Google Git
Sign in
android / platform / external / tink / 8339f6fb72b7caa0a942ce51d4e60b41339905d4 / . / python / examples / cleartext_keyset
tree: edbf029cdafa484cbf74a85e2a3fd473b1de4b91 [path history] [tgz]
  1. BUILD.bazel
  2. cleartext_keyset.py
  3. cleartext_keyset_test.sh
  4. README.md
python/examples/cleartext_keyset/README.md

Python example: working with cleartext keysets

This example shows how to generate or load a cleartext keyset, obtain a primitive, and use the primitive to do crypto.

WARNING: this is not recommended, consider protecting your keysets with a key management system.

Build and run

Bazel

$ git clone https://github.com/google/tink
$ cd tink/python/examples
$ bazel build ...

You can generate a cleartext keyset:

$ ./bazel-bin/cleartext_keyset/cleartext_keyset --mode generate \
    --keyset_path aes128_gcm_test_keyset.json

You can then encrypt a file with the resulting keyset:

$ echo "some data" > testdata.txt
$ ./bazel-bin/cleartext_keyset/cleartext_keyset --mode encrypt \
    --keyset_path aes128_gcm_test_keyset.json \
    --input_path testdata.txt --output_path testdata.txt.encrypted

Or decrypt a file with:

$ ./bazel-bin/cleartext_keyset/cleartext_keyset --mode decrypt \
    --keyset_path aes128_gcm_test_keyset.json \
    --input_path testdata.txt.encrypted --output_path testdata.txt.decrypted

$ diff testdata.txt testdata.txt.decrypted