HCoop / jackhill / guix / guix.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
gnu: python-rencode: Update to 1.0.5.
[jackhill/guix/guix.git] / gnu / packages / python-crypto.scm
CommitLineData
cc6f4912
LC		 1;;; GNU Guix --- Functional package management for GNU
2;;; Copyright © 2015 Eric Dvorsak <eric@dvorsak.fr>
d3b7feb7 3;;; Copyright © 2015, 2016, 2017, 2018 Efraim Flashner <efraim@flashner.co.il>
cc6f4912
LC		 4;;; Copyright © 2015, 2016, 2017 Leo Famulari <leo@famulari.name>
5;;; Copyright © 2016, 2017 Marius Bakke <mbakke@fastmail.com>
6;;; Copyright © 2017 Ben Sturmfels <ben@sturm.com.au>
7;;; Copyright © 2016 Sou Bunnbu <iyzsong@gmail.com>
8;;; Copyright © 2015 Cyril Roelandt <tipecaml@gmail.com>
9;;; Copyright © 2014, 2017 Eric Bavier <bavier@member.fsf.org>
10;;; Copyright © 2015, 2016 David Thompson <davet@gnu.org>
811b42b2 11;;; Copyright © 2016, 2017, 2018 Tobias Geerinckx-Rice <me@tobias.gr>
4a78fd46 12;;; Copyright © 2016, 2017 Nils Gillmann <ng0@n0.is>
cc6f4912
LC		 13;;; Copyright © 2014, 2015 Mark H Weaver <mhw@netris.org>
14;;; Copyright © 2015, 2016, 2017 Ricardo Wurmus <rekado@elephly.net>
15;;; Copyright © 2016 Danny Milosavljevic <dannym+a@scratchpost.org>
16;;; Copyright © 2016, 2017 Arun Isaac <arunisaac@systemreboot.net>
17;;; Copyright © 2017 Carlo Zancanaro <carlo@zancanaro.id.au>
2f691218 18;;; Copyright © 2018 Tomáš Čech <sleep_walker@gnu.org>
cef6dc64 19;;; Copyright © 2018 Nicolas Goaziou <mail@nicolasgoaziou.fr>
e64088f0 20;;; Copyright © 2018 Vagrant Cascadian <vagrant@debian.org>
cc6f4912
LC		 21;;;
22;;; This file is part of GNU Guix.
23;;;
24;;; GNU Guix is free software; you can redistribute it and/or modify it
25;;; under the terms of the GNU General Public License as published by
26;;; the Free Software Foundation; either version 3 of the License, or (at
27;;; your option) any later version.
28;;;
29;;; GNU Guix is distributed in the hope that it will be useful, but
30;;; WITHOUT ANY WARRANTY; without even the implied warranty of
31;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
32;;; GNU General Public License for more details.
33;;;
34;;; You should have received a copy of the GNU General Public License
35;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
36
37(define-module (gnu packages python-crypto)
38 #:use-module (guix packages)
39 #:use-module (guix download)
40 #:use-module (guix git-download)
41 #:use-module (guix build-system python)
42 #:use-module (gnu packages)
ac257f12 43 #:use-module (gnu packages check)
b95c17c5 44 #:use-module (gnu packages crypto)
cc6f4912
LC		 45 #:use-module (gnu packages libffi)
46 #:use-module (gnu packages multiprecision)
47 #:use-module (gnu packages protobuf)
48 #:use-module (gnu packages python)
cb91f6ae 49 #:use-module (gnu packages python-web)
33dc54b0 50 #:use-module (gnu packages time)
cc6f4912
LC		 51 #:use-module (gnu packages tls)
52 #:use-module ((guix licenses) #:prefix license:)
53 #:use-module (srfi srfi-1))
54
cef6dc64
NG		 55(define-public python-base58
56 (package
57 (name "python-base58")
58 (version "1.0.0")
59 (source
60 (origin
61 (method url-fetch)
62 (uri (pypi-uri "base58" version))
63 (sha256
64 (base32
65 "0lgnk7ycdxwhk2bkygl30nsks56bvrdj79ix76iv965pz808pzn5"))))
66 (build-system python-build-system)
67 (native-inputs
68 `(("python-pyhamcrest" ,python-pyhamcrest)))
69 (home-page "https://github.com/keis/base58")
70 (synopsis "Base58 and Base58Check implementation")
71 (description "Base58 and Base58Check implementation compatible
72with what is used by the Bitcoin network.")
73 (license license:expat)))
74
7c16af46
MB		 75(define-public python-bcrypt
76 (package
77 (name "python-bcrypt")
78 (version "3.1.4")
79 (source
80 (origin
81 (method url-fetch)
82 (uri (pypi-uri "bcrypt" version))
83 (sha256
84 (base32
85 "13cyrnqwkhc70rs6dg65z4yrrr3dc42fhk11804fqmci9hvimvb7"))))
86 (build-system python-build-system)
87 (native-inputs
88 `(("python-pycparser" ,python-pycparser)
89 ("python-pytest" ,python-pytest)))
90 (propagated-inputs
91 `(("python-cffi" ,python-cffi)
92 ("python-six" ,python-six)))
93 (home-page "https://github.com/pyca/bcrypt/")
94 (synopsis
95 "Modern password hashing library")
96 (description
97 "Bcrypt is a Python module which provides a password hashing method based
98on the Blowfish password hashing algorithm, as described in
99@url{http://static.usenix.org/events/usenix99/provos.html,\"A Future-Adaptable
100Password Scheme\"} by Niels Provos and David Mazieres.")
101 (license license:asl2.0)))
102
103(define-public python2-bcrypt
104 (package-with-python2 python-bcrypt))
105
cc6f4912
LC		 106(define-public python-passlib
107 (package
108 (name "python-passlib")
109 (version "1.7.1")
110 (source
111 (origin
112 (method url-fetch)
113 (uri (pypi-uri "passlib" version))
114 (sha256
115 (base32
116 "1q2khqpj9rlcgdmkypjdq1kswvhjf72bq0zk2cv669cc2dj8z51x"))))
117 (build-system python-build-system)
118 (native-inputs
119 `(("python-nose" ,python-nose)))
120 (propagated-inputs
121 `(("python-py-bcrypt" ,python-py-bcrypt)))
122 (arguments
123 `(#:phases
124 (modify-phases %standard-phases
125 (add-before 'check 'set-PYTHON_EGG_CACHE
126 ;; some tests require access to "$HOME/.cython"
127 (lambda* _ (setenv "PYTHON_EGG_CACHE" "/tmp") #t)))))
128 (home-page "https://bitbucket.org/ecollins/passlib")
129 (synopsis
130 "Comprehensive password hashing framework")
131 (description
132 "Passlib is a password hashing library for Python 2 & 3, which provides
133cross-platform implementations of over 30 password hashing algorithms, as well
134as a framework for managing existing password hashes. It's designed to be
135useful for a wide range of tasks, from verifying a hash found in /etc/shadow,
136to providing full-strength password hashing for multi-user application.")
137 (license license:bsd-3)))
138
139(define-public python2-passlib
140 (package-with-python2 python-passlib))
141
142(define-public python-py-bcrypt
143 (package
144 (name "python-py-bcrypt")
145 (version "0.4")
146 (source
147 (origin
148 (method url-fetch)
149 (uri (string-append
150 "https://pypi.python.org/packages/source/p/py-bcrypt/py-bcrypt-"
151 version
152 ".tar.gz"))
153 (sha256
154 (base32
155 "0y6smdggwi5s72v6p1nn53dg6w05hna3d264cq6kas0lap73p8az"))))
156 (build-system python-build-system)
157 (home-page "https://code.google.com/p/py-bcrypt")
158 (synopsis
159 "Bcrypt password hashing and key derivation")
160 (description
161 "A python wrapper of OpenBSD's Blowfish password hashing code. This
162system hashes passwords using a version of Bruce Schneier's Blowfish block
163cipher with modifications designed to raise the cost of off-line password
164cracking and frustrate fast hardware implementation. The computation cost of
165the algorithm is parametised, so it can be increased as computers get faster.
166The intent is to make a compromise of a password database less likely to
167result in an attacker gaining knowledge of the plaintext passwords (e.g. using
168John the Ripper).")
169 ;; "sha2.c" is under BSD-3;
170 ;; "blowfish.c" and "bcrypt.c" are under BSD-4;
171 ;; the rest is under ISC.
172 (license (list license:isc license:bsd-3 license:bsd-4))))
173
174(define-public python2-py-bcrypt
175 (package-with-python2 python-py-bcrypt))
176
e64088f0
VC		 177(define-public python-pyblake2
178 (package
179 (name "python-pyblake2")
180 (version "1.1.2")
181 (source
182 (origin
183 (method url-fetch)
184 (uri (pypi-uri "pyblake2" version))
185 (sha256
186 (base32
187 "0gz9hgznv5zw4qjq43xa56y0yikimx30gffvibxzm0nv5sq7xk2w"))))
188 (build-system python-build-system)
189 (home-page "https://github.com/dchest/pyblake2")
190 (synopsis "BLAKE2 hash function for Python")
191 (description "BLAKE2 is a cryptographic hash function, which offers
192stronger security while being as fast as MD5 or SHA-1, and comes in two
193flavors: @code{BLAKE2b}, optimized for 64-bit platforms and produces digests
194of any size between 1 and 64 bytes, and @code{BLAKE2s}, optimized for 8- to
19532-bit platforms and produces digests of any size between 1 and 32 bytes.
196
197This package provides a Python interface for BLAKE2.")
198 ;; The COPYING file declares it as public domain, with the option to
199 ;; alternatively use and redistribute it under a variety of permissive
200 ;; licenses. cc0 is explicitly mentioned in setup.py and pyblake2module.c.
201 (license (list license:public-domain license:cc0))))
202
cc6f4912
LC		 203(define-public python-paramiko
204 (package
205 (name "python-paramiko")
8e84eb68 206 (version "2.4.1")
cc6f4912
LC		 207 (source
208 (origin
209 (method url-fetch)
210 (uri (pypi-uri "paramiko" version))
211 (sha256
212 (base32
8e84eb68 213 "1wx4s95i2cdh8hhi1c3jb8lzk71jifa3z9wjfsx905y7lrsngqrk"))))
cc6f4912
LC		 214 (build-system python-build-system)
215 (arguments
8e84eb68
MB		 216 `(;; FIXME: Tests require many unpackaged libraries, see dev-requirements.txt.
217 #:tests? #f))
cc6f4912 218 (propagated-inputs
2fbc38e3
LF		 219 `(("python-bcrypt" ,python-bcrypt)
220 ("python-pyasn1" ,python-pyasn1)
221 ("python-pynacl" ,python-pynacl)
cc6f4912
LC		 222 ("python-cryptography" ,python-cryptography)))
223 (home-page "http://www.paramiko.org/")
224 (synopsis "SSHv2 protocol library")
225 (description "Paramiko is a python implementation of the SSHv2 protocol,
226providing both client and server functionality. While it leverages a Python C
227extension for low level cryptography (PyCrypto), Paramiko itself is a pure
228Python interface around SSH networking concepts.")
229 (license license:lgpl2.1+)))
230
231(define-public python2-paramiko
232 (package-with-python2 python-paramiko))
233
234(define-public python-ecdsa
235 (package
236 (name "python-ecdsa")
237 (version "0.13")
238 (source
239 (origin
240 (method url-fetch)
241 (uri (string-append
242 "https://pypi.python.org/packages/source/e/ecdsa/ecdsa-"
243 version
244 ".tar.gz"))
245 (sha256
246 (base32
247 "1yj31j0asmrx4an9xvsaj2icdmzy6pw0glfpqrrkrphwdpi1xkv4"))))
248 (build-system python-build-system)
249 (inputs
250 `(("openssl" ,openssl)))
251 (home-page
252 "https://github.com/warner/python-ecdsa")
253 (synopsis
254 "ECDSA cryptographic signature library (pure python)")
255 (description
256 "This is an easy-to-use implementation of ECDSA cryptography (Elliptic
257Curve Digital Signature Algorithm), implemented purely in Python. With this
258library, you can quickly create keypairs (signing key and verifying key), sign
259messages, and verify the signatures. The keys and signatures are very short,
260making them easy to handle and incorporate into other protocols.")
261 (license license:expat)))
262
263(define-public python2-ecdsa
264 (package-with-python2 python-ecdsa))
265
266;;; Pycrypto is abandoned upstream:
267;;;
268;;; https://github.com/dlitz/pycrypto/issues/173
269;;;
270;;; TODO Remove this package from GNU Guix.
271(define-public python-pycrypto
272 (package
273 (name "python-pycrypto")
274 (version "2.6.1")
275 (source
276 (origin
277 (method url-fetch)
278 (uri (pypi-uri "pycrypto" version))
279 (patches (search-patches "python-pycrypto-CVE-2013-7459.patch"))
280 (sha256
281 (base32
282 "0g0ayql5b9mkjam8hym6zyg6bv77lbh66rv1fyvgqb17kfc1xkpj"))))
283 (build-system python-build-system)
284 (inputs
285 `(("python" ,python)
286 ("gmp" ,gmp)))
287 (arguments
288 `(#:phases
289 (modify-phases %standard-phases
290 (add-before 'build 'set-build-env
291 ;; pycrypto runs an autoconf configure script behind the scenes
292 (lambda _ (setenv "CONFIG_SHELL" (which "bash")) #t)))))
293 (home-page "http://www.pycrypto.org/")
294 (synopsis "Cryptographic modules for Python")
295 (description
296 "Pycrypto is a collection of both secure hash functions (such as SHA256
297and RIPEMD160), and various encryption algorithms (AES, DES, RSA, ElGamal,
298etc.). The package is structured to make adding new modules easy.")
299 (license license:public-domain)))
300
301(define-public python2-pycrypto
302 (let ((pycrypto (package-with-python2 python-pycrypto)))
303 (package (inherit pycrypto)
304 (inputs
305 `(("python" ,python-2)
306 ,@(alist-delete
307 "python"
308 (package-inputs pycrypto)))))))
309
310(define-public python-keyring
311 (package
312 (name "python-keyring")
313 (version "8.7")
314 (source
315 (origin
316 (method url-fetch)
317 (uri (pypi-uri "keyring" version))
318 (sha256
319 (base32
320 "0482rmi2x6p78wl2kz8qzyq21xz1sbbfwnv5x7dggar4vkwxhzfx"))))
321 (build-system python-build-system)
322 (native-inputs
323 `(("python-setuptools-scm" ,python-setuptools-scm)))
324 (propagated-inputs
325 `(("python-pycrypto" ,python-pycrypto)))
326 (arguments
327 `(#:tests? #f)) ;TODO: tests require pytest
328 (home-page "https://github.com/jaraco/keyring")
329 (synopsis "Store and access your passwords safely")
330 (description
331 "The Python keyring lib provides a easy way to access the system keyring
332service from python. It can be used in any application that needs safe
333password storage.")
334 ;; "MIT" and PSF dual license
335 (license license:x11)))
336
337(define-public python2-keyring
338 (package-with-python2 python-keyring))
339
340(define-public python-certifi
341 (package
342 (name "python-certifi")
343 (version "2017.1.23")
344 (source (origin
345 (method url-fetch)
346 (uri (pypi-uri "certifi" version))
347 (sha256
348 (base32
349 "1klrzl3hgvcf2mjk00g0k3kk1p2z27vzwnxivwar4vhjmjvpz1w1"))))
350 (build-system python-build-system)
351 (home-page "https://certifi.io/")
352 (synopsis "Python CA certificate bundle")
353 (description
354 "Certifi is a Python library that contains a CA certificate bundle, which
355is used by the Requests library to verify HTTPS requests.")
356 (license license:asl2.0)))
357
358(define-public python2-certifi
359 (package-with-python2 python-certifi))
360
361(define-public python-cryptography-vectors
362 (package
363 (name "python-cryptography-vectors")
8fe059bf 364 (version "2.3.1")
cc6f4912
LC		 365 (source
366 (origin
367 (method url-fetch)
368 (uri (pypi-uri "cryptography_vectors" version))
369 (sha256
370 (base32
8fe059bf 371 "0ijdck30p7jv8a0zwv8b7d30ciqrmmps62lm63l4k776vihrnkdz"))))
cc6f4912
LC		 372 (build-system python-build-system)
373 (home-page "https://github.com/pyca/cryptography")
374 (synopsis "Test vectors for the cryptography package")
375 (description
376 "This package contains test vectors for the cryptography package.")
377 ;; Distributed under either BSD-3 or ASL2.0
378 (license (list license:bsd-3 license:asl2.0))))
379
380(define-public python2-cryptography-vectors
381 (package-with-python2 python-cryptography-vectors))
382
383(define-public python-cryptography
384 (package
385 (name "python-cryptography")
8fe059bf 386 (version "2.3.1")
cc6f4912
LC		 387 (source
388 (origin
389 (method url-fetch)
390 (uri (pypi-uri "cryptography" version))
391 (sha256
392 (base32
8fe059bf 393 "1mnzf168vlxirq7fw9dm9zbvma7z8phc9cl5bffw5916m0y1244d"))))
cc6f4912
LC		 394 (build-system python-build-system)
395 (inputs
396 `(("openssl" ,openssl)))
397 (propagated-inputs
398 `(("python-asn1crypto" ,python-asn1crypto)
399 ("python-cffi" ,python-cffi)
400 ("python-six" ,python-six)
401 ("python-idna" ,python-idna)
402 ("python-iso8601" ,python-iso8601)))
403 (native-inputs
404 `(("python-cryptography-vectors" ,python-cryptography-vectors)
405 ("python-hypothesis" ,python-hypothesis)
406 ("python-pretend" ,python-pretend)
407 ("python-pytz" ,python-pytz)
2dd12924 408 ("python-pytest" ,python-pytest)))
cc6f4912
LC		 409 (home-page "https://github.com/pyca/cryptography")
410 (synopsis "Cryptographic recipes and primitives for Python")
411 (description
412 "cryptography is a package which provides cryptographic recipes and
413primitives to Python developers. It aims to be the “cryptographic standard
414library” for Python. The package includes both high level recipes, and low
415level interfaces to common cryptographic algorithms such as symmetric ciphers,
416message digests and key derivation functions.")
417 ;; Distributed under either BSD-3 or ASL2.0
418 (license (list license:bsd-3 license:asl2.0))
419 (properties `((python2-variant . ,(delay python2-cryptography))))))
420
421(define-public python2-cryptography
422 (let ((crypto (package-with-python2
423 (strip-python2-variant python-cryptography))))
424 (package (inherit crypto)
425 (propagated-inputs
426 `(("python2-ipaddress" ,python2-ipaddress)
427 ("python2-backport-ssl-match-hostname"
428 ,python2-backport-ssl-match-hostname)
429 ("python2-enum34" ,python2-enum34)
430 ,@(package-propagated-inputs crypto))))))
431
432(define-public python-pyopenssl
433 (package
434 (name "python-pyopenssl")
e97264de 435 (version "18.0.0")
cc6f4912
LC		 436 (source
437 (origin
438 (method url-fetch)
439 (uri (pypi-uri "pyOpenSSL" version))
440 (sha256
441 (base32
e97264de 442 "1055rb456nvrjcij3sqj6c6l3kmh5cqqay0nsmx3pxq07d1g3234"))))
cc6f4912
LC		 443 (build-system python-build-system)
444 (arguments
445 '(#:phases
446 (modify-phases %standard-phases
447 (delete 'check)
448 (add-after 'install 'check
449 (lambda* (#:key inputs outputs #:allow-other-keys)
450 (add-installed-pythonpath inputs outputs)
451 (zero? (system* "py.test" "-v" "-k"
452 (string-append
453 ;; This test tries to look up certificates from
454 ;; the compiled-in default path in OpenSSL, which
455 ;; does not exist in the build environment.
456 "not test_fallback_default_verify_paths "
457 ;; This test attempts to make a connection to
458 ;; an external web service.
459 "and not test_set_default_verify_paths"))))))))
460 (propagated-inputs
461 `(("python-cryptography" ,python-cryptography)
462 ("python-six" ,python-six)))
463 (inputs
464 `(("openssl" ,openssl)))
465 (native-inputs
466 `(("python-flaky" ,python-flaky)
467 ("python-pretend" ,python-pretend)
2dd12924 468 ("python-pytest" ,python-pytest)))
cc6f4912
LC		 469 (home-page "https://github.com/pyca/pyopenssl")
470 (synopsis "Python wrapper module around the OpenSSL library")
471 (description
472 "PyOpenSSL is a high-level wrapper around a subset of the OpenSSL
473library.")
474 (license license:asl2.0)))
475
476(define-public python2-pyopenssl
477 (package-with-python2 python-pyopenssl))
478
579b4362
DM		 479(define-public python-ed25519
480 (package
481 (name "python-ed25519")
482 (version "1.4")
483 (source
484 (origin
485 (method url-fetch)
486 (uri (pypi-uri "ed25519" version))
487 (sha256
488 (base32
489 "0ahx1nkxa0xis3cw0h5c4fpgv8mq4znkq7kajly33lc3317bk499"))))
490 (build-system python-build-system)
491 (home-page "https://github.com/warner/python-ed25519")
492 (synopsis "Ed25519 public-key signatures")
493 (description "Ed25519 public-key signatures")
494 (license license:expat)))
495
496(define-public python2-ed25519
497 (package-with-python2 python-ed25519))
498
cc6f4912
LC		 499(define-public python-axolotl-curve25519
500 (package
501 (name "python-axolotl-curve25519")
502 (version "0.1")
503 (source
504 (origin
505 (method git-fetch)
506 (uri (git-reference
507 (url "https://github.com/tgalal/python-axolotl-curve25519")
508 (commit "e4a9c4de0eae27223200579c58d1f8f6d20637e2")))
509 (file-name (string-append name "-" version "-checkout"))
510 (sha256
511 (base32
512 "0agap5q0hmvf6cwzjqc05kw53pjgf6942pcivpazksmg1vk400ra"))))
513 (build-system python-build-system)
514 (arguments
515 `(;; Prevent creation of the egg. This works around
516 ;; https://debbugs.gnu.org/cgi/bugreport.cgi?bug=20765
517 #:configure-flags '("--root=/")))
518 (home-page "https://github.com/tgalal/python-axolotl-curve25519")
519 (synopsis "Python wrapper for curve25519 library")
520 (description "This is a python wrapper for the curve25519 library
521with ed25519 signatures. The C code was pulled from
522libaxolotl-android. At the moment this wrapper is meant for use by
523python-axolotl.")
524 (license (list license:gpl3 ; Most files
525 license:bsd-3)))) ; curve/curve25519-donna.c
526
527(define-public python2-axolotl-curve25519
528 (package-with-python2 python-axolotl-curve25519))
529
530(define-public python-axolotl
531 (package
532 (name "python-axolotl")
51f887f3 533 (version "0.1.39")
cc6f4912
LC		 534 (source
535 (origin
536 (method url-fetch)
537 (uri (string-append
538 "https://github.com/tgalal/python-axolotl/archive/"
539 version ".tar.gz"))
540 (file-name (string-append name "-" version ".tar.gz"))
51f887f3 541 (patches (search-patches "python-axolotl-AES-fix.patch"))
cc6f4912 542 (sha256
51f887f3 543 (base32 "0badsgkgz0ir3hqynxzsfjgacppi874syvvmgccc6j164053x6zm"))))
cc6f4912
LC		 544 (build-system python-build-system)
545 (arguments
546 `(#:phases
547 (modify-phases %standard-phases
548 ;; Don't install tests
549 (add-before 'install 'remove-tests
550 (lambda _
551 (for-each delete-file-recursively
552 '("axolotl/tests" "build/lib/axolotl/tests"))
553 #t)))))
554 (propagated-inputs
555 `(("python-axolotl-curve25519" ,python-axolotl-curve25519)
556 ("python-dateutil" ,python-dateutil)
557 ("python-protobuf" ,python-protobuf)
558 ("python-pycrypto" ,python-pycrypto)))
559 (home-page "https://github.com/tgalal/python-axolotl")
560 (synopsis "Python port of libaxolotl-android")
561 (description "This is a python port of libaxolotl-android. This
562is a ratcheting forward secrecy protocol that works in synchronous and
563asynchronous messaging environments.")
564 (license license:gpl3)))
565
566(define-public python2-axolotl
567 (package-with-python2 python-axolotl))
568
569;; SlowAES isn't compatible with Python 3.
570(define-public python2-slowaes
571 (package
572 (name "python2-slowaes")
573 (version "0.1a1")
574 (source
575 (origin
576 (method url-fetch)
577 (uri (pypi-uri "slowaes" version))
578 (sha256
579 (base32
580 "02dzajm83a7lqgxf6r3hgj64wfmcxz8gs4nvgxpvj5n19kjqlrc3"))))
581 (build-system python-build-system)
582 (arguments `(#:python ,python-2))
583 (home-page "http://code.google.com/p/slowaes/")
584 (synopsis "Implementation of AES in Python")
585 (description "This package contains an implementation of AES in Python.
586This implementation is slow (hence the project name) but still useful when
587faster ones are not available.")
588 (license license:asl2.0)))
589
590(define-public python-pyaes
591 (package
592 (name "python-pyaes")
6de86fd5 593 (version "1.6.1")
cc6f4912
LC		 594 (source
595 (origin
596 (method url-fetch)
597 (uri (pypi-uri "pyaes" version))
598 (sha256
599 (base32
6de86fd5 600 "13vdaff15k0jyfcss4b4xvfgm8xyv0nrbyw5n1qc7lrqbi0b3h82"))))
cc6f4912
LC		 601 (build-system python-build-system)
602 (home-page "https://github.com/ricmoo/pyaes")
603 (synopsis "Implementation of AES in Python")
604 (description "This package contains a pure-Python implementation of the
605AES block cipher algorithm and the common modes of operation (CBC, CFB, CTR,
606ECB and OFB).")
607 (license license:expat)))
608
609(define-public python2-pyaes
610 (package-with-python2 python-pyaes))
b95c17c5
LC		 611
612(define-public python-asn1crypto
613 (package
614 (name "python-asn1crypto")
19f2a526 615 (version "0.24.0")
b95c17c5
LC		 616 (source
617 (origin
d3b7feb7
EF		 618 (method git-fetch)
619 (uri (git-reference
620 (url "https://github.com/wbond/asn1crypto.git")
621 (commit version)))
622 (file-name (git-file-name name version))
b95c17c5
LC		 623 (sha256
624 (base32
19f2a526 625 "10lai2cs5mnz3gpaffbw1m7b885ls8328q5wxm35vfmcip1f0xmb"))))
b95c17c5
LC		 626 (build-system python-build-system)
627 (home-page "https://github.com/wbond/asn1crypto")
628 (synopsis "ASN.1 parser and serializer in Python")
629 (description "asn1crypto is an ASN.1 parser and serializer with definitions
630for private keys, public keys, certificates, CRL, OCSP, CMS, PKCS#3, PKCS#7,
631PKCS#8, PKCS#12, PKCS#5, X.509 and TSP.")
632 (license license:expat)))
633
634(define-public python2-asn1crypto
635 (package-with-python2 python-asn1crypto))
636
637(define-public python-pynacl
638 (package
639 (name "python-pynacl")
3a844a98 640 (version "1.2.1")
b95c17c5
LC		 641 (source
642 (origin
643 (method url-fetch)
644 (uri (pypi-uri "PyNaCl" version))
645 (modules '((guix build utils)))
3a844a98 646 ;; Remove bundled libsodium.
6cbee49d
MW		 647 (snippet '(begin (delete-file-recursively "src/libsodium")
648 #t))
b95c17c5
LC		 649 (sha256
650 (base32
3a844a98 651 "1ada3qr83cliap6dk897vnvjkynij1kjqbwizdbgarazlyh8zlz0"))))
b95c17c5
LC		 652 (build-system python-build-system)
653 (arguments
654 `(#:phases
655 (modify-phases %standard-phases
656 (add-before 'build 'use-system-sodium
657 (lambda _
658 (setenv "SODIUM_INSTALL" "system")
659 #t)))))
660 (native-inputs
6969ad0e
LF		 661 `(("python-hypothesis" ,python-hypothesis)
662 ("python-pytest" ,python-pytest)))
b95c17c5
LC		 663 (propagated-inputs
664 `(("python-cffi" ,python-cffi)
665 ("python-six" ,python-six)
666 ("libsodium" ,libsodium)))
667 (home-page "https://github.com/pyca/pynacl/")
668 (synopsis "Python bindings to libsodium")
669 (description
670 "PyNaCl is a Python binding to libsodium, which is a fork of the
671Networking and Cryptography library. These libraries have a stated goal
672of improving usability, security and speed.")
673 (license license:asl2.0)))
674
acc6e695
JL		 675(define-public python2-pynacl
676 (package-with-python2 python-pynacl))
677
b95c17c5
LC		 678(define-public python2-pgpdump
679 (package
680 (name "python2-pgpdump")
681 (version "1.5")
682 (source
683 (origin
684 (method url-fetch)
685 (uri (pypi-uri "pgpdump" version))
686 (sha256
687 (base32
688 "0s4nh8h7qsdj2yf29bspjs1zvxd4lcd11r6g11dp7fppgf2h0iqw"))))
689 (build-system python-build-system)
690
691 ;; Currently fails to build with Python 3.
692 (arguments `(#:python ,python-2))
693
694 (home-page "https://github.com/toofishes/python-pgpdump")
695 (synopsis "Python library for parsing PGP packets")
696 (description
697 "Python-pgpdump is an OpenPGP packet parser based on
698@uref{http://www.mew.org/~kazu/proj/pgpdump/, pgpdump}. It notably supports:
699
700@itemize
701@item signature packets;
702@item public key packets;
703@item secret key packets;
704@item trust, user ID, and user attribute packets;
705@item ASCII-armor decoding and CRC check.
706@end itemize\n")
707 (license license:bsd-3)))
708
709(define-public python2-roca-detect
710 (package
711 (name "python2-roca-detect")
712 (version "1.0.8")
713 (source
714 (origin
715 (method url-fetch)
716 (uri (pypi-uri "roca-detect" version))
717 (sha256
718 (base32
719 "1di4akyw2lf5r8zfwvyhkilz8jv8g4b66rgaqwfabmjwma6gnw27"))))
720 (build-system python-build-system)
721 (native-inputs
722 ;; TODO: apk_parse_ph4, pyjks
723 `(("python2-dateutil" ,python2-dateutil)
724 ("python2-six" ,python2-six)
725 ("python2-cryptography" ,python2-cryptography)
726 ("python2-future" ,python2-future)
727 ("python2-coloredlogs" ,python2-coloredlogs)
728 ("python2-pgpdump" ,python2-pgpdump)))
729 (arguments
730 `(;; Basic testing routine is quite simple and works with Py3
731 ;; but the rest of the code that processes the different
732 ;; key formats and extracts the modulus for inspection is
733 ;; not yet fully py3 ready.
734 #:python ,python-2))
735 (home-page "https://github.com/crocs-muni/roca")
736 (synopsis "ROCA detection tool")
737 (description
738 "This tool is related to the paper entitled @i{Return of the
739Coppersmith’s Attack: Practical Factorization of Widely Used RSA Moduli}. It
740enables you to test public RSA keys for a presence of the described
741vulnerability. Currently the tool supports the following key formats: X.509
742Certificate (DER encoded, PEM encoded), RSA PEM (encoded private key, public
743key), SSH public key, ASC-encoded OpenPGP key, APK Android application, LDIFF
744file, and more.")
745 (license license:gpl3)))
d0d5f726
DM		 746
747(define-public python-ecpy
748 (package
749 (name "python-ecpy")
750 (version "0.8.2")
751 (source
752 (origin
753 (method url-fetch)
754 (uri (pypi-uri "ECPy" version))
755 (sha256
756 (base32
757 "090fqnj8z0xm44jrfpll7j45r68m6kp7mjr7yxzg93j42h3sj285"))))
758 (build-system python-build-system)
759 (propagated-inputs
760 `(("python-future" ,python-future)))
761 (home-page "https://github.com/ubinity/ECPy")
762 (synopsis "Pure Python Elliptic Curve Library")
763 (description "This package provides a Elliptic Curve Library in pure
764Python.")
765 (license license:asl2.0)))
766
767(define-public python2-ecpy
768 (package-with-python2 python-ecpy))
c1927129
LF		 769
770(define-public python-josepy
771 (package
772 (name "python-josepy")
205044b9 773 (version "1.1.0")
c1927129
LF		 774 (source (origin
775 (method url-fetch)
776 (uri (pypi-uri "josepy" version))
777 (sha256
778 (base32
205044b9 779 "11khz8malzrv375b27jjkv66z6z6khdx1v5mkkr4vq16gp3n4p7v"))))
c1927129
LF		 780 (build-system python-build-system)
781 (arguments
205044b9 782 ;; The tests require flake8 >= 3.5, which is not yet packaged.
c1927129
LF		 783 '(#:tests? #f))
784 (propagated-inputs
785 `(("python-cryptography" ,python-cryptography)
786 ("python-pyopenssl" ,python-pyopenssl)
787 ("python-six" ,python-six)))
205044b9 788;; TODO Enable when we have flake8 >= 3.5.
c1927129
LF		 789; (native-inputs
790; `(("python-coverage" ,python-coverage)
791; ("python-flake8" ,python-flake8)
792; ("python-isort" ,python-isort)
793; ("python-mock" ,python-mock)
205044b9 794; ("python-pytest" ,python-pytest)
c1927129
LF		 795; ("python-pytest-cov" ,python-pytest-cov)
796; ("python-pytest-cache" ,python-pytest-cache)
797; ("python-pytest-flake8" ,python-pytest-flake8)))
798 (home-page "https://github.com/certbot/josepy")
799 (synopsis "JOSE protocol implementation in Python")
800 (description "This package provides a Python implementation of the JOSE
801protocol (Javascript Object Signing and Encryption).")
802 (license license:asl2.0)))
803
804(define-public python2-josepy
805 (package-with-python2 python-josepy))
d32456d5
OP		 806
807(define-public python-pycryptodome
808 (package
809 (name "python-pycryptodome")
47772a4e 810 (version "3.5.1")
d32456d5
OP		 811 (source
812 (origin
813 (method url-fetch)
814 (uri (pypi-uri "pycryptodome" version))
815 (sha256
816 (base32
47772a4e 817 "15mc1h5ij1b6hcqvb048kb4k0ip64n2ky0zz0rml2s78ylv7g5dp"))))
d32456d5
OP		 818 (build-system python-build-system)
819 (home-page "https://www.pycryptodome.org")
820 (synopsis "Cryptographic library for Python")
821 (description "This package provides a cryptographic library for Python.
822
823It brings the following enhancements with respect to the last official version
824of PyCrypto:
825
826@itemize
827@item Authenticated encryption modes (GCM, CCM, EAX, SIV, OCB)
828@item Accelerated AES on Intel platforms via AES-NI
829@item First class support for PyPy
830@item Elliptic curves cryptography (NIST P-256 curve only)
831@item Better and more compact API (nonce and iv attributes for ciphers,
832automatic generation of random nonces and IVs, simplified CTR cipher mode, and
833more)
834@item SHA-3 (including SHAKE XOFs) and BLAKE2 hash algorithms
835@item Salsa20 and ChaCha20 stream ciphers
836@item scrypt and HKDF
837@item Deterministic (EC)DSA
838@item Password-protected PKCS#8 key containers
839@item Shamir’s Secret Sharing scheme
840@item Random numbers get sourced directly from the OS (and not from a CSPRNG
841in userspace)
842@item Cleaner RSA and DSA key generation (largely based on FIPS 186-4)
843@item Major clean ups and simplification of the code base
844@end itemize\n")
845 (license license:bsd-2)))
846
847(define-public python2-pycryptodome
848 (package-with-python2 python-pycryptodome))
2f691218
 849
850(define-public python-m2crypto
851 (package
852 (name "python-m2crypto")
853 (version "0.29.0")
854 (source
855 (origin
856 (method url-fetch)
857 (uri (pypi-uri "M2Crypto" version))
858 (sha256
859 (base32 "1h16gpilrnlzc0iyj1mnd1iqh8wchzjsxjqw9n344glimg2s5zm0"))))
860 (build-system python-build-system)
861 (inputs `(("openssl" ,openssl)))
862 (propagated-inputs `(("python-typing" ,python-typing)))
863 (home-page "https://gitlab.com/m2crypto/m2crypto")
864 (synopsis "Python crypto and TLS toolkit")
865 (description "@code{M2Crypto} is a complete Python wrapper for OpenSSL
866featuring RSA, DSA, DH, EC, HMACs, message digests, symmetric ciphers
867(including AES); TLS functionality to implement clients and servers; HTTPS
868extensions to Python's httplib, urllib, and xmlrpclib; unforgeable HMAC'ing
869AuthCookies for web session management; FTP/TLS client and server; S/MIME;
870M2Crypto can also be used to provide TLS for Twisted. Smartcards supported
871through the Engine interface.")
872 (license license:expat)))
873
874(define-public python2-m2crypto
875 (package-with-python2 python-m2crypto))
c158d476
NG		 876
877(define-public python-pylibscrypt
878 (package
879 (name "python-pylibscrypt")
880 (version "1.7.1")
881 (source
882 (origin
883 (method url-fetch)
884 (uri (pypi-uri "pylibscrypt" version))
885 (sha256
886 (base32
887 "1b3rgzl6dbzs08vhv41b6y4n5189wv7lr27acxn104hs45745abs"))))
888 (build-system python-build-system)
889 (arguments
929d4d2f
NG		 890 `(#:phases
891 (modify-phases %standard-phases
892 (add-before 'build 'hard-code-path-to-libscrypt
893 (lambda* (#:key inputs #:allow-other-keys)
894 (let ((libscrypt (assoc-ref inputs "libscrypt")))
895 (substitute* "pylibscrypt/pylibscrypt.py"
896 (("find_library\\('scrypt'\\)")
897 (string-append "'" libscrypt "/lib/libscrypt.so'")))
898 #t))))
899 ;; The library can use various scrypt implementations and tests all of
900 ;; them. Since we only provide a single implementation, most tests
901 ;; fail. Simply skip them.
902 #:tests? #f))
903 ;; FIXME: Using "libscrypt" is the second best choice. The best one
904 ;; requires "hashlib.scrypt", provided by Python 3.6+ built with OpenSSL
905 ;; 1.1+. Use that as soon as Guix provides it.
c158d476 906 (inputs
929d4d2f 907 `(("libscrypt" ,libscrypt)))
c158d476
NG		 908 (home-page "https://github.com/jvarho/pylibscrypt")
909 (synopsis "Scrypt for Python")
910 (description "There are a lot of different scrypt modules for Python, but
911none of them have everything that I'd like, so here's one more. It uses
929d4d2f 912@code{libscrypt}.")
c158d476 913 (license license:isc)))
40c6e454
NG		 914
915(define-public python-libnacl
916 (package
917 (name "python-libnacl")
918 (version "1.6.1")
919 (source
920 (origin
921 (method url-fetch)
922 (uri (pypi-uri "libnacl" version))
923 (sha256
924 (base32
925 "0nv7n8nfswkhl614x5mllrkvaslraa0053q11iylb337cy43vb4v"))))
926 (build-system python-build-system)
927 (arguments
928 `(#:phases
929 (modify-phases %standard-phases
930 (add-after 'unpack 'locate-libsodium
931 (lambda* (#:key inputs #:allow-other-keys)
932 (substitute* "libnacl/__init__.py"
933 (("(return ctypes.cdll.LoadLibrary\\(')libsodium.so('\\))"
934 _ pre post)
935 (let ((libsodium (string-append (assoc-ref inputs "libsodium")
936 "/lib/libsodium.so")))
937 (string-append pre libsodium post)))))))))
938 (native-inputs
939 `(("python-pyhamcrest" ,python-pyhamcrest)))
940 (inputs
941 `(("libsodium" ,libsodium)))
942 (home-page "https://libnacl.readthedocs.org/")
943 (synopsis "Python bindings for libsodium based on ctypes")
944 (description "@code{libnacl} is used to gain direct access to the
945functions exposed by @code{NaCl} library via @code{libsodium}. It has
946been constructed to maintain extensive documentation on how to use
947@code{NaCl} as well as being completely portable.")
948 (license license:asl2.0)))
cb91f6ae 949
1fa1d822
NG		 950(define-public python-scrypt
951 (package
952 (name "python-scrypt")
953 (version "0.8.6")
954 (source
955 (origin
956 (method url-fetch)
957 (uri (pypi-uri "scrypt" version))
958 (sha256
959 (base32
960 "0b9nw10hfdl0jflm3b62q485ssc3f3f33lpg4yy407gs8wnrn8zq"))))
961 (build-system python-build-system)
962 (inputs
963 `(("openssl" ,openssl)))
964 (home-page "http://bitbucket.org/mhallin/py-scrypt")
965 (synopsis "Bindings for the scrypt key derivation function library")
966 (description "This is a set of Python bindings for the scrypt key
967derivation function.")
968 (license license:bsd-2)))
jackhill's copy of GNU Guix: https://guix.gnu.org/