U gW@@sddlZddlmZmZddlmZmZmZmZm Z m Z ddl m Z ddl mZGdddeZGdd d eZeZGd d d eZGd d d eZdS)N) bytes_to_long long_to_bytes) VoidPointer null_pointer SmartPointerc_size_t c_uint8_ptr c_ulonglong)Integer) getrandbitsc@s0eZdZdZdZdZdZdZdZdZ dZ d Z d S) CurveID N) __name__ __module__ __qualname__P192P224P256P384P521ED25519ED448 CURVE25519CURVE448r"r"?/tmp/pip-unpacked-wheel-_q8s9isk/Cryptodome/PublicKey/_point.pyr sr c@seZdZiZeZddddddgZddd d d d gZd dddddgZ ddddddgZ ddddddgZ dd gZ d!d"gZ d#d$d%gZd&d'd(gZeee e e e e eeZd)d*Zd+d,Zd-d.Zd/d0Zd1d2Zd3S)4_Curvesp192z NIST P-192zP-192Z prime192v1Z secp192r1Znistp192p224z NIST P-224zP-224Z prime224v1Z secp224r1Znistp224p256z NIST P-256zP-256Z prime256v1Z secp256r1Znistp256p384z NIST P-384zP-384Z prime384v1Z secp384r1Znistp384p521z NIST P-521zP-521Z prime521v1Z secp521r1Znistp521ed25519ZEd25519ed448ZEd448 curve25519Z Curve25519ZX25519curve448ZCurve448ZX448cCs ||jkSN all_names)selfitemr"r"r# __contains__1sz_Curves.__contains__cCs|jSr.r/r1r"r"r#__dir__4sz_Curves.__dir__cCsZ||jkr@ddlm}|}tj|_|jt |j|n||j krddlm}| }tj |_|jt |j |n||jkrddlm}|}tj|_|jt |j|n||jkrddlm}|}tj|_|jt |j|nN||jkrDddlm}|}tj|_|jt |j|n ||jkrddlm}|} tj| _|jt |j| n||jkrddlm}|} tj| _|jt |j| n||jkrddlm} | } tj!| _|jt |j| nL||j"krDddlm} | #} tj$| _|jt |j"| n t%d||j|S)Nr ) _nist_ecc)_edwards) _montgomeryzUnsupported curve '%s')& p192_namesr6Z p192_curver ridcurvesupdatedictfromkeys p224_namesZ p224_curver p256_namesZ p256_curver p384_namesZ p384_curver p521_namesZ p521_curver ed25519_namesr7Z ed25519_curver ed448_namesZ ed448_curvercurve25519_namesr8Zcurve25519_curver curve448_namesZcurve448_curver! ValueError)r1namer6r%r&r'r(r)r7r*r+r8r,r-r"r"r#load7s^                   z _Curves.loadc Cs|j|j|}|dkr||}||jks:||jkrJt|j||_nt |j|j ||_|j t j t jfk|_|j t jt jfk|_|jp|j |_W5QRX|Sr.) curves_lockr<getrJrFrG EccXPointZGxGEccPointZGyr;r rr is_edwardsr r!Z is_montgomeryZis_weierstrass)r1rIcurver"r"r# __getitem__is  z_Curves.__getitem__cCs|jD] }||}q|jSr.)r0r<items)r1rI_r"r"r#rSys  z _Curves.itemsN)rrrr< threadingRLockrKr9r@rArBrCrDrErFrGr0r3r5rJrRrSr"r"r"r#r$sF       2r$c@seZdZdZd*ddZddZddZd d Zd d Zd dZ ddZ ddZ e ddZ e ddZe ddZddZddZddZdd Zd!d"Zd#d$Zd%d&Zd'd(Zd)S)+rOaA class to model a point on an Elliptic Curve. The class supports operators for: * Adding two points: ``R = S + T`` * In-place addition: ``S += T`` * Negating a point: ``R = -T`` * Comparing two points: ``if S == T: ...`` or ``if S != T: ...`` * Multiplying a point by a scalar: ``R = S*k`` * In-place multiplication by a scalar: ``T *= k`` :ivar curve: The **canonical** name of the curve as defined in the `ECC table`_. :vartype curve: string :ivar x: The affine X-coordinate of the ECC point :vartype x: integer :ivar y: The affine Y-coordinate of the ECC point :vartype y: integer :ivar xy: The tuple with affine X- and Y- coordinates r'c Cs2zt||_Wn$tk r2tdt|YnX|jj|_|jjtj krTtd| }t ||}t ||}t ||kst ||krtd|jj j}|jj j}t|_z|jj} Wntk rt} YnX||jt|t|t|| } | r| dkrtdtd| t|j||_dS)NUnknown curve name %sz)EccPoint cannot be created for Curve25519Incorrect coordinate length)The EC point does not belong to the curve(Error %d while instantiating an EC point)_curves_curveKeyErrorrHstr canonicalrQr;r r size_in_bytesrlenrawlib new_point free_pointr_pointcontextrLAttributeErrorr address_ofrrr) r1xyrQ modulus_bytesxbybrd free_funcrgresultr"r"r#__init__s<         zEccPoint.__init__cCsX|jjj}|jjj}t|_||j|j}|rBtd|t |j||_|SNz"Error %d while cloning an EC point r]rcclonererrfrirLrHrr1pointrtrorpr"r"r#sets    z EccPoint.setcCs2t|tsdS|jjj}d||j|jkSNFr) isinstancerOr]rccmprfrL)r1rvcmp_funcr"r"r#__eq__s  zEccPoint.__eq__cCs ||k Sr.r")r1rvr"r"r#__ne__szEccPoint.__ne__cCs4|jjj}|}||j}|r0td||S)Nz$Error %d while inverting an EC point)r]rcnegcopyrfrLrH)r1Zneg_funcnprpr"r"r#__neg__s   zEccPoint.__neg__cCs|j\}}t|||j}|SzReturn a copy of this point.)xyrOrQ)r1rjrkrr"r"r#rs z EccPoint.copycCs |jjr|jdkS|jdkSdS),``True`` if this is the *point-at-infinity*.r)rrN)r]rPrjrr4r"r"r#is_point_at_infinitys zEccPoint.is_point_at_infinitycCs(|jjrtdd|jStdd|jSdS)-Return the *point-at-infinity* for the curve.rr N)r]rPrOrQr4r"r"r#point_at_infinityszEccPoint.point_at_infinitycCs |jdS)Nrrr4r"r"r#rjsz EccPoint.xcCs |jdS)Nr rr4r"r"r#rksz EccPoint.ycCsj|}t|}t|}|jjj}|t|t|t||j}|rRt d|t t |t t |fS)Nz#Error %d while encoding an EC point) ra bytearrayr]rcget_xyrrrfrLrHr r)r1rlrmrnrrpr"r"r#rs  z EccPoint.xycCs|ddSz"Size of each coordinate, in bytes.rr size_in_bitsr4r"r"r#raszEccPoint.size_in_bytescCs|jjSz!Size of each coordinate, in bits.r]Z modulus_bitsr4r"r"r#rszEccPoint.size_in_bitscCs,|jjj}||j}|r(td||S)zuDouble this point (in-place operation). Returns: This same object (to enable chaining). z#Error %d while doubling an EC point)r]rcdoublerfrLrH)r1Z double_funcrpr"r"r#rs   zEccPoint.doublecCsD|jjj}||j|j}|r@|dkr4tdtd||S)zAdd a second point to this onez#EC points are not on the same curvez#Error %d while adding two EC points)r]rcaddrfrLrH)r1rvZadd_funcrpr"r"r#__iadd__'s  zEccPoint.__iadd__cCs|}||7}|S)z8Return a new point, the addition of this one and anotherr)r1rvrr"r"r#__add__2szEccPoint.__add__cCs^|jjj}|dkrtdt|}||jt|tt |t t d}|rZtd||SzMultiply this point by a scalarrz?Scalar multiplication is only defined for non-negative integers@z%Error %d during scalar multiplication r]rcscalarrHrrfrLrrrbr r r1rZ scalar_funcZsbrpr"r"r#__imul__9s     zEccPoint.__imul__cCs|}||9}|Sz2Return a new point, the scalar product of this onerr1rrr"r"r#__mul__HszEccPoint.__mul__cCs ||Sr.rr1Z left_handr"r"r#__rmul__OszEccPoint.__rmul__N)r')rrr__doc__rqrwr|r}rrrrpropertyrjrkrrarrrrrrrr"r"r"r#rOs. )     rOc@steZdZdZddZddZddZdd Zd d Zd d Z e ddZ ddZ ddZ ddZddZddZdS)rMaA class to model a point on an Elliptic Curve, where only the X-coordinate is exposed. The class supports operators for: * Multiplying a point by a scalar: ``R = S*k`` * In-place multiplication by a scalar: ``T *= k`` :ivar curve: The **canonical** name of the curve as defined in the `ECC table`_. :vartype curve: string :ivar x: The affine X-coordinate of the ECC point :vartype x: integer c Cs2zt||_Wn$tk r2tdt|YnX|jj|_|jjtj tj fkrZtd|jj j }|jj j }t|_z|jj}Wntk rt}YnX|}|dkrt}n"tt||}t||krtdt|_||j|t||}|dkr td|rtd|t|j||_dS)NrWz5EccXPoint can only be created for Curve25519/Curve448rXrYrZr[)r\r]r^rHr_r`rQr;r r r!rcrdrerrfrgrLrhrrarrrbrirr) r1rjrQrdrorgrlrmrpr"r"r#rqcs>        zEccXPoint.__init__cCsX|jjj}|jjj}t|_||j|j}|rBtd|t |j||_|Srrrsrur"r"r#rws    z EccXPoint.setcCs>t|tsdS|jjj}|j}|j}|||}d|kSrx)ryrMr]rcrzrfrL)r1rvr{p1p2resr"r"r#r|s     zEccXPoint.__eq__cCs4z |j}Wntk r&|YSXt||jSr)rjrHrrMrQ)r1rjr"r"r#rs  zEccXPoint.copycCs&z |j}Wntk r YdSXdS)rTF)rjrH)r1rTr"r"r#rs  zEccXPoint.is_point_at_infinitycCs td|jS)rN)rMrQr4r"r"r#rszEccXPoint.point_at_infinitycCs`|}t|}|jjj}|t|t||j}|dkrDt d|rTt d|t t |S)Nz)No X coordinate for the point at infinityz'Error %d while getting X of an EC point) rarr]rcget_xrrrfrLrHr r)r1rlrmrrpr"r"r#rjs  z EccXPoint.xcCs|ddSrrr4r"r"r#raszEccXPoint.size_in_bytescCs|jjSrrr4r"r"r#rszEccXPoint.size_in_bitscCs^|jjj}|dkrtdt|}||jt|tt |t t d}|rZtd||Srrrr"r"r#rs     zEccXPoint.__imul__cCs|}||9}|Srrrr"r"r#rszEccXPoint.__mul__cCs ||Sr.rrr"r"r#rszEccXPoint.__rmul__N)rrrrrqrwr|rrrrrjrarrrrr"r"r"r#rMSs/     rM)rUZCryptodome.Util.numberrrZCryptodome.Util._raw_apirrrrrr ZCryptodome.Math.Numbersr ZCryptodome.Random.randomr objectr r$r\rOrMr"r"r"r#s    fQ