o  `\@sddlmZmZmZddlZddlZddlZddlZddlZddl Z ddl m Z ddl m Z ddlmZddlmZmZddlmZmZmZddlmZGd d d eZd ZGd d d eZGdddeZdS))absolute_importdivisionprint_functionN)utils)InvalidSignature) _get_backend)hashespadding)Cipher algorithmsmodes)HMACc@s eZdZdS) InvalidTokenN)__name__ __module__ __qualname__rrihome/ych/rk3568/buildroot/output/rockchip_rk3568/host/lib/python3.10/site-packages/cryptography/fernet.pyrsr<c@speZdZdddZeddZddZdd Zd d Zdd d Z ddZ ddZ e ddZ ddZddZdS)FernetNcCsLt|}t|}t|dkrtd|dd|_|dd|_||_dS)N z4Fernet key must be 32 url-safe base64-encoded bytes.)rbase64urlsafe_b64decodelen ValueError _signing_key_encryption_key_backend)selfkeybackendrrr__init__s   zFernet.__init__cCsttdS)Nr)rurlsafe_b64encodeosurandom)clsrrr generate_key,szFernet.generate_keycC||ttSNencrypt_at_timeinttime)rdatarrrencrypt0zFernet.encryptcCstd}||||S)Nr)r$r%_encrypt_from_parts)rr. current_timeivrrrr+3s zFernet.encrypt_at_timec Cstd|ttjj}||| }t t|j t ||j}||| }dtd|||}t|jt|jd} | || } t|| S)Nr.>Qr!)r _check_bytesr PKCS7r AES block_sizepadderupdatefinalizer rr CBCr encryptorstructpackr rrSHA256rr#) rr.r2r3r;Z padded_datar? ciphertextZ basic_partshhmacrrrr17s  zFernet._encrypt_from_partscCs&t|\}}||||ttSr))r_get_unverified_token_data _decrypt_datar,r-)rtokenttl timestampr.rrrdecryptJszFernet.decryptcCs.|durtdt|\}}|||||S)Nz6decrypt_at_time() can only be used with a non-None ttl)rrrFrG)rrHrIr2rJr.rrrdecrypt_at_timeNs zFernet.decrypt_at_timecCst|\}}|||Sr))rrF_verify_signature)rrHrJr.rrrextract_timestampVs zFernet.extract_timestampc Cstd|zt|}Wn ttjfytw|r$t |ddkr&tzt d|dd\}W||fSt j y@tw)NrHrr5 ) rr7rr TypeErrorbinasciiErrorrsixZ indexbytesr@unpackerror)rHr.rJrrrrF\s z!Fernet._get_unverified_token_datacCsTt|jt|jd}||ddz ||ddWdSty)tw)Nr6) r rrrBrr<verifyrr)rr.rDrrrrMms zFernet._verify_signaturec Cs|dur|||kr t|t|krt|||dd}|dd}tt|jt||j  }| |}z|| 7}Wn t yKtwttjj} | |} z | | 7} W| St yltw)NrQrX)r_MAX_CLOCK_SKEWrMr r r9rr r>r decryptorr<r=rr r8r:unpadder) rr.rJrIr2r3rCr\Zplaintext_paddedr]ZunpaddedrrrrGus6         zFernet._decrypt_datar))rrrr" classmethodr'r/r+r1rKrLrN staticmethodrFrMrGrrrrrs     rc@s>eZdZddZddZddZddZdd d Zd d Zd S) MultiFernetcCst|}|s td||_dS)Nz1MultiFernet requires at least one Fernet instance)listr_fernets)rZfernetsrrrr"s  zMultiFernet.__init__cCr(r)r*)rmsgrrrr/r0zMultiFernet.encryptcCs|jd||S)Nr)rbr+)rrcr2rrrr+szMultiFernet.encrypt_at_timec Csdt|\}}|jD]}z |||dd}Wn ty Yq wttd}|jd|||S)Nrr)rrFrbrGrr$r%r1)rrcrJr.fpr3rrrrotates   zMultiFernet.rotateNc Cs4|jD]}z |||WStyYqwtr))rbrKr)rrcrIrdrrrrKs  zMultiFernet.decryptc Cs6|jD]}z ||||WStyYqwtr))rbrLr)rrcrIr2rdrrrrLs  zMultiFernet.decrypt_at_timer)) rrrr"r/r+rfrKrLrrrrr`s  r`) __future__rrrrrSr$r@r-rU cryptographyrZcryptography.exceptionsrZcryptography.hazmat.backendsrZcryptography.hazmat.primitivesrr Z&cryptography.hazmat.primitives.ciphersr r r Z#cryptography.hazmat.primitives.hmacr Exceptionrr[objectrr`rrrrs"    u