a ~g@sdZddlmZz0ddlmZddlmZmZddlm Z dZ Wne yVdZ Yn0dd l m Z dd lZdZd Ze ejd Zd dZddZdaddZddZddZddZddZddZddZdd Zd!d"Zd S)#z Implements auth methods )OperationalError)default_backend) serializationhashes)paddingTF)partialNsha1cCsT|sdSt|}t|}t}||dt|||}t||S)z'Scramble used for mysql_native_passwordN)sha1_newdigestupdateSCRAMBLE_LENGTH _my_crypt)passwordmessageZstage1Zstage2sresultrR/var/www/html/emsaiapi.evdpl.com/venv/lib/python3.9/site-packages/pymysql/_auth.pyscramble_native_passwords   rcCs6t|}tt|D]}||||N<qt|SN) bytearrayrangelenbytes)Zmessage1Zmessage2rirrrr,srcCs4zddlm}|aWnty.tdYn0dS)Nrbindingsz='pynacl' package is required for ed25519_password auth method)Znaclr_nacl_bindings ImportError RuntimeErrorrrrr _init_nacl;s  r#cCsPt|}tt|dd@g}tt|dd@dBg}|t|dd|S)Nr@r)rr)Zs32baZba0Zba31rrr _scalar_clampGsr)c Csts tt|}t|dd}t|dd|}t|}t|}t|}t|||}t|}t||}t ||} || S)znSign a random scramble with elliptic curve Ed25519. Secret and public key are derived from password. N ) r r#hashlibsha512r r)Z!crypto_core_ed25519_scalar_reduceZ&crypto_scalarmult_ed25519_base_noclampZcrypto_core_ed25519_scalar_mulZcrypto_core_ed25519_scalar_add) rZscramblehrrRAkksSrrred25519_passwordNs      r4cCs|||}||Sr) write_packet _read_packet check_error)conn send_datapktrrr _roundtripws r;cCsN|dt}t|}t|}tt|D]}|||||N<q(t|Sr)rrrrr)rsaltpassword_bytessalt_lenrrrr _xor_password~s  r?cCsPts tdt|d|}t|t}||tjtj t dt ddS)zhEncrypt password with salt and public_key. Used for sha256_password and caching_sha2_password. z\'cryptography' package is required for sha256_password or caching_sha2_password auth methods) algorithmN)ZmgfrAlabel) _have_cryptographyr"r?rZload_pem_public_keyrZencryptrZOAEPZMGF1rSHA1)rr< public_keyrZrsa_keyrrrsha2_rsa_encryptsrFcCs|jr&trtd|jd}t||S|rZ||_|jsZ|jrZtrPtdt|d}| r|j dd|_trtd|j d|jr|jst dt |j|j|j}nd }t||S) Nzsha256: Sending plain passwordr@z$sha256: Requesting server public keyrzReceived public key: asciiz$Couldn't receive server's public keyr )_secureDEBUGprintrr;is_auth_switch_requestread_allr<server_public_keyis_extra_auth_data_datadecoderrF)r8r:datarrrsha256_password_auths*     rScCsl|sdSt|}t|}t||}t|}tt|D]}||||N<qJt|S)zScramble algorithm used in cached_sha2_password fast path. XOR(SHA256(password), SHA256(SHA256(SHA256(password)), nonce)) r )r+sha256r rrrr)rnonceZp1Zp2Zp3resrrrrscramble_caching_sha2srWcCsX|jst|dS|rFtr$td||_t|j|j}t||}|sdt d|j dd| d| }|dkrtrtd| }||S|dkrt d|trtd |jrtrtd t||jd S|js8t|d }|st d |j dd|j dd|_tr8t|jdt|j|j|j}t||}dS)Nr zcaching sha2: Trying fast pathz.caching sha2: Unknown packet for fast auth: %srz%caching sha2: succeeded by fast path.z.caching sha2: Unknown result for fast auth: %sz!caching sha2: Trying full auth...z:caching sha2: Sending plain password via secure connectionr@z/caching sha2: Unknown packet for public key: %srH)rr;rLrJrKrMr<rWrOrrPadvance read_uint8r6r7rIrNrQrF)r8r:Z scramblednrRrrrcaching_sha2_password_authsN       r^)__doc__errrcryptography.hazmat.backendsrcryptography.hazmat.primitivesrr)cryptography.hazmat.primitives.asymmetricrrCr! functoolsrr+rJrnewr rrr r#r)r4r;r?rFrSrWr^rrrrs2         )