1# Copyright 2019 Google LLC 2# 3# Licensed under the Apache License, Version 2.0 (the "License"); 4# you may not use this file except in compliance with the License. 5# You may obtain a copy of the License at 6# 7# http://www.apache.org/licenses/LICENSE-2.0 8# 9# Unless required by applicable law or agreed to in writing, software 10# distributed under the License is distributed on an "AS IS" BASIS, 11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12# See the License for the specific language governing permissions and 13# limitations under the License. 14 15"""Python wrapper of the wrapped C++ Public Key Signature key manager.""" 16 17from tink import core 18from tink.cc.pybind import tink_bindings 19from tink.signature import _public_key_sign 20from tink.signature import _public_key_verify 21from tink.signature import _signature_wrapper 22 23 24class _PublicKeySignCcToPyWrapper(_public_key_sign.PublicKeySign): 25 """Transforms C++ PublicKeySign into a Python primitive.""" 26 27 def __init__(self, cc_primitive: tink_bindings.PublicKeySign): 28 self._public_key_sign = cc_primitive 29 30 @core.use_tink_errors 31 def sign(self, data: bytes) -> bytes: 32 return self._public_key_sign.sign(data) 33 34 35class _PublicKeyVerifyCcToPyWrapper(_public_key_verify.PublicKeyVerify): 36 """Transforms C++ PublicKeyVerify into a Python primitive.""" 37 38 def __init__(self, cc_primitive: tink_bindings.PublicKeyVerify): 39 self._public_key_verify = cc_primitive 40 41 @core.use_tink_errors 42 def verify(self, signature: bytes, data: bytes) -> None: 43 self._public_key_verify.verify(signature, data) 44 45 46def register(): 47 """Registers all signature key managers in the Python registry.""" 48 tink_bindings.register() 49 50 for key_type_identifier in ('EcdsaPrivateKey', 'Ed25519PrivateKey', 51 'RsaSsaPssPrivateKey', 'RsaSsaPkcs1PrivateKey',): 52 type_url = 'type.googleapis.com/google.crypto.tink.' + key_type_identifier 53 key_manager = core.PrivateKeyManagerCcToPyWrapper( 54 tink_bindings.PublicKeySignKeyManager.from_cc_registry(type_url), 55 _public_key_sign.PublicKeySign, _PublicKeySignCcToPyWrapper) 56 core.Registry.register_key_manager(key_manager, new_key_allowed=True) 57 58 for key_type_identifier in ('EcdsaPublicKey', 'Ed25519PublicKey', 59 'RsaSsaPssPublicKey', 'RsaSsaPkcs1PublicKey',): 60 type_url = 'type.googleapis.com/google.crypto.tink.' + key_type_identifier 61 key_manager = core.KeyManagerCcToPyWrapper( 62 tink_bindings.PublicKeyVerifyKeyManager.from_cc_registry(type_url), 63 _public_key_verify.PublicKeyVerify, _PublicKeyVerifyCcToPyWrapper) 64 core.Registry.register_key_manager(key_manager, new_key_allowed=True) 65 66 core.Registry.register_primitive_wrapper( 67 _signature_wrapper.PublicKeySignWrapper()) 68 core.Registry.register_primitive_wrapper( 69 _signature_wrapper.PublicKeyVerifyWrapper()) 70