o 5 h(U@sdZddlZddlZeeZddlmZmZm Z m Z ddl m Z ddl mZmZmZmZddlmmZddgZdZd Zd Zd Zdd dZedZedZedZGdddejej ej!ej"Z#Gddde#Z$Gddde#Z%dS)z9passlib.handlers.sha2_crypt - SHA256-Crypt / SHA512-CryptN) safe_crypt test_crypt repeat_string to_unicode)h64)byte_elem_valueu uascii_to_strunicode sha512_crypt sha256_crypt))rrr)rrrrr)rrr)rrrrr)rrrr)rrrrr)  r rr  rrr )@*rrr+rrr,-rrr.r r"r/0r'r$r&1r)r+r(23r.r-r4r/ r56!rr7"#r89$r!r#:%&r%;<'r*r,=()r>?Fcst|tr |d}t|tsJt|vr tj|rtt t |}d|kr1dks6JdJdt|ts?Jd|d}t |}|dksPJd|rXt j }t }nt j}t}||||}|||} | j} | t|||} | r| | d @r|n|| d L} | s{| } |d krt||||} n||}|j}|d } | r||| d 8} | st||} t | |ksJ||d t| d d |}t ||ksJd| | }| |}| |||| || ||gfddtD}| }t|d\}}|r)|D]\}}|||||}q|d 8}|s |r[|d ?}|d |D]\}}|||||}q6|d @r[||||d }t||dS)aperform raw sha256-crypt / sha512-crypt this function provides a pure-python implementation of the internals for the SHA256-Crypt and SHA512-Crypt algorithms; it doesn't handle any of the parsing/validation of the hash strings themselves. :arg pwd: password chars/bytes to hash :arg salt: salt chars to use :arg rounds: linear rounds cost :arg use_512: use sha512-crypt instead of sha256-crypt mode :returns: encoded checksum chars zutf-8ɚ;zinvalid roundszsalt not unicodeasciir%zsalt too larger`r#rNzsalt_len somehow > hash_len!cs g|] \}}||fqSrT).0evenoddpermsrTo/var/www/html/construction_image-detection-poc/venv/lib/python3.10/site-packages/passlib/handlers/sha2_crypt.py s z#_raw_sha2_crypt..r0) isinstancer encodebytes_BNULLuhexcNullPasswordErrorr r lenhashlibsha512_512_transpose_mapsha256_256_transpose_mapdigestupdaterr_c_digest_offsetsdivmodrencode_transposed_bytesdecode)pwdsaltroundsuse_512pwd_lensalt_len hash_const transpose_mapdba_ctx a_ctx_updateidadptmp_ctxtmp_ctx_updatedsdp_dpdp_dsdatadcblockstailrVrWpairsrTrXrZ_raw_sha2_crypt8sr ! $  $.    rzrounds=$0cseZdZdZdZejZdZejZ dZ dZ dZ dZ dZdZdfd d Zd d Zd dZeddZddZdZdZeddZddZeddZddZZS) _SHA2_CommonzBclass containing common code shared by sha256_crypt & sha512_crypt)rprqimplicit_rounds salt_sizer#rPrQlinearFNc s8tt|jdi||dur|jo|jdk}||_dS)NrT)superr__init__ use_defaultsrqr)selfrkwds __class__rTrZrs z_SHA2_Common.__init__cC|j||jdudSN)relaxed) _norm_saltchecksum)rrprTrTrZ _parse_saltz_SHA2_Common._parse_saltcCrr) _norm_roundsr)rrqrTrTrZ _parse_rounds#rz_SHA2_Common._parse_roundscCst|dd}|j}||stj|t|dksJ|ddt}|dt rStt dks4J| ddd}|t rL|t krLtj |t |}d}nd}d}t|d krb|\}}nt|d kro|d}d}ntj|||||p{d|d S) NrRhashrrr&FrTrr)rqrprr)rident startswithr`raInvalidHashErrorrcsplit_UDOLLAR_UROUNDSpop_UZEROZeroPaddedRoundsErrorintMalformedHashError)clsrrpartsrqrrpchkrTrTrZ from_string's6        z_SHA2_Common.from_stringcCsd|jdkr|jrtd|j|j|jptdf}t|Std|j|j|j|jp+tdf}t|S)Nrz%s%s$%sz%srounds=%d$%s$%s)rqrrrrprr )rrrTrTrZ to_stringTs z_SHA2_Common.to_string)os_cryptbuiltincCst|jr ||jdSdS)NTF)r _test_hash_set_calc_checksum_backend_calc_checksum_os_cryptrrTrTrZ_load_backend_os_cryptis  z#_SHA2_Common._load_backend_os_cryptcCsf|}t||}|dur||S|j}||jr$|| dtkr,tj ||||| dS)Nr) rr_calc_checksum_builtin checksum_sizerrrr`raCryptBackendError)rsecretconfigrcsrTrTrZrqs  z$_SHA2_Common._calc_checksum_os_cryptcCs||jdS)NT)rrrrTrTrZ_load_backend_builtins z"_SHA2_Common._load_backend_builtincCst||j|j|jSN)rrprq _cdb_use_512)rrrTrTrZrs z#_SHA2_Common._calc_checksum_builtinr)__name__ __module__ __qualname____doc__ setting_kwdsr` HASH64_CHARSchecksum_chars max_salt_size salt_chars min_rounds max_rounds rounds_costr_rounds_prefixrrrr classmethodrrbackendsrrrrr __classcell__rTrTrrZrs4 ,   rc@s(eZdZdZdZedZdZdZdZ dS)r aKThis class implements the SHA256-Crypt password hash, and follows the :ref:`password-hash-api`. It supports a variable-length salt, and a variable number of rounds. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 0-16 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type rounds: int :param rounds: Optional number of rounds to use. Defaults to 535000, must be between 1000 and 999999999, inclusive. .. note:: per the official specification, when the rounds parameter is set to 5000, it may be omitted from the hash string. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``rounds`` that are too small or too large, and ``salt`` strings that are too long. .. versionadded:: 1.6 .. commented out, currently only supported by :meth:`hash`, and not via :meth:`using`: :type implicit_rounds: bool :param implicit_rounds: this is an internal option which generally doesn't need to be touched. this flag determines whether the hash should omit the rounds parameter when encoding it to a string; this is only permitted by the spec for rounds=5000, and the flag is ignored otherwise. the spec requires the two different encodings be preserved as they are, instead of normalizing them. z$5$r1i))testz?$5$rounds=1000$test$QmQADEXMG8POI5WDsaeho0P36yK3Tcrgboabng6bkb/N) rrrrnamerrrdefault_roundsrrTrTrTrZr s.c@s,eZdZdZdZedZdZdZdZ dZ dS)r aKThis class implements the SHA512-Crypt password hash, and follows the :ref:`password-hash-api`. It supports a variable-length salt, and a variable number of rounds. The :meth:`~passlib.ifc.PasswordHash.using` method accepts the following optional keywords: :type salt: str :param salt: Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 0-16 characters, drawn from the regexp range ``[./0-9A-Za-z]``. :type rounds: int :param rounds: Optional number of rounds to use. Defaults to 656000, must be between 1000 and 999999999, inclusive. .. note:: per the official specification, when the rounds parameter is set to 5000, it may be omitted from the hash string. :type relaxed: bool :param relaxed: By default, providing an invalid value for one of the other keywords will result in a :exc:`ValueError`. If ``relaxed=True``, and the error can be corrected, a :exc:`~passlib.exc.PasslibHashWarning` will be issued instead. Correctable errors include ``rounds`` that are too small or too large, and ``salt`` strings that are too long. .. versionadded:: 1.6 .. commented out, currently only supported by :meth:`hash`, and not via :meth:`using`: :type implicit_rounds: bool :param implicit_rounds: this is an internal option which generally doesn't need to be touched. this flag determines whether the hash should omit the rounds parameter when encoding it to a string; this is only permitted by the spec for rounds=5000, and the flag is ignored otherwise. the spec requires the two different encodings be preserved as they are, instead of normalizing them. z$6$VTi )rzj$6$rounds=1000$test$2M/Lx6MtobqjLjobw0Wmo4Q5OFx5nVLJvmgseatA6oMnyWeBdRDx4DU.1H3eGmse6pgsOgDisWBGI5c7TZauS0N) rrrrrrrrrrrrTrTrTrZr s/)F)&rrdlogging getLoggerrlog passlib.utilsrrrrpasslib.utils.binaryrpasslib.utils.compatrrr r passlib.utils.handlersutilshandlersr`__all__r_rkrhrfrrrrHasManyBackends HasRoundsHasSaltGenericHandlerrr r rTrTrTrZs2    BB