Inicio Explorar Ayuda
Iniciar sesión
panwang
/
exporter-ex
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: a424e1f58a
Ramas Etiquetas
exporter-ex
/
venv
/
lib
/
python3.7
/
site-packages
/
cryptography
/
hazmat
/
primitives
/
kdf
/
scrypt.py

scrypt.py 2.2 KB
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. 

  6. import sys
    7. 

  7. 

  8. from cryptography import utils
    9. 

  9. from cryptography.exceptions import (
    10. 

  10.     AlreadyFinalized,
    11. 

  11.     InvalidKey,
    12. 

  12.     UnsupportedAlgorithm,
    13. 

  13.     _Reasons,
    14. 

  14. )
    15. 

  15. from cryptography.hazmat.backends import _get_backend
    16. 

  16. from cryptography.hazmat.backends.interfaces import ScryptBackend
    17. 

  17. from cryptography.hazmat.primitives import constant_time
    18. 

  18. from cryptography.hazmat.primitives.kdf import KeyDerivationFunction
    19. 

  19. 

  20. 

  21. # This is used by the scrypt tests to skip tests that require more memory
    22. 

  22. # than the MEM_LIMIT
    23. 

  23. _MEM_LIMIT = sys.maxsize // 2
    24. 

  24. 

  25. 

  26. class Scrypt(KeyDerivationFunction):
    27. 

  27.     def __init__(
    28. 

  28.         self, salt: bytes, length: int, n: int, r: int, p: int, backend=None
    29. 

  29.     ):
    30. 

  30.         backend = _get_backend(backend)
    31. 

  31.         if not isinstance(backend, ScryptBackend):
    32. 

  32.             raise UnsupportedAlgorithm(
    33. 

  33.                 "Backend object does not implement ScryptBackend.",
    34. 

  34.                 _Reasons.BACKEND_MISSING_INTERFACE,
    35. 

  35.             )
    36. 

  36. 

  37.         self._length = length
    38. 

  38.         utils._check_bytes("salt", salt)
    39. 

  39.         if n < 2 or (n & (n - 1)) != 0:
    40. 

  40.             raise ValueError("n must be greater than 1 and be a power of 2.")
    41. 

  41. 

  42.         if r < 1:
    43. 

  43.             raise ValueError("r must be greater than or equal to 1.")
    44. 

  44. 

  45.         if p < 1:
    46. 

  46.             raise ValueError("p must be greater than or equal to 1.")
    47. 

  47. 

  48.         self._used = False
    49. 

  49.         self._salt = salt
    50. 

  50.         self._n = n
    51. 

  51.         self._r = r
    52. 

  52.         self._p = p
    53. 

  53.         self._backend = backend
    54. 

  54. 

  55.     def derive(self, key_material: bytes) -> bytes:
    56. 

  56.         if self._used:
    57. 

  57.             raise AlreadyFinalized("Scrypt instances can only be used once.")
    58. 

  58.         self._used = True
    59. 

  59. 

  60.         utils._check_byteslike("key_material", key_material)
    61. 

  61.         return self._backend.derive_scrypt(
    62. 

  62.             key_material, self._salt, self._length, self._n, self._r, self._p
    63. 

  63.         )
    64. 

  64. 

  65.     def verify(self, key_material: bytes, expected_key: bytes) -> None:
    66. 

  66.         derived_key = self.derive(key_material)
    67. 

  67.         if not constant_time.bytes_eq(derived_key, expected_key):
    68. 

  68.             raise InvalidKey("Keys do not match.")
    69.