Начало Каталог Помощ
Регистрация Вход
Shared
/
pkcs11
2
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
Клон: master
Клонове Маркери
pkcs11
/
pykcs_lib.py

pykcs_lib.py 2.0 KB
Постоянна връзка История Директен файл

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. '''Created Feb 24, 2021 Levi'''
    2. 

  2. import os
    3. 

  3. import ssl
    4. 

  4. import urllib.request
    5. 

  5. import tempfile
    6. 

  6. import platform
    7. 

  7. 

  8. import keyring
    9. 

  9. from keyring import backends
    10. 

  10. import PyKCS11
    11. 

  11. import asn1crypto.pem
    12. 

  12. import binascii
    13. 

  13. from PyKCS11.LowLevel import (CKF_SERIAL_SESSION, CKF_RW_SESSION,
    14. 

  14.                               CKO_PRIVATE_KEY, CKA_ID,
    15. 

  15.                               CKA_CLASS, CKM_SHA1_RSA_PKCS,
    16. 

  16.                               CKO_PUBLIC_KEY)
    17. 

  17. 

  18. 

  19. if platform.system() == 'Linux':
    20. 

  20.     keyring.backend._load_plugins()
    21. 

  21.     keyring.set_keyring(backends.SecretService.Keyring())
    22. 

  22. 

  23. lib = PyKCS11.PyKCS11Lib()
    24. 

  24. lib.load(os.getenv('PKCS11_MODULE'))
    25. 

  25. token_present = True
    26. 

  26. slot = lib.getSlotList(tokenPresent=True)[0]
    27. 

  27. slots = lib.getSlotList(token_present)
    28. 

  28. print(lib.getMechanismList(slot))
    29. 

  29. print("Available Slots:", len(slots), slots)
    30. 

  30. 

  31. for s in slots:
    32. 

  32.     try:
    33. 

  33.         i = lib.getSlotInfo(s)
    34. 

  34.         print("Slot no:", s)
    35. 

  35.         print("slotDescription", i.slotDescription.strip())
    36. 

  36.         print("manufacturerID", i.manufacturerID.strip())
    37. 

  37. 

  38.         t = lib.getTokenInfo(s)
    39. 

  39.         print("TokenInfo")
    40. 

  40.         print("label", t.label.strip())
    41. 

  41.         print("manufacturerID", t.manufacturerID.strip())
    42. 

  42.         print("model", t.model.strip())
    43. 

  43.     except PyKCS11.PyKCS11Error as e:
    44. 

  44.         print("Error:", e)
    45. 

  45. 

  46. keyID = (0x38, 0x7b, 0x4b, 0x49, 0xe2, 0xe7, 0x10, 0x4f, 0x60, 0x15, 0xc1, 0x42, 0x38, 0x6c, 0x3d, 0x41, 0x43, 0x5e, 0x91, 0x9b,)
    47. 

  47. 

  48. session = lib.openSession(slot, CKF_SERIAL_SESSION | CKF_RW_SESSION)
    49. 

  49. session.login(keyring.get_password('sig', 'token').strip())
    50. 

  50. toSign = "48656c6c6f20776f726c640d0a"
    51. 

  51. privKey = session.findObjects([(CKA_CLASS, CKO_PRIVATE_KEY), (CKA_ID, keyID)])[0]
    52. 

  52. print(privKey)
    53. 

  53. signature = session.sign(privKey, binascii.unhexlify(toSign), PyKCS11.Mechanism(CKM_SHA1_RSA_PKCS, None))
    54. 

  54. # key_dict = privKey.to_dict()
    55. 

  55. pubKey = session.findObjects([(CKA_CLASS, CKO_PUBLIC_KEY), (CKA_ID, keyID)])[0]
    56. 

  56. result = session.verify(pubKey, binascii.unhexlify(toSign), signature, PyKCS11.Mechanism(CKM_SHA1_RSA_PKCS, None))
    57. 

  57. 

  58. print("\nVerified:", result)
    59. 

  59. 

  60. # print(privKey)
    61. 

  61. session.logout()
    62. 

  62. session.closeSession()
    63.