| Server IP : 192.158.238.246 / Your IP : 3.138.174.90 Web Server : LiteSpeed System : Linux uniform.iwebfusion.net 4.18.0-553.27.1.lve.1.el8.x86_64 #1 SMP Wed Nov 20 15:58:00 UTC 2024 x86_64 User : jenniferflocom ( 1321) PHP Version : 8.1.32 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /opt/alt/python37/lib64/python3.7/site-packages/Crypto/PublicKey/__pycache__/ |
Upload File : |
B
����t~�^y5������������������@���s����d�Z�dZdddddgZddlZejd�d krBejd
�d
krBdd
lT�dd
lmZmZm Z �dd
l
m
Z
�yddlm
Z
�W�n�e
k
r����dZ
Y�nX�G�dd��de j �ZG�dd��de�Ze��ZejZejZejZdS�)ax��DSA public-key signature algorithm.
DSA_ is a widespread public-key signature algorithm. Its security is
based on the discrete logarithm problem (DLP_). Given a cyclic
group, a generator *g*, and an element *h*, it is hard
to find an integer *x* such that *g^x = h*. The problem is believed
to be difficult, and it has been proved such (and therefore secure) for
more than 30 years.
The group is actually a sub-group over the integers modulo *p*, with *p* prime.
The sub-group order is *q*, which is prime too; it always holds that *(p-1)* is a multiple of *q*.
The cryptographic strength is linked to the magnitude of *p* and *q*.
The signer holds a value *x* (*0<x<q-1*) as private key, and its public
key (*y* where *y=g^x mod p*) is distributed.
In 2012, a sufficient size is deemed to be 2048 bits for *p* and 256 bits for *q*.
For more information, see the most recent ECRYPT_ report.
DSA is reasonably secure for new designs.
The algorithm can only be used for authentication (digital signature).
DSA cannot be used for confidentiality (encryption).
The values *(p,q,g)* are called *domain parameters*;
they are not sensitive but must be shared by both parties (the signer and the verifier).
Different signers can share the same domain parameters with no security
concerns.
The DSA signature is twice as big as the size of *q* (64 bytes if *q* is 256 bit
long).
This module provides facilities for generating new DSA keys and for constructing
them from known components. DSA keys allows you to perform basic signing and
verification.
>>> from Crypto.Random import random
>>> from Crypto.PublicKey import DSA
>>> from Crypto.Hash import SHA
>>>
>>> message = "Hello"
>>> key = DSA.generate(1024)
>>> h = SHA.new(message).digest()
>>> k = random.StrongRandom().randint(1,key.q-1)
>>> sig = key.sign(h,k)
>>> ...
>>> if key.verify(h,sig):
>>> print "OK"
>>> else:
>>> print "Incorrect signature"
.. _DSA: http://en.wikipedia.org/wiki/Digital_Signature_Algorithm
.. _DLP: http://www.cosic.esat.kuleuven.be/publications/talk-78.pdf
.. _ECRYPT: http://www.ecrypt.eu.org/documents/D.SPA.17.pdf
z$Id$�generate� construct�error�DSAImplementation�_DSAobj�����N��������)�*)�_DSA� _slowmath�pubkey)�Random)� _fastmathc���������������@���s����e�Zd�ZdZdddddgZdd��Zd d
��Zd
d
��Zd
d��Zdd��Z dd��Z
dd��Z
dd��Z
dd��Z
dd��Zdd
��Zd
d
��Zd d ��Zd!d"��Zd#d$��Zd%d&��Zd'd(��Zd)d*��Zd+d,��Zd-S�).r���zlClass defining an actual DSA key.
:undocumented: __getstate__, __setstate__, __repr__, __getattr__
�y�g�p�q�xc�������������C���s���||�_�||�_d�S�)N)�implementation�key)�selfr���r�����r����G/opt/alt/python37/lib64/python3.7/site-packages/Crypto/PublicKey/DSA.py�__init__s���s����z_DSAobj.__init__c�������������C���s.���||�j�krt|�j|�S�td|�jj|f���d�S�)Nz
%s object has no %r attribute)�keydata�getattrr����AttributeError� __class__�__name__)r����attrnamer���r���r����
__getattr__w���s����
z_DSAobj.__getattr__c�������������C���s���t�j��|�||�S�)a���Sign a piece of data with DSA.
:Parameter M: The piece of data to sign with DSA. It may
not be longer in bit size than the sub-group order (*q*).
:Type M: byte string or long
:Parameter K: A secret number, chosen randomly in the closed
range *[1,q-1]*.
:Type K: long (recommended) or byte string (not recommended)
:attention: selection of *K* is crucial for security. Generating a
random number larger than *q* and taking the modulus by *q* is
**not** secure, since smaller values will occur more frequently.
Generating a random number systematically smaller than *q-1*
(e.g. *floor((q-1)/8)* random bytes) is also **not** secure. In general,
it shall not be possible for an attacker to know the value of `any
bit of K`__.
:attention: The number *K* shall not be reused for any other
operation and shall be discarded immediately.
:attention: M must be a digest cryptographic hash, otherwise
an attacker may mount an existential forgery attack.
:Return: A tuple with 2 longs.
.. __: http://www.di.ens.fr/~pnguyen/pub_NgSh00.htm
)r
����sign)r����M�Kr���r���r���r!������s����
z
_DSAobj.signc�������������C���s���t�j��|�||�S�)aE��Verify the validity of a DSA signature.
:Parameter M: The expected message.
:Type M: byte string or long
:Parameter signature: The DSA signature to verify.
:Type signature: A tuple with 2 longs as return by `sign`
:Return: True if the signature is correct, False otherwise.
)r
����verify)r���r"���Z signaturer���r���r���r$�������s����
z_DSAobj.verifyc�������������C���s
���t�d��d�S�)NzDSA cannot encrypt)� TypeError)r����cr#���r���r���r����_encrypt����s����z_DSAobj._encryptc�������������C���s
���t�d��d�S�)NzDSA cannot decrypt)r%���)r���r&���r���r���r����_decrypt����s����z_DSAobj._decryptc�������������C���s
���t�d��d�S�)NzDSA cannot blind)r%���)r����m�rr���r���r����_blind����s����z_DSAobj._blindc�������������C���s
���t�d��d�S�)NzDSA cannot unblind)r%���)r���r)���r*���r���r���r����_unblind����s����z_DSAobj._unblindc�������������C���s���|�j��||�S�)N)r����_sign)r���r)����kr���r���r���r-�������s����z
_DSAobj._signc�������������C���s���|\}}|�j��|||�S�)N)r����_verify)r���r)����sigr*����sr���r���r���r/�������s����z_DSAobj._verifyc�������������C���s
���|�j����S�)N)r����
has_private)r���r���r���r���r2�������s����z_DSAobj.has_privatec�������������C���s
���|�j����S�)N)r����size)r���r���r���r���r3�������s����z
_DSAobj.sizec�������������C���s���dS�)NFr���)r���r���r���r���� can_blind����s����z_DSAobj.can_blindc�������������C���s���dS�)NFr���)r���r���r���r����
can_encrypt����s����z_DSAobj.can_encryptc�������������C���s���dS�)NTr���)r���r���r���r����can_sign����s����z_DSAobj.can_signc�������������C���s$���|�j��|�jj|�jj|�jj|�jjf�S�)N)r���r���r���r���r���r���r���)r���r���r���r���� publickey����s����z_DSAobj.publickeyc���������� ���C���sB���i�}x8|�j�D�].}yt|�j|�||<�W�q
�tk
r8���Y�q
X�q
W�|S�)N)r���r���r���r
���)r����dr.���r���r���r����
__getstate__����s����
z_DSAobj.__getstate__c�������������C���sV���t�|�d�st��|�_g�}x&|�jD�]
}||kr,P�|�||���q
W�|�jjjt|���|�_d�S�)Nr���) �hasattrr���r���r����append�_math�
dsa_construct�tupler���)r���r8����tr.���r���r���r����
__setstate__����s����
z_DSAobj.__setstate__c�������������C���sz���g�}xF|�j�D�]<}|dkr2|�d|����d�f���q
t|�j|�r
|�|��q
W�|����r^|�d��d|�jjt|��d� |�f�S�)Nr���zp(%d)r���Zprivatez
<%s @0x%x %s>�,)
r���r;���r3���r:���r���r2���r
���r
����id�join)r����attrsr.���r���r���r����__repr__����s����
z_DSAobj.__repr__N)r
����
__module__�
__qualname__�__doc__r���r���r ���r!���r$���r'���r(���r+���r,���r-���r/���r2���r3���r4���r5���r6���r7���r9���r@���rE���r���r���r���r���r���`���s*���
c���������������@���s<���e�Zd�ZdZdd��Zdd��Zd
dd�Zdd d
�Zd
d
��ZdS�)r���z�
A DSA key factory.
This class is only internally used to implement the methods of the
`Crypto.PublicKey.DSA` module.
c�������������K���sr���|��dd�}|dkr,tdk r$t|�_qPt|�_n$|rJtdk r@t|�_qPtd��nt|�_|�jj|�_|��dd�|�_d|�_dS�)a���Create a new DSA key factory.
:Keywords:
use_fast_math : bool
Specify which mathematic library to use:
- *None* (default). Use fastest math available.
- *True* . Use fast math.
- *False* . Use slow math.
default_randfunc : callable
Specify how to collect random data:
- *None* (default). Use Random.new().read().
- not *None* . Use the specified function directly.
:Raise RuntimeError:
When **use_fast_math** =True but fast math is not available.
�
use_fast_mathNz
fast math module not availableZdefault_randfunc)�getr���r<���r
����
RuntimeErrorr���Z_default_randfunc�_current_randfunc)r����kwargsrI���r���r���r���r�������s����
zDSAImplementation.__init__c�������������C���s(���|d�k r
|S�|�j�d�kr"t���j|�_�|�j�S�)N)rL���r
����new�read)r����randfuncr���r���r����
_get_randfunc!��s
����
z DSAImplementation._get_randfuncNc�������������C���s>���x*dD�]"}|dd|��kr|���|||�S�qW�td|f���dS�)a���Randomly generate a fresh, new DSA key.
:Parameters:
bits : int
Key length, or size (in bits) of the DSA modulus
*p*.
It must be a multiple of 64, in the closed
interval [512,1024].
randfunc : callable
Random number generation function; it should accept
a single integer N and return a string of random data
N bytes long.
If not specified, a new one will be instantiated
from ``Crypto.Random``.
progress_func : callable
Optional function that will be called with a short string
containing the key parameter currently being generated;
it's useful for interactive applications where a user is
waiting for a key to be generated.
:attention: You should always use a cryptographically secure random number generator,
such as the one defined in the ``Crypto.Random`` module; **don't** just use the
current time and the ``random`` module.
:Return: A DSA key object (`_DSAobj`).
:Raise ValueError:
When **bits** is too little, too big, or not a multiple of 64.
) r���r���r���������������������������i����@���zNNumber of bits in p must be a multiple of 64 between 512 and 1024, not %d bitsN)� _generate�
ValueError)r����bitsrP����
progress_func�ir���r���r���r���(��s����!
zDSAImplementation.generatec�������������C���s@���|���|�}t�|||�}|�j�|j|j|j|j|j �}t
|�|�S�)N)
rQ���r
���Z
generate_pyr<���r=���r���r���r���r���r���r���)r���r[���rP���r\���Zrf�objr���r���r���r���rY���S��s����
zDSAImplementation._generatec�������������C���s���|�j�j|��}t|�|�S�)a���Construct a DSA key from a tuple of valid DSA components.
The modulus *p* must be a prime.
The following equations must apply:
- p-1 = 0 mod q
- g^x = y mod p
- 0 < x < q
- 1 < g < p
:Parameters:
tup : tuple
A tuple of long integers, with 4 or 5 items
in the following order:
1. Public key (*y*).
2. Sub-group generator (*g*).
3. Modulus, finite field order (*p*).
4. Sub-group order (*q*).
5. Private key (*x*). Optional.
:Return: A DSA key object (`_DSAobj`).
)r<���r=���r���)r����tupr���r���r���r���r���Y��s����
zDSAImplementation.construct)NN)NN) r
���rF���rG���rH���r���rQ���r���rY���r���r���r���r���r���r�������s
���*
+
)rH����
__revision__�__all__�sys�
version_infoZCrypto.Util.py21compatZCrypto.PublicKeyr
���r
���r
����Cryptor
���r����
ImportErrorr����objectr����_implr���r���r���r���r���r���r����<module>N���s&���
��