i5xSSKJrJrJr SSKrSSKJrJrJr SSK J r SSKJ r "SS5r Sr S rS rS rg) )bchrbord iter_rangeN)ceil_div long_to_bytes bytes_to_long)strxor)Randomc0\rSrSrSrSrSrSrSrSr g) PSS_SigScheme)zjA signature object for ``RSASSA-PSS``. Do not instantiate directly. Use :func:`Crypto.Signature.pss.new`. c4XlX0lX lX@lg)aInitialize this PKCS#1 PSS signature scheme object. :Parameters: key : an RSA key object If a private half is given, both signature and verification are possible. If a public half is given, only verification is possible. mgfunc : callable A mask generation function that accepts two parameters: a string to use as seed, and the lenth of the mask to generate, in bytes. saltLen : integer Length of the salt, in bytes. randfunc : callable A function that returns random bytes. N)_key_saltLen_mgfunc _randfunc)selfkeymgfuncsaltLenrandfuncs O/var/www/html/trading/venv/lib/python3.13/site-packages/Crypto/Signature/pss.py__init__PSS_SigScheme.__init__/s$   !c6URR5$)z`_. :parameter msg_hash: This is an object from the :mod:`Crypto.Hash` package. It has been used to digest the message to sign. :type msg_hash: hash object :return: the signature encoded as a *byte string*. :raise ValueError: if the RSA key is not long enough for the given hash algorithm. :raise TypeError: if the RSA key has no private half. c>[XT5$NMGF1xymsg_hashs r$PSS_SigScheme.sign..b tA(3rz+Fault detected in RSA private key operation)r digest_sizerCryptoUtilnumbersizernr_EMSA_PSS_ENCODErr_decrypt_to_bytespowe ValueError) rr(sLenmgfmodBitskemem_int signatures ` rsignPSS_SigScheme.signJs$ == ''D==D << 3C,,C++$$))$))++6 Wa  h 4>>3 Mr"II//7 Sy1499;; L LJK Krc^URc TRnO URnUR(a URnOU4Sjn[RR R URR5n[US5n[U5U:wa [S5e[U5nURRU5n[US- S5n [X5n [TXS- XC5 g)aCheck if the PKCS#1 PSS signature over a message is valid. This function is also called ``RSASSA-PSS-VERIFY`` and it is specified in `section 8.1.2 of RFC8037 `_. :parameter msg_hash: The hash that was carried out over the message. This is an object belonging to the :mod:`Crypto.Hash` module. :type parameter: hash object :parameter signature: The signature that needs to be validated. :type signature: bytes :raise ValueError: if the signature is not valid. Nc>[XT5$r"r#r%s rr)&PSS_SigScheme.verify..r+rr,Incorrect signaturer-)rr.rr/r0r1r2rr3rlenr8r_encryptr_EMSA_PSS_VERIFY) rr(r?r9r:r;r< signature_intr>emLenr=s ` rverifyPSS_SigScheme.verifyus( == ''D==D <<,,C3C++$$))$))++6 Wa  y>Q 23 3%i0 ##M21a( 6 )2qy#`_. :param mfgSeed: seed from which the mask is generated :type mfgSeed: byte string :param maskLen: intended length in bytes of the mask :type maskLen: integer :param hash_gen: A module or a hash object from :mod:`Crypto.Hash` :type hash_object: :return: the mask, as a *byte string* rN)rrr.rnewupdatedigestrF)mgfSeedmaskLenhash_genTcounterchobjs rr$r$sw& Ahw0D0DEF '1 %||~ GK  G q6W   Xg;rcz[US5nSn[SU-U- 5H nUS- S-nM XPRU-S-:a [S5eU"U5n[ S5S-UR 5-U-n UR 5n U RU 5 [ S5XT- UR- S- -n U [ S5-U-n U"U R 5XPR- S- 5n [X5n[ [US5U)-5USS-nXR 5-[ S5-nU$) a Implement the ``EMSA-PSS-ENCODE`` function, as defined in PKCS#1 v2.1 (RFC3447, 9.1.1). The original ``EMSA-PSS-ENCODE`` actually accepts the message ``M`` as input, and hash it internally. Here, we expect that the message has already been hashed instead. :Parameters: mhash : hash object The hash object that holds the digest of the message being signed. emBits : int Maximum length of the final encoding, in bits. randFunc : callable An RNG function that accepts as only parameter an int, and returns a string of random bytes, to be used as salt. mgf : callable A mask generation function that accepts two parameters: a string to use as seed, and the lenth of the mask to generate, in bytes. sLen : int Length of the salt, in bytes. :Return: An ``emLen`` byte long string that encodes the hash (with ``emLen = \ceil(emBits/8)``). :Raise ValueError: When digest or salt length are too big. r,rr-z6Digest or salt length are too long for given key size.N) rrr.r8rrXrVrWr r)mhashemBitsrandFuncr:r9rJlmaskisaltm_primehpsdbdbMaskmaskedDBr=s rr4r4sB< VQ E E % ' T!(    %a''01 1 D>D1gai%,,.(4/G AHHW a%*U...q0 1B d1g B U#4#44Q6 7Fb!HD!%./(12,>H HHJ d +B Ircl[US5nSn[SU-U- 5H nUS- S-nM XPRU-S-:a [S5e[ USS5S :wa [S5eUSXPR- S- nXUR- S- Sn U[ US5-(a [S5eU"XUR- S- 5n [ X5n [[ U S5U)-5U SS-n U R[S5XPR- U- S- -[S5-5(d [S5eUS:aX*Sn OS n [S5S-UR5-U -n UR5nURU 5 UR5nX:wa [S5eg) aS Implement the ``EMSA-PSS-VERIFY`` function, as defined in PKCS#1 v2.1 (RFC3447, 9.1.2). ``EMSA-PSS-VERIFY`` actually accepts the message ``M`` as input, and hash it internally. Here, we expect that the message has already been hashed instead. :Parameters: mhash : hash object The hash object that holds the digest of the message to be verified. em : string The signature to verify, therefore proving that the sender really signed the message that was received. emBits : int Length of the final encoding (em), in bits. mgf : callable A mask generation function that accepts two parameters: a string to use as seed, and the lenth of the mask to generate, in bytes. sLen : int Length of the salt, in bytes. :Raise ValueError: When the encoding is inconsistent, or the digest or salt lengths are too big. r,rr-rarbrENrcr) rrr.r8ordrr r startswithrXrVrW)rdr=rer:r9rJrgrhrorkrnrmrirjr_hps rrHrHs8 VQ E E % ' T!(    %a''.// 2bc7|t.//,5***1,-H "" "1 $R(A tBqE{.// %+++A- .F  !B d2a5kUF" #bf ,B ==a%(9(9"9$">q"@ADGK L L.// ax%&z1gai%,,.(4/G 99;DKK Bw.//rc URSS5nURSS5nURSS5nUc[RnU(a%[S[ UR 55-5e[ XX45$)avCreate an object for making or verifying PKCS#1 PSS signatures. :parameter rsa_key: The RSA key to use for signing or verifying the message. This is a :class:`Crypto.PublicKey.RSA` object. Signing is only possible when ``rsa_key`` is a **private** RSA key. :type rsa_key: RSA object :Keyword Arguments: * *mask_func* (``callable``) -- A function that returns the mask (as `bytes`). It must accept two parameters: a seed (as `bytes`) and the length of the data to return. If not specified, it will be the function :func:`MGF1` defined in `RFC8017 `_ and combined with the same hash algorithm applied to the message to sign or verify. If you want to use a different function, for instance still :func:`MGF1` but together with another hash, you can do:: from Crypto.Hash import SHA256 from Crypto.Signature.pss import MGF1 mgf = lambda x, y: MGF1(x, y, SHA256) * *salt_bytes* (``integer``) -- Length of the salt, in bytes. It is a value between 0 and ``emLen - hLen - 2``, where ``emLen`` is the size of the RSA modulus and ``hLen`` is the size of the digest applied to the message to sign or verify. The salt is generated internally, you don't need to provide it. If not specified, the salt length will be ``hLen``. If it is zero, the signature scheme becomes deterministic. Note that in some implementations such as OpenSSL the default salt length is ``emLen - hLen - 2`` (even though it is not more secure than ``hLen``). * *rand_func* (``callable``) -- A function that returns random ``bytes``, of the desired length. The default is :func:`Crypto.Random.get_random_bytes`. :return: a :class:`PSS_SigScheme` signature object mask_funcN salt_bytes rand_funczUnknown keywords: )popr get_random_bytesr8strkeysr )rsa_keykwargsrvsalt_lenrxs rrVrVJsrd ;-Izz,-H ;-I++  -FKKM0BBCC X AAr)Crypto.Util.py3compatrrrCrypto.Util.numberr/rrrCrypto.Util.strxorr r r r$r4rHrVrSrrrsG>98""&x=x=v:=@F0R9Br