a !fs@s"ddlZddlZddlmZmZddlmZmZddlm Z ddl m Z ddl m Z mZmZddlmZddlmZdd lmZdd lmZmZmZdd lmZdd lmZdd lmZmZddl m!Z!ddl"m#Z#ddl"m$Z$ddl"m%Z%ddl"m&Z&ddl"m'Z'ddl"m(Z(m)Z)ddl"m*Z*ddl+m,Z,dZ-GdddedZ.ddZ/ddZ0dd Z1d!d"Z2d#d$Z3Gd%d&d&Z4Gd'd(d(e4Z5Gd)d*d*e4Z6Gd+d,d,e4Z7Gd-d.d.e4Z8Gd/d0d0e5e.Z9Gd1d2d2e5e.Z:Gd3d4d4e5e.Z;Gd5d6d6e6e.ZGd;d<dd>e7e.Z@Gd?d@d@e7e.ZAGdAdBdBe7e.ZBGdCdDdDe6e.ZCGdEdFdFe6e.ZDGdGdHdHe6e.ZEGdIdJdJe8e.ZFGdKdLdLZGGdMdNdNeGZHGdOdPdPeHe.ZIGdQdRdReHe.ZJGdSdTdTeHe.ZKGdUdVdVeGZLGdWdXdXeLe.ZMGdYdZdZeLe.ZNGd[d\d\eLe.ZOGd]d^d^eGZPGd_d`d`ePe.ZQGdadbdbePe.ZRGdcddddePe.ZSGdedfdfeGZTGdgdhdheTe.ZUGdidjdjeTe.ZVGdkdldleTe.ZWGdmdndneGe.ZXGdodpdpeGe.ZYGdqdrdreYZZGdsdtdteYZ[GdudvdveYZ\Gdwdxdxe4e.Z]GdydzdzZ^Gd{d|d|e^Z_Gd}d~d~e_e.Z`Gddde_e.ZaGddde_e.ZbGddde^ZcGdddece.ZdGdddece.ZeGdddece.ZfGddde7e.ZgGddde7e.ZhGddde7e.ZiGdddZjdS)N)ABCMetaabstractmethod)hexlify unhexlify)InvalidSignature)default_backend) constant_timehasheshmac)ec)padding)utils)Cipher algorithmsmodes) ConcatKDFHash) PBKDF2HMAC)aes_key_unwrap aes_key_wrap)PKCS7)InvalidCEKeyLength)InvalidJWAAlgorithm)InvalidJWEKeyLength)InvalidJWEKeyType)InvalidJWEOperation)base64url_decodebase64url_encode) json_decode)JWKi@c@sheZdZeeddZeeddZeeddZeeddZeed d Z ed d Z d S) JWAAlgorithmcCsdS)zThe algorithm NameNselfr r M/var/www/html/python-backend/venv/lib/python3.9/site-packages/jwcrypto/jwa.pyname$szJWAAlgorithm.namecCsdS)zA short descriptionNr r!r r r# description)szJWAAlgorithm.descriptioncCsdS)zThe algorithm key sizeNr r!r r r#keysize.szJWAAlgorithm.keysizecCsdS)zOne of 'alg', 'enc' or 'JWK'Nr r!r r r#algorithm_usage_location3sz%JWAAlgorithm.algorithm_usage_locationcCsdS)zOne of 'sig', 'kex', 'enc'Nr r!r r r# algorithm_use8szJWAAlgorithm.algorithm_usecCs&z|jWSty |jYS0dS)zThe input key sizeN) wrap_key_sizeAttributeErrorr&r!r r r# input_keysize=s zJWAAlgorithm.input_keysizeN) __name__ __module__ __qualname__propertyrr$r%r&r'r(r+r r r r#r"s"     r) metaclasscCs t|dSN)lenxr r r#_bitsizeFsr6cCs|dSr1r r4r r r#_inbytesJsr7cCs"|ddkrtdtt|S)Nr2rzlength must be a multiple of 8) ValueErrorosurandomr7r4r r r# _randombitsNs r;cCs2d|}|ddd}t||dd|S)Nz{:x}r20)formatrrjust)nbitseZilenr r r# _encode_intUs rDcCstt|dS)N)intr)rAr r r# _decode_int[srGc@seZdZddZddZdS)_RawJWScCstdSNNotImplementedErrorr"keypayloadr r r#signasz _RawJWS.signcCstdSrIrJr"rMrN signaturer r r#verifydsz_RawJWS.verifyNr,r-r.rOrRr r r r#rH_srHc@s,eZdZddZddZddZddZd S) _RawHMACcCst|_||_dSrI)rbackendhashfnr"rVr r r#__init__jsz_RawHMAC.__init__cCs"tj||j|jd}|||S)NrU)r HMACrVrUupdate)r"rMrNhr r r# _hmac_setupns z_RawHMAC._hmac_setupcCs"t|d}|||}|SNrO)r get_op_keyr]finalize)r"rMrNskeyr\r r r#rOss z _RawHMAC.signcCs(t|d}|||}||dSNrR)rr_r]rR)r"rMrNrQZvkeyr\r r r#rRxs z_RawHMAC.verifyN)r,r-r.rXr]rOrRr r r r#rThsrTc@s$eZdZddZddZddZdS)_RawRSAcCs||_||_dSrI)padfnrV)r"rdrVr r r#rXsz_RawRSA.__init__cCs|d}|||j|jSr^)r_rOrdrVr"rMrNrar r r#rOs z _RawRSA.signcCs"|d}||||j|jdSrb)r_rRrdrVr"rMrNrQpkeyr r r#rRs z_RawRSA.verifyN)r,r-r.rXrOrRr r r r#rc~srcc@s0eZdZddZeddZddZddZd S) _RawECcCs||_||_dSrI)_curverV)r"curverVr r r#rXsz_RawEC.__init__cCs|jSrI)rir!r r r#rjsz _RawEC.curvecCsJ|d|j}|j}||t|j}t|\}}t ||t ||Sr^) r_riZkey_sizerOr ECDSArVec_utilsZdecode_dss_signaturerD)r"rMrNrasizerQrsr r r#rOs z _RawEC.signcCsp|d|j}|dt|d}|t|dd}ttt|dtt|d}|||t |j dS)NrRr=rE) r_rir3rlZencode_dss_signaturerFrrRr rkrV)r"rMrNrQrgrnroZ enc_signaturer r r#rRsz _RawEC.verifyN)r,r-r.rXr/rjrOrRr r r r#rhs  rhc@seZdZddZddZdS)_RawNonecCsdS)Nr rLr r r#rOsz _RawNone.signcCs$|ddks|dkr tddS)Nktyoctrqz'The "none" signature cannot be verified)r_rrPr r r#rRsz_RawNone.verifyNrSr r r r#rpsrpcs0eZdZdZdZdZdZdZfddZZ S)_HS256HS256zHMAC using SHA-256algsigcstt|tdSrI)superrtrXr SHA256r! __class__r r#rXsz_HS256.__init__ r,r-r.r$r%r&r'r(rX __classcell__r r r{r#rts rtcs0eZdZdZdZdZdZdZfddZZ S)_HS384HS384zHMAC using SHA-384rwrxcstt|tdSrI)ryrrXr SHA384r!r{r r#rXsz_HS384.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_HS512HS512zHMAC using SHA-512rwrxcstt|tdSrI)ryrrXr SHA512r!r{r r#rXsz_HS512.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_RS256RS256zRSASSA-PKCS1-v1_5 using SHA-256rwrxcstt|ttdSrI)ryrrXr PKCS1v15r rzr!r{r r#rXsz_RS256.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_RS384RS384zRSASSA-PKCS1-v1_5 using SHA-384rrwrxcstt|ttdSrI)ryrrXr rr rr!r{r r#rXsz_RS384.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_RS512RS512zRSASSA-PKCS1-v1_5 using SHA-512rrwrxcstt|ttdSrI)ryrrXr rr rr!r{r r#rXsz_RS512.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_ES256ES256zECDSA using P-256 and SHA-256rvrwrxcstt|dtdS)NzP-256)ryrrXr rzr!r{r r#rXsz_ES256.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_ES256KES256Kz'ECDSA using secp256k1 curve and SHA-256rvrwrxcstt|dtdS)NZ secp256k1)ryrrXr rzr!r{r r#rX sz_ES256K.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_ES384ES384zECDSA using P-384 and SHA-384rrwrxcstt|dtdS)NzP-384)ryrrXr rr!r{r r#rXsz_ES384.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_ES512ES512zECDSA using P-521 and SHA-512rrwrxcstt|dtdS)NzP-521)ryrrXr rr!r{r r#rX#sz_ES512.__init__r}r r r{r#rs rcs0eZdZdZdZdZdZdZfddZZ S)_PS256PS256z.RSASSA-PSS using SHA-256 and MGF1 with SHA-256rrwrxcs4ttttjj}tt||tdSrI) r PSSMGF1r rz digest_sizeryrrXr"rdr{r r#rX/sz_PS256.__init__r}r r r{r#r's rcs0eZdZdZdZdZdZdZfddZZ S)_PS384PS384z.RSASSA-PSS using SHA-384 and MGF1 with SHA-384rrwrxcs4ttttjj}tt||tdSrI) r rrr rrryrrXrr{r r#rX=sz_PS384.__init__r}r r r{r#r5s rcs0eZdZdZdZdZdZdZfddZZ S)_PS512PS512z.RSASSA-PSS using SHA-512 and MGF1 with SHA-512rrwrxcs4ttttjj}tt||tdSrI) r rrr rrryrrXrr{r r#rXKsz_PS512.__init__r}r r r{r#rCs rc@s eZdZdZdZdZdZdZdS)_Nonenonez%No digital signature or MAC performedrrwrxNr,r-r.r$r%r&r'r(r r r r#rQs rc@seZdZddZddZdS) _RawKeyMgmtcCstdSrIrJ)r"rMbitsizecekheadersr r r#wrap\sz_RawKeyMgmt.wrapcCstdSrIrJ)r"rMrekrr r r#unwrap_sz_RawKeyMgmt.unwrapN)r,r-r.rrr r r r#rZsrc@s,eZdZddZddZddZddZd S) _RSAcCs ||_dSrI)rdrr r r#rXesz _RSA.__init__cCs0t|tstd|ddkr,td|ddS)Nkey is not a JWK objectrrZRSA isinstancerr8rr"rMr r r# _check_keyhs  z_RSA._check_keycCs8|||st|}|d}|||j}||dS)NwrapKeyrr)rr;r_encryptrdr"rMrrrrkrr r r#ros   z _RSA.wrapcCs@|||d}|||j}t||krt|t|d|iS)Nrr)rrr_r6r)r"rMrrrrr r r#rs  z _Direct.wrapcCsF|||dkrtdt|d}t||krBt|t||S)NzInvalid Encryption Key.r)rr8rr_r6rrr r r#rs  z_Direct.unwrapN) r,r-r.r$r%r&r'r(rrrr r r r#rs rc@sHeZdZdZdZdZdZdZddZdd Z d d Z d d Z ddZ dS)_EcdhEsECDH-ESzECDH-ES using Concat KDFrwrNcCst|_tttd|_dSrrr!r r r#rXsz_EcdhEs.__init__cCsVt|tstd|ddvr,td|d|ddkrR|ddvrRtd|ddS) Nrrr)ZECOKPz EC or OKPrcrv)ZX25519ZX448zX25519 or X448rrr r r#rs    z_EcdhEs._check_keyc Cstdt|}|t|d7}d|vr6t|dnd}|tdt|7}||7}d|vrjt|dnd}|tdt|7}||7}|td|7}t|tjr| t |} n | |} t t t|||jd} | | S)Nz>Irapurapv)rr otherinforU)structpackr3rrrrr ZEllipticCurvePrivateKeyZexchangeZECDHrr rzr7rUr) r"ZprivkeyZpubkeyrwrrr r r Z shared_keyZckdfr r r#_derives$  z_EcdhEs._derivec Cs|||j}|jdur8|dur*td|d}|}n|d}tj|d|dd}||d|d|||}|jdurd |i} n0|j|j} td dt|d } | | |||} d t | i| d <| S)Nz"ECDH-ES cannot use an existing CEKrrwrrr )rrr rrrrsrepkr) rr&rrgeneraterr_rrrrZ export_public) r"rMrrrdk_sizerwrdkrrrr r r#r s(     z _EcdhEs.wrapc Csd|vrtd|||j}|jdur8|d}|}n|d}tfi|d}||d|d|||}|jdur~|S|j|j} tddt|d} | | |||} | SdS) Nrz'Invalid Header, missing "epk" parameterrrwrrrsr) r8rr&rrr_rrr) r"rMrrrrrwrrrrrr r r#r$s&    z_EcdhEs.unwrap) r,r-r.r$r%r'r(r&rXrrrrr r r r#rs #rc@s eZdZdZdZdZdZdZdS)_EcdhEsAes128KwECDH-ES+A128KWz.ECDH-ES using Concat KDF and "A128KW" wrappingrrwrNrr r r r#r<s rc@s eZdZdZdZdZdZdZdS)_EcdhEsAes192KwECDH-ES+A192KWz.ECDH-ES using Concat KDF and "A192KW" wrappingrrwrNrr r r r#rEs rc@s eZdZdZdZdZdZdZdS)_EcdhEsAes256KwECDH-ES+A256KWz.ECDH-ES using Concat KDF and "A256KW" wrappingrvrwrNrr r r r#rNs rc@s0eZdZdZdZdZdZdZddZdd Z dS) _EdDsaEdDSAz'EdDSA using Ed25519 or Ed448 algorithmsrwrxNcCs(|ddvr |d}||StdS)Nr ZEd25519ZEd448rO)r_rOrKrer r r#rO_s   z _EdDsa.signcCs*|ddvr"|d}|||StdS)Nr rrR)r_rRrKrfr r r#rRes   z _EdDsa.verify) r,r-r.r$r%r'r(r&rOrRr r r r#rWsrc@seZdZddZddZdS)_RawJWEcCstdSrIrJ)r"raadmr r r#rnsz_RawJWE.encryptcCstdSrIrJ)r"rrrrCtr r r#rqsz_RawJWE.decryptN)r,r-r.rrr r r r#rlsrc@s0eZdZdZddZddZddZdd ZdS) _AesCbcHmacSha2NcCs(t|_||_tjj|_|jd|_dS)Nr=) rrUrVrr block_size blocksizer&r)rWr r r#rXys z_AesCbcHmacSha2.__init__cCsdtt|d}tj||j|jd}|||||||||}|dt|j S)N@rY) rDr6r rZrVrUr[r`r7r&)r"rrrrCalr\rr r r#_macs    z_AesCbcHmacSha2._macc Cst|t|jkrtd|dt|j}|t|jd}t|j}tt |t ||j d}| }t|j} | || } || |} ||||| } || | fS) Encrypt according to the selected encryption and hashing functions. :param k: Encryption key :param aad: Additional Authentication Data :param m: Plaintext Returns a dictionary with the computed data. Invalid input key sizeNrY)r3r7r)r8r&r;r#rrrrCBCrUrrpadderr[r`r&) r"rrrhkeyZekeyrrrr*Z padded_datarCr r r r#rs  z_AesCbcHmacSha2.encryptc Cst|t|jkrtd|dt|j}|t|jd}t||||||s^tdt t |t ||jd}|} | || } t|j} | | | S)A Decrypt according to the selected encryption and hashing functions. :param k: Encryption key :param aad: Additional Authenticated Data :param iv: Initialization Vector :param e: Ciphertext :param t: Authentication Tag Returns plaintext or raises an error r(NzFailed to verify MACrY)r3r7r)r8r&rZbytes_eqr&rrrrrr)rUrr[r`rr#unpadder) r"rrrrCr r+Zdkeyrrdr-r r r#rs z_AesCbcHmacSha2.decrypt)r,r-r.r&rXr&rrr r r r#r!us  r!cs0eZdZdZdZdZdZdZfddZZ S) _A128CbcHs256 A128CBC-HS256z&AES_128_CBC_HMAC_SHA_256 authenticatedrrcstt|tdSrI)ryr/rXr rzr!r{r r#rXsz_A128CbcHs256.__init__r}r r r{r#r/s r/cs0eZdZdZdZdZdZdZfddZZ S) _A192CbcHs384 A192CBC-HS384z&AES_192_CBC_HMAC_SHA_384 authenticatedrrcstt|tdSrI)ryr1rXr rr!r{r r#rXsz_A192CbcHs384.__init__r}r r r{r#r1s r1cs0eZdZdZdZdZdZdZfddZZ S) _A256CbcHs512 A256CBC-HS512z&AES_256_CBC_HMAC_SHA_512 authenticatedrvrcstt|tdSrI)ryr3rXr rr!r{r r#rXsz_A256CbcHs512.__init__r}r r r{r#r3s r3c@s(eZdZdZddZddZddZdS)_AesGcmNcCst|_|j|_dSrI)rrUr&r)r!r r r#rXsz_AesGcm.__init__cCsTtd}tt|t||jd}|}||| || }|||j fS)r'rrY) r;rrrrrrUrauthenticate_additional_datar[r`r)r"rrrrrrrCr r r#rs  z_AesGcm.encryptcCsBtt|t|||jd}|}||||| S)r,rY) rrrrrrUrr6r[r`)r"rrrrCr rrr r r#rs  z_AesGcm.decrypt)r,r-r.r&rXrrr r r r#r5sr5c@s eZdZdZdZdZdZdZdS)_A128GcmA128GCMzAES GCM using 128-bit keyrrNrr r r r#r7s r7c@s eZdZdZdZdZdZdZdS)_A192GcmA192GCMzAES GCM using 192-bit keyrrNrr r r r#r9!s r9c@s eZdZdZdZdZdZdZdS)_A256GcmA256GCMzAES GCM using 256-bit keyrvrNrr r r r#r;*s r;cs0eZdZdZdZdZdZdZfddZZ S)_BP256R1BP256R1zsECDSA using Brainpool256R1 curve and SHA-256 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rvrwrxcstt|dtdS)NzBP-256)ryr=rXr rzr!r{r r#rX?sz_BP256R1.__init__r}r r r{r#r=3sr=cs0eZdZdZdZdZdZdZfddZZ S)_BP384R1BP384R1zsECDSA using Brainpool384R1 curve and SHA-384 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rrwrxcstt|dtdS)NzBP-384)ryr?rXr rr!r{r r#rXOsz_BP384R1.__init__r}r r r{r#r?Csr?cs0eZdZdZdZdZdZdZfddZZ S)_BP512R1BP512R1zsECDSA using Brainpool512R1 curve and SHA-512 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rrwrxcstt|dtdS)NzBP-512)ryrArXr rr!r{r r#rX_sz_BP512R1.__init__r}r r r{r#rASsrAc*@seZdZdZeeeeee e e e e eeeeeeeeeeeeeeeeeee e!e"e#e$e%e&e'e(e)e*e+e,d)Z-e.d ddZ/e.ddZ0e.dd Z1e.d d Z2dS) JWAzSJWA Signing Algorithms. This class provides access to all JWA algorithms. ))rurrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr0r2r4r8r:r<r>r@rBNcCs&|j|}|dur |j|kr t|SrI)algorithms_registryr(KeyError)clsr$rrwr r r#instantiate_algs zJWA.instantiate_algcCs6z|j|ddWSty0td|dYn0dS)Nrxrz(%s is not a valid Signing algorithm namerGrErrFr$r r r# signing_algs zJWA.signing_algcCs6z|j|ddWSty0td|dYn0dS)NrrHz/%s is not a valid Key Management algorithm namerIrJr r r# keymgmt_algs zJWA.keymgmt_algcCs6z|j|ddWSty0td|dYn0dS)NrrHz+%s is not a valid Encryption algorithm namerIrJr r r#encryption_algs zJWA.encryption_alg)N)3r,r-r.__doc__rtrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr/r1r3r7r9r;r=r?rArD classmethodrGrKrLrMr r r r#rCcsf,   rC)kr9r abcrrbinasciirrZcryptography.exceptionsrZcryptography.hazmat.backendsrZcryptography.hazmat.primitivesrr r Z)cryptography.hazmat.primitives.asymmetricr r r rlZ&cryptography.hazmat.primitives.ciphersrrrZ,cryptography.hazmat.primitives.kdf.concatkdfrZ)cryptography.hazmat.primitives.kdf.pbkdf2rZ&cryptography.hazmat.primitives.keywraprrZ&cryptography.hazmat.primitives.paddingrZjwcrypto.commonrrrrrrrrZ jwcrypto.jwkrrrr6r7r;rDrGrHrTrcrhrprtrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr!r/r1r3r5r7r9r;r=r?rArCr r r r#s               $              #   4   L   !k    Q   .