Почетна Преглед Помоћ
Регистрација Пријавите се
dayuan
/
manyi
6
0
Креирај огранак 0
Датотеке Дискусије 0 Захтеви за спајање 0 Вики
Дрво: 34216f9fac
Гране Ознаке
manyi
/
venv
/
Lib
/
site-packages
/
cryptography
/
hazmat
/
primitives
/
twofactor
/
hotp.py

hotp.py 2.6 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. from __future__ import absolute_import, division, print_function
    6. 

  6. 

  7. import struct
    8. 

  8. 

  9. import six
    10. 

  10. 

  11. from cryptography.exceptions import UnsupportedAlgorithm, _Reasons
    12. 

  12. from cryptography.hazmat.backends import _get_backend
    13. 

  13. from cryptography.hazmat.backends.interfaces import HMACBackend
    14. 

  14. from cryptography.hazmat.primitives import constant_time, hmac
    15. 

  15. from cryptography.hazmat.primitives.hashes import SHA1, SHA256, SHA512
    16. 

  16. from cryptography.hazmat.primitives.twofactor import InvalidToken
    17. 

  17. from cryptography.hazmat.primitives.twofactor.utils import _generate_uri
    18. 

  18. 

  19. 

  20. class HOTP(object):
    21. 

  21.     def __init__(
    22. 

  22.         self, key, length, algorithm, backend=None, enforce_key_length=True
    23. 

  23.     ):
    24. 

  24.         backend = _get_backend(backend)
    25. 

  25.         if not isinstance(backend, HMACBackend):
    26. 

  26.             raise UnsupportedAlgorithm(
    27. 

  27.                 "Backend object does not implement HMACBackend.",
    28. 

  28.                 _Reasons.BACKEND_MISSING_INTERFACE,
    29. 

  29.             )
    30. 

  30. 

  31.         if len(key) < 16 and enforce_key_length is True:
    32. 

  32.             raise ValueError("Key length has to be at least 128 bits.")
    33. 

  33. 

  34.         if not isinstance(length, six.integer_types):
    35. 

  35.             raise TypeError("Length parameter must be an integer type.")
    36. 

  36. 

  37.         if length < 6 or length > 8:
    38. 

  38.             raise ValueError("Length of HOTP has to be between 6 to 8.")
    39. 

  39. 

  40.         if not isinstance(algorithm, (SHA1, SHA256, SHA512)):
    41. 

  41.             raise TypeError("Algorithm must be SHA1, SHA256 or SHA512.")
    42. 

  42. 

  43.         self._key = key
    44. 

  44.         self._length = length
    45. 

  45.         self._algorithm = algorithm
    46. 

  46.         self._backend = backend
    47. 

  47. 

  48.     def generate(self, counter):
    49. 

  49.         truncated_value = self._dynamic_truncate(counter)
    50. 

  50.         hotp = truncated_value % (10 ** self._length)
    51. 

  51.         return "{0:0{1}}".format(hotp, self._length).encode()
    52. 

  52. 

  53.     def verify(self, hotp, counter):
    54. 

  54.         if not constant_time.bytes_eq(self.generate(counter), hotp):
    55. 

  55.             raise InvalidToken("Supplied HOTP value does not match.")
    56. 

  56. 

  57.     def _dynamic_truncate(self, counter):
    58. 

  58.         ctx = hmac.HMAC(self._key, self._algorithm, self._backend)
    59. 

  59.         ctx.update(struct.pack(">Q", counter))
    60. 

  60.         hmac_value = ctx.finalize()
    61. 

  61. 

  62.         offset = six.indexbytes(hmac_value, len(hmac_value) - 1) & 0b1111
    63. 

  63.         p = hmac_value[offset : offset + 4]
    64. 

  64.         return struct.unpack(">I", p)[0] & 0x7FFFFFFF
    65. 

  65. 

  66.     def get_provisioning_uri(self, account_name, counter, issuer):
    67. 

  67.         return _generate_uri(
    68. 

  68.             self, "hotp", account_name, issuer, [("counter", int(counter))]
    69. 

  69.         )
    70.