00:00			`class UmbralDEM(object):`
Initial bulk application of type hints to pyUmbral 2018-07-06 22:44:33 +00:00			`def __init__(self, symm_key: bytes) -> None:`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
			`Initializes an UmbralDEM object. Requires a key to perform`
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`ChaCha20-Poly1305.`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
Add tests for DEM and some fixes 2018-01-24 21:52:49 +00:00			`if len(symm_key) != DEM_KEYSIZE:`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`raise ValueError(`
Add tests for DEM and some fixes 2018-01-24 21:52:49 +00:00			`"Invalid key size, must be {} bytes".format(DEM_KEYSIZE)`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`)`

Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`self.cipher = ChaCha20Poly1305(symm_key)`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00
Initial bulk application of type hints to pyUmbral 2018-07-06 22:44:33 +00:00			`def encrypt(self, data: bytes, authenticated_data: Optional[bytes] = None) -> bytes:`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`Encrypts data using ChaCha20-Poly1305 with optional authenticated data.`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
Add tests for DEM and some fixes 2018-01-24 21:52:49 +00:00			`nonce = os.urandom(DEM_NONCE_SIZE)`
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`enc_data = self.cipher.encrypt(nonce, data, authenticated_data)`
Use constants in tests and add comment 2018-01-26 00:06:17 +00:00			`# Ciphertext will be a 12 byte nonce, the ciphertext, and a 16 byte tag.`
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`return nonce + enc_data`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00
Initial bulk application of type hints to pyUmbral 2018-07-06 22:44:33 +00:00			`def decrypt(self, ciphertext: bytes, authenticated_data: Optional[bytes] = None) -> bytes:`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
Switch to cryptography.io ChaCha20-Poly1305 AEAD 2018-01-24 21:34:14 +00:00			`Decrypts data using ChaCha20-Poly1305 and validates the provided`
			`authenticated data.`
Use basic DEM principles Had a call with David, we discussed how we're implemting the needed API changes. We're going to use Umbral for Michael's API request. This DEM will be kept simple and simply use NaCl Salsa20-Poly1305 SecretBox. Add KEYSIZE attr on UmbralDEM 2018-01-23 09:40:13 +00:00			`"""`
Reintroducing... PRE.decrypt! 2018-01-31 07:19:22 +00:00			`nonce = ciphertext[:DEM_NONCE_SIZE]`
			`ciphertext = ciphertext[DEM_NONCE_SIZE:]`
			`cleartext = self.cipher.decrypt(nonce, ciphertext, authenticated_data)`
			`return cleartext`