U ςd_> @sddlmZddlZddlmZejrbddlmZddlm Z m Z m Z m Z m Z eje e e e e fZdddd d d Zdddd d d ZddddddZdFdddddddddddZdGdddddddddddZdHdddddddZddddd Zdddddddddd!d"Zdddddddddd#d$Zd%ZdZddd&d'd(Zddd)d*d+Zddddd,d-Zddddd.ddd/d0d1Zdd2d3d4d5Zddd2d6d7d8Z ddd2d9d:d;Z!ddd2d<d=d>Z"dddd?d@dAZ#dIddddddddddBdCZ$dJddddddddddDdEZ%dS)K) annotationsN) InvalidTag)BackendAESCCMAESGCMAESOCB3AESSIVChaCha20Poly1305r _AEADTypesbool)backendcipherreturncCsddlm}|jjot||S)zz Checks whether the given cipher is supported through EVP_AEAD rather than the normal OpenSSL EVP_CIPHER API. rr )+cryptography.hazmat.primitives.ciphers.aeadr _libZCryptography_HAS_EVP_AEAD isinstancer rr rf/var/www/html/myproject/myenv/lib/python3.8/site-packages/cryptography/hazmat/backends/openssl/aead.py_is_evp_aead_supported_ciphers   rcCsXt||rdSt|}|jr*||jkr*dS|dr@|jjdkS|j||jj kSdS)NTF-siv) r_evp_cipher_cipher_nameZ _fips_enabledZ _fips_aeadendswithrZ#CRYPTOGRAPHY_OPENSSL_300_OR_GREATEREVP_get_cipherbyname_ffiNULL)r r cipher_namerrr_aead_cipher_supported(s    r bytesr rkeycCs&t||rt|||St|||SdSN)r_evp_aead_create_ctx_evp_cipher_create_ctxr"rrr_aead_create_ctx;s  r'ztyping.List[bytes]intz typing.Any)r rnoncedataassociated_data tag_lengthctxrcCs6t||rt|||||||St|||||||SdSr$)r_evp_aead_encrypt_evp_cipher_encryptr rr)r*r+r,r-rrr_encryptFs& r1cCs6t||rt|||||||St|||||||SdSr$)r_evp_aead_decrypt_evp_cipher_decryptr0rrr_decryptYs& r4ztyping.Optional[int])r rr#tag_lencCstt||}|dk st|j|}|dkr2|jjn|}|j||t||}|||jj k|j ||jj }|Sr$) _evp_aead_get_cipherAssertionErrorr from_bufferrZEVP_AEAD_DEFAULT_TAG_LENGTHZCryptography_EVP_AEAD_CTX_newlenopenssl_assertrgcZEVP_AEAD_CTX_free)r rr#r5 aead_cipherkey_ptrr-rrrr%ls     r%)r rcCs$ddlm}t||st|jS)Nrr)rr rr7rZEVP_aead_chacha20_poly1305rrrrr6s r6c Cs|dk s tt||}|dk s"t|jd}t||j|} |jd| } |j|} |j|} d|} |j| }|j || || | t|| t||t|  }| |dk|j | |ddd}|S)Nsize_t * uint8_t[]rr) r7r6rnewr9rZEVP_AEAD_max_overheadr8joinZEVP_AEAD_CTX_sealr:buffer)r rr)r*r+r,r-r<out_len max_out_lenout_bufdata_ptr nonce_ptraadaad_ptrresZencrypted_datarrrr.s2         r.c Cst||krt|dk st|jd}t|}|jd|} |j|} |j|} d|} |j| } |j|| ||| t|| t|| t|  }|dkr| t|j | |ddd}|S)Nr>r?r@r) r9rr7rrAr8rBrZEVP_AEAD_CTX_open_consume_errorsrC)r rr)r*r+r,r-rDrErFrGrHrIrJrKZdecrypted_datarrrr2s6        r2r)rrcCsddlm}m}m}m}m}t||r*dSt||rPdt|jdd dSt||rvdt|jdd dSt||rdt|jdd d  dSt||st dt|jdd  dSdS) Nrrschacha20-poly1305zaes-z-ccmasciiz-ocbz-sivz-gcm) rrrrr r rr9_keyencoder7)rrrrr r rrrrs     r)rr cCsj|drH|j|jj||jj}|||jjk|j||jj}n|j|}|||jjk|S)Nr) rrZEVP_CIPHER_fetchrrr:r;ZEVP_CIPHER_freer)rr evp_cipherrrr _evp_ciphers  rScCs||j}|||jjk|j||jj}t|}t||}|j |}|j |||jj||jjd}||dk|SNr) rEVP_CIPHER_CTX_newr:rrr;EVP_CIPHER_CTX_freerrSr8EVP_CipherInit_ex)r rr#r-rrRr=rKrrrr& s    r&ztyping.Optional[bytes])r rr#r)tagr5 operationc Cs.t||}|j}|j||jj}|j|||jj|jj|jjt|t k} | | dk|j ||jj t ||jj} | | dk|tkr|dk stt|||n2|dr|j ||jj||jj} | | dk|j|} |j|} |j||jj|jj| | t|t k} | | dk|S)Nrs-ccm)rSrrUrr;rVrWrr(_ENCRYPTr:EVP_CIPHER_CTX_ctrlZEVP_CTRL_AEAD_SET_IVLENr9_DECRYPTr7_evp_cipher_set_tagrEVP_CTRL_AEAD_SET_TAGr8) r rr#r)rXr5rYrRr-rKrHr=rrr_evp_cipher_aead_setup"sT        r_None)rXrcCs8|j|}|j||jjt||}||dkdSrT)rr8rr[r^r9r:)r r-rXZtag_ptrrKrrrr]Ys r])r)rYrc CsH|j|}|j||jj|jj|jj|t|tk}||dkdSrT)rr8rrWrr(rZr:)r r-r)rYrHrKrrr_evp_cipher_set_nonce_operationas  ra)r data_lenrcCs:|jd}|j||jj||jj|}||dkdSNint *r)rrArEVP_CipherUpdaterr:)r r-rbZintptrrKrrr_evp_cipher_set_lengthps rf)r r+rcCsF|jd}|j|}|j||jj||t|}||dkdSrc)rrAr8rrerr9r:)r r-r+outlenZ a_data_ptrrKrrr_evp_cipher_process_aadxs  rh)r r*rcCsp|jd}|jdt|}|j|}|j||||t|}|dkrV|t|j||dddS)Nrdunsigned char[]r) rrAr9r8rrerLrrC)r r-r*rgbufrGrKrrr_evp_cipher_process_datas  rkcCsPddlm}m}|dkr8t|} t|| |j|d|t}nt|||tt||r`t ||t ||D]} t ||| qdt |||} |j d} |j dd} |j|| | }||dk| |j | | ddd7} |j d|}|j||jj||}||dk|j |dd}t||rD|t |dk|| S| |SdS)Nrrr rdri)rrr rr_rPrZrarrfr9rhrkrrArEVP_CipherFinal_exr:rCr[ZEVP_CTRL_AEAD_GET_TAG)r rr)r*r+r,r-rr radprocessed_datargrjrKZtag_bufrXrrrr/sH      r/cCsddlm}m}t||kr tt||rD|d|} ||d}n|| d} |d| }|dkrt|} t|| |j|| |t }nt |||t t ||| t||rt ||t||D]} t ||| qt||rR|jd} |jdt|} |j|}|j|| | |t|}|dkr6|t|j| | ddd}njt|||}|jd} |jdd} |j|| | }||j| | ddd7}|dkr|t|S)Nrrlrdrirrm)rrr r9rrrr_rPr\rar]rfrhrrAr8rrerLrCrkrn)r rr)r*r+r,r-rr rXrrorgrjZd_ptrrKrprrrr3sV              r3)N)N)N)N)N)& __future__rtypingZcryptography.exceptionsr TYPE_CHECKINGZ,cryptography.hazmat.backends.openssl.backendrrrrrr r Unionr rr r'r1r4r%r6r.r2rZr\rrSr&r_r]rarfrhrkr/r3rrrrsF     ),7 B