~hdZddlZddlZddlmZddlmZddlmZddl m Z ddl m Z ddl m Z dd lmZd d lmZd d lmZGddeZGddeZeddeddeddedededgZy)zauthlib.jose.rfc7518. ~~~~~~~~~~~~~~~~~~~~ Cryptographic Algorithms for Cryptographic Algorithms for Content Encryption per `Section 5`_. .. _`Section 5`: https://tools.ietf.org/html/rfc7518#section-5 N) InvalidTag)default_backend)Cipher)AES)CBC)GCM)PKCS7)JWEEncAlgorithm) encode_intc(eZdZdZdZdZdZdZy)CBCHS2EncAlgorithmcd|d||_d}|j|||_||_|dz|_|dz|_t td||_y)NAzCBC-HSz9AES_{}_CBC_HMAC_SHA_{} authenticated encryption algorithmr sha) nameformat descriptionkey_sizekey_lenCEK_SIZEgetattrhashlibhash_alg)selfr hash_typetpls Y/opt/mcp/mcp-sentiment/venv/lib/python3.12/site-packages/authlib/jose/rfc7518/jwe_encs.py__init__zCBCHS2EncAlgorithm.__init__sbz {3 I::h :! 1}  1  3yk):; ctt|dzd}||z|z|z}tj|||jj }|d|j S)Nr@)r lenhmacnewrdigestr)r ciphertextaadivkeyalmsgds r!_hmaczCBCHS2EncAlgorithm._hmac+sY C1 b )Bh#b( HHS#t}} - 4 4 64<<  r#c|j||d|j}||jd}ttjj }|j ||jz}tt|t|t} | j} | j || jz} |j| |||} | | fS)aKey Encryption with AES_CBC_HMAC_SHA2. :param msg: text to be encrypt in bytes :param aad: additional authenticated data in bytes :param iv: initialization vector in bytes :param key: encrypted key in bytes :return: (ciphertext, iv, tag) Nbackend) check_ivrr r block_sizepadderupdatefinalizerrr encryptorr1) rr/r+r,r-hkeyekeypad padded_datacipherencr*tags r!encryptzCBCHS2EncAlgorithm.encrypt1s b>T\\"4<<>"CNN#**,jjo 6 D 3r7O4EF ZZ ,s||~= jjS"d33r#c|j||d|j}||jd}|j||||}tj||s t t t|t|t} | j} | j|| jz} ttjj} | j| | jzS)aDKey Decryption with AES AES_CBC_HMAC_SHA2. :param ciphertext: ciphertext in bytes :param aad: additional authenticated data in bytes :param iv: initialization vector in bytes :param tag: authentication tag in bytes :param key: encrypted key in bytes :return: message Nr3)r5rr1r'compare_digestrrrrr decryptorr8r9r r6unpadder) rr*r+r,rAr-r;dkey_tagr?r0dataunpads r!decryptzCBCHS2EncAlgorithm.decryptGs b>T\\"4<<>"zz*c2t4""4-, D 3r7O4EF    xx #ajjl2cnn%..0||D!ENN$444r#N)__name__ __module__ __qualname__IV_SIZEr"r1rBrKr#r!rrsG <! ,5r#rc"eZdZdZdZdZdZy)GCMEncAlgorithm`cLd|d|_d|d|_||_||_y)NrrzAES GCM using z-bit key)rrrr)rrs r!r"zGCMEncAlgorithm.__init__es1z% +H:X>    r#c|j|tt|t|t }|j }|j ||j||jz}||jfS)aKey Encryption with AES GCM. :param msg: text to be encrypt in bytes :param aad: additional authenticated data in bytes :param iv: initialization vector in bytes :param key: encrypted key in bytes :return: (ciphertext, iv, tag) r3) r5rrrrr:authenticate_additional_datar8r9rA)rr/r+r,r-r?r@r*s r!rBzGCMEncAlgorithm.encryptksl bC#b'?3DE  ((-ZZ_s||~5 377""r#c|j|tt|t||t }|j }|j ||j||jzS)a6Key Decryption with AES GCM. :param ciphertext: ciphertext in bytes :param aad: additional authenticated data in bytes :param iv: initialization vector in bytes :param tag: authentication tag in bytes :param key: encrypted key in bytes :return: message r3) r5rrrrrErVr8r9)rr*r+r,rAr-r?r0s r!rKzGCMEncAlgorithm.decrypt{sa bC#b#,8IJ     &&s+xx #ajjl22r#N)rLrMrNrOr"rBrKrPr#r!rRrR`sG! # 3r#rRrii)__doc__rr'cryptography.exceptionsrcryptography.hazmat.backendsr&cryptography.hazmat.primitives.ciphersr1cryptography.hazmat.primitives.ciphers.algorithmsr,cryptography.hazmat.primitives.ciphers.modesrr&cryptography.hazmat.primitives.paddingr rfc7516r utilr rrRJWE_ENC_ALGORITHMSrPr#r!rds .89A<<8%D5D5N)3o)3ZsC sC sC CCC r#