# RSA test

In [56]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.asymmetric import rsa

## save load
from cryptography.hazmat.primitives import serialization

## sign
from cryptography.hazmat.primitives import hashes
from cryptography.hazmat.primitives.asymmetric import padding


### Private Key Generation.

In [57]:

private_key = rsa.generate_private_key(
    public_exponent=65537,
    key_size=2048,
    backend=default_backend())

In [58]:
print(private_key)

<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x0000025AE93954E0>


### Private Key Save (PEM) and Load

In [59]:
# save private key
pem = private_key.private_bytes(encoding=serialization.Encoding.PEM, 
                               format=serialization.PrivateFormat.PKCS8,
                               encryption_algorithm=serialization.BestAvailableEncryption(b'password'))

In [60]:
print(pem)

b'-----BEGIN ENCRYPTED PRIVATE KEY-----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\nTMBm5VFkk+2js/5JhWXhjtX5isGyOJPuCH3

In [61]:
with open('rsapriv.pem', 'wb') as f:
    f.write(pem)

In [62]:
with open('rsapriv.pem', 'rb') as f:
    try:
        priv = serialization.load_pem_private_key(f.read(), password=b'password', backend=default_backend())
        print('password ok.')
        print(priv)
    except ValueError:
        print('password failed.')


password ok.
<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x0000025AE859D3C8>


### Signing

In [63]:
message = b'Hello world!!!'
signature = priv.sign(message, padding.PSS(mgf = padding.MGF1(hashes.SHA256()), 
                     salt_length = padding.PSS.MAX_LENGTH),
                      hashes.SHA256() )

In [64]:
print(signature)

b'Ax&\x8b\xad\x8f\xb0\x81\x94\xe3\x02\xe7\x8eD(\xe2 \x85C@\xbc[V\x13WP\x18\xf1\xd7U|7\xb9\x97\xd6\xd2]\x8aa$z-\x12\x8fcu\xf1?\xc0\xd3\xdb\x1f|P\x16\xf7\x86A\x89\\\x15\x9b\x18\xfb\xfa\xcf\xde3}@~\xad\xa1S\xa7\x03V\xcf"6ku%\x15*\x90z\xa4G\xf6^\xffo\x9c\xfbD\xdc\xc6\n\xdan\xdet5\x14M\xaas7\x83\x8c\xf8\x16\xc6\xc1\xc7\xa6S\'p\x0bF\x10\xec\x17^{\x1fh\xcb\xec\x1fh\xcf\x03Z\xe8>\xbcrT`0\x16&\x0b:NTr\xa6\xe2\x0f\xfe\xa3]l{\xe6\x96\xeb\x03\xcf\xc8\x99\xa2 \xe5Q\xa5\x12\xa3\x8b\xa7\xbe\x98\xb8\x1ed\x89"#UVNH+%d8\xa2\t\xbc\x06{\xd3\x86\xa4[VG\x12JA\xb9\xc8"q\xec\xd2TPF\'{\x1d\x85\x82\x80:\xf80\xbe\xe2\xae!\xe0N\'(J\x96\xed=mD\xb9\xc4\x92?\x8c\xb4})\xe2\xb3q\xe4\x80\xeb\xb1Z8MW!'


## Public key 

In [65]:
pubkey = priv.public_key()
print(pubkey)

<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x0000025AE85C52B0>


In [66]:
# save private key
pem2 = pubkey.public_bytes(encoding=serialization.Encoding.PEM, 
                               format=serialization.PublicFormat.PKCS1)

In [67]:
print(pem2)

b'-----BEGIN RSA PUBLIC KEY-----\nMIIBCgKCAQEAyHRwxCdWMDP50YB2Y1WDVe3reGA7Np3Jo0cRWGlK3rDVYjPjC2n/\nptmm6Ygp36L3iy2BbNk75G8uRTSORURLKzwKF7qm7BYZ2+Tahty2hooDrnjXlwF5\n/jVJDxDWr/JhQEZNL7KujhYjFKVH9eTIV02uP0vdRK+6MSVGO6koi79RCoUqjdO9\ntOOI04W48mkelORf/iJvyQTtoj/1VFNB51p/E06jroNKzgAwXQMdE3r04cpMwRHq\nS7+eLmxarfRWPYeKDWaT47itwhTCtFUuCkGgtjOIrZpzjQlT39XJ7/km0FwwNGHd\nmn666BiSjW0SurO2co9t5p9tp5IL2jcCcwIDAQAB\n-----END RSA PUBLIC KEY-----\n'


In [68]:
with open('rsapub.pem', 'wb') as f:
    f.write(pem2)

In [69]:
with open('rsapub.pem', 'rb') as f:
    pub = serialization.load_pem_public_key(f.read(),backend=default_backend())
    print(pub)


<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x0000025AE859ECF8>


### Verification (Signature)

In [70]:
try:
    pub.verify( signature, 
              message, 
              padding.PSS(mgf = padding.MGF1(hashes.SHA256()), 
                         salt_length = padding.PSS.MAX_LENGTH),
                          hashes.SHA256() )
except InvalidSignature:
    print('verify failed.')

### Encryption 

In [71]:
ciphertext = pub.encrypt(message, 
            padding.OAEP(
                mgf=padding.MGF1(algorithm=hashes.SHA256()), 
                algorithm=hashes.SHA256(),
                label=None)
                        )
print(ciphertext)

b'\x1c\x05\xbbV0\xe9\xd1 \xab\x80\x1f\xc3d\x0f\xe3V\x1b\x8e\xc1\x1a\x11F{\x00BuCPg\\\x18\xe9\x02\x19\xe7L?b?\xcf\x1a\xa2+\xce\xf1l\x93<\xcf\xcc\xad\xbd\xc9\x993A\xda\x80[\xb02\x84\xf2Q\xfeM\xcdLk<.\xa4\xb4\xb3\x07\x102x\x02tnM\xf4C\xb3Kk\xd7\xf8;\x1bXC\xd64aj?9\xef\x01>y\x19s\x18\x1a"\xf1\x9aw\xf11%M]\xf0\x0bB?\xceH\xb3\xfc\x9f\x11\x0f5[6N\xde\xc0p\xd7BK\xa0y\xe1\xcb\xa9T\x8dF\xb9\xc6\xef\xa4\x08\xe0n\xda\x89\x88\x0e\x0f\x81\xd7\xdf_\x0c\'\xd9\xc0\xe9\x854\x1b-\xa3\xed\x07\xf5\x98\xc8\xf1\x14\x06\x07\xcd\x14}C\xe7x\x94\x91\xee4\x18\xb6/4D@\xde\x9cY\x9a#\xb9\xf5\xfb\xb2)\xc8\xb1\x80i\xf5\xf1\x0fs}\x9c\xf1#\x19G\xa3D\x94N\xbc\xc2\xd6\xed\x8f\xa9\xdc\xedE\x9e\x01\xbbv1\xb4\xdd\x8c\x93\x91\xa5,9l\xca\xe3|\xf3\xbcn\x0c\xf05'


### Decryption

In [72]:
plaintext = priv.decrypt(ciphertext, 
                padding.OAEP(
                mgf=padding.MGF1(algorithm=hashes.SHA256()), 
                algorithm=hashes.SHA256(),
                label=None)
                        )
print(plaintext)

b'Hello world!!!'
