Startsida Utforska Hjälp
Logga in
panwang
/
exporter-ex
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: a424e1f58a
Grenar Taggar
exporter-ex
/
venv
/
lib
/
python3.7
/
site-packages
/
cryptography
/
hazmat
/
primitives
/
kdf
/
pbkdf2.py

pbkdf2.py 2.2 KB
Historik

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. 

  6. from cryptography import utils
    7. 

  7. from cryptography.exceptions import (
    8. 

  8.     AlreadyFinalized,
    9. 

  9.     InvalidKey,
    10. 

  10.     UnsupportedAlgorithm,
    11. 

  11.     _Reasons,
    12. 

  12. )
    13. 

  13. from cryptography.hazmat.backends import _get_backend
    14. 

  14. from cryptography.hazmat.backends.interfaces import PBKDF2HMACBackend
    15. 

  15. from cryptography.hazmat.primitives import constant_time, hashes
    16. 

  16. from cryptography.hazmat.primitives.kdf import KeyDerivationFunction
    17. 

  17. 

  18. 

  19. class PBKDF2HMAC(KeyDerivationFunction):
    20. 

  20.     def __init__(
    21. 

  21.         self,
    22. 

  22.         algorithm: hashes.HashAlgorithm,
    23. 

  23.         length: int,
    24. 

  24.         salt: bytes,
    25. 

  25.         iterations: int,
    26. 

  26.         backend=None,
    27. 

  27.     ):
    28. 

  28.         backend = _get_backend(backend)
    29. 

  29.         if not isinstance(backend, PBKDF2HMACBackend):
    30. 

  30.             raise UnsupportedAlgorithm(
    31. 

  31.                 "Backend object does not implement PBKDF2HMACBackend.",
    32. 

  32.                 _Reasons.BACKEND_MISSING_INTERFACE,
    33. 

  33.             )
    34. 

  34. 

  35.         if not backend.pbkdf2_hmac_supported(algorithm):
    36. 

  36.             raise UnsupportedAlgorithm(
    37. 

  37.                 "{} is not supported for PBKDF2 by this backend.".format(
    38. 

  38.                     algorithm.name
    39. 

  39.                 ),
    40. 

  40.                 _Reasons.UNSUPPORTED_HASH,
    41. 

  41.             )
    42. 

  42.         self._used = False
    43. 

  43.         self._algorithm = algorithm
    44. 

  44.         self._length = length
    45. 

  45.         utils._check_bytes("salt", salt)
    46. 

  46.         self._salt = salt
    47. 

  47.         self._iterations = iterations
    48. 

  48.         self._backend = backend
    49. 

  49. 

  50.     def derive(self, key_material: bytes) -> bytes:
    51. 

  51.         if self._used:
    52. 

  52.             raise AlreadyFinalized("PBKDF2 instances can only be used once.")
    53. 

  53.         self._used = True
    54. 

  54. 

  55.         utils._check_byteslike("key_material", key_material)
    56. 

  56.         return self._backend.derive_pbkdf2_hmac(
    57. 

  57.             self._algorithm,
    58. 

  58.             self._length,
    59. 

  59.             self._salt,
    60. 

  60.             self._iterations,
    61. 

  61.             key_material,
    62. 

  62.         )
    63. 

  63. 

  64.     def verify(self, key_material: bytes, expected_key: bytes) -> None:
    65. 

  65.         derived_key = self.derive(key_material)
    66. 

  66.         if not constant_time.bytes_eq(derived_key, expected_key):
    67. 

  67.             raise InvalidKey("Keys do not match.")
    68.