1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
# Copyright 2015 Egor Tensin <Egor.Tensin@gmail.com>
# This file is licensed under the terms of the MIT License.
# See LICENSE.txt for details.
import collections
import logging
import os.path
import subprocess
import sys
AES128, AES192, AES256 = 'aes128', 'aes192', 'aes256'
ECB, CBC, CFB, OFB, CTR = 'ecb', 'cbc', 'cfb', 'ofb', 'ctr'
_supported_algorithms = AES128, AES192, AES256
_supported_modes = ECB, CBC, CFB, OFB, CTR
def get_supported_algorithms():
return _supported_algorithms
def get_supported_modes():
return _supported_modes
def mode_requires_init_vector(mode):
return mode != ECB
def to_supported_algorithm(s):
s = s.lower()
if s in _supported_algorithms:
return s
return None
def to_supported_mode(s):
s = s.lower()
if s in _supported_modes:
return s
if s == CFB + '128':
return CFB
return None
class EncryptionInput:
def __init__(self, key, plaintexts, iv=None):
self.key = key
self.plaintexts = plaintexts
self.iv = iv
def to_args(self):
args = [self.key]
if self.iv is not None:
args.append(self.iv)
args.extend(self.plaintexts)
return args
class DecryptionInput:
def __init__(self, key, ciphertexts, iv=None):
self.key = key
self.ciphertexts = ciphertexts
self.iv = iv
def to_args(self):
args = [self.key]
if self.iv is not None:
args.append(self.iv)
args.extend(self.ciphertexts)
return args
class ToolkitError(RuntimeError):
pass
class Tools:
def __init__(self, search_dirs, use_sde=False, use_boxes=False):
if search_dirs:
if isinstance(search_dirs, str):
os.environ['PATH'] += os.pathsep + search_dirs
elif isinstance(search_dirs, collections.Iterable):
os.environ['PATH'] += os.pathsep + os.pathsep.join(search_dirs)
else:
os.environ['PATH'] += os.pathsep + str(search_dirs)
self._use_sde = use_sde
self._use_boxes = use_boxes
self._logger = logging.getLogger(__name__)
_ENCRYPT_BLOCK = 'encrypt_block.exe'
_DECRYPT_BLOCK = 'decrypt_block.exe'
def run(self, tool_path, algo, mode, args):
cmd_list = ['sde', '--', tool_path] if self._use_sde else [tool_path]
if self._use_boxes:
cmd_list.append('-b')
cmd_list.extend(('-a', algo, '-m', mode, '--'))
cmd_list.extend(args)
logging.info('Trying to execute: {0}'.format(subprocess.list2cmdline(cmd_list)))
try:
output = subprocess.check_output(cmd_list, universal_newlines=True,
stderr=subprocess.STDOUT)
except subprocess.CalledProcessError as e:
logging.exception(e)
logging.error('Output:\n' + e.output)
raise ToolkitError() from e
logging.info('Output:\n' + output)
return output.split()
@staticmethod
def _inputs_to_args(inputs):
head = next(inputs, None)
if head is None:
return []
args = head.to_args()
while True:
tail = next(inputs, None)
if tail is None:
break
args.append('--')
args.extend(tail.to_args())
return args
def run_encrypt_block(self, algo, mode, inputs):
if isinstance(inputs, collections.Iterable):
args = self._inputs_to_args(iter(inputs))
else:
args = inputs.to_args()
return self.run(self._ENCRYPT_BLOCK, algo, mode, args)
def run_decrypt_block(self, algo, mode, inputs):
if isinstance(inputs, collections.Iterable):
args = self._inputs_to_args(iter(inputs))
else:
args = inputs.to_args()
return self.run(self._DECRYPT_BLOCK, algo, mode, args)
|
