o vhx@spddlmZmZmZmZddlmZddlmZm Z m Z m Z m Z m Z mZmZmZmZddlmZddlmZddlmZmZeZed krTdd lmZmZmZmZmZndd l m!Z!m"Z"mZm#Z#m$Z$gd Z%d dZ&ddZ'ddZ(ddZ)ddZ*ddZ+ddZ,ddZ-ddZ.dd Z/d!d"Z0d#d$Z1d%d&Z2d'd(Z3d)d*Z4d+d,Z5d-d.Z6d/d0Z7d1d2Z8d3d4Z9d5S)6)unicode_literalsdivisionabsolute_importprint_function)pretty_message) buffer_from_bytesbytes_from_bufferderefnewnull pointer_setstruct struct_bytesunwrapwrite_to_buffer) rand_bytes)backend) type_namebyte_cls winlegacy)advapi32 Advapi32Const handle_erroropen_context_handleclose_context_handle)bcrypt BcryptConstropen_alg_handleclose_alg_handle) aes_cbc_no_padding_decryptaes_cbc_no_padding_encryptaes_cbc_pkcs7_decryptaes_cbc_pkcs7_encryptdes_cbc_pkcs5_decryptdes_cbc_pkcs5_encryptrc2_cbc_pkcs5_decryptrc2_cbc_pkcs5_encrypt rc4_decrypt rc4_encrypttripledes_cbc_pkcs5_decrypttripledes_cbc_pkcs5_encryptcCst|dvrttdt||std}nt|dkr%ttdt|t|ddkr6ttdt||td|||dfS) a Encrypts plaintext using AES in CBC mode with a 128, 192 or 256 bit key and no padding. This means the ciphertext must be an exact multiple of 16 bytes long. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - either a byte string 16-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A tuple of two byte strings (iv, ciphertext)  o key must be either 16, 24 or 32 bytes (128, 192 or 256 bits) long - is %s r.: iv must be 16 bytes long - is %s rzJ data must be a multiple of 16 bytes long - is %s aesFlen ValueErrorrr_encryptkeydataivr<U/var/www/html/hyperkenya/venv/lib/python3.10/site-packages/oscrypto/_win/symmetric.pyr"-s$   r"cCLt|dvrttdt|t|dkrttdt|td|||dS)a[ Decrypts AES ciphertext in CBC mode using a 128, 192 or 256 bit key and no padding. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 16-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext r-r1r.r2r3Fr5r6r_decryptr8r<r<r=r!ds  r!cCs^t|dvrttdt||std}nt|dkr%ttdt||td|||dfS)a Encrypts plaintext using AES in CBC mode with a 128, 192 or 256 bit key and PKCS#7 padding. :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - either a byte string 16-bytes long or None to generate an IV :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A tuple of two byte strings (iv, ciphertext) r-r1r.r2r3Tr4r8r<r<r=r$s   r$cCr>)aG Decrypts AES ciphertext in CBC mode using a 128, 192 or 256 bit key :param key: The encryption key - a byte string either 16, 24 or 32 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector - a byte string 16-bytes long :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext r-r1r.r2r3Tr?r8r<r<r=r#s  r#cC:t|dks t|dkrttdt|td||ddS)a Encrypts plaintext using RC4 with a 40-128 bit key :param key: The encryption key - a byte string 5-16 bytes long :param data: The plaintext - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the ciphertext r.Q key must be 5 to 16 bytes (40 to 128 bits) long - is %s rc4N)r5r6rr7r9r:r<r<r=r* r*cCrA)a Decrypts RC4 ciphertext using a 40-128 bit key :param key: The encryption key - a byte string 5-16 bytes long :param data: The ciphertext - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext rBr.rCrDNr?rEr<r<r=r)rFr)cCsjt|dks t|dkrttdt||std}nt|dkr+ttdt||td|||dfS)ab Encrypts plaintext using RC2 with a 64 bit key :param key: The encryption key - a byte string 8 bytes long :param data: The plaintext - a byte string :param iv: The 8-byte initialization vector to use - a byte string - set as None to generate an appropriate one :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A tuple of two byte strings (iv, ciphertext) rBr.rC9 iv must be 8 bytes long - is %s rc2Tr4r8r<r<r=r(#s  r(cCsXt|dks t|dkrttdt|t|dkr$ttdt|td|||dS)a" Decrypts RC2 ciphertext using a 64 bit key :param key: The encryption key - a byte string 8 bytes long :param data: The ciphertext - a byte string :param iv: The initialization vector used for encryption - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext rBr.rCrGrHrITr?r8r<r<r=r'Os r'cCs~t|dkrt|dkrttdt||std}nt|dkr+ttdt|d}t|dkr5d}|t||||dfS) a Encrypts plaintext using 3DES in either 2 or 3 key mode :param key: The encryption key - a byte string 16 or 24 bytes long (2 or 3 key mode) :param data: The plaintext - a byte string :param iv: The 8-byte initialization vector to use - a byte string - set as None to generate an appropriate one :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A tuple of two byte strings (iv, ciphertext) r.r/W key must be 16 bytes (2 key) or 24 bytes (3 key) long - is %s rGrHtripledes_3keytripledes_2keyTr4r9r:r;cipherr<r<r=r,xs    r,cCslt|dkrt|dkrttdt|t|dkr$ttdt|d}t|dkr.d}t||||dS) aC Decrypts 3DES ciphertext in either 2 or 3 key mode :param key: The encryption key - a byte string 16 or 24 bytes long (2 or 3 key mode) :param data: The ciphertext - a byte string :param iv: The initialization vector used for encryption - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext r.r/rJrGrHrKrLTr?rMr<r<r=r+s  r+cCs^t|dkrttdt||std}nt|dkr%ttdt||td|||dfS)a Encrypts plaintext using DES with a 56 bit key :param key: The encryption key - a byte string 8 bytes long (includes error correction bits) :param data: The plaintext - a byte string :param iv: The 8-byte initialization vector to use - a byte string - set as None to generate an appropriate one :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A tuple of two byte strings (iv, ciphertext) rGT key must be 8 bytes (56 bits + 8 parity bits) long - is %s rHdesTr4r8r<r<r=r&s   r&cCsLt|dkrttdt|t|dkrttdt|td|||dS)aK Decrypts DES ciphertext using a 56 bit key :param key: The encryption key - a byte string 8 bytes long (includes error correction bits) :param data: The ciphertext - a byte string :param iv: The initialization vector used for encryption - a byte string :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the plaintext rGrOrHrPTr?r8r<r<r=r%s  r%cCsd}|dkrtjtjtjdt|}ntjtjtjtjtj d|}tj }t |dd}t t d}t|}tj|_tj|_d|_||_t t d }t|} || _t|| _t||} d} |td d gvrmt|d krmtj} tt d } t || t| t| | } t| t| }|d krtt dt|d}t |tj|d} t| |d krt |tj |d} t| tt dtj!}t |tj"|d} t| tt dtj#}t |tj$|d} t| ||fS)a Creates an HCRYPTPROV and HCRYPTKEY for symmetric encryption/decryption. The HCRYPTPROV must be released by close_context_handle() and the HCRYPTKEY must be released by advapi32.CryptDestroyKey() when done. :param cipher: A unicode string of "aes", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: A byte string of the symmetric key :param iv: The initialization vector - a byte string - unused for RC4 :return: A tuple of (HCRYPTPROV, HCRYPTKEY) Nr3r-)rPrLrKrIrDF) verify_only BLOBHEADERrPLAINTEXTKEYBLOBrIrDrBz HCRYPTKEY *DWORD *rG)%r CALG_AES_128 CALG_AES_192 CALG_AES_256r5CALG_DES CALG_3DES_112 CALG_3DESCALG_RC2CALG_RC4MS_ENH_RSA_AES_PROVrrrrrSbTypeCUR_BLOB_VERSIONbVersionreservedaiKeyAlghdr dwKeySizerset CRYPT_NO_SALTr CryptImportKeyr rCryptSetKeyParamKP_EFFECTIVE_KEYLENKP_IVCRYPT_MODE_CBCKP_MODE PKCS5_PADDING KP_PADDING)rNr9r;context_handle algorithm_idproviderblob_header_pointer blob_headerblob_struct_pointer blob_structblobflagskey_handle_pointerres key_handlebufr<r<r=_advapi32_create_handles,s      r|c Csd}tjtjtjtjtjtjd|}zet|}tj}t t d}t |}tj |_ tj|_t||_t||}|dkrStt dt|d}t |tj|dd} t| tt d } t |t|| td|t|d } t| t | W|rxt|SS|rt|ww) ao Creates a BCRYPT_KEY_HANDLE for symmetric encryption/decryption. The handle must be released by bcrypt.BCryptDestroyKey() when done. :param cipher: A unicode string of "aes", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: A byte string of the symmetric key :return: A BCRYPT_KEY_HANDLE N)r3rPrLrKrIrDBCRYPT_KEY_DATA_BLOB_HEADERrIrTrGrzBCRYPT_KEY_HANDLE *)rBCRYPT_AES_ALGORITHMBCRYPT_DES_ALGORITHMBCRYPT_3DES_112_ALGORITHMBCRYPT_3DES_ALGORITHMBCRYPT_RC2_ALGORITHMBCRYPT_RC4_ALGORITHMrBCRYPT_KEY_DATA_BLOBrrrBCRYPT_KEY_DATA_BLOB_MAGICdwMagicBCRYPT_KEY_DATA_BLOB_VERSION1 dwVersionr5 cbKeyDatarr BCryptSetPropertyBCRYPT_EFFECTIVE_KEY_LENGTHrBCryptImportKeyr r ) rNr9 alg_handle alg_constant blob_typertrurvr{ryrxr<r<r=_bcrypt_create_key_handles`        rcCst|tsttdt|t|tsttdt||dkr.t|ts.ttdt||dkrD|sD|dkr@t|ddksDtdtd krPt|||||St |||||S) a Encrypts plaintext :param cipher: A unicode string of "aes", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: The encryption key - a byte string 5-16 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string - unused for RC4 :param padding: Boolean, if padding should be used - unused for RC4 :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the ciphertext ; key must be a byte string, not %s < data must be a byte string, not %s rD: iv must be a byte string, not %s r3r.rpadding must be specifiedr) isinstancer TypeErrorrrr5r6_backend_advapi32_encrypt_bcrypt_encryptrNr9r:r;paddingr<r<r=r7s*   r7c Csd}d}zst|||\}}ttdt|}t|tddt|d}t|t|} t| } t | |t |t|t|tdd| || }t|t | t|} |dkrg|sgt| t|dkrg| dd} | W|rpt ||rwt |SS|rt ||rt |ww)a Encrypts plaintext via CryptoAPI :param cipher: A unicode string of "aes", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: The encryption key - a byte string 5-16 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string - unused for RC4 :param padding: Boolean, if padding should be used - unused for RC4 :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the ciphertext NrTTrr3r.i)r|r rr5 CryptEncryptr rr rrr r CryptDestroyKeyr) rNr9r:r;rrorzout_lenry buffer_lenbufferoutputr<r<r=r"sV         rc Cd}zkt||}|durd}nt|}d}|durtj}ttd}t||t|ttdtd|| } t| t |} t | } |rFt |nt} t||t|t| || | || } t| t | t |W|rmt |SS|rvt |ww)a Encrypts plaintext via CNG :param cipher: A unicode string of "aes", "des", "tripledes_2key", "tripledes_3key", "rc2", "rc4" :param key: The encryption key - a byte string 5-16 bytes long :param data: The plaintext - a byte string :param iv: The initialization vector - a byte string - unused for RC4 :param padding: Boolean, if padding should be used - unused for RC4 :raises: ValueError - when any of the parameters contain an invalid value TypeError - when any of the parameters are of the wrong type OSError - when an error is returned by the OS crypto library :return: A byte string of the ciphertext NrTULONG *) rr5rBCRYPT_BLOCK_PADDINGr r BCryptEncryptr rr rr BCryptDestroyKey rNr9r:r;rrziv_lenrwrryrr iv_bufferr<r<r=rqZ      rcCst|tsttdt|t|tsttdt||dkr.t|ts.ttdt||tddgvr<|srrN): __future__rrrr_errorsr_ffirr r r r r rrrrutilrr_typesrrr _advapi32rrrrr_cngrrrr __all__r"r!r$r#r*r)r(r'r,r+r&r%r|rr7rrr@rrr<r<r<r=s> 0 7+.*,)0--*oG@OS= =