iSldZddlmZddlmZmZmZmZddlZ ddl m Z ddl m Z ddl mZddlmZdd lmZdd lmZdd lmZddlZ dd lmZdd lmZdZe jZejZeGddZGddej Z!Gddej"ej#Z$dS)zAECDSA verifier and signer that use the ``cryptography`` library. ) dataclass)AnyDictOptionalUnionN)backends)hashes) serialization)ec)padding)decode_dss_signature)encode_dss_signature)_helpers)bases-----BEGIN CERTIFICATE-----ceZdZUdZeed<ejed<eed<e de e j e j ffdZe de jfdZd S) _ESAttributeszA class that models ECDSA attributes. Attributes: rs_size (int): Size for ASN.1 r and s size. sha_algo (hashes.HashAlgorithm): Hash algorithm. algorithm (str): Algorithm name. rs_sizesha_algo algorithmkeyc6||jSN) from_curvecurve)clsrs O/root/projects/butler/venv/lib/python3.11/site-packages/google/auth/crypt/es.pyfrom_keyz_ESAttributes.from_key6s~~ci(((rct|tjr|dtjdS|dtjdS)N0ES384 ES256) isinstancer SECP384R1r SHA384SHA256)rrs rrz_ESAttributes.from_curve<sN eR\ * * 53r6=??G44 43r6=??G44 4rN)__name__ __module__ __qualname____doc__int__annotations__r HashAlgorithmstr classmethodrr EllipticCurvePublicKeyEllipticCurvePrivateKeyr EllipticCurverrrrr(sLLL""""NNN)123MMN)))[)  5r/ 5 5 5[ 5 5 5rrceZdZdZdejddfdZeje j de de de fdZ edeee fddfd ZdS) EsVerifierzVerifies ECDSA cryptographic signatures using public keys. Args: public_key ( cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey): The public key used to verify signatures. public_keyreturnNcR||_t||_dSr)_pubkeyrr _attributes)selfr7s r__init__zEsVerifier.__init__Rs%! (11*==rmessage signaturec(tj|}t||jjdzkrdSt |d|jjd}t ||jjdd}t||}tj|} |j ||tj |jj dS#ttjjf$rYdSwxYw)NFbig byteorderT)rto_byteslenr;rr, from_bytesrr:verifyr ECDSAr ValueError cryptography exceptionsInvalidSignature)r<r>r? sig_bytesrsasn1_sigs rrHzEsVerifier.verifyVs%i00 y>>T-59 9 95 NN9%?t'7'?%?@EN R R NN9T%5%=%?%?@EN R R'1--#G,,  L  '28D>D__&&FF#6QQF&"";<< RPQQ Qs6{{r)r(r)r*r+r r1r=rcopy_docstringrVerifierbytesboolrHr0rr/r\r4rrr6r6Is>2#<>>>>>XT]++e$,+ U3:%6<[rr6ceZdZdZ ddejdeeddfdZe defdZ e e j e jdeefdZe j e jd edefd Ze dd eeefdeeddfd Zdeeeffd ZdeeefddfdZdS)EsSigneraSigns messages with an ECDSA private key. Args: private_key ( cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey): The private key to sign with. key_id (str): Optional key ID used to identify this private key. This can be useful to associate the private key with its associated public key or certificate. N private_keykey_idr8c`||_||_t||_dSr)_key_key_idrrr;)r<rcrds rr=zEsSigner.__init__s.   (11+>>rc|jjS)zkName of the algorithm used to sign messages. Returns: str: The algorithm name. )r;rr<s rrzEsSigner.algorithms ))rc|jSr)rgris rrdzEsSigner.key_ids |rr>cBtj|}|j|t j|jj}t|\}}||jj d||jj dzS)NrBrC) rrErfsignr rIr;rr r)r<r>asn1_signaturerOrPs rrlz EsSigner.signs#G,,$:J:S1T1TUU&n55Azz$*2ezDDqzz   $HRH H   rrctj|}tj|dt}t |t jstd|||S)alConstruct a RSASigner from a private key in PEM format. Args: key (Union[bytes, str]): Private key in PEM format. key_id (str): An optional key id used to identify the private key. Returns: google.auth.crypt._cryptography_rsa.RSASigner: The constructed signer. Raises: ValueError: If ``key`` is not ``bytes`` or ``str`` (unicode). UnicodeDecodeError: If ``key`` is ``bytes`` but cannot be decoded into a UTF-8 ``str``. ValueError: If ``cryptography`` "Could not deserialize key data." N)passwordbackendz4Expected private key of type EllipticCurvePrivateKey)rd) rrEr load_pem_private_keyrVr$r r2rX)rrrd key_bytesrcs rr\zEsSigner.from_stringsn(%c** #8 h   +r'ABB TRSS Ss;v....rc|j}|jtjjtjjt j |d<|S)z1Pickle helper that serializes the _key attribute.)encodingformatencryption_algorithmrf) __dict__copyrf private_bytesr EncodingPEM PrivateFormatPKCS8 NoEncryptionr<states r __getstate__zEsSigner.__getstate__sZ ""$$ //"+/ .4!.!;!=!=0  f  rrcvtj|dd|d<|j|dS)z3Pickle helper that deserializes the _key attribute.rfN)r rqrwupdaters r __setstate__zEsSigner.__setstate__s8%:5=$OOf  U#####rr)r(r)r*r+r r2rr/r=propertyrrr]rSignerrdr_rlr0rr\rrrrr4rrrbrbs  PT??5??G}? ????*3***X*XT[)) *)XXT[)) E e   *) =A//s #/-5c]/ ///[/:d38n$$sCx.$T$$$$$$rrb)%r+ dataclassesrtypingrrrrcryptography.exceptionsrKcryptography.hazmatrcryptography.hazmat.primitivesr r )cryptography.hazmat.primitives.asymmetricr r /cryptography.hazmat.primitives.asymmetric.utilsr rcryptography.x509 google.authrgoogle.auth.cryptrrSdefault_backendrVPKCS1v15_PADDINGrr^r6rFromServiceAccountMixinrbr4rrrs"!!!!!------------((((((111111888888888888======PPPPPPPPPPPP """"""5 #8 # % % 7    5555555 5@;;;;;;;;|V$V$V$V$V$t{D8V$V$V$V$V$r