σ /<υ\c@`sΐddlmZmZmZddlZddlmZddlmZm Z m Z ddl m Z m Z mZddlmZddlmZmZmZddlmZmZmZmZmZmZdd lmZmZd „Zd „Z d „Z!d „Z"d„Z#d„Z$d„Z%d„Z&ej'eƒde(fd„ƒYƒZ)ej'eƒde(fd„ƒYƒZ*ej'eƒde(fd„ƒYƒZ+ej'eƒde(fd„ƒYƒZ,dS(i(tabsolute_importtdivisiontprint_functionN(tutils(tInvalidSignaturetUnsupportedAlgorithmt_Reasons(t_calculate_digest_and_algorithmt_check_not_prehashedt_warn_sign_verify_deprecated(thashes(tAsymmetricSignatureContexttAsymmetricVerificationContexttrsa(tAsymmetricPaddingtMGF1tOAEPtPKCS1v15tPSStcalculate_max_pss_salt_length(tRSAPrivateKeyWithSerializationtRSAPublicKeyWithSerializationcC`s<|j}|tjks'|tjkr4t||ƒS|SdS(N(t _salt_lengthRt MAX_LENGTHRR(tpsstkeythash_algorithmtsalt((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt_get_rsa_pss_salt_lengths  cC`sΩt|tƒstdƒ‚nt|tƒr<|jj}n‡t|tƒr₯|jj}t|jt ƒs~t dt j ƒ‚n|j |ƒsΓt dt jƒ‚qΓnt dj|jƒt jƒ‚t|||||ƒS(Ns1Padding must be an instance of AsymmetricPadding.s'Only MGF1 is supported by this backend.sPThis combination of padding and hash algorithm is not supported by this backend.s${} is not supported by this backend.(t isinstanceRt TypeErrorRt_libtRSA_PKCS1_PADDINGRtRSA_PKCS1_OAEP_PADDINGt_mgfRRRtUNSUPPORTED_MGFtrsa_padding_supportedtUNSUPPORTED_PADDINGtformattnamet_enc_dec_rsa_pkey_ctx(tbackendRtdatatpaddingt padding_enum((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt _enc_dec_rsa&s&   cC`sΤt|tƒr*|jj}|jj}n|jj}|jj}|jj|j|j j ƒ}|j ||j j kƒ|j j ||jj ƒ}||ƒ}|j |dkƒ|jj||ƒ}|j |dkƒ|jj|jƒ} |j | dkƒt|tƒr˜|jjr˜|j|jjƒ} |jj|| ƒ}|j |dkƒ|j|jƒ} |jj|| ƒ}|j |dkƒnt|tƒrX|jdk rXt|jƒdkrX|jjt|jƒƒ} |j | |j j kƒ|j j| |jt|jƒƒ|jj|| t|jƒƒ}|j |dkƒn|j jd| ƒ} |j jd| ƒ}|||| |t|ƒƒ}|dkrΌt||ƒn|j j|ƒ| d S(Niissize_t *sunsigned char[]( Rt _RSAPublicKeyRtEVP_PKEY_encrypt_inittEVP_PKEY_encrypttEVP_PKEY_decrypt_inittEVP_PKEY_decrypttEVP_PKEY_CTX_newt _evp_pkeyt_ffitNULLtopenssl_asserttgctEVP_PKEY_CTX_freetEVP_PKEY_CTX_set_rsa_paddingt EVP_PKEY_sizeRtCryptography_HAS_RSA_OAEP_MDt_evp_md_non_null_from_algorithmR"t _algorithmtEVP_PKEY_CTX_set_rsa_mgf1_mdtEVP_PKEY_CTX_set_rsa_oaep_mdt_labeltNonetlentOPENSSL_malloctmemmovet EVP_PKEY_CTX_set0_rsa_oaep_labeltnewt_handle_rsa_enc_dec_errortbuffer(R)RR*R,R+tinittcrypttpkey_ctxtrestbuf_sizetmgf1_mdtoaep_mdtlabelptrtoutlentbuf((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR(GsP        "  cC`sν|jƒ}|j|ƒ|j|dj|jjkƒt|tƒrw|j|dj|jjkƒt dƒ‚nr|jj |jj |jj |jj g}|jjrΓ|j|jjƒn|j|dj|kƒt dƒ‚dS(NisGData too long for key size. Encrypt less data or use a larger key size.sDecryption failed.(t_consume_errorsR7tlibRt ERR_LIB_RSARR.treasont!RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZEt ValueErrortRSA_R_BLOCK_TYPE_IS_NOT_01tRSA_R_BLOCK_TYPE_IS_NOT_02tRSA_R_OAEP_DECODING_ERRORt RSA_R_DATA_TOO_LARGE_FOR_MODULUSt*Cryptography_HAS_RSA_R_PKCS_DECODING_ERRORtappendtRSA_R_PKCS_DECODING_ERROR(R)Rterrorstdecoding_errors((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyRHs         cC`sρt|tƒstdƒ‚n|jj|jƒ}|j|dkƒt|tƒrd|jj}n‰t|t ƒrΟt|j t ƒsšt dt jƒ‚n||jddkrΐtdƒ‚n|jj}nt dj|jƒt jƒ‚|S(Ns'Expected provider of AsymmetricPadding.is'Only MGF1 is supported by this backend.isDDigest too large for key size. Use a larger key or different digest.s${} is not supported by this backend.(RRRRR;R4R7RR RR"RRRR#t digest_sizeRYtRSA_PKCS1_PSS_PADDINGR&R'R%(R)RR+t algorithmt pkey_sizeR,((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt_rsa_sig_determine_paddingœs$ c C`st||||ƒ}|j|ƒ}|jj|j|jjƒ}|j||jjkƒ|jj||jj ƒ}||ƒ} |j| dkƒ|jj ||ƒ} | dkrα|j ƒt dj |jƒtjƒ‚n|jj||ƒ} |j| dkƒt|tƒrŒ|jj|t|||ƒƒ} |j| dkƒ|j|jjƒ} |jj|| ƒ} |j| dkƒn|S(Niis4{} is not supported by this backend for RSA signing.(RgR=RR3R4R5R6R7R8R9tEVP_PKEY_CTX_set_signature_mdRTRR&R'RtUNSUPPORTED_HASHR:RRt EVP_PKEY_CTX_set_rsa_pss_saltlenRR"R>R?( R)R+ReRR*t init_funcR,tevp_mdRLRMRO((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt_rsa_sig_setupΌs2     c C`sMt||||||jjƒ}|jjdƒ}|jj||jj||t|ƒƒ}|j|dkƒ|jjd|dƒ}|jj||||t|ƒƒ}|dkr<|j ƒ} |j| dj |jj kƒ| dj |jj krd} n&|j| dj |jjkƒd} t| ƒ‚n|jj|ƒS(Nssize_t *isunsigned char[]is@Salt length too long for key size. Try using MAX_LENGTH instead.s0Digest too large for key size. Use a larger key.(RmRtEVP_PKEY_sign_initR5RGt EVP_PKEY_signR6RCR7RTRURVRWRXt RSA_R_DIGEST_TOO_BIG_FOR_RSA_KEYRYRI( R)R+Ret private_keyR*RLtbuflenRMRSRaRW((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt _rsa_sig_signέs4         cC`st||||||jjƒ}|jj||t|ƒ|t|ƒƒ}|j|dkƒ|dkr}|jƒt‚ndS(Ni(RmRtEVP_PKEY_verify_inittEVP_PKEY_verifyRCR7RTR(R)R+Ret public_keyt signatureR*RLRM((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt_rsa_sig_verifys !  t_RSASignatureContextcB`s#eZd„Zd„Zd„ZRS(cC`sV||_||_t||||ƒ||_||_tj|j|jƒ|_dS(N(t_backendt _private_keyRgt_paddingR>R tHasht _hash_ctx(tselfR)RqR+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt__init__s     cC`s|jj|ƒdS(N(R~tupdate(RR*((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR!scC`s+t|j|j|j|j|jjƒƒS(N(RsRzR|R>R{R~tfinalize(R((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR‚$s (t__name__t __module__R€RR‚(((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyRys t_RSAVerificationContextcB`s#eZd„Zd„Zd„ZRS(cC`se||_||_||_||_t||||ƒ|}||_tj|j|jƒ|_dS(N( Rzt _public_keyt _signatureR|RgR>R R}R~(RR)RvRwR+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR€0s     cC`s|jj|ƒdS(N(R~R(RR*((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR>scC`s1t|j|j|j|j|j|jjƒƒS(N(RxRzR|R>R†R‡R~R‚(R((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytverifyAs(RƒR„R€RRˆ(((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR….s  t_RSAPrivateKeycB`sVeZd„ZejdƒZd„Zd„Zd„Zd„Z d„Z d„Z RS(cC`s€||_||_||_|jjjdƒ}|jjj|j||jjj|jjjƒ|jj|d|jjjkƒ|jjj |dƒ|_ dS(Ns BIGNUM **i( Rzt _rsa_cdataR4R5RGRt RSA_get0_keyR6R7t BN_num_bitst _key_size(RR)t rsa_cdatatevp_pkeytn((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR€Ns    #RcC`s'tƒt|ƒt|j|||ƒS(N(R RRyRz(RR+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytsigner]s cC`sSttj|jdƒƒ}|t|ƒkr=tdƒ‚nt|j|||ƒS(Ng @s,Ciphertext length must be equal to key size.(tinttmathtceiltkey_sizeRCRYR-Rz(Rt ciphertextR+tkey_size_bytes((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytdecryptbscC`s΄|jjj|jƒ}|jj||jjjkƒ|jjj||jjjƒ}|jjj ||jjjƒ}|jj|dkƒ|jj |ƒ}t |j||ƒS(Ni( RzRtRSAPublicKey_dupRŠR7R5R6R8tRSA_freetRSA_blinding_ont_rsa_cdata_to_evp_pkeyR.(RtctxRMR((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyRvis!!c C`sΰ|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjjdƒ}|jjj|j|||ƒ|jj|d|jjjkƒ|jj|d|jjjkƒ|jj|d|jjjkƒ|jjj|j||ƒ|jj|d|jjjkƒ|jj|d|jjjkƒ|jjj |j|||ƒ|jj|d|jjjkƒ|jj|d|jjjkƒ|jj|d|jjjkƒt j d|jj |dƒd|jj |dƒd|jj |dƒd|jj |dƒd|jj |dƒd|jj |dƒd t j d |jj |dƒd |jj |dƒƒƒS( Ns BIGNUM **itptqtdtdmp1tdmq1tiqmptpublic_numbersteR(RzR5RGRR‹RŠR7R6tRSA_get0_factorstRSA_get0_crt_paramsR tRSAPrivateNumberst _bn_to_inttRSAPublicNumbers( RRR₯R RžRŸR‘R’R£((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytprivate_numbersrs<##### ###  cC`s"|jj||||j|jƒS(N(Rzt_private_key_bytesR4RŠ(RtencodingR&tencryption_algorithm((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt private_bytes•s  cC`s4t|j||ƒ\}}t|j||||ƒS(N(RRzRs(RR*R+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytsignžs( RƒR„R€Rtread_only_propertyR•R‘R˜RvR«R―R°(((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR‰Ls    # R.cB`sMeZd„ZejdƒZd„Zd„Zd„Zd„Z d„Z RS(cC`s€||_||_||_|jjjdƒ}|jjj|j||jjj|jjjƒ|jj|d|jjjkƒ|jjj |dƒ|_ dS(Ns BIGNUM **i( RzRŠR4R5RGRR‹R6R7RŒR(RR)RŽRR((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR€§s    #RcC`s:tƒtjd|ƒt|ƒt|j||||ƒS(NRw(R Rt _check_bytesRR…Rz(RRwR+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytverifierΆs  cC`st|j|||ƒS(N(R-Rz(Rt plaintextR+((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pytencryptΏscC`sΞ|jjjdƒ}|jjjdƒ}|jjj|j|||jjjƒ|jj|d|jjjkƒ|jj|d|jjjkƒtj d|jj |dƒd|jj |dƒƒS(Ns BIGNUM **iR₯R( RzR5RGRR‹RŠR6R7R RͺR©(RRR₯((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR€Βs ## cC`s"|jj||||j|jƒS(N(Rzt_public_key_bytesR4RŠ(RR­R&((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyt public_bytesΟs  cC`s7t|j||ƒ\}}t|j|||||ƒS(N(RRzRx(RRwR*R+Re((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyRˆΨs( RƒR„R€RR±R•R³R΅R€R·Rˆ(((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyR.₯s   (-t __future__RRRR“t cryptographyRtcryptography.exceptionsRRRt*cryptography.hazmat.backends.openssl.utilsRRR tcryptography.hazmat.primitivesR t)cryptography.hazmat.primitives.asymmetricR R R t1cryptography.hazmat.primitives.asymmetric.paddingRRRRRRt-cryptography.hazmat.primitives.asymmetric.rsaRRRR-R(RHRgRmRsRxtregister_interfacetobjectRyR…R‰R.(((sGlib/python2.7/site-packages/cryptography/hazmat/backends/openssl/rsa.pyts0 . ! 8  ! % X