koolay/rsa.py

## rsa.py
import base64
import io

from Crypto import Random
from Crypto.Hash import SHA
from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_OAEP as PKCS1_OAEP_Cipher

def gen_key_pair(passpharse=None):
    """
    生成key
    eg:
        pem, pub = gen_key_pair('my password')
        print('Private Key:\n%s\n' % pem)
        print('Public Key:\n%s\n' % pub)
    :param passpharse:
    :return:
    """
    random_generator = Random.new().read
    key = RSA.generate(2048, random_generator)
    return key.exportKey(passphrase=passpharse), key.publickey().exportKey()


def rsa_encrypt(message, pub):
    """
    加密数据
    eg:
        message = 'To be encrypted'
        encdata = rsa_encrypt(message.encode('utf-8'), pub)
        print('Encrypted Message:\n', encdata)
    :param message: 字符串
    :param pub:公钥
    :return:
    """
    keystream = io.BytesIO(pub)
    pubkey = RSA.importKey(keystream.read())
    #h = SHA.new(message)
    cipher = PKCS1_OAEP_Cipher.new(pubkey)
    return base64.b64encode(cipher.encrypt(message))


def rsa_decrypt(ciphertext, pem, passphrase=None):
    """
    解密数据
    eg:
        decdata = rsa_decrypt(encdata, pem, passphrase)
        print('Decrypted Message:\n', decdata)
    :param ciphertext:
    :param pem: 私钥
    :param passphrase:
    :return:
    """
    ciphertext = base64.b64decode(ciphertext)
    keystream = io.BytesIO(pem)
    pemkey = RSA.importKey(keystream.read(), passphrase=passphrase)
    cipher = PKCS1_OAEP_Cipher.new(pemkey)
    return cipher.decrypt(ciphertext)

def sign(message, pem, passphrase=None):
    keystream = io.BytesIO(pem)
    pub_key = RSA.importKey(keystream.read(), passphrase)
    data_hash = SHA.new(message.encode('utf-8'))
    _signer = PKCS1_v1_5.new(pub_key)
    return base64.b64encode(_signer.sign(data_hash))

def verify_sign(message, signature, pub, passphrase=None):
    keystream = io.BytesIO(pub)
    pub_key = RSA.importKey(keystream.read(), passphrase)
    signature = base64.b64decode(signature)
    data_hash = SHA.new(message.encode('utf-8'))
    _signer = PKCS1_v1_5.new(pub_key)
    return _signer.verify(data_hash, signature)

def _write_file():
    pem, pub = gen_key_pair()
    with open('/tmp/rsa.pem', 'wb') as f:
        f.write(pem)
    with open('/tmp/rsa.pub', 'wb') as f:
        f.write(pub)

def _read_rsa():
    with open('/tmp/rsa.pem', 'rb') as f:
        pem = f.read()
    with open('/tmp/rsa.pub', 'rb') as f:
        pub = f.read()
    return pem, pub

if __name__ == '__main__':
    pem, pub = _read_rsa()
    encrypted = rsa_encrypt('haha'.encode('utf-8'), pub)
    decrypted = rsa_decrypt(encrypted, pem, None)

    print(decrypted)
	import base64
	import io

	from Crypto import Random
	from Crypto.Hash import SHA
	from Crypto.PublicKey import RSA
	from Crypto.Cipher import PKCS1_OAEP as PKCS1_OAEP_Cipher

	def gen_key_pair(passpharse=None):
	"""
	生成key
	eg:
	pem, pub = gen_key_pair('my password')
	print('Private Key:\n%s\n' % pem)
	print('Public Key:\n%s\n' % pub)
	:param passpharse:
	:return:
	"""
	random_generator = Random.new().read
	key = RSA.generate(2048, random_generator)
	return key.exportKey(passphrase=passpharse), key.publickey().exportKey()


	def rsa_encrypt(message, pub):
	"""
	加密数据
	eg:
	message = 'To be encrypted'
	encdata = rsa_encrypt(message.encode('utf-8'), pub)
	print('Encrypted Message:\n', encdata)
	:param message: 字符串
	:param pub:公钥
	:return:
	"""
	keystream = io.BytesIO(pub)
	pubkey = RSA.importKey(keystream.read())
	#h = SHA.new(message)
	cipher = PKCS1_OAEP_Cipher.new(pubkey)
	return base64.b64encode(cipher.encrypt(message))


	def rsa_decrypt(ciphertext, pem, passphrase=None):
	"""
	解密数据
	eg:
	decdata = rsa_decrypt(encdata, pem, passphrase)
	print('Decrypted Message:\n', decdata)
	:param ciphertext:
	:param pem: 私钥
	:param passphrase:
	:return:
	"""
	ciphertext = base64.b64decode(ciphertext)
	keystream = io.BytesIO(pem)
	pemkey = RSA.importKey(keystream.read(), passphrase=passphrase)
	cipher = PKCS1_OAEP_Cipher.new(pemkey)
	return cipher.decrypt(ciphertext)

	def sign(message, pem, passphrase=None):
	keystream = io.BytesIO(pem)
	pub_key = RSA.importKey(keystream.read(), passphrase)
	data_hash = SHA.new(message.encode('utf-8'))
	_signer = PKCS1_v1_5.new(pub_key)
	return base64.b64encode(_signer.sign(data_hash))

	def verify_sign(message, signature, pub, passphrase=None):
	keystream = io.BytesIO(pub)
	pub_key = RSA.importKey(keystream.read(), passphrase)
	signature = base64.b64decode(signature)
	data_hash = SHA.new(message.encode('utf-8'))
	_signer = PKCS1_v1_5.new(pub_key)
	return _signer.verify(data_hash, signature)

	def _write_file():
	pem, pub = gen_key_pair()
	with open('/tmp/rsa.pem', 'wb') as f:
	f.write(pem)
	with open('/tmp/rsa.pub', 'wb') as f:
	f.write(pub)

	def _read_rsa():
	with open('/tmp/rsa.pem', 'rb') as f:
	pem = f.read()
	with open('/tmp/rsa.pub', 'rb') as f:
	pub = f.read()
	return pem, pub

	if __name__ == '__main__':
	pem, pub = _read_rsa()
	encrypted = rsa_encrypt('haha'.encode('utf-8'), pub)
	decrypted = rsa_decrypt(encrypted, pem, None)

	print(decrypted)