staking-deposit-cli/eth2deposit/utils/crypto.py

from typing import Any

from Crypto.Hash import (
    SHA256 as _sha256,
    SHA512 as _sha512,
)
from Crypto.Protocol.KDF import (
    scrypt as _scrypt,
    HKDF as _HKDF,
    PBKDF2 as _PBKDF2,
)
from Crypto.Cipher import (
    AES as _AES
)


def SHA256(x: bytes) -> bytes:
    return _sha256.new(x).digest()


def scrypt(*, password: str, salt: str, n: int, r: int, p: int, dklen: int) -> bytes:
    assert(n < 2**(128 * r / 8))
    res = _scrypt(password=password, salt=salt, key_len=dklen, N=n, r=r, p=p)
    return res if isinstance(res, bytes) else res[0]  # PyCryptodome can return Tuple[bytes]


def PBKDF2(*, password: bytes, salt: bytes, dklen: int, c: int, prf: str) -> bytes:
    assert('sha' in prf)
    _hash = _sha256 if 'sha256' in prf else _sha512
    res = _PBKDF2(password=password, salt=salt, dkLen=dklen, count=c, hmac_hash_module=_hash)  # type: ignore
    return res if isinstance(res, bytes) else res[0]  # PyCryptodome can return Tuple[bytes]


def HKDF(*, salt: bytes, IKM: bytes, L: int, info: bytes=b'') -> bytes:
    res = _HKDF(master=IKM, key_len=L, salt=salt, hashmod=_sha256, context=info)
    return res if isinstance(res, bytes) else res[0]  # PyCryptodome can return Tuple[bytes]


def AES_128_CTR(*, key: bytes, iv: bytes) -> Any:
    assert len(key) == 16
    return _AES.new(key=key, mode=_AES.MODE_CTR, initial_value=iv, nonce=b'')
Use more strict mypy setting and update `KeystoreModule` type (#17) 1. [KeystoreModule] change `params: dict` to `params: Dict[str, Any]` 2. Rename `to_bytes` to `encode_bytes` 2020-05-19 13:34:16 +00:00			`from typing import Any`

Adds key-derivation components 2020-02-18 16:03:52 +00:00			`from Crypto.Hash import (`
			`SHA256 as _sha256,`
			`SHA512 as _sha512,`
			`)`
			`from Crypto.Protocol.KDF import (`
			`scrypt as _scrypt,`
			`HKDF as _HKDF,`
			`PBKDF2 as _PBKDF2,`
			`)`
			`from Crypto.Cipher import (`
			`AES as _AES`
			`)`

Adds Makefile + Lint 2020-02-18 16:44:32 +00:00
Use more strict mypy setting and update `KeystoreModule` type (#17) 1. [KeystoreModule] change `params: dict` to `params: Dict[str, Any]` 2. Rename `to_bytes` to `encode_bytes` 2020-05-19 13:34:16 +00:00			`def SHA256(x: bytes) -> bytes:`
Adds key-derivation components 2020-02-18 16:03:52 +00:00			`return _sha256.new(x).digest()`


			`def scrypt(*, password: str, salt: str, n: int, r: int, p: int, dklen: int) -> bytes:`
			`assert(n < 2*(128 r / 8))`
			`res = _scrypt(password=password, salt=salt, key_len=dklen, N=n, r=r, p=p)`
			`return res if isinstance(res, bytes) else res[0] # PyCryptodome can return Tuple[bytes]`


Unicode support keystore passwords 2020-06-26 14:10:19 +00:00			`def PBKDF2(*, password: bytes, salt: bytes, dklen: int, c: int, prf: str) -> bytes:`
Adds key-derivation components 2020-02-18 16:03:52 +00:00			`assert('sha' in prf)`
			`_hash = _sha256 if 'sha256' in prf else _sha512`
Unicode support keystore passwords 2020-06-26 14:10:19 +00:00			`res = _PBKDF2(password=password, salt=salt, dkLen=dklen, count=c, hmac_hash_module=_hash) # type: ignore`
Adds key-derivation components 2020-02-18 16:03:52 +00:00			`return res if isinstance(res, bytes) else res[0] # PyCryptodome can return Tuple[bytes]`


Update tests for new EIP2333 (bls v2 compliant HKDF_mod_r) 2020-06-19 14:33:46 +00:00			`def HKDF(*, salt: bytes, IKM: bytes, L: int, info: bytes=b'') -> bytes:`
			`res = _HKDF(master=IKM, key_len=L, salt=salt, hashmod=_sha256, context=info)`
Adds key-derivation components 2020-02-18 16:03:52 +00:00			`return res if isinstance(res, bytes) else res[0] # PyCryptodome can return Tuple[bytes]`


Use more strict mypy setting and update `KeystoreModule` type (#17) 1. [KeystoreModule] change `params: dict` to `params: Dict[str, Any]` 2. Rename `to_bytes` to `encode_bytes` 2020-05-19 13:34:16 +00:00			`def AES_128_CTR(*, key: bytes, iv: bytes) -> Any:`
Fix key path 2020-05-26 09:32:20 +00:00			`assert len(key) == 16`
Adds key-derivation components 2020-02-18 16:03:52 +00:00			`return _AES.new(key=key, mode=_AES.MODE_CTR, initial_value=iv, nonce=b'')`