o @sddZddlmZddlmZddlmZddlmZddl m Z Gddde Z Gd d d e Z d S) z2pyCrypto Crypto-related routines for oauth2client.)SHA256)RSA) PKCS1_v1_5) DerSequence)_helpersc@s,eZdZdZddZddZeddZdS) PyCryptoVerifierz$Verifies the signature on a message.cC ||_dS)zConstructor. Args: pubkey: OpenSSL.crypto.PKey (or equiv), The public key to verify with. N)_pubkey)selfpubkeyr E/tmp/google-cloud-sdk/lib/third_party/oauth2client/_pycrypto_crypt.py__init__s zPyCryptoVerifier.__init__cCs(tj|dd}t|jt||S)aVerifies a message against a signature. Args: message: string or bytes, The message to verify. If string, will be encoded to bytes as utf-8. signature: string or bytes, The signature on the message. Returns: True if message was signed by the private key associated with the public key that this object was constructed with. utf-8encoding)r _to_bytesrnewr verifyr)r message signaturer r r r$s  zPyCryptoVerifier.verifycCs|r8t|}|dd}td|dd}t}||t}||dt |d}t |St |}t |S)a@Construct a Verified instance from a string. Args: key_pem: string, public key in PEM format. is_x509_cert: bool, True if key_pem is an X509 cert, otherwise it is expected to be an RSA key in PEM format. Returns: Verifier instance.  r) rrreplacesplit_urlsafe_b64decodejoinrdecoder importKeyr)key_pem is_x509_certpemLinescertDercertSeqtbsSeqr r r r from_string4s   zPyCryptoVerifier.from_stringN)__name__ __module__ __qualname____doc__rr staticmethodr(r r r r rs  rc@s.eZdZdZddZddZed ddZd S) PyCryptoSignerz"Signs messages with a private key.cCr)ztConstructor. Args: pkey, OpenSSL.crypto.PKey (or equiv), The private key to sign with. N)_key)r pkeyr r r rQs zPyCryptoSigner.__init__cCs&tj|dd}t|jt|S)zSigns a message. Args: message: string, Message to be signed. Returns: string, The signature of the message for the given key. rr)rrrrr/signr)r rr r r r1Ys zPyCryptoSigner.sign notasecretcCs.tt|}|rt|}t|Std)a_Construct a Signer instance from a string. Args: key: string, private key in PEM format. password: string, password for private key file. Unused for PEM files. Returns: Signer instance. Raises: NotImplementedError if the key isn't in PEM format. zpNo key in PEM format was detected. This implementation can only use the PyCrypto library for keys in PEM format.)r_parse_pem_keyrrr!NotImplementedErrorr.)keypasswordparsed_pem_keyr0r r r r(es zPyCryptoSigner.from_stringN)r2)r)r*r+r,rr1r-r(r r r r r.Ns  r.N)r, Crypto.HashrCrypto.PublicKeyrCrypto.SignaturerCrypto.Util.asn1r oauth2clientrobjectrr.r r r r s     6