utilosafe 1.0.0__tar.gz

utilosafe-1.0.0/PKG-INFO

@@ -0,0 +1,21 @@
+Metadata-Version: 2.4
+Name: utilosafe
+Version: 1.0.0
+Author-email: Helmut Konrad Schewe <helmutus@outlook.com>
+License-Expression: MIT
+Project-URL: Homepage, https://github.com/anaticulae/utilosafe
+Project-URL: Repository, https://github.com/anaticulae/utilosafe
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Programming Language :: Python :: 3.14
+Requires-Python: >=3.12
+Description-Content-Type: text/markdown
+Requires-Dist: utilo<3.0.0,>=2.107.3
+Requires-Dist: configos<3.0.0,>=1.0.4
+Requires-Dist: cryptography<39.0.0,>=38.0.3
+Requires-Dist: bcrypt<5.0.0,>=4.0.1
+Provides-Extra: dev
+Requires-Dist: utilotest<1.0.0,>=0.26.0; extra == "dev"
+Requires-Dist: power<3.0.0,==2.20.1; extra == "dev"
+
+# utilosafe

utilosafe-1.0.0/README

@@ -0,0 +1 @@
+# utilosafe

utilosafe-1.0.0/pyproject.toml

@@ -0,0 +1,67 @@
+[project]
+name = "utilosafe"
+version = "1.0.0"
+description = ""
+readme = {file = "README", content-type = "text/markdown"}
+requires-python = ">=3.12"
+authors = [
+  {name = "Helmut Konrad Schewe", email = "helmutus@outlook.com"}
+]
+
+dependencies = [
+    "utilo>=2.107.3,<3.0.0",
+    "configos>=1.0.4,<3.0.0",
+
+    "cryptography>=38.0.3,<39.0.0",
+    "bcrypt>=4.0.1,<5.0.0",
+]
+
+# Optional but recommended metadata
+keywords = []
+classifiers = [
+  'Programming Language :: Python :: 3.12',
+  'Programming Language :: Python :: 3.13',
+  'Programming Language :: Python :: 3.14',
+]
+license = "MIT"
+license-files = ["LICENSE"]
+
+[project.scripts]
+safeme_create = "utilosafe.cli:main"
+
+[project.optional-dependencies]
+dev = [
+    "utilotest>=0.26.0,<1.0.0",
+    "power==2.20.1,<3.0.0",
+]
+
+[project.urls]
+Homepage = "https://github.com/anaticulae/utilosafe"
+Repository = "https://github.com/anaticulae/utilosafe"
+
+[build-system]
+requires = [
+    "setuptools>=82.0.1",
+    "wheel>=0.46.3"
+]
+build-backend = "setuptools.build_meta"
+
+[tool.semantic_release]
+version_toml = ["pyproject.toml:project.version"]
+[tool.semantic_release.changelog.default_templates]
+changelog_file = "CHANGELOG"
+[tool.semantic_release.changelog]
+mode = "init"
+output_format = "md"
+[tool.semantic_release.commit_parser_options]
+# allways generate a new version
+patch_tags = ["fix", "perf", "build", "chore", "ci", "docs", "style", "refactor", "test", "deps"]
+
+[tool.setuptools.packages.find]
+where = ["."]
+include = [
+    "utilosafe",
+]
+exclude = [
+    "tests*",
+]

utilosafe-1.0.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

utilosafe-1.0.0/tests/test_cli.py

@@ -0,0 +1,46 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+
+import functools
+import os
+
+import utilo
+import utilotest
+
+import utilosafe
+import utilosafe.cli
+
+run = functools.partial(
+    utilotest.run_cov,
+    process='safeme_create',
+    main=utilosafe.cli.main,
+    expect=True,
+)
+
+
+@utilotest.longrun
+def test_generate_cli(testdir, monkeypatch):
+    password = b'helm'
+    utilo.file_create_binary('password', password)
+    with monkeypatch.context() as context:
+        context.setattr(
+            utilosafe.cli,
+            'insert_password',
+            lambda: password,
+        )
+        # safeme_create < password
+        run('', mp=monkeypatch)
+    private = str(testdir.tmpdir.join('private.pem'))
+    loaded = utilosafe.load_rsa_private(  # nosec
+        private,
+        passphrase=b'helm',
+    )
+    assert loaded
+    assert os.path.exists('private.pem')
+    assert os.path.exists('public.pem')

utilosafe-1.0.0/tests/test_rsa.py

@@ -0,0 +1,66 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+
+# import power
+import utilotest
+
+import utilosafe
+import utilosafe.rsa
+
+
+@utilotest.longrun
+def test_generate_write_load_rsa(testdir):
+    outfile = testdir.tmpdir.join('rsa')
+    private = utilosafe.create_private_key()
+    expected = utilosafe.create_public_key(private)
+    # write file
+    utilosafe.write_rsa(outfile, expected)
+    # create RSA object
+    loaded = utilosafe.rsa.dump_public_key(utilosafe.load_rsa_public(outfile))
+    assert loaded == expected
+
+
+# @pytest.mark.xfail(reason='rework large encryption')
+# @utilotest.nightly
+# def test_write_large_file(testdir):
+#     loaded = utilo.file_read_binary(power.BACHELOR128_PDF)
+#     private = utilosafe.create_private_key()
+#     public = utilosafe.create_public_key(private)
+#     # write file
+#     encrypted = utilosafe.encrypt(loaded, public)
+#     utilo.file_create('blabla', encrypted)
+#     decrypted = utilosafe.decrypt(encrypted, private)
+#     assert len(decrypted) == len(loaded)
+#     assert decrypted == loaded
+
+
+def test_public_special_bytes():
+    """Do not remove starting \x00-zero bits when using rsa decryption."""
+    data = (b'\x00\x00\x00\x00\xf4\x0b;\xc77\xdd\xe5\x97\x08'
+            b'\xdd2\x12\x9f#\xe0\x98\xd0I\xedv\xd3-\xa6\xa6')
+    private = utilosafe.create_private_key()
+    public = utilosafe.create_public_key(private)
+    encrypted = utilosafe.encrypt(data, public)
+    decrypted = utilosafe.decrypt(encrypted, private)
+    assert decrypted == data
+
+
+def test_public_password(testdir, monkeypatch):
+    data = b'Helm is Hier'
+    private = utilosafe.create_private_key()
+    public = utilosafe.create_public_key(private)
+    utilosafe.write_rsa('public.pem', public)
+    path = str(testdir.tmpdir.join('public.pem'))
+    with monkeypatch.context() as context:
+        utilosafe.public_password.cache_clear()
+        context.setenv(utilosafe.UTILOSAFE_PUBLIC_KEY, path)
+        encrypted = utilosafe.encrypt(data)
+        assert encrypted != data
+    decrypted = utilosafe.decrypt(encrypted, key=private)
+    assert decrypted == data

utilosafe-1.0.0/utilosafe/__init__.py

@@ -0,0 +1,29 @@
+#==============================================================================
+# C O P Y R I G H T
+#------------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+#==============================================================================
+
+import importlib.metadata
+import os
+
+__version__ = importlib.metadata.version('utilosafe')
+
+from utilosafe.password import decrypt as decrypt_password
+from utilosafe.password import encrypt as encrypt_password
+from utilosafe.public import decrypt
+from utilosafe.public import encrypt
+from utilosafe.rsa import create_private_key
+from utilosafe.rsa import create_public_key
+from utilosafe.rsa import load_rsa_private
+from utilosafe.rsa import load_rsa_public
+from utilosafe.rsa import write_rsa
+from utilosafe.utils import UTILOSAFE_PUBLIC_KEY
+from utilosafe.utils import UTILOSAFE_USER_PASSWORD
+from utilosafe.utils import public_password
+from utilosafe.utils import user_password
+
+ROOT = os.path.abspath(os.path.join(os.path.dirname(__file__), '..'))

utilosafe-1.0.0/utilosafe/cli.py

@@ -0,0 +1,43 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+
+import os
+import sys
+
+import utilo
+
+import utilosafe
+import utilosafe.rsa
+
+
+def main():
+    cwd = os.getcwd()
+    password = insert_password()
+
+    path_private = os.path.join(cwd, 'private.pem')
+    private = utilosafe.rsa.create_private_key(passphrase=password)
+    utilo.log(f'write private: {path_private}')
+    utilosafe.write_rsa(path_private, private)
+
+    path_public = os.path.join(cwd, 'public.pem')
+    public = utilosafe.rsa.create_public_key(private, passphrase=password)
+    utilo.log(f'write public: {path_public}')
+    utilosafe.write_rsa(path_public, public)
+
+    sys.exit(utilo.SUCCESS)
+
+
+def insert_password():
+    password = input('password\n')
+    if password:
+        password = password.strip()
+        password = password.encode('utf8')
+    else:
+        password = None
+    return password

utilosafe-1.0.0/utilosafe/password.py

@@ -0,0 +1,64 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+
+import utilo
+
+import utilosafe
+import utilosafe.utils
+
+
+def encrypt(plaintext: bytes) -> bytes:
+    r"""Convert plain text to cipher text.
+
+    >>> len(encrypt(b'hello')) > 25
+    True
+    >>> decrypt(encrypt(b'hello'))
+    b'hello'
+    """
+    if isinstance(plaintext, str):
+        plaintext = plaintext.encode(
+            encoding='utf8',
+            errors='xmlcharrefreplace',
+        )
+    plaintext = utilosafe.utils.create_block(plaintext)
+    ciphertext = aes().encrypt(plaintext)
+    return ciphertext
+
+
+def decrypt(ciphertext: bytes, string: bool = False) -> bytes:
+    """Convert cipher text to plain text."""
+    plaintext = aes().decrypt(ciphertext)
+    plaintext = utilosafe.utils.remove_block(plaintext)
+    if string:
+        plaintext: str = plaintext.decode(encoding='utf8')
+    return plaintext
+
+
+def aes():
+    pwd = utilosafe.user_password()
+    # normalize password
+    pwd = utilo.secure_hash(pwd, digits=32)
+    pwd: bytes = pwd.encode('utf8')
+    # TODO: VERIFY PROS AND CONS OF MODE
+    try:
+        from Crypto.Cipher import AES  # nosec # TODO: VERIFY THIS
+    except ImportError:
+        utilo.error('could not import Crypto.Cipher')
+        return NoPassword()
+    result = AES.new(pwd, AES.MODE_ECB)
+    return result
+
+
+class NoPassword:
+
+    def decrypt(self, ciphertext):  # pylint:disable=R0201
+        return ciphertext
+
+    def encrypt(self, plaintext):  # pylint:disable=R0201
+        return plaintext

utilosafe-1.0.0/utilosafe/public.py

@@ -0,0 +1,40 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+"""\
+>>> import utilosafe.rsa
+
+>>> PRIVATE = utilosafe.rsa.create_private_key()
+>>> PUBLIC = utilosafe.rsa.create_public_key(PRIVATE)
+
+>>> encrypted = encrypt(b'Hello', public=PUBLIC)
+>>> decrypt(encrypted, PRIVATE)
+b'Hello'
+"""
+
+import utilosafe.rsa
+import utilosafe.utils
+
+
+def encrypt(plaintext: bytes, public: bytes = None) -> int:
+    if public is None:
+        public = utilosafe.utils.public_password()
+    result = utilosafe.rsa.encrypt(
+        plaintext,
+        public,
+    )
+    return result
+
+
+def decrypt(ciphertext: bytes, key: str, passphrase: bytes = None) -> bytes:
+    result = utilosafe.rsa.decrypt(
+        ciphertext,
+        key,
+        passphrase=passphrase,
+    )
+    return result

utilosafe-1.0.0/utilosafe/rsa.py

@@ -0,0 +1,115 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+"""\
+>>> import utilosafe.rsa
+
+>>> PRIVATE = utilosafe.rsa.create_private_key()
+>>> PUBLIC = utilosafe.rsa.create_public_key(PRIVATE)
+
+>>> encrypted = encrypt(b'Hello', public=PUBLIC)
+>>> decrypt(encrypted, PRIVATE)
+b'Hello'
+"""
+
+import utilo
+from cryptography.hazmat.primitives import serialization
+from cryptography.hazmat.primitives.asymmetric import padding
+from cryptography.hazmat.primitives.asymmetric import rsa
+
+PUBLIC_EXPONENT = 65537
+
+PADDING = padding.PKCS1v15()
+
+
+def encrypt(plaintext: bytes, public: bytes) -> int:
+    if isinstance(public, bytes):
+        public = serialization.load_ssh_public_key(public)
+    result = public.encrypt(
+        plaintext=plaintext,
+        padding=PADDING,
+    )
+    return result
+
+
+def decrypt(ciphertext: bytes, path: str, passphrase: bytes = None) -> bytes:
+    loaded = load_rsa_private(path, passphrase=passphrase)
+    result = loaded.decrypt(
+        ciphertext=ciphertext,
+        padding=PADDING,
+    )
+    return result
+
+
+def create_private_key(passphrase: bytes = None, bits: int = 1024) -> bytes:
+    r"""\
+    >>> create_private_key(b'HelmIsSafe')
+    b'-----BEGIN OPENSSH PRIVATE KEY-----...---END OPENSSH PRIVATE KEY-----\n'
+    """
+    private = rsa.generate_private_key(
+        public_exponent=PUBLIC_EXPONENT,
+        key_size=bits,
+    )
+    algo = serialization.NoEncryption()
+    if passphrase:
+        algo = serialization.BestAvailableEncryption(password=passphrase)  # pylint:disable=R0204
+    result = private.private_bytes(
+        encoding=serialization.Encoding.PEM,
+        format=serialization.PrivateFormat.OpenSSH,
+        encryption_algorithm=algo,
+    )
+    return result
+
+
+def create_public_key(private: bytes, passphrase=None) -> bytes:
+    """\
+    >>> create_public_key(create_private_key())
+    b'ssh-rsa ...=='
+    >>> create_public_key(create_private_key(passphrase=b'helm'), b'helm')
+    b'ssh-rsa ...=='
+    """
+    result = serialization.load_ssh_private_key(
+        data=private,
+        password=passphrase,
+    )
+    public = result.public_key()
+    result = dump_public_key(public)
+    return result
+
+
+def dump_public_key(public) -> bytes:
+    result = public.public_bytes(
+        encoding=serialization.Encoding.OpenSSH,
+        format=serialization.PublicFormat.OpenSSH,
+    )
+    return result
+
+
+def write_rsa(path, key: bytes):
+    utilo.file_replace_binary(path, key)
+
+
+def load_rsa_private(
+    path,
+    passphrase: bytes = None,
+) -> '_SSH_PRIVATE_KEY_TYPES':
+    if isinstance(path, str):
+        loaded = utilo.file_read_binary(path)
+    else:
+        loaded = path
+    result = serialization.load_ssh_private_key(
+        data=loaded,
+        password=passphrase,
+    )
+    return result
+
+
+def load_rsa_public(path) -> '_SSH_PUBLIC_KEY_TYPES':
+    data = utilo.file_read_binary(path)
+    result = serialization.load_ssh_public_key(data=data)
+    return result

utilosafe-1.0.0/utilosafe/utils.py

@@ -0,0 +1,56 @@
+# =============================================================================
+# C O P Y R I G H T
+# -----------------------------------------------------------------------------
+# Copyright (c) 2021-2023 by Helmut Konrad Schewe. All rights reserved.
+# This file is property of Helmut Konrad Schewe. Any unauthorized copy,
+# use or distribution is an offensive act against international law and may
+# be prosecuted under federal law. Its content is company confidential.
+# =============================================================================
+
+import math
+
+import configos
+import utilo
+
+import utilosafe
+
+BLOCKSIZE = 32
+
+UTILOSAFE_PUBLIC_KEY = 'UTILOSAFE_PUBLIC_KEY'  # nosec
+UTILOSAFE_USER_PASSWORD = 'UTILOSAFE_USER_PASSWORD'  # nosec
+
+
+def create_block(content: bytes, blocksize: int = BLOCKSIZE) -> bytes:
+    """\
+    >>> create_block(b'abc' * 15)
+    b'abcabcabcabcabcabcabcabcabcabcabcabcabcabcabc                   '
+    """
+    if not len(content) % blocksize:
+        return content
+    missing = math.ceil(len(content) / blocksize) * blocksize - len(content)
+    content = content + b' ' * missing
+    return content
+
+
+def remove_block(content: bytes) -> bytes:
+    stripped = content.rstrip()
+    if content[len(stripped):len(stripped) + 1] == b'\n':
+        # valid file ends with newline
+        stripped = content[0:len(stripped) + 1]
+    return stripped
+
+
+@utilo.cacheme
+def user_password() -> str:
+    result = configos.env(UTILOSAFE_USER_PASSWORD, 'NOPASSWORD')
+    return result
+
+
+@utilo.cacheme
+def public_password() -> 'RSA':
+    path = configos.env(UTILOSAFE_PUBLIC_KEY, None)
+    if not path:
+        utilo.error(f'missing env {UTILOSAFE_PUBLIC_KEY}')
+        return None
+    result = utilosafe.load_rsa_public(path)
+    return result

utilosafe-1.0.0/utilosafe.egg-info/PKG-INFO

@@ -0,0 +1,21 @@
+Metadata-Version: 2.4
+Name: utilosafe
+Version: 1.0.0
+Author-email: Helmut Konrad Schewe <helmutus@outlook.com>
+License-Expression: MIT
+Project-URL: Homepage, https://github.com/anaticulae/utilosafe
+Project-URL: Repository, https://github.com/anaticulae/utilosafe
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Programming Language :: Python :: 3.14
+Requires-Python: >=3.12
+Description-Content-Type: text/markdown
+Requires-Dist: utilo<3.0.0,>=2.107.3
+Requires-Dist: configos<3.0.0,>=1.0.4
+Requires-Dist: cryptography<39.0.0,>=38.0.3
+Requires-Dist: bcrypt<5.0.0,>=4.0.1
+Provides-Extra: dev
+Requires-Dist: utilotest<1.0.0,>=0.26.0; extra == "dev"
+Requires-Dist: power<3.0.0,==2.20.1; extra == "dev"
+
+# utilosafe

utilosafe-1.0.0/utilosafe.egg-info/SOURCES.txt

@@ -0,0 +1,16 @@
+README
+pyproject.toml
+tests/test_cli.py
+tests/test_rsa.py
+utilosafe/__init__.py
+utilosafe/cli.py
+utilosafe/password.py
+utilosafe/public.py
+utilosafe/rsa.py
+utilosafe/utils.py
+utilosafe.egg-info/PKG-INFO
+utilosafe.egg-info/SOURCES.txt
+utilosafe.egg-info/dependency_links.txt
+utilosafe.egg-info/entry_points.txt
+utilosafe.egg-info/requires.txt
+utilosafe.egg-info/top_level.txt

utilosafe-1.0.0/utilosafe.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

utilosafe-1.0.0/utilosafe.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[console_scripts]
+safeme_create = utilosafe.cli:main

utilosafe-1.0.0/utilosafe.egg-info/requires.txt

@@ -0,0 +1,8 @@
+utilo<3.0.0,>=2.107.3
+configos<3.0.0,>=1.0.4
+cryptography<39.0.0,>=38.0.3
+bcrypt<5.0.0,>=4.0.1
+
+[dev]
+utilotest<1.0.0,>=0.26.0
+power<3.0.0,==2.20.1

utilosafe-1.0.0/utilosafe.egg-info/top_level.txt

@@ -0,0 +1 @@
+utilosafe