a !f@sdZddlmZddlmZddlmZddlmZddl Z ddl Z ddl m Z dZ d Zd Zd ZeZd d ZGdddeZGdddeZdS)zPure Python crypto-related routines for oauth2client. Uses the ``rsa``, ``pyasn1`` and ``pyasn1_modules`` packages to parse PEM files storing PKCS#1 or PKCS#8 keys as well as certificates. )decoder)pem) Certificate)PrivateKeyInfoN)_helpersz\ PKCS12 format is not supported by the RSA library. Either install PyOpenSSL, or please convert .p12 format to .pem format: $ cat key.p12 | \ > openssl pkcs12 -nodes -nocerts -passin pass:notasecret | \ > openssl rsa > key.pem )@ )z-----BEGIN RSA PRIVATE KEY-----z-----END RSA PRIVATE KEY-----)z-----BEGIN PRIVATE KEY-----z-----END PRIVATE KEY-----cCs^t|}t}tjd|dD]6}|||d}tddtt|D}||qt |S)zConverts an iterable of 1's and 0's to bytes. Combines the list 8 at a time, treating each group of 8 bits as a single byte. rr css|]\}}||VqdSN).0valdigitrr`/var/www/html/python-backend/venv/lib/python3.9/site-packages/oauth2client/_pure_python_crypt.py ;sz%_bit_list_to_bytes..) len bytearraysixmovesxrangesumzip_POW2appendbytes)Zbit_listZnum_bitsZ byte_valsstartZ curr_bitsZchar_valrrr_bit_list_to_bytes1s r!c@s,eZdZdZddZddZeddZdS) RsaVerifierzVerifies the signature on a message. Args: pubkey: rsa.key.PublicKey (or equiv), The public key to verify with. cCs ||_dSr)_pubkey)selfpubkeyrrr__init__HszRsaVerifier.__init__c CsDtj|dd}ztj|||jWSttjjfy>YdS0dS)aVerifies a message against a signature. Args: message: string or bytes, The message to verify. If string, will be encoded to bytes as utf-8. signature: string or bytes, The signature on the message. If string, will be encoded to bytes as utf-8. Returns: True if message was signed by the private key associated with the public key that this object was constructed with. utf-8encodingFN)r _to_bytesrsapkcs1verifyr# ValueErrorZVerificationError)r$message signaturerrrr-Ks zRsaVerifier.verifyc Cst|}|rjtj|d}tj|td\}}|dkrBtd||dd}t |d}tj |d}ntj |d }||S) aConstruct an RsaVerifier instance from a string. Args: key_pem: string, public key in PEM format. is_x509_cert: bool, True if key_pem is an X509 cert, otherwise it is expected to be an RSA key in PEM format. Returns: RsaVerifier instance. Raises: ValueError: if the key_pem can't be parsed. In either case, error will begin with 'No PEM start marker'. If ``is_x509_cert`` is True, will fail to find the "-----BEGIN CERTIFICATE-----" error, otherwise fails to find "-----BEGIN RSA PUBLIC KEY-----". CERTIFICATEZasn1Spec Unused bytesZtbsCertificateZsubjectPublicKeyInfoZsubjectPublicKeyDERZPEM) rr*r+rZload_pemrdecoderr.r!Z PublicKey load_pkcs1) clsZkey_pemZ is_x509_certZderZ asn1_cert remainingZ cert_info key_bytesr%rrr from_string^s    zRsaVerifier.from_stringN)__name__ __module__ __qualname____doc__r&r- classmethodr;rrrrr"As r"c@s.eZdZdZddZddZed ddZd S) RsaSignerz}Signs messages with a private key. Args: pkey: rsa.key.PrivateKey (or equiv), The private key to sign with. cCs ||_dSr)_key)r$pkeyrrrr&szRsaSigner.__init__cCs tj|dd}tj||jdS)zSigns a message. Args: message: bytes, Message to be signed. Returns: string, The signature of the message for the given key. r'r(zSHA-256)rr*r+r,signrB)r$r/rrrrDs zRsaSigner.sign notasecretc Cst|}tt|tt\}}|dkr>tj j j |dd}nV|dkrt j |td\}}|dkrjtd||d}tj j j |dd}ntd ||S) aConstruct an RsaSigner instance from a string. Args: key: string, private key in PEM format. password: string, password for private key file. Unused for PEM files. Returns: RsaSigner instance. Raises: ValueError if the key cannot be parsed as PKCS#1 or PKCS#8 in PEM format. rr5)formatrr2r3r4Z privateKeyzNo key could be detected.)rZ _from_bytesrZreadPemBlocksFromFilerStringIO _PKCS1_MARKER _PKCS8_MARKERr+keyZ PrivateKeyr7rr6 _PKCS8_SPECr.ZgetComponentByNameZasOctets) r8rJpasswordZ marker_idr:rCZkey_infor9Z pkey_inforrrr;s(      zRsaSigner.from_stringN)rE)r<r=r>r?r&rDr@r;rrrrrAs  rA)r?Zpyasn1.codec.derrZpyasn1_modulesrZpyasn1_modules.rfc2459rZpyasn1_modules.rfc5208rr+rZ oauth2clientrZ _PKCS12_ERRORrrHrIrKr!objectr"rArrrrs      ?