+ '(j;^RIHt^RIHt^RIHt^RIHt^RIH t ^RI H t RR.t !R R] 4t!R R ]4t!R R ]4t!RR]4tRRltR#)) DerSequence) long_to_bytes)Integer)HMAC)EccKey)DsaKey DssSigSchemenewcHa]tRt^-toRtRtRtRtRtRt Rt Rt Vt R #) r z_A (EC)DSA signature object. Do not instantiate directly. Use :func:`Crypto.Signature.DSS.new`. c WnW nW0nVPP4VnVP^, ^,^,VnR#)zCreate a new Digital Signature Standard (DSS) object. Do not instantiate this object directly, use `Crypto.Signature.DSS.new` instead. N)_key _encoding_order size_in_bits _order_bits _order_bytes)selfkeyencodingorders&&&&I/home/ubuntu/cf-venv/lib/python3.14/site-packages/Crypto/Signature/DSS.py__init__DssSigScheme.__init__3sE ! ;;335!--1a7!;c 6VPP4#)zJReturn ``True`` if this signature object can be used for signing messages.)r has_private)rs&rcan_signDssSigScheme.can_signAsyy$$&&rc\R4hzTo be provided by subclassesNotImplementedErrorrmsg_hashs&&r_compute_nonceDssSigScheme._compute_nonceG!"@AArc\R4hr r!r#s&&r _valid_hashDssSigScheme._valid_hashJr'rc  $VPP4'g \R4hVPV4'g \ R4hVP V4p\ P!VP4RVP4pVPPW24pVPR8Xd7RPVUu.uFp\WPP4NK up4pV#\V4P4pV#uupi)aCompute the DSA/ECDSA signature of a message. Args: msg_hash (hash object): The hash that was carried out over the message. The object belongs to the :mod:`Crypto.Hash` package. Under mode ``'fips-186-3'``, the hash must be a FIPS approved secure hash (SHA-2 or SHA-3). :return: The signature as ``bytes`` :raise ValueError: if the hash algorithm is incompatible to the (EC)DSA key :raise TypeError: if the (EC)DSA key has no private half zPrivate key is needed to signHash is not sufficiently strongNbinaryr)r r TypeErrorr) ValueErrorr%r from_bytesdigestr_signrjoinrrencode)rr$noncezsig_pairxoutputs&& rsignDssSigScheme.signMsyy$$&&;< <))>? ?##H-   x01C$2C2CD E99??1, >>X %XX(02(01 -Q0A0AB(023F !*113F 2s D c VPV4'g \R4hVPR8Xdq\V4^VP,8wd \R4hVRVPW PR3Uu.uFp\ P !V4NK upwrEMp\4PVRR7p\T4^8wgTP4'g \R4h\ T^,4\ T^,4rT^Tu;8dVP8dMM^Tu;8dVP8gM\R 4h\ P !VP4RVP4pVPPWtV34pV'g \R 4hR #uupi \\3d \R4hi;i) aCheck if a certain (EC)DSA signature is authentic. Args: msg_hash (hash object): The hash that was carried out over the message. This is an object belonging to the :mod:`Crypto.Hash` module. Under mode ``'fips-186-3'``, the hash must be a FIPS approved secure hash (SHA-2 or SHA-3). signature (``bytes``): The signature that needs to be validated. :raise ValueError: if the signature is not authentic r,r-z'The signature is not authentic (length)NT)strictz$The signature is not authentic (DER)z,The signature is not authentic (DER content)z"The signature is not authentic (d)zThe signature is not authenticF)r)r/rlenrrr0rdecode IndexError hasOnlyIntsrr1r _verify) rr$ signaturer8r_primes_primeder_seqr6results &&& rverifyDssSigScheme.verifyzs ))>? ? >>X %9~!d&7&7"78 !JKK*34FT5F5F*G*34E4E4F*G*I J*IA!( 2 21 5*I J GW I%-..y.F7|q (;(;(=(= !OPP&wqz2GGAJ4GWG)dkk)1w3L3LAB B   x01C$2C2CD E""1&89=> >) J  + I !GHH Is?F9%F>>G)rr rrrN) __name__ __module__ __qualname____firstlineno____doc__rrr%r)r:rH__static_attributes____classdictcell__) __classdict__s@rr r -s0 <' BB+Z**rcPaa]tRt^toV3RltRtRtRtRtRt Rt Vt V;t #)DeterministicDsaSigSchemec<<\\V` WV4W@nR#N)superrSr _private_key)rrrr private_key __class__s&&&&&rr"DeterministicDsaSigScheme.__init__s '7uM'rc \P!V4pVPP4p\ V4^,pWC8dW$V, ,pV#)zSee 2.3.2 in RFC6979)rr0rrr>)rbstrrGq_lenb_lens&& r _bits2int#DeterministicDsaSigScheme._bits2intsI##D) ((*D A  =  &F rc h^Tu;8dVP8gQhQh\WP4#)zSee 2.3.3 in RFC6979)rrr)r int_mod_qs&&r _int2octets%DeterministicDsaSigScheme._int2octetss29*t{{*****Y(9(9::rc VPV4pW P8dTpMW P, pVPV4#)zSee 2.3.4 in RFC6979)r_rrc)rr\z1z2s&& r _bits2octets&DeterministicDsaSigScheme._bits2octetss>^^D ! Bkk!B##rc 8VP4pRVP,pRVP,pRFp\P!VW5,VP VP 4,VP V4,V4P4p\P!WCV4P4pK Rp^Tu;8dVP8gMVR8wdR\P!WCR,V4P4p\P!WCV4P4pRp\V4VP8d0\P!WCV4P4pWs, pKIVPV4pKV#)z!Generate k in a deterministic wayr)rlrk) r1 digest_sizerr rcrWrhrr>rr_)rmhashh1mask_vnonce_kint_octr5mask_ts&& rr%(DeterministicDsaSigScheme._compute_noncesR \\^5,,,E---)Ghhw%/#//0A0AB C#004 56;=>DVX  XXgu5<<>F*u*t{{*{((7W,<#(**0&('59@@BFf+ 1 11'59@@B NN6*E rcR#)Tr#s&&rr)%DeterministicDsaSigScheme._valid_hashsr)rW) rJrKrLrMrr_rcrhr%r)rOrP __classcell__rYrQs@@rrSrSs)( ; $&PrrScBaa]tRt^toRtV3RltRtRtRtVt V;t #)FipsDsaSigSchemec<\\V` WV4W@n\ VP 4P 4pWPP3VP9d RWPP3,p\V4hR#)z+L/N (%d, %d) is not compliant to FIPS 186-3N) rVr|r _randfuncrprr_fips_186_3_L_Nr/)rrrrrandfuncLerrorrYs&&&&& rrFipsDsaSigScheme.__init__sm .seD! CEEN ' ' )  (<(< <B++,-EU# # =rc\\P!^VPVPR7#) min_inclusive max_exclusiver)r random_rangerr~r#s&&rr%FipsDsaSigScheme._compute_nonce s%##!26++-1^^= =rc fVPR8H;'gVPPR4#)z*Verify that SHA-1, SHA-2 or SHA-3 are usedz 1.3.14.3.2.26z2.16.840.1.101.3.4.2.)oid startswithr#s&&rr)FipsDsaSigScheme._valid_hashs3 /AA ''(?@ Brr~))i))r)i r) rJrKrLrMrrr%r)rOrPryrzs@@rr|r|s" O$= BBrr|c>aa]tRtRtoV3RltRtRtRtVtV;t #)FipsEcDsaSigSchemeic<<\\V` WV4W@nR#rU)rVrrr~)rrrrrrYs&&&&&rrFipsEcDsaSigScheme.__init__s  $0F!rc\P!^VPPPVP R7#r)rrr _curverr~r#s&&rr%!FipsEcDsaSigScheme._compute_nonces1##!26))2B2B2H2H-1^^= =rc VPPP4pRpRpRpRpW4,V,V,pVPV9pV# \dRpT#i;i)zpVerify that the strength of the hash matches or exceeds the strength of the EC. We fail if the hash is too weak.F)z2.16.840.1.101.3.4.2.4z2.16.840.1.101.3.4.2.7z2.16.840.1.101.3.4.2.5)z2.16.840.1.101.3.4.2.1z2.16.840.1.101.3.4.2.8z2.16.840.1.101.3.4.2.6)z2.16.840.1.101.3.4.2.2z2.16.840.1.101.3.4.2.9)z2.16.840.1.101.3.4.2.3z2.16.840.1.101.3.4.2.10)r pointQrrAttributeError) rr$ modulus_bitssha224sha256sha384sha512shsrGs && rr)FipsEcDsaSigScheme._valid_hash"syyy''446 `_EFo&/ \\S(F  F  sA A&%A&r) rJrKrLrMrr%r)rOrPryrzs@@rrrs"= rrNcVR 9d\RV,4h\V\4'dFVPPpRpVP P R4'g \R4hMR\V\4'd\VP4pRpM$\R\\V44,4hVP4'd \W4pMRpVR8Xd \WWF4#VR 8Xd/\V\4'd \WWC4#\!WWC4#\R V,4h) a Create a signature object :class:`DssSigScheme` that can perform (EC)DSA signature or verification. .. note:: Refer to `NIST SP 800 Part 1 Rev 4`_ (or newer release) for an overview of the recommended key lengths. Args: key (:class:`Crypto.PublicKey.DSA` or :class:`Crypto.PublicKey.ECC`): The key to use for computing the signature (*private* keys only) or for verifying one. For DSA keys, let ``L`` and ``N`` be the bit lengths of the modulus ``p`` and of ``q``: the pair ``(L,N)`` must appear in the following list, in compliance to section 4.2 of `FIPS 186-4`_: - (1024, 160) *legacy only; do not create new signatures with this* - (2048, 224) *deprecated; do not create new signatures with this* - (2048, 256) - (3072, 256) For ECC, only keys over P-224, P-256, P-384, and P-521 are accepted. mode (string): The parameter can take these values: - ``'fips-186-3'``. The signature generation is randomized and carried out according to `FIPS 186-3`_: the nonce ``k`` is taken from the RNG. - ``'deterministic-rfc6979'``. The signature generation is not randomized. See RFC6979_. encoding (string): How the signature is encoded. This value determines the output of :meth:`sign` and the input to :meth:`verify`. The following values are accepted: - ``'binary'`` (default), the signature is the raw concatenation of ``r`` and ``s``. It is defined in the IEEE P.1363 standard. For DSA, the size in bytes of the signature is ``N/4`` bytes (e.g. 64 for ``N=256``). For ECDSA, the signature is always twice the length of a point coordinate (e.g. 64 bytes for P-256). - ``'der'``, the signature is a ASN.1 DER SEQUENCE with two INTEGERs (``r`` and ``s``). It is defined in RFC3279_. The size of the signature is variable. randfunc (callable): A function that returns random ``bytes``, of a given length. If omitted, the internal RNG is used. Only applicable for the *'fips-186-3'* mode. .. _FIPS 186-3: http://csrc.nist.gov/publications/fips/fips186-3/fips_186-3.pdf .. _FIPS 186-4: http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf .. _NIST SP 800 Part 1 Rev 4: http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r4.pdf .. _RFC6979: http://tools.ietf.org/html/rfc6979 .. _RFC3279: https://tools.ietf.org/html/rfc3279#section-2.2.2 zUnknown encoding '%s'dNISTz ECC key is not on a NIST P curver8zUnsupported key type Nzdeterministic-rfc6979z fips-186-3zUnknown DSS mode '%s')r-der)r/ isinstancerrrcurverrrqstrtypergetattrrSrr|)rmoderrrprivate_key_attrrXs&&&& rr r 6sD((08;<<#v   yy##F++?@ @, C 03tCy>ABB c4   &&(KK   c6 " "%cUE E#C5C C04788r)r-N)Crypto.Util.asn1rCrypto.Util.numberrCrypto.Math.Numbersr Crypto.HashrCrypto.PublicKey.ECCrCrypto.PublicKey.DSAr__all__objectr rSr|rr rwrrrscD),''' 5 !w6wtK K\B|BD>]9r