U ]$@sdZddlZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z ddl mZddl mZddlmZmZmZeeZGd d d ejZejGd d d eZejGd ddeZejGdddeZdS) JSON Web Key.N)default_backend)hashes) serialization)ec)rsa)errors json_utilutilc@sdeZdZdZdZiZdZeZddddZ e j fdd Z e jd d Zedd d ZedddZdS)JWKrZktyN),:T)indentZ separatorsZ sort_keysc sPtj|td}|tjtfddt Dfj  | S)zgCompute JWK Thumbprint. https://tools.ietf.org/html/rfc7638 :returns: bytes )backendc3s$|]\}}|jkr||fVqdSN)required).0kvselfr ,/usr/lib/python3/dist-packages/josepy/jwk.py 3s z!JWK.thumbprint..) rZHashrupdatejsondumpsdictsix iteritemsZto_json_thumbprint_json_dumps_paramsencodefinalize)rZ hash_functionZdigestr rr thumbprint)s zJWK.thumbprintcCs tdS)ziGenerate JWK with public key. For symmetric cryptosystems, this would return ``self``. NNotImplementedErrorrr r r public_key8szJWK.public_keyc Cs|dkrtn|}i}tjtjfD]L}z||||WStttjjfk rl}z |||<W5d}~XYq"Xq"tj tj fD]H}z|||WSttjjfk r}z |||<W5d}~XYq|Xq|t d |dS)NzUnable to deserialize key: {0})rrZload_pem_private_keyZload_der_private_key ValueError TypeError cryptography exceptionsZUnsupportedAlgorithmZload_pem_public_keyZload_der_public_keyrErrorformat)clsdatapasswordrr*loadererrorr r r_load_cryptography_keyAs*zJWK._load_cryptography_keyc Csz||||}Wn>tjk rP}ztd|t|dWYSd}~XYnX|jtk r~t||j s~td |j |j t |jD]}t||j r||dSqtd |j dS)aLoad serialized key as JWK. :param str data: Public or private key serialized as PEM or DER. :param str password: Optional password. :param backend: A `.PEMSerializationBackend` and `.DERSerializationBackend` provider. :raises errors.Error: if unable to deserialize, or unsupported JWK algorithm :returns: JWK of an appropriate type. :rtype: `JWK` z,Loading symmetric key, asymmetric failed: %skeyNz"Unable to deserialize {0} into {1}zUnsupported algorithm: {0})r2rr+loggerdebugJWKOcttypNotImplemented isinstancecryptography_key_typesr, __class__rZ itervaluesTYPES)r-r.r/rr4r1Zjwk_clsr r rload[s"    zJWK.load)NN)NN)__name__ __module__ __qualname____doc__type_field_namer=r;r9rr rZSHA256r#abcabstractmethodr& classmethodr2r>r r r rr s    r c@sJeZdZdZdZejejfZde j ddfZ ddZ e dd Zd d Zd S) JWKESzeZdZdZdZdZdejfZddZ e ddZ d d Z d S) r7zSymmetric JWK.octr3rcCsdt|jiS)Nr)r encode_b64joser4rr r rrJszJWKOct.fields_to_partial_jsoncCs|t|ddS)Nrr3)r decode_b64joserKr r rrMszJWKOct.fields_from_jsoncCs|Srr rr r rr&szJWKOct.public_keyN) r?r@rArBr8 __slots__r rCrrJrFrMr&r r r rr7s  r7csteZdZdZdZejejfZdZ de j dfZ fddZ edd Zed d Zd d ZeddZddZZS)JWKRSAzRSA JWK. :ivar key: :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey` or :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey` wrapped in :class:`~josepy.util.ComparableRSAKey` ZRSAr3encs@d|kr*t|dtjs*t|d|d<tt|j||dS)Nr4)r:r ZComparableRSAKeysuperrR__init__)rargskwargsr<r rrVs  zJWKRSA.__init__cCs.dd}tt|t|dddS)zQEncode Base64urlUInt. :type data: long :rtype: unicode cSst|drd|S|S)N0)len)argr r r_leading_zeross z,JWKRSA._encode_param.._leading_zerosrZNL)r rObinasciiZ unhexlifyhexrstrip)r-r.r^r r r _encode_paramszJWKRSA._encode_paramcCs:zttt|dWStk r4tYnXdS)zDecode Base64urlUInt.N)intr`Zhexlifyr rPr'rZDeserializationError)r-r.r r r _decode_paramszJWKRSA._decode_paramcCst||jdS)Nr3)typer4r&rr r rr&szJWKRSA.public_keyc s@fdddD\}}tj||d}dkr<|t}nd}dkszdkszdkszd kszd kszd krtfd dd D\}}} } } } tdd| Drtd| tfdd| D\}}} } } n6t |||\}}t ||} t ||} t ||} t |||| | | |t}|dS)Nc3s|]}|VqdSrrfrrHrKr rrsz*JWKRSA.fields_from_json..rTrS)rSrTdpqdpdqqiZothc3s|]}|VqdSr)getri)rLr rrs)rlrmrnrorpcss|]}|dkr|VqdSrr )rZparamr r rrsz(Some private parameters are missing: {0}c3s|]}|VqdSrrhri)r-r rrsr3)rZRSAPublicNumbersr&rrftuplerr+r,Zrsa_recover_prime_factorsZ rsa_crt_dmp1Z rsa_crt_dmq1Z rsa_crt_iqmpZRSAPrivateNumbersZ private_key) r-rLrTrSpublic_numbersr4rkrlrmrnrorpZ all_paramsr rKrrMsP     zJWKRSA.fields_from_jsonc stjjtjr*j}|j|jd}n>j}j }|j|j|j |j |j |j |j|jd}tfddt|DS)Nrj)rTrSrkrlrmrnrorpc3s |]\}}||fVqdSr)rc)rr4valuerr rrsz0JWKRSA.fields_to_partial_json..)r:r4Z_wrappedr RSAPublicKeyrsrTrSZprivate_numbersr&rkrlrmZdmp1Zdmq1Ziqmprrr)rZnumbersZparamsZprivateZpublicr rrrJs&   zJWKRSA.fields_to_partial_json)r?r@rArBr8rruZ RSAPrivateKeyr;rQr rCrrVrFrcrfr&rMrJ __classcell__r r rYrrRs      &rR)rBrDr`rZloggingZcryptography.exceptionsr)rZcryptography.hazmat.backendsrZcryptography.hazmat.primitivesrrZ)cryptography.hazmat.primitives.asymmetricrrZjosepyrr r Z getLoggerr?r5ZTypedJSONObjectWithFieldsr registerrGr7rRr r r rs(      g