a !f@sHdZddlmZddlmZGdddeZGdddeZdd Zd S) z1OpenSSL Crypto-related routines for oauth2client.)crypto)_helpersc@s,eZdZdZddZddZeddZdS) OpenSSLVerifierz$Verifies the signature on a message.cCs ||_dS)zlConstructor. Args: pubkey: OpenSSL.crypto.PKey, The public key to verify with. N)_pubkey)selfpubkeyr\/var/www/html/python-backend/venv/lib/python3.9/site-packages/oauth2client/_openssl_crypt.py__init__szOpenSSLVerifier.__init__cCsPtj|dd}tj|dd}zt|j||dWdStjyJYdS0dS)aVerifies a message against a signature. Args: message: string or bytes, The message to verify. If string, will be encoded to bytes as utf-8. signature: string or bytes, The signature on the message. If string, will be encoded to bytes as utf-8. Returns: True if message was signed by the private key associated with the public key that this object was constructed with. utf-8encodingsha256TFN)r _to_bytesrverifyrError)rmessage signaturerrr r s zOpenSSLVerifier.verifycCs4t|}|rttj|}nttj|}t|S)aConstruct a Verified instance from a string. Args: key_pem: string, public key in PEM format. is_x509_cert: bool, True if key_pem is an X509 cert, otherwise it is expected to be an RSA key in PEM format. Returns: Verifier instance. Raises: OpenSSL.crypto.Error: if the key_pem can't be parsed. )rrrZload_certificate FILETYPE_PEMload_privatekeyr)Zkey_pemZ is_x509_certrrrr from_string5s  zOpenSSLVerifier.from_stringN)__name__ __module__ __qualname____doc__r r staticmethodrrrrr rs rc@s.eZdZdZddZddZed ddZd S) OpenSSLSignerz"Signs messages with a private key.cCs ||_dS)ztConstructor. Args: pkey: OpenSSL.crypto.PKey (or equiv), The private key to sign with. N)_key)rpkeyrrr r OszOpenSSLSigner.__init__cCstj|dd}t|j|dS)zSigns a message. Args: message: bytes, Message to be signed. Returns: string, The signature of the message for the given key. r r r)rrrsignr)rrrrr rWs zOpenSSLSigner.sign notasecretcCsNt|}t|}|r(ttj|}ntj|dd}t||}t|S)a>Construct a Signer instance from a string. Args: key: string, private key in PKCS12 or PEM format. password: string, password for the private key file. Returns: Signer instance. Raises: OpenSSL.crypto.Error if the key can't be parsed. r r ) rrZ_parse_pem_keyrrr load_pkcs12get_privatekeyr)keypasswordZparsed_pem_keyrrrr rcs  zOpenSSLSigner.from_stringN)r )rrrrr rrrrrrr rLs  rcCs(t|}t||}ttj|S)aConvert the contents of a PKCS#12 key to PEM using pyOpenSSL. Args: private_key_bytes: Bytes. PKCS#12 key in DER format. private_key_password: String. Password for PKCS#12 key. Returns: String. PEM contents of ``private_key_bytes``. )rrrr!Zdump_privatekeyrr")Zprivate_key_bytesZprivate_key_passwordZpkcs12rrr pkcs12_key_as_pem{s  r%N) rZOpenSSLrZ oauth2clientrobjectrrr%rrrr s   7/