## 暗号関連


### 安全な乱数を生成する

- [secrets snippets](https://github.com/akagikouzanh/python-snippets-hub/blob/master/snippets/snippets_secrets.ipynb)


In [1]:
# パスワード乱数の生成
import secrets
import string

alpha_num = string.ascii_letters + string.digits
print(alpha_num)

password = "".join(secrets.choice(alpha_num) for i in range(8))
print(password)

abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789
3ivjDzOo


In [4]:
# トークンの生成
print(f"{secrets.token_bytes()=}")  # バイト列を返す
print(f"{secrets.token_bytes(8)=}")  # 8バイト列を返す
print(f"{secrets.token_hex()=}")
print(f"{secrets.token_hex(8)=}")  # 16進数文字列を返す
print(f"{secrets.token_urlsafe()=}")
print(f"{secrets.token_urlsafe(8)=}")  # Base64エンコードされた文字列を返す

secrets.token_bytes()=b'@h\xee\x80N\x8c\x81\x1b\xfa\x0b^VX\x1e\xce\xd3`\x18_\xc3)N\xc3gpjj\xc1"\xba\rt'
secrets.token_bytes(8)=b'%\x00\xfa\x9dt\xd1]\x94'
secrets.token_hex()='23156d16fc33b5f8f0c52da3f296b7c691a3291be42c381ad10f8886c0ebb5dd'
secrets.token_hex(8)='2c5d445fbd19b33d'
secrets.token_urlsafe()='Znglx1V9s5GE9swmcigY8TUJgwQpf5SLbXOsi_5xuj0'
secrets.token_urlsafe(8)='APQeyLH4TOE'


In [5]:
from urllib import parse

reset_token = secrets.token_urlsafe()
url = "https://example.com/?reset=" + reset_token
print(f"{url=}")

url_parse = parse.urlparse(url)
qs = parse.parse_qs(url_parse.query)
print(f"{qs=}")

print(secrets.compare_digest(reset_token, qs["reset"][0]))

url='https://example.com/?reset=OyQuw4Tks9UeZmCGhcw1q-5QBAsaPgGYxhEA6nAA8_Y'
qs={'reset': ['OyQuw4Tks9UeZmCGhcw1q-5QBAsaPgGYxhEA6nAA8_Y']}
True


### ハッシュ値を生成する - hashlib


In [6]:
import hashlib

hashlib.algorithms_available

{'blake2b',
 'blake2s',
 'md5',
 'md5-sha1',
 'ripemd160',
 'sha1',
 'sha224',
 'sha256',
 'sha384',
 'sha3_224',
 'sha3_256',
 'sha3_384',
 'sha3_512',
 'sha512',
 'sha512_224',
 'sha512_256',
 'shake_128',
 'shake_256',
 'sm3'}

In [8]:
import hashlib

hash_sha256 = hashlib.sha256()
hash_sha256.update(b"Python library book 2")

# 出力は同一
print(f"{hash_sha256.hexdigest()=}")
print(f"{hashlib.sha256(b"Python library book 2").hexdigest()=}")

hash_sha256.hexdigest()='feb7058093ca35f79765685fffb806583683718714502f2faafbcc188c1885b3'
hashlib.sha256(b"Python library book 2").hexdigest()='feb7058093ca35f79765685fffb806583683718714502f2faafbcc188c1885b3'


In [9]:
print(f"{hashlib.md5(b"Python library book 2").hexdigest()=}")
print(f"{hashlib.sha1(b"Python library book 2").hexdigest()=}")
print(f"{hashlib.sha512(b"Python library book 2").hexdigest()=}")
print(f"{hashlib.sha3_512(b"Python library book 2").hexdigest()=}")

hashlib.md5(b"Python library book 2").hexdigest()='6a68d97b9bd04b673b12d354078aea27'
hashlib.sha1(b"Python library book 2").hexdigest()='d52bd15b58fe7761d8dd1e4b4f2b27f2dc0aa0b2'
hashlib.sha512(b"Python library book 2").hexdigest()='594b43bb099f8845c5ab85dd7a12a400a234f50424f962a6dc6681716f85aae33570744b7d8bd138a93e42965bf341823e810fbde4e08568d2957d0c0d1a1369'
hashlib.sha3_512(b"Python library book 2").hexdigest()='e6366d61a6b2705e0291ea144434dc7396b9919a303d9d3f4ed553aea10d8f146937e64a10501a6bc6fb4a2dbe9754061f73ec2af50c1bbd2d94e559cb720837'


In [10]:
password = b"user_password"
salt = b"your_secret_salt"
iterations = 100000
hashed_password = hashlib.pbkdf2_hmac("sha256", password, salt, iterations).hex()
print(f"{hashed_password=}")

hashed_password='68edb4f6fa8d876b6b479c002dc618efe739ed96c986420e8e57cb7d67278699'
