,heW2ddlZddlZddlmZddlmZmZmZmZm Z m Z m Z ddl m Z mZmZmZmZddlmZddlmZddlmZmZmZddlmZmZmZmZed d Z ed d Z!dd Z"ddZ#Gdde$Z%dZ&dZ'ddZ(ddZ)dZ*dZ+dZ,ddZ-dZ.d dZ/y)!N)reduce)tobytesbord _copy_bytes iter_rangetostrbchrbstr)SHA1SHA256HMACCMACBLAKE2s)strxor)get_random_bytes)size long_to_bytes bytes_to_long)load_pycryptodome_raw_libcreate_string_bufferget_raw_bufferc_size_tzCrypto.Cipher._Salsa20z int Salsa20_8_core(const uint8_t *x, const uint8_t *y, uint8_t *out); zCrypto.Protocol._scrypta  typedef int (core_t)(const uint8_t [64], const uint8_t [64], uint8_t [64]); int scryptROMix(const uint8_t *data_in, uint8_t *data_out, size_t data_len, unsigned N, core_t *core); cb|st}t|}|j||z}|j}||kDrt d|zt |dk7rt dt |zt|dz D]!}|j|j}#|jd|S)aMDerive one key from a password (or passphrase). This function performs key derivation according to an old version of the PKCS#5 standard (v1.5) or `RFC2898 `_. Args: password (string): The secret password to generate the key from. salt (byte string): An 8 byte string to use for better protection from dictionary attacks. This value does not need to be kept secret, but it should be randomly chosen for each derivation. dkLen (integer): The length of the desired key. The default is 16 bytes, suitable for instance for :mod:`Crypto.Cipher.AES`. count (integer): The number of iterations to carry out. The recommendation is 1000 or more. hashAlgo (module): The hash algorithm to use, as a module or an object from the :mod:`Crypto.Hash` package. The digest length must be no shorter than ``dkLen``. The default algorithm is :mod:`Crypto.Hash.SHA1`. Return: A byte string of length ``dkLen`` that can be used as key. z:Selected hash algorithm has a too short digest (%d bytes).z,Salt is not 8 bytes long (%d bytes instead).N) r rnew digest_size TypeErrorlen ValueErrorrdigest)passwordsaltdkLencounthashAlgopHashr!is U/var/www/html/Resume-Scraper/venv/lib/python3.12/site-packages/Crypto/Protocol/KDF.pyPBKDF1r*9s: x H LL$ 'E   F v~TW]]^^ 4yA~G#d)STT a * %,,.)* <<>&5 !!c tt|}r r tdts tds~fdfd d}d}t ||kr|t j d|zgd z |tt fd t|Dz }|dz }t ||kr^nd}d}t ||krtjd}|jj|t j d|zj} ||j| |z }|dz }t ||kr|d|S) aDerive one or more keys from a password (or passphrase). This function performs key derivation according to the PKCS#5 standard (v2.0). Args: password (string or byte string): The secret password to generate the key from. Strings will be encoded as ISO 8859-1 (also known as Latin-1), which does not allow any characters with codepoints > 255. salt (string or byte string): A (byte) string to use for better protection from dictionary attacks. This value does not need to be kept secret, but it should be randomly chosen for each derivation. It is recommended to use at least 16 bytes. Strings will be encoded as ISO 8859-1 (also known as Latin-1), which does not allow any characters with codepoints > 255. dkLen (integer): The cumulative length of the keys to produce. Due to a flaw in the PBKDF2 design, you should not request more bytes than the ``prf`` can output. For instance, ``dkLen`` should not exceed 20 bytes in combination with ``HMAC-SHA1``. count (integer): The number of iterations to carry out. The higher the value, the slower and the more secure the function becomes. You should find the maximum number of iterations that keeps the key derivation still acceptable on the slowest hardware you must support. Although the default value is 1000, **it is recommended to use at least 1000000 (1 million) iterations**. prf (callable): A pseudorandom function. It must be a function that returns a pseudorandom byte string from two parameters: a secret and a salt. The slower the algorithm, the more secure the derivation function. If not specified, **HMAC-SHA1** is used. hmac_hash_module (module): A module from ``Crypto.Hash`` implementing a Merkle-Damgard cryptographic hash, which PBKDF2 must use in combination with HMAC. This parameter is mutually exclusive with ``prf``. Return: A byte string of length ``dkLen`` that can be used as key material. If you want multiple keys, just break up this string into segments of the desired length. z2'prf' and 'hmac_hash_module' are mutually exlusiveN_pbkdf2_hmac_assistcNtj||jSNr rr!)pshmac_hash_modules r)zPBKDF2..stxx1.>?FFHr+c>|d|dc|d<|d<|dS)Nrr)r2r"prfs r)linkzPBKDF2..links.1s8QqT2JAaD!A$Q4Kr+r+rz>Ic3.K|] }ywr/r6).0jr8r2s r) zPBKDF2..s"Aq47"As)rr r hasattrrstructpackrrranger rcopyupdater!r-) r"r#r$r%r7r3keyr(base first_digestr8r2s ` `` @@r)PBKDF2rGds_`x H 4=D MNN {'/ '*,AB ;HC  #hXtfkk$&::;.s488Aq #@#@#Br+)r7zError %X while running scryptr+r) bit_sizer rG_raw_scrypt_lib scryptROMix_raw_salsa20_libSalsa20_8_corerrrrrz)r"r#rNrr1rprf_hmac_sha256stage_1rcoredata_outflowr buffer_outresultdkrs r)scryptr_sN Xa[1_"122G|(( C!G ,,-..BOXtQWq[!IG!--K  * *DH1 1Sj1n)#'2 WS#a-8'%cAg.! # D(-aTA(> ?T#c!e_ ?E ? F 3BZ!Qi af b A a)CF #C MM!C& WWV_F 6? @s5Dc  d}g}t|D]A}|j|}t|ddjd}|j |Cdj |}t |dz}|dk(r td|dk(r|dd}n |d k(r|dd }td t |d Dcgc] }|||d z }}g}|D]&} |j tt| d(d j |}|Scc}w)Nrr9rrrzIncorrect lengthrrr+) rfindrrryrzrr rAr r) rr2rrrrmodulo4bits8rrs r)_bcrypt_decodersJA D 4[ffQiC ""1% E 774=D$i!mG!|+,, ACRy ACRy(-aTA(> ?T#c!e_ ?E ? F ' d3q!9o&' XXf F M @s0Dc ddlm}t|dkDr tdd|cxkrdkstdtd|j ||j |||}|}t dD]}|j|}|S) Nr) _EKSBlowfishHz6The password is too long. It must be 72 bytes at most.rz-bcrypt cost factor must be in the range 4..31@) Crypto.Cipherrrr rMODE_ECBrAencrypt) r"costr#constantinvertrcipherctext_s r) _bcrypt_hashrs* 8}rQRR OOHII HII   h (=(=tT6 RF E 2Y&u%& Lr+ct|d}|jtdddk7r tdt |dkr|dz }| t d}t |dk7r td t |||d d }d tt|jd z}d t|z}t|dd}d|z|z|zS)a>Hash a password into a key, using the OpenBSD bcrypt protocol. Args: password (byte string or string): The secret password or pass phrase. It must be at most 72 bytes long. It must not contain the zero byte. Unicode strings will be encoded as UTF-8. cost (integer): The exponential factor that makes it slower to compute the hash. It must be in the range 4 to 31. A value of at least 12 is recommended. salt (byte string): Optional. Random byte string to thwarts dictionary and rainbow table attacks. It must be 16 bytes long. If not passed, a random value is generated. Return (byte string): The bcrypt hash Raises: ValueError: if password is longer than 72 bytes or if it contains the zero byte zutf-8rrwz#The password contains the zero byterrKNrez!bcrypt salt must be 16 bytes longsOrpheanBeholderScryDoubtT$r9s$2a) rrr r rrrr strrr)r"rr#rcost_encsalt_enchash_encs r)bcryptrs4x)H}}T!WQZ B&>?? 8}rG |# 4yB<== 4/JD QEd3t9??1-..HnT**HeCRj)H H x '( 22r+ct|}t|dk7rtdt|z|dddk7r tdtjd}|j |}|s tdt |jd }d|cxkrd kstd td t|jd }t|||}td }tjd||j}tjd||j} || k7r tdy)aVerify if the provided password matches the given bcrypt hash. Args: password (byte string or string): The secret password or pass phrase to test. It must be at most 72 bytes long. It must not contain the zero byte. Unicode strings will be encoded as UTF-8. bcrypt_hash (byte string, bytearray): The reference bcrypt hash the password needs to be checked against. Raises: ValueError: if the password does not match <z;Incorrect length of the bcrypt hash: %d bytes instead of 60Nrs$2a$zUnsupported prefixs@\$2a\$([0-9][0-9])\$([A-Za-z0-9./]{22,22})([A-Za-z0-9./]{31,31})zIncorrect bcrypt hash formatrrzIncorrect costr9re) digest_bitsrDrzIncorrect bcrypt hash)rrr recompilematchrgrouprrrrrr!) r" bcrypt_hashr1rrr# bcrypt_hash2secretmac1mac2s r) bcrypt_checkr"s* +&K ;2VY\]hYiijj2A'!-.. WXA  A 788 qwwqz?D OO)** )** !''!* %D(D$/L b !F ;;3F E L L ND ;;3F F M M OD t|011r+c|d}|jddk7r tdt||zdzd}||z}d}d} t| |krHt|d|zdz|z|z} | ||| z } |dz }|d kDr td t| |krH|dk(r| d|St d ||D cgc] } | | | |z } } | Scc} w) aJDerive one or more keys from a master secret using a pseudorandom function in Counter Mode, as specified in `NIST SP 800-108r1 `_. Args: master (byte string): The secret value used by the KDF to derive the other keys. It must not be a password. The length on the secret must be consistent with the input expected by the :data:`prf` function. key_len (integer): The length in bytes of each derived key. prf (function): A pseudorandom function that takes two byte strings as parameters: the secret and an input. It returns another byte string. num_keys (integer): The number of keys to derive. Every key is :data:`key_len` bytes long. By default, only 1 key is derived. label (byte string): Optional description of the purpose of the derived keys. It must not contain zero bytes. context (byte string): Optional information pertaining to the protocol that uses the keys, such as the identity of the participants, nonces, session IDs, etc. It must not contain zero bytes. Return: - a byte string (if ``num_keys`` is not specified), or - a tuple of byte strings (if ``num_key`` is specified). NrrKrwzNull byte found in contextrrr+lzOverflow in SP800 108 counterr)rr rrr) rrr7rlabelr key_len_encrr(rr{rrs r)SP800_108_CounterrOsB||G"566( 2Q 6:K8#J A B b'J Q"U*W4w>L c&$ Q z><= = b'J 1}(7|%Q G<>#cGm$>> >s.C)N)rerNN)rN)rr/)Nr+r+)0rr? functoolsrCrypto.Util.py3compatrrrrrr r Crypto.Hashr r r rrCrypto.Util.strxorr Crypto.RandomrCrypto.Util.numberrrrrCrypto.Util._raw_apirrrrrrr*rGobjectrIrurrrrrrrrrr6r+r)rs2 666:9%*MM<<-,,-("VTn]6]@ / dM`08  ,3^*2Z8r+