U ֫[%@sddlmZmZmZddlmZddlmZm Z ddl m Z e Z e dZe Ze Ze Ze ZddZdd Zd d Zd d ZddZddZGdddeZddZddZ ddZ!dS))absolute_importdivisionprint_function) exceptions)ffilib)ensurecCs`tdt}tdt}t||}t|dkdtjdt |tddt |tddfS)zu Returns a randomly generated public key and secret key. :rtype: (bytes(public_key), bytes(secret_key)) unsigned char[]rUnexpected library errorZraisingN) rnewcrypto_sign_PUBLICKEYBYTEScrypto_sign_SECRETKEYBYTESrcrypto_sign_keypairrexc RuntimeErrorbuffer)pkskrcr;/usr/lib/python3/dist-packages/nacl/bindings/crypto_sign.pyr!s   rcCsxt|tkrtdtdt}tdt}t |||}t |dkdtj dt |tddt |tddfS)z Computes and returns the public key and secret key using the seed ``seed``. :param seed: bytes :rtype: (bytes(public_key), bytes(secret_key)) z Invalid seedr rr r N) lencrypto_sign_SEEDBYTESr ValueErrorrr rrrcrypto_sign_seed_keypairrrr)Zseedrrrrrrr5s    rcCs`tdt|t}td}t|||t||}t|dkdtjdt ||dddS)z Signs the message ``message`` using the secret key ``sk`` and returns the signed message. :param message: bytes :param sk: bytes :rtype: bytes r unsigned long long *rr r N) rr rcrypto_sign_BYTESr crypto_signrrrr)messagersignedZ signed_lenrrrrrMs  rcCsVtdt|}td}t|||t||dkr>tdt||dddS)z Verifies the signature of the signed message ``signed`` using the public key ``pk`` and returns the unsigned message. :param signed: bytes :param pk: bytes :rtype: bytes r rrSignature was forged or corruptN)rr rrcrypto_sign_openrBadSignatureErrorr)r!rr Z message_lenrrrr#as   r#cCsZt|tkrtdt}td|}t||}t |dkdtj dt ||ddS)a Converts a public Ed25519 key (encoded as bytes ``public_key_bytes``) to a public Curve25519 key as bytes. Raises a ValueError if ``public_key_bytes`` is not of length ``crypto_sign_PUBLICKEYBYTES`` :param public_key_bytes: bytes :rtype: bytes Invalid curve public keyr rr r N) rrrrcrypto_sign_curve25519_BYTESrr r$crypto_sign_ed25519_pk_to_curve25519rrr)Zpublic_key_bytesZcurve_public_key_lenZcurve_public_keyrrrrr'ts   r'cCsZt|tkrtdt}td|}t||}t |dkdtj dt ||ddS)a Converts a secret Ed25519 key (encoded as bytes ``secret_key_bytes``) to a secret Curve25519 key as bytes. Raises a ValueError if ``secret_key_bytes``is not of length ``crypto_sign_SECRETKEYBYTES`` :param public_key_bytes: bytes :rtype: bytes r%r rr r N) rrrrr&rr r$crypto_sign_ed25519_sk_to_curve25519rrr)Zsecret_key_bytesZcurve_secret_key_lenZcurve_secret_keyrrrrr(s   r(c@seZdZdZdgZddZdS)crypto_sign_ed25519ph_statezO State object wrapping the sha-512 state used in ed25519ph computation statecCs2tdt|_t|j}t|dkdtjddS)Nr rr r ) rr crypto_sign_ed25519ph_STATEBYTESr*rZcrypto_sign_ed25519ph_initrrr)selfrrrr__init__s z$crypto_sign_ed25519ph_state.__init__N)__name__ __module__ __qualname____doc__ __slots__r-rrrrr)sr)cCsXtt|tdtjdtt|tdtjdt|j|t |}t|dkdtj ddS)z Update the hash state wrapped in edph :param edph: the ed25519ph state being updated :type edph: crypto_sign_ed25519ph_state :param pmsg: the partial message :type pmsg: bytes :rtype: None /edph parameter must be a ed25519ph_state objectr z%pmsg parameter must be a bytes objectrr N) r isinstancer)r TypeErrorbytesrcrypto_sign_ed25519ph_updater*rr)edphZpmsgrrrrr7s  r7cCstt|tdtjdtt|tdtjdtt|tkdttjdt dt }t |j|t j|}t|dkdtjdt |t ddS) aR Create a signature for the data hashed in edph using the secret key sk :param edph: the ed25519ph state for the data being signed :type edph: crypto_sign_ed25519ph_state :param sk: the ed25519 secret part of the signing key :type sk: bytes :return: ed25519ph signature :rtype: bytes r3r z+secret key parameter must be a bytes objectz!secret key must be {0} bytes longr rr N)rr4r)rr5r6rrformatrr rr"crypto_sign_ed25519ph_final_creater*ZNULLrr)r8r signaturerrrrr:s2    r:cCstt|tdtjdtt|tdtjdtt|tkdttjdtt|tdtjdtt|t kdt tjdt |j ||}|dkrt dd S) a Verify a prehashed signature using the public key pk :param edph: the ed25519ph state for the data being verified :type edph: crypto_sign_ed25519ph_state :param signature: the signature being verified :type signature: bytes :param pk: the ed25519 public part of the signing key :type pk: bytes :return: True if the signature is valid :rtype: boolean :raises exc.BadSignatureError: if the signature is not valid r3r z*signature parameter must be a bytes objectz signature must be {0} bytes longz+public key parameter must be a bytes objectz!public key must be {0} bytes longrr"T)rr4r)rr5r6rrr9rr"crypto_sign_ed25519ph_final_verifyr*r$)r8r;rrrrrr<s>      r<N)"Z __future__rrrZnaclrrZ nacl._sodiumrrZnacl.exceptionsrZcrypto_sign_bytesrZcrypto_sign_secretkeybytesrZcrypto_sign_publickeybytesrrZcrypto_box_secretkeybytesr&Z crypto_sign_ed25519ph_statebytesr+rrrr#r'r(objectr)r7r:r<rrrrs&   $