WIP: add support for AES-256-CBC and AES-256-GCM

Author: doersf

block_io/__init__.py

@@ -102,10 +102,11 @@ def from_wif(privkey):
     class Helper:
 
         @staticmethod
-        def pinToAesKey(pin):
+        def pinToAesKey(pin, salt = "", iterations = 2048, hashfn = sha256, phase1_key_length = 16, phase2_key_length = 32):
             # use pbkdf2 magic
-            ret = pbkdf2.pbkdf2(pin, 16)
-            ret = pbkdf2.pbkdf2(hexlify(ret), 32)
+            # ( password, keylen, salt = "", itercount = 1024, hashfn = sha256 )
+            ret = pbkdf2.pbkdf2(pin, phase1_key_length, salt, int(iterations/2), hashfn)
+            ret = pbkdf2.pbkdf2(hexlify(ret), phase2_key_length, salt, int(iterations/2), hashfn)
             return hexlify(ret) # the encryption key
 
         @staticmethod
@@ -115,7 +116,7 @@ def extractKey(encrypted_data, enc_key_hex):
             return BlockIo.Key.from_passphrase(unhexlify(decrypted))
 
         @staticmethod
-        def encrypt(data, key):
+        def encrypt(data, key, iv = None, cipher_type = "AES-256-ECB", auth_data = None):
             # key in hex, data as string
             # returns ciphertext in base64
 
@@ -125,28 +126,69 @@ def encrypt(data, key):
             pad = lambda s: s + (BS - len(s) % BS) * chr(BS - len(s) % BS)
             unpad = lambda s : s[0:-s[-1]]
 
-            obj = AES.new(key, AES.MODE_ECB)
-            ciphertext = obj.encrypt(pad(data).encode('latin-1'))
+            obj = None
 
-            return base64.b64encode(ciphertext)
+            if cipher_type == "AES-256-ECB":
+                obj = AES.new(key, AES.MODE_ECB)
+            elif cipher_type == "AES-256-CBC":
+                obj = AES.new(key, AES.MODE_CBC, unhexlify(iv))
+            elif cipher_type == "AES-256-GCM":
+                obj = AES.new(key, AES.MODE_GCM, unhexlify(iv))
+            else:
+                raise Exception("Unsupported cipher", cipher_type)
+
+            response = {"aes_iv": iv, "aes_cipher_text": None, "aes_auth_tag": None, "aes_auth_data": None, "aes_cipher": cipher_type}
+
+            if cipher_type != "AES-256-GCM":
+                response["aes_cipher_text"] = base64.b64encode(obj.encrypt(pad(data).encode('latin-1')))
+            else:
+                # AES-256-GCM
+                # no padding for data
+                ciphertext = obj.encrypt(data.encode('latin-1'))
+                response["aes_cipher_text"] = base64.b64encode(ciphertext)
+                response["aes_auth_tag"] = hexlify(obj.digest())
+                
+            return response
 
         @staticmethod
-        def decrypt(b64data, key):
+        def decrypt(b64data, key, iv = None, cipher_type = "AES-256-ECB", auth_tag = None):
             # key in hex, b64data as base64 string
             # returns utf-8 string
 
             message = None
 
             try:
-                key = unhexlify(key) # get bytes
 
+                key = unhexlify(key) # get bytes
+                
                 BS = 16
                 pad = lambda s: s + (BS - len(s) % BS) * chr(BS - len(s) % BS)
                 unpad = lambda s : s[0:-s[-1]]
-
+                
                 data = base64.b64decode(b64data) # decode from base64
-                obj = AES.new(key, AES.MODE_ECB)
-                message = unpad(obj.decrypt(data))
+                
+                obj = None
+                
+                if cipher_type == "AES-256-ECB":
+                    obj = AES.new(key, AES.MODE_ECB)
+                elif cipher_type == "AES-256-CBC":
+                    obj = AES.new(key, AES.MODE_CBC, unhexlify(iv))
+                elif cipher_type == "AES-256-GCM":
+                    obj = AES.new(key, AES.MODE_GCM, unhexlify(iv))
+                else:
+                    raise Exception("Unsupported cipher", cipher_type)
+            
+                message = None
+
+                if cipher_type != "AES-256-GCM":
+                    message = unpad(obj.decrypt(data))
+                else:
+                    # AES-256-GCM
+                    # Auth tag must be exactly 16 bytes
+                    if (len(auth_tag) != 32):
+                        raise Exception("Auth tag must be 16 bytes exactly.")
+                    message = obj.decrypt_and_verify(data, unhexlify(auth_tag))
+                
             except:
                 # error decrypting? must be an invalid secret pin
                 raise Exception('Invalid Secret PIN provided.')

tests/test_blockio.py

@@ -53,12 +53,33 @@ def test_pin_derivation(self):
         key = BlockIo.Helper.pinToAesKey(self.pin)
         self.assertEqual(key, b'd0478c395b66e588a1518cdd08d8257aa2145a4c20bcd05c466afb334b7d18e7')
 
-    def test_aes_encryption(self):
+    def test_pin_derivation_with_salt(self):
+        key = BlockIo.Helper.pinToAesKey("deadbeef", "922445847c173e90667a19d90729e1fb", 500000)
+        self.assertEqual(key, b'f206403c6bad20e1c8cb1f3318e17cec5b2da0560ed6c7b26826867452534172')
+        
+    def test_aes256ecb_encryption(self):
         clear = "I\'m a little tea pot short and stout"
         key = BlockIo.Helper.pinToAesKey(self.pin)
-        ciphertext = BlockIo.Helper.encrypt(clear, key)
-        self.assertEqual(ciphertext, b'7HTfNBYJjq09+vi8hTQhy6lCp3IHv5rztNnKCJ5RB7cSL+NjHrFVv1jl7qkxJsOg')
-        cleartext = BlockIo.Helper.decrypt(ciphertext, key)
+        encrypted_data = BlockIo.Helper.encrypt(clear, key)
+        self.assertEqual(encrypted_data['aes_cipher_text'], b'7HTfNBYJjq09+vi8hTQhy6lCp3IHv5rztNnKCJ5RB7cSL+NjHrFVv1jl7qkxJsOg')
+        cleartext = BlockIo.Helper.decrypt(encrypted_data['aes_cipher_text'], key)
+        self.assertEqual(cleartext, clear.encode('utf-8'))
+
+    def test_aes256cbc_encryption(self):
+        clear = "beadbeef"
+        key = BlockIo.Helper.pinToAesKey("deadbeef", "922445847c173e90667a19d90729e1fb", 500000)
+        result = BlockIo.Helper.encrypt(clear, key, "11bc22166c8cf8560e5fa7e5c622bb0f", "AES-256-CBC")
+        self.assertEqual(result['aes_cipher_text'], b'LExu1rUAtIBOekslc328Lw==')
+        cleartext = BlockIo.Helper.decrypt(result['aes_cipher_text'], key, result['aes_iv'], result['aes_cipher'])
+        self.assertEqual(cleartext, clear.encode('utf-8'))
+
+    def test_aes256gcm_encryption(self):
+        clear = "beadbeef"
+        key = BlockIo.Helper.pinToAesKey("deadbeef", "922445847c173e90667a19d90729e1fb", 500000)
+        result = BlockIo.Helper.encrypt(clear, key, "a57414b88b67f977829cbdca", "AES-256-GCM")
+        self.assertEqual(result['aes_cipher_text'], b'ELV56Z57KoA=')
+        self.assertEqual(result['aes_auth_tag'], b'adeb7dfe53027bdda5824dc524d5e55a')
+        cleartext = BlockIo.Helper.decrypt(result['aes_cipher_text'], key, result['aes_iv'], result['aes_cipher'], result['aes_auth_tag'])
         self.assertEqual(cleartext, clear.encode('utf-8'))
 
 class TestKeys(unittest.TestCase):
@@ -96,5 +117,5 @@ def test_throws_blockio_api_error(self):
             self.blockio.get_balance()
             self.assertEquals(True,False) # will fail if we get here
         except BlockIoAPIError as e:
-            self.assertDictEqual(e.get_raw_data(), {"status": "fail", "data": {"error_message": "Invalid API Key provided for this API version."}})
+            self.assertEqual(e.get_raw_data()['data']['error_message'], "API Key invalid or you have not enabled API access for this machine's IP address(es). Check that your API Keys are correct, and that you have enabled API access for this machine's IP Address(es) on your account's Settings page.")