U ;g%@sddlmZddlmZddlmZddlmZddl m Z ddl m Z ddl m ZddlmZmZmZmZdd lmZdd lmZdd lmZmZGd d d ZeZdS)) annotations)openssl)binding)hashes)AsymmetricPadding)ec)utils)MGF1OAEPPSSPKCS1v15)CipherAlgorithm)AES)CBCModec @s^eZdZdZdZefZejej ej ej ej ej ejejejejejejf ZejejejejfZdZdZdd>ZdZde>Zdddd Z d dd d Z!d ddddZ"ddddZ#d dddZ$ddddZ%ddddZ&dd dddZ'dd ddd Z(d dd!d"Z)dd dd#d$Z*d%d&d d'd(d)Z+dd dd*d+Z,d,dd-d.Z-dd dd/d0Z.d1d d2d3d4Z/d1d d2d5d6Z0d dd7d8Z1dd dd9d:Z2d dd;d<Z3d=d d>d?d@Z4dAd=d dBdCdDZ5dEd=d dFdGdHZ6d ddIdJZ7d ddKdLZ8d ddMdNZ9d ddOdPZ:d ddQdRZ;d ddSdTZd ddYdZZ?d[S)\Backendz) OpenSSL API binding interfaces. riiNone)returncCs,t|_|jj|_|jj|_t|_ dSN) rZBindingZ_bindingffi_ffilib_lib rust_opensslis_fips_enabled _fips_enabledselfrP/tmp/pip-unpacked-wheel-yjz0rwd7/cryptography/hazmat/backends/openssl/backend.py__init__Es   zBackend.__init__strcCs d|d|jdtjdS)Nz)openssl_version_textrrZ_legacy_provider_loadedrrrr __repr__KszBackend.__repr__bool)okrcCs t|Sr)rZ_openssl_assert)rr&rrr openssl_assertRszBackend.openssl_assertcCs&ttjtstt|_dSr)rZ enable_fipsZ _providersrAssertionErrorrrrrr _enable_fipsUs  zBackend._enable_fipscCstS)z Friendly string name of the loaded OpenSSL library. This is not necessarily the same version as it was compiled against. Example: OpenSSL 3.2.1 30 Jan 2024 )rr#rrrr r#\szBackend.openssl_version_textintcCstSr)ropenssl_versionrrrr openssl_version_numbereszBackend.openssl_version_numberzhashes.HashAlgorithm) algorithmcCsB|jdkr&|j|jdd}n |jd}|j|}|S)N)blake2bblake2sascii)name digest_sizeencoderZEVP_get_digestbyname)rr-Zalgevp_mdrrr _evp_md_from_algorithmhs   zBackend._evp_md_from_algorithm)r-rcCs,|jrt||jsdS||}||jjkSNF)r isinstance _fips_hashesr6rZNULL)rr-r5rrr hash_supportedss zBackend.hash_supportedcCs |jrt|tjrdS||Sr7rr8rSHA1r:rr-rrr signature_hash_supportedzsz Backend.signature_hash_supportedcCs|jr dSttjdSdS)NFZ derive_scrypt)rhasattrrZkdfrrrr scrypt_supportedszBackend.scrypt_supportedcCs |jrt|tjrdS||S)NTr;r=rrr hmac_supportedszBackend.hmac_supportedr r)ciphermodercCs$|jrt||jsdStj||Sr7)rr8 _fips_ciphersrcipherscipher_supported)rrBrCrrr rFs zBackend.cipher_supportedcCs ||Sr)rAr=rrr pbkdf2_hmac_supportedszBackend.pbkdf2_hmac_supportedzlist[rust_openssl.OpenSSLError]cCstSr)rZcapture_error_stackrrrr _consume_errorsszBackend._consume_errorscCs4|jrt|tjrdSt|tjtjtjtjtjfSr7)rr8rr<SHA224SHA256SHA384SHA512r=rrr _oaep_hash_supportedszBackend._oaep_hash_supportedr)paddingrcCst|trdSt|trNt|jtrN|jr>t|jjtjr>dS| |jjSn4t|t r~t|jtr~| |jjo|| |jSdSdS)NTF) r8r r Z_mgfr r _algorithmrr<r:r rMrrNrrr rsa_padding_supporteds   zBackend.rsa_padding_supportedcCs"|jrt|trdS||SdSr7)rr8r rQrPrrr rsa_encryption_supportedsz Backend.rsa_encryption_supportedcCstj o|j Sr)rCRYPTOGRAPHY_IS_BORINGSSLrrrrr dsa_supportedszBackend.dsa_supportedcCs|s dS||Sr7)rTr>r=rrr dsa_hash_supportedszBackend.dsa_hash_supportedcCs||td|jS)N)rFr block_sizer=rrr cmac_algorithm_supporteds z Backend.cmac_algorithm_supportedzec.EllipticCurve)curvercCs"|jrt||jsdStj|Sr7)rr8_fips_ecdh_curvesrrZcurve_supported)rrYrrr elliptic_curve_supporteds z Backend.elliptic_curve_supportedz"ec.EllipticCurveSignatureAlgorithm)signature_algorithmrYrcCs4t|tjsdS||o2t|jtjp2||jSr7)r8rZECDSAr[r- asym_utilsZ Prehashedr:)rr\rYrrr ,elliptic_curve_signature_algorithm_supporteds    z4Backend.elliptic_curve_signature_algorithm_supportedzec.ECDH)r-rYrcCs||ot|tjSr)r[r8rZECDH)rr-rYrrr +elliptic_curve_exchange_algorithm_supporteds z3Backend.elliptic_curve_exchange_algorithm_supportedcCstj SrrrSrrrr dh_supportedszBackend.dh_supportedcCs |jjdkS)Nr)rZCryptography_HAS_EVP_PKEY_DHXrrrr dh_x942_serialization_supportedsz'Backend.dh_x942_serialization_supportedcCs|jr dSdSNFTrrrrr x25519_supportedszBackend.x25519_supportedcCs|jr dStj otj Sr7rrZCRYPTOGRAPHY_IS_LIBRESSLrSrrrr x448_supporteds zBackend.x448_supportedcCs|jr dSdSrcrdrrrr ed25519_supportedszBackend.ed25519_supportedcCs|jr dStj otj Sr7rfrrrr ed448_supported s zBackend.ed448_supportedcCstjo |j Sr)rZ#CRYPTOGRAPHY_OPENSSL_320_OR_GREATERrrrrr ecdsa_deterministic_supportedsz%Backend.ecdsa_deterministic_supportedcCs|jr dSdSrcrdrrrr poly1305_supportedszBackend.poly1305_supportedcCstj Srr`rrrr pkcs7_supportedszBackend.pkcs7_supportedN)@__name__ __module__ __qualname____doc__r2rrDrrIrJrKrLZ SHA512_224Z SHA512_256ZSHA3_224ZSHA3_256ZSHA3_384ZSHA3_512ZSHAKE128ZSHAKE256r9rZ SECP224R1Z SECP256R1Z SECP384R1Z SECP521R1rZZ_fips_rsa_min_key_sizeZ_fips_rsa_min_public_exponentZ_fips_dsa_min_modulusZ_fips_dh_min_key_sizeZ_fips_dh_min_modulusr!r$r'r)r#r,r6r:r>r@rArFrGrHrMrQrRrTrUrXr[r^r_rarbrergrhrirjrkrlrrrr rst    rN) __future__rZ"cryptography.hazmat.bindings._rustrrZ$cryptography.hazmat.bindings.opensslrZcryptography.hazmat.primitivesrZ*cryptography.hazmat.primitives._asymmetricrZ)cryptography.hazmat.primitives.asymmetricrrr]Z1cryptography.hazmat.primitives.asymmetric.paddingr r r r Z&cryptography.hazmat.primitives.ciphersr Z1cryptography.hazmat.primitives.ciphers.algorithmsrZ,cryptography.hazmat.primitives.ciphers.modesrrrbackendrrrr s