OpenSource
/
dify
关注 4
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 152 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
506 提交
4 分支
目录树: 5397799aac
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '5397799aac'
${ noResults }
dify/api/libs/ecc_aes.py

ecc_aes.py 2.6KB
原始文件 Blame 文件历史

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. from Crypto.Cipher import AES

  2. from Crypto.Hash import SHA256

  3. from Crypto.PublicKey import ECC

  4. from Crypto.Util.Padding import pad, unpad

  5. 

  6. 

  7. class ECC_AES:

  8.     def __init__(self, curve='P-256'):

  9.         self.curve = curve

  10.         self._aes_key = None

  11.         self._private_key = None

  12. 

  13.     def _derive_aes_key(self, ecc_key, nonce):

  14.         if not self._aes_key:

  15.             hasher = SHA256.new()

  16.             hasher.update(ecc_key.export_key(format='DER') + nonce.encode())

  17.             self._aes_key = hasher.digest()[:32]

  18.         return self._aes_key

  19. 

  20.     def generate_key_pair(self):

  21.         private_key = ECC.generate(curve=self.curve)

  22.         public_key = private_key.public_key()

  23. 

  24.         pem_private = private_key.export_key(format='PEM')

  25.         pem_public = public_key.export_key(format='PEM')

  26. 

  27.         return pem_private, pem_public

  28. 

  29.     def load_private_key(self, private_key_pem):

  30.         self._private_key = ECC.import_key(private_key_pem)

  31.         self._aes_key = None

  32. 

  33.     def encrypt(self, text, nonce):

  34.         if not self._private_key:

  35.             raise ValueError("Private key not loaded")

  36. 

  37.         # Generate AES key using ECC private key and nonce

  38.         aes_key = self._derive_aes_key(self._private_key, nonce)

  39. 

  40.         # Encrypt data using AES key

  41.         cipher = AES.new(aes_key, AES.MODE_ECB)

  42.         padded_text = pad(text.encode(), AES.block_size)

  43.         ciphertext = cipher.encrypt(padded_text)

  44. 

  45.         return ciphertext

  46. 

  47.     def decrypt(self, ciphertext, nonce):

  48.         if not self._private_key:

  49.             raise ValueError("Private key not loaded")

  50. 

  51.         # Generate AES key using ECC private key and nonce

  52.         aes_key = self._derive_aes_key(self._private_key, nonce)

  53. 

  54.         # Decrypt data using AES key

  55.         cipher = AES.new(aes_key, AES.MODE_ECB)

  56.         padded_plaintext = cipher.decrypt(ciphertext)

  57.         plaintext = unpad(padded_plaintext, AES.block_size)

  58. 

  59.         return plaintext.decode()

  60. 

  61. 

  62. if __name__ == '__main__':

  63.     ecc_aes = ECC_AES()

  64. 

  65.     # Generate key pairs for the user

  66.     private_key, public_key = ecc_aes.generate_key_pair()

  67.     ecc_aes.load_private_key(private_key)

  68.     nonce = "THIS-IS-USER-ID"

  69. 

  70.     print(private_key)

  71. 

  72.     # Encrypt a message

  73.     message = "Hello, this is a secret message!"

  74.     encrypted_message = ecc_aes.encrypt(message, nonce)

  75.     print(f"Encrypted message: {encrypted_message.hex()}")

  76. 

  77.     # Decrypt the message

  78.     decrypted_message = ecc_aes.decrypt(encrypted_message, nonce)

  79.     print(f"Decrypted message: {decrypted_message}")

  80. 

  81.     # Check if the original message and decrypted message are the same

  82.     assert message == decrypted_message, "Original message and decrypted message do not match"