o c/@sddlZddlmZmZddlmZddlmZejr!ddl m Z ddd Z dd d Z Gdd d ej Zd efddZGdddejZGdddejZdS)N)UnsupportedAlgorithm_Reasons) serialization)dh)BackendbackendrcCs|j}|j}||}|||jk|||j}|jrD|d}| ||j||j| |d}| ||j||j}||dk|SN BIGNUM **r) _lib_ffiZ DHparams_dupopenssl_assertNULLgcZDH_freeZCRYPTOGRAPHY_IS_LIBRESSLnew DH_get0_pqgBN_dupZ DH_set0_pqg)dh_cdatarlibffi param_cdataqZq_dupresrKusr/lib/python3.10/site-packages/cryptography/hazmat/backends/openssl/dh.py_dh_params_dups  rreturn _DHParameterscCst||}t||SN)rr)rrrrrr_dh_cdata_to_parameters"s  rc@sPeZdZdddZdejfddZdejfdd Zd e j d e j de fd d Z dS)rrrcCs||_||_dSr)_backend _dh_cdata)selfrrrrr__init__(s z_DHParameters.__init__rcCs|jjd}|jjd}|jjd}|jj|j||||j|d|jjjk|j|d|jjjk|d|jjjkrFd}n|j|d}t j |j|d|j|d|dS)Nr rpgr) r r rr rr!r r _bn_to_intrDHParameterNumbers)r"r%r&rq_valrrrparameter_numbers,sz_DHParameters.parameter_numberscCs |j|Sr)r Zgenerate_dh_private_keyr"rrrgenerate_private_key>s z"_DHParameters.generate_private_keyencodingformatcCs&|tjjur td|tjjurtd|jj d}|jj |j |jjj ||jjj |d|jjj kr@|jj js@tdtj|tjjur[|d|jjj krU|jj j}n%|jj j}n|tjjurv|d|jjj krp|jj j}n |jj j}ntd|j}|||j }|j|dk|j|S)Nz!OpenSSH encoding is not supportedz%Only PKCS3 serialization is supportedr r'DH X9.42 serialization is not supportedz/encoding must be an item from the Encoding enumr )rEncodingZOpenSSH TypeErrorParameterFormatZPKCS3 ValueErrorr r rr rr!rCryptography_HAS_EVP_PKEY_DHXrrUNSUPPORTED_SERIALIZATIONZPEMZPEM_write_bio_DHxparamsZPEM_write_bio_DHparamsZDERZCryptography_i2d_DHxparams_bioZi2d_DHparams_bioZ_create_mem_bio_gcr Z _read_mem_bio)r"r-r.rZ write_biobiorrrrparameter_bytesAs8           z_DHParameters.parameter_bytesNrr)__name__ __module__ __qualname__r#rr(r* DHPrivateKeyr,rr0r2bytesr7rrrrr's cCsL|jd}|j|||jj|jj||d|jjk|j|dS)Nr r)r rr rrr Z BN_num_bits)rrr%rrr_get_dh_num_bitsls r>c@seZdZdddZedefddZdejfdd Z d ej de fd d Z d e ddfddZdej fddZdejfddZdejdejdejde fddZdS) _DHPrivateKeyrrcCs&||_||_||_|jj||_dSr)r r! _evp_pkeyr ZDH_size_key_size_bytesr"rrevp_pkeyrrrr#tz_DHPrivateKey.__init__rcCt|j|jSr)r>r r!r+rrrkey_sizezsz_DHPrivateKey.key_sizecCsT|jjd}|jjd}|jjd}|jj|j||||j|d|jjjk|j|d|jjjk|d|jjjkrFd}n|j|d}|jjd}|jjd}|jj |j|||j|d|jjjk|j|d|jjjkt j t j t j |j|d|j|d|d|j|dd|j|ddS)Nr rr$r*y)public_numbersx)r r rr rr!r rr' DH_get0_keyrDHPrivateNumbersDHPublicNumbersr()r"r%r&rr)pub_keyZpriv_keyrrrprivate_numbers~s2z_DHPrivateKey.private_numberspeer_public_keycCsTt|ts td|jj|j|jjj}|j ||jjjk|jj ||jjj }|jj |}|j |dk|jj ||j}||dk|jjd}|jj||jjj|}||dk|j |ddk|jjd|d}|jj|||}|j |dk|jj||ddd}|jt|}|dkrd||}|S)Nz%peer_public_key must be a DHPublicKeyr zsize_t *rzunsigned char[]) isinstance _DHPublicKeyr1r r ZEVP_PKEY_CTX_newr@r rr rZEVP_PKEY_CTX_freeZEVP_PKEY_derive_initZEVP_PKEY_derive_set_peer_exchange_assertrZEVP_PKEY_derivebufferrAlen)r"rPctxrZkeylenbufkeypadrrrexchanges6    z_DHPrivateKey.exchangeokNcCs|s |j}td|dS)NzError computing shared key.)r Z_consume_errors_with_textr3)r"r\Zerrors_with_textrrrrTs z_DHPrivateKey._exchange_assertcCst|j|j}|jjd}|jj|j||jjj|j|d|jjjk|jj |d}|j||jjjk|jj |||jjj}|j|dk|j |}t |j||Sr) rr!r r rr rKrr rZ DH_set0_keyZ_dh_cdata_to_evp_pkeyrS)r"rrNZ pub_key_duprrCrrr public_keys  z_DHPrivateKey.public_keycCrErrr!r r+rrr parametersz_DHPrivateKey.parametersr-r.encryption_algorithmcCs|tjjur td|jjjs6|jjd}|jj |j |jjj ||jjj |d|jjj kr6t dt j|j|||||j|j S)Nz0DH private keys support only PKCS8 serializationr rr/)r PrivateFormatZPKCS8r3r r r4r rrr!rrrr5Z_private_key_bytesr@)r"r-r.rarrrr private_bytess2  z_DHPrivateKey.private_bytesr8)r9r:r;r#propertyintrFrrLrO DHPublicKeyr=r[boolrTr] DHParametersr_rr0rbZKeySerializationEncryptionrcrrrrr?ss$ $r?c@sbeZdZdddZedefddZdejfdd Z dej fd d Z d e j d e jdefddZdS)rSrrcCs&||_||_||_t|j|j|_dSr)r r!r@r>_key_size_bitsrBrrrr#rDz_DHPublicKey.__init__rcCs|jSr)rir+rrrrFsz_DHPublicKey.key_sizecCs|jjd}|jjd}|jjd}|jj|j||||j|d|jjjk|j|d|jjjk|d|jjjkrFd}n|j|d}|jjd}|jj |j||jjj|j|d|jjjkt j t j |j|d|j|d|d|j|ddS)Nr rr$rG) r r rr rr!r rr'rKrrMr()r"r%r&rr)rNrrrrIs,z_DHPublicKey.public_numberscCrErr^r+rrrr_ r`z_DHPublicKey.parametersr-r.cCs|tjjur td|jjjs6|jjd}|jj |j |jjj ||jjj |d|jjj kr6t dt j|j||||jdS)Nz>DH public keys support only SubjectPublicKeyInfo serializationr rr/)r PublicFormatZSubjectPublicKeyInfor3r r r4r rrr!rrrr5Z_public_key_bytesr@)r"r-r.rrrr public_bytes#s(   z_DHPublicKey.public_bytesNr8)r9r:r;r#rdrerFrrMrIrhr_rr0rjr=rkrrrrrSs rSr8)rrrr)typingZcryptography.exceptionsrrZcryptography.hazmat.primitivesrZ)cryptography.hazmat.primitives.asymmetricr TYPE_CHECKINGZ,cryptography.hazmat.backends.openssl.backendrrrrhrrer>r<r?rfrSrrrrs     E