#!/usr/bin/env python3 # -*- coding: utf-8 -*- """ Name: WireGuard Cryptography Class Creator: K4YT3X Date Created: October 11, 2019 Last Modified: January 26, 2021 The WireGuard class implements some of wireguard-tools' cryptographic functions such as generating WireGuard private and public keys. """ # built-in imports from cryptography.hazmat.primitives import serialization from cryptography.hazmat.primitives.asymmetric.x25519 import X25519PrivateKey import base64 class WireGuard: """WireGuard Cryptography Class generates WireGuard public key, private key, and PSK """ @staticmethod def genkey() -> str: """generate WireGuard private key Returns: str: X25519 private key encoded in base64 format """ return base64.b64encode( X25519PrivateKey.generate().private_bytes( encoding=serialization.Encoding.Raw, format=serialization.PrivateFormat.Raw, encryption_algorithm=serialization.NoEncryption(), ) ).decode() @staticmethod def pubkey(privkey: str) -> str: """convert WireGuard private key into public key Args: privkey (str): WireGuard X25519 private key encoded in base64 format Returns: str: corresponding public key of the provided private key encoded as a base64 string """ return base64.b64encode( X25519PrivateKey.from_private_bytes(base64.b64decode(privkey.encode())) .public_key() .public_bytes( encoding=serialization.Encoding.Raw, format=serialization.PublicFormat.Raw, ) ).decode() @staticmethod def genpsk() -> str: """generate a WireGuard PSK This is an alias of WireGuard.genkey since they both produce a random sequence of bytes. This generated X25519 private key can also be used as a symmetric key. Returns: str: generated PSK encoded as a base64 string """ return WireGuard.genkey()