pdZddlmZddlmZddlmZddlmZddl m Z Gdde Z Gd d e Z y ) z2pyCrypto Crypto-related routines for oauth2client.)SHA256)RSA) PKCS1_v1_5) DerSequence)_helpersc,eZdZdZdZdZedZy)PyCryptoVerifierz$Verifies the signature on a message.c||_y)zConstructor. Args: pubkey: OpenSSL.crypto.PKey (or equiv), The public key to verify with. N)_pubkey)selfpubkeys /lib/third_party/oauth2client/_pycrypto_crypt.py__init__zPyCryptoVerifier.__init__s  ctj|d}tj|jj t j||S)aVerifies a message against a signature. Args: message: string or bytes, The message to verify. If string, will be encoded to bytes as utf-8. signature: string or bytes, The signature on the message. Returns: True if message was signed by the private key associated with the public key that this object was constructed with. utf-8encoding)r _to_bytesrnewr verifyr)r message signatures rrzPyCryptoVerifier.verify$sD$$Ww?~~dll+22 JJw , ,rc|rtj|}|jddj}tjdj |dd}t }|j|t }|j|dtj|d}t|Stj|}t|S)a@Construct a Verified instance from a string. Args: key_pem: string, public key in PEM format. is_x509_cert: bool, True if key_pem is an X509 cert, otherwise it is expected to be an RSA key in PEM format. Returns: Verifier instance.  rr) rrreplacesplit_urlsafe_b64decodejoinrdecoder importKeyr )key_pem is_x509_certpemLinescertDercertSeqtbsSeqr s r from_stringzPyCryptoVerifier.from_string4s ((1GtS1779H11#((8Ab>2JKG!mG NN7 # ]F MM'!* %]]6!9-F '']]7+F''rN)__name__ __module__ __qualname____doc__rr staticmethodr+rrr r s#., ((rr c.eZdZdZdZdZeddZy)PyCryptoSignerz"Signs messages with a private key.c||_y)ztConstructor. Args: pkey, OpenSSL.crypto.PKey (or equiv), The private key to sign with. N)_key)r pkeys rrzPyCryptoSigner.__init__Qs  rctj|d}tj|jj t j|S)zSigns a message. Args: message: string, Message to be signed. Returns: string, The signature of the message for the given key. rr)rrrrr5signr)r rs rr8zPyCryptoSigner.signYs=$$Ww?~~dii(--fjj.ABBrctjtj|}|r tj|}t |St d)a_Construct a Signer instance from a string. Args: key: string, private key in PEM format. password: string, password for private key file. Unused for PEM files. Returns: Signer instance. Raises: NotImplementedError if the key isn't in PEM format. zpNo key in PEM format was detected. This implementation can only use the PyCrypto library for keys in PEM format.)r_parse_pem_keyrrr$NotImplementedErrorr3)keypasswordparsed_pem_keyr6s rr+zPyCryptoSigner.from_stringesQ"001C1CC1HI ==0D d## & rN) notasecret)r,r-r.r/rr8r0r+r1rrr3r3Ns$, C$$rr3N)r/ Crypto.HashrCrypto.PublicKeyrCrypto.SignaturerCrypto.Util.asn1r oauth2clientrobjectr r3r1rrrFs29 '(!3(v3(l.$V.$r