SrSSKJr SSKJr SSKJr SSKrSSKrSSKrSSKJ r SSK J r SSK r Sr "S S \ R5rS r"S S \5rg)z1Utilities for encryption functions using openssl.)absolute_import)division)unicode_literalsN) exceptions)logic\rSrSrSrSrg)OpenSSLException"z.Exception for problems with OpenSSL functions.N)__name__ __module__ __qualname____firstlineno____doc____static_attributes__r >lib/googlecloudsdk/api_lib/compute/openssl_encryption_utils.pyr r "s6rr cUR5nURS5nUSRS5(aUSRS5(d[SR U55eSR USS5$)z9Returns key with header, footer and all newlines removed. rs-----z;The following key does not appear to be in PEM format: {0}r)stripsplit startswithr formatjoin)key key_liness rStripKeyr&su #ii) A, ! !( + + r] % %h / / F   )Ab/ ""rcP\rSrSrSrSrS Sjr\4SjrSr S Sjr \4S jr S r g) OpensslCrypt2z,Base Class for OpenSSL encryption functions.cXlgNopenssl_executable)selfr&s r__init__OpensslCrypt.__init__5s0rNc>UR/nURU5 [R"U[R[R[RS9nUR U5upV[ R"SRSRU5U55 UR(a)[SRUSURU55eU$![a-n[SRUSUR55eSnAff=f)zARun an openssl command with optional input and return the output.)stdinstdoutstderrz-Ran command "{0}" with standard error of: {1} z[{0}] exited with [{1}].rNz)[{0}] exited with return code [{1}]: {2}.)r&extend subprocessPopenPIPE communicaterdebugrrOSErrorr strerror returncode)r'cmd_args cmd_inputcommandpoutputr-es r RunOpenSSLOpensslCrypt.RunOpenSSL8s&&'G NN8 E   7*//",//*// Ka}}Y/nf ii@)624 || I$fWQZvF HH M E  $ + +GAJ C EE EsB C%% D/(DDcPURS[R"U5/5$)z&Returns an RSA key pair (private key).genrsa)r>six text_type)r' key_lengths r GetKeyPairOpensslCrypt.GetKeyPairRs ??HcmmJ&?@ AArc&URSS/US9$)z%Returns a public key from a key pair.rsaz-puboutr9)r>)r'rs r GetPublicKeyOpensslCrypt.GetPublicKeyVs ??E9-? ==rcA[R"U5n[R"5nUR U5 UR 5 SSSSUR /nURXdS9nSSS5 U$!,(df  W$=f)zReturns a decrypted message using the provided key. Args: key: An openssl key pair (private key). enc_message: a base64 encoded encrypted message. destroy_key: Unused for OpenSSL. Returns: Decrypted version of enc_message rsautlz-decryptz-oaepz-inkeyrIN)base64 b64decodetempfileNamedTemporaryFilewriteflushnamer>)r'r enc_message destroy_keyencrypted_message_datatf openssl_argsmessages rDecryptMessageOpensslCrypt.DecryptMessageZs| #--k:  $ $ &"hhsmhhj GXrwwGl Og ' N ' & Ns AA99 Bc[U5n[R"U5nUSSnUS-nUS-(aUS- nSU- nXGSn[R"U5n [R"U5n X4$)zBReturns a base64 encoded modulus and exponent from the public key.Nr)rrNrO b64encode) r' public_keyrDr decoded_keyexponent key_bytes modulus_startmodulusb64_modb64_exps rGetModulusExponentFromPublicKey,OpensslCrypt.GetModulusExponentFromPublicKeyps : C""3'K23HaIA~1niNM+Gw'Gx(G  rr%r$)F) r r rrrr(r>DEFAULT_KEY_LENGTHrErJr[rjrr rrr!r!2s/414#5B>.2Drr!)r __future__rrrrNr0rPgooglecloudsdk.api_lib.computergooglecloudsdk.corerrBrlErrorr robjectr!r rrrrsR8&' 5# 7z''7 #[6[r