h_W8dZddlZddlZejeZddlmZddlm Z m Z m Z ddl m Z mZddlmZmZmZmZmZddlmZddlmcmZgdZd Zd Zd Zd Zd Z GddejBejDejFejHZ%GddejDejLejFejHZ'GddejFejHZ(GddejBejFejHZ)y)zFpasslib.handlers.des_crypt - traditional unix (DES) crypt and variantsN)warn) safe_crypt test_crypt to_unicode)h64h64big)byte_elem_valueu uascii_to_strunicodesuppress_cause)des_encrypt_int_block) des_crypt bsdi_cryptbigcryptcrypt16c>tdt|ddDS)zconvert secret to 64-bit DES key. this only uses the first 8 bytes of the secret, and discards the high 8th bit of each byte at that. a null parity bit is inserted after every 7th bit of the output. c3PK|]\}}t|dzd|dzz z yw)9N)r ).0ics \/var/www/html/Resume-Scraper/venv/lib/python3.12/site-packages/passlib/handlers/des_crypt.py z'_crypt_secret_to_key..(s321a "T)r!A#v62s$&Nr)sum enumerate)secrets r_crypt_secret_to_keyr!s) 2$VBQZ02 22cdt|dk(sJtj|}t|tr|j d}t|t sJt|vr#tjjtt|}t|d|d}tj|S)z pure-python backed for des_cryptutf-8r)lenr decode_int12 isinstancer encodebytes_BNULLuhexcNullPasswordErrorrr!rr encode_int64)r salt salt_value key_valueresults r_raw_des_cryptr5+s t9>!!$'J&'"w' fe $$ff&&y11%V,I#9aR @F   v &&r"ct|}d}t|}||kr*|dz}t|||}t|||z }|}||kr*|S)z,convert secret to DES key used by bsdi_cryptr)r!r'r)r r3idxendnext tmp_values r_bsdi_secret_to_keyr;Isb$V,I C f+C )Qw(D)9: ))Y?)K  ) r"cDtj|}t|tr|j d}t|t sJt |vr#tjjtt|}t|d||}tj|S)z"pure-python backend for bsdi_cryptr%r)r decode_int24r)r r*r+r,r-r.r/rr;rrr0)r roundsr1r2r3r4s r_raw_bsdi_cryptr?Us!!$'J&'"w' fe $$ff&&z22$F+I#9aV DF   v &&r"ceZdZdZdZdZejZdZ dxZ Z ejZ dZ ejedej"ej$zZedZdZd Zd Zed Zd Zed ZdZy)raThis class implements the des-crypt password hash, and follows the :ref:`password-hash-api`. It supports a fixed-length salt. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 2 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :param bool truncate_error: By default, des_crypt will silently truncate passwords larger than 8 bytes. Setting ``truncate_error=True`` will cause :meth:`~passlib.ifc.PasswordHash.hash` to raise a :exc:`~passlib.exc.PasswordTruncateError` instead. .. versionadded:: 1.7 :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``salt`` strings that are too long. .. versionadded:: 1.6 r1truncate_error r$rzU ^ (?P[./a-z0-9]{2}) (?P[./a-z0-9]{11})? $cLt|dd}|dd|dd}}|||xsdS)Nasciihashr$r1checksum)r)clsrFr1chks r from_stringzdes_crypt.from_strings6$0!Hd12hcs{d33r"c`td|j|jfz}t|SNz%s%sr r1rHr selfrFs r to_stringzdes_crypt.to_string(yDIIt}}55T""r"c^|jr|j||j|S)N) use_defaults_check_truncate_policy_calc_checksum_backendrPr s r_calc_checksumzdes_crypt._calc_checksums*     ' ' /**622r"os_cryptbuiltincTtddr|j|jyy)Ntest abgOeLfPimXQoTFr_set_calc_checksum_backend_calc_checksum_os_cryptrIs r_load_backend_os_cryptz des_crypt._load_backend_os_crypts& fo .  * *3+F+F Gr"ct||j}||j|S|j|jrt |dk7r+t j j||j||ddS)N r$)rr1_calc_checksum_builtin startswithr'r-r.CryptBackendError)rPr rFs rraz!des_crypt._calc_checksum_os_cryptsn&$)), <..v6 6tyy)SY"_&&**4DA AABxr"c:|j|jyNTr`rfrbs r_load_backend_builtinzdes_crypt._load_backend_builtin &&s'A'ABr"cjt||jjdjdSNrE)r5r1r*decoderWs rrfz des_crypt._calc_checksum_builtins)fdii&6&6w&?@GGPPr"N)__name__ __module__ __qualname____doc__name setting_kwdsr- HASH64_CHARSchecksum_chars checksum_size min_salt_size max_salt_size salt_chars truncate_sizerecompiler XI _hash_regex classmethodrKrQrXbackendsrcrarlrfr"rrrpsH D-L __NM %&%MMJ M"**Q ttBDDy K 44 #3'H  Qr"rcHeZdZdZdZdZdZejZ dxZ Z ejZ dZ dZdZdZej$ed ej(ej*zZed Zd Zd Zefd ZefdZfdZdZedZdZ edZ!dZ"xZ#S)ra This class implements the BSDi-Crypt password hash, and follows the :ref:`password-hash-api`. It supports a fixed-length salt, and a variable number of rounds. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 4 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type rounds: int :param rounds: Optional number of rounds to use. Defaults to 5001, must be between 1 and 16777215, inclusive. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``rounds`` that are too small or too large, and ``salt`` strings that are too long. .. versionadded:: 1.6 .. versionchanged:: 1.6 :meth:`hash` will now issue a warning if an even number of rounds is used (see :ref:`bsdi-crypt-security-issues` regarding weak DES keys). )r1r>rCiilinearz ^ _ (?P[./a-z0-9]{4}) (?P[./a-z0-9]{4}) (?P[./a-z0-9]{11})? $ct|dd}|jj|}|stjj ||j ddd\}}}|tj|jd||S)NrErFr>r1rJ)r>r1rH) rrmatchr-r.InvalidHashErrorgrouprr=r*)rIrFmr>r1rJs rrKzbsdi_crypt.from_string4s$0 OO ! !$ '&&))#. .GGHfe<c##FMM'$:;  r"ctdtj|jj d|j |j fz}t|S)Nz_%s%s%srE)r r encode_int24r>rpr1rHr rOs rrQzbsdi_crypt.to_stringAsI|s// <CCGL#yy$--99T""r"Tc tt| di|}|jdzs$t dt j j|S)NrzHbsdi_crypt rounds should be odd, as even rounds may reveal weak DES keysr)superrusingdefault_roundsrr-r.PasslibSecurityWarning)rIkwdssubcls __class__s rrzbsdi_crypt.usingNsBz3-55$$q( [.. 0 r"c2tt| }|dzS)Nr)rr_generate_rounds)rIr>rs rrzbsdi_crypt._generate_roundsWsz38: axr"c J|jdzsytt|di|S)NrTr)r>rr_calc_needs_update)rPrrs rrzbsdi_crypt._calc_needs_updatees&{{QZ9ADAAr"rYcTtddr|j|jyy)Nr]z_/...lLDAxARksGCHin.TFr_rbs rrcz!bsdi_crypt._load_backend_os_cryptts' f4 5  * *3+F+F Gr"c|j}t||}||j|S|j|ddrt |dk7r!t j j||||ddS)N )rQrrfrgr'r-r.rh)rPr configrFs rraz"bsdi_crypt._calc_checksum_os_crypt|ss!&&) <..v6 6vbqz*c$i2o&&**4> >CDzr"c:|j|jyrjrkrbs rrlz bsdi_crypt._load_backend_builtinrmr"ct||j|jjdj dSro)r?r>r1r*rprWs rrfz!bsdi_crypt._calc_checksum_builtins0vt{{DII4D4DW4MNUUV]^^r")$rqrrrsrtrurvryr-rwrxrzr{r|r min_rounds max_rounds rounds_costr~rr rrrrrKrQ_avoid_even_roundsrrrrrcrarlrf __classcell__rs@rrrsF D%LM__N%&%MMJNJJK"**Q  ttBDDy K    #B'H  _r"rceZdZdZdZdZejZdxZ Z ejZ e jede je j zZedZdZd fd ZdZxZS) ragThis class implements the BigCrypt password hash, and follows the :ref:`password-hash-api`. It supports a fixed-length salt. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 22 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``salt`` strings that are too long. .. versionadded:: 1.6 )r1r$zX ^ (?P[./a-z0-9]{2}) (?P([./a-z0-9]{11})+)? $ct|dd}|jj|}|stjj ||j dd\}}|||SNrErFr1rJrGrrrr-r.rrrIrFrr1rJs rrKzbigcrypt.from_string]$0 OO ! !$ '&&))#. .GGFE* cs++r"c`td|j|jfz}t|SrMrNrOs rrQzbigcrypt.to_stringrRr"ctt| ||}t|dzrtj j ||S)N)relaxedrC)rr_norm_checksumr'r-r.r)rPrHrrs rrzbigcrypt._norm_checksums?47'7R x=2 &&))$/ /r"ct|tr|jd}t||jjd}d}t |}||kr"|dz}|t||||ddz }|}||kr"|j dS)Nr%rErri)r)r r*r5r1r'rp)rPr rJr7r8r9s rrXzbigcrypt._calc_checksums fg &]]7+FVTYY%5%5g%>?&kCi7D >&T"2CBK@ @CCCizz'""r")F)rqrrrsrtrurvr-rwrxrzr{r|r~rr rrrrrKrQrrXrrs@rrrs4 DL__N%&%MMJ "**Q ttBDDy K ,,# #r"rceZdZdZdZdZdZejZ dxZ Z ejZ dZ ejedej"ej$zZedZdZd Zy ) raThis class implements the crypt16 password hash, and follows the :ref:`password-hash-api`. It supports a fixed-length salt. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 2 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :param bool truncate_error: By default, crypt16 will silently truncate passwords larger than 16 bytes. Setting ``truncate_error=True`` will cause :meth:`~passlib.ifc.PasswordHash.hash` to raise a :exc:`~passlib.exc.PasswordTruncateError` instead. .. versionadded:: 1.7 :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``salt`` strings that are too long. .. versionadded:: 1.6 rAr$zU ^ (?P[./a-z0-9]{2}) (?P[./a-z0-9]{22})? $ct|dd}|jj|}|stjj ||j dd\}}|||Srrrs rrKzcrypt16.from_string+rr"c`td|j|jfz}t|SrMrNrOs rrQzcrypt16.to_string4rRr"ct|tr|jd}|jr|j | t j |jjd}t|}t|d|d}t|dd}t|d|d}tj|tj|z}|jdS#t$rttdwxYw) Nr%rEzinvalid chars in saltrrrr)r)r r*rTrUrr(r1 ValueErrorr r!rrr0rp)rPr r2key1result1key2result2rJs rrXzcrypt16._calc_checksum;s fg &]]7+F     ' ' / F))$))*:*:7*CDJ $F+(aR@$F1RL1(aQ?!!'*V-@-@-IIzz'""# F ,C!DE E Fs .CC=N)rqrrrsrtrurvryr-rwrxrzr{r|r}r~rr rrrrrKrQrXrr"rrrsH D-L M__N %&%MMJ M "**Q ttBDDy K ,,##r"r)*rtr~logging getLoggerrqlogwarningsr passlib.utilsrrrpasslib.utils.binaryrrpasslib.utils.compatr r r r r passlib.crypto.desrpasslib.utils.handlersutilshandlersr-__all__r,r!r5r;r? TruncateMixinHasManyBackendsHasSaltGenericHandlerr HasRoundsrrrrr"rrsL  'g''1=<,[[4##   2'< '6}Q  ""4"4bjj"BSBS}QF]_##R\\2::r?P?P]_FM#rzz2,,M#fn#b B,=,=n#r"