i[fddlZddlmZddlmZddlmZddlmZddl m Z ddl m Z m Z mZmZddlmZGd d e Zeded ed ed gZdZdS)N)default_backend)hashes) ConcatKDFHash)8InvalidEncryptionAlgorithmForECDH1PUWithKeyWrappingError)$JWEAlgorithmWithTagAwareKeyAgreement) AESAlgorithmCBCHS2EncAlgorithmECKeyu32be_len_input)OKPKeyceZdZgdZeefZddZdZdZ dZ dZ dZ d Z d Zd Zd Zdd ZddZdZdZddZddZdS)ECDH1PUAlgorithm)epkapuapvskidNc|d|_d|_n%d|d|_d||_||_t ||_dS)NzECDH-1PUz)ECDH-1PU in the Direct Key Agreement modez ECDH-1PU+AKWz4ECDH-1PU using Concat KDF and CEK wrapped with A{}KW)name descriptionformatkey_sizeraeskw)selfrs W/var/www/piapp/venv/lib/python3.11/site-packages/authlib/jose/drafts/_jwe_algorithms.py__init__zECDH1PUAlgorithm.__init__sb  "DIJD  1X111DI$fX..  ! !(++ cXt||jr|Stj|SN) isinstanceALLOWED_KEY_CLSr import_key)rraw_datas r prepare_keyzECDH1PUAlgorithm.prepare_keys- h 4 5 5 O)))rc||}||}||d}|j|}||d<|S)N)rheadercek)_generate_ephemeral_key_prepare_headersr generate_cek)renc_algkeyrhpresetr's rgenerate_presetz ECDH1PUAlgorithm.generate_preset"s\**3//  ! !# & &** = $&&((CF5M rc ||zSr)r shared_key_e shared_key_ss rcompute_shared_keyz#ECDH1PUAlgorithm.compute_shared_key+s l**rc`|d}nt|}|jt|d}nt|d}t|dd}t|dd}tjd||z}||z|z|zS)NrencalgrTrz>I)r rgetstructpack) rheadersbit_sizetagcctagalg_idapu_infoapv_infopub_infos rcompute_fixed_infoz#ECDH1PUAlgorithm.compute_fixed_info.s ;EE#C((E = $WU^44FF$WU^44F#7;;u#5#5t<<#7;;u#5#5t<<;tX..6 8+h66rcttj|dz|t}||S)N) algorithmlength otherinfobackend)rrSHA256rderive)r shared_key fixed_infor<ckdfs rcompute_derived_keyz$ECDH1PUAlgorithm.compute_derived_keyEsFmooq= #%%     {{:&&&rc||}||}|||} ||||} || | |Srexchange_shared_keyr4rCrO) rsender_static_keysender_ephemeral_keyrecipient_pubkeyr;r<r=r3r2rLrMs rdeliver_at_senderz"ECDH1PUAlgorithm.deliver_at_senderNsn(<<=MNN +??@PQQ ,,\<HH ,,WhDD '' JIIIrc||}||}|||} ||||} || | |SrrQ) r recipient_keysender_static_pubkeysender_ephemeral_pubkeyr;r<r=r3r2rLrMs rdeliver_at_recipientz%ECDH1PUAlgorithm.deliver_at_recipientWsn$889MNN $889PQQ ,,\<HH ,,WhDD '' JIIIrc<||ddS)NcrvT) is_private) generate_key)rr,s rr(z(ECDH1PUAlgorithm._generate_ephemeral_key`sE t<<z5ECDH1PUAlgorithm._prepare_headers..es???1c!f???rktyr)REQUIRED_JSON_FIELDSre)rrpub_epks ` rr)z!ECDH1PUAlgorithm._prepare_headerscs5????c&>???wrct|tst|rd|vr |d}i}n*||}||}|r d|vr |d}n|}|||dS)Nrr')rr'r&)r r rr(r)r*)rr+r, sender_keyr.rr-r's r!generate_keys_and_prepare_headersz2ECDH1PUAlgorithm.generate_keys_and_prepare_headersis'#566 MJLL L  +evoo-CAA..s33C%%c**A  )evoo-CC&&((C3!444rc|j|j}n|j}|d}|||||||S)NwrapKey)rCEK_SIZE get_op_keyrV) rr+r;r,rirr=r< public_keys r_agree_upon_key_at_senderz*ECDH1PUAlgorithm._agree_upon_key_at_sender{sK = 'HH}H^^I.. %%j#z7HVYZZZrcl|j|}|j||Sr)rr$wrap_cek)rr'dkkeks r _wrap_cekzECDH1PUAlgorithm._wrap_ceks/j$$R((z""3,,,rcb|||||||}|||Sr)rpru) rr+r;r,rirr'r=rss ragree_upon_key_and_wrap_cekz,ECDH1PUAlgorithm.agree_upon_key_and_wrap_ceks4  + +GWc:sTW X X~~c2&&&rc|jtd|rd|vr |d}i}n*||}||}||||||}d||dS)Nz Invalid algorithm state detectedrr)ekr'r&)r RuntimeErrorr(r)rp) rr+r;r,rir.rr-rss rwrapzECDH1PUAlgorithm.wraps = $ABB B  +evoo-CAA..s33C%%c**A  + +GWc:s S S"222rcd|vrtd|j|j}n|j}|d}||d} | d} |||| |||} |j| S|j| } |j|||| S)NrzMissing "epk" in headersrl) ValueErrorrrmrnr"r[rr$unwrap) rr+ryr;r,rir=r< sender_pubkeyr epk_pubkeyrsrts rr~zECDH1PUAlgorithm.unwraps   788 8 = 'HH}H"--i88 nnWU^,,^^I..  & &sM:wPXZ] ^ ^ = Ij$$R((z  "gs;;;rr)__name__ __module__ __qualname__ EXTRA_HEADERSr r r!rr$r/r4rCrOrVr[r(r)rjrprurwr{r~r1rrrr s;111MfoO , , , ,*** +++777.'''JJJJJJ===   5555$[[[[---'''3333 <<<<<rs- 888888111111FFFFFFXXXXXXEEEEEEYYYYYYYYYYYY''''''c<c<c<c<c<;c<c<c