a  `6&@sddlmZmZmZddlZddlZddlZddlmZddl m Z ddl m Z Gddde ZeejGdd d e ZeejGd d d e ZeejGd d d e ZeejGdddeZeejGddde ZeZeeGddde ZeeGddde ZeeGddde ZeeGddde ZeeGddde ZeeGddde ZeeGddde ZeeGd d!d!e ZeeGd"d#d#e Z eeGd$d%d%e Z!eeGd&d'd'e Z"eeGd(d)d)e Z#eeGd*d+d+e Z$eeGd,d-d-e Z%eeGd.d/d/e Z&eeGd0d1d1e Z'eeGd2d3d3e Z(eeGd4d5d5e Z)eeGd6d7d7e Z*e'e$e'e&e$e#e"e%e!e eeeeeeeee(e)e*d8Z+eeGd9d:d:e Z,dGd;d<Z-dHd=d>Z.Gd?d@d@e Z/GdAdBdBe Z0GdCdDdDe Z1ej'e'ej&e&ej%e%ej$e$ej#e#ej"e"ej2e(ej3e)ej4e*ej!e!ejeej e ejeejeejeejeejeejeejeiZ5dEdFZ6dS)I)absolute_importdivisionprint_functionN)utils)ObjectIdentifier) _get_backendc@seZdZedZedZedZedZedZedZ edZ edZ ed Z ed Z ed Zed Zed ZedZedZedZedZedZedZdS)EllipticCurveOIDz1.2.840.10045.3.1.1z 1.3.132.0.33z 1.3.132.0.10z1.2.840.10045.3.1.7z 1.3.132.0.34z 1.3.132.0.35z1.3.36.3.3.2.8.1.1.7z1.3.36.3.3.2.8.1.1.11z1.3.36.3.3.2.8.1.1.13z 1.3.132.0.1z 1.3.132.0.15z 1.3.132.0.26z 1.3.132.0.27z 1.3.132.0.16z 1.3.132.0.17z 1.3.132.0.36z 1.3.132.0.37z 1.3.132.0.38z 1.3.132.0.39N)__name__ __module__ __qualname__r SECP192R1 SECP224R1 SECP256K1 SECP256R1 SECP384R1 SECP521R1BRAINPOOLP256R1BRAINPOOLP384R1BRAINPOOLP512R1 SECT163K1 SECT163R2 SECT233K1 SECT233R1 SECT283K1 SECT283R1 SECT409K1 SECT409R1 SECT571K1 SECT571R1rrN/usr/lib/python3/dist-packages/cryptography/hazmat/primitives/asymmetric/ec.pyrs&rc@s(eZdZejddZejddZdS) EllipticCurvecCsdS)z8 The name of the curve. e.g. secp256r1. Nrselfrrr name)szEllipticCurve.namecCsdSz< Bit size of a secret scalar for the curve. Nrr"rrr key_size/szEllipticCurve.key_sizeN)r r r abcabstractpropertyr$r&rrrr r!'s r!c@seZdZejddZdS)EllipticCurveSignatureAlgorithmcCsdS)z@ The digest algorithm used with this signature. Nrr"rrr algorithm8sz)EllipticCurveSignatureAlgorithm.algorithmN)r r r r'r(r*rrrr r)6sr)c@s`eZdZejddZejddZejddZejddZ ejd d Z ejd d Z d S)EllipticCurvePrivateKeycCsdS)zN Returns an AsymmetricSignatureContext used for signing data. Nr)r#signature_algorithmrrr signerAszEllipticCurvePrivateKey.signercCsdS)z} Performs a key exchange operation using the provided algorithm with the provided peer's public key. Nr)r#r*Zpeer_public_keyrrr exchangeGsz EllipticCurvePrivateKey.exchangecCsdS)zB The EllipticCurvePublicKey for this private key. Nrr"rrr public_keyNsz"EllipticCurvePrivateKey.public_keycCsdSz8 The EllipticCurve that this key is on. Nrr"rrr curveTszEllipticCurvePrivateKey.curvecCsdSr%rr"rrr r&Zsz EllipticCurvePrivateKey.key_sizecCsdS)z Signs the data Nr)r#datar,rrr sign`szEllipticCurvePrivateKey.signN) r r r r'abstractmethodr-r.r/r(r1r&r3rrrr r+?s     r+c@s(eZdZejddZejddZdS)(EllipticCurvePrivateKeyWithSerializationcCsdS)z9 Returns an EllipticCurvePrivateNumbers. Nrr"rrr private_numbersisz8EllipticCurvePrivateKeyWithSerialization.private_numberscCsdSz6 Returns the key serialized as bytes. Nr)r#encodingformatZencryption_algorithmrrr private_bytesosz6EllipticCurvePrivateKeyWithSerialization.private_bytesN)r r r r'r4r6r:rrrr r5gs r5c@sleZdZejddZejddZejddZejddZ ejd d Z ejd d Z e d dZ dS)EllipticCurvePublicKeycCsdS)zQ Returns an AsymmetricVerificationContext used for signing data. Nr)r# signaturer,rrr verifierxszEllipticCurvePublicKey.verifiercCsdSr0rr"rrr r1~szEllipticCurvePublicKey.curvecCsdSr%rr"rrr r&szEllipticCurvePublicKey.key_sizecCsdS)z8 Returns an EllipticCurvePublicNumbers. Nrr"rrr public_numberssz%EllipticCurvePublicKey.public_numberscCsdSr7r)r#r8r9rrr public_bytessz#EllipticCurvePublicKey.public_bytescCsdS)z5 Verifies the signature of the data. Nr)r#r<r2r,rrr verifyszEllipticCurvePublicKey.verifycCsbtd|t|tstdt|dkr2tdt|ddvrJtdddl m }| ||S)Nr2'curve must be an EllipticCurve instancerz%data must not be an empty byte string)%Unsupported elliptic curve point type)backend) r _check_bytes isinstancer! TypeErrorlen ValueErrorsixZ indexbytesZ,cryptography.hazmat.backends.openssl.backendrFZ load_elliptic_curve_public_bytes)clsr1r2rFrrr from_encoded_points    z)EllipticCurvePublicKey.from_encoded_pointN)r r r r'r4r=r(r1r&r>r?r@ classmethodrNrrrr r;vs      r;c@seZdZdZdZdS)r sect571r1i:Nr r r r$r&rrrr rsrc@seZdZdZdZdS)r sect409r1NrQrrrr rsrc@seZdZdZdZdS)r sect283r1NrQrrrr rsrc@seZdZdZdZdS)r sect233r1NrQrrrr rsrc@seZdZdZdZdS)r sect163r2NrQrrrr rsrc@seZdZdZdZdS)r sect571k1i;NrQrrrr rsrc@seZdZdZdZdS)r sect409k1rSNrQrrrr rsrc@seZdZdZdZdS)r sect283k1rUNrQrrrr rsrc@seZdZdZdZdS)r sect233k1rWNrQrrrr rsrc@seZdZdZdZdS)r sect163k1rYNrQrrrr rsrc@seZdZdZdZdS)r secp521r1i NrQrrrr rsrc@seZdZdZdZdS)r secp384r1NrQrrrr rsrc@seZdZdZdZdS)r secp256r1NrQrrrr rsrc@seZdZdZdZdS)r secp256k1rcNrQrrrr rsrc@seZdZdZdZdS)r secp224r1NrQrrrr r sr c@seZdZdZdZdS)r secp192r1NrQrrrr r sr c@seZdZdZdZdS)BrainpoolP256R1brainpoolP256r1rcNrQrrrr risric@seZdZdZdZdS)BrainpoolP384R1brainpoolP384r1raNrQrrrr rksrkc@seZdZdZdZdS)BrainpoolP512R1brainpoolP512r1iNrQrrrr rmsrm)Z prime192v1Z prime256v1rgrerbr`r_rdr^r]r\r[rZrXrVrTrRrPrjrlrnc@seZdZddZedZdS)ECDSAcCs ||_dSN) _algorithm)r#r*rrr __init__>szECDSA.__init__rqN)r r r rrrread_only_propertyr*rrrr ro<srocCst|}||Srp)rZ#generate_elliptic_curve_private_key)r1rFrrr generate_private_keyDsrtcCsJt|}t|tjstd|dkr,tdt|ts>td|||S)Nz&private_value must be an integer type.rz)private_value must be a positive integer./curve must provide the EllipticCurve interface.)rrHrL integer_typesrIrKr!Z!derive_elliptic_curve_private_key) private_valuer1rFrrr derive_private_keyIs  rxc@speZdZddZdddZddZedd Ze d Z e d Z e d Z d dZ ddZddZddZdS)EllipticCurvePublicNumberscCsHt|tjrt|tjs tdt|ts2td||_||_||_dS)Nzx and y must be integers.ru)rHrLrvrIr!_y_x_curve)r#xyr1rrr rrXs z#EllipticCurvePublicNumbers.__init__NcCst|}||Srp)rZ"load_elliptic_curve_public_numbersr#rFrrr r/esz%EllipticCurvePublicNumbers.public_keycCsBtjdtjdd|jjdd}dt|j|t|j|S)Nzencode_point has been deprecated on EllipticCurvePublicNumbers and will be removed in a future version. Please use EllipticCurvePublicKey.public_bytes to obtain both compressed and uncompressed point encoding.rB stacklevel) warningswarnrPersistentlyDeprecated2019r1r&Z int_to_bytesr}r~)r# byte_lengthrrr encode_pointis   z'EllipticCurvePublicNumbers.encode_pointcCst|tstdtjdtjdd|dr|jdd}t |d|dkrt |d|dd }t ||ddd }||||St d nt d dS) NrAzSupport for unsafe construction of public numbers from encoded data will be removed in a future version. Please use EllipticCurvePublicKey.from_encoded_pointrBrrrrZbigz(Invalid elliptic curve point data lengthrE) rHr!rIrrrr startswithr&rJZint_from_bytesrK)rMr1r2rr}r~rrr rNzs    z-EllipticCurvePublicNumbers.from_encoded_pointr|r{rzcCsFt|tstS|j|jkoD|j|jkoD|jj|jjkoD|jj|jjkSrp)rHryNotImplementedr}r~r1r$r&r#otherrrr __eq__s   z!EllipticCurvePublicNumbers.__eq__cCs ||k Srprrrrr __ne__sz!EllipticCurvePublicNumbers.__ne__cCst|j|j|jj|jjfSrp)hashr}r~r1r$r&r"rrr __hash__sz#EllipticCurvePublicNumbers.__hash__cCs d|S)NzC)r9r"rrr __repr__sz#EllipticCurvePublicNumbers.__repr__)N)r r r rrr/rrOrNrrsr1r}r~rrrrrrrr ryWs      ryc@sJeZdZddZdddZedZedZdd Z d d Z d d Z dS)EllipticCurvePrivateNumberscCs6t|tjstdt|ts&td||_||_dS)Nz!private_value must be an integer.z>public_numbers must be an EllipticCurvePublicNumbers instance.)rHrLrvrIry_private_value_public_numbers)r#rwr>rrr rrs  z$EllipticCurvePrivateNumbers.__init__NcCst|}||Srp)rZ#load_elliptic_curve_private_numbersrrrr private_keysz'EllipticCurvePrivateNumbers.private_keyrrcCs&t|tstS|j|jko$|j|jkSrp)rHrrrwr>rrrr rs    z"EllipticCurvePrivateNumbers.__eq__cCs ||k Srprrrrr rsz"EllipticCurvePrivateNumbers.__ne__cCst|j|jfSrp)rrwr>r"rrr rsz$EllipticCurvePrivateNumbers.__hash__)N) r r r rrrrrsrwr>rrrrrrr rs    rc@s eZdZdS)ECDHN)r r r rrrr rsrcCs*z t|WSty$tdYn0dS)NzCThe provided object identifier has no matching elliptic curve class) _OID_TO_CURVEKeyError LookupError)Zoidrrr get_curve_for_oids   r)N)N)7Z __future__rrrr'rrLZ cryptographyrZcryptography.hazmat._oidrZcryptography.hazmat.backendsrobjectrZ add_metaclassABCMetar!r)r+r5r;Z'EllipticCurvePublicKeyWithSerializationZregister_interfacerrrrrrrrrrrrrrr r rirkrmZ _CURVE_TYPESrortrxryrrrrrrrrrrr s      '  7  X%