B f]d@sddlmZmZmZddlZddlZddlZddlZddlZddl Z ddl m Z ddl m Z ddlmZddlmZmZddlmZmZmZddlmZGd d d eZd ZGd d d eZGdddeZdS))absolute_importdivisionprint_functionN)utils)InvalidSignature)default_backend)hashespadding)Cipher algorithmsmodes)HMACc@s eZdZdS) InvalidTokenN)__name__ __module__ __qualname__rr2lib/python3.7/site-packages/cryptography/fernet.pyrsr<c@s`eZdZdddZeddZddZdd Zdd d Zd d Z e ddZ ddZ ddZ dS)FernetNcCsR|dkrt}t|}t|dkr,td|dd|_|dd|_||_dS)N z4Fernet key must be 32 url-safe base64-encoded bytes.)rbase64urlsafe_b64decodelen ValueError _signing_key_encryption_key_backend)selfkeybackendrrr__init__s  zFernet.__init__cCsttdS)Nr)rurlsafe_b64encodeosurandom)clsrrr generate_key-szFernet.generate_keycCs$tt}td}||||S)Nr)inttimer$r%_encrypt_from_parts)rdata current_timeivrrrencrypt1s  zFernet.encryptc Cstd|ttjj}||| }t t|j t ||j}||| }dtd|||}t|jt|jd} | || } t|| S)Nr+z>Q)r!)r _check_bytesr PKCS7r AES block_sizepadderupdatefinalizer rr CBCr encryptorstructZpackr rrSHA256rr#) rr+r,r-r4Z padded_datar8 ciphertextZ basic_partshZhmacrrrr*6s  zFernet._encrypt_from_partscCst|\}}||||S)N)r_get_unverified_token_data _decrypt_data)rtokenttl timestampr+rrrdecryptIszFernet.decryptcCst|\}}|||S)N)rr=_verify_signature)rr?rAr+rrrextract_timestampMs zFernet.extract_timestampc Cstd|yt|}Wnttjfk r8tYnX|rNt |ddkrRtyt d|dd\}Wnt j k rtYnX||fS)Nr?rz>Q ) rr0rr TypeErrorbinasciiErrorrsixZ indexbytesr9Zunpackerror)r?r+rArrrr=Ss   z!Fernet._get_unverified_token_datacCs\t|jt|jd}||ddy||ddWntk rVtYnXdS)N)r!i) r rrr:rr5Zverifyrr)rr+r<rrrrCds zFernet._verify_signaturec Cstt}|dk r4|||kr$t|t|kr4t|||dd}|dd}tt|jt ||j  }| |}y||7}Wntk rtYnXttjj} | |} y| | 7} Wntk rtYnX| S)NrGi)r(r)r_MAX_CLOCK_SKEWrCr r r2rr r7r decryptorr5r6rr r1r3unpadder) rr+rAr@r,r-r;rOZplaintext_paddedrPZunpaddedrrrr>ls.          zFernet._decrypt_data)N)N)rrrr" classmethodr'r.r*rBrD staticmethodr=rCr>rrrrrs    rc@s.eZdZddZddZddZd dd ZdS) MultiFernetcCst|}|std||_dS)Nz1MultiFernet requires at least one Fernet instance)listr_fernets)rZfernetsrrrr"s zMultiFernet.__init__cCs|jd|S)Nr)rUr.)rmsgrrrr.szMultiFernet.encryptc Csjt|\}}x<|jD].}y|||d}PWqtk rBYqXqWttd}|jd|||S)Nrr)rr=rUr>rr$r%r*)rrVrAr+fpr-rrrrotates   zMultiFernet.rotateNc Cs:x0|jD]&}y |||Stk r,YqXqWtdS)N)rUrBr)rrVr@rWrrrrBs    zMultiFernet.decrypt)N)rrrr"r.rYrBrrrrrSsrS)Z __future__rrrrrIr$r9r)rKZ cryptographyrZcryptography.exceptionsrZcryptography.hazmat.backendsrZcryptography.hazmat.primitivesrr Z&cryptography.hazmat.primitives.ciphersr r r Z#cryptography.hazmat.primitives.hmacr ExceptionrrNobjectrrSrrrrs     m