o e,@sddlmZddlZddlmZmZmZddlmZm Z ddl m Z ddl m Z ejr1ddlmZd(d d Zd)ddZd*ddZd+ddZd,ddZd-dd Zd.d$d%ZGd&dde jZGd'd"d"e jZdS)/) annotationsN)InvalidSignatureUnsupportedAlgorithm_Reasons)_calculate_digest_and_algorithm_evp_pkey_derive) serialization)ec)Backendsignature_algorithm"ec.EllipticCurveSignatureAlgorithmreturnNonecCst|tjs tdtjdS)Nz/Unsupported elliptic curve signature algorithm.) isinstancer ZECDSArrZ UNSUPPORTED_PUBLIC_KEY_ALGORITHM)r rWD:\Projects\ConvertPro\env\Lib\site-packages\cryptography/hazmat/backends/openssl/ec.py_check_signature_algorithms rbackendr strcCs|j|}|||jjk|j|}||jjkrtd|jjs/|j |dkr/td|j |}|||jjk|j | d}|S)Nz@ECDSA keys with explicit parameters are unsupported at this timerascii) _libEC_KEY_get0_groupopenssl_assert_ffiNULLEC_GROUP_get_curve_nameZ NID_undef ValueErrorZCRYPTOGRAPHY_IS_LIBRESSLZEC_GROUP_get_asn1_flagZ OBJ_nid2snstringdecode)rZec_keygroupnidZ curve_namesnrrr_ec_key_curve_sn#s"    r"cCs|j||jjdS)z Set the named curve flag on the EC_KEY. This causes OpenSSL to serialize EC keys along with their curve OID which makes deserialization easier. N)rZEC_KEY_set_asn1_flagZOPENSSL_EC_NAMED_CURVE)rec_cdatarrr_mark_asn1_named_ec_curveAsr$cCsV|j|}|||jjk|j|}|||jjk|j||r)tddS)Nz;Cannot load an EC public key where the point is at infinity)rEC_KEY_get0_public_keyrrrrZEC_POINT_is_at_infinityr)rr#pointrrrr_check_key_infinityMs  r'r!ec.EllipticCurvecCs0ztj|WStyt|dtjw)Nz" is not a supported elliptic curve)r Z _CURVE_TYPESKeyErrorrrZUNSUPPORTED_ELLIPTIC_CURVE)rr!rrr_sn_to_elliptic_curveXs r* private_key_EllipticCurvePrivateKeydatabytescCsz|j|j}||dk|jd|}|jdd}|jd|t||||j}||dk|j|d|dS)Nrzunsigned char[]zunsigned int[]) rZ ECDSA_size_ec_keyrrnewZ ECDSA_signlenbuffer)rr+r-max_sizeZsigbufZ siglen_ptrresrrr_ecdsa_sig_signbsr6 public_key_EllipticCurvePublicKey signaturecCs8|jd|t||t||j}|dkr|tdS)Nrr/)rZ ECDSA_verifyr2r0Z_consume_errorsr)rr7r9r-r5rrr_ecdsa_sig_verifyqsr:c@sdeZdZd&ddZed'ddZed(d d Zd)ddZd*ddZd+ddZ d,ddZ d-d#d$Z d%S).r,rr cC@||_||_||_t||}t|||_t||t||dSN_backendr0 _evp_pkeyr"r*_curver$r'selfrZ ec_key_cdataevp_pkeyr!rrr__init__   z!_EllipticCurvePrivateKey.__init__r r(cC|jSr<r@rBrrrcurvez_EllipticCurvePrivateKey.curveintcC|jjSr<rIkey_sizerHrrrrNz!_EllipticCurvePrivateKey.key_size algorithmec.ECDHpeer_public_keyec.EllipticCurvePublicKeyr.cCsD|j||jstdtj|jj|jjkrtdt|j|j |S)Nz1This backend does not support the ECDH algorithm.z2peer_public_key and self are not on the same curve) r>Z+elliptic_curve_exchange_algorithm_supportedrIrrZUNSUPPORTED_EXCHANGE_ALGORITHMnamerrr?)rBrPrRrrrexchangesz!_EllipticCurvePrivateKey.exchangecCs|jj|j}|j||jjjk|jj|}|j|}|jj |j}|j||jjjk|jj ||}|j|dk|j |}t |j||SNr/) r>rrr0rrrrZ_ec_key_new_by_curve_nidr%ZEC_KEY_set_public_keyZ_ec_cdata_to_evp_pkeyr8)rBrZ curve_nidZ public_ec_keyr&r5rCrrrr7s  z#_EllipticCurvePrivateKey.public_keyec.EllipticCurvePrivateNumberscCs2|jj|j}|j|}tj||dS)N) private_valuepublic_numbers) r>rZEC_KEY_get0_private_keyr0 _bn_to_intr ZEllipticCurvePrivateNumbersr7rY)rBZbnrXrrrprivate_numberss   z(_EllipticCurvePrivateKey.private_numbersencodingserialization.Encodingformatserialization.PrivateFormatencryption_algorithm(serialization.KeySerializationEncryptioncCs|j|||||j|jSr<)r>Z_private_key_bytesr?r0)rBr\r^r`rrr private_bytessz&_EllipticCurvePrivateKey.private_bytesr-r r cCs&t|t||j\}}t|j||Sr<)rrrPr6r>)rBr-r _rrrsigns z_EllipticCurvePrivateKey.signNrr r r(r rK)rPrQrRrSr r.)r rS)r rW)r\r]r^r_r`rar r.)r-r.r r r r.) __name__ __module__ __qualname__rDpropertyrIrNrUr7r[rbrdrrrrr,s       c@sdeZdZd%ddZed&ddZed'd d Zd(ddZd)ddZd*ddZ d+ddZ d,d"d#Z d$S)-r8rr cCr;r<r=rArrrrDrEz _EllipticCurvePublicKey.__init__r r(cCrFr<rGrHrrrrIrJz_EllipticCurvePublicKey.curverKcCrLr<rMrHrrrrNrOz _EllipticCurvePublicKey.key_sizeotherobjectboolcCs&t|tstS|jj|j|jdkSrV)rr8NotImplementedr>rZ EVP_PKEY_cmpr?)rBrlrrr__eq__s z_EllipticCurvePublicKey.__eq__ec.EllipticCurvePublicNumbersc Cs|jj|j}|j||jjjk|jj|j}|j||jjjk|j5}|jj |}|jj |}|jj |||||}|j|dk|j |}|j |}Wdn1scwYt j |||jdS)Nr/)xyrI)r>rrr0rrrr% _tmp_bn_ctxZ BN_CTX_getZEC_POINT_get_affine_coordinatesrZr ZEllipticCurvePublicNumbersr@) rBrr&bn_ctxZbn_xZbn_yr5rrrsrrrrYs    z&_EllipticCurvePublicKey.public_numbersr^serialization.PublicFormatr.c Cs$|tjjur |jjj}n |tjjusJ|jjj}|jj|j }|j ||jj j k|jj |j }|j ||jj j k|j;}|jj||||jj j d|}|j |dk|jj d|}|jj||||||}|j ||kWdn1swY|jj |ddS)Nrzchar[])r PublicFormatCompressedPointr>rZPOINT_CONVERSION_COMPRESSEDUncompressedPointZPOINT_CONVERSION_UNCOMPRESSEDrr0rrrr%rtZEC_POINT_point2octr1r3) rBr^ conversionrr&rubuflenbufr5rrr _encode_point s(      z%_EllipticCurvePublicKey._encode_pointr\r]cCsl|tjjus|tjjus|tjjur+|tjjus"|tjjtjjfvr&td||S|j ||||j dS)NzKX962 encoding must be used with CompressedPoint or UncompressedPoint format) rZEncodingZX962rwrxryrr}r>Z_public_key_bytesr?)rBr\r^rrr public_bytes$s     z$_EllipticCurvePublicKey.public_bytesr9r-r r rcCs,t|t||j\}}t|j|||dSr<)rrrPr:r>)rBr9r-r rcrrrverify=s z_EllipticCurvePublicKey.verifyNrerfrg)rlrmr rn)r rq)r^rvr r.)r\r]r^rvr r.)r9r.r-r.r r r r) rhrirjrDrkrIrNrprYr}r~rrrrrr8s      )r r r r)rr r rre)rr r r)rr r!rr r()rr r+r,r-r.r r.) rr r7r8r9r.r-r.r r) __future__rtypingZcryptography.exceptionsrrrZ*cryptography.hazmat.backends.openssl.utilsrrZcryptography.hazmat.primitivesrZ)cryptography.hazmat.primitives.asymmetricr TYPE_CHECKINGZ,cryptography.hazmat.backends.openssl.backendr rr"r$r'r*r6r:ZEllipticCurvePrivateKeyr,ZEllipticCurvePublicKeyr8rrrrs"       \