U Gd#d$d$ej?Z@Gd%d&d&ejAe-ZBGd'd(d(e%ejCZDGd)d*d*eDe0ZEGd+d,d,eDe1ZFGd-d.d.eDe2ZGeHd/ZId0d1ZJd2d3ZKd4d5ZLejMd6d7d8ZNe*jOGd9d:d:e*ZPe-OeBdS)>N) dataclass)sha256sha384sha512)DictOptionalTupleUnion)core)Cipher algorithmsmodes)genericmisc)compute_o_value_legacycompute_o_value_legacy_prepcompute_u_value_r2compute_u_value_r34legacy_normalise_pw)aes_cbc_decryptaes_cbc_encrypt rc4_encrypt) AuthResult AuthStatus CryptFilterCryptFilterBuilderCryptFilterConfigurationIdentityCryptFilterPdfKeyNotAvailableErrorSecurityHandlerSecurityHandlerVersion)SerialisableCredentialSerialisedCredential)AESCryptFilterMixinAESGCMCryptFilterMixinRC4CryptFilterMixin)StandardPermissionsc@s:eZdZUeed<eed<eed<eeddddZdS) _R6KeyEntry hash_valuevalidation_saltkey_salt)entryreturncCs4t|dkstt|dd|dd|ddS)N0 ()lenAssertionErrorr()clsr,r4D/tmp/pip-unpacked-wheel-w101_d3s/pyhanko/pdf_utils/crypt/standard.py from_bytes0sz_R6KeyEntry.from_bytesN)__name__ __module__ __qualname__bytes__annotations__ classmethodr6r4r4r4r5r(*s r()passwordr-cCs8t|tr,|sdSddlm}||d}|ddS)Nr)saslprepzutf-8) isinstancestrZ _saslprepr?encode)r=r?r4r4r5_r6_normalise_pw6s   rD)pw_bytesr,u_entrycCst||j|}||jkSN) _r6_hash_algor*r))rEr,rFZpurported_hashr4r4r5_r6_password_authenticateAsrI)rEr,e_entryrFcCs2t||j|}t|dkstt||tdddS)Nr/FkeydataZiv use_padding)rHr+r1r2rr:)rEr,rJrFZ interm_keyr4r4r5_r6_derive_file_keyHsrPTF)TFZ input_bytescCstdd|DdS)Ncss|]}|dVqdS)Nr4.0br4r4r5 Zsz_bytes_mod_3..rT)sumrSr4r4r5 _bytes_mod_3XsrZ)rE current_saltrFr-c Cst|}t|dkst|||r@t|dks6t|||}tttf}d}}|dksn||dkr|||pzdd}t|dd||ddd d d } |t| dd} | | }| t| d }|d 7}qZ|ddS) u3 Algorithm 2.B in ISO 32000-2 § 7.6.4.3.4 r.r@r/r>NrKFrLr) rr1r2updatedigestrrrrZ) rEr[rFZ initial_hashkhashesZround_noZ last_byte_valZk1eZ next_hashr4r4r5rH]s0       rHc@sJeZdZdZdZdZdZdZdZdZ e j dd d Z e ddd d ZdS) StandardSecuritySettingsRevisionz;Indicate the standard security handler revision to emulate.rTNr-cCs |j}|dkrtSt|SrG)valuerZ NullObject NumberObject)selfvalr4r4r5 as_pdf_objectsz.StandardSecuritySettingsRevision.as_pdf_objectcCs*z t|WStk r$tjYSXdSrG)rc ValueErrorOTHER)r3rir4r4r5 from_numbers z,StandardSecuritySettingsRevision.from_number)r7r8r9__doc__ RC4_BASICZ RC4_EXTENDED RC4_OR_AES128AES256AES_GCMror PdfObjectrmr<rpr4r4r4r5rc{srcc@sXeZdZdejfdejddifgZeedddZe ddd Z ee d d d Z d S)_PasswordCredential pwd_bytesid1optionalTrhcCsdS)Nrxr4r3r4r4r5get_namesz_PasswordCredential.get_namecCs|SrG)dumprkr4r4r5 _ser_valuesz_PasswordCredential._ser_value)rNcCs0z t|WStk r*tdYnXdS)Nz)Failed to deserialise password credential)rwloadrnr PdfReadError)r3rNr4r4r5 _deser_values z _PasswordCredential._deser_valueN) r7r8r9r OctetString_fieldsr<rBr|r:rrr4r4r4r5rwsrwcsXeZdZUdZdZeded<eddZfddZ e d d d Z fd d Z Z S)StandardCryptFilterzB Crypt filter for use with the standard security handler. NStandardSecurityHandler_handlercCst|jtr|jjStdSrG)rArr _auth_failedNotImplementedErrorr~r4r4r5rs z StandardCryptFilter._auth_failedcs$t|tstt|d|_dSrG)rAr TypeErrorsuper_set_security_handler _shared_key)rkhandler __class__r4r5rs  z)StandardCryptFilter._set_security_handlerrhcCs|js t|jSrG)rr2get_file_encryption_keyr~r4r4r5derive_shared_encryption_keys z0StandardCryptFilter.derive_shared_encryption_keycst}t|j|d<|S)N/Length)rrmrrjkeylenrkresultrr4r5rms z!StandardCryptFilter.as_pdf_object)r7r8r9rqrrr;propertyrrr:rrm __classcell__r4r4rr5rs   rc@seZdZdZdS)StandardAESCryptFilterz= AES crypt filter for the standard security handler. Nr7r8r9rqr4r4r4r5rsrc@seZdZdZdS)StandardAESGCMCryptFilterzA AES-GCM crypt filter for the standard security handler. Nrr4r4r4r5rsrc@seZdZdZdS)StandardRC4CryptFilterz= RC4 crypt filter for the standard security handler. Nrr4r4r4r5rsrz/StdCFcCsttt|dittdSNrZdefault_stream_filterZdefault_string_filter)rSTD_CFrrr4r4r5_std_rc4_configs  rcCsttt|dittdSr)rrrrr4r4r5_std_aes_configs  rcCstttittdS)Nr)rrrr4r4r4r5_std_gcm_configs r)cfdictcCs|dd}t|ddS)Nrr0r\r)getr)rZ_acts_as_default keylen_bitsr4r4r5#_build_legacy_standard_crypt_filters rc seZdZUdZedeedddedddedd ded d diZeeje fe d <e e d ddZ e dddeddfeedddZe dedddfeeedddZed6ddZd7eeeeeeedfdd Ze ejed d!d"Ze ejd#d$d%Zeed fd&d' Z d(d)Z!ed*d+d,Z"ed*d-d.Z#d8eee$d/d0d1Z%e&e'eefd d2d3Z(ed d4d5Z)Z*S)9ra Implementation of the standard (password-based) security handler. You shouldn't have to instantiate :class:`.StandardSecurityHandler` objects yourself. For encrypting new documents, use :meth:`build_from_pw` or :meth:`build_from_pw_legacy`. For decrypting existing documents, pyHanko will take care of instantiating security handlers through :meth:`.SecurityHandler.build`. z/V2z/AESV2cCs tddS)NrKrr___r4r4r5sz StandardSecurityHandler.z/AESV3cCs tddS)Nr/rrrr4r4r5rsz/AESV4cCstSrG)rrr4r4r5rr>z /IdentitycCstSrG)rrr4r4r5rr>_known_crypt_filtersrhcCs tdS)N /Standard)r NameObjectr{r4r4r5r|sz StandardSecurityHandler.get_nameNrKT)revpermsc  KsPt|}|dk rt|n|}|tjkr4t|d|tjkrDd}n|rV|tjkrVd}t|||j|} |tjkr|tjBtj Btj Btj B}t || ||\} } nt ||j|| ||| \} } |tjkrtj}n|tjkrtj}ntj}|tjkr|dkr|r tdd}n t|d}|f||||| | || d| }| |_t||d|_|S)a Initialise a legacy password-based security handler, to attach to a :class:`~.pyhanko.pdf_utils.writer.PdfFileWriter`. Any remaining keyword arguments will be passed to the constructor. .. danger:: The functionality implemented by this handler is deprecated in the PDF standard. We only provide it for testing purposes, and to interface with legacy systems. :param rev: Security handler revision to use, see :class:`.StandardSecuritySettingsRevision`. :param id1: The first part of the document ID. :param desired_owner_pass: Desired owner password. :param desired_user_pass: Desired user password. :param keylen_bytes: Length of the key (in bytes). :param use_aes128: Use AES-128 instead of RC4 (default: ``True``). :param perms: Permission bits to set :param crypt_filter_config: Custom crypt filter configuration. PyHanko will supply a reasonable default if none is specified. :return: A :class:`StandardSecurityHandler` instance. Nz/ is not supported by this bootstrapping method.rKr)versionrevision legacy_keylen perm_flagsodataudatacrypt_filter_configencrypt_metadatarxry)rrcrsrnrrrrir'ZALLOW_FORM_FILLINGZALLOW_ASSISTIVE_TECHNOLOGYZALLOW_REASSEMBLYZALLOW_HIGH_QUALITY_PRINTINGrrr!RC4_40RC4_LONGER_KEYSrrrrw _credential)r3rrydesired_owner_passdesired_user_passZ keylen_bytesZ use_aes128rrrkwargso_entryrFrMrshr4r4r5build_from_pw_legacy"s-           z,StandardSecurityHandler.build_from_pw_legacyF)rpdf_macuse_gcmc!Kst|}|dk rt|n|} td} td} td} t| | } | | | }t| | }t|| tddd\}}t|dksttd}td}t|||}|||}t|||}t|| tddd\}}t|dkst|r|tj M}| ddd}|d|rd nd d td }t t | t}|}|||}|rhtd}nd}|rtj}tj}n tj}tj}|f||d||||||||d |} | | _td|i| _| S)a Initialise a password-based security handler backed by AES-256, to attach to a :class:`~.pyhanko.pdf_utils.writer.PdfFileWriter`. This handler will use the new PDF 2.0 encryption scheme. Any remaining keyword arguments will be passed to the constructor. :param desired_owner_pass: Desired owner password. :param desired_user_pass: Desired user password. :param perms: Desired usage permissions. :param encrypt_metadata: Whether to set up the security handler for encrypting metadata as well. :param pdf_mac: Include an ISO/TS 32004 MAC. :param use_gcm: Use AES-GCM (ISO/TS 32003) to encrypt strings and streams. .. danger:: Due to the way PDF encryption works, the authentication guarantees of AES-GCM only apply to the content of individual strings and streams. The PDF file structure itself is not authenticated. Document-level integrity protection is provided by the ``pdf_mac=True`` option. .. warning:: This option is disabled by default because support for ISO/TS 32003 is not available in mainstream PDF software yet. This default may change in the future. :return: A :class:`StandardSecurityHandler` instance. Nr/r\rKF)rOsTFadbre) rrrrrroeseedueseedencrypted_permsrkdf_saltrx)rDsecretsZ token_bytesrHrr:r1r2r'TOLERATE_MISSING_PDF_MACas_bytesr r AESr ECB encryptorr^finalizer!rurcrtrrwr)!r3rrrrrrrZowner_pw_bytesZ user_pw_bytesZencryption_keyZu_validation_saltZ u_key_saltZu_hashrFZ u_interm_keyrZue_seedZo_validation_saltZ o_key_saltZo_hashrZ o_interm_keyZoe_seedZ perms_bytesZextd_perms_bytescipherrrrrrrr4r4r5 build_from_pws.                   z%StandardSecurityHandler.build_from_pwrfcCst|t|krdks0ntd|d|rV|rVt|t|krTdkshntd|d|rxt|dkrtd|ddS)Nr.z2/U and /O entries must be 48 bytes long in a rev. z security handlerr/z;/UE and /OE must be present and be 32 bytes long in a rev. rKz6/Perms must be present and be 16 bytes long in a rev. )r1rPdfError)rrrrrrr4r4r5_check_r6_valuess &  z(StandardSecurityHandler._check_r6_values)rrrrrcs$| dkrh|tjkrtd} nL|tjkr0t|} n8|tjkrBt} n&|tjkr^| dkr^td} n t dt j ||| | | | d||_ ||_ |j tj@ |_|tjkr|j||||| ||_||_| |_n:t|t|krdksnt dd|_|_|_||_||_d|_d|_dS)Nrr/z1Could not impute a reasonable crypt filter config)rcompat_entriesrzD/U and /O entries must be 32 bytes long in a legacy security handlerF)r!rrrrurrtrrrr__init__rrr'r _mac_requiredrcrrrrrr1rrrr)rkrrrrrrrrrrrrrrr4r5r,s^        z StandardSecurityHandler.__init__) encrypt_dictr-cCs|dd}|ddkr"td|d}z|d}|d}Wntk r\tdYnXtjtd d d }tjtd d d }t||j d|t d|j dd|j dd| d|| d|| d||j dt dd| dddd S)a Gather and preprocess the "easy" metadata values in an encryption dictionary, and turn them into constructor kwargs. This function processes ``/Length``, ``/P``, ``/Perms``, ``/O``, ``/U``, ``/OE``, ``/UE`` and ``/EncryptMetadata``. rr0r\rz"Key length must be a multiple of 8/O/Uz!/O and /U entries must be present)xr-cSs,t|tjtjfs&tdt||jS)NzExpected string, but got )rArTextStringObjectByteStringObjectrrtypeoriginal_bytesrr4r4r5 _get_bytess  zFStandardSecurityHandler.gather_encryption_metadata.._get_bytescSs,t|tjrt|Std|ddS)Nz Cannot parse z as a permission indicator)rArrjr'Z from_sint32rrrr4r4r5_parse_permissionss    zNStandardSecurityHandler.gather_encryption_metadata.._parse_permissions/P)defaultNr./OE/UE/Perms/EncryptMetadataT/KDFSaltcSst|tjtjfr|jSdSrG)rArrrrrr4r4r5rs  zDStandardSecurityHandler.gather_encryption_metadata..) rrrrrrrrr) rrrKeyErrorrrvr:r'dictZ get_and_applyallow_everythingrbool)r3rrrrrrrr4r4r5gather_encryption_metadatansB         z2StandardSecurityHandler.gather_encryption_metadata)rcCs>t|d}t|d}tf||||d||S)N/V/R)rrr)r!rprcrZprocess_crypt_filtersr)r3rvrr4r4r5instantiate_from_pdf_objectsz3StandardSecurityHandler.instantiate_from_pdf_objectcstjp |jSrG)rpdf_mac_enabledrr~rr4r5rsz'StandardSecurityHandler.pdf_mac_enabledcCst}td|d<t|j|d<t|j|d<t|j|d<|j r`t|j |d<|j sr|j t j krt|jd|d<|j |d <|j|d <|j t j krt|j|d <||j|jtjkr t|j|d <t|j|d <t|j|d<|S)Nrz/Filterrrrrr\rrrrrrr)rDictionaryObjectrrrrrjrZ as_sint32Z _kdf_saltZ_compat_entriesrr!rrrmrZ BooleanObjectrr^rrcrtrrrrr4r4r5rms0  z%StandardSecurityHandler.as_pdf_object)rycCst|j}|j}|tjkr.t||j|j|\}}n:t||j|j |j|j||j \}}|dd}|dd}||k|fS)NrK) rrrcrrrrrrrirr)rkryr=rZ user_tokenZuser_tok_suppliedrMr4r4r5_auth_user_password_legacys*    z2StandardSecurityHandler._auth_user_password_legacyc st||d}|j}t||j|j}|tjkr.)rwrrrirrcrrrrranger:rrrOWNERUSERFAILED) rkryr=credrrMZ prp_userpassrlZnew_keyZowner_passwordZ user_passwordr4rr5_authenticate_legacys&    z,StandardSecurityHandler._authenticate_legacy)ryr-cCst|trt|}t|tttfs:tdt |dt|trX|dj }|dj }|j }|t j krx||\}}n*|dkrtdt|}|||\}}|dk r||_nd|_t||jdS) a Authenticate a user to this security handler. :param credential: The credential to use (a password in this case). :param id1: First part of the document ID. This is mandatory for legacy encryption handlers, but meaningless otherwise. :return: An :class:`AuthResult` object indicating the level of access obtained. z]Standard authentication credential must be a string, byte string or _PasswordCredential, not .ryrxNz+id1 must be specified for legacy encryptionT)statusZpermission_flags)rAr#r"Z deserialiserwrBr:rrrZnativerrcrt_authenticate_r6rrrrrr)rkZ credentialryrresrMr4r4r5 authenticate s,      z$StandardSecurityHandler.authenticatec Cs:t|}t|j}t|j}t|||jrHtj}t|||j |j}n*t||rhtj }t|||j }n tj dfSt t|t}|}||j|} | dddk} | |jttd| dddkM} zt| d} | | |jkM} Wntk rd} YnX| s$td t d |i|_!||fS) N rzsx  ,          y