o Zh @s8ddlZddlmmZGdddejZddZdS)Nc@s(eZdZdZddZddZddZdS) InMemoryKmsClientzRThis is a mock class implementation of KmsClient, built for testing only. cCstj||j|_dS)z%Create an InMemoryKmsClient instance.N)pe KmsClient__init__Zcustom_kms_confmaster_keys_map)selfconfigr W/var/www/html/lang_env/lib/python3.10/site-packages/pyarrow/tests/parquet/encryption.pyrs  zInMemoryKmsClient.__init__cCs,|j|d}d||g}t|}|S)z`Not a secure cipher - the wrapped key is just the master key concatenated with key bytesutf-8)rencodejoinbase64 b64encode)r key_bytesmaster_key_identifiermaster_key_bytes wrapped_keyresultr r r wrap_key s  zInMemoryKmsClient.wrap_keycCsJ|j|}t|}|dd}|dd}||dkr|Std||)zGNot a secure cipher - just extract the key from the wrapped keyNr zIncorrect master key used)rr b64decodedecode ValueError)rrrZexpected_master_keyZdecoded_wrapped_keyrZ decrypted_keyr r r unwrap_key)s    zInMemoryKmsClient.unwrap_keyN)__name__ __module__ __qualname____doc__rrrr r r r rs  rcCsFt|d}|d}|dksJWddS1swYdS)zVerify that the file is encrypted by looking at its first 4 bytes. If it's the magic string PARE then this is a parquet with encrypted footer.rbsPAREN)openread)pathfileZ magic_strr r r verify_file_encrypted6s  "r&)rZpyarrow.parquet.encryptionZparquetZ encryptionrrrr&r r r r s