o c @sddlZddlZddlmZmZddlmZmZddlm Z m Z m Z ddl m Z eje e e fZddded ed ejed ejejeefd ef d dZGdddZdS)N)quote urlencode) constant_timehmac)SHA1SHA256SHA512) InvalidTokenhotpHOTP type_name account_nameissuerextra_parametersreturncCsd|jfdt|jfd|jjfg}|dur|d|f|||r1t |dt |nt |}d|d|dt |S) Ndigitssecret algorithmr:z otpauth:///?) _lengthbase64 b32encode_key _algorithmnameupperappendextendrr)r r r rr parameterslabelr"Z/opt/certbot/lib/python3.10/site-packages/cryptography/hazmat/primitives/twofactor/hotp.py _generate_uris r$c @seZdZ  ddedededejdeddf d d Z d edefd d Z ded eddfddZ d edefddZ de d edeje de fddZdS)r NTkeylengthrbackendenforce_key_lengthrcCstt|dkr|durtdt|tstd|dks|dkr#tdt|tttfs/td||_||_ ||_ dS) NTz'Key length has to be at least 128 bits.z)Length parameter must be an integer type.z)Length of HOTP has to be between 6 and 8.z)Algorithm must be SHA1, SHA256 or SHA512.) len ValueError isinstanceint TypeErrorrrrrrr)selfr%r&rr'r(r"r"r#__init__,s  z HOTP.__init__countercCs*||}|d|j}d||jS)N z{0:0{1}})_dynamic_truncaterformatencode)r1r3truncated_valuer r"r"r#generateDs z HOTP.generater cCst|||s tddS)Nz#Supplied HOTP value does not match.)rbytes_eqr9r )r1r r3r"r"r#verifyIsz HOTP.verifycCsbt|j|j}||jddd|}|t|dd@}|||d}tj |ddd@S) Nr+big)r& byteorder)r=i) rHMACrrupdateto_bytesfinalizer,r/ from_bytes)r1r3ctx hmac_valueoffsetpr"r"r#r5Ms zHOTP._dynamic_truncater rcCst|d||dt|fgS)Nr r3)r$r/)r1r r3rr"r"r#get_provisioning_uriVszHOTP.get_provisioning_uri)NT)__name__ __module__ __qualname__bytesr/_ALLOWED_HASH_TYPEStypingAnyboolr2r9r;r5strOptionalrJr"r"r"r#r +s8  )rrP urllib.parserrcryptography.hazmat.primitivesrr%cryptography.hazmat.primitives.hashesrrr(cryptography.hazmat.primitives.twofactorr UnionrOrSrTListTupler/r$r r"r"r"r#s*