Reticulum/FPE/Identity.py

import base64
import math
import os
import FPE
import time
import atexit
import cPickle
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.serialization import load_der_public_key
from cryptography.hazmat.primitives.serialization import load_der_private_key
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives.asymmetric import padding

class Identity:
	# Configure key size
	KEYSIZE    = 1536;
	DERKEYSIZE = 1808;

	# Padding size, not configurable
	PADDINGSIZE= 336;

	# Storage
	known_destinations = {}

	def __init__(self,public_only=False):
		# Initialize keys to none
		self.prv = None
		self.pub = None
		self.prv_bytes = None
		self.pub_bytes = None
		self.hash = None
		self.hexhash = None

		if not public_only:
			self.createKeys()

	@staticmethod
	def remember(packet_hash, destination_hash, public_key, app_data = None):
		FPE.log("Remembering "+FPE.prettyhexrep(destination_hash), FPE.LOG_VERBOSE)
		Identity.known_destinations[destination_hash] = [time.time(), packet_hash, public_key, app_data]


	@staticmethod
	def recall(destination_hash):
		FPE.log("Searching for "+FPE.prettyhexrep(destination_hash)+"...", FPE.LOG_DEBUG)
		if destination_hash in Identity.known_destinations:
			identity_data = Identity.known_destinations[destination_hash]
			identity = Identity(public_only=True)
			identity.loadPublicKey(identity_data[2])
			FPE.log("Found "+FPE.prettyhexrep(destination_hash)+" in known destinations", FPE.LOG_DEBUG)
			return identity
		else:
			FPE.log("Could not find "+FPE.prettyhexrep(destination_hash)+" in known destinations", FPE.LOG_DEBUG)
			return None

	@staticmethod
	def saveKnownDestinations():
		FPE.log("Saving known destinations to storage...", FPE.LOG_VERBOSE)
		file = open(FPE.FlexPE.storagepath+"/known_destinations","w")
		cPickle.dump(Identity.known_destinations, file)
		file.close()
		FPE.log("Done saving known destinations to storage", FPE.LOG_VERBOSE)

	@staticmethod
	def loadKnownDestinations():
		if os.path.isfile(FPE.FlexPE.storagepath+"/known_destinations"):
			file = open(FPE.FlexPE.storagepath+"/known_destinations","r")
			Identity.known_destinations = cPickle.load(file)
			file.close()
			FPE.log("Loaded "+str(len(Identity.known_destinations))+" known destinations from storage", FPE.LOG_VERBOSE)
		else:
			FPE.log("Destinations file does not exist, so no known destinations loaded", FPE.LOG_VERBOSE)

	@staticmethod
	def fullHash(data):
		digest = hashes.Hash(hashes.SHA256(), backend=default_backend())
		digest.update(data)

		return digest.finalize()

	@staticmethod
	def truncatedHash(data):
		digest = hashes.Hash(hashes.SHA256(), backend=default_backend())
		digest.update(data)

		return digest.finalize()[:10]

	@staticmethod
	def validateAnnounce(packet):
		if packet.packet_type == FPE.Packet.ANNOUNCE:
			FPE.log("Validating announce from "+FPE.prettyhexrep(packet.destination_hash), FPE.LOG_VERBOSE)
			destination_hash = packet.destination_hash
			public_key = packet.data[10:Identity.DERKEYSIZE/8+10]
			random_hash = packet.data[Identity.DERKEYSIZE/8+10:Identity.DERKEYSIZE/8+20]
			signature = packet.data[Identity.DERKEYSIZE/8+20:Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8]
			app_data = ""
			if len(packet.data) > Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8:
				app_data = packet.data[Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8:]

			signed_data = destination_hash+public_key+random_hash+app_data

			announced_identity = Identity(public_only=True)
			announced_identity.loadPublicKey(public_key)

			if announced_identity.validate(signature, signed_data):
				FPE.log("Announce is valid", FPE.LOG_VERBOSE)
				FPE.Identity.remember(FPE.Identity.fullHash(packet.raw), destination_hash, public_key)
				FPE.log("Stored valid announce from "+FPE.prettyhexrep(destination_hash), FPE.LOG_INFO)
				del announced_identity
				return True
			else:
				FPE.log("Announce is invalid", FPE.LOG_VERBOSE)
				del announced_identity
				return False

	@staticmethod
	def exitHandler():
		Identity.saveKnownDestinations()


	def createKeys(self):
		self.prv = rsa.generate_private_key(
			public_exponent=65337,
			key_size=Identity.KEYSIZE,
			backend=default_backend()
		)
		self.prv_bytes = self.prv.private_bytes(
			encoding=serialization.Encoding.DER,
			format=serialization.PrivateFormat.PKCS8,
			encryption_algorithm=serialization.NoEncryption()
		)
		self.pub = self.prv.public_key()
		self.pub_bytes = self.pub.public_bytes(
			encoding=serialization.Encoding.DER,
			format=serialization.PublicFormat.SubjectPublicKeyInfo
		)

		self.updateHashes()

		FPE.log("Identity keys created for "+FPE.prettyhexrep(self.hash), FPE.LOG_INFO)

	def getPrivateKey(self):
		return self.prv_bytes

	def getPublicKey(self):
		return self.pub_bytes

	def loadPrivateKey(self, key):
		self.prv_bytes = key
		self.prv = serialization.load_der_private_key(self.prv_bytes, password=None,backend=default_backend())
		self.pub = self.prv.public_key()
		self.pub_bytes = self.pub.public_bytes(
			encoding=serialization.Encoding.DER,
			format=serialization.PublicFormat.SubjectPublicKeyInfo
		)
		self.updateHashes()

	def loadPublicKey(self, key):
		self.pub_bytes = key
		self.pub = load_der_public_key(self.pub_bytes, backend=default_backend())
		self.updateHashes()

	def updateHashes(self):
		self.hash = Identity.truncatedHash(self.pub_bytes)
		self.hexhash = self.hash.encode("hex_codec")

	def saveIdentity(self):
		pass

	def loadIdentity(self):
		pass

	def encrypt(self, plaintext):
		if self.pub != None:
			chunksize = (Identity.KEYSIZE-Identity.PADDINGSIZE)/8
			chunks = int(math.ceil(len(plaintext)/(float(chunksize))))
			# TODO: Remove debug output print("Plaintext size is "+str(len(plaintext))+", with "+str(chunks)+" chunks")

			ciphertext = "";
			for chunk in range(chunks):
				start = chunk*chunksize
				end = (chunk+1)*chunksize
				if (chunk+1)*chunksize > len(plaintext):
					end = len(plaintext)

				# TODO: Remove debug output print("Processing chunk "+str(chunk+1)+" of "+str(chunks)+". Starting at "+str(start)+" and stopping at "+str(end)+". The length is "+str(len(plaintext[start:end])))
				
				ciphertext += self.pub.encrypt(
					plaintext[start:end],
					padding.OAEP(
						mgf=padding.MGF1(algorithm=hashes.SHA1()),
						algorithm=hashes.SHA1(),
						label=None
					)
				)
			# TODO: Remove debug output print("Plaintext encrypted, ciphertext length is "+str(len(ciphertext))+" bytes.")
			return ciphertext
		else:
			raise KeyError("Encryption failed because identity does not hold a public key")


	def decrypt(self, ciphertext):
		if self.prv != None:
			# TODO: Remove debug output print("Ciphertext length is "+str(len(ciphertext))+". ")
			chunksize = (Identity.KEYSIZE)/8
			chunks = int(math.ceil(len(ciphertext)/(float(chunksize))))

			plaintext = "";
			for chunk in range(chunks):
				start = chunk*chunksize
				end = (chunk+1)*chunksize
				if (chunk+1)*chunksize > len(ciphertext):
					end = len(ciphertext)

				# TODO: Remove debug output print("Processing chunk "+str(chunk+1)+" of "+str(chunks)+". Starting at "+str(start)+" and stopping at "+str(end)+". The length is "+str(len(ciphertext[start:end])))

				plaintext += self.prv.decrypt(
					ciphertext[start:end],
					padding.OAEP(
						mgf=padding.MGF1(algorithm=hashes.SHA1()),
						algorithm=hashes.SHA1(),
						label=None
					)
				)
			return plaintext;
		else:
			raise KeyError("Decryption failed because identity does not hold a private key")


	def sign(self, message):
		if self.prv != None:
			signer = self.prv.signer(
				padding.PSS(
					mgf=padding.MGF1(hashes.SHA256()),
					salt_length=padding.PSS.MAX_LENGTH
				),
				hashes.SHA256()
			)
			signer.update(message)
			return signer.finalize()
		else:
			raise KeyError("Signing failed because identity does not hold a private key")

	def validate(self, signature, message):
		if self.pub != None:
			try:
				self.pub.verify(
					signature,
					message,
					padding.PSS(
						mgf=padding.MGF1(hashes.SHA256()),
						salt_length=padding.PSS.MAX_LENGTH
					),
					hashes.SHA256()
				)
				return True
			except:
				return False
		else:
			raise KeyError("Signature validation failed because identity does not hold a public key")

	def prove(self, packet, destination):
		proof_data = packet.packet_hash + self.sign(packet.packet_hash)
		proof = FPE.Packet(destination, proof_data, FPE.Packet.PROOF)
		proof.send()


	def getRandomHash(self):
		return self.truncatedHash(os.urandom(10))
Restructed to Identity 2018-03-16 10:40:37 +00:00			`import base64`
			`import math`
Announce and validation 2018-03-19 17:11:50 +00:00			`import os`
Restructuring and packet format 2018-03-19 15:39:08 +00:00			`import FPE`
Known destinations 2018-03-19 19:51:26 +00:00			`import time`
			`import atexit`
			`import cPickle`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`from cryptography.hazmat.primitives import hashes`
			`from cryptography.hazmat.backends import default_backend`
			`from cryptography.hazmat.primitives import serialization`
Announce and validation 2018-03-19 17:11:50 +00:00			`from cryptography.hazmat.primitives.serialization import load_der_public_key`
			`from cryptography.hazmat.primitives.serialization import load_der_private_key`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`from cryptography.hazmat.primitives.asymmetric import rsa`
			`from cryptography.hazmat.primitives.asymmetric import padding`
Before Identity restructure 2018-03-16 09:50:37 +00:00
			`class Identity:`
			`# Configure key size`
			`KEYSIZE = 1536;`
Announce and validation 2018-03-19 17:11:50 +00:00			`DERKEYSIZE = 1808;`
Before Identity restructure 2018-03-16 09:50:37 +00:00
			`# Padding size, not configurable`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`PADDINGSIZE= 336;`

Announce and validation 2018-03-19 17:11:50 +00:00			`# Storage`
Known destinations 2018-03-19 19:51:26 +00:00			`known_destinations = {}`
Announce and validation 2018-03-19 17:11:50 +00:00
Known destinations 2018-03-19 19:51:26 +00:00			`def __init__(self,public_only=False):`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`# Initialize keys to none`
			`self.prv = None`
			`self.pub = None`
			`self.prv_bytes = None`
			`self.pub_bytes = None`
			`self.hash = None`
			`self.hexhash = None`

Known destinations 2018-03-19 19:51:26 +00:00			`if not public_only:`
			`self.createKeys()`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`@staticmethod`
Echo example 2018-03-20 11:32:41 +00:00			`def remember(packet_hash, destination_hash, public_key, app_data = None):`
			`FPE.log("Remembering "+FPE.prettyhexrep(destination_hash), FPE.LOG_VERBOSE)`
			`Identity.known_destinations[destination_hash] = [time.time(), packet_hash, public_key, app_data]`

Announce and validation 2018-03-19 17:11:50 +00:00
			`@staticmethod`
Echo example 2018-03-20 11:32:41 +00:00			`def recall(destination_hash):`
			`FPE.log("Searching for "+FPE.prettyhexrep(destination_hash)+"...", FPE.LOG_DEBUG)`
			`if destination_hash in Identity.known_destinations:`
			`identity_data = Identity.known_destinations[destination_hash]`
			`identity = Identity(public_only=True)`
			`identity.loadPublicKey(identity_data[2])`
			`FPE.log("Found "+FPE.prettyhexrep(destination_hash)+" in known destinations", FPE.LOG_DEBUG)`
			`return identity`
			`else:`
			`FPE.log("Could not find "+FPE.prettyhexrep(destination_hash)+" in known destinations", FPE.LOG_DEBUG)`
			`return None`
Announce and validation 2018-03-19 17:11:50 +00:00
Known destinations 2018-03-19 19:51:26 +00:00			`@staticmethod`
			`def saveKnownDestinations():`
			`FPE.log("Saving known destinations to storage...", FPE.LOG_VERBOSE)`
			`file = open(FPE.FlexPE.storagepath+"/known_destinations","w")`
			`cPickle.dump(Identity.known_destinations, file)`
			`file.close()`
			`FPE.log("Done saving known destinations to storage", FPE.LOG_VERBOSE)`

			`@staticmethod`
			`def loadKnownDestinations():`
			`if os.path.isfile(FPE.FlexPE.storagepath+"/known_destinations"):`
			`file = open(FPE.FlexPE.storagepath+"/known_destinations","r")`
			`Identity.known_destinations = cPickle.load(file)`
			`file.close()`
			`FPE.log("Loaded "+str(len(Identity.known_destinations))+" known destinations from storage", FPE.LOG_VERBOSE)`
			`else:`
			`FPE.log("Destinations file does not exist, so no known destinations loaded", FPE.LOG_VERBOSE)`

Announce and validation 2018-03-19 17:11:50 +00:00			`@staticmethod`
			`def fullHash(data):`
			`digest = hashes.Hash(hashes.SHA256(), backend=default_backend())`
			`digest.update(data)`

			`return digest.finalize()`

			`@staticmethod`
			`def truncatedHash(data):`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`digest = hashes.Hash(hashes.SHA256(), backend=default_backend())`
Announce and validation 2018-03-19 17:11:50 +00:00			`digest.update(data)`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`return digest.finalize()[:10]`

Announce and validation 2018-03-19 17:11:50 +00:00			`@staticmethod`
			`def validateAnnounce(packet):`
			`if packet.packet_type == FPE.Packet.ANNOUNCE:`
Echo example 2018-03-20 11:32:41 +00:00			`FPE.log("Validating announce from "+FPE.prettyhexrep(packet.destination_hash), FPE.LOG_VERBOSE)`
Announce and validation 2018-03-19 17:11:50 +00:00			`destination_hash = packet.destination_hash`
			`public_key = packet.data[10:Identity.DERKEYSIZE/8+10]`
			`random_hash = packet.data[Identity.DERKEYSIZE/8+10:Identity.DERKEYSIZE/8+20]`
			`signature = packet.data[Identity.DERKEYSIZE/8+20:Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8]`
			`app_data = ""`
			`if len(packet.data) > Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8:`
			`app_data = packet.data[Identity.DERKEYSIZE/8+20+Identity.KEYSIZE/8:]`

			`signed_data = destination_hash+public_key+random_hash+app_data`

Known destinations 2018-03-19 19:51:26 +00:00			`announced_identity = Identity(public_only=True)`
Announce and validation 2018-03-19 17:11:50 +00:00			`announced_identity.loadPublicKey(public_key)`

			`if announced_identity.validate(signature, signed_data):`
			`FPE.log("Announce is valid", FPE.LOG_VERBOSE)`
Echo example 2018-03-20 11:32:41 +00:00			`FPE.Identity.remember(FPE.Identity.fullHash(packet.raw), destination_hash, public_key)`
			`FPE.log("Stored valid announce from "+FPE.prettyhexrep(destination_hash), FPE.LOG_INFO)`
			`del announced_identity`
			`return True`
Announce and validation 2018-03-19 17:11:50 +00:00			`else:`
			`FPE.log("Announce is invalid", FPE.LOG_VERBOSE)`
Echo example 2018-03-20 11:32:41 +00:00			`del announced_identity`
			`return False`

			`@staticmethod`
			`def exitHandler():`
			`Identity.saveKnownDestinations()`
Announce and validation 2018-03-19 17:11:50 +00:00

Restructed to Identity 2018-03-16 10:40:37 +00:00			`def createKeys(self):`
			`self.prv = rsa.generate_private_key(`
			`public_exponent=65337,`
			`key_size=Identity.KEYSIZE,`
			`backend=default_backend()`
			`)`
			`self.prv_bytes = self.prv.private_bytes(`
			`encoding=serialization.Encoding.DER,`
			`format=serialization.PrivateFormat.PKCS8,`
			`encryption_algorithm=serialization.NoEncryption()`
			`)`
			`self.pub = self.prv.public_key()`
			`self.pub_bytes = self.pub.public_bytes(`
			`encoding=serialization.Encoding.DER,`
			`format=serialization.PublicFormat.SubjectPublicKeyInfo`
			`)`

Echo example 2018-03-20 11:32:41 +00:00			`self.updateHashes()`
Restructed to Identity 2018-03-16 10:40:37 +00:00
Echo example 2018-03-20 11:32:41 +00:00			`FPE.log("Identity keys created for "+FPE.prettyhexrep(self.hash), FPE.LOG_INFO)`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`def getPrivateKey(self):`
			`return self.prv_bytes`

			`def getPublicKey(self):`
			`return self.pub_bytes`

			`def loadPrivateKey(self, key):`
			`self.prv_bytes = key`
			`self.prv = serialization.load_der_private_key(self.prv_bytes, password=None,backend=default_backend())`
			`self.pub = self.prv.public_key()`
			`self.pub_bytes = self.pub.public_bytes(`
			`encoding=serialization.Encoding.DER,`
			`format=serialization.PublicFormat.SubjectPublicKeyInfo`
			`)`
Echo example 2018-03-20 11:32:41 +00:00			`self.updateHashes()`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`def loadPublicKey(self, key):`
			`self.pub_bytes = key`
			`self.pub = load_der_public_key(self.pub_bytes, backend=default_backend())`
Echo example 2018-03-20 11:32:41 +00:00			`self.updateHashes()`

			`def updateHashes(self):`
			`self.hash = Identity.truncatedHash(self.pub_bytes)`
			`self.hexhash = self.hash.encode("hex_codec")`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`def saveIdentity(self):`
			`pass`

			`def loadIdentity(self):`
			`pass`

			`def encrypt(self, plaintext):`
Echo example 2018-03-20 11:32:41 +00:00			`if self.pub != None:`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`chunksize = (Identity.KEYSIZE-Identity.PADDINGSIZE)/8`
			`chunks = int(math.ceil(len(plaintext)/(float(chunksize))))`
Restructuring and packet format 2018-03-19 15:39:08 +00:00			`# TODO: Remove debug output print("Plaintext size is "+str(len(plaintext))+", with "+str(chunks)+" chunks")`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`ciphertext = "";`
			`for chunk in range(chunks):`
			`start = chunk*chunksize`
			`end = (chunk+1)*chunksize`
			`if (chunk+1)*chunksize > len(plaintext):`
			`end = len(plaintext)`

Restructuring and packet format 2018-03-19 15:39:08 +00:00			`# TODO: Remove debug output print("Processing chunk "+str(chunk+1)+" of "+str(chunks)+". Starting at "+str(start)+" and stopping at "+str(end)+". The length is "+str(len(plaintext[start:end])))`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`ciphertext += self.pub.encrypt(`
			`plaintext[start:end],`
			`padding.OAEP(`
			`mgf=padding.MGF1(algorithm=hashes.SHA1()),`
			`algorithm=hashes.SHA1(),`
			`label=None`
			`)`
			`)`
Restructuring and packet format 2018-03-19 15:39:08 +00:00			`# TODO: Remove debug output print("Plaintext encrypted, ciphertext length is "+str(len(ciphertext))+" bytes.")`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`return ciphertext`
			`else:`
Echo example 2018-03-20 11:32:41 +00:00			`raise KeyError("Encryption failed because identity does not hold a public key")`
Restructed to Identity 2018-03-16 10:40:37 +00:00

			`def decrypt(self, ciphertext):`
			`if self.prv != None:`
Restructuring and packet format 2018-03-19 15:39:08 +00:00			`# TODO: Remove debug output print("Ciphertext length is "+str(len(ciphertext))+". ")`
Restructed to Identity 2018-03-16 10:40:37 +00:00			`chunksize = (Identity.KEYSIZE)/8`
			`chunks = int(math.ceil(len(ciphertext)/(float(chunksize))))`

			`plaintext = "";`
			`for chunk in range(chunks):`
			`start = chunk*chunksize`
			`end = (chunk+1)*chunksize`
			`if (chunk+1)*chunksize > len(ciphertext):`
			`end = len(ciphertext)`

Restructuring and packet format 2018-03-19 15:39:08 +00:00			`# TODO: Remove debug output print("Processing chunk "+str(chunk+1)+" of "+str(chunks)+". Starting at "+str(start)+" and stopping at "+str(end)+". The length is "+str(len(ciphertext[start:end])))`
Restructed to Identity 2018-03-16 10:40:37 +00:00
			`plaintext += self.prv.decrypt(`
			`ciphertext[start:end],`
			`padding.OAEP(`
			`mgf=padding.MGF1(algorithm=hashes.SHA1()),`
			`algorithm=hashes.SHA1(),`
			`label=None`
			`)`
			`)`
			`return plaintext;`
			`else:`
			`raise KeyError("Decryption failed because identity does not hold a private key")`


			`def sign(self, message):`
			`if self.prv != None:`
			`signer = self.prv.signer(`
			`padding.PSS(`
			`mgf=padding.MGF1(hashes.SHA256()),`
			`salt_length=padding.PSS.MAX_LENGTH`
			`),`
			`hashes.SHA256()`
			`)`
			`signer.update(message)`
			`return signer.finalize()`
			`else:`
			`raise KeyError("Signing failed because identity does not hold a private key")`

Announce and validation 2018-03-19 17:11:50 +00:00			`def validate(self, signature, message):`
			`if self.pub != None:`
			`try:`
			`self.pub.verify(`
			`signature,`
			`message,`
			`padding.PSS(`
			`mgf=padding.MGF1(hashes.SHA256()),`
			`salt_length=padding.PSS.MAX_LENGTH`
			`),`
			`hashes.SHA256()`
			`)`
			`return True`
			`except:`
			`return False`
			`else:`
			`raise KeyError("Signature validation failed because identity does not hold a public key")`

Echo example 2018-03-20 11:32:41 +00:00			`def prove(self, packet, destination):`
			`proof_data = packet.packet_hash + self.sign(packet.packet_hash)`
			`proof = FPE.Packet(destination, proof_data, FPE.Packet.PROOF)`
			`proof.send()`
Announce and validation 2018-03-19 17:11:50 +00:00
Known destinations 2018-03-19 19:51:26 +00:00
Echo example 2018-03-20 11:32:41 +00:00			`def getRandomHash(self):`
			`return self.truncatedHash(os.urandom(10))`
Known destinations 2018-03-19 19:51:26 +00:00