a
    °…bf(  ã                   @   sv  U d dl mZ d dlmZ d dlmZmZ d dlm	Z	 e 
¡ Zeed< e ¡ d Zeed< e ¡ Zeed< e ¡ Zeed	< e ¡ Zeed
< e ¡ Zeed< eeef dœdd„Zeeeef dœdd„Zeeedœdd„Zeeedœdd„Zeedœdd„Zeedœdd„Zeedœdd„Zeedœd d!„ZG d"d#„ d#ƒZ e ed$d%œd&d'„Z!e eed(œd)d*„Z"e eee#d+œd,d-„Z$d$S ).é    )ÚTuple)Ú
exceptions)ÚffiÚlib)ÚensureÚcrypto_sign_BYTESé   Úcrypto_sign_SEEDBYTESÚcrypto_sign_PUBLICKEYBYTESÚcrypto_sign_SECRETKEYBYTESÚcrypto_sign_curve25519_BYTESÚ crypto_sign_ed25519ph_STATEBYTES©Úreturnc                  C   s`   t  dt¡} t  dt¡}t | |¡}t|dkdtjd t  	| t¡dd… t  	|t¡dd… fS )zu
    Returns a randomly generated public key and secret key.

    :rtype: (bytes(public_key), bytes(secret_key))
    úunsigned char[]r   úUnexpected library error©ZraisingN)
r   Únewr
   r   r   Úcrypto_sign_keypairr   ÚexcÚRuntimeErrorÚbuffer)ÚpkÚskÚrc© r   ú@/tmp/pip-target-98j97qn4/lib/python/nacl/bindings/crypto_sign.pyr       s    þr   )Úseedr   c                 C   sx   t | ƒtkrt d¡‚t dt¡}t dt¡}t 	||| ¡}t
|dkdtjd t |t¡dd… t |t¡dd… fS )z 
    Computes and returns the public key and secret key using the seed ``seed``.

    :param seed: bytes
    :rtype: (bytes(public_key), bytes(secret_key))
    zInvalid seedr   r   r   r   N)Úlenr	   r   Ú
ValueErrorr   r   r
   r   r   Úcrypto_sign_seed_keypairr   r   r   )r   r   r   r   r   r   r   r    2   s    
þr    )Úmessager   r   c                 C   s`   t  dt| ƒt ¡}t  d¡}t ||| t| ƒ|¡}t|dkdtjd t  	||d ¡dd… S )z©
    Signs the message ``message`` using the secret key ``sk`` and returns the
    signed message.

    :param message: bytes
    :param sk: bytes
    :rtype: bytes
    r   úunsigned long long *r   r   r   N)
r   r   r   r   r   Úcrypto_signr   r   r   r   )r!   r   ÚsignedZ
signed_lenr   r   r   r   r#   H   s
    	
r#   )r$   r   r   c                 C   sV   t  dt| ƒ¡}t  d¡}t ||| t| ƒ|¡dkr>t d¡‚t  ||d ¡dd… S )zÄ
    Verifies the signature of the signed message ``signed`` using the public
    key ``pk`` and returns the unsigned message.

    :param signed: bytes
    :param pk: bytes
    :rtype: bytes
    r   r"   r   úSignature was forged or corruptN)r   r   r   r   Úcrypto_sign_openr   ÚBadSignatureErrorr   )r$   r   r!   Zmessage_lenr   r   r   r&   Z   s    	
ÿÿ
r&   )Úpublic_key_bytesr   c                 C   sZ   t | ƒtkrt d¡‚t}t d|¡}t || ¡}t	|dkdtj
d t ||¡dd… S )a  
    Converts a public Ed25519 key (encoded as bytes ``public_key_bytes``) to
    a public Curve25519 key as bytes.

    Raises a ValueError if ``public_key_bytes`` is not of length
    ``crypto_sign_PUBLICKEYBYTES``

    :param public_key_bytes: bytes
    :rtype: bytes
    zInvalid curve public keyr   r   r   r   N)r   r
   r   r   r   r   r   r   Ú$crypto_sign_ed25519_pk_to_curve25519r   r   r   )r(   Zcurve_public_key_lenZcurve_public_keyr   r   r   r   r)   o   s    
ÿr)   )Úsecret_key_bytesr   c                 C   sZ   t | ƒtkrt d¡‚t}t d|¡}t || ¡}t	|dkdtj
d t ||¡dd… S )a  
    Converts a secret Ed25519 key (encoded as bytes ``secret_key_bytes``) to
    a secret Curve25519 key as bytes.

    Raises a ValueError if ``secret_key_bytes``is not of length
    ``crypto_sign_SECRETKEYBYTES``

    :param secret_key_bytes: bytes
    :rtype: bytes
    zInvalid curve secret keyr   r   r   r   N)r   r   r   r   r   r   r   r   Ú$crypto_sign_ed25519_sk_to_curve25519r   r   r   )r*   Zcurve_secret_key_lenZcurve_secret_keyr   r   r   r   r+   ˆ   s    
ÿr+   c                 C   s"   t | ƒtkrt d¡‚| td… S )a	  
    Extract the public Ed25519 key from a secret Ed25519 key (encoded
    as bytes ``secret_key_bytes``).

    Raises a ValueError if ``secret_key_bytes``is not of length
    ``crypto_sign_SECRETKEYBYTES``

    :param secret_key_bytes: bytes
    :rtype: bytes
    úInvalid secret keyN©r   r   r   r   r	   ©r*   r   r   r   Úcrypto_sign_ed25519_sk_to_pk¡   s    
r/   c                 C   s"   t | ƒtkrt d¡‚| dt… S )zû
    Extract the seed from a secret Ed25519 key (encoded
    as bytes ``secret_key_bytes``).

    Raises a ValueError if ``secret_key_bytes``is not of length
    ``crypto_sign_SECRETKEYBYTES``

    :param secret_key_bytes: bytes
    :rtype: bytes
    r,   Nr-   r.   r   r   r   Úcrypto_sign_ed25519_sk_to_seed²   s    
r0   c                   @   s$   e Zd ZdZdgZddœdd„ZdS )Úcrypto_sign_ed25519ph_statezO
    State object wrapping the sha-512 state used in ed25519ph computation
    ÚstateNr   c                 C   s2   t  dt¡| _t | j¡}t|dkdtjd d S )Nr   r   r   r   )	r   r   r   r2   r   Zcrypto_sign_ed25519ph_initr   r   r   )Úselfr   r   r   r   Ú__init__Ê   s
    ÿz$crypto_sign_ed25519ph_state.__init__)Ú__name__Ú
__module__Ú__qualname__Ú__doc__Ú	__slots__r4   r   r   r   r   r1   Ã   s   r1   N)ÚedphÚpmsgr   c                 C   sX   t t| tƒdtjd t t|tƒdtjd t | j|t	|ƒ¡}t |dkdtj
d dS )zÛ
    Update the hash state wrapped in edph

    :param edph: the ed25519ph state being updated
    :type edph: crypto_sign_ed25519ph_state
    :param pmsg: the partial message
    :type pmsg: bytes
    :rtype: None
    ú/edph parameter must be a ed25519ph_state objectr   z%pmsg parameter must be a bytes objectr   r   N)r   Ú
isinstancer1   r   Ú	TypeErrorÚbytesr   Úcrypto_sign_ed25519ph_updater2   r   r   )r:   r;   r   r   r   r   r@   Ô   s    ýýr@   )r:   r   r   c                 C   s’   t t| tƒdtjd t t|tƒdtjd t t|ƒtkd t¡tjd t	 
dt¡}t | j|t	j|¡}t |dkdtjd t	 |t¡dd… S )	aR  
    Create a signature for the data hashed in edph
    using the secret key sk

    :param edph: the ed25519ph state for the data
                 being signed
    :type edph: crypto_sign_ed25519ph_state
    :param sk: the ed25519 secret part of the signing key
    :type sk: bytes
    :return: ed25519ph signature
    :rtype: bytes
    r<   r   z+secret key parameter must be a bytes objectz secret key must be {} bytes longr   r   r   N)r   r=   r1   r   r>   r?   r   r   Úformatr   r   r   r   Ú"crypto_sign_ed25519ph_final_creater2   ZNULLr   r   )r:   r   Ú	signaturer   r   r   r   rB   î   s.    ýý
ÿûÿrB   )r:   rC   r   r   c                 C   s¤   t t| tƒdtjd t t|tƒdtjd t t|ƒtkd t¡tjd t t|tƒdtjd t t|ƒt	kd t	¡tjd t
 | j||¡}|dkr t d¡‚d	S )
aÚ  
    Verify a prehashed signature using the public key pk

    :param edph: the ed25519ph state for the data
                 being verified
    :type edph: crypto_sign_ed25519ph_state
    :param signature: the signature being verified
    :type signature: bytes
    :param pk: the ed25519 public part of the signing key
    :type pk: bytes
    :return: True if the signature is valid
    :rtype: boolean
    :raises exc.BadSignatureError: if the signature is not valid
    r<   r   z*signature parameter must be a bytes objectzsignature must be {} bytes longz+public key parameter must be a bytes objectz public key must be {} bytes longr   r%   T)r   r=   r1   r   r>   r?   r   r   rA   r
   r   Ú"crypto_sign_ed25519ph_final_verifyr2   r'   )r:   rC   r   r   r   r   r   rD     s>    ýý
ýý
ÿû
rD   )%Útypingr   Znaclr   r   Znacl._sodiumr   r   Znacl.exceptionsr   Zcrypto_sign_bytesr   ÚintÚ__annotations__Zcrypto_sign_secretkeybytesr	   Zcrypto_sign_publickeybytesr
   r   Zcrypto_box_secretkeybytesr   Z crypto_sign_ed25519ph_statebytesr   r?   r   r    r#   r&   r)   r+   r/   r0   r1   r@   rB   ÚboolrD   r   r   r   r   Ú<module>   s6   þþ*þ