b1240c13e5
Add a Python port of the KEZ CLI under python/, mirroring the Rust and Node implementations command-for-command and byte-for-byte: - Pure-Python JCS (RFC 8785), BIP-340 Schnorr, and Bech32; cryptography for Ed25519 and zstandard for the compact zstd framing. - Full CLI: identity new, claim create/dns, verify file, and sigchain add/revoke/show/export. Wire Python into crosstest.sh with 35 new scenarios covering Python against both Rust and Node, in every direction, across all wire formats, both key types, DNS proofs, and sigchains (incl. JSONL byte parity). All 55 scenarios pass. Update root README and .gitignore for the new implementation.
43 lines
1.2 KiB
Python
43 lines
1.2 KiB
Python
"""Proof parsing across the four wire encodings (Spec §6)."""
|
|
|
|
from __future__ import annotations
|
|
|
|
import json
|
|
from typing import Any
|
|
|
|
from .encodings import extract_markdown_proof, from_compact
|
|
from .envelope import COMPACT_PROOF_PREFIX
|
|
|
|
_B64URL = set("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_")
|
|
|
|
|
|
def extract_compact_token(text: str) -> str | None:
|
|
idx = text.find(COMPACT_PROOF_PREFIX)
|
|
if idx < 0:
|
|
return None
|
|
body_chars = []
|
|
for ch in text[idx + len(COMPACT_PROOF_PREFIX) :]:
|
|
if ch in _B64URL:
|
|
body_chars.append(ch)
|
|
else:
|
|
break
|
|
if not body_chars:
|
|
return None
|
|
return COMPACT_PROOF_PREFIX + "".join(body_chars)
|
|
|
|
|
|
def parse_proof(raw: str) -> dict[str, Any]:
|
|
trimmed = raw.strip()
|
|
|
|
# Markdown fence is the most specific marker — check it first.
|
|
if "```kez" in trimmed:
|
|
return extract_markdown_proof(trimmed)
|
|
# Raw JSON envelope.
|
|
if trimmed.startswith("{"):
|
|
return json.loads(trimmed)
|
|
# Compact: extract the kez:z1:<base64url> token anywhere in the input.
|
|
token = extract_compact_token(trimmed)
|
|
if token is not None:
|
|
return from_compact(token)
|
|
raise ValueError("unknown KEZ proof format")
|