,hkdddgZddlmZddlmZmZddlmZmZm Z ddl m Z GddZ d d Z y ) newPKCS115_Cipher)Random) bytes_to_long long_to_bytes)bordis_bytes _copy_bytes) pkcs1_decodec0eZdZdZdZdZdZdZddZy) rzThis cipher can perform PKCS#1 v1.5 RSA encryption or decryption. Do not instantiate directly. Use :func:`Crypto.Cipher.PKCS1_v1_5.new` instead.c ||_||_y)aJInitialize this PKCS#1 v1.5 cipher object. :Parameters: key : an RSA key object If a private half is given, both encryption and decryption are possible. If a public half is given, only encryption is possible. randfunc : callable Function that returns random bytes. N)_key _randfunc)selfkeyrandfuncs Z/var/www/html/Resume-Scraper/venv/lib/python3.12/site-packages/Crypto/Cipher/PKCS1_v1_5.py__init__zPKCS115_Cipher.__init__#s !c6|jjS)z=Return True if this cipher object can be used for encryption.)r can_encryptrs rrzPKCS115_Cipher.can_encrypt1yy$$&&rc6|jjS)z=Return True if this cipher object can be used for decryption.)r can_decryptrs rrzPKCS115_Cipher.can_decrypt5rrc|jj}t|}||dz kDr tdg}t|||z dz k7rI|j d}t |ddk(r7|j |t|||z dz k7rIdj|}d|zdztd d |z}t|}|jj|}t||} | S) aProduce the PKCS#1 v1.5 encryption of a message. This function is named ``RSAES-PKCS1-V1_5-ENCRYPT``, and it is specified in `section 7.2.1 of RFC8017 `_. :param message: The message to encrypt, also known as plaintext. It can be of variable length, but not longer than the RSA modulus (in bytes) minus 11. :type message: bytes/bytearray/memoryview :Returns: A byte string, the ciphertext in which the message is encrypted. It is as long as the RSA modulus (in bytes). :Raises ValueError: If the RSA key length is not sufficiently long to deal with the given message. zPlaintext is too long.r rrsN) r size_in_byteslen ValueErrorrrappendjoinr r_encryptr) rmessagekmLenpsnew_byteemem_intm_intcs rencryptzPKCS115_Cipher.encrypt9s* II # # %7| !b&=56 6 "gTA%~~a(HHQK D( IIh  "gTA% XXb\ 2  '+dD'*J Jr" ""6* % #rcn|jj}t||k7rtd|zt |}|jj |}t t|}t|rt||kDrt|d||}|dkr|S||dSt||||}||dS)aDecrypt a PKCS#1 v1.5 ciphertext. This is the function ``RSAES-PKCS1-V1_5-DECRYPT`` specified in `section 7.2.2 of RFC8017 `_. Args: ciphertext (bytes/bytearray/memoryview): The ciphertext that contains the message to recover. sentinel (any type): The object to return whenever an error is detected. expected_pt_len (integer): The length the plaintext is known to have, or 0 if unknown. Returns (byte string): It is either the original message or the ``sentinel`` (in case of an error). .. warning:: PKCS#1 v1.5 decryption is intrinsically vulnerable to timing attacks (see `Bleichenbacher's`__ attack). **Use PKCS#1 OAEP instead**. This implementation attempts to mitigate the risk with some constant-time constructs. However, they are not sufficient by themselves: the type of protocol you implement and the way you handle errors make a big difference. Specifically, you should make it very hard for the (malicious) party that submitted the ciphertext to quickly understand if decryption succeeded or not. To this end, it is recommended that your protocol only encrypts plaintexts of fixed length (``expected_pt_len``), that ``sentinel`` is a random byte string of the same length, and that processing continues for as long as possible even if ``sentinel`` is returned (i.e. in case of incorrect decryption). .. __: https://dx.doi.org/10.1007/BFb0055716 z/Ciphertext with incorrect length (not %d bytes)rrN) rr!r"r#r_decrypt_to_bytesbytes bytearrayr r ) r ciphertextsentinelexpected_pt_lenr(ct_intr,outputsizes rdecryptzPKCS115_Cipher.decryptfsV II # # % z?a NQRRS Sz*YY ( ( 0y|$!S]Q%6C&ADaxde}$B/6Bde}rN)r) __name__ __module__ __qualname____doc__rrrr0r;rrrrs#V "''+ZBrNc>|tj}t||S)aCreate a cipher for performing PKCS#1 v1.5 encryption or decryption. :param key: The key to use to encrypt or decrypt the message. This is a `Crypto.PublicKey.RSA` object. Decryption is only possible if *key* is a private RSA key. :type key: RSA key object :param randfunc: Function that return random bytes. The default is :func:`Crypto.Random.get_random_bytes`. :type randfunc: callable :returns: A cipher object `PKCS115_Cipher`. )rget_random_bytesr)rrs rrrs" ** #x ((r)N)__all__CryptorCrypto.Util.numberrrCrypto.Util.py3compatrr r _pkcs1_oaep_decoder rrr@rrrHs3. " #;==,IIX)r