h`dZddlmZddlmZGddeZGddeZdZd S) z1OpenSSL Crypto-related routines for oauth2client.)crypto)_helpersc4eZdZdZdZdZedZdS)OpenSSLVerifierz$Verifies the signature on a message.c||_dS)zlConstructor. Args: pubkey: OpenSSL.crypto.PKey, The public key to verify with. N)_pubkey)selfpubkeys s/home/visionen/pythonvenv/lib/python3.11/site-packages/oauth2client-4.1.3-py3.11.egg/oauth2client/_openssl_crypt.py__init__zOpenSSLVerifier.__init__s  ctj|d}tj|d} tj|j||ddS#tj$rYdSwxYw)aVerifies a message against a signature. Args: message: string or bytes, The message to verify. If string, will be encoded to bytes as utf-8. signature: string or bytes, The signature on the message. If string, will be encoded to bytes as utf-8. Returns: True if message was signed by the private key associated with the public key that this object was constructed with. utf-8encodingsha256TF)r _to_bytesrverifyrError)r message signatures r rzOpenSSLVerifier.verify st$Ww???&y7CCC   M$, 7H E E E4|   55 sA AActj|}|r tjtj|}ntjtj|}t |S)aConstruct a Verified instance from a string. Args: key_pem: string, public key in PEM format. is_x509_cert: bool, True if key_pem is an X509 cert, otherwise it is expected to be an RSA key in PEM format. Returns: Verifier instance. Raises: OpenSSL.crypto.Error: if the key_pem can't be parsed. )rrrload_certificate FILETYPE_PEMload_privatekeyr)key_pem is_x509_certr s r from_stringzOpenSSLVerifier.from_string5sW$W--  J,V-@'JJFF+F,?IIFv&&&r N)__name__ __module__ __qualname____doc__r r staticmethodrr r rrsS..*''\'''r rc6eZdZdZdZdZeddZdS) OpenSSLSignerz"Signs messages with a private key.c||_dS)ztConstructor. Args: pkey: OpenSSL.crypto.PKey (or equiv), The private key to sign with. N)_key)r pkeys r r zOpenSSLSigner.__init__Os  r cdtj|d}tj|j|dS)zSigns a message. Args: message: bytes, Message to be signed. Returns: string, The signature of the message for the given key. rrr)rrrsignr()r rs r r+zOpenSSLSigner.signWs/$Ww???{49gx888r notasecretc.tj|}tj|}|r tjtj|}n=tj|d}tj||}t|S)a>Construct a Signer instance from a string. Args: key: string, private key in PKCS12 or PEM format. password: string, password for the private key file. Returns: Signer instance. Raises: OpenSSL.crypto.Error if the key can't be parsed. rr) rr_parse_pem_keyrrr load_pkcs12get_privatekeyr&)keypasswordparsed_pem_keyr)s r rzOpenSSLSigner.from_stringcs %%!055  F)&*=~NNDD)(WEEEH%c844CCEEDT"""r N)r,)rr r!r"r r+r#rr$r r r&r&LsX,, 9 9 9###\###r r&ctj|}tj||}tjtj|S)aConvert the contents of a PKCS#12 key to PEM using pyOpenSSL. Args: private_key_bytes: Bytes. PKCS#12 key in DER format. private_key_password: String. Password for PKCS#12 key. Returns: String. PEM contents of ``private_key_bytes``. )rrrr/dump_privatekeyrr0)private_key_bytesprivate_key_passwordpkcs12s r pkcs12_key_as_pemr9{sS$-.BCC   13G H HF  !&"5"("7"7"9"9 ; ;;r N) r"OpenSSLr oauth2clientrobjectrr&r9r$r r r=s87!!!!!!4'4'4'4'4'f4'4'4'n,#,#,#,#,#F,#,#,#^ ; ; ; ; ;r