~h,FddlZddlZddlmZddlmZddlmZddlm Z ddl m Z ddl m Z ddlmZdd lmZdd lmZdd lmZdd lmZdd lmZddlmZddlmZddlmZddlmZddlmZGddeZ GddeZ!GddeZ"GddeZ#GddeZ$d(dZ%e e!dd ejLe!d!d"ejNejPejRejRde!d#d$ejNejPejTejTde"d%e"d&e"d'e#d%e#d&e#d'e$de$d%e$d&e$d'gZ+y))N)default_backend)hashes)padding)Cipher)AES)GCM) ConcatKDFHash)aes_key_unwrap) aes_key_wrap)to_bytes) to_native)urlsafe_b64decode)urlsafe_b64encode) JWEAlgorithm)ECKey)OctKey)RSAKeyc.eZdZdZdZdZdZddZdZy) DirectAlgorithmdirz$Direct use of a shared symmetric keyc,tj|SNr import_keyselfraw_datas Y/opt/mcp/mcp-sentiment/venv/lib/python3.12/site-packages/authlib/jose/rfc7518/jwe_algs.py prepare_keyzDirectAlgorithm.prepare_key  **ciSr)renc_algkeys rgenerate_presetzDirectAlgorithm.generate_preset s r"Ncz|jd}t|dz|jk7r tdd|dS)NencryptInvalid "cek" lengthr"ekcek get_op_keylenCEK_SIZE ValueErrorrr%headersr&presetr.s rwrapzDirectAlgorithm.wrap#s=nnY' s8a<7++ +34 4#&&r"ct|jd}t|dz|jk7r td|S)Ndecryptr*r+r/)rr%r-r5r&r.s runwrapzDirectAlgorithm.unwrap)s7nnY' s8a<7++ +34 4 r"r) __name__ __module__ __qualname__name descriptionr r'r7r:r$r"rrrs D8K+' r"rc0eZdZdZdZdZdZddZdZy) RSAAlgorithmic.||_||_||_yr)r>r?r)rr>r?pad_fns r__init__zRSAAlgorithm.__init__5s & r"c,tj|Sr)rrrs rr zRSAAlgorithm.prepare_key:r!r"c*|j}d|iSNr. generate_cekrr%r&r.s rr'zRSAAlgorithm.generate_preset=""$s|r"Nc|r d|vr|d}n|j}|jd}|j|jkr td|j ||j }||dS)Nr.wrapKeyz.A key of size 2048 bits or larger MUST be usedr,)rIr0key_sizer3r)r)rr%r5r&r6r.op_keyr-s rr7zRSAAlgorithm.wrapAsk evo-C&&(C * ??T]] *MN N ^^C .%%r"c|jd}|j||j}t|dz|jk7r t d|SN unwrapKeyr*r+)r0r9rr1r2r3rr%r-r5r&rOr.s rr:zRSAAlgorithm.unwrapMsK ,nnR. s8a<7++ +34 4 r"r) r;r<r=rNrDr r'r7r:r$r"rrArA0s"H + &r"rAc8eZdZdZdZdZdZdZd dZdZ y) AESAlgorithmc>d|d|_d|d|_||_y)NAKWzAES Key Wrap using -bit keyr>r?rNrrNs rrDzAESAlgorithm.__init__Ws*z$ 0 (C  r"c,tj|Srrrs rr zAESAlgorithm.prepare_key\r!r"c*|j}d|iSrGrHrJs rr'zAESAlgorithm.generate_preset_rKr"clt|dz|jk7rtd|jdyNr*zA key of size z bits is required.r1rNr3rr&s r _check_keyzAESAlgorithm._check_keyc4 s8a<4== (~dmm_d|d|_d|d|_||_y)NrWGCMKWz Key wrapping with AES GCM using rYrZr[s rrDzAESGCMAlgorithm.__init__s*z' =hZxP  r"c,tj|Srrrs rr zAESGCMAlgorithm.prepare_keyr!r"c*|j}d|iSrGrHrJs rr'zAESGCMAlgorithm.generate_presetrKr"clt|dz|jk7rtd|jdyr_r`ras rrbzAESGCMAlgorithm._check_keyrcr"Nc|r d|vr|d}n|j}|jd}|j|d}tj|dz}t t |t|t} | j} | j|| jz} tt|tt| jd} | || dS)Nr.rM`r*backend)rjrkr-r.header)rIr0rbosurandomrrrr encryptorupdatefinalizer rrk) rr%r5r&r6r.rOiv_sizerjcipherencr-hs rr7zAESGCMAlgorithm.wraps evo-C&&(C *   ZZ1 %F SWo6GH  ZZ_s||~ --b12.sww78 22r"c|jd}|j||jd}|s td|jd}|s tdt t |}t t |}t t|t||t}|j} | j|| jz} t| dz|jk7r td| S) NrRrjzMissing "iv" in headersrkzMissing "tag" in headersrsr*r+)r0rbgetr3rr rrrr decryptorrzr{r1r2) rr%r-r5r&rOrjrkr}dr.s rr:zAESGCMAlgorithm.unwraps ,  [[ 67 7kk% 78 8 x| , .F SS\?;LM    hhrlQZZ\) s8a<7++ +34 4 r"r) r;r<r= frozenset EXTRA_HEADERSrDr r'rbr7r:r$r"rriri}s/tUm,M! +Q32r"ricXeZdZgdZeZd dZdZdZdZ dZ dZ d Z d Z d d Zd Zy)ECDHESAlgorithm)epkapuapvNc|d|_d|_nd|d|_d|d|_||_t||_y)NzECDH-ESz(ECDH-ES in the Direct Key Agreement modez ECDH-ES+ArXz/ECDH-ES using Concat KDF and CEK wrapped with A)r>r?rNrUaeskwr[s rrDzECDHESAlgorithm.__init__sP  !DIID #H:R0DIA(2N  ! !(+ r"c\t||jr|Stj|Sr) isinstanceALLOWED_KEY_CLSrrrs rr zECDHESAlgorithm.prepare_keys( h 4 4 5O))r"c|j|}|j|}||d}|j|j}||d<|S)N)rrvr.)_generate_ephemeral_key_prepare_headersrNrI)rr%r&rrr6r.s rr'zECDHESAlgorithm.generate_presetsR**3/  ! !# &* == $&&(CF5M r"c|jt|d}nt|d}t|jdd}t|jdd}tjd|}||z|z|zS)Nr~algrTr>I)rNu32be_len_inputrstructpack)rr5bit_sizealg_idapu_infoapv_infopub_infos rcompute_fixed_infoz"ECDHESAlgorithm.compute_fixed_infos} == $WU^4F$WU^4F#7;;u#5t<#7;;u#5t<;;tX. 8+h66r"c|ttj|dz|t}|j |S)Nr*) algorithmlength otherinfort)r rSHA256rderive)r shared_key fixed_inforckdfs rcompute_derived_keyz#ECDHESAlgorithm.compute_derived_keys6mmoq= #%   {{:&&r"cn|j|}|j||}|j|||Sr)exchange_shared_keyrr)rr&pubkeyr5rrrs rdeliverzECDHESAlgorithm.delivers9,,V4 ,,Wh? '' JIIr"c.|j|ddS)NcrvT) is_private) generate_keyras rrz'ECDHESAlgorithm._generate_ephemeral_keysE t<&>?1c!f9??w@s 1c|j |j}n |j}|r d|vr|d}i}n"|j|}|j|}|j d}|j ||||} |jd| |dS|r d|vrd|di} nd} |j j| } |j j||| | } || d<| S)NrrMr"rur.rv) rNr2rrr0rrr r7) rr%r5r&r6rrr public_keydk preset_for_kwkekrvs rr7zECDHESAlgorithm.wraps == ''H}}H evo-CA..s3C%%c*A^^I. \\#z7H = == bA6 6 evo"F5M2M Mjj$$R( ZZ__WgsM B8  r"cjd|vr td|j |j}n |j}|j|d}|j d}|j ||||}|j|S|j j|} |j j|||| S)NrzMissing "epk" in headersrM) r3rNr2rr0rrr r:) rr%r-r5r&rrrrrs rr:zECDHESAlgorithm.unwrap%s  78 8 == ''H}}HnnWU^,^^I. \\#z7H = == Ijj$$R(zz  "gs;;r"r)r;r<r=rrrrDr r'rrrrrr7r:r$r"rrrs?)MO ,* 7$'J = :rsz 81=9A<FA?,-55-l.#<#L$<$N@l@Fv