gajim-plural/src/common/crypto.py

# common crypto functions (mostly specific to XEP-0116, but useful elsewhere)
# -*- coding:utf-8 -*-
## src/common/crypto.py
##
## Copyright (C) 2007 Brendan Taylor <whateley AT gmail.com>
##
## This file is part of Gajim.
##
## Gajim is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published
## by the Free Software Foundation; version 3 only.
##
## Gajim is distributed in the hope that it will be useful,
## but WITHOUT ANY WARRANTY; without even the implied warranty of
## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
## GNU General Public License for more details.
##
## You should have received a copy of the GNU General Public License
## along with Gajim. If not, see <http://www.gnu.org/licenses/>.
##

import os
import math

from hashlib import sha256 as SHA256

# convert a large integer to a big-endian bitstring
def encode_mpi(n):
	if n >= 256:
		return encode_mpi(n / 256) + chr(n % 256)
	else:
		return chr(n)

# convert a large integer to a big-endian bitstring, padded with \x00s to
# a multiple of 16 bytes
def encode_mpi_with_padding(n):
	return pad_to_multiple(encode_mpi(n), 16, '\x00', True)

# pad 'string' to a multiple of 'multiple_of' with 'char'.
# pad on the left if 'left', otherwise pad on the right.
def pad_to_multiple(string, multiple_of, char, left):
	mod = len(string) % multiple_of
	if mod == 0:
		return string
	else:
		padding = (multiple_of - mod) * char

	if left:
		return padding + string
	else:
		return string + padding

# convert a big-endian bitstring to an integer
def decode_mpi(s):
	if len(s) == 0:
		return 0
	else:
		return 256 * decode_mpi(s[:-1]) + ord(s[-1])

def sha256(string):
	sh = SHA256()
	sh.update(string)
	return sh.digest()

base28_chr = "acdefghikmopqruvwxy123456789"

def sas_28x5(m_a, form_b):
	sha = sha256(m_a + form_b + 'Short Authentication String')
	lsb24 = decode_mpi(sha[-3:])
	return base28(lsb24)

def base28(n):
	if n >= 28:
		return base28(n / 28) + base28_chr[n % 28]
	else:
		return base28_chr[n]

def random_bytes(bytes_):
	return os.urandom(bytes_)

def generate_nonce():
	return random_bytes(8)

# generate a random number between 'bottom' and 'top'
def srand(bottom, top):
	# minimum number of bytes needed to represent that range
	bytes = int(math.ceil(math.log(top - bottom, 256)))

	# in retrospect, this is horribly inadequate.
	return (decode_mpi(random_bytes(bytes)) % (top - bottom)) + bottom

# a faster version of (base ** exp) % mod
#		taken from <http://lists.danga.com/pipermail/yadis/2005-September/001445.html>
def powmod(base, exp, mod):
	square = base % mod
	result = 1

	while exp > 0:
		if exp & 1: # exponent is odd
			result = (result * square) % mod

		square = (square * square) % mod
		exp /= 2

	return result

# vim: se ts=3:
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00			`# common crypto functions (mostly specific to XEP-0116, but useful elsewhere)`
See #4200. * remove js from some headers * set coding:utf-8 to allow real names in headers 2008-08-15 19:31:51 +02:00			`# -- coding:utf-8 --`
* Big headers review * Remove some licencing problems * To do: same for images * See #4200 2008-08-15 05:20:23 +02:00			`## src/common/crypto.py`
			`##`
			`## Copyright (C) 2007 Brendan Taylor <whateley AT gmail.com>`
			`##`
			`## This file is part of Gajim.`
			`##`
			`## Gajim is free software; you can redistribute it and/or modify`
			`## it under the terms of the GNU General Public License as published`
			`## by the Free Software Foundation; version 3 only.`
			`##`
			`## Gajim is distributed in the hope that it will be useful,`
			`## but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`## GNU General Public License for more details.`
			`##`
			`## You should have received a copy of the GNU General Public License`
			`## along with Gajim. If not, see <http://www.gnu.org/licenses/>.`
			`##`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00
fixed imports 2007-09-16 23:56:42 +02:00			`import os`
			`import math`

[Florob] fix module name for sha256. Fixes #5297 2009-10-01 08:26:08 +02:00			`from hashlib import sha256 as SHA256`
fixed imports 2007-09-16 23:56:42 +02:00
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00			`# convert a large integer to a big-endian bitstring`
			`def encode_mpi(n):`
			`if n >= 256:`
			`return encode_mpi(n / 256) + chr(n % 256)`
			`else:`
			`return chr(n)`

			`# convert a large integer to a big-endian bitstring, padded with \x00s to`
fixed imports 2007-09-16 23:56:42 +02:00			`# a multiple of 16 bytes`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00			`def encode_mpi_with_padding(n):`
fixed imports 2007-09-16 23:56:42 +02:00			`return pad_to_multiple(encode_mpi(n), 16, '\x00', True)`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00
fixed imports 2007-09-16 23:56:42 +02:00			`# pad 'string' to a multiple of 'multiple_of' with 'char'.`
			`# pad on the left if 'left', otherwise pad on the right.`
			`def pad_to_multiple(string, multiple_of, char, left):`
			`mod = len(string) % multiple_of`
			`if mod == 0:`
			`return string`
			`else:`
			`padding = (multiple_of - mod) * char`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00
fixed imports 2007-09-16 23:56:42 +02:00			`if left:`
			`return padding + string`
			`else:`
			`return string + padding`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00
			`# convert a big-endian bitstring to an integer`
			`def decode_mpi(s):`
			`if len(s) == 0:`
			`return 0`
			`else:`
			`return 256 * decode_mpi(s[:-1]) + ord(s[-1])`

			`def sha256(string):`
[Florob] fix module name for sha256. Fixes #5297 2009-10-01 08:26:08 +02:00			`sh = SHA256()`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00			`sh.update(string)`
			`return sh.digest()`

			`base28_chr = "acdefghikmopqruvwxy123456789"`

			`def sas_28x5(m_a, form_b):`
			`sha = sha256(m_a + form_b + 'Short Authentication String')`
			`lsb24 = decode_mpi(sha[-3:])`
			`return base28(lsb24)`

			`def base28(n):`
			`if n >= 28:`
			`return base28(n / 28) + base28_chr[n % 28]`
			`else:`
			`return base28_chr[n]`

[thorstenp] rename some var to not hide builts-in functions (list -> list_, ...) 2008-10-11 12:22:04 +02:00			`def random_bytes(bytes_):`
			`return os.urandom(bytes_)`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00
			`def generate_nonce():`
			`return random_bytes(8)`

			`# generate a random number between 'bottom' and 'top'`
			`def srand(bottom, top):`
			`# minimum number of bytes needed to represent that range`
			`bytes = int(math.ceil(math.log(top - bottom, 256)))`

			`# in retrospect, this is horribly inadequate.`
			`return (decode_mpi(random_bytes(bytes)) % (top - bottom)) + bottom`

			`# a faster version of (base ** exp) % mod`
[thorstenp] remove whitespace at eol 2008-12-03 22:56:12 +01:00			`# taken from <http://lists.danga.com/pipermail/yadis/2005-September/001445.html>`
split common crypto operations into a separate module 2007-09-16 06:16:45 +02:00			`def powmod(base, exp, mod):`
			`square = base % mod`
			`result = 1`

			`while exp > 0:`
			`if exp & 1: # exponent is odd`
			`result = (result * square) % mod`

			`square = (square * square) % mod`
			`exp /= 2`

			`return result`
For historical reasons, we have a tab width of 3. This is strange, but we have that in all files. To at least lesser the confusion a bit, add vim tags for that. Additionally, fix wrong #! in a few files. 2008-07-29 21:49:31 +02:00
* Big headers review * Remove some licencing problems * To do: same for images * See #4200 2008-08-15 05:20:23 +02:00			`# vim: se ts=3:`