U ˹h*@sddlZddlZddlZddlmZddlmZddlm Z ddl m Z m Z m Z ddlmZddlmZddlmZmZddlmZmZejejed Zed Zd Zd d ZdZ ddZ!dddZ"ddZ#GdddeZ$dS)N) PyAsn1Error)DecryptionError)rsa_private_key_pkcs1_to_pkcs8rsa_private_key_pkcs8_to_pkcs1rsa_public_key_pkcs1_to_pkcs8)Key) ALGORITHMS)JWEErrorJWKError)base64_to_longlong_to_base64Z,308204BD020100300D06092A864886F70D0101010500Z30z1.2.840.113549.1.1.1cCs|r|||}}q|S)zCalculate the Greatest Common Divisor of a and b. Unless b==0, the result will have the same sign as b (so that when b is divided by it, the result comes out positive). )abr r ?./venv/lib/python3.8/site-packages/jose/backends/rsa_backend.py_gcd&sric Cs||d}|}|ddkr&|d}qd}d}|s|tkr|}||krt|||}|dkr||dkrt|d|dkrt|d|} d}q|d9}q>|d7}q.|stdt|| \} } | dkstt| | fdd\} } | | fS)z Compute factors p and q from the private exponent d. We assume that n has no more than two factors. This function is adapted from code in PyCrypto. rFTz2Unable to compute factors p and q from exponent d.)reverse)_MAX_RECOVERY_ATTEMPTSpowr ValueErrordivmodAssertionErrorsorted) nedZktottZspottedrkZcandpqrr r r_rsa_recover_prime_factors7s,     $   r#PKCS8cCst|tj}||SN)RSAKeyrRS256to_pem)pemZfmtkeyr r r pem_to_spkibs r+cCs&|ttstd|ttdS)zLegacy RSA private key PKCS8-to-PKCS1 conversion. .. warning:: This is incorrect parsing and only works because the legacy PKCS1-to-PKCS8 encoding was also incorrect. zInvalid private key encodingN) startswithLEGACY_INVALID_PKCS8_RSA_HEADERASN1_SEQUENCE_IDrlen)Z pkcs8_keyr r r"_legacy_private_key_pkcs8_to_pkcs1gs r0c@sjeZdZdZdZdZddZddZdd Zd d Z d d Z ddZ dddZ ddZ ddZddZdS)r&zSHA-256zSHA-384zSHA-512cCs|tjkrtd||tjkr6|tjkr6td|tj|jtj|jtj |j i ||_ ||_ t|trz|||_dSt|tjtjfr||_dSt|tr|d}t|trztj||_Wntk rztj||_Wntk rztj||_Wntk rzNt|d}z t|}Wntk rZt|}YnXtjj|dd|_Wn,tk r}z t|W5d}~XYnXYnXYnXYnXdStd|dS)Nz*hash_alg: %s is not a valid hash algorithmz+alg: %s is not supported by the RSA backendzutf-8s PRIVATE KEYDERformatz'Unable to parse an RSA_JWK from key: %s) rRSAr ZRSA_KWZRSA1_5r'SHA256ZRS384SHA384ZRS512SHA512gethash_alg _algorithm isinstancedict _process_jwk _prepared_keypyrsa PublicKey PrivateKeystrencodebytesZ load_pkcs1rZload_pkcs1_openssl_pem pyrsa_pemZload_pemrrr0)selfr* algorithmderZ pkcs1_keyrr r r__init__}sV          ,zRSAKey.__init__csddks tddtd}td}dkrRtj||dStd}dd d d d g}tfd d|Drtfdd|Dstdtd}td }tj|||||dSt|||\}}tj|||||dSdS)Nktyr4z1Incorrect key type. Expected: 'RSA', Received: %srrr)rrr r!dpdqqic3s|]}|kVqdSr%r .0rjwk_dictr r sz&RSAKey._process_jwk..c3s|]}|kVqdSr%r rNrPr rrRsz2Precomputed private key parameters are incomplete.)rrrr r!)rrrr r!) r8r r r?r@anyallrAr#)rFrQrrrZ extra_paramsr r!r rPrr=s   zRSAKey._process_jwkcCst||j|jSr%)r?signr>r9)rFmsgr r rrUsz RSAKey.signcCsH|stdzt|||jWdStjjk rBYdSXdS)NzKAttempting to verify a message with a private key. This is not recommended.TF) is_publicwarningswarnr?verifyr>Zpkcs1ZVerificationError)rFrVZsigr r rrZs z RSAKey.verifycCst|jtjSr%)r;r>r?r@rFr r rrWszRSAKey.is_publiccCs2t|jtjr|S|tj|jj|jjd|jS)N)rr)r;r>r?r@ __class__rrr:r[r r r public_keyszRSAKey.public_keyr$cCst|jtjrd|jjdd}|dkrr?rAZ save_pkcs1rrEZsave_pemrr)rFZ pem_formatrHZ pkcs8_derr)Z pkcs1_derr r rr(s"z RSAKey.to_pemc Cs|s|j}n|j}|jdt|jdt|jdd}|s|t|jj dt|jj dt|jj dt|jj dt|jj dt|jjdd|S)Nr4ASCII)ZalgrJrr)rr r!rKrLrM)rWr]r>r:r rdecoderupdaterr r!Zexp1Zexp2Zcoef)rFr]datar r rto_dicts&  zRSAKey.to_dictcCs$|stdt||j}|S)NzLAttempting to encrypt a message with a private key. This is not recommended.)rWrXrYr?Zencryptr>)rFZkey_data wrapped_keyr r rwrap_keys zRSAKey.wrap_keyc CsBzt||j}Wn*tk r<}z t|W5d}~XYnX|Sr%)r?Zdecryptr>rr )rFrcZ unwrapped_keyrr r r unwrap_keys zRSAKey.unwrap_keyN)r$)__name__ __module__ __qualname__r5r6r7rIr=rUrZrWr]r(rbrdrer r r rr&xs2  r&)r$)%ZbinasciirXZrsar?Zrsa.pemr)rEZ pyasn1.errorrrZjose.backends._asn1rrrZjose.backends.baserZjose.constantsrZjose.exceptionsr r Z jose.utilsr r Z SUPPORTEDremoveZRSA_OAEPZ unhexlifyr-r.ZRSA_ENCRYPTION_ASN1_OIDrrr#r+r0r&r r r rs,      +