Telethon/telethon/crypto/aes.py

"""
AES IGE implementation in Python. This module may use libssl if available.
"""
import os
import pyaes
from . import libssl


if libssl.AES is not None:
    # Use libssl if available, since it will be faster
    AES = libssl.AES
else:
    # Fallback to a pure Python implementation
    class AES:
        """
        Class that servers as an interface to encrypt and decrypt
        text through the AES IGE mode.
        """
        @staticmethod
        def decrypt_ige(cipher_text, key, iv):
            """
            Decrypts the given text in 16-bytes blocks by using the
            given key and 32-bytes initialization vector.
            """
            iv1 = iv[:len(iv) // 2]
            iv2 = iv[len(iv) // 2:]

            aes = pyaes.AES(key)

            plain_text = []
            blocks_count = len(cipher_text) // 16

            cipher_text_block = [0] * 16
            for block_index in range(blocks_count):
                for i in range(16):
                    cipher_text_block[i] = \
                        cipher_text[block_index * 16 + i] ^ iv2[i]

                plain_text_block = aes.decrypt(cipher_text_block)

                for i in range(16):
                    plain_text_block[i] ^= iv1[i]

                iv1 = cipher_text[block_index * 16:block_index * 16 + 16]
                iv2 = plain_text_block

                plain_text.extend(plain_text_block)

            return bytes(plain_text)

        @staticmethod
        def encrypt_ige(plain_text, key, iv):
            """
            Encrypts the given text in 16-bytes blocks by using the
            given key and 32-bytes initialization vector.
            """

            # Add random padding iff it's not evenly divisible by 16 already
            if len(plain_text) % 16 != 0:
                padding_count = 16 - len(plain_text) % 16
                plain_text += os.urandom(padding_count)

            iv1 = iv[:len(iv) // 2]
            iv2 = iv[len(iv) // 2:]

            aes = pyaes.AES(key)

            cipher_text = []
            blocks_count = len(plain_text) // 16

            for block_index in range(blocks_count):
                plain_text_block = list(
                    plain_text[block_index * 16:block_index * 16 + 16]
                )
                for i in range(16):
                    plain_text_block[i] ^= iv1[i]

                cipher_text_block = aes.encrypt(plain_text_block)

                for i in range(16):
                    cipher_text_block[i] ^= iv2[i]

                iv1 = cipher_text_block
                iv2 = plain_text[block_index * 16:block_index * 16 + 16]

                cipher_text.extend(cipher_text_block)

            return bytes(cipher_text)
Document the crypto/ module 2017-11-26 18:57:40 +03:00			`"""`
			`AES IGE implementation in Python. This module may use libssl if available.`
			`"""`
Pythonized some parts 2016-09-16 15:04:46 +03:00			`import os`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00			`import pyaes`
Faster crypto by using libssl (closes #199) 2017-08-20 02:21:11 +03:00			`from . import libssl`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00

Improve libssl.py's file formatting 2017-08-20 02:27:04 +03:00			`if libssl.AES is not None:`
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`# Use libssl if available, since it will be faster`
			`AES = libssl.AES`
			`else:`
			`# Fallback to a pure Python implementation`
			`class AES:`
Document the crypto/ module 2017-11-26 18:57:40 +03:00			`"""`
			`Class that servers as an interface to encrypt and decrypt`
			`text through the AES IGE mode.`
			`"""`
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`@staticmethod`
			`def decrypt_ige(cipher_text, key, iv):`
Document the crypto/ module 2017-11-26 18:57:40 +03:00			`"""`
			`Decrypts the given text in 16-bytes blocks by using the`
			`given key and 32-bytes initialization vector.`
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`"""`
			`iv1 = iv[:len(iv) // 2]`
			`iv2 = iv[len(iv) // 2:]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`aes = pyaes.AES(key)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`plain_text = []`
			`blocks_count = len(cipher_text) // 16`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`cipher_text_block = [0] * 16`
			`for block_index in range(blocks_count):`
			`for i in range(16):`
			`cipher_text_block[i] = \`
			`cipher_text[block_index * 16 + i] ^ iv2[i]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`plain_text_block = aes.decrypt(cipher_text_block)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`for i in range(16):`
			`plain_text_block[i] ^= iv1[i]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`iv1 = cipher_text[block_index * 16:block_index * 16 + 16]`
			`iv2 = plain_text_block`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`plain_text.extend(plain_text_block)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`return bytes(plain_text)`
Pythonized some parts 2016-09-16 15:04:46 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`@staticmethod`
			`def encrypt_ige(plain_text, key, iv):`
Document the crypto/ module 2017-11-26 18:57:40 +03:00			`"""`
			`Encrypts the given text in 16-bytes blocks by using the`
			`given key and 32-bytes initialization vector.`
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`"""`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`# Add random padding iff it's not evenly divisible by 16 already`
			`if len(plain_text) % 16 != 0:`
			`padding_count = 16 - len(plain_text) % 16`
			`plain_text += os.urandom(padding_count)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`iv1 = iv[:len(iv) // 2]`
			`iv2 = iv[len(iv) // 2:]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`aes = pyaes.AES(key)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`cipher_text = []`
			`blocks_count = len(plain_text) // 16`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`for block_index in range(blocks_count):`
			`plain_text_block = list(`
			`plain_text[block_index * 16:block_index * 16 + 16]`
			`)`
			`for i in range(16):`
			`plain_text_block[i] ^= iv1[i]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`cipher_text_block = aes.encrypt(plain_text_block)`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`for i in range(16):`
			`cipher_text_block[i] ^= iv2[i]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`iv1 = cipher_text_block`
			`iv2 = plain_text[block_index * 16:block_index * 16 + 16]`
Finished authenticator (now it works!) 2016-09-03 21:34:24 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`cipher_text.extend(cipher_text_block)`
Faster crypto by using libssl (closes #199) 2017-08-20 02:21:11 +03:00
Avoid defining Python's AES class if libssl's is available 2017-08-20 02:23:57 +03:00			`return bytes(cipher_text)`