Home Explore Help
Sign In
ShariX_Testing
/
open-RESTful-API
11
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5005b232e1
Branches Tags
open-RESTful-AP...
/
rest_venv
/
Lib
/
site-packages
/
cryptography
/
hazmat
/
primitives
/
kdf
/
scrypt.py

scrypt.py 2.2 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. 

  6. import sys
    7. 

  7. import typing
    8. 

  8. 

  9. from cryptography import utils
    10. 

  10. from cryptography.exceptions import (
    11. 

  11.     AlreadyFinalized,
    12. 

  12.     InvalidKey,
    13. 

  13.     UnsupportedAlgorithm,
    14. 

  14. )
    15. 

  15. from cryptography.hazmat.primitives import constant_time
    16. 

  16. from cryptography.hazmat.primitives.kdf import KeyDerivationFunction
    17. 

  17. 

  18. 

  19. # This is used by the scrypt tests to skip tests that require more memory
    20. 

  20. # than the MEM_LIMIT
    21. 

  21. _MEM_LIMIT = sys.maxsize // 2
    22. 

  22. 

  23. 

  24. class Scrypt(KeyDerivationFunction):
    25. 

  25.     def __init__(
    26. 

  26.         self,
    27. 

  27.         salt: bytes,
    28. 

  28.         length: int,
    29. 

  29.         n: int,
    30. 

  30.         r: int,
    31. 

  31.         p: int,
    32. 

  32.         backend: typing.Any = None,
    33. 

  33.     ):
    34. 

  34.         from cryptography.hazmat.backends.openssl.backend import (
    35. 

  35.             backend as ossl,
    36. 

  36.         )
    37. 

  37. 

  38.         if not ossl.scrypt_supported():
    39. 

  39.             raise UnsupportedAlgorithm(
    40. 

  40.                 "This version of OpenSSL does not support scrypt"
    41. 

  41.             )
    42. 

  42.         self._length = length
    43. 

  43.         utils._check_bytes("salt", salt)
    44. 

  44.         if n < 2 or (n & (n - 1)) != 0:
    45. 

  45.             raise ValueError("n must be greater than 1 and be a power of 2.")
    46. 

  46. 

  47.         if r < 1:
    48. 

  48.             raise ValueError("r must be greater than or equal to 1.")
    49. 

  49. 

  50.         if p < 1:
    51. 

  51.             raise ValueError("p must be greater than or equal to 1.")
    52. 

  52. 

  53.         self._used = False
    54. 

  54.         self._salt = salt
    55. 

  55.         self._n = n
    56. 

  56.         self._r = r
    57. 

  57.         self._p = p
    58. 

  58. 

  59.     def derive(self, key_material: bytes) -> bytes:
    60. 

  60.         if self._used:
    61. 

  61.             raise AlreadyFinalized("Scrypt instances can only be used once.")
    62. 

  62.         self._used = True
    63. 

  63. 

  64.         utils._check_byteslike("key_material", key_material)
    65. 

  65.         from cryptography.hazmat.backends.openssl.backend import backend
    66. 

  66. 

  67.         return backend.derive_scrypt(
    68. 

  68.             key_material, self._salt, self._length, self._n, self._r, self._p
    69. 

  69.         )
    70. 

  70. 

  71.     def verify(self, key_material: bytes, expected_key: bytes) -> None:
    72. 

  72.         derived_key = self.derive(key_material)
    73. 

  73.         if not constant_time.bytes_eq(derived_key, expected_key):
    74. 

  74.             raise InvalidKey("Keys do not match.")
    75.