RSA decrypt working, signing still needs work

onlykey · onlykey · commit 8ff0b83f06ae · 2017-02-08T23:08:22.000-05:00
diff --git a/tests/rsa_decrypt_1024.py b/tests/rsa_decrypt_1024.py
@@ -3,10 +3,11 @@
 import time
 import os
 
-import Crypto
+from Crypto.Cipher import PKCS1_v1_5
 from Crypto.PublicKey import RSA
+from Crypto.Hash import SHA
+from Crypto.Random import get_random_bytes
 from Crypto import Random
-import ast
 import binascii
 
 from onlykey import OnlyKey, Message
@@ -17,33 +18,16 @@
 
 p = key.p
 q = key.q
-d = key.d
+n = key.n
 
 binPrivKey = key.exportKey('DER')
 binPubKey =  key.publickey().exportKey('DER')
-#privKeyObj = RSA.importKey(binPrivKey)
-#pubKeyObj =  RSA.importKey(binPubKey)
-
-def bin2hex(binStr):
-        return binascii.hexlify(binStr)
-
-def hex2bin(hexStr):
-        return binascii.unhexlify(hexStr)
-
-hexPrivKey = bin2hex(binPrivKey)
-hexPubKey = bin2hex(binPubKey)
 
 print 'Done'
 print
-
 print 'RSA p value =', repr(p)
 print 'RSA q value =', repr(q)
-print 'RSA d value =', repr(d)
-print 'pubkey=', repr(hexPubKey)
-#print 'pubkey hex=', pubkey.to_ascii(encoding='hex')
-# not displaying correctly
-print
-
+print 'RSA n value =', repr(n)
 print
 print 'Initialize OnlyKey client...'
 ok = OnlyKey()
@@ -61,11 +45,35 @@ def hex2bin(hexStr):
 print
 
 print 'Setting SSH private...'
+
+def pack_long(n):
+    """this conert 10045587143827198209824131064458461027107542643158086193488942239589004873324146472911535357118684101051965945865943581473431374244810144984918148150975257L
+    to "\xbf\xcd\xce\xa0K\x93\x85}\xf0\x18\xb3\xd3L}\x14\xdb\xce0\x00uE,\x05'\xeeW\x1c\xeb\xcf\x8b\x1f\xcc\xc5\xc1\xe2\x17\xb7\xa3\xb6C\x16\xea?\xcchz\xebF1\xb7\xb1\x86\xb8\n}\x82\xebx\xce\x1b\x13\xdf\xdb\x19"
+    it seems to be want you wanted? it's 64 bytes.
+    """
+    h = '%x' % n
+    s = ('0'*(len(h) % 2) + h).decode('hex')
+    return s
+
+def bin2hex(binStr):
+        return binascii.hexlify(binStr)
+
+def hex2bin(hexStr):
+        return binascii.unhexlify(hexStr)
+
+hexPrivKey = bin2hex(binPrivKey)
+hexPubKey = bin2hex(binPubKey)
+
 # p and q are long ints that are no more than 1/2 the size of pubkey
 # I need to convert these into a single byte array put p in the first
 # half byte[0] of the byte array and q in the second half byte[(type*128) / 2]
 # send the byte array to OnlyKey splitting into 56 bytes per packet
-ok.set_rsa_key(1, (1+64), byte array here) #Can only send 56 bytes per packet
+q_and_p = pack_long(q) + pack_long(p)
+public_n = pack_long(n)
+#
+ok.send_large_message3(msg=Message.OKSETPRIV, slot_id=1, key_type=(1+32), payload=q_and_p)
+
+# ok.set_rsa_key(1, (1+64), byte array here) #Can only send 56 bytes per packet
 # Slot 1 - 4 for RSA
 # Type 1 = 1024, Type 2 = 2048, Type 3 = 3072, Type 4 = 4096
 # Key Features -
@@ -81,34 +89,53 @@ def hex2bin(hexStr):
 print 'You should see your OnlyKey blink 3 times'
 print
 
-print 'Trying to read the pubkey...'
+print 'Trying to read the public RSA N part 1...'
 ok.send_message(msg=Message.OKGETPUBKEY, payload=chr(1))  #, payload=[1, 1])
 time.sleep(1.5)
 for _ in xrange(10):
-    ok_pubkey = ok.read_bytes((1*128), to_str=True)
-    if len(ok_pubkey) == (rsatype*128):
+    ok_pubkey1 = ok.read_bytes(64, to_str=True)
+    if len(ok_pubkey1) == 64:
         break
     time.sleep(1)
 
 print
 
-print 'received=', repr(ok_pubkey)
+print 'received=', repr(ok_pubkey1)
 
-if not ok_pubkey:
+print 'Trying to read the public RSA N part 2...'
+for _ in xrange(10):
+    ok_pubkey2 = ok.read_bytes(64, to_str=True)
+    if len(ok_pubkey2) == 64:
+        break
+    time.sleep(1)
+
+print
+
+print 'received=', repr(ok_pubkey2)
+
+if not ok_pubkey2:
     raise Exception('failed to set the SSH key')
 
-print 'Assert that the received pubkey match the one generated locally'
-assert ok_pubkey == pubkey.to_bytes()
-print 'Ok, pubkey matches'
+print 'Assert that the received public N match the one generated locally'
+print 'Local Public N=', repr(public_n)
+ok_pubkey = ok_pubkey1 + ok_pubkey2
+assert ok_pubkey == public_n
+print 'Ok, public N matches'
 print
 
-test_payload = os.urandom(150)
-print 'test_payload=', repr(test_payload)
+message = 'Secret message'
+#h = SHA.new(message)
+cipher = PKCS1_v1_5.new(key)
+ciphertext = cipher.encrypt(message)
+
+#hex_enc_data = bin2hex(enc_data)
+print 'encrypted payload = ', repr(ciphertext)
 print
 
+
 # Compute the challenge pin
 h = hashlib.sha256()
-h.update(test_payload)
+h.update(ciphertext)
 d = h.digest()
 
 assert len(d) == 32
@@ -122,24 +149,27 @@ def get_button(byte):
 b1, b2, b3 = get_button(d[0]), get_button(d[15]), get_button(d[31])
 
 print 'Sending the payload to the OnlyKey...'
-ok.send_large_message2(msg=Message.OKSIGNCHALLENGE, payload=test_payload)
+ok.send_large_message2(msg=Message.OKDECRYPT, payload=ciphertext, slot_id=1)
 
 print 'Please enter the 3 digit challenge code on OnlyKey (and press ENTER if necessary)'
 print '{} {} {}'.format(b1, b2, b3)
 raw_input()
-time.sleep(0.2)
-ok.send_large_message2(msg=Message.OKSIGNCHALLENGE, payload=test_payload)
-signature = ''
-while signature == '':
+print 'Trying to read the decrypted data from OnlyKey...'
+ok_decrypted = ''
+while ok_decrypted == '':
     time.sleep(0.5)
-    signature = ok.read_bytes(256, to_str=True)
+    ok_decrypted = ok.read_bytes(64, to_str=True)
+
+dsize = len(message)
+sentinel = Random.new().read(15+dsize)
+plaintext = cipher.decrypt(ciphertext, sentinel)
 
-print 'Signed by OnlyKey, signature=', repr(signature)
+print 'Decrypted by OnlyKey, data=', repr(ok_decrypted)
 
-print 'Local signature=', repr(key.sign(test_payload, ''))
-print 'Assert that the signature generated locally match the one generated on the OnlyKey'
-assert repr(signature) == repr(key.sign(test_payload, ''))
-print 'Ok, signatures match'
+print 'Local decrypted data =', repr(plaintext)
+print 'Assert that the decrypted data generated locally matches the data generated on the OnlyKey'
+assert repr(ok_decrypted) == repr(plaintext)
+print 'Ok, data matches'
 print
 
 print 'Done'
diff --git a/tests/ssh_auth_rsa_1024.py b/tests/ssh_auth_rsa_1024.py
@@ -3,6 +3,8 @@
 import time
 import os
 
+from Crypto.Signature import PKCS1_v1_5
+from Crypto.Hash import SHA
 from Crypto.PublicKey import RSA
 from Crypto import Random
 import binascii
@@ -115,19 +117,23 @@ def pack_long(n):
 if not ok_pubkey2:
     raise Exception('failed to set the SSH key')
 
-print 'Assert that the received pubkey match the one generated locally'
+print 'Assert that the received public N match the one generated locally'
+print 'Local Public N=', repr(public_n)
 ok_pubkey = ok_pubkey1 + ok_pubkey2
 assert ok_pubkey == public_n
-print 'Ok, pubkey matches'
+print 'Ok, public N matches'
 print
 
-test_payload = os.urandom(150)
-print 'test_payload=', repr(test_payload)
+test_payload1 = os.urandom(100)
+h = hashlib.sha1()
+h.update(test_payload1)
+test_payload2 = h.digest()
+print 'test_payload=', repr(test_payload2)
 print
 
 # Compute the challenge pin
 h = hashlib.sha256()
-h.update(test_payload)
+h.update(test_payload2)
 d = h.digest()
 
 assert len(d) == 32
@@ -141,40 +147,53 @@ def get_button(byte):
 b1, b2, b3 = get_button(d[0]), get_button(d[15]), get_button(d[31])
 
 print 'Sending the payload to the OnlyKey...'
-ok.send_large_message2(msg=Message.OKSIGNCHALLENGE, payload=test_payload, slot_id=1)
+ok.send_large_message2(msg=Message.OKSIGNCHALLENGE, payload=test_payload2, slot_id=1)
 
 print 'Please enter the 3 digit challenge code on OnlyKey (and press ENTER if necessary)'
 print '{} {} {}'.format(b1, b2, b3)
 raw_input()
 print 'Trying to read the signature part 1...'
-for _ in xrange(10):
+signature1 = ''
+while signature1 == '':
+    time.sleep(0.5)
     signature1 = ok.read_bytes(64, to_str=True)
-    if len(signature1) == 64:
-        break
-    time.sleep(1)
-
-print
 
 print 'received=', repr(signature1)
 
 print 'Trying to read the signature part 2...'
-for _ in xrange(10):
+signature2 = ''
+while signature2 == '':
+    time.sleep(0.5)
     signature2 = ok.read_bytes(64, to_str=True)
-    if len(signature2) == 64:
-        break
-    time.sleep(1)
-
-print
 
 print 'received=', repr(signature2)
 
-signature = signature1 + signature2
-print 'Signed by OnlyKey, signature=', repr(signature)
+ok_signature = signature1 + signature2
+print 'Signed by OnlyKey, signature=', repr(ok_signature)
+def bytes2int(str):
+ return int(str.encode('hex'), 16)
+
+# I don't think this is right, need to convert signature to right format
+# https://www.dlitz.net/software/pycrypto/api/current/Crypto.PublicKey.RSA._RSAobj-class.html#verify
+# https://www.dlitz.net/software/pycrypto/api/current/Crypto.Signature.PKCS1_v1_5-module.html
+
+h = SHA.new(test_payload1)
+verifier = PKCS1_v1_5.new(key)
+if verifier.verify(h, ok_signature):
+    print "The OnlyKey signature is authentic."
+else:
+   print "The OnlyKey signature is not authentic."
+
+
+h = SHA.new(test_payload1)
+signer = PKCS1_v1_5.new(key)
+signature = signer.sign(h)
+
+verifier = PKCS1_v1_5.new(key)
+if verifier.verify(h, signature):
+   print "The local signature is authentic."
+else:
+  print "The local signature is not authentic."
 
-print 'Local signature=', repr(key.sign(test_payload, ''))
-print 'Assert that the signature generated locally match the one generated on the OnlyKey'
-assert repr(signature) == repr(key.sign(test_payload, ''))
-print 'Ok, signatures match'
-print
 
 print 'Done'
