tessl/pypi-rsa
Pure-Python RSA implementation for encryption, decryption, signing, and verification
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
- Describes
'%3e%3cpath%20d='M3.389%209.069c0-.009.043-.033.029-.044L.029%207.77l3.287-1.197L6.574%207.77l.106.083.005%204-3.297%201.185V9.068ZM13.582%209.32V2.74l3.405%201.238v4.104L13.583%209.32ZM10.253%2014.66l-3.476%201.268v-4.027l3.476-1.313v4.072ZM10.253%2010.558l-3.476%201.239V7.784l3.476-1.268v4.042ZM10.253%2014.719v3.968L6.777%2020v-3.998l3.476-1.283ZM17%208.139v4.042l-3.418%201.239V9.378L17%208.138ZM3.3%2017.168%200%2015.943v-4.027l3.3%201.224v4.028ZM6.69%2011.916v4.027l-3.302%201.225v-4.072l3.301-1.18ZM6.69%203.743v4.012l-3.33-1.21V2.564l3.33%201.18Z'/%3e%3cpath%20d='M3.3%2013.066%200%2011.842V7.844l3.3%201.224v3.998ZM13.524%209.334l-.175.088.175-.014v4.027l-3.152%201.183-.06-.032v-3.983l1.986-.767-.111.006-1.876.657V6.531l3.213-1.224v4.027Zm-.263.133c-.065.008-.198.023-.233.088.065-.008.198-.023.233-.088Zm-.321.118c-.065.008-.198.023-.233.088.065-.009.198-.023.233-.088Zm-.321.118c-.066.008-.199.023-.234.088.065-.008.199-.023.234-.088ZM13.524%201.266v3.968l-3.213%201.195V2.46l3.213-1.194ZM10.253%202.475v3.968L6.777%207.726V3.743l3.476-1.268ZM8.2%204.458c-.304.064-.627.5-.708.79-.27.963.636%201.081%201.091.364.277-.437.354-1.308-.383-1.154ZM13.524%2013.51v3.983l-3.17%201.177c-.011%200-.043-.067-.043-.07v-3.895l3.213-1.195Zm-.884%201.63c-.495.085-1.068%201.015-.676%201.435.483.517%201.502-.636%201.147-1.246-.098-.169-.286-.221-.47-.19ZM10.165%202.387l-.037.065-3.395%201.249-3.345-1.212L6.88%201.21l3.285%201.178ZM13.437%201.177l-.088.073-3.057%201.127-3.034-1.082-.277-.133L10.151%200l3.286%201.177Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h17v20H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/pypi-rsa@4.9.0index.mddocs/
RSA
A pure-Python implementation of the RSA cryptographic algorithm supporting encryption, decryption, digital signing, and signature verification according to PKCS#1 version 1.5 standards. This library provides both a Python API for programmatic use and command-line tools for direct RSA operations.
Package Information
- Package Name: rsa
- Language: Python
- Installation:
pip install rsa - Dependencies: pyasn1 (>=0.1.3)
Core Imports
import rsaImport specific functions:
from rsa import newkeys, encrypt, decrypt, sign, verify
from rsa import PublicKey, PrivateKeyBasic Usage
import rsa
# Generate a key pair
(public_key, private_key) = rsa.newkeys(512)
# Encrypt a message
message = b'hello world'
encrypted = rsa.encrypt(message, public_key)
# Decrypt the message
decrypted = rsa.decrypt(encrypted, private_key)
print(decrypted.decode()) # outputs: hello world
# Sign a message
signature = rsa.sign(message, private_key, 'SHA-256')
# Verify the signature
hash_method = rsa.verify(message, signature, public_key)
print(hash_method) # outputs: SHA-256Architecture
The RSA library is organized around three main components:
- Key Management: Key pair generation, loading/saving keys in various formats (PEM, DER)
- Cryptographic Operations: PKCS#1 v1.5 encryption/decryption and signing/verification
- CLI Tools: Command-line utilities for key generation and cryptographic operations
The library implements pure-Python RSA operations without external cryptographic dependencies, making it suitable for educational purposes and environments requiring minimal dependencies.
Capabilities
Key Management
RSA key pair generation and key object management including loading/saving keys in PKCS#1 PEM/DER formats and OpenSSL compatibility.
def newkeys(nbits: int, accurate: bool = True, poolsize: int = 1, exponent: int = 65537) -> Tuple[PublicKey, PrivateKey]: ...
class PublicKey:
def __init__(self, n: int, e: int): ...
def save_pkcs1_pem(self) -> bytes: ...
def save_pkcs1_der(self) -> bytes: ...
class PrivateKey:
def __init__(self, n: int, e: int, d: int, p: int, q: int): ...
def save_pkcs1_pem(self) -> bytes: ...
def save_pkcs1_der(self) -> bytes: ...Cryptographic Operations
PKCS#1 v1.5 encryption, decryption, signing, and signature verification with support for multiple hash algorithms.
def encrypt(message: bytes, pub_key: PublicKey) -> bytes: ...
def decrypt(crypto: bytes, priv_key: PrivateKey) -> bytes: ...
def sign(message: bytes, priv_key: PrivateKey, hash_method: str) -> bytes: ...
def verify(message: bytes, signature: bytes, pub_key: PublicKey) -> str: ...
def sign_hash(hash_value: bytes, priv_key: PrivateKey, hash_method: str) -> bytes: ...
def find_signature_hash(signature: bytes, pub_key: PublicKey) -> str: ...
def compute_hash(message: Union[bytes, BinaryIO], method_name: str) -> bytes: ...CLI Tools
Command-line utilities for key generation, encryption, decryption, signing, and signature verification.
# CLI entry points available as shell commands:
# pyrsa-keygen - Generate RSA key pairs
# pyrsa-encrypt - Encrypt data with public key
# pyrsa-decrypt - Decrypt data with private key
# pyrsa-sign - Sign data with private key
# pyrsa-verify - Verify signature with public key
# pyrsa-priv2pub - Convert private key to public keyException Types
class CryptoError(Exception):
"""Base class for all cryptographic exceptions"""
class DecryptionError(CryptoError):
"""Raised when decryption fails"""
class VerificationError(CryptoError):
"""Raised when signature verification fails"""Type References
from typing import Tuple, Union, BinaryIO, Iterator, CallableSupported Hash Methods
- SHA-1 - Secure Hash Algorithm 1
- SHA-224 - SHA-2 224-bit
- SHA-256 - SHA-2 256-bit (recommended)
- SHA-384 - SHA-2 384-bit
- SHA-512 - SHA-2 512-bit
- MD5 - Message Digest 5 (deprecated, not recommended)
Key Formats
- PKCS#1 PEM - ASCII-armored format with BEGIN/END RSA KEY headers
- PKCS#1 DER - Binary ASN.1 DER encoding
- OpenSSL PEM - OpenSSL-compatible PEM format
- Pickle - Python pickle format (with security warnings)