gnu: carla: Add gtk2 dependency.
[jackhill/guix/guix.git] / gnu / packages / python-crypto.scm
CommitLineData
cc6f4912
LC
1;;; GNU Guix --- Functional package management for GNU
2;;; Copyright © 2015 Eric Dvorsak <eric@dvorsak.fr>
263ea4eb 3;;; Copyright © 2015, 2016, 2017, 2018, 2019, 2020 Efraim Flashner <efraim@flashner.co.il>
0a90c789 4;;; Copyright © 2015, 2016, 2017, 2019 Leo Famulari <leo@famulari.name>
55e51b66 5;;; Copyright © 2016, 2017, 2020 Marius Bakke <mbakke@fastmail.com>
cc6f4912
LC
6;;; Copyright © 2017 Ben Sturmfels <ben@sturm.com.au>
7;;; Copyright © 2016 Sou Bunnbu <iyzsong@gmail.com>
8;;; Copyright © 2015 Cyril Roelandt <tipecaml@gmail.com>
9;;; Copyright © 2014, 2017 Eric Bavier <bavier@member.fsf.org>
10;;; Copyright © 2015, 2016 David Thompson <davet@gnu.org>
ceb5b11b 11;;; Copyright © 2016, 2017, 2018, 2019 Tobias Geerinckx-Rice <me@tobias.gr>
3c986a7d 12;;; Copyright © 2016, 2017 Nikita <nikita@n0.is>
cc6f4912 13;;; Copyright © 2014, 2015 Mark H Weaver <mhw@netris.org>
c6e33df9 14;;; Copyright © 2015, 2016, 2017, 2019 Ricardo Wurmus <rekado@elephly.net>
cc6f4912 15;;; Copyright © 2016 Danny Milosavljevic <dannym+a@scratchpost.org>
74f01758 16;;; Copyright © 2016, 2017, 2020 Arun Isaac <arunisaac@systemreboot.net>
cc6f4912 17;;; Copyright © 2017 Carlo Zancanaro <carlo@zancanaro.id.au>
2f691218 18;;; Copyright © 2018 Tomáš Čech <sleep_walker@gnu.org>
cef6dc64 19;;; Copyright © 2018 Nicolas Goaziou <mail@nicolasgoaziou.fr>
e64088f0 20;;; Copyright © 2018 Vagrant Cascadian <vagrant@debian.org>
8afe166d 21;;; Copyright © 2018 Nam Nguyen <namn@berkeley.edu>
93953ec7 22;;; Copyright © 2019 Guillaume Le Vaillant <glv@posteo.net>
1f15cbc8 23;;; Copyright © 2019 Clément Lassieur <clement@lassieur.org>
f8dcdf2b 24;;; Copyright © 2020 Alexandros Theodotou <alex@zrythm.org>
cc6f4912
LC
25;;;
26;;; This file is part of GNU Guix.
27;;;
28;;; GNU Guix is free software; you can redistribute it and/or modify it
29;;; under the terms of the GNU General Public License as published by
30;;; the Free Software Foundation; either version 3 of the License, or (at
31;;; your option) any later version.
32;;;
33;;; GNU Guix is distributed in the hope that it will be useful, but
34;;; WITHOUT ANY WARRANTY; without even the implied warranty of
35;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
36;;; GNU General Public License for more details.
37;;;
38;;; You should have received a copy of the GNU General Public License
39;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
40
41(define-module (gnu packages python-crypto)
42 #:use-module (guix packages)
43 #:use-module (guix download)
44 #:use-module (guix git-download)
45 #:use-module (guix build-system python)
46 #:use-module (gnu packages)
ac257f12 47 #:use-module (gnu packages check)
b95c17c5 48 #:use-module (gnu packages crypto)
f8dcdf2b 49 #:use-module (gnu packages kerberos)
cc6f4912
LC
50 #:use-module (gnu packages libffi)
51 #:use-module (gnu packages multiprecision)
08310637 52 #:use-module (gnu packages password-utils)
cc6f4912
LC
53 #:use-module (gnu packages protobuf)
54 #:use-module (gnu packages python)
6fedf6f2 55 #:use-module (gnu packages python-check)
cb91f6ae 56 #:use-module (gnu packages python-web)
44d10b1f 57 #:use-module (gnu packages python-xyz)
33dc54b0 58 #:use-module (gnu packages time)
cc6f4912
LC
59 #:use-module (gnu packages tls)
60 #:use-module ((guix licenses) #:prefix license:)
61 #:use-module (srfi srfi-1))
62
cef6dc64
NG
63(define-public python-base58
64 (package
65 (name "python-base58")
ceb5b11b 66 (version "1.0.3")
cef6dc64
NG
67 (source
68 (origin
69 (method url-fetch)
70 (uri (pypi-uri "base58" version))
71 (sha256
72 (base32
ceb5b11b 73 "0q1yr0n5jaf17xq98m7dma6z4rh8p19ch55l1s09gi3rk5ckqycs"))))
cef6dc64
NG
74 (build-system python-build-system)
75 (native-inputs
76 `(("python-pyhamcrest" ,python-pyhamcrest)))
77 (home-page "https://github.com/keis/base58")
78 (synopsis "Base58 and Base58Check implementation")
79 (description "Base58 and Base58Check implementation compatible
80with what is used by the Bitcoin network.")
81 (license license:expat)))
82
7c16af46
MB
83(define-public python-bcrypt
84 (package
85 (name "python-bcrypt")
b5cb4624 86 (version "3.1.7")
7c16af46
MB
87 (source
88 (origin
89 (method url-fetch)
90 (uri (pypi-uri "bcrypt" version))
91 (sha256
b5cb4624 92 (base32 "0hhywhxx301cxivgxrpslrangbfpccc8y83qbwn1f57cab3nj00b"))))
7c16af46
MB
93 (build-system python-build-system)
94 (native-inputs
95 `(("python-pycparser" ,python-pycparser)
96 ("python-pytest" ,python-pytest)))
97 (propagated-inputs
98 `(("python-cffi" ,python-cffi)
99 ("python-six" ,python-six)))
100 (home-page "https://github.com/pyca/bcrypt/")
101 (synopsis
102 "Modern password hashing library")
103 (description
104 "Bcrypt is a Python module which provides a password hashing method based
105on the Blowfish password hashing algorithm, as described in
106@url{http://static.usenix.org/events/usenix99/provos.html,\"A Future-Adaptable
107Password Scheme\"} by Niels Provos and David Mazieres.")
108 (license license:asl2.0)))
109
110(define-public python2-bcrypt
111 (package-with-python2 python-bcrypt))
112
cc6f4912
LC
113(define-public python-passlib
114 (package
115 (name "python-passlib")
aadd107d 116 (version "1.7.2")
cc6f4912
LC
117 (source
118 (origin
119 (method url-fetch)
120 (uri (pypi-uri "passlib" version))
121 (sha256
aadd107d 122 (base32 "1a5ngap7kq0b4azq8nlfg6xg5bcl1i0v1sbynhmbr631jgpnqrld"))))
cc6f4912
LC
123 (build-system python-build-system)
124 (native-inputs
125 `(("python-nose" ,python-nose)))
126 (propagated-inputs
127 `(("python-py-bcrypt" ,python-py-bcrypt)))
128 (arguments
129 `(#:phases
130 (modify-phases %standard-phases
131 (add-before 'check 'set-PYTHON_EGG_CACHE
132 ;; some tests require access to "$HOME/.cython"
133 (lambda* _ (setenv "PYTHON_EGG_CACHE" "/tmp") #t)))))
134 (home-page "https://bitbucket.org/ecollins/passlib")
aadd107d 135 (synopsis "Comprehensive password hashing framework")
cc6f4912
LC
136 (description
137 "Passlib is a password hashing library for Python 2 & 3, which provides
138cross-platform implementations of over 30 password hashing algorithms, as well
139as a framework for managing existing password hashes. It's designed to be
140useful for a wide range of tasks, from verifying a hash found in /etc/shadow,
141to providing full-strength password hashing for multi-user application.")
142 (license license:bsd-3)))
143
144(define-public python2-passlib
145 (package-with-python2 python-passlib))
146
147(define-public python-py-bcrypt
148 (package
149 (name "python-py-bcrypt")
150 (version "0.4")
151 (source
152 (origin
153 (method url-fetch)
27864e7c 154 (uri (pypi-uri "py-bcrypt" version))
cc6f4912
LC
155 (sha256
156 (base32
157 "0y6smdggwi5s72v6p1nn53dg6w05hna3d264cq6kas0lap73p8az"))))
158 (build-system python-build-system)
159 (home-page "https://code.google.com/p/py-bcrypt")
160 (synopsis
161 "Bcrypt password hashing and key derivation")
162 (description
163 "A python wrapper of OpenBSD's Blowfish password hashing code. This
164system hashes passwords using a version of Bruce Schneier's Blowfish block
165cipher with modifications designed to raise the cost of off-line password
166cracking and frustrate fast hardware implementation. The computation cost of
3defa90d 167the algorithm is parametrised, so it can be increased as computers get faster.
cc6f4912
LC
168The intent is to make a compromise of a password database less likely to
169result in an attacker gaining knowledge of the plaintext passwords (e.g. using
170John the Ripper).")
171 ;; "sha2.c" is under BSD-3;
172 ;; "blowfish.c" and "bcrypt.c" are under BSD-4;
173 ;; the rest is under ISC.
174 (license (list license:isc license:bsd-3 license:bsd-4))))
175
176(define-public python2-py-bcrypt
177 (package-with-python2 python-py-bcrypt))
178
e64088f0
VC
179(define-public python-pyblake2
180 (package
181 (name "python-pyblake2")
182 (version "1.1.2")
183 (source
184 (origin
185 (method url-fetch)
186 (uri (pypi-uri "pyblake2" version))
187 (sha256
188 (base32
189 "0gz9hgznv5zw4qjq43xa56y0yikimx30gffvibxzm0nv5sq7xk2w"))))
190 (build-system python-build-system)
191 (home-page "https://github.com/dchest/pyblake2")
192 (synopsis "BLAKE2 hash function for Python")
193 (description "BLAKE2 is a cryptographic hash function, which offers
194stronger security while being as fast as MD5 or SHA-1, and comes in two
195flavors: @code{BLAKE2b}, optimized for 64-bit platforms and produces digests
196of any size between 1 and 64 bytes, and @code{BLAKE2s}, optimized for 8- to
19732-bit platforms and produces digests of any size between 1 and 32 bytes.
198
199This package provides a Python interface for BLAKE2.")
200 ;; The COPYING file declares it as public domain, with the option to
201 ;; alternatively use and redistribute it under a variety of permissive
202 ;; licenses. cc0 is explicitly mentioned in setup.py and pyblake2module.c.
203 (license (list license:public-domain license:cc0))))
204
cc6f4912
LC
205(define-public python-paramiko
206 (package
207 (name "python-paramiko")
784dadc0 208 (version "2.7.1")
cc6f4912
LC
209 (source
210 (origin
211 (method url-fetch)
212 (uri (pypi-uri "paramiko" version))
213 (sha256
214 (base32
784dadc0 215 "17wx8lkhqxmddfdq7z7x45xqq2w3gwa974hpq1n3y0dqbn4r414j"))))
cc6f4912
LC
216 (build-system python-build-system)
217 (arguments
8e84eb68
MB
218 `(;; FIXME: Tests require many unpackaged libraries, see dev-requirements.txt.
219 #:tests? #f))
cc6f4912 220 (propagated-inputs
2fbc38e3
LF
221 `(("python-bcrypt" ,python-bcrypt)
222 ("python-pyasn1" ,python-pyasn1)
223 ("python-pynacl" ,python-pynacl)
cc6f4912 224 ("python-cryptography" ,python-cryptography)))
101ad242 225 (home-page "https://www.paramiko.org/")
cc6f4912
LC
226 (synopsis "SSHv2 protocol library")
227 (description "Paramiko is a python implementation of the SSHv2 protocol,
228providing both client and server functionality. While it leverages a Python C
229extension for low level cryptography (PyCrypto), Paramiko itself is a pure
230Python interface around SSH networking concepts.")
231 (license license:lgpl2.1+)))
232
233(define-public python2-paramiko
234 (package-with-python2 python-paramiko))
235
236(define-public python-ecdsa
237 (package
238 (name "python-ecdsa")
c57b8419 239 (version "0.14.1")
cc6f4912
LC
240 (source
241 (origin
242 (method url-fetch)
86228e56 243 (uri (pypi-uri "ecdsa" version))
cc6f4912 244 (sha256
c57b8419 245 (base32 "13nx5cbfxc0gnax5zwdmp9xc40qd1llk62mv85jyrvqkbw017ik4"))))
cc6f4912 246 (build-system python-build-system)
92fe2513
EF
247 (arguments
248 '(#:phases
249 (modify-phases %standard-phases
250 (replace 'check
251 (lambda _ (invoke "pytest"))))))
c57b8419
EF
252 (propagated-inputs
253 `(("python-six" ,python-six)))
254 (native-inputs
92fe2513
EF
255 `(("openssl" ,openssl)
256 ("python-pytest" ,python-pytest)))
9cd100b6
TGR
257 (home-page "https://github.com/warner/python-ecdsa")
258 (synopsis "ECDSA cryptographic signature library (pure python)")
cc6f4912
LC
259 (description
260 "This is an easy-to-use implementation of ECDSA cryptography (Elliptic
261Curve Digital Signature Algorithm), implemented purely in Python. With this
262library, you can quickly create keypairs (signing key and verifying key), sign
263messages, and verify the signatures. The keys and signatures are very short,
264making them easy to handle and incorporate into other protocols.")
265 (license license:expat)))
266
267(define-public python2-ecdsa
268 (package-with-python2 python-ecdsa))
269
270;;; Pycrypto is abandoned upstream:
271;;;
272;;; https://github.com/dlitz/pycrypto/issues/173
273;;;
274;;; TODO Remove this package from GNU Guix.
275(define-public python-pycrypto
276 (package
277 (name "python-pycrypto")
278 (version "2.6.1")
279 (source
280 (origin
281 (method url-fetch)
282 (uri (pypi-uri "pycrypto" version))
2a2a9878
MB
283 (patches (search-patches "python-pycrypto-CVE-2013-7459.patch"
284 "python-pycrypto-time-clock.patch"))
cc6f4912
LC
285 (sha256
286 (base32
287 "0g0ayql5b9mkjam8hym6zyg6bv77lbh66rv1fyvgqb17kfc1xkpj"))))
288 (build-system python-build-system)
289 (inputs
290 `(("python" ,python)
291 ("gmp" ,gmp)))
292 (arguments
293 `(#:phases
294 (modify-phases %standard-phases
295 (add-before 'build 'set-build-env
296 ;; pycrypto runs an autoconf configure script behind the scenes
297 (lambda _ (setenv "CONFIG_SHELL" (which "bash")) #t)))))
52888f52 298 (home-page "https://www.dlitz.net/software/pycrypto/")
cc6f4912
LC
299 (synopsis "Cryptographic modules for Python")
300 (description
301 "Pycrypto is a collection of both secure hash functions (such as SHA256
302and RIPEMD160), and various encryption algorithms (AES, DES, RSA, ElGamal,
303etc.). The package is structured to make adding new modules easy.")
304 (license license:public-domain)))
305
306(define-public python2-pycrypto
307 (let ((pycrypto (package-with-python2 python-pycrypto)))
308 (package (inherit pycrypto)
309 (inputs
310 `(("python" ,python-2)
311 ,@(alist-delete
312 "python"
313 (package-inputs pycrypto)))))))
314
f8dcdf2b
AT
315(define-public python-kerberos
316 (package
317 (name "python-kerberos")
318 (version "1.3.0")
319 (source
320 (origin
321 (method url-fetch)
322 (uri (pypi-uri "kerberos" version))
323 (sha256
324 (base32
325 "19663qxmma0i8bfbjc2iwy5hgq0g4pfb75r023v5dps68zfvffgh"))))
326 (build-system python-build-system)
327 (inputs
328 `(("mit-krb5" ,mit-krb5)))
329 (home-page "https://github.com/apple/ccs-pykerberos")
330 (synopsis
331 "Python Kerberos library used by CalendarServer")
332 (description
333 "This Python package is a high-level wrapper for Kerberos (GSSAPI)
334operations. The goal is to avoid having to build a module that wraps the
335entire Kerberos.framework, and instead offer a limited set of functions that
336do what is needed for client/server Kerberos authentication based on
337<http://www.ietf.org/rfc/rfc4559.txt>.")
338 (license license:asl2.0)))
339
cc6f4912
LC
340(define-public python-keyring
341 (package
342 (name "python-keyring")
6fedf6f2 343 (version "21.0.0")
cc6f4912
LC
344 (source
345 (origin
346 (method url-fetch)
347 (uri (pypi-uri "keyring" version))
348 (sha256
349 (base32
6fedf6f2
EF
350 "1k0w3yh3fz0qp0cvkxdiinq9jzbrnc6bd88qpjz34x3cgcr94psz"))
351 (modules '((guix build utils)))
352 (snippet
353 ;; https://github.com/jaraco/keyring/issues/414
354 '(begin (substitute* "tests/test_packaging.py"
355 (("ep, =") "(ep,) =")) #t))))
cc6f4912 356 (build-system python-build-system)
6fedf6f2
EF
357 (arguments
358 `(#:phases
359 (modify-phases %standard-phases
360 (replace 'check
361 (lambda _
362 ;; Not clear why this test fails.
363 (delete-file "tests/test_packaging.py")
364 (substitute* "pytest.ini"
365 (("--black ") ""))
366 (invoke "pytest"))))))
cc6f4912 367 (native-inputs
770b1d65 368 `(("python-pytest" ,python-pytest)
6fedf6f2
EF
369 ("python-pytest-checkdocs" ,python-pytest-checkdocs)
370 ("python-pytest-cov" ,python-pytest-cov)
371 ("python-pytest-flake8" ,python-pytest-flake8)
770b1d65 372 ("python-setuptools-scm" ,python-setuptools-scm)))
cc6f4912 373 (propagated-inputs
6fedf6f2
EF
374 `(("python-importlib-metadata" ,python-importlib-metadata)
375 ("python-secretstorage" ,python-secretstorage)))
cc6f4912
LC
376 (home-page "https://github.com/jaraco/keyring")
377 (synopsis "Store and access your passwords safely")
378 (description
379 "The Python keyring lib provides a easy way to access the system keyring
380service from python. It can be used in any application that needs safe
381password storage.")
382 ;; "MIT" and PSF dual license
6fedf6f2 383 (properties `((python2-variant . ,(delay python2-keyring))))
cc6f4912
LC
384 (license license:x11)))
385
386(define-public python2-keyring
6fedf6f2
EF
387 (let ((keyring (package-with-python2
388 (strip-python2-variant python-keyring))))
389 (package
390 (inherit keyring)
391 (name "python2-keyring")
392 (version "8.7")
393 (source
394 (origin
395 (method url-fetch)
396 (uri (pypi-uri "keyring" version))
397 (sha256
398 (base32
399 "0482rmi2x6p78wl2kz8qzyq21xz1sbbfwnv5x7dggar4vkwxhzfx"))))
400 (arguments
401 `(#:python ,python-2))
402 (native-inputs
403 `(("python2-pytest" ,python2-pytest)
404 ("python2-pytest-runner" ,python2-pytest-runner)
405 ("python2-setuptools-scm" ,python2-setuptools-scm)))
406 (propagated-inputs
407 `(("python2-pycrypto" ,python2-pycrypto))))))
cc6f4912 408
9a684b40
EF
409(define-public python-keyrings.alt
410 (package
411 (name "python-keyrings.alt")
412 (version "3.4.0")
413 (source
414 (origin
415 (method url-fetch)
416 (uri (pypi-uri "keyrings.alt" version))
417 (sha256
418 (base32
419 "0gdjdqpq2hf770p6iwi891mil0vbsdhvy88x0v8b2w4y4b28lcli"))
420 (modules '((guix build utils)))
421 (snippet
422 '(begin
423 (delete-file "keyrings/alt/_win_crypto.py")
424 ;; Rely on python-keyring>20:
425 ;; https://github.com/jaraco/keyrings.alt/issues/33
426 (substitute* '("keyrings/alt/tests/test_Gnome.py"
427 "keyrings/alt/tests/test_Google.py"
428 "keyrings/alt/tests/test_Windows.py"
429 "keyrings/alt/tests/test_file.py"
430 "keyrings/alt/tests/test_pyfs.py")
431 (("keyring.tests.test_backend") "keyring.testing.backend")
432 (("keyring.tests.util") "keyring.testing.util"))
433 #t))))
434 (build-system python-build-system)
435 (native-inputs
436 `(("python-keyring" ,python-keyring)
437 ("python-pytest" ,python-pytest)
438 ("python-setuptools-scm" ,python-setuptools-scm)))
439 (home-page "https://github.com/jaraco/keyrings.alt")
440 (synopsis "Alternate keyring implementations")
441 (description "Keyrings in this package may have security risks or other
442implications. These backends were extracted from the main keyring project to
443make them available for those who wish to employ them, but are discouraged for
444general production use. Include this module and use its backends at your own
445risk.")
446 (license license:expat)))
447
cc6f4912
LC
448(define-public python-certifi
449 (package
450 (name "python-certifi")
ee3a5e07 451 (version "2020.4.5.1")
cc6f4912
LC
452 (source (origin
453 (method url-fetch)
454 (uri (pypi-uri "certifi" version))
455 (sha256
456 (base32
ee3a5e07 457 "06b5gfs7wmmipln8f3z928d2mmx2j4b3x7pnqmj6cvmyfh8v7z2i"))))
cc6f4912 458 (build-system python-build-system)
ee3a5e07 459 (arguments '(#:tests? #f)) ;no tests
cc6f4912
LC
460 (home-page "https://certifi.io/")
461 (synopsis "Python CA certificate bundle")
462 (description
463 "Certifi is a Python library that contains a CA certificate bundle, which
464is used by the Requests library to verify HTTPS requests.")
465 (license license:asl2.0)))
466
467(define-public python2-certifi
468 (package-with-python2 python-certifi))
469
470(define-public python-cryptography-vectors
471 (package
472 (name "python-cryptography-vectors")
6144e2d7 473 (version "2.9.2")
cc6f4912
LC
474 (source
475 (origin
476 (method url-fetch)
477 (uri (pypi-uri "cryptography_vectors" version))
478 (sha256
479 (base32
6144e2d7 480 "1d4iykcv7cn9j399hczlxm5pzxmqy6d80h3j16dkjwlmv3293b4r"))))
cc6f4912
LC
481 (build-system python-build-system)
482 (home-page "https://github.com/pyca/cryptography")
483 (synopsis "Test vectors for the cryptography package")
484 (description
485 "This package contains test vectors for the cryptography package.")
486 ;; Distributed under either BSD-3 or ASL2.0
487 (license (list license:bsd-3 license:asl2.0))))
488
489(define-public python2-cryptography-vectors
490 (package-with-python2 python-cryptography-vectors))
491
492(define-public python-cryptography
493 (package
494 (name "python-cryptography")
6144e2d7 495 (version "2.9.2")
cc6f4912
LC
496 (source
497 (origin
498 (method url-fetch)
499 (uri (pypi-uri "cryptography" version))
500 (sha256
501 (base32
6144e2d7 502 "0af25w5mkd6vwns3r6ai1w5ip9xp0ms9s261zzssbpadzdr05hx0"))))
cc6f4912
LC
503 (build-system python-build-system)
504 (inputs
505 `(("openssl" ,openssl)))
506 (propagated-inputs
507 `(("python-asn1crypto" ,python-asn1crypto)
508 ("python-cffi" ,python-cffi)
509 ("python-six" ,python-six)
510 ("python-idna" ,python-idna)
511 ("python-iso8601" ,python-iso8601)))
512 (native-inputs
513 `(("python-cryptography-vectors" ,python-cryptography-vectors)
514 ("python-hypothesis" ,python-hypothesis)
515 ("python-pretend" ,python-pretend)
516 ("python-pytz" ,python-pytz)
2dd12924 517 ("python-pytest" ,python-pytest)))
cc6f4912
LC
518 (home-page "https://github.com/pyca/cryptography")
519 (synopsis "Cryptographic recipes and primitives for Python")
520 (description
521 "cryptography is a package which provides cryptographic recipes and
522primitives to Python developers. It aims to be the “cryptographic standard
523library” for Python. The package includes both high level recipes, and low
524level interfaces to common cryptographic algorithms such as symmetric ciphers,
525message digests and key derivation functions.")
526 ;; Distributed under either BSD-3 or ASL2.0
527 (license (list license:bsd-3 license:asl2.0))
528 (properties `((python2-variant . ,(delay python2-cryptography))))))
529
530(define-public python2-cryptography
531 (let ((crypto (package-with-python2
532 (strip-python2-variant python-cryptography))))
533 (package (inherit crypto)
534 (propagated-inputs
535 `(("python2-ipaddress" ,python2-ipaddress)
536 ("python2-backport-ssl-match-hostname"
537 ,python2-backport-ssl-match-hostname)
538 ("python2-enum34" ,python2-enum34)
539 ,@(package-propagated-inputs crypto))))))
540
541(define-public python-pyopenssl
542 (package
543 (name "python-pyopenssl")
da1eb6db 544 (version "19.1.0")
cc6f4912
LC
545 (source
546 (origin
547 (method url-fetch)
548 (uri (pypi-uri "pyOpenSSL" version))
549 (sha256
550 (base32
da1eb6db 551 "01wmsq6w0frzbr3zps4ga9kmqjidp2h317jwpq1g9ah24r5lj94s"))))
cc6f4912
LC
552 (build-system python-build-system)
553 (arguments
554 '(#:phases
555 (modify-phases %standard-phases
556 (delete 'check)
557 (add-after 'install 'check
558 (lambda* (#:key inputs outputs #:allow-other-keys)
559 (add-installed-pythonpath inputs outputs)
55e51b66
MB
560 ;; PyOpenSSL runs tests against a certificate with a fixed
561 ;; expiry time. To ensure successful builds in the future,
562 ;; set the time to roughly the release date.
563 (invoke "faketime" "2019-01-01" "py.test" "-v" "-k"
c6e33df9
RW
564 (string-append
565 ;; This test tries to look up certificates from
566 ;; the compiled-in default path in OpenSSL, which
567 ;; does not exist in the build environment.
568 "not test_fallback_default_verify_paths "
569 ;; This test attempts to make a connection to
570 ;; an external web service.
571 "and not test_set_default_verify_paths")))))))
cc6f4912
LC
572 (propagated-inputs
573 `(("python-cryptography" ,python-cryptography)
574 ("python-six" ,python-six)))
575 (inputs
576 `(("openssl" ,openssl)))
577 (native-inputs
55e51b66
MB
578 `(("libfaketime" ,libfaketime)
579 ("python-flaky" ,python-flaky)
cc6f4912 580 ("python-pretend" ,python-pretend)
2dd12924 581 ("python-pytest" ,python-pytest)))
cc6f4912
LC
582 (home-page "https://github.com/pyca/pyopenssl")
583 (synopsis "Python wrapper module around the OpenSSL library")
584 (description
585 "PyOpenSSL is a high-level wrapper around a subset of the OpenSSL
586library.")
587 (license license:asl2.0)))
588
589(define-public python2-pyopenssl
590 (package-with-python2 python-pyopenssl))
591
579b4362
DM
592(define-public python-ed25519
593 (package
594 (name "python-ed25519")
595 (version "1.4")
596 (source
597 (origin
598 (method url-fetch)
599 (uri (pypi-uri "ed25519" version))
600 (sha256
601 (base32
602 "0ahx1nkxa0xis3cw0h5c4fpgv8mq4znkq7kajly33lc3317bk499"))))
603 (build-system python-build-system)
604 (home-page "https://github.com/warner/python-ed25519")
605 (synopsis "Ed25519 public-key signatures")
606 (description "Ed25519 public-key signatures")
607 (license license:expat)))
608
609(define-public python2-ed25519
610 (package-with-python2 python-ed25519))
611
cc6f4912
LC
612(define-public python-axolotl-curve25519
613 (package
614 (name "python-axolotl-curve25519")
74f01758 615 (version "0.4.1.post2")
cc6f4912
LC
616 (source
617 (origin
74f01758
AI
618 (method url-fetch)
619 (uri (pypi-uri "python-axolotl-curve25519" version))
cc6f4912
LC
620 (sha256
621 (base32
74f01758 622 "18v3rfyv7xi26fb97nw1xc0l6x8wi0i4xj8dlq4gblpbjxiac187"))))
cc6f4912 623 (build-system python-build-system)
cc6f4912
LC
624 (home-page "https://github.com/tgalal/python-axolotl-curve25519")
625 (synopsis "Python wrapper for curve25519 library")
626 (description "This is a python wrapper for the curve25519 library
627with ed25519 signatures. The C code was pulled from
628libaxolotl-android. At the moment this wrapper is meant for use by
629python-axolotl.")
630 (license (list license:gpl3 ; Most files
631 license:bsd-3)))) ; curve/curve25519-donna.c
632
633(define-public python2-axolotl-curve25519
634 (package-with-python2 python-axolotl-curve25519))
635
636(define-public python-axolotl
637 (package
638 (name "python-axolotl")
b578168f 639 (version "0.2.3")
cc6f4912
LC
640 (source
641 (origin
b578168f
AI
642 (method url-fetch)
643 (uri (pypi-uri "python-axolotl" version))
cc6f4912 644 (sha256
b578168f
AI
645 (base32
646 "1bwdp24fmriffwx91aigs9k162albb51iskp23nc939z893q23py"))))
cc6f4912
LC
647 (build-system python-build-system)
648 (arguments
649 `(#:phases
650 (modify-phases %standard-phases
651 ;; Don't install tests
652 (add-before 'install 'remove-tests
653 (lambda _
654 (for-each delete-file-recursively
655 '("axolotl/tests" "build/lib/axolotl/tests"))
656 #t)))))
657 (propagated-inputs
658 `(("python-axolotl-curve25519" ,python-axolotl-curve25519)
b578168f
AI
659 ("python-cryptography" ,python-cryptography)
660 ("python-protobuf" ,python-protobuf)))
cc6f4912
LC
661 (home-page "https://github.com/tgalal/python-axolotl")
662 (synopsis "Python port of libaxolotl-android")
663 (description "This is a python port of libaxolotl-android. This
664is a ratcheting forward secrecy protocol that works in synchronous and
665asynchronous messaging environments.")
666 (license license:gpl3)))
667
668(define-public python2-axolotl
669 (package-with-python2 python-axolotl))
670
671;; SlowAES isn't compatible with Python 3.
672(define-public python2-slowaes
673 (package
674 (name "python2-slowaes")
675 (version "0.1a1")
676 (source
677 (origin
678 (method url-fetch)
679 (uri (pypi-uri "slowaes" version))
680 (sha256
681 (base32
682 "02dzajm83a7lqgxf6r3hgj64wfmcxz8gs4nvgxpvj5n19kjqlrc3"))))
683 (build-system python-build-system)
684 (arguments `(#:python ,python-2))
685 (home-page "http://code.google.com/p/slowaes/")
686 (synopsis "Implementation of AES in Python")
687 (description "This package contains an implementation of AES in Python.
688This implementation is slow (hence the project name) but still useful when
689faster ones are not available.")
690 (license license:asl2.0)))
691
692(define-public python-pyaes
693 (package
694 (name "python-pyaes")
6de86fd5 695 (version "1.6.1")
cc6f4912
LC
696 (source
697 (origin
698 (method url-fetch)
699 (uri (pypi-uri "pyaes" version))
700 (sha256
701 (base32
6de86fd5 702 "13vdaff15k0jyfcss4b4xvfgm8xyv0nrbyw5n1qc7lrqbi0b3h82"))))
cc6f4912
LC
703 (build-system python-build-system)
704 (home-page "https://github.com/ricmoo/pyaes")
705 (synopsis "Implementation of AES in Python")
706 (description "This package contains a pure-Python implementation of the
707AES block cipher algorithm and the common modes of operation (CBC, CFB, CTR,
708ECB and OFB).")
709 (license license:expat)))
710
711(define-public python2-pyaes
712 (package-with-python2 python-pyaes))
b95c17c5
LC
713
714(define-public python-asn1crypto
715 (package
716 (name "python-asn1crypto")
19f2a526 717 (version "0.24.0")
b95c17c5
LC
718 (source
719 (origin
d3b7feb7
EF
720 (method git-fetch)
721 (uri (git-reference
b0e7b699 722 (url "https://github.com/wbond/asn1crypto")
d3b7feb7
EF
723 (commit version)))
724 (file-name (git-file-name name version))
b95c17c5
LC
725 (sha256
726 (base32
19f2a526 727 "10lai2cs5mnz3gpaffbw1m7b885ls8328q5wxm35vfmcip1f0xmb"))))
b95c17c5
LC
728 (build-system python-build-system)
729 (home-page "https://github.com/wbond/asn1crypto")
730 (synopsis "ASN.1 parser and serializer in Python")
731 (description "asn1crypto is an ASN.1 parser and serializer with definitions
732for private keys, public keys, certificates, CRL, OCSP, CMS, PKCS#3, PKCS#7,
733PKCS#8, PKCS#12, PKCS#5, X.509 and TSP.")
734 (license license:expat)))
735
736(define-public python2-asn1crypto
737 (package-with-python2 python-asn1crypto))
738
739(define-public python-pynacl
740 (package
741 (name "python-pynacl")
f5e3f02f 742 (version "1.4.0")
b95c17c5
LC
743 (source
744 (origin
745 (method url-fetch)
746 (uri (pypi-uri "PyNaCl" version))
747 (modules '((guix build utils)))
f5e3f02f
MB
748 (snippet
749 '(begin
750 ;; Remove spurious dependency on python-wheel, can be removed
751 ;; for 1.5.
752 (substitute* "setup.py"
753 (("\"wheel\"") ""))
754 ;; Remove bundled libsodium.
755 (delete-file-recursively "src/libsodium")
756 #t))
b95c17c5
LC
757 (sha256
758 (base32
f5e3f02f 759 "01b56hxrbif3hx8l6rwz5kljrgvlbj7shmmd2rjh0hn7974a5sal"))))
b95c17c5
LC
760 (build-system python-build-system)
761 (arguments
f5e3f02f
MB
762 `(#:modules (,@%python-build-system-modules
763 (guix build utils)
764 (ice-9 ftw)
765 (srfi srfi-26))
766 #:phases
767 (modify-phases (@ (guix build python-build-system) %standard-phases)
b95c17c5
LC
768 (add-before 'build 'use-system-sodium
769 (lambda _
770 (setenv "SODIUM_INSTALL" "system")
f5e3f02f
MB
771 #t))
772 (replace 'check
773 (lambda _
774 (let ((build-directory
775 (car (scandir "build" (cut string-prefix? "lib" <>)))))
776 (setenv "PYTHONPATH"
777 (string-append "./build/" build-directory ":"
778 (getenv "PYTHONPATH")))
779 (invoke "pytest" "-vv")))))))
b95c17c5 780 (native-inputs
6969ad0e
LF
781 `(("python-hypothesis" ,python-hypothesis)
782 ("python-pytest" ,python-pytest)))
b95c17c5
LC
783 (propagated-inputs
784 `(("python-cffi" ,python-cffi)
785 ("python-six" ,python-six)
786 ("libsodium" ,libsodium)))
787 (home-page "https://github.com/pyca/pynacl/")
788 (synopsis "Python bindings to libsodium")
789 (description
790 "PyNaCl is a Python binding to libsodium, which is a fork of the
791Networking and Cryptography library. These libraries have a stated goal
792of improving usability, security and speed.")
793 (license license:asl2.0)))
794
acc6e695
JL
795(define-public python2-pynacl
796 (package-with-python2 python-pynacl))
797
b95c17c5
LC
798(define-public python2-pgpdump
799 (package
800 (name "python2-pgpdump")
801 (version "1.5")
802 (source
803 (origin
804 (method url-fetch)
805 (uri (pypi-uri "pgpdump" version))
806 (sha256
807 (base32
808 "0s4nh8h7qsdj2yf29bspjs1zvxd4lcd11r6g11dp7fppgf2h0iqw"))))
809 (build-system python-build-system)
810
811 ;; Currently fails to build with Python 3.
812 (arguments `(#:python ,python-2))
813
814 (home-page "https://github.com/toofishes/python-pgpdump")
815 (synopsis "Python library for parsing PGP packets")
816 (description
817 "Python-pgpdump is an OpenPGP packet parser based on
818@uref{http://www.mew.org/~kazu/proj/pgpdump/, pgpdump}. It notably supports:
819
820@itemize
821@item signature packets;
822@item public key packets;
823@item secret key packets;
824@item trust, user ID, and user attribute packets;
825@item ASCII-armor decoding and CRC check.
826@end itemize\n")
827 (license license:bsd-3)))
828
829(define-public python2-roca-detect
830 (package
831 (name "python2-roca-detect")
832 (version "1.0.8")
833 (source
834 (origin
835 (method url-fetch)
836 (uri (pypi-uri "roca-detect" version))
837 (sha256
838 (base32
839 "1di4akyw2lf5r8zfwvyhkilz8jv8g4b66rgaqwfabmjwma6gnw27"))))
840 (build-system python-build-system)
841 (native-inputs
842 ;; TODO: apk_parse_ph4, pyjks
843 `(("python2-dateutil" ,python2-dateutil)
844 ("python2-six" ,python2-six)
845 ("python2-cryptography" ,python2-cryptography)
846 ("python2-future" ,python2-future)
847 ("python2-coloredlogs" ,python2-coloredlogs)
848 ("python2-pgpdump" ,python2-pgpdump)))
849 (arguments
850 `(;; Basic testing routine is quite simple and works with Py3
851 ;; but the rest of the code that processes the different
852 ;; key formats and extracts the modulus for inspection is
853 ;; not yet fully py3 ready.
854 #:python ,python-2))
855 (home-page "https://github.com/crocs-muni/roca")
856 (synopsis "ROCA detection tool")
857 (description
858 "This tool is related to the paper entitled @i{Return of the
859Coppersmith’s Attack: Practical Factorization of Widely Used RSA Moduli}. It
860enables you to test public RSA keys for a presence of the described
861vulnerability. Currently the tool supports the following key formats: X.509
862Certificate (DER encoded, PEM encoded), RSA PEM (encoded private key, public
863key), SSH public key, ASC-encoded OpenPGP key, APK Android application, LDIFF
864file, and more.")
865 (license license:gpl3)))
d0d5f726 866
3eca7ff9
EF
867(define-public python-blurhash
868 (package
869 (name "python-blurhash")
870 (version "1.1.4")
871 (source
872 (origin
873 ;; Tests not included in pypi release and releases not tagged in git repo.
874 (method git-fetch)
875 (uri (git-reference
876 (url "https://github.com/halcy/blurhash-python")
877 (commit "22e081ef1c24da1bb5c5eaa2c1d6649724deaef8")))
878 (file-name (git-file-name name version))
879 (sha256
880 (base32
881 "1qq6mhydlp7q3na4kmaq3871h43wh3pyfyxr4b79bia73wjdylxf"))))
882 (build-system python-build-system)
883 (arguments
884 '(#:phases
885 (modify-phases %standard-phases
886 (replace 'check
887 (lambda _
888 (delete-file "setup.cfg")
889 (invoke "pytest"))))))
890 (native-inputs
891 `(("python-numpy" ,python-numpy)
892 ("python-pillow" ,python-pillow)
893 ("python-pytest" ,python-pytest)))
894 (home-page "https://github.com/halcy/blurhash-python")
895 (synopsis
896 "Pure-Python implementation of the blurhash algorithm")
897 (description
898 "Pure-Python implementation of the blurhash algorithm.")
899 (license license:expat)))
900
d0d5f726
DM
901(define-public python-ecpy
902 (package
903 (name "python-ecpy")
37da5813 904 (version "0.10.0")
d0d5f726
DM
905 (source
906 (origin
907 (method url-fetch)
908 (uri (pypi-uri "ECPy" version))
909 (sha256
910 (base32
37da5813 911 "1gc3i5s93zq6x1nkaxkq1dvmsc12vmrw0hns9f5s1hcb78ni52c8"))))
d0d5f726
DM
912 (build-system python-build-system)
913 (propagated-inputs
914 `(("python-future" ,python-future)))
915 (home-page "https://github.com/ubinity/ECPy")
916 (synopsis "Pure Python Elliptic Curve Library")
917 (description "This package provides a Elliptic Curve Library in pure
918Python.")
919 (license license:asl2.0)))
920
921(define-public python2-ecpy
922 (package-with-python2 python-ecpy))
c1927129
LF
923
924(define-public python-josepy
925 (package
926 (name "python-josepy")
205044b9 927 (version "1.1.0")
c1927129
LF
928 (source (origin
929 (method url-fetch)
930 (uri (pypi-uri "josepy" version))
931 (sha256
932 (base32
205044b9 933 "11khz8malzrv375b27jjkv66z6z6khdx1v5mkkr4vq16gp3n4p7v"))))
c1927129
LF
934 (build-system python-build-system)
935 (arguments
205044b9 936 ;; The tests require flake8 >= 3.5, which is not yet packaged.
c1927129
LF
937 '(#:tests? #f))
938 (propagated-inputs
939 `(("python-cryptography" ,python-cryptography)
940 ("python-pyopenssl" ,python-pyopenssl)
941 ("python-six" ,python-six)))
205044b9 942;; TODO Enable when we have flake8 >= 3.5.
c1927129
LF
943; (native-inputs
944; `(("python-coverage" ,python-coverage)
945; ("python-flake8" ,python-flake8)
946; ("python-isort" ,python-isort)
947; ("python-mock" ,python-mock)
205044b9 948; ("python-pytest" ,python-pytest)
c1927129
LF
949; ("python-pytest-cov" ,python-pytest-cov)
950; ("python-pytest-cache" ,python-pytest-cache)
951; ("python-pytest-flake8" ,python-pytest-flake8)))
952 (home-page "https://github.com/certbot/josepy")
953 (synopsis "JOSE protocol implementation in Python")
954 (description "This package provides a Python implementation of the JOSE
955protocol (Javascript Object Signing and Encryption).")
956 (license license:asl2.0)))
957
958(define-public python2-josepy
959 (package-with-python2 python-josepy))
d32456d5
OP
960
961(define-public python-pycryptodome
962 (package
963 (name "python-pycryptodome")
a62887d3 964 (version "3.7.3")
d32456d5
OP
965 (source
966 (origin
967 (method url-fetch)
968 (uri (pypi-uri "pycryptodome" version))
969 (sha256
970 (base32
a62887d3 971 "0dh6ky5ngxayyn5f6n7gdamjl49g3khz6pdx9sdnag1zwi8248hs"))))
d32456d5
OP
972 (build-system python-build-system)
973 (home-page "https://www.pycryptodome.org")
974 (synopsis "Cryptographic library for Python")
975 (description "This package provides a cryptographic library for Python.
976
977It brings the following enhancements with respect to the last official version
978of PyCrypto:
979
980@itemize
981@item Authenticated encryption modes (GCM, CCM, EAX, SIV, OCB)
982@item Accelerated AES on Intel platforms via AES-NI
983@item First class support for PyPy
984@item Elliptic curves cryptography (NIST P-256 curve only)
985@item Better and more compact API (nonce and iv attributes for ciphers,
986automatic generation of random nonces and IVs, simplified CTR cipher mode, and
987more)
988@item SHA-3 (including SHAKE XOFs) and BLAKE2 hash algorithms
989@item Salsa20 and ChaCha20 stream ciphers
990@item scrypt and HKDF
991@item Deterministic (EC)DSA
992@item Password-protected PKCS#8 key containers
993@item Shamir’s Secret Sharing scheme
994@item Random numbers get sourced directly from the OS (and not from a CSPRNG
995in userspace)
996@item Cleaner RSA and DSA key generation (largely based on FIPS 186-4)
997@item Major clean ups and simplification of the code base
998@end itemize\n")
999 (license license:bsd-2)))
1000
1001(define-public python2-pycryptodome
1002 (package-with-python2 python-pycryptodome))
2f691218
1003
1004(define-public python-m2crypto
1005 (package
1006 (name "python-m2crypto")
3b4cc5cb 1007 (version "0.35.2")
2f691218
1008 (source
1009 (origin
1010 (method url-fetch)
1011 (uri (pypi-uri "M2Crypto" version))
1012 (sha256
3b4cc5cb 1013 (base32 "09yirf3w77w6f49q6nxhrjm9c3a4y9s30s1k09chqrw8zdgx8sjc"))))
2f691218
1014 (build-system python-build-system)
1015 (inputs `(("openssl" ,openssl)))
2f691218
1016 (home-page "https://gitlab.com/m2crypto/m2crypto")
1017 (synopsis "Python crypto and TLS toolkit")
1018 (description "@code{M2Crypto} is a complete Python wrapper for OpenSSL
1019featuring RSA, DSA, DH, EC, HMACs, message digests, symmetric ciphers
1020(including AES); TLS functionality to implement clients and servers; HTTPS
1021extensions to Python's httplib, urllib, and xmlrpclib; unforgeable HMAC'ing
1022AuthCookies for web session management; FTP/TLS client and server; S/MIME;
1023M2Crypto can also be used to provide TLS for Twisted. Smartcards supported
1024through the Engine interface.")
e810de3e 1025 (properties `((python2-variant . ,(delay python2-m2crypto))))
2f691218
1026 (license license:expat)))
1027
1028(define-public python2-m2crypto
e810de3e
MB
1029 (let ((m2crypto (package-with-python2
1030 (strip-python2-variant python-m2crypto))))
1031 (package (inherit m2crypto)
1032 (propagated-inputs
1033 `(("python2-typing" ,python2-typing))))))
c158d476
NG
1034
1035(define-public python-pylibscrypt
1036 (package
1037 (name "python-pylibscrypt")
1038 (version "1.7.1")
1039 (source
1040 (origin
1041 (method url-fetch)
1042 (uri (pypi-uri "pylibscrypt" version))
1043 (sha256
1044 (base32
1045 "1b3rgzl6dbzs08vhv41b6y4n5189wv7lr27acxn104hs45745abs"))))
1046 (build-system python-build-system)
1047 (arguments
929d4d2f
NG
1048 `(#:phases
1049 (modify-phases %standard-phases
1050 (add-before 'build 'hard-code-path-to-libscrypt
1051 (lambda* (#:key inputs #:allow-other-keys)
1052 (let ((libscrypt (assoc-ref inputs "libscrypt")))
1053 (substitute* "pylibscrypt/pylibscrypt.py"
1054 (("find_library\\('scrypt'\\)")
1055 (string-append "'" libscrypt "/lib/libscrypt.so'")))
1056 #t))))
1057 ;; The library can use various scrypt implementations and tests all of
1058 ;; them. Since we only provide a single implementation, most tests
1059 ;; fail. Simply skip them.
1060 #:tests? #f))
1061 ;; FIXME: Using "libscrypt" is the second best choice. The best one
1062 ;; requires "hashlib.scrypt", provided by Python 3.6+ built with OpenSSL
1063 ;; 1.1+. Use that as soon as Guix provides it.
c158d476 1064 (inputs
929d4d2f 1065 `(("libscrypt" ,libscrypt)))
c158d476
NG
1066 (home-page "https://github.com/jvarho/pylibscrypt")
1067 (synopsis "Scrypt for Python")
1068 (description "There are a lot of different scrypt modules for Python, but
1069none of them have everything that I'd like, so here's one more. It uses
929d4d2f 1070@code{libscrypt}.")
c158d476 1071 (license license:isc)))
40c6e454
NG
1072
1073(define-public python-libnacl
1074 (package
1075 (name "python-libnacl")
1076 (version "1.6.1")
1077 (source
1078 (origin
1079 (method url-fetch)
1080 (uri (pypi-uri "libnacl" version))
1081 (sha256
1082 (base32
1083 "0nv7n8nfswkhl614x5mllrkvaslraa0053q11iylb337cy43vb4v"))))
1084 (build-system python-build-system)
1085 (arguments
1086 `(#:phases
1087 (modify-phases %standard-phases
1088 (add-after 'unpack 'locate-libsodium
1089 (lambda* (#:key inputs #:allow-other-keys)
1090 (substitute* "libnacl/__init__.py"
1091 (("(return ctypes.cdll.LoadLibrary\\(')libsodium.so('\\))"
1092 _ pre post)
1093 (let ((libsodium (string-append (assoc-ref inputs "libsodium")
1094 "/lib/libsodium.so")))
1095 (string-append pre libsodium post)))))))))
1096 (native-inputs
1097 `(("python-pyhamcrest" ,python-pyhamcrest)))
1098 (inputs
1099 `(("libsodium" ,libsodium)))
1100 (home-page "https://libnacl.readthedocs.org/")
1101 (synopsis "Python bindings for libsodium based on ctypes")
1102 (description "@code{libnacl} is used to gain direct access to the
1103functions exposed by @code{NaCl} library via @code{libsodium}. It has
1104been constructed to maintain extensive documentation on how to use
1105@code{NaCl} as well as being completely portable.")
1106 (license license:asl2.0)))
cb91f6ae 1107
1fa1d822
NG
1108(define-public python-scrypt
1109 (package
1110 (name "python-scrypt")
cc314e90 1111 (version "0.8.7")
1fa1d822
NG
1112 (source
1113 (origin
1114 (method url-fetch)
1115 (uri (pypi-uri "scrypt" version))
1116 (sha256
1117 (base32
cc314e90 1118 "0hjk71k3mgnl8siikm9lii9im8kv0rb7inkjzx78rnancra48xxr"))))
1fa1d822
NG
1119 (build-system python-build-system)
1120 (inputs
1121 `(("openssl" ,openssl)))
20c604c5 1122 (home-page "https://bitbucket.org/mhallin/py-scrypt")
1fa1d822
NG
1123 (synopsis "Bindings for the scrypt key derivation function library")
1124 (description "This is a set of Python bindings for the scrypt key
1125derivation function.")
1126 (license license:bsd-2)))
8afe166d
NN
1127
1128(define-public python-service-identity
1129 (package
1130 (name "python-service-identity")
c105e509 1131 (version "18.1.0")
8afe166d
NN
1132 (source
1133 (origin
1134 (method url-fetch)
1135 (uri (pypi-uri "service_identity" version))
1136 (sha256
1137 (base32
c105e509 1138 "0b9f5qiqjy8ralzgwjgkhx82h6h8sa7532psmb8mkd65md5aan08"))))
8afe166d
NN
1139 (build-system python-build-system)
1140 (propagated-inputs
1141 `(("python-attrs" ,python-attrs)
1142 ("python-pyasn1" ,python-pyasn1)
1143 ("python-pyasn1-modules" ,python-pyasn1-modules)
1144 ("python-pyopenssl" ,python-pyopenssl)))
1145 (home-page "https://service-identity.readthedocs.io/")
1146 (synopsis "Service identity verification for PyOpenSSL")
1147 (description
1148 "@code{service_identity} aspires to give you all the tools you need
1149for verifying whether a certificate is valid for the intended purposes.
1150In the simplest case, this means host name verification. However,
1151service_identity implements RFC 6125 fully and plans to add other
1152relevant RFCs too.")
1153 (license license:expat)))
1154
1155(define-public python2-service-identity
1156 (package-with-python2 python-service-identity))
0a90c789
LF
1157
1158(define-public python-hkdf
1159 (package
1160 (name "python-hkdf")
1161 (version "0.0.3")
1162 (source
1163 (origin
1164 (method url-fetch)
1165 (uri (pypi-uri "hkdf" version))
1166 (sha256
1167 (base32
1168 "1jhxk5vhxmxxjp3zj526ry521v9inzzl8jqaaf0ma65w6k332ak2"))))
1169 (build-system python-build-system)
1170 (native-inputs
1171 `(("python-nose" ,python-nose)))
1172 (home-page "https://github.com/casebeer/python-hkdf")
1173 (synopsis "HMAC-based Extract-and-Expand Key Derivation Function (HKDF)")
1174 (description "This package provides a Python implementation of the HMAC Key
1175Derivation function (HKDF) defined in RFC 5869.")
1176 (license license:bsd-2)))
fc681a18
LF
1177
1178(define-public python-spake2
1179 (package
1180 (name "python-spake2")
1181 (version "0.8")
1182 (source
1183 (origin
1184 (method url-fetch)
1185 (uri (pypi-uri "spake2" version))
1186 (sha256
1187 (base32
1188 "1x16r7lrbklvfzbacb66qv9iiih6liq1y612dqh2chgf555n2yn1"))))
1189 (build-system python-build-system)
1190 (propagated-inputs
1191 `(("python-hkdf" ,python-hkdf)))
1192 (home-page "https://github.com/warner/python-spake2")
1193 (synopsis "SPAKE2 password-authenticated key exchange in Python")
1194 (description "This package provides a Python implementation of the SPAKE2
1195Password-Authenticated Key Exchange algorithm.")
1196 (license license:expat)))
215f3db0
LF
1197
1198(define-public python-txtorcon
1199 (package
1200 (name "python-txtorcon")
1201 (version "19.0.0")
1202 (source
1203 (origin
1204 (method url-fetch)
1205 (uri (pypi-uri "txtorcon" version))
1206 (sha256
1207 (base32
1208 "0fxzhsc62bhmr730vj9pzallmw56gz6iykvl28a5agrycm0bfc9p"))))
1209 (build-system python-build-system)
1210 (arguments
1211 ;; The tests fail immediately due to a missing file. Reported upstream:
1212 ;; <https://github.com/meejah/txtorcon/issues/330>
1213 `(#:tests? #f))
1214 (propagated-inputs
1215 `(("python-automat" ,python-automat)
1216 ("python-idna" ,python-idna)
1217 ("python-incremental" ,python-incremental)
215f3db0
LF
1218 ("python-service-identity" ,python-service-identity)
1219 ("python-twisted" ,python-twisted)
1220 ("python-zope-interface" ,python-zope-interface)))
1221 (home-page "https://github.com/meejah/txtorcon")
1222 (synopsis "Twisted-based Tor controller client")
1223 (description "This package provides a Twisted-based Tor controller client,
1224with state-tracking and configuration abstractions.")
1225 (license license:expat)))
93953ec7
GLV
1226
1227(define-public python-keyutils
1228 (package
1229 (name "python-keyutils")
1230 (version "0.6")
1231 (source
1232 (origin
1233 (method url-fetch)
1234 (uri (pypi-uri "keyutils" version))
1235 (sha256
1236 (base32
1237 "0lipygpzhwzzsq2k5imb1jgkmj8y4khxdwhzadjs3bd56g6bmkx9"))))
1238 (build-system python-build-system)
1239 (native-inputs
1240 `(("python-pytest" ,python-pytest)
1241 ("python-pytest-runner" ,python-pytest-runner)))
1242 (inputs
1243 `(("keyutils" ,keyutils)))
1244 (arguments
1245 '(#:tests? #f))
1246 (home-page "https://github.com/sassoftware/python-keyutils")
1247 (synopsis "Python bindings for keyutils")
1248 (description
1249 "This is a set of python bindings for keyutils, a key management suite
1250that leverages the infrastructure provided by the Linux kernel for safely
a806b0b0 1251storing and retrieving sensitive information in your programs.")
93953ec7 1252 (license license:asl2.0)))
1f15cbc8
CL
1253
1254(define-public python-mcuboot-imgtool
1255 (package
1256 (name "python-mcuboot-imgtool")
1257 (version "1.4.0")
1258 (source
1259 (origin
1260 (method git-fetch)
1261 (uri (git-reference
1262 (url "https://github.com/JuulLabs-OSS/mcuboot")
1263 (commit (string-append "v" version))))
1264 (file-name (git-file-name name version))
1265 (sha256
1266 (base32
1267 "1m1csyvzq4jx81zg635ssy1n7sc0z539z0myh872ll3nwqx7wa0q"))))
1268 (build-system python-build-system)
1269 (arguments
1270 `(#:phases
1271 (modify-phases %standard-phases
1272 (add-after 'unpack 'fix-broken-test
1273 (lambda _
1274 (substitute* "scripts/imgtool/keys/ed25519_test.py"
1275 (("raw_sign") "sign_digest"))
1276 #t))
1277 (add-before 'build 'change-directory
1278 (lambda _
1279 (chdir "scripts")
1280 #t)))))
1281 (propagated-inputs
1282 `(("python-click" ,python-click)
1283 ("python-intelhex" ,python-intelhex)
1284 ("python-cryptography" ,python-cryptography)))
1285 (home-page "https://mcuboot.com")
1286 (synopsis "Tool to securely sign firmware images for booting by MCUboot")
1287 (description "MCUboot is a secure bootloader for 32-bit MCUs. This
1288package provides a tool to securely sign firmware images for booting by
1289MCUboot.")
1290 (license license:expat)))
83feb3d0 1291
163997c9
AT
1292(define-public python-ntlm-auth
1293 (package
1294 (name "python-ntlm-auth")
1295 (version "1.4.0")
1296 (source
1297 (origin
1298 (method url-fetch)
1299 (uri (pypi-uri "ntlm-auth" version))
1300 (sha256
1301 (base32
1302 "16mavidki4ma5ip8srqalr19gz4f5yn3cnmmgps1fmgfr24j63rm"))))
1303 (build-system python-build-system)
1304 (propagated-inputs
1305 `(("python-cryptography" ,python-cryptography)))
1306 (home-page "https://github.com/jborean93/ntlm-auth")
1307 (synopsis
1308 "Calculates NTLM Authentication codes")
1309 (description
1310 "This library handles the low-level details of NTLM authentication for
1311use in authenticating with a service that uses NTLM. It will create and parse
1312the 3 different message types in the order required and produce a base64
1313encoded value that can be attached to the HTTP header.
1314
1315The goal of this library is to offer full NTLM support including signing and
1316sealing of messages as well as supporting MIC for message integrity and the
1317ability to customise and set limits on the messages sent. Please see Features
1318and Backlog for a list of what is and is not currently supported.")
1319 (license license:expat)))
1320
4ee1ea76
EF
1321(define-public python-secretstorage
1322 (package
1323 (name "python-secretstorage")
1324 (version "3.1.2")
1325 (source
1326 (origin
1327 (method url-fetch)
1328 (uri (pypi-uri "SecretStorage" version))
1329 (sha256
1330 (base32
1331 "1xmzr0j3066s220bss4nkgqbiwb5k4kkp2rkpqlqwjb5kfc8mnhm"))))
1332 (build-system python-build-system)
1333 (arguments
1334 '(#:tests? #f)) ; Tests require a running dbus service.
1335 (propagated-inputs
1336 `(("python-cryptography" ,python-cryptography)
1337 ("python-jeepney" ,python-jeepney)))
1338 (home-page "https://github.com/mitya57/secretstorage")
1339 (synopsis "Python bindings to FreeDesktop.org Secret Service API")
1340 (description
1341 "@code{python-secretstorage} provides a way for securely storing passwords
1342and other secrets. It uses D-Bus Secret Service API that is supported by GNOME
1343Keyring (since version 2.30) and KSecretsService. SecretStorage supports most
1344of the functions provided by Secret Service, including creating and deleting
1345items and collections, editing items, locking and unlocking collections
1346(asynchronous unlocking is also supported).")
1347 (license license:bsd-3)))
1348
83feb3d0
EF
1349(define-public python-jeepney
1350 (package
1351 (name "python-jeepney")
1352 (version "0.4.2")
1353 (source
1354 (origin
1355 (method url-fetch)
1356 (uri (pypi-uri "jeepney" version))
1357 (sha256
1358 (base32
1359 "1fz9lb5fl831sijg2j0sbki698j2z6awbblas7mz3gp9jz2xi9hb"))))
1360 (build-system python-build-system)
1361 (native-inputs
1362 `(("python-testpath" ,python-testpath)
1363 ("python-tornado" ,python-tornado)
1364 ("python-pytest" ,python-pytest)))
1365 (home-page "https://gitlab.com/takluyver/jeepney")
1366 (synopsis "Low-level, pure Python DBus protocol wrapper")
1367 (description
1368 "This is a low-level, pure Python DBus protocol client. It has an
1369I/O-free core, and integration modules for different event loops.")
1370 (license license:expat)))
08310637
EF
1371
1372(define-public python-argon2-cffi
1373 (package
1374 (name "python-argon2-cffi")
9813805b 1375 (version "20.1.0")
08310637
EF
1376 (source
1377 (origin
1378 (method url-fetch)
1379 (uri (pypi-uri "argon2-cffi" version))
1380 (sha256
1381 (base32
9813805b 1382 "0zgr4mnnm0p4i99023safb0qb8cgvl202nly1rvylk2b7qnrn0nq"))
08310637
EF
1383 (modules '((guix build utils)))
1384 (snippet '(begin (delete-file-recursively "extras") #t))))
1385 (build-system python-build-system)
1386 (arguments
1387 '(#:phases
1388 (modify-phases %standard-phases
1389 (replace 'build
1390 (lambda _
1391 (setenv "ARGON2_CFFI_USE_SYSTEM" "1")
1392 (invoke "python" "setup.py" "build")))
1393 (replace 'check
1394 (lambda* (#:key inputs outputs #:allow-other-keys)
1395 (add-installed-pythonpath inputs outputs)
1396 (invoke "pytest")
1397 (invoke "python" "-m" "argon2" "--help")
1398 ;; see tox.ini
1399 (invoke "python" "-m" "argon2" "-n" "1" "-t" "1" "-m" "8" "-p" "1"))))))
1400 (propagated-inputs
1401 `(("python-cffi" ,python-cffi)
1402 ("python-six" ,python-six)))
1403 (inputs `(("argon2" ,argon2)))
1404 (native-inputs
1405 `(("python-hypothesis" ,python-hypothesis)
1406 ("python-pytest" ,python-pytest)))
1407 (home-page "https://argon2-cffi.readthedocs.io/")
1408 (synopsis "Secure Password Hashes for Python")
1409 (description
1410 "Argon2 is a secure password hashing algorithm. It is designed to have
1411both a configurable runtime as well as memory consumption. This means that you
1412can decide how long it takes to hash a password and how much memory is required.")
1413 (license license:expat)))
0a124c46
EF
1414
1415(define-public python-privy
1416 (package
1417 (name "python-privy")
1418 (version "6.0.0")
1419 (source
1420 (origin
1421 (method git-fetch)
1422 (uri (git-reference
1423 ;; Releases are untagged
1424 (url "https://github.com/ofek/privy")
1425 (commit "2838db3df239797c71bddacc48a4c49a83f35747")))
1426 (file-name (git-file-name name version))
1427 (sha256
1428 (base32
1429 "1m32dh5fqc8cy7jyf1z5fs6zvmdkbq5fi98hr609gbl7s0l0y0i9"))))
1430 (build-system python-build-system)
1431 (arguments
1432 '(#:phases
1433 (modify-phases %standard-phases
1434 (replace 'check
1435 (lambda _
1436 (invoke "python" "-m" "pytest"))))))
1437 (native-inputs
1438 `(("python-pytest" ,python-pytest)))
1439 (propagated-inputs
1440 `(("python-argon2-cffi" ,python-argon2-cffi)
1441 ("python-cryptography" ,python-cryptography)))
1442 (home-page "https://www.dropbox.com/developers")
1443 (synopsis "Library to password-protect your data")
1444 (description
1445 "Privy is a small and fast utility for password-protecting secret
1446data such as API keys, cryptocurrency wallets, or seeds for digital
1447signatures.")
1448 (license (list license:expat license:asl2.0)))) ; dual licensed