dZddlmZddlmZddlmZddlZddlZddlZddlm Z ddl m Z ddl Z dZ Gd d e jZd ZGd d eZy)z1Utilities for encryption functions using openssl.)absolute_import)division)unicode_literalsN) exceptions)logiceZdZdZy)OpenSSLExceptionz.Exception for problems with OpenSSL functions.N)__name__ __module__ __qualname____doc__>lib/googlecloudsdk/api_lib/compute/openssl_encryption_utils.pyr r "s6rr c|j}|jd}|djdr|djdstdj |dj |ddS)z9Returns key with header, footer and all newlines removed. rs-----z;The following key does not appear to be in PEM format: {0}r)stripsplit startswithr formatjoin)key key_liness rStripKeyr&so #ii) A, ! !( + r] % %h / F   )Ab/ ""rc@eZdZdZdZd dZefdZdZd dZ efdZ y) OpensslCryptz,Base Class for OpenSSL encryption functions.c||_yN)openssl_executable)selfr!s r__init__zOpensslCrypt.__init__5s 0DrNc6|jg}|j| tj|tjtjtj}|j |\}}t jdjdj|||jr)tdj|d|j||S#t$r-}tdj|d|jd}~wwxYw)zARun an openssl command with optional input and return the output.)stdinstdoutstderrz-Ran command "{0}" with standard error of: {1} z[{0}] exited with [{1}].rNz)[{0}] exited with return code [{1}]: {2}.)r!extend subprocessPopenPIPE communicaterdebugrrOSErrorr strerror returncode)r"cmd_args cmd_inputcommandpoutputr'es r RunOpenSSLzOpensslCrypt.RunOpenSSL8s&&'G NN8 E   7*//",//*// Ka}}Y/nff ii@)624 || I$fWQZvF HH M E  $ + +GAJ C EE EsB C"" D+(DDcN|jdtj|gS)z&Returns an RSA key pair (private key).genrsa)r8six text_type)r" key_lengths r GetKeyPairzOpensslCrypt.GetKeyPairRs ??HcmmJ&?@ AArc,|jddg|S)z%Returns a public key from a key pair.rsaz-puboutr3)r8)r"rs r GetPublicKeyzOpensslCrypt.GetPublicKeyVs ??E9-? ==rc~tj|}tj5}|j ||j dddd|j g}|j||}ddd|S#1swYSxYw)aReturns a decrypted message using the provided key. Args: key: An openssl key pair (private key). enc_message: a base64 encoded encrypted message. destroy_key: Unused for OpenSSL. Returns: Decrypted version of enc_message rsautlz-decryptz-oaepz-inkeyrAN)base64 b64decodetempfileNamedTemporaryFilewriteflushnamer8)r"r enc_message destroy_keyencrypted_message_datatf openssl_argsmessages rDecryptMessagezOpensslCrypt.DecryptMessageZs| #--k:  $ $ &"hhsmhhj GXrwwGl 8NOg ' N ' Ns AA;;Bct|}tj|}|dd}|dz}|dzr|dz }d|z }||d}tj|} tj|} | | fS)zBReturns a base64 encoded modulus and exponent from the public key.Nr)rrErF b64encode) r" public_keyr=r decoded_keyexponent key_bytes modulus_startmodulusb64_modb64_exps rGetModulusExponentFromPublicKeyz,OpensslCrypt.GetModulusExponentFromPublicKeyps : C""3'K23HaIA~1niNM-+Gw'Gx(G W rr )F) r r r r r#r8DEFAULT_KEY_LENGTHr>rBrRr`rrrrr2s/414#5B>.2Drr)r __future__rrrrEr*rGgooglecloudsdk.api_lib.computergooglecloudsdk.corerr;raErrorr robjectrrrrrgsR8&' 5# 7z''7 #[6[r