Home Explore Help
Register Sign In
sanoh
/
G01_0350
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 92685d12e3
Branches Tags
G01_0350
/
venv_win32
/
Lib
/
site-packages
/
cryptography
/
hazmat
/
backends
/
openssl
/
utils.py

utils.py 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. 

  6. import warnings
    7. 

  7. 

  8. from cryptography import utils
    9. 

  9. from cryptography.hazmat.primitives import hashes
    10. 

  10. from cryptography.hazmat.primitives.asymmetric.utils import Prehashed
    11. 

  11. 

  12. 

  13. def _evp_pkey_derive(backend, evp_pkey, peer_public_key):
    14. 

  14.     ctx = backend._lib.EVP_PKEY_CTX_new(evp_pkey, backend._ffi.NULL)
    15. 

  15.     backend.openssl_assert(ctx != backend._ffi.NULL)
    16. 

  16.     ctx = backend._ffi.gc(ctx, backend._lib.EVP_PKEY_CTX_free)
    17. 

  17.     res = backend._lib.EVP_PKEY_derive_init(ctx)
    18. 

  18.     backend.openssl_assert(res == 1)
    19. 

  19.     res = backend._lib.EVP_PKEY_derive_set_peer(ctx, peer_public_key._evp_pkey)
    20. 

  20.     backend.openssl_assert(res == 1)
    21. 

  21.     keylen = backend._ffi.new("size_t *")
    22. 

  22.     res = backend._lib.EVP_PKEY_derive(ctx, backend._ffi.NULL, keylen)
    23. 

  23.     backend.openssl_assert(res == 1)
    24. 

  24.     backend.openssl_assert(keylen[0] > 0)
    25. 

  25.     buf = backend._ffi.new("unsigned char[]", keylen[0])
    26. 

  26.     res = backend._lib.EVP_PKEY_derive(ctx, buf, keylen)
    27. 

  27.     if res != 1:
    28. 

  28.         errors_with_text = backend._consume_errors_with_text()
    29. 

  29.         raise ValueError("Error computing shared key.", errors_with_text)
    30. 

  30. 

  31.     return backend._ffi.buffer(buf, keylen[0])[:]
    32. 

  32. 

  33. 

  34. def _calculate_digest_and_algorithm(backend, data, algorithm):
    35. 

  35.     if not isinstance(algorithm, Prehashed):
    36. 

  36.         hash_ctx = hashes.Hash(algorithm, backend)
    37. 

  37.         hash_ctx.update(data)
    38. 

  38.         data = hash_ctx.finalize()
    39. 

  39.     else:
    40. 

  40.         algorithm = algorithm._algorithm
    41. 

  41. 

  42.     if len(data) != algorithm.digest_size:
    43. 

  43.         raise ValueError(
    44. 

  44.             "The provided data must be the same length as the hash "
    45. 

  45.             "algorithm's digest size."
    46. 

  46.         )
    47. 

  47. 

  48.     return (data, algorithm)
    49. 

  49. 

  50. 

  51. def _check_not_prehashed(signature_algorithm):
    52. 

  52.     if isinstance(signature_algorithm, Prehashed):
    53. 

  53.         raise TypeError(
    54. 

  54.             "Prehashed is only supported in the sign and verify methods. "
    55. 

  55.             "It cannot be used with signer, verifier or "
    56. 

  56.             "recover_data_from_signature."
    57. 

  57.         )
    58. 

  58. 

  59. 

  60. def _warn_sign_verify_deprecated():
    61. 

  61.     warnings.warn(
    62. 

  62.         "signer and verifier have been deprecated. Please use sign "
    63. 

  63.         "and verify instead.",
    64. 

  64.         utils.PersistentlyDeprecated2017,
    65. 

  65.         stacklevel=3,
    66. 

  66.     )
    67.