o _6d(U@sdZddlZddlZeeZddlmZmZm Z m Z ddl m Z ddl mZmZmZmZddlmmZddgZdZd Zd Zd Zdd dZedZedZedZGdddejej ej!ej"Z#Gddde#Z$Gddde#Z%dS)z9passlib.handlers.sha2_crypt - SHA256-Crypt / SHA512-CryptN) safe_crypt test_crypt repeat_string to_unicode)h64)byte_elem_valueu uascii_to_strunicode sha512_crypt sha256_crypt))rrr)rrrrr)rrr)rrrrr)rrrr)rrrrr)  r rr  rrr )@*rrr+rrr,-rrr.r r"r/0r'r$r&1r)r+r(23r.r-r4r/ r56!rr7"#r89$r!r#:%&r%;<'r*r,=()r>?Fcst|tr |d}t|tsJt|vr tj|rtt t |}d|kr1dks6JdJdt|ts?Jd|d}t |}|dksPJd|rXt j }t }nt j}t}||||}|||} | j} | t|||} | r| | d @r|n|| d L} | s{| } |d krt||||} n||}|j}|d } | r||| d 8} | st||} t | |ksJ||d t| d d |}t ||ksJd| | }| |}| |||| || ||gfddtD}| }t|d\}}|r)|D]\}}|||||}q|d 8}|s |r[|d ?}|d |D]\}}|||||}q6|d @r[||||d }t||dS)aperform raw sha256-crypt / sha512-crypt this function provides a pure-python implementation of the internals for the SHA256-Crypt and SHA512-Crypt algorithms; it doesn't handle any of the parsing/validation of the hash strings themselves. :arg pwd: password chars/bytes to hash :arg salt: salt chars to use :arg rounds: linear rounds cost :arg use_512: use sha512-crypt instead of sha256-crypt mode :returns: encoded checksum chars zutf-8ɚ;zinvalid roundszsalt not unicodeasciir%zsalt too larger`r#rNzsalt_len somehow > hash_len!cs g|] \}}||fqSrT).0evenoddZpermsrTrC:\Users\jesus\OneDrive\Desktop\erpjis_fastapi\backend\jisbackend\Lib\site-packages\passlib/handlers/sha2_crypt.py s z#_raw_sha2_crypt..r0) isinstancer encodebytes_BNULLuhexcZNullPasswordErrorr r lenhashlibsha512_512_transpose_mapsha256_256_transpose_mapdigestupdaterr_c_digest_offsetsdivmodrZencode_transposed_bytesdecode)pwdsaltroundsZuse_512Zpwd_lenZsalt_lenZ hash_constZ transpose_mapdbZa_ctxZ a_ctx_updateidaZdpZtmp_ctxZtmp_ctx_updateZdsZdp_dpZdp_dsdatadcblockstailrVrWpairsrTrXrY_raw_sha2_crypt8sr ! $  $.    rwzrounds=$0cseZdZdZdZejZdZejZ dZ dZ dZ dZ dZdZdfd d Zd d Zd dZeddZddZdZdZeddZddZeddZddZZS) _SHA2_CommonzBclass containing common code shared by sha256_crypt & sha512_crypt)rmrnimplicit_roundsZ salt_sizer#rPrQZlinearFNc s8tt|jdi||dur|jo|jdk}||_dS)NrT)superrz__init__Z use_defaultsrnr{)selfr{kwds __class__rTrYr~s z_SHA2_Common.__init__cC|j||jdudSN)relaxed)Z _norm_saltchecksum)rrmrTrTrY _parse_saltz_SHA2_Common._parse_saltcCrr)Z _norm_roundsr)rrnrTrTrY _parse_rounds#rz_SHA2_Common._parse_roundscCst|dd}|j}||stj|t|dksJ|ddt}|dt rStt dks4J| ddd}|t rL|t krLtj |t |}d}nd}d}t|d krb|\}}nt|d kro|d}d}ntj|||||p{d|d S) NrRhashrrr&Fr|Trr)rnrmrr{)rident startswithr_r`ZInvalidHashErrorrasplit_UDOLLAR_UROUNDSpop_UZEROZZeroPaddedRoundsErrorintZMalformedHashError)clsrrpartsrnr{rmZchkrTrTrY from_string's6        z_SHA2_Common.from_stringcCsd|jdkr|jrtd|j|j|jptdf}t|Std|j|j|j|jp+tdf}t|S)Nr|z%s%s$%sz%srounds=%d$%s$%s)rnr{rrrmrr )rrrTrTrY to_stringTs z_SHA2_Common.to_string)Zos_cryptbuiltincCst|jr ||jdSdS)NTF)r _test_hash_set_calc_checksum_backend_calc_checksum_os_cryptrrTrTrY_load_backend_os_cryptis  z#_SHA2_Common._load_backend_os_cryptcCsf|}t||}|dur||S|j}||jr$|| dtkr,tj ||||| dS)Nr) rr_calc_checksum_builtin checksum_sizerrrr_r`ZCryptBackendError)rsecretconfigrcsrTrTrYrqs  z$_SHA2_Common._calc_checksum_os_cryptcCs||jdS)NT)rrrrTrTrY_load_backend_builtins z"_SHA2_Common._load_backend_builtincCst||j|j|jSN)rwrmrn _cdb_use_512)rrrTrTrYrs z#_SHA2_Common._calc_checksum_builtinr)__name__ __module__ __qualname____doc__Z setting_kwdsr_Z HASH64_CHARSZchecksum_charsZ max_salt_sizeZ salt_charsZ min_rounds max_roundsZ rounds_costrZ_rounds_prefixr{r~rr classmethodrrbackendsrrrrr __classcell__rTrTrrYrzs4 ,   rzc@s(eZdZdZdZedZdZdZdZ dS)r aKThis class implements the SHA256-Crypt password hash, and follows the :ref:`password-hash-api`. It supports a variable-length salt, and a variable number of rounds. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 0-16 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type rounds: int :param rounds: Optional number of rounds to use. Defaults to 535000, must be between 1000 and 999999999, inclusive. .. note:: per the official specification, when the rounds parameter is set to 5000, it may be omitted from the hash string. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``rounds`` that are too small or too large, and ``salt`` strings that are too long. .. versionadded:: 1.6 .. commented out, currently only supported by :meth:`hash`, and not via :meth:`using`: :type implicit_rounds: bool :param implicit_rounds: this is an internal option which generally doesn't need to be touched. this flag determines whether the hash should omit the rounds parameter when encoding it to a string; this is only permitted by the spec for rounds=5000, and the flag is ignored otherwise. the spec requires the two different encodings be preserved as they are, instead of normalizing them. z$5$r1i))testz?$5$rounds=1000$test$QmQADEXMG8POI5WDsaeho0P36yK3Tcrgboabng6bkb/N) rrrrnamerrrdefault_roundsrrTrTrTrYr s.c@s,eZdZdZdZedZdZdZdZ dZ dS)r aKThis class implements the SHA512-Crypt password hash, and follows the :ref:`password-hash-api`. It supports a variable-length salt, and a variable number of rounds. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 0-16 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type rounds: int :param rounds: Optional number of rounds to use. Defaults to 656000, must be between 1000 and 999999999, inclusive. .. note:: per the official specification, when the rounds parameter is set to 5000, it may be omitted from the hash string. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``rounds`` that are too small or too large, and ``salt`` strings that are too long. .. versionadded:: 1.6 .. commented out, currently only supported by :meth:`hash`, and not via :meth:`using`: :type implicit_rounds: bool :param implicit_rounds: this is an internal option which generally doesn't need to be touched. this flag determines whether the hash should omit the rounds parameter when encoding it to a string; this is only permitted by the spec for rounds=5000, and the flag is ignored otherwise. the spec requires the two different encodings be preserved as they are, instead of normalizing them. z$6$VTi )rzj$6$rounds=1000$test$2M/Lx6MtobqjLjobw0Wmo4Q5OFx5nVLJvmgseatA6oMnyWeBdRDx4DU.1H3eGmse6pgsOgDisWBGI5c7TZauS0N) rrrrrrrrrrrrTrTrTrYr s/)F)&rrblogging getLoggerrlogZ passlib.utilsrrrrZpasslib.utils.binaryrZpasslib.utils.compatrrr r Zpasslib.utils.handlersutilshandlersr___all__r^rirfrdrwrrrZHasManyBackendsZ HasRoundsZHasSaltZGenericHandlerrzr r rTrTrTrYs2    BB