o vh[@s ddlmZmZmZmZddlZddlmZddlm Z m Z m Z m Z m Z mZddlmZmZmZmZddlmZdd lmZmZgd Zd d Zd dZddZddZddZddZddZ ddZ!ddZ"ddZ#dd Z$d!d"Z%d#d$Z&d%d&Z'd'd(Z(d)d*Z)dS)+)unicode_literalsdivisionabsolute_importprint_functionN)pretty_message)newnullis_nullbuffer_from_bytesbytes_from_bufferderef) libcryptolibcrypto_legacy_supportLibcryptoConsthandle_openssl_error) rand_bytes) type_namebyte_cls) aes_cbc_no_padding_decryptaes_cbc_no_padding_encryptaes_cbc_pkcs7_decryptaes_cbc_pkcs7_encryptdes_cbc_pkcs5_decryptdes_cbc_pkcs5_encryptrc2_cbc_pkcs5_decryptrc2_cbc_pkcs5_encrypt rc4_decrypt rc4_encrypttripledes_cbc_pkcs5_decrypttripledes_cbc_pkcs5_encryptcCsjt|}|s td}nt|dkrttdt|t|ddkr+ttdt||t||||dfS)a Encrypts plaintext using AES in CBC mode with a 128, 192 or 256 bit key and no padding. This means the ciphertext must be an exact multiple of 16 bytes long. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - either a byte string 16-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A tuple of two byte strings (iv, ciphertext) : iv must be 16 bytes long - is %s rzJ data must be a multiple of 16 bytes long - is %s F_calculate_aes_cipherrlen ValueErrorr_encryptkeydataivcipherr.Y/var/www/html/hyperkenya/venv/lib/python3.10/site-packages/oscrypto/_openssl/symmetric.pyrs  rcC6t|}t|dkrttdt|t||||dS)aM Decrypts AES ciphertext in CBC mode using a 128, 192 or 256 bit key and no padding. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 16-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext r"r#Fr%r&r'r_decryptr)r.r.r/rMs rcCsHt|}|s td}nt|dkrttdt||t||||dfS)a Encrypts plaintext using AES in CBC mode with a 128, 192 or 256 bit key and PKCS#7 padding. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - either a byte string 16-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A tuple of two byte strings (iv, ciphertext) r"r#Tr$r)r.r.r/rqs  rcCr0)a9 Decrypts AES ciphertext in CBC mode using a 128, 192 or 256 bit key :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 16-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext r"r#Tr1r)r.r.r/rs rcCsZt|dvrttdt|t|dkrd}|St|dkr#d}|St|dkr+d}|S) a Determines if the key is a valid AES 128, 192 or 256 key :param key: A byte string of the key to use :raises: ValueError - when an invalid key is provided :return: A unicode string of the AES variation - "aes128", "aes192" or "aes256" )r" zo key must be either 16, 24 or 32 bytes (128, 192 or 256 bits) long - is %s r"aes128r3aes192r4aes256)r&r'r)r*r-r.r.r/r%s    r%cCFtstdt|dkst|dkrttdt|td||ddS)a Encrypts plaintext using RC4 with a 40-128 bit key :param key: The encryption key - a byte string 5-16 bytes long :param data: The plaintext - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the ciphertext -OpenSSL has been compiled without RC4 supportr"Q key must be 5 to 16 bytes (40 to 128 bits) long - is %s rc4N)rEnvironmentErrorr&r'rr(r*r+r.r.r/rrcCr8)a Decrypts RC4 ciphertext using a 40-128 bit key :param key: The encryption key - a byte string 5-16 bytes long :param data: The ciphertext - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext r9r:r"r;r<Nrr=r&r'rr2r>r.r.r/rr?rcCsvtstdt|dkst|dkrttdt||s"td}nt|dkr1ttdt||td|||dfS) ah Encrypts plaintext using RC2 in CBC mode with a 40-128 bit key and PKCS#5 padding. :param key: The encryption key - a byte string 8 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string 8-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A tuple of two byte strings (iv, ciphertext) -OpenSSL has been compiled without RC2 supportr:r"r;9 iv must be 8 bytes long - is %s rc2Trr=r&r'rrr(r*r+r,r.r.r/rs  rcCsdtstdt|dkst|dkrttdt|t|dkr*ttdt|td|||dS) a5 Decrypts RC2 ciphertext ib CBC mode using a 40-128 bit key and PKCS#5 padding. :param key: The encryption key - a byte string 8 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 8 bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext rAr:r"r;rBrCrDTr@rFr.r.r/rNs rcCst|dkrt|dkrttdt||std}nt|dkr+ttdt|d}t|dkr=||dd}d}|t||||d fS) a Encrypts plaintext using 3DES in CBC mode using either the 2 or 3 key variant (16 or 24 byte long key) and PKCS#5 padding. :param key: The encryption key - a byte string 16 or 24 bytes long (2 or 3 key mode) :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string 8-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A tuple of two byte strings (iv, ciphertext) r"r3zT key must be 16 bytes (2 key) or 24 bytes (3 key) long - %s rBz6 iv must be 8 bytes long - %s tripledes_3keyrtripledes_2keyT)r&r'rrr(r)r.r.r/r!{s"   r!cCs|t|dkrt|dkrttdt|t|dkr$ttdt|d}t|dkr6||dd}d}t||||d S) au Decrypts 3DES ciphertext in CBC mode using either the 2 or 3 key variant (16 or 24 byte long key) and PKCS#5 padding. :param key: The encryption key - a byte string 16 or 24 bytes long (2 or 3 key mode) :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 8-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext r"r3zW key must be 16 bytes (2 key) or 24 bytes (3 key) long - is %s rBrCrGrrHT)r&r'rr2r)r.r.r/r s  r cCsjtstdt|dkrttdt||std}nt|dkr+ttdt||td|||dfS)a Encrypts plaintext using DES in CBC mode with a 56 bit key and PKCS#5 padding. :param key: The encryption key - a byte string 8 bytes long (includes error correction bits) :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string 8-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A tuple of two byte strings (iv, ciphertext) -OpenSSL has been compiled without DES supportrBT key must be 8 bytes (56 bits + 8 parity bits) long - is %s rCdesTrErFr.r.r/rs   rcCsXtstdt|dkrttdt|t|dkr$ttdt|td|||dS)aN Decrypts DES ciphertext in CBC mode using a 56 bit key and PKCS#5 padding. :param key: The encryption key - a byte string 8 bytes long (includes error correction bits) :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 8-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the plaintext rIrBrJrCrKTr@rFr.r.r/rs  rc Cst|tsttdt|t|tsttdt||dkr.t|ts.ttdt||dkrL|sL|tgdv}|rH|rLt|ddkrLtdd }zt }t |r[t dt ||\}}|d urit }|td dgvrt||t t t } t | t|t|} t | |d krt|tjt|d t } t | t }t||t ||} t | |d urt|t|} t | t|} ttd } t|| | |t|} t | t| t| } t|| | } t | | t| t| 7} | W|rt|SS|r t|ww) a Encrypts plaintext :param cipher: A unicode string of "aes128", "aes192", "aes256", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: The encryption key - a byte string 5-32 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string - unused for RC4 :param padding: Boolean, if padding should be used - unused for RC4 :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by OpenSSL :return: A byte string of the ciphertext ; key must be a byte string, not %s < data must be a byte string, not %s r<: iv must be a byte string, not %s )r5r6r7r"rpadding must be specifiedNrDrBint *) isinstancer TypeErrorrrsetr&r'rEVP_CIPHER_CTX_newr r_setup_evp_encrypt_decryptr EVP_EncryptInit_exEVP_CIPHER_CTX_set_key_lengthEVP_CIPHER_CTX_ctrlrEVP_CTRL_SET_RC2_KEY_BITSEVP_CIPHER_CTX_set_paddingintr rEVP_EncryptUpdater r EVP_EncryptFinal_exEVP_CIPHER_CTX_free) r-r*r+r,paddingis_aesevp_cipher_ctx evp_cipher buffer_sizeresbuffer output_lengthoutputr.r.r/r(:sx       r(c Cst|tsttdt|t|tsttdt||dkr.t|ts.ttdt||tgdvr<|ss0   0$'#!!!0-300,r n