B ˆufq(ã@shddlmZddlZddlmZmZmZddlmZddl m Z m Z ej rVddl mZGdd„dƒZdS) é)Ú annotationsN)Ú InvalidTagÚUnsupportedAlgorithmÚ_Reasons)Úciphers)Ú algorithmsÚmodes)ÚBackendc@sŒeZdZdZdZdZddddœdd „Zd d d œd d „Zd d ddœdd„Zd dœdd„Z d d dœdd„Z d dd œdd„Z e ddœdd„ƒZ dS)Ú_CipherContextéri r ÚintÚNone)ÚbackendÚ operationÚreturncCsR||_||_||_||_d|_t|jtjƒr<|jjd|_ nd|_ |jj   ¡}|jj   ||jj j¡}|jj}y|t|ƒt|ƒf}Wn4tk r¸td |j|r¨|jn|¡tjƒ‚YnX||j||ƒ}||jj jkr"d|j›d} |dk r| d|j›d7} | d |j ¡¡7} t| tjƒ‚t|tjƒrB|jj  |j¡} njt|tjƒrb|jj  |j¡} nJt|tjƒr‚|jj  |j ¡} n*t|t!j"ƒr¢|jj  |j ¡} n |jj j} |jj  #|||jj j|jj j|jj j|¡} |j $| d k¡|jj  %|t&|j'ƒ¡} |j $| d k¡t|tj(ƒr”|jj  )||jj j*t&| ƒ|jj j¡} |j $| d k¡|j+dk r”|jj  )||jj j,t&|j+ƒ|j+¡} |j $| d k¡|j+|_|jj  #||jj j|jj j|jj  |j'¡| |¡} |j -¡} |jj } | d kr$| j.sþ| d  /| j0| j1¡s| j2r$| d  /| j3| j4¡r$t5d ƒ‚|jj$| d k| d |jj  6|d ¡||_7dS) Nér z6cipher {} in {} mode is not supported by this backend.zcipher ú zin z mode z_is not supported by this backend (Your version of OpenSSL may be too old. Current version: {}.)rz+In XTS mode duplicated keys are not allowed)Úerrors)8Ú_backendZ_cipherÚ_modeÚ _operationÚ_tagÚ isinstancerZBlockCipherAlgorithmÚ block_sizeÚ_block_size_bytesÚ_libZEVP_CIPHER_CTX_newÚ_ffiÚgcZEVP_CIPHER_CTX_freeZ_cipher_registryÚtypeÚKeyErrorrÚformatÚnamerZUNSUPPORTED_CIPHERÚNULLZopenssl_version_textrZModeWithInitializationVectorÚ from_bufferZinitialization_vectorZ ModeWithTweakZtweakZ ModeWithNonceÚnoncerZChaCha20ZEVP_CipherInit_exÚopenssl_assertZEVP_CIPHER_CTX_set_key_lengthÚlenÚkeyÚGCMÚEVP_CIPHER_CTX_ctrlZEVP_CTRL_AEAD_SET_IVLENÚtagÚEVP_CTRL_AEAD_SET_TAGÚ_consume_errorsZCRYPTOGRAPHY_IS_LIBRESSLÚ_lib_reason_matchÚ ERR_LIB_EVPZEVP_R_XTS_DUPLICATED_KEYSÚCryptography_HAS_PROVIDERSÚ ERR_LIB_PROVZPROV_R_XTS_DUPLICATED_KEYSÚ ValueErrorZEVP_CIPHER_CTX_set_paddingÚ_ctx)ÚselfrÚcipherÚmoderÚctxÚregistryÚadapterZ evp_cipherÚmsgZiv_nonceÚresrÚlib©r<ún/home/ankuromar296_gmail_com/myenv/lib/python3.7/site-packages/cryptography/hazmat/backends/openssl/ciphers.pyÚ__init__s¨         z_CipherContext.__init__Úbytes)ÚdatarcCs2tt|ƒ|jdƒ}| ||¡}t|d|…ƒS)Nr )Ú bytearrayr&rÚ update_intor?)r3r@ÚbufÚnr<r<r=Úupdates z_CipherContext.update)r@rCrc Cs t|ƒ}t|ƒ||jdkr:td t|ƒ|jd¡ƒ‚d}d}|jj d¡}|jjj|dd}|jj |¡}x”||kr||} ||} t|j ||ƒ} |jj   |j | || | ¡} | dkrÞt |jtjƒrÞ|j ¡tdƒ‚n|j | dk¡|| 7}||d7}qrW|S)Nr z1buffer must be at least {} bytes for this payloadrzint *T)Zrequire_writablezeIn XTS mode you must supply at least a full block in the first update call. For AES this is 16 bytes.)r&rr1r rrÚnewr#ÚminÚ_MAX_CHUNK_SIZErÚEVP_CipherUpdater2rrrZXTSr,r%) r3r@rCZtotal_data_lenZdata_processedZ total_outÚoutlenZ baseoutbufZ baseinbufZoutbufZinbufZinlenr:r<r<r=rB”s0  z_CipherContext.update_into)rcCs˜|j|jkr,t|jtjƒr,|jdkr,tdƒ‚|jj   d|j ¡}|jj   d¡}|jj   |j||¡}|dkrè|j ¡}|sˆt|jtjƒrˆt‚|jj }|jj|d |j|j¡pØ|jrÄ|d |j|j¡pØ|joØ|dj|jk|dtdƒ‚t|jtjƒr^|j|jkr^|jj   d|j ¡}|jj  |j|jj j|j |¡}|j |dk¡|jj  |¡dd…|_ |jj  !|j¡}|j |dk¡|jj  |¡d|d…S)Nz4Authentication tag must be provided when decrypting.zunsigned char[]zint *r)rzFThe length of the provided data is not a multiple of the block length.r )"rÚ_DECRYPTrrrZModeWithAuthenticationTagr*r1rrrFrrZEVP_CipherFinal_exr2r,r(rr%r-r.Z'EVP_R_DATA_NOT_MULTIPLE_OF_BLOCK_LENGTHr/r0ZPROV_R_WRONG_FINAL_BLOCK_LENGTHZCRYPTOGRAPHY_IS_BORINGSSLÚreasonZ*CIPHER_R_DATA_NOT_MULTIPLE_OF_BLOCK_LENGTHÚ_ENCRYPTr)ZEVP_CTRL_AEAD_GET_TAGÚbufferrZEVP_CIPHER_CTX_reset)r3rCrJr:rr;Ztag_bufr<r<r=Úfinalize¸sR    z_CipherContext.finalize)r*rcCs€t|ƒ}||jjkr(td |jj¡ƒ‚n||jkrBtd |j¡ƒ‚|jj |j |jjj t|ƒ|¡}|j  |dk¡||_ |  ¡S)Nz.Authentication tag must be {} bytes or longer.z0Authentication tag cannot be more than {} bytes.r)r&rZ_min_tag_lengthr1r rrrr)r2r+r%rrO)r3r*Ztag_lenr:r<r<r=Úfinalize_with_tagøs   z _CipherContext.finalize_with_tagcCsN|jj d¡}|jj |j|jjj||jj |¡t|ƒ¡}|j  |dk¡dS)Nzint *r) rrrFrrIr2r"r#r&r%)r3r@rJr:r<r<r=Úauthenticate_additional_data s  z+_CipherContext.authenticate_additional_dataz bytes | NonecCs|jS)N)r)r3r<r<r=r*sz_CipherContext.tagN)Ú__name__Ú __module__Ú __qualname__rMrKrHr>rErBrOrPrQÚpropertyr*r<r<r<r=r sy$@ r )Ú __future__rÚtypingZcryptography.exceptionsrrrZcryptography.hazmat.primitivesrZ&cryptography.hazmat.primitives.ciphersrrÚ TYPE_CHECKINGZ,cryptography.hazmat.backends.openssl.backendr r r<r<r<r=Ús