from os import path, listdir from hashlib import sha512, sha384, sha256, md5 from base64 import b64encode from random import randint import ed25519 import re DIR = path.normpath(path.join(__file__, "..", "..")) ''' Yield each javascript and css file in the directory ''' def js_and_css_files(): for f in listdir(DIR): if path.isfile(f) and (f.endswith(".js") or f.endswith(".css")): yield f ''' URL-safe base64 encode a binary digest and strip any padding. ''' def format_digest(digest): return b64encode(digest) ''' Generate an encoded sha512 URI. ''' def sha512_uri(content): return "sha512-%s" % format_digest(sha512(content).digest()) ''' Generate an encoded sha384 URI. ''' def sha384_uri(content): return "sha384-%s" % format_digest(sha384(content).digest()) ''' Generate an encoded sha256 URI. ''' def sha256_uri(content): return "sha256-%s" % format_digest(sha256(content).digest()) ''' Generate an encoded ed25519 signature. ''' def ed25519_signature(private_public_key, content): signature = ed25519.signature(content, *private_public_key) return "ed25519-%s" % format_digest(signature) ''' Generate private + public key pair for ed25519 signatures. ''' def ed25519_key_pair(): secret_key = ''.join(chr(randint(0, 255)) for _ in range(0,32)) public_key = ed25519.publickey(secret_key) return (secret_key, public_key) ''' Generate an encoded md5 digest URI. ''' def md5_uri(content): return "md5-%s" % format_digest(md5(content).digest()) def main(): ed25519_key = ed25519_key_pair() for file in js_and_css_files(): print "Listing hash values for %s" % file with open(file, "r") as content_file: content = content_file.read() print "\tSHA512 integrity: %s" % sha512_uri(content) print "\tSHA384 integrity: %s" % sha384_uri(content) print "\tSHA256 integrity: %s" % sha256_uri(content) print "\tMD5 integrity: %s" % md5_uri(content) print "\tEd25519 integrity: %s" % ed25519_signature(ed25519_key, content) print "\nEd25519 public key (used above): %s" % format_digest(ed25519_key[1]) if __name__ == "__main__": main()