sidan-gin 0.1.1__py3-none-any.whl → 0.1.2__py3-none-any.whl

sidan_gin/__init__.py

@@ -1,4 +1,5 @@
 # flake8: noqa
 
-from .signing import *
+from .encryption import *
 from .types import *
+from .wallet import *

sidan_gin/encryption/__init__.py

@@ -0,0 +1,3 @@
+# flake8: noqa
+
+from .cipher import *

sidan_gin/encryption/cipher.py

@@ -0,0 +1,127 @@
+import base64
+import json
+import os
+
+from cryptography.hazmat.backends import default_backend
+from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
+from cryptography.hazmat.primitives.hashes import SHA256
+from cryptography.hazmat.primitives.kdf.pbkdf2 import PBKDF2HMAC
+
+
+def encrypt_with_cipher(
+    data: str, key: str, initialization_vector_size: int = 12
+) -> str:
+    """
+    Encrypt data using AES-GCM with a derived key from PBKDF2 and SHA-256.
+
+    :param data: The plaintext data to encrypt.
+    :param key: The input key used for encryption.
+    :param initialization_vector_size: The size of the IV (default is 12 bytes for AES-GCM).
+    :return: A JSON string containing the IV and ciphertext (both base64-encoded).
+    :raises ValueError: If encryption fails or input data is invalid.
+    """
+    # Derive a cryptographic key from the input key using PBKDF2 and SHA-256
+    salt = bytes(
+        initialization_vector_size
+    )  # Using a fixed salt (empty for simplicity)
+    kdf = PBKDF2HMAC(
+        algorithm=SHA256(),
+        length=32,  # AES-256 requires a 256-bit key (32 bytes)
+        salt=salt,
+        iterations=100_000,
+        backend=default_backend(),
+    )
+    derived_key = kdf.derive(key.encode())
+
+    # Generate a random IV
+    iv = os.urandom(initialization_vector_size)  # Generate a random IV
+    try:
+        # Initialize AES-GCM cipher
+        cipher = Cipher(
+            algorithms.AES(derived_key),
+            modes.GCM(iv),
+            backend=default_backend(),
+        )
+        encryptor = cipher.encryptor()
+
+        # Encrypt the data
+        ciphertext = encryptor.update(data.encode()) + encryptor.finalize()
+
+        # Get the authentication tag
+        tag = encryptor.tag
+
+        # Append the tag to the ciphertext to match Web Crypto API behavior
+        ciphertext_with_tag = ciphertext + tag
+    except Exception as e:
+        raise ValueError("Encryption failed") from e
+
+    # Encode the IV and ciphertext (with tag) in base64
+    iv_base64 = base64.b64encode(iv).decode("utf-8")
+    ciphertext_base64 = base64.b64encode(ciphertext_with_tag).decode("utf-8")
+
+    # Create a JSON-like string containing the IV and ciphertext
+    result = {
+        "iv": iv_base64,
+        "ciphertext": ciphertext_base64,
+    }
+
+    return json.dumps(result)
+
+
+def decrypt_with_cipher(encrypted_data_json: str, key: str) -> str:
+    """
+    Decrypt data encrypted with AES-GCM using a derived key from PBKDF2 and SHA-256.
+    """
+    # Parse the encrypted data from JSON
+    try:
+        encrypted_data = json.loads(encrypted_data_json)
+        iv_base64 = encrypted_data["iv"]
+        ciphertext_base64 = encrypted_data["ciphertext"]
+    except (KeyError, json.JSONDecodeError) as e:
+        raise ValueError("Invalid encrypted data JSON") from e
+
+    # Decode the IV and ciphertext from base64
+    try:
+        iv = base64.b64decode(iv_base64)
+        ciphertext_with_tag = base64.b64decode(ciphertext_base64)
+    except base64.binascii.Error as e:
+        raise ValueError("Base64 decoding failed") from e
+
+    # In Web Crypto API, the tag is appended to the ciphertext
+    # Standard GCM tag length is 16 bytes (128 bits)
+    tag_length = 16
+    ciphertext = ciphertext_with_tag[:-tag_length]
+    tag = ciphertext_with_tag[-tag_length:]
+
+    # Derive a cryptographic key from the input key using PBKDF2 and SHA-256
+    salt = bytes(len(iv))  # Use the same salt size as the IV
+    kdf = PBKDF2HMAC(
+        algorithm=SHA256(),
+        length=32,  # AES-256 requires a 256-bit key (32 bytes)
+        salt=salt,
+        iterations=100_000,
+        backend=default_backend(),
+    )
+    derived_key = kdf.derive(key.encode())
+
+    # Initialize AES-GCM cipher for decryption
+    try:
+        cipher = Cipher(
+            algorithms.AES(derived_key),
+            modes.GCM(iv, tag),  # Pass the extracted tag to GCM mode
+            backend=default_backend(),
+        )
+        decryptor = cipher.decryptor()
+
+        # Decrypt the data
+        decrypted_data = decryptor.update(ciphertext) + decryptor.finalize()
+    except Exception as e:
+        raise ValueError("Decryption failed") from e
+
+    # Convert the decrypted data back to a string
+    try:
+        decrypted_str = decrypted_data.decode("utf-8")
+    except UnicodeDecodeError as e:
+        raise ValueError("Failed to convert decrypted data to UTF-8") from e
+
+    return decrypted_str

{sidan_gin-0.1.1.dist-info → sidan_gin-0.1.2.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.3
 Name: sidan-gin
-Version: 0.1.1
+Version: 0.1.2
 Summary: A python library for Cardano development, compatible with Mesh and Whisky types.
 License: Apache-2.0
 Keywords: cardano
@@ -15,6 +15,7 @@ Classifier: Programming Language :: Python :: 3.12
 Classifier: Programming Language :: Python :: 3.13
 Classifier: Programming Language :: Python :: 3.11
 Requires-Dist: cbor2 (>=5.6.5,<6.0.0)
+Requires-Dist: cryptography (>=44.0.2,<45.0.0)
 Requires-Dist: pycardano (>=0.12.3,<0.13.0)
 Requires-Dist: requests (>=2.25,<3.0)
 Project-URL: Documentation, https://github.com/sidan-lab/gin

{sidan_gin-0.1.1.dist-info → sidan_gin-0.1.2.dist-info}/RECORD

@@ -1,6 +1,6 @@
-sidan_gin/__init__.py,sha256=qlODpgSpLJISU-uti5fMG_FokqIqcRx_nNL5kS0jF2I,60
-sidan_gin/signing/__init__.py,sha256=_ylJyQIxP_-knJYHUxgDVYWSWG3MMhd_xiI9CH0sFmA,38
-sidan_gin/signing/wallet.py,sha256=ijZ2ICI91E8MPc73ueytqV5s-6bbj3O3hJs8RBnuljw,1442
+sidan_gin/__init__.py,sha256=vu8JEo4ADPBvK7l6_QhnhlKEnSYEmphSc7NE3jZG1dY,85
+sidan_gin/encryption/__init__.py,sha256=4eCzQX7vgrrnnQFWVt86Kc_bBq9mzCdAuJbnNNaA62Y,38
+sidan_gin/encryption/cipher.py,sha256=UuuwQ-1A9XcCZ716ng8hcUvwVcZPAaBVUKlYbn3_LRo,4414
 sidan_gin/types/__init__.py,sha256=r5Z6Bto1lE22yhNO9UThri6xoSUnoKk1Gb9A8aHMI24,241
 sidan_gin/types/account_info.py,sha256=Q5TIXE6Ofj3DlSlMdeL2jhrSQYaJHIqhEzW_oMe_5OU,193
 sidan_gin/types/asset.py,sha256=9LXNaCIJ0lyA0sGJOnusb_hDRf_ODZK4b3onUZmMPfI,2088
@@ -11,7 +11,9 @@ sidan_gin/types/protocol.py,sha256=MxC2TLtQVrQao6csvPx459JwIpM98XNwBYK05d-JRA8,5
 sidan_gin/types/transaction_info.py,sha256=c7rh7I38uTksnyDgAZKPdLlw0zVeQHfIVWrcWw-IwrA,220
 sidan_gin/types/utxo.py,sha256=HvnAJXxyLm0KUBnrqprMm8Pc8H2ebxGW339pFLKo7K4,452
 sidan_gin/types/value.py,sha256=cGFqxk15FrG2zy6PB5zMRq1vOBYfBQbMWbuqiCTEgRg,3345
-sidan_gin-0.1.1.dist-info/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
-sidan_gin-0.1.1.dist-info/METADATA,sha256=VoXv0GDlBqKLjozzL0kU02arvraVY78SdX0esFg5Mlc,1036
-sidan_gin-0.1.1.dist-info/WHEEL,sha256=IYZQI976HJqqOpQU6PHkJ8fb3tMNBFjg-Cn-pwAbaFM,88
-sidan_gin-0.1.1.dist-info/RECORD,,
+sidan_gin/wallet/__init__.py,sha256=_ylJyQIxP_-knJYHUxgDVYWSWG3MMhd_xiI9CH0sFmA,38
+sidan_gin/wallet/wallet.py,sha256=ijZ2ICI91E8MPc73ueytqV5s-6bbj3O3hJs8RBnuljw,1442
+sidan_gin-0.1.2.dist-info/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
+sidan_gin-0.1.2.dist-info/METADATA,sha256=xAecfFzR9ZMNb4lIiN4CMD3ROej70nxuQ9Nlvf5HNQ4,1083
+sidan_gin-0.1.2.dist-info/WHEEL,sha256=fGIA9gx4Qxk2KDKeNJCbOEwSrmLtjWCwzBz351GyrPQ,88
+sidan_gin-0.1.2.dist-info/RECORD,,

{sidan_gin-0.1.1.dist-info → sidan_gin-0.1.2.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: poetry-core 2.0.1
+Generator: poetry-core 2.1.2
 Root-Is-Purelib: true
 Tag: py3-none-any