h dZddlmZmZddlZej eZddlZddl Z ddl m Z dZ da ddlmZddlmZddlmZmZmZddlmZmZdd lmZmZmZmZmZddlm cm!Z"d gZ#ed Z$ed Z%ed Z&e&e$e%fZ'e(e'Z)dZ* ddl+Z e,e dsdZ*dZ ne,e dsdZ*dZ e,e dr(e j\Z/e j`jbZ2nGddZ3e3Z/dZ2Gdde"jhe"jje"jle"jne"jpe"jrZ:Gdde:Z;Gdde:Z<Gdde:Z=Gdd e;e:Z+y#e-$rdZ YwxYw)apasslib.handlers.argon2 -- argon2 password hash wrapper References ========== * argon2 - home: https://github.com/P-H-C/phc-winner-argon2 - whitepaper: https://github.com/P-H-C/phc-winner-argon2/blob/master/argon2-specs.pdf * argon2 cffi wrapper - pypi: https://pypi.python.org/pypi/argon2_cffi - home: https://github.com/hynek/argon2_cffi * argon2 pure python - pypi: https://pypi.python.org/pypi/argon2pure - home: https://github.com/bwesterb/argon2pure )with_statementabsolute_importN)warn)exc) MAX_UINT32) classpropertyto_bytes render_bytes) b64s_encode b64s_decode)uunicode bascii_to_str uascii_to_strPY2argon2ididTypezb'argon2' module points to unsupported 'argon2' pypi package; please install 'argon2-cffi' instead. low_levelz@'argon2-cffi' is too old, please update to argon2_cffi >= 18.2.0PasswordHasherc$eZdZdZdZdZdZdZdZy)_DummyCffiHashera dummy object to use as source of defaults when argon2_cffi isn't present. this tries to mimic the attributes of ``argon2.PasswordHasher()`` which the rest of this module reads. .. note:: values last synced w/ argon2 19.2 as of 2019-11-09 iN) __name__ __module__ __qualname____doc__ time_cost memory_cost parallelismsalt_lenhash_lenY/var/www/html/Resume-Scraper/venv/lib/python3.12/site-packages/passlib/handlers/argon2.pyrr]s"    r'rceZdZdZdZdZejZe jjdzZ e jjdzZ ejZdZeZej$ZdZeZdZd ZeZd ZdZd Zd ZiZed Z e!Z"ejFZ#eZ$ejJZ%e&dZ'd Z(e) dfd Z*e)dZ+e,jZdZ.e)dZ/e,jZde,j`Z1e)dZ2dZ3d fd Z4e)dZ5e)dZ6e)d!dZ7e)dZ8fdZ9dZ:e)dZ;e)d"dZ<xZ=S)# _Argon2Commona& Base class which implements brunt of Argon2 code. This is then subclassed by the various backends, to override w/ backend-specific methods. When a backend is loaded, the bases of the 'argon2' class proper are modified to prepend the correct backend-specific subclass. r) salt salt_sizer$roundsr!r"r# digest_sizer%type)r0)r$r!r%r/lineariNFcL|jt|jS)zj return tuple of types supported by this backend .. versionadded:: 1.7.2 ) get_backendtuple_backend_type_map)clss r( type_valuesz_Argon2Common.type_valuess S**++r'c(|jtk(S)zn flag indicating a Type D hash .. deprecated:: 1.7.2; will be removed in passlib 2.0 )r0TYPE_Dselfs r(type_dz_Argon2Common.type_dsyyF""r'c  |d| vr td|| d<|d| vr td|| d<|| td|}|| td|}tt|di| } || j || _| j d} |It|tjr t|}tj| |dtd | | _ |=t|tjr t|}| j|| | _| j!| j| j"|Et|tjr t|}|d kr|d k7rt%d|fz|| _| S)Nr.z/'time_cost' and 'rounds' are mutually exclusiver-z1'salt_len' and 'salt_size' are mutually exclusivez3'hash_len' and 'digest_size' are mutually exclusivez8'checksum_size' and 'digest_size' are mutually exclusiverelaxedrr/)minmaxparamrA)rAr2r4z7max_threads (%d) must be -1 (unlimited), or at least 1.r&) TypeErrorsuperr+using _norm_typer0get isinstanceuhnative_string_typesint norm_integerr checksum_size_norm_memory_costr"_validate_constraintsr# ValueError max_threads) r9r0r"r$r!r/rOr%rSkwdssubclsrA __class__s r(rGz_Argon2Common.usings  4 QRR&DN  d" STT (D   & UVV"K  $& Z[['K}c0848   ++D1FK((9%  "+r'='=>!+. #%??6;BT^9FPW$YF   "+r'='=>!+. !'!9!9+w!9!WF  $$V%7%79K9KL  "+r'='=>!+. Q;"#4 !Z"-"011!,F  r'cPd|z}||krtd|j|||fzy)Nr1zO%s: memory_cost (%d) is too low, must be at least 8 * parallelism (8 * %d = %d))rRname)r9r"r#min_memory_costs r(rQz#_Argon2Common._validate_constraintsBsDk/  (=!hh )?<<= = )r'z^\$argon2[a-z]+\$cftj|}|jj|duSN)rKto_unicode_for_identify _ident_regexmatch)r9hashs r(identifyz_Argon2Common.identifyTs.))$/%%d+477r's ^ \$argon2(?P[a-z]+)\$ (?: v=(?P\d+) \$ )? m=(?P\d+) , t=(?P\d+) , p=(?P\d+) (?: ,keyid=(?P[^,$]+) )? (?: ,data=(?P[^,$]+) )? (?: \$ (?P[^$]+) (?: \$ (?P.+) )? )? $ c :t|tr|jd}t|tst j |d|j j|}|st j||jddddddd d d \ }}}}}}} } } |r td ||jd |r t|ndt|t|t|| r t| nd| r t| nd| rt| SdS)Nutf-8r_r0versionr"r!r#keyiddatar,digestz&argon2 'keyid' parameter not supportedasciir)r0rcr"r.r#r,rechecksum)rJrencodebytesrExpectedStringError _hash_regexr^MalformedHashErrorgroupNotImplementedErrordecoderMr ) r9r_mr0rcr"r!r#rdrer,rfs r( from_stringz_Argon2Common.from_strings dG $;;w'D$&))$7 7 OO ! !$ '((- - GGFI}k=VVX 7 Vg{I{E4v %&NO OW%$+CLK(y>K(&*T"&*T",2[(  9=  r'c |j}|dk(rd}nd|z}|j}|r"dtt|jz}nd}dt |j ||j |j|j|tt|jtt|jfzS)Nrzv=%d$z,data=z"$argon2%s$%sm=%d,t=%d,p=%d%s$%s$%s) rcrerr rr0r"r.r#r,rh)r>rcvstrrekdstrs r( to_stringz_Argon2Common.to_strings,, d?DW$Dyy }[-CDDEE4 $)) $     KK     +dii0 1 +dmm4 5 7  r'c |rtd|Jt}|jd}|t||_t t |d i||/tj||j|jdsJ|j||_ |/tj||j|jdsJ|j||_ |/tj||j|jdsJ|j||_||j Jyt#|t$s!tj&j)|dd||_y) Nzoargon2 `type_d=True` keyword is deprecated, and will be removed in passlib 2.0; please use ``type="d"`` insteadrhr0)rDrcr"rjrer&)rr<rIlenrOrFr+__init__rKvalidate_default_valuer0rHrc _norm_versionr"rPrerJrjrExpectedTypeError) r>r0r?rcr"rerTrhrVs r(rzz_Argon2Common.__init__sX  3 4< D88J'  !$XD  mT+3d3 <,,T499dooU[\ \-DI ?,,T4<<ASAS3<> > --g6DL  ,,T43C3CTE[E[3@B B $55kBD  <99$ $$dE*ff..tWfEEDIr'ct|tsItr"t|tr|j d}n!t j j|dd|tvr|S|j}|tvr|Std|)Nrgstrr0zunknown argon2 hash type: ) rJrrrjrprKrr} ALL_TYPES_SETlowerrR)r9valuetemps r(rHz_Argon2Common._norm_typesz%)z%/ W-ff..ueVDD M !L{{} = K5BCCr'c8t|tjs!tjj |dd|dkr|dk7rt d|fz|j }||jkDr&t d|j|||jfz|S)Nintegerrcr)rzinvalid argon2 hash version: %dzk%s: hash version 0x%X not supported by %r backend (max version is 0x%X); try updating or switching backends) rJrK int_typesrr}rRr6 max_versionrX)r9rcbackends r(r|z_Argon2Common._norm_version s'2<<0&&**7IyI I T>go>'KL L//# S__ $Y!hh#//JKL Lr'cJtj|||jd|S)Nr")rBrDrA)rKrNrY)r9r"rAs r(rPz_Argon2Common._norm_memory_costs&sKS5H5H%2GE Er'c |j|S#t$rYnwxYwd|d|jd}t|)z> helper to resolve backend constant from type zunsupported argon2 hash (type z not supported by z backend))r8KeyErrorr6rR)r9rmsgs r(_get_backend_typez_Argon2Common._get_backend_type%sL  ((/ /    coo')os  c Nt|}|j|jk7ry|j}|||jkDr |j}|j|kry|j|jk7ry|j |j k7ryt t|"di|S)NTr&) r0min_desired_versionrrcr"rOrFr+_calc_needs_update)r>rTr9minverrVs r(rz _Argon2Common._calc_needs_update7s4j 99 (( >Vcoo5__F <<&    s .   !2!2 2]D<DtDDr'z> -- recommend you install one (e.g. 'pip install argon2_cffi')cJ|j}t|tr|dk\sJ|dkr'td|ztj j tD]}||jvs||_ ytd|ztj jt|_ y)z helper called by from backend mixin classes' _load_backend_mixin() -- invoked after backend imports have been loaded, and performs feature detection & testing common to all backends. rr)z6%r doesn't support argon2 v1.3, and should be upgradedz)%r lacks support for all known hash typesT) rrJrMrrKrPasslibSecurityWarning ALL_TYPESr8r0PasslibRuntimeWarningTYPE_ID) mixin_clsrXdryrunrr0s r(_finalize_backend_mixinz%_Argon2Common._finalize_backend_mixinMs ++ +s+ t0CC   IDP.. 0 %Dy222!%   % rtextrs r(_adapt_backend_errorz"_Argon2Common._adapt_backend_errorgs //# rrrr rX setting_kwds_default_settingsr%rOrKGenericHandler_always_parse_settings_unparsed_settingsr$default_salt_size min_salt_sizer max_salt_sizer!default_rounds min_rounds max_rounds rounds_costmax_parallelism_default_versionrrrYrSpure_use_threadsr8rr:rr0r#rcr"propertyr?re classmethodrGrQrecompiler]r`XrlrrrwrzrHr|rPrr_no_backend_suggestionrr __classcell__rVs@r(r+r+ss3 D L0&..M ..EE&'**==MN *22MM'00NJJK $O#KOK ,, D$//KG$//K ## D [_=A99v==2::23L882"**6 7K:  4 8,dDD( EE  "E(^299r'r+ceZdZdZedZedZejddedZ fdZ xZ S) _NoBackendz mixin used before any backend has been loaded. contains stubs that force loading of one of the available backends. cD|j|j|Sr[)_stub_requires_backendr_)r9secrets r(r_z_NoBackend.hashs ""$xxr'cF|j|j||Sr[)rverify)r9rr_s r(rz_NoBackend.verifys ""$zz&$''r'z1.7z2.0) deprecatedremovedcF|j|j||Sr[)rgenhash)r9rconfigs r(rz_NoBackend.genhashs! ""${{66**r'cJ|jtt||Sr[)rrFr_calc_checksum)r>rrVs r(rz_NoBackend._calc_checksums% ##%VT1&99r') rrrr rr_rrKdeprecated_methodrrrrs@r(rrse  ((RUE:+;+::r'rcteZdZdZedZedZedeDZ edZ edZ dZ y) _CffiBackendz argon2_cffi backend c|tusJt trtjtytj j }tjdtj|tj}i}tD] } t||j||<"||_|x|_|_|j)||S#t$r|tt fvs Jd|zYmwxYw)NFzOdetected 'argon2_cffi' backend, version %r, with support for 0x%x argon2 hashesunexpected missing type: %r)r _argon2_cffi_argon2_cffi_errorrPasslibSecurityErrorrARGON2_VERSIONlogdebug __version__rrgetattrupperAttributeErrorTYPE_Ir<r8rcrr)rrXrrTypeEnumtype_mapr0s r(_load_backend_mixinz _CffiBackend._load_backend_mixinsL((  !../ABB",,;;  c**K 9 $$ ZD Z!(4::>" ZFF#33Y5RUY5YY3 Zs C!C65C6c tj|t|d} ttj j |j|j|j|j|jt|j|j|S#tjj$r}|j!|d}~wwxYw)Nrb)r0r"r!r#r,r%r)rKvalidate_secretr rrr hash_secretrr0r"rr#_generate_saltrO exceptions HashingErrorr)r9rrs r(r_z_CffiBackend.hashs 6"&'* 0 !7!7!C!C**3884OO,,OOc0023**"D" &&33 0**3/ / 0sBB**CCCc#VK|]!}td|jd|f#yw)s $argon2%s$rgN)r ri).0r0s r( z_CffiBackend.s-2#) G8LMtT2s')c tj|t|d}t|d}|jj |dd|j ddzt }|j|} tjj|||}|dusJy#tjj$rYytjj$r}|j||d}~wwxYw)Nrbrgr2$TFr_)rKrr _byte_ident_maprIfindrrrr verify_secretrVerifyMismatchErrorVerificationErrorr)r9rr_r0 type_coderesultrs r(rz_CffiBackend.verifys 6"&'*g&""&&t,AQtyyq/A-A'BFK))$/  ;!++99$ RFT> !&&:: &&88 ;**3T*: : ;s6'BC1=C1C,,C1c :tj|t|d}|j|} t t j j|j|j|j|j|jt|j|j||j}|jdk(r|j'dd}|S#t j j"$r}|j%||d}~wwxYw)Nrb)r0r"r!r#r,r%rrcrrz$v=16$$)rKrr rrrrrrrr0r"r.r#r,rOrcrrrreplace)r9rrr>rrs r(rz_CffiBackend.genhashs 6"&'*v& ="<#9#9#E#E**4995 ,,++ ,,dii(++ $F $ F <<4 ^^Hc2F &&33 =**3V*< < =sBC%%DDDctd)Nz-shouldn't be called under argon2_cffi backend)AssertionError)r>rs r(rz_CffiBackend._calc_checksum*sLMMr'N) rrrr rrr_dictrrrrrr&r'r(rrsv??>00&2'022O;;,6Nr'rc&eZdZdZedZdZy) _PureBackendz argon2pure backend c|tusJ ddla ddlm}t jd||stdtji}tD]'} ttd|jz||<)||_|x|_|_|j)||S#t$rYywxYw#t$rt j dYywxYw#t$r|tt fvs Jd|zYwxYw) NrF)ARGON2_DEFAULT_VERSIONz\detected 'argon2pure' backend, but package is too old (passlib requires argon2pure >= 1.2.3)zBdetected 'argon2pure' backend, with support for 0x%x argon2 hasheszUsing argon2pure backend, which is 100x+ slower than is required for adequate security. Installing argon2_cffi (via 'pip install argon2_cffi') is strongly recommendedARGON2r)r argon2pure _argon2pure ImportErrorrrwarningrrrrrrrrrr<r8rcrr)rrXrrrr0s r(rz _PureBackend._load_backend_mixin<s L((  ,   H V  +,/,F,F H  ZD Z!(h6M!N Z '/ #4?? I100v>>=     KKA B $" ZFF#33Y5RUY5YY3 Zs4B"B1$C" B.-B.1CC!C98C9c 0tj|t|d}t||j|j |j |j|j|j|j|j}|jdkDr|j|d<|jrd|d<|jr|j|d< tj d i|S#tj"$r}|j%||d}~wwxYw) Nrb)passwordr,r!r"r# tag_lengthrrcrthreadsT use_threadsassociated_datar=r&)rKrr rr,r.r"r#rOrr0rcrSrrerr Argon2Errorr)r>rrTrs r(rz_PureBackend._calc_checksumns 6"&'*kk(((()),,TYY7LL     a "..DO  "&D  99&*iiD" # <%%-- -&& <++Cd+; ; r __future__rrlogging getLoggerrrrtypeswarningsrrrpasslibrpasslib.crypto.digestr passlib.utilsrr r passlib.utils.binaryr r passlib.utils.compatr rrrrpasslib.utils.handlersutilshandlersrK__all__rr<rrsetrrrhasattrrrrrrrrSubclassBackendMixinParallelismMixin HasRounds HasRawSaltHasRawChecksumrr+rrrr&r'r(rs "7g!   ,??9NN##   3 3 D'ff % I ! < ( 4  \; /_  <)*3 335#--<<   )* R9B++R-@-@LL"--1B1B%%R9v!:!:TsN=sNxT<=T