U gN@sddlZddlmZddlmZddlmZmZmZmZddl m Z ddl m Z m Z ddlmZmZmZdZd Zd Zd Zd Zd ZdZdZdZdZdZdZdZdZdZ Gddde!Z"Gddde#Z$Gddde#Z%dS)N)Hash)Random) DerSequenceDerOctetString DerObjectId DerInteger)AES)padunpad)PBKDF1PBKDF2scryptz1.2.840.113549.1.5.3z1.2.840.113549.1.5.6z1.2.840.113549.1.5.10z1.2.840.113549.1.5.11z1.2.840.113549.1.5.13z1.2.840.113549.1.5.12z1.3.6.1.4.1.11591.4.11z1.2.840.113549.2.7z1.2.840.113549.3.7z2.16.840.1.101.3.4.1.2z2.16.840.1.101.3.4.1.22z2.16.840.1.101.3.4.1.42z2.16.840.1.101.3.4.1.6z2.16.840.1.101.3.4.1.26z2.16.840.1.101.3.4.1.46c@s eZdZdS) PbesErrorN)__name__ __module__ __qualname__rr7/tmp/pip-unpacked-wheel-_q8s9isk/Cryptodome/IO/_PBES.pyrCsrc@seZdZdZeddZdS)PBES1zDeprecated encryption scheme with password-based key derivation (originally defined in PKCS#5 v1.5, but still present in `v2.0`__). .. __: http://www.ietf.org/rfc/rfc2898.txt cCst|}t|d}t|dj}t|dj}i}|tkrnddlm}ddl m }|} |} n|t krddlm}ddl m } |} | } d|d<nd|t krddlm} ddl m }| } |} n:|tkrddlm} ddl m } | } | } d|d<ntd tj|dd d } t| dj}| d}t||d || }|d d|dd }}| j|| j|f|}||}t||jS)axDecrypt a piece of data using a passphrase and *PBES1*. The algorithm to use is automatically detected. :Parameters: data : byte string The piece of data to decrypt. passphrase : byte string The passphrase to use for decrypting the data. :Returns: The decrypted data, as a binary string. r)MD5)DES)ARC2@Zeffective_keylen)SHA1zUnknown OID for PBES1Z nr_elementsN)rdecoderpayloadrvalue_OID_PBE_WITH_MD5_AND_DES_CBCZCryptodome.HashrCryptodome.Cipherr_OID_PBE_WITH_MD5_AND_RC2_CBCr_OID_PBE_WITH_SHA1_AND_DES_CBCr_OID_PBE_WITH_SHA1_AND_RC2_CBCrr newMODE_CBCdecryptr block_size)data passphraseenc_private_key_infoZencrypted_algorithmencrypted_datapbe_oidZ cipher_paramsrrZhashmodmodulerrZ pbe_paramssaltZ iterationsZkey_ivkeyivcipherptrrrr)sH            z PBES1.decryptN)rrr__doc__ staticmethodr)rrrrr}src@s*eZdZdZedddZeddZdS)PBES2zEncryption scheme with password-based key derivation (defined in `PKCS#5 v2.0`__). .. __: http://www.ietf.org/rfc/rfc2898.txt.Nc!Cs|dkr i}|dkrtj}td}||}|dkrFtd||drjd}|d}|d} nd}|d} d } | d krd d l m } d } | } | j }t }d|di}n| dkrd} t } t j }t}d|di}n| dkrd } t } t j }t}d|di}n| dkr.d} t } t j }t}d|di}n| dkr\d} t } t j}t}d|di}d} nh| dkrd } t } t j}t}d|di}d} n:| dkrd} t } t j}t}d|di}d} n td| t|d }||dd}|dkr|dd}t|}t||| ||d}tt|t|g}|d kr~ztjjd!|d"j}Wntk rhtd#YnX| tt!|gtt!t"|g}n|dkr|dd$}|d%d}|d&d'}t#||| |||}tt!t$tt|t|t|t|gg}ntd(|d'| j||f|}| r>|%|\}}||}n|&t'||j(}tt!|t|g}ttt!t)t||ggt|g} | *S))a Encrypt a piece of data using a passphrase and *PBES2*. :Parameters: data : byte string The piece of data to encrypt. passphrase : byte string The passphrase to use for encrypting the data. protection : string The identifier of the encryption algorithm to use. The default value is '``PBKDF2WithHMAC-SHA1AndDES-EDE3-CBC``'. prot_params : dictionary Parameters of the protection algorithm. +------------------+-----------------------------------------------+ | Key | Description | +==================+===============================================+ | iteration_count | The KDF algorithm is repeated several times to| | | slow down brute force attacks on passwords | | | (called *N* or CPU/memory cost in scrypt). | | | | | | The default value for PBKDF2 is 1 000. | | | The default value for scrypt is 16 384. | +------------------+-----------------------------------------------+ | salt_size | Salt is used to thwart dictionary and rainbow | | | attacks on passwords. The default value is 8 | | | bytes. | +------------------+-----------------------------------------------+ | block_size | *(scrypt only)* Memory-cost (r). The default | | | value is 8. | +------------------+-----------------------------------------------+ | parallelization | *(scrypt only)* CPU-cost (p). The default | | | value is 1. | +------------------+-----------------------------------------------+ randfunc : callable Random number generation function; it should accept a single integer N and return a string of random data, N bytes long. If not specified, a new RNG will be instantiated from ``Cryptodome.Random``. :Returns: The encrypted data, as a binary string. Nz5^(PBKDF2WithHMAC-([0-9A-Z-]+)|scrypt)And([0-9A-Z-]+)$zUnknown protection %sZPBKDFZpbkdf2rr Fz DES-EDE3-CBCrDES3r3rz AES128-CBCrz AES192-CBCz AES256-CBC z AES128-GCMnonce Tz AES192-GCMz AES256-GCMzUnknown encryption mode '%s'Z salt_sizeiteration_countihmac_hash_moduler) digestmodzNo OID for HMAC hash algorithmi@r*Zparallelizationrz Unknown KDF )+rr'readrecompilematch ValueError startswithgroupr#r;r(_OID_DES_EDE3_CBCr_OID_AES128_CBC_OID_AES192_CBC_OID_AES256_CBCMODE_GCM_OID_AES128_GCM_OID_AES192_GCM_OID_AES256_GCMlistvaluesgetrr rrrHMACoidKeyErrorappendr _OID_PBKDF2r _OID_SCRYPTZencrypt_and_digestencryptr r* _OID_PBES2encode)!r+r,Z protectionZ prot_paramsZrandfuncpatternresZpbkdfZpbkdf2_hmac_algoenc_algoaeadr;key_sizer0 cipher_modeenc_oidZ enc_paramiv_noncer1countrDr2 pbkdf2_paramsZhmac_oidkdf_infoscrypt_rscrypt_pr4cttagr.enc_infor-rrrr]s/                             z PBES2.encryptc#stj|dd}t|d}t|dj}t|dj}|tkrTtdtj|ddd}tj|ddd}t|dj}d} |tkrNtj|ddd} t| dj} | d} t | d} d}| dkrz | |d} | d8} |d7}Wnt k rYnXt }| dkrt| |}t|dj}nn|t krtj|dddtdj} fd d d D\} }}t d krd } nd} ntd t|d}t|dj}d}|t kr ddlm}|}|j}d}d}n|tkr*t}tj}d}d}n|tkrHt}tj}d}d}n|tkrft}tj}d}d}nr|tkrt}tj}d}d}d}nP|tkrt}tj}d}d}d}n.|tkrt}tj}d}d}d}n td|| r| |krtdt|dj}|tkr^ztjj|}Wn"tk r>td|YnXt|}t|| || |d}nt|| || ||}|j||f||i}t ||j krt!d|r|j } |"|d| || d}!n|#|}"t$|"|j }!|!S)axDecrypt a piece of data using a passphrase and *PBES2*. The algorithm to use is automatically detected. :Parameters: data : byte string The piece of data to decrypt. passphrase : byte string The passphrase to use for decrypting the data. :Returns: The decrypted data, as a binary string. rrrrzNot a PBES2 objectN)rr9)rpcsg|] }|qSrr).0xZ scrypt_paramsrr sz!PBES2.decrypt..)rrr9rpzUnsupported PBES2 KDFFr:r<r3rr=r>TzUnsupported PBES2 cipher z9Mismatch between PBES2 KDF parameters and selected cipherzUnsupported HMAC %srAzToo little data to decrypt)%rrrr rr!r^rr[len TypeError_OID_HMAC_SHA1r\rLr#r;r(rMrrNrOrQrPrRrSrrWZ_hmac2hash_oidrYr'r r r*rIZdecrypt_and_verifyr)r )#r+r,r-rbr.r/Z pbes2_paramsrjZkdf_oidZkdf_key_lengthrir1r@leftidxZpbkdf2_prf_oidZpbkdf2_prf_algo_idrkrlrorfrcr;r0rerdZ cipher_paramrgZhmac_hash_module_oidrBr2r4Ztag_lenr5Z pt_paddedrrtrr)s                          z PBES2.decrypt)NN)rrrr6r7r]r)rrrrr8s  Br8)&rFZ CryptodomerrZCryptodome.Util.asn1rrrrr#rZCryptodome.Util.Paddingr r ZCryptodome.Protocol.KDFr r r r"r$r%r&r^r[r\rxrLrMrNrOrQrRrSrIrobjectrr8rrrr"s0   :E