2012-05-10 23:01:30 +02:00
|
|
|
# -*- coding: utf-8 -*-
|
2012-05-09 20:55:07 +02:00
|
|
|
#
|
|
|
|
|
# Cipher/DES.py : DES
|
|
|
|
|
#
|
|
|
|
|
# ===================================================================
|
|
|
|
|
# The contents of this file are dedicated to the public domain. To
|
|
|
|
|
# the extent that dedication to the public domain is not available,
|
|
|
|
|
# everyone is granted a worldwide, perpetual, royalty-free,
|
|
|
|
|
# non-exclusive license to exercise all rights associated with the
|
|
|
|
|
# contents of this file for any purpose whatsoever.
|
|
|
|
|
# No rights are reserved.
|
|
|
|
|
#
|
|
|
|
|
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
|
|
|
|
# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
|
|
|
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
|
|
|
|
# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
|
|
|
|
|
# BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
|
|
|
|
|
# ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
|
|
|
|
|
# CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
|
|
|
# SOFTWARE.
|
|
|
|
|
# ===================================================================
|
|
|
|
|
"""DES symmetric cipher
|
|
|
|
|
|
2012-05-10 19:39:46 +02:00
|
|
|
DES `(Data Encryption Standard)`__ is a symmetric block cipher standardized
|
|
|
|
|
by NIST_ . It has a fixed data block size of 8 bytes.
|
2012-05-14 23:50:40 +02:00
|
|
|
Its keys are 64 bits long, even though 8 bits were used for integrity (now they
|
2012-05-10 19:39:46 +02:00
|
|
|
are ignored) and do not contribute to securty.
|
|
|
|
|
|
|
|
|
|
DES is cryptographically secure, but its key length is too short by nowadays
|
|
|
|
|
standards and it could be brute forced with some effort.
|
|
|
|
|
|
|
|
|
|
DES should not be used for new designs. Use `AES`.
|
|
|
|
|
|
2012-05-14 23:50:40 +02:00
|
|
|
As an example, encryption can be done as follows:
|
|
|
|
|
|
2012-06-11 10:08:25 +02:00
|
|
|
>>> from Crypto.Cipher import DES
|
2012-05-14 23:50:40 +02:00
|
|
|
>>> from Crypto import Random
|
|
|
|
|
>>>
|
2012-06-11 10:08:25 +02:00
|
|
|
>>> key = b'-8B key-'
|
|
|
|
|
>>> iv = Random.new().read(DES.block_size)
|
|
|
|
|
>>> cipher = DES.new(key, DES.MODE_OFB, iv)
|
2012-05-14 23:50:40 +02:00
|
|
|
>>> plaintext = b'sona si latine loqueris '
|
|
|
|
|
>>> msg = iv + cipher.encrypt(plaintext)
|
|
|
|
|
|
2012-05-10 19:39:46 +02:00
|
|
|
.. __: http://en.wikipedia.org/wiki/Data_Encryption_Standard
|
|
|
|
|
.. _NIST: http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf
|
|
|
|
|
|
2014-12-10 21:40:49 +01:00
|
|
|
:undocumented: __package__
|
2012-05-09 20:55:07 +02:00
|
|
|
"""
|
|
|
|
|
|
2015-01-04 22:45:28 +01:00
|
|
|
import sys
|
|
|
|
|
|
|
|
|
|
from Crypto.Cipher import _create_cipher
|
|
|
|
|
from Crypto.Util.py3compat import byte_string
|
2015-01-19 14:00:35 +01:00
|
|
|
from Crypto.Util._raw_api import (load_pycryptodome_raw_lib,
|
|
|
|
|
VoidPointer, SmartPointer)
|
|
|
|
|
|
|
|
|
|
_raw_des_lib = load_pycryptodome_raw_lib(
|
|
|
|
|
"Crypto.Cipher._raw_des",
|
|
|
|
|
"""
|
|
|
|
|
int DES_start_operation(const uint8_t key[],
|
|
|
|
|
size_t key_len,
|
|
|
|
|
void **pResult);
|
|
|
|
|
int DES_encrypt(const void *state,
|
|
|
|
|
const uint8_t *in,
|
|
|
|
|
uint8_t *out,
|
|
|
|
|
size_t data_len);
|
|
|
|
|
int DES_decrypt(const void *state,
|
|
|
|
|
const uint8_t *in,
|
|
|
|
|
uint8_t *out,
|
|
|
|
|
size_t data_len);
|
|
|
|
|
int DES_stop_operation(void *state);
|
|
|
|
|
""")
|
2015-01-04 22:45:28 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
def _create_base_cipher(dict_parameters):
|
2015-01-19 14:00:35 +01:00
|
|
|
"""This method instantiates and returns a handle to a low-level
|
|
|
|
|
base cipher. It will absorb named parameters in the process."""
|
2015-01-04 22:45:28 +01:00
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
key = dict_parameters.pop("key")
|
|
|
|
|
except KeyError:
|
|
|
|
|
raise TypeError("Missing 'key' parameter")
|
|
|
|
|
|
|
|
|
|
if not byte_string(key):
|
|
|
|
|
raise TypeError("The cipher key must be a byte string")
|
|
|
|
|
|
|
|
|
|
if len(key) != key_size:
|
|
|
|
|
raise ValueError("Incorrect DES key length (%d bytes)" % len(key))
|
|
|
|
|
|
|
|
|
|
start_operation = _raw_des_lib.DES_start_operation
|
|
|
|
|
stop_operation = _raw_des_lib.DES_stop_operation
|
|
|
|
|
|
2015-01-19 14:00:35 +01:00
|
|
|
cipher = VoidPointer()
|
|
|
|
|
result = start_operation(key,
|
|
|
|
|
len(key),
|
|
|
|
|
cipher.address_of())
|
2015-01-04 22:45:28 +01:00
|
|
|
if result:
|
|
|
|
|
raise ValueError("Error %X while instantiating the DES cipher"
|
|
|
|
|
% result)
|
2015-01-19 14:00:35 +01:00
|
|
|
return SmartPointer(cipher.get(), stop_operation)
|
2012-05-09 20:55:07 +02:00
|
|
|
|
|
|
|
|
|
2014-06-07 18:42:52 +02:00
|
|
|
def new(key, mode, *args, **kwargs):
|
2012-05-09 20:55:07 +02:00
|
|
|
"""Create a new DES cipher
|
|
|
|
|
|
|
|
|
|
:Parameters:
|
|
|
|
|
key : byte string
|
|
|
|
|
The secret key to use in the symmetric cipher.
|
2012-05-10 19:39:46 +02:00
|
|
|
It must be 8 byte long. The parity bits will be ignored.
|
2012-05-09 20:55:07 +02:00
|
|
|
:Keywords:
|
|
|
|
|
mode : a *MODE_** constant
|
|
|
|
|
The chaining mode to use for encryption or decryption.
|
|
|
|
|
IV : byte string
|
2013-05-20 12:43:44 +02:00
|
|
|
(*Only* `MODE_CBC`, `MODE_CFB`, `MODE_OFB`, `MODE_OPENPGP`).
|
|
|
|
|
|
2012-05-09 20:55:07 +02:00
|
|
|
The initialization vector to use for encryption or decryption.
|
2014-06-07 18:42:52 +02:00
|
|
|
|
2012-05-17 13:28:24 +02:00
|
|
|
It is ignored for `MODE_ECB` and `MODE_CTR`.
|
|
|
|
|
|
|
|
|
|
For `MODE_OPENPGP`, IV must be `block_size` bytes long for encryption
|
|
|
|
|
and `block_size` +2 bytes for decryption (in the latter case, it is
|
|
|
|
|
actually the *encrypted* IV which was prefixed to the ciphertext).
|
|
|
|
|
It is mandatory.
|
2013-05-20 12:43:44 +02:00
|
|
|
|
|
|
|
|
For all other modes, it must be 8 bytes long.
|
|
|
|
|
nonce : byte string
|
|
|
|
|
(*Only* `MODE_EAX`).
|
|
|
|
|
A mandatory value that must never be reused for any other encryption.
|
|
|
|
|
There are no restrictions on its length, but it is recommended to
|
|
|
|
|
use at least 16 bytes.
|
2012-05-09 20:55:07 +02:00
|
|
|
counter : callable
|
|
|
|
|
(*Only* `MODE_CTR`). A stateful function that returns the next
|
|
|
|
|
*counter block*, which is a byte string of `block_size` bytes.
|
|
|
|
|
For better performance, use `Crypto.Util.Counter`.
|
2013-05-20 12:43:44 +02:00
|
|
|
mac_len : integer
|
|
|
|
|
(*Only* `MODE_EAX`). Length of the MAC, in bytes.
|
|
|
|
|
It must be no larger than 8 (which is the default).
|
2012-05-09 20:55:07 +02:00
|
|
|
segment_size : integer
|
|
|
|
|
(*Only* `MODE_CFB`).The number of bits the plaintext and ciphertext
|
|
|
|
|
are segmented in.
|
2015-01-19 14:00:35 +01:00
|
|
|
It must be a multiple of 8. If 0 or not specified, it will be assumed
|
|
|
|
|
to be 8.
|
2012-05-09 20:55:07 +02:00
|
|
|
|
|
|
|
|
:Return: an `DESCipher` object
|
|
|
|
|
"""
|
2014-12-08 21:53:14 +01:00
|
|
|
|
2015-01-04 22:45:28 +01:00
|
|
|
return _create_cipher(sys.modules[__name__], key, mode, *args, **kwargs)
|
2012-05-09 20:55:07 +02:00
|
|
|
|
|
|
|
|
#: Electronic Code Book (ECB). See `blockalgo.MODE_ECB`.
|
|
|
|
|
MODE_ECB = 1
|
|
|
|
|
#: Cipher-Block Chaining (CBC). See `blockalgo.MODE_CBC`.
|
|
|
|
|
MODE_CBC = 2
|
|
|
|
|
#: Cipher FeedBack (CFB). See `blockalgo.MODE_CFB`.
|
|
|
|
|
MODE_CFB = 3
|
|
|
|
|
#: This mode should not be used.
|
|
|
|
|
MODE_PGP = 4
|
|
|
|
|
#: Output FeedBack (OFB). See `blockalgo.MODE_OFB`.
|
|
|
|
|
MODE_OFB = 5
|
|
|
|
|
#: CounTer Mode (CTR). See `blockalgo.MODE_CTR`.
|
|
|
|
|
MODE_CTR = 6
|
2012-05-17 13:28:24 +02:00
|
|
|
#: OpenPGP Mode. See `blockalgo.MODE_OPENPGP`.
|
|
|
|
|
MODE_OPENPGP = 7
|
2013-05-20 12:43:44 +02:00
|
|
|
#: EAX Mode. See `blockalgo.MODE_EAX`.
|
|
|
|
|
MODE_EAX = 9
|
2012-05-09 20:55:07 +02:00
|
|
|
#: Size of a data block (in bytes)
|
|
|
|
|
block_size = 8
|
|
|
|
|
#: Size of a key (in bytes)
|
|
|
|
|
key_size = 8
|
