Switch to pyca/cryptography as crypto backend

src/xmlsec/__init__.py

@@ -116,7 +116,7 @@ def _get_by_id(t, id_v):
 
 def _alg(elt):
     """
-    Return the hashlib name of an Algorithm. Hopefully.
+    Return the xmldsig name of an Algorithm. Hopefully.
     :returns: None or string
     """
     uri = elt.get('Algorithm', None)
@@ -327,7 +327,10 @@ def _verify(t, keyspec, sig_path=".//{%s}Signature" % NS['ds'], drop_signature=F
             si = sig.find(".//{%s}SignedInfo" % NS['ds'])
             logging.debug("Found signedinfo {!s}".format(etree.tostring(si)))
             cm_alg = _cm_alg(si)
-            sig_digest_alg = _sig_digest(si)
+            try:
+                sig_digest_alg = _sig_alg(si)
+            except AttributeError:
+                raise XMLSigException("Failed to validate {!s} because of unsupported hash format".format(etree.tostring(sig)))
 
             refmap = _process_references(t, sig, verify_mode=True, sig_path=sig_path, drop_signature=drop_signature)
             for ref,obj in refmap.items():
@@ -336,15 +339,15 @@ def _verify(t, keyspec, sig_path=".//{%s}Signature" % NS['ds'], drop_signature=F
                 sic = _transform(cm_alg, si)
                 logging.debug("SignedInfo C14N: %s" % sic)
                 if this_cert.do_digest:
-                    digest = _digest(sic, sig_digest_alg)
+                    digest = _digest(sic, sig_digest_alg.name)
                     logging.debug("SignedInfo digest: %s" % digest)
                     b_digest = b64d(digest)
-                    actual = _signed_value(b_digest, this_cert.keysize, True, sig_digest_alg)
+                    actual = _signed_value(b_digest, this_cert.keysize, True, sig_digest_alg.name)
                 else:
                     actual = sic
 
                 if not this_cert.verify(b64d(sv), actual, sig_digest_alg):
-                    raise XMLSigException("Failed to validate {!s} using sig digest {!s} and cm {!s}".format(etree.tostring(sig),sig_digest_alg,cm_alg))
+                    raise XMLSigException("Failed to validate {!s} using sig digest {!s} and cm {!s}".format(etree.tostring(sig), sig_digest_alg.xmldsig_name, cm_alg))
                 validated.append(obj)
         except XMLSigException, ex:
             logging.error(ex)
@@ -466,7 +469,7 @@ def sign(t, key_spec, cert_spec=None, reference_uri='', insert_index=0, sig_path
         si = sig.find(".//{%s}SignedInfo" % NS['ds'])
         assert si is not None
         cm_alg = _cm_alg(si)
-        digest_alg = _sig_digest(si)
+        sig_alg = _sig_alg(si)
 
         _process_references(t, sig, verify_mode=False, sig_path=sig_path)
         # XXX create signature reference duplicates/overlaps process references unless a c14 is part of transforms
@@ -476,14 +479,14 @@ def sign(t, key_spec, cert_spec=None, reference_uri='', insert_index=0, sig_path
 
         # sign hash digest and insert it into the XML
         if private.do_digest:
-            digest = _digest(sic, digest_alg)
+            digest = _digest(sic, sig_alg.name)
             logging.debug("SignedInfo digest: %s" % digest)
             b_digest = b64d(digest)
-            tbs = _signed_value(b_digest, private.keysize, private.do_padding, digest_alg)
+            tbs = _signed_value(b_digest, private.keysize, private.do_padding, sig_alg.name)
         else:
             tbs = sic
 
-        signed = private.sign(tbs, digest_alg)
+        signed = private.sign(tbs, sig_alg)
         signature = b64e(signed)
         logging.debug("SignatureValue: %s" % signature)
         sv = sig.find(".//{%s}SignatureValue" % NS['ds'])
@@ -515,8 +518,5 @@ def _sig_alg(si):
     sig_alg = _alg(sm)
     if sm is None or sig_alg is None:
         raise XMLSigException("No SignatureMethod")
-    return (sig_alg.split("#"))[1]
 
-
-def _sig_digest(si):
-    return (_sig_alg(si).split("-"))[1]
+    return getattr(constants.Hashes,sig_alg.lower())

src/xmlsec/constants.py

@@ -15,16 +15,59 @@
 TRANSFORM_C14N_EXCLUSIVE = 'http://www.w3.org/2001/10/xml-exc-c14n#'
 TRANSFORM_C14N_INCLUSIVE = 'http://www.w3.org/TR/2001/REC-xml-c14n-20010315'
 
-ALGORITHM_DIGEST_SHA1 = "http://www.w3.org/2000/09/xmldsig#sha1"
-ALGORITHM_SIGNATURE_RSA_SHA1 = "http://www.w3.org/2000/09/xmldsig#rsa-sha1"
 
-ALGORITHM_DIGEST_SHA256 = "http://www.w3.org/2001/04/xmlenc#sha256"
-ALGORITHM_SIGNATURE_RSA_SHA256 = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
 
-ALGORITHM_DIGEST_SHA384 = "http://www.w3.org/2001/04/xmlenc#sha384"
-ALGORITHM_SIGNATURE_RSA_SHA384 = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"
+# All suported crypto primitives and some factories normalization of names as
+# pyca/cryptography uses UPPERCASE object-names for hashes.
 
+ALGORITHM_DIGEST_SHA1 = "http://www.w3.org/2000/09/xmldsig#sha1"
+ALGORITHM_DIGEST_SHA256 = "http://www.w3.org/2001/04/xmlenc#sha256"
+ALGORITHM_DIGEST_SHA384 = "http://www.w3.org/2001/04/xmlenc#sha384"
 ALGORITHM_DIGEST_SHA512 = "http://www.w3.org/2001/04/xmlenc#sha512"
+
+ALGORITHM_SIGNATURE_RSA_SHA1 = "http://www.w3.org/2000/09/xmldsig#rsa-sha1"
+ALGORITHM_SIGNATURE_RSA_SHA256 = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
+ALGORITHM_SIGNATURE_RSA_SHA384 = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"
 ALGORITHM_SIGNATURE_RSA_SHA512 = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"
 
 
+
+class _HashType(object):
+    def __init__(self, hashlib_name, xmldsig_name, pyca_name=None):
+        self.name = hashlib_name
+        self.xmldsig_name = xmldsig_name
+        if pyca_name is None:
+            self.pyca_name = self.name.upper()
+        else:
+            self.pyca_name = pyca_name
+
+class _HashTypes(object):
+    def __init__(self):
+        self._HASHES = {
+            ALGORITHM_SIGNATURE_RSA_SHA1: 'sha1',
+            ALGORITHM_SIGNATURE_RSA_SHA256: 'sha256',
+            ALGORITHM_SIGNATURE_RSA_SHA384: 'sha384',
+            ALGORITHM_SIGNATURE_RSA_SHA512: 'sha512'}
+
+    def __getattr__(self, item):
+        if item in self._HASHES:
+            return _HashType(self._HASHES[item], item)
+        else:
+            raise AttributeError("Hash type '%s' not supported." % item)
+
+class _PaddingType(object):
+    def __init__(self, name):
+        self.name = name
+
+
+class _PaddingTypes(object):
+    def __init__(self):
+        self._PADDINGS = ['PKCS1v15']
+    def __getattr__(self, item):
+        if item in self._PADDINGS:
+            return _PaddingType(item)
+        else:
+            raise AttributeError("Padding type '%s' not supported." % item)
+
+Hashes = _HashTypes()
+Paddings = _PaddingTypes()

src/xmlsec/crypto.py

@@ -72,7 +72,6 @@ def from_keyspec(keyspec, private=False, signature_element=None):
     thread_local.cache = cache
     return key
 
-
 class XMlSecCrypto(object):
     def __init__(self, source, do_padding, private, do_digest=True):
         # Public attributes
@@ -84,29 +83,24 @@ def __init__(self, source, do_padding, private, do_digest=True):
         self.do_padding = do_padding
         self.do_digest = do_digest
 
-    def sign(self, data, hash_alg=None):
-        if hash_alg is None:
-            hash_alg = "sha1"
+    def sign(self, data, hash_alg, pad_alg="PKCS1v15"):
         if self.is_private:
-            chosen_hash = getattr(hashes, hash_alg.upper())()
-            return self.key.sign(data,
-                                padding.PKCS1v15(),
-                                chosen_hash
-                                )
+            hasher = getattr(hashes, hash_alg.pyca_name)
+            padder = getattr(padding, pad_alg)
+            return self.key.sign(data, padder(), hasher())
         else:
             raise XMLSigException('Signing is only possible with a private key.')
 
-    def verify(self, signature, msg, hash_alg=None):
-        if hash_alg is None:
-            hash_alg = "sha1"
+    def verify(self, signature, msg, hash_alg, pad_alg="PKCS1v15"):
         if not self.is_private:
             try:
-                chosen_hash = getattr(hashes, hash_alg.upper())()
+                hasher = getattr(hashes, hash_alg.pyca_name)
+                padder = getattr(padding, pad_alg)
                 self.key.public_key().verify(
                     signature,
                     msg,
-                    padding.PKCS1v15(),
-                    chosen_hash
+                    padder(),
+                    hasher()
                 )
             except InvalidSignature:
                 return False