autopep8 on hashutil to make it more readable

2025-03-10 14:34:05 +00:00 · 2019-05-24 15:10:18 +02:00 · 2019-05-24 15:10:18 +02:00 · 96ba55dd5c
commit 96ba55dd5c
parent 44b268fee6
1 changed files with 67 additions and 12 deletions
--- a/src/allmydata/util/hashutil.py
+++ b/src/allmydata/util/hashutil.py
@ -1,4 +1,3 @@
-from pycryptopp.hash.sha256 import SHA256
 import os
 import hashlib
 from allmydata.util.netstring import netstring
@ -12,40 +11,44 @@ from allmydata.util.netstring import netstring
 # randomly-generated secrets such as the lease secret, and symmetric encryption
 # keys.  In the near future we will add DSA private keys, and salts of various
 # kinds.
-CRYPTO_VAL_SIZE=32
+CRYPTO_VAL_SIZE = 32
+

 class _SHA256d_Hasher(object):
    # use SHA-256d, as defined by Ferguson and Schneier: hash the output
    # again to prevent length-extension attacks
    def __init__(self, truncate_to=None):
-        self.h = SHA256()
+        self.h = hashlib.sha256()
        self.truncate_to = truncate_to
        self._digest = None
+
    def update(self, data):
-        assert isinstance(data, str) # no unicode
+        assert isinstance(data, str)  # no unicode
        self.h.update(data)
+
    def digest(self):
        if self._digest is None:
            h1 = self.h.digest()
            del self.h
-            h2 = SHA256(h1).digest()
+            h2 = hashlib.sha256(h1).digest()
            if self.truncate_to:
                h2 = h2[:self.truncate_to]
            self._digest = h2
        return self._digest


-
 def tagged_hasher(tag, truncate_to=None):
    hasher = _SHA256d_Hasher(truncate_to)
    hasher.update(netstring(tag))
    return hasher

+
 def tagged_hash(tag, val, truncate_to=None):
    hasher = tagged_hasher(tag, truncate_to)
    hasher.update(val)
    return hasher.digest()

+
 def tagged_pair_hash(tag, val1, val2, truncate_to=None):
    s = _SHA256d_Hasher(truncate_to)
    s.update(netstring(tag))
@ -53,7 +56,8 @@ def tagged_pair_hash(tag, val1, val2, truncate_to=None):
    s.update(netstring(val2))
    return s.digest()

-## specific hash tags that we use
+# specific hash tags that we use
+

 # immutable
 STORAGE_INDEX_TAG = "allmydata_immutable_key_to_storage_index_v1"
@ -85,6 +89,7 @@ MUTABLE_STORAGEINDEX_TAG = "allmydata_mutable_readkey_to_storage_index_v1"
 DIRNODE_CHILD_WRITECAP_TAG = "allmydata_mutable_writekey_and_salt_to_dirnode_child_capkey_v1"
 DIRNODE_CHILD_SALT_TAG = "allmydata_dirnode_child_rwcap_to_salt_v1"

+
 def storage_index_hash(key):
    # storage index is truncated to 128 bits (16 bytes). We're only hashing a
    # 16-byte value to get it, so there's no point in using a larger value.  We
@ -93,115 +98,165 @@ def storage_index_hash(key):
    # files. Mutable files use ssk_storage_index_hash().
    return tagged_hash(STORAGE_INDEX_TAG, key, 16)

+
 def block_hash(data):
    return tagged_hash(BLOCK_TAG, data)
+
+
 def block_hasher():
    return tagged_hasher(BLOCK_TAG)

+
 def uri_extension_hash(data):
    return tagged_hash(UEB_TAG, data)
+
+
 def uri_extension_hasher():
    return tagged_hasher(UEB_TAG)

+
 def plaintext_hash(data):
    return tagged_hash(PLAINTEXT_TAG, data)
+
+
 def plaintext_hasher():
    return tagged_hasher(PLAINTEXT_TAG)

+
 def crypttext_hash(data):
    return tagged_hash(CIPHERTEXT_TAG, data)
+
+
 def crypttext_hasher():
    return tagged_hasher(CIPHERTEXT_TAG)

+
 def crypttext_segment_hash(data):
    return tagged_hash(CIPHERTEXT_SEGMENT_TAG, data)
+
+
 def crypttext_segment_hasher():
    return tagged_hasher(CIPHERTEXT_SEGMENT_TAG)

+
 def plaintext_segment_hash(data):
    return tagged_hash(PLAINTEXT_SEGMENT_TAG, data)
+
+
 def plaintext_segment_hasher():
    return tagged_hasher(PLAINTEXT_SEGMENT_TAG)

+
 KEYLEN = 16
 IVLEN = 16

+
 def convergence_hash(k, n, segsize, data, convergence):
    h = convergence_hasher(k, n, segsize, convergence)
    h.update(data)
    return h.digest()
+
+
 def convergence_hasher(k, n, segsize, convergence):
    assert isinstance(convergence, str)
    param_tag = netstring("%d,%d,%d" % (k, n, segsize))
    tag = CONVERGENT_ENCRYPTION_TAG + netstring(convergence) + param_tag
    return tagged_hasher(tag, KEYLEN)

+
 def random_key():
    return os.urandom(KEYLEN)

+
 def my_renewal_secret_hash(my_secret):
    return tagged_hash(my_secret, CLIENT_RENEWAL_TAG)
+
+
 def my_cancel_secret_hash(my_secret):
    return tagged_hash(my_secret, CLIENT_CANCEL_TAG)

+
 def file_renewal_secret_hash(client_renewal_secret, storage_index):
    return tagged_pair_hash(FILE_RENEWAL_TAG,
                            client_renewal_secret, storage_index)

+
 def file_cancel_secret_hash(client_cancel_secret, storage_index):
    return tagged_pair_hash(FILE_CANCEL_TAG,
                            client_cancel_secret, storage_index)

+
 def bucket_renewal_secret_hash(file_renewal_secret, peerid):
-    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid) # binary!
+    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid)  # binary!
    return tagged_pair_hash(BUCKET_RENEWAL_TAG, file_renewal_secret, peerid)

+
 def bucket_cancel_secret_hash(file_cancel_secret, peerid):
-    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid) # binary!
+    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid)  # binary!
    return tagged_pair_hash(BUCKET_CANCEL_TAG, file_cancel_secret, peerid)


 def _xor(a, b):
    return "".join([chr(ord(c) ^ ord(b)) for c in a])

+
 def hmac(tag, data):
    ikey = _xor(tag, "\x36")
    okey = _xor(tag, "\x5c")
-    h1 = SHA256(ikey + data).digest()
-    h2 = SHA256(okey + h1).digest()
+    h1 = hashlib.sha256(ikey + data).digest()
+    h2 = hashlib.sha256(okey + h1).digest()
    return h2

+
 def mutable_rwcap_key_hash(iv, writekey):
    return tagged_pair_hash(DIRNODE_CHILD_WRITECAP_TAG, iv, writekey, KEYLEN)
+
+
 def mutable_rwcap_salt_hash(writekey):
    return tagged_hash(DIRNODE_CHILD_SALT_TAG, writekey, IVLEN)

+
 def ssk_writekey_hash(privkey):
    return tagged_hash(MUTABLE_WRITEKEY_TAG, privkey, KEYLEN)
+
+
 def ssk_write_enabler_master_hash(writekey):
    return tagged_hash(MUTABLE_WRITE_ENABLER_MASTER_TAG, writekey)
+
+
 def ssk_write_enabler_hash(writekey, peerid):
-    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid) # binary!
+    assert len(peerid) == 20, "%s: %r" % (len(peerid), peerid)  # binary!
    wem = ssk_write_enabler_master_hash(writekey)
    return tagged_pair_hash(MUTABLE_WRITE_ENABLER_TAG, wem, peerid)

+
 def ssk_pubkey_fingerprint_hash(pubkey):
    return tagged_hash(MUTABLE_PUBKEY_TAG, pubkey)

+
 def ssk_readkey_hash(writekey):
    return tagged_hash(MUTABLE_READKEY_TAG, writekey, KEYLEN)
+
+
 def ssk_readkey_data_hash(IV, readkey):
    return tagged_pair_hash(MUTABLE_DATAKEY_TAG, IV, readkey, KEYLEN)
+
+
 def ssk_storage_index_hash(readkey):
    return tagged_hash(MUTABLE_STORAGEINDEX_TAG, readkey, KEYLEN)

+
 def timing_safe_compare(a, b):
    n = os.urandom(32)
    return bool(tagged_hash(n, a) == tagged_hash(n, b))

+
 BACKUPDB_DIRHASH_TAG = "allmydata_backupdb_dirhash_v1"
+
+
 def backupdb_dirhash(contents):
    return tagged_hash(BACKUPDB_DIRHASH_TAG, contents)

+
 def permute_server_hash(peer_selection_index, server_permutation_seed):
    return hashlib.sha1(peer_selection_index + server_permutation_seed).digest()