From b09622ccb6e3403e314395ff56fb787efb73bb1b Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Sun, 16 Feb 2014 19:32:04 -0600 Subject: add beginning of IDEA vector source docs. no verification code yet --- docs/development/custom-vectors/idea.rst | 25 +++++++++ .../custom-vectors/idea/generate_idea.py | 59 ++++++++++++++++++++++ 2 files changed, 84 insertions(+) create mode 100644 docs/development/custom-vectors/idea.rst create mode 100644 docs/development/custom-vectors/idea/generate_idea.py (limited to 'docs/development/custom-vectors') diff --git a/docs/development/custom-vectors/idea.rst b/docs/development/custom-vectors/idea.rst new file mode 100644 index 00000000..097819ed --- /dev/null +++ b/docs/development/custom-vectors/idea.rst @@ -0,0 +1,25 @@ +IDEA Vector Creation +===================== + +This page documents the code that was used to generate the IDEA CBC, CFB, and +OFB test vectors as well as the code used to verify them against another +implementation. For IDEA the vectors were generated using OpenSSL and verified +with Go. + +Creation +-------- + +``cryptography`` was modified to support IDEA in CBC, CFB, and OFB modes. Then +the following python script was run to generate the vector files. + +.. literalinclude:: /development/custom-vectors/idea/generate_idea.py + +Download link: :download:`generate_idea.py ` + + +Verification +------------ + +The following go code was used to verify the vectors. + +TODO: verify the vectors. diff --git a/docs/development/custom-vectors/idea/generate_idea.py b/docs/development/custom-vectors/idea/generate_idea.py new file mode 100644 index 00000000..c8fe7ed5 --- /dev/null +++ b/docs/development/custom-vectors/idea/generate_idea.py @@ -0,0 +1,59 @@ +import binascii + +from cryptography.hazmat.backends.openssl.backend import backend +from cryptography.hazmat.primitives.ciphers import base, algorithms, modes + + +def encrypt(mode, key, iv, plaintext): + cipher = base.Cipher( + algorithms.IDEA(binascii.unhexlify(key)), + mode(binascii.unhexlify(iv)), + backend + ) + encryptor = cipher.encryptor() + ct = encryptor.update(binascii.unhexlify(plaintext)) + ct += encryptor.finalize() + return binascii.hexlify(ct) + + +def build_vectors(mode, filename): + vector_file = open(filename, "r") + + count = 0 + output = [] + key = None + iv = None + plaintext = None + for line in vector_file: + line = line.strip() + if line.startswith("KEY"): + if count != 0: + output.append("CIPHERTEXT = {}".format( + encrypt(mode, key, iv, plaintext)) + ) + output.append("\nCOUNT = {}".format(count)) + count += 1 + name, key = line.split(" = ") + output.append("KEY = {}".format(key)) + elif line.startswith("IV"): + name, iv = line.split(" = ") + iv = iv[0:16] + output.append("IV = {}".format(iv)) + elif line.startswith("PLAINTEXT"): + name, plaintext = line.split(" = ") + output.append("PLAINTEXT = {}".format(plaintext)) + + output.append("CIPHERTEXT = {}".format(encrypt(mode, key, iv, plaintext))) + return "\n".join(output) + + +def write_file(data, filename): + with open(filename, "w") as f: + f.write(data) + +cbc_path = "tests/hazmat/primitives/vectors/ciphers/AES/CBC/CBCMMT128.rsp" +write_file(build_vectors(modes.CBC, cbc_path), "idea-cbc.txt") +ofb_path = "tests/hazmat/primitives/vectors/ciphers/AES/OFB/OFBMMT128.rsp" +write_file(build_vectors(modes.OFB, ofb_path), "idea-ofb.txt") +cfb_path = "tests/hazmat/primitives/vectors/ciphers/AES/CFB/CFB128MMT128.rsp" +write_file(build_vectors(modes.CFB, cfb_path), "idea-cfb.txt") -- cgit v1.2.3 From ae28ca2648e71f0f1c420cf39c042184bff6cdf4 Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Sat, 8 Mar 2014 11:11:56 -0400 Subject: update headers, add verification code --- docs/development/custom-vectors/idea.rst | 9 ++++-- .../development/custom-vectors/idea/verify_idea.py | 37 ++++++++++++++++++++++ 2 files changed, 44 insertions(+), 2 deletions(-) create mode 100644 docs/development/custom-vectors/idea/verify_idea.py (limited to 'docs/development/custom-vectors') diff --git a/docs/development/custom-vectors/idea.rst b/docs/development/custom-vectors/idea.rst index 097819ed..68c00b85 100644 --- a/docs/development/custom-vectors/idea.rst +++ b/docs/development/custom-vectors/idea.rst @@ -20,6 +20,11 @@ Download link: :download:`generate_idea.py ` + +.. _`Botan`: http://botan.randombit.net diff --git a/docs/development/custom-vectors/idea/verify_idea.py b/docs/development/custom-vectors/idea/verify_idea.py new file mode 100644 index 00000000..692cc76e --- /dev/null +++ b/docs/development/custom-vectors/idea/verify_idea.py @@ -0,0 +1,37 @@ +import binascii + +import botan + +from tests.utils import load_nist_vectors + +BLOCK_SIZE = 64 + + +def encrypt(mode, key, iv, plaintext): + encryptor = botan.Cipher("IDEA/{0}/NoPadding".format(mode), "encrypt", + binascii.unhexlify(key)) + + cipher_text = encryptor.cipher(binascii.unhexlify(plaintext), + binascii.unhexlify(iv)) + return binascii.hexlify(cipher_text) + + +def verify_vectors(mode, filename): + vector_file = open(filename, "r") + vectors = load_nist_vectors(vector_file) + for vector in vectors: + ct = encrypt( + mode, + vector["key"], + vector["iv"], + vector["plaintext"] + ) + assert ct == vector["ciphertext"] + + +cbc_path = "tests/hazmat/primitives/vectors/ciphers/IDEA/idea-cbc.txt" +verify_vectors("CBC", cbc_path) +ofb_path = "tests/hazmat/primitives/vectors/ciphers/IDEA/idea-ofb.txt" +verify_vectors("OFB", ofb_path) +cfb_path = "tests/hazmat/primitives/vectors/ciphers/IDEA/idea-cfb.txt" +verify_vectors("CFB", cfb_path) -- cgit v1.2.3 From a5f00379b3f39dc2c703c128b80d42c131df04c9 Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Tue, 11 Mar 2014 08:05:48 -0400 Subject: close the open files in generate/verify --- docs/development/custom-vectors/idea/generate_idea.py | 3 ++- docs/development/custom-vectors/idea/verify_idea.py | 4 +++- 2 files changed, 5 insertions(+), 2 deletions(-) (limited to 'docs/development/custom-vectors') diff --git a/docs/development/custom-vectors/idea/generate_idea.py b/docs/development/custom-vectors/idea/generate_idea.py index c8fe7ed5..e632f473 100644 --- a/docs/development/custom-vectors/idea/generate_idea.py +++ b/docs/development/custom-vectors/idea/generate_idea.py @@ -17,7 +17,8 @@ def encrypt(mode, key, iv, plaintext): def build_vectors(mode, filename): - vector_file = open(filename, "r") + with open(filename, "r") as f: + vector_file = f.read() count = 0 output = [] diff --git a/docs/development/custom-vectors/idea/verify_idea.py b/docs/development/custom-vectors/idea/verify_idea.py index 692cc76e..f7e22763 100644 --- a/docs/development/custom-vectors/idea/verify_idea.py +++ b/docs/development/custom-vectors/idea/verify_idea.py @@ -17,7 +17,9 @@ def encrypt(mode, key, iv, plaintext): def verify_vectors(mode, filename): - vector_file = open(filename, "r") + with open(filename, "r") as f: + vector_file = f.read() + vectors = load_nist_vectors(vector_file) for vector in vectors: ct = encrypt( -- cgit v1.2.3 From 24d5db8ada4d762c162a8160411e1b7d68611c45 Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Tue, 11 Mar 2014 08:12:47 -0400 Subject: style fixes --- .../custom-vectors/idea/generate_idea.py | 24 +++++++++++----------- 1 file changed, 12 insertions(+), 12 deletions(-) (limited to 'docs/development/custom-vectors') diff --git a/docs/development/custom-vectors/idea/generate_idea.py b/docs/development/custom-vectors/idea/generate_idea.py index e632f473..544d7ea4 100644 --- a/docs/development/custom-vectors/idea/generate_idea.py +++ b/docs/development/custom-vectors/idea/generate_idea.py @@ -29,22 +29,22 @@ def build_vectors(mode, filename): line = line.strip() if line.startswith("KEY"): if count != 0: - output.append("CIPHERTEXT = {}".format( + output.append("CIPHERTEXT = {0}".format( encrypt(mode, key, iv, plaintext)) ) - output.append("\nCOUNT = {}".format(count)) + output.append("\nCOUNT = {0}".format(count)) count += 1 name, key = line.split(" = ") - output.append("KEY = {}".format(key)) + output.append("KEY = {0}".format(key)) elif line.startswith("IV"): name, iv = line.split(" = ") iv = iv[0:16] - output.append("IV = {}".format(iv)) + output.append("IV = {0}".format(iv)) elif line.startswith("PLAINTEXT"): name, plaintext = line.split(" = ") - output.append("PLAINTEXT = {}".format(plaintext)) + output.append("PLAINTEXT = {0}".format(plaintext)) - output.append("CIPHERTEXT = {}".format(encrypt(mode, key, iv, plaintext))) + output.append("CIPHERTEXT = {0}".format(encrypt(mode, key, iv, plaintext))) return "\n".join(output) @@ -52,9 +52,9 @@ def write_file(data, filename): with open(filename, "w") as f: f.write(data) -cbc_path = "tests/hazmat/primitives/vectors/ciphers/AES/CBC/CBCMMT128.rsp" -write_file(build_vectors(modes.CBC, cbc_path), "idea-cbc.txt") -ofb_path = "tests/hazmat/primitives/vectors/ciphers/AES/OFB/OFBMMT128.rsp" -write_file(build_vectors(modes.OFB, ofb_path), "idea-ofb.txt") -cfb_path = "tests/hazmat/primitives/vectors/ciphers/AES/CFB/CFB128MMT128.rsp" -write_file(build_vectors(modes.CFB, cfb_path), "idea-cfb.txt") +CBC_PATH = "tests/hazmat/primitives/vectors/ciphers/AES/CBC/CBCMMT128.rsp" +write_file(build_vectors(modes.CBC, CBC_PATH), "idea-cbc.txt") +OFB_PATH = "tests/hazmat/primitives/vectors/ciphers/AES/OFB/OFBMMT128.rsp" +write_file(build_vectors(modes.OFB, OFB_PATH), "idea-ofb.txt") +CFB_PATH = "tests/hazmat/primitives/vectors/ciphers/AES/CFB/CFB128MMT128.rsp" +write_file(build_vectors(modes.CFB, CFB_PATH), "idea-cfb.txt") -- cgit v1.2.3