HEX
Server: LiteSpeed
System: Linux php-prod-1.spaceapp.ru 5.15.0-157-generic #167-Ubuntu SMP Wed Sep 17 21:35:53 UTC 2025 x86_64
User: sport3497 (1034)
PHP: 8.1.33
Disabled: NONE
Upload Files
File: //lib/python3/dist-packages/cryptography/hazmat/backends/openssl/__pycache__/x509.cpython-310.pyc
o

�)%a/Y�@sddlZddlZddlZddlmZmZddlmZddlm	Z	m
Z
mZddlm
Z
mZmZmZmZddlmZmZddlmZmZddlmZdd	lmZGd
d�dej�ZGdd
�d
ej�Ze� ej!�Gdd�de"��Z#e� ej$�Gdd�de"��Z%e� ej&j'�Gdd�de"��Z(dS)�N)�utils�x509)�UnsupportedAlgorithm)�dsa�ec�rsa)�_asn1_integer_to_int�_asn1_string_to_bytes�_decode_x509_name�_obj2txt�_parse_asn1_time)�_encode_asn1_int_gc�_txt2obj_gc)�hashes�
serialization)�_PUBLIC_KEY_TYPES)�	_ASN1Typec@sleZdZUejed<dd�Zdd�Zdede	fdd	�Z
dede	fd
d�Zdefdd
�Z
dd�Zdejdefdd�Ze�d�Zedefdd��Zdefdd�Zedejfdd��Zedejfdd��Zedejfdd��Zedejfdd��Z edej!ejfd d!��Z"edej#fd"d#��Z$ej%dej&fd$d%��Z'edefd&d'��Z(edefd(d)��Z)d*e*j+defd+d,�Z,d-S).�_Certificate�_ocsp_resp_refcCsZ||_||_|jj�|j�}|dkrtjj|_dS|dkr$tjj|_dSt�	d�
|�|��)Nr�z{} is not a valid X509 version)�_backend�_x509�_lib�X509_get_versionr�Version�v1�_version�v3�InvalidVersion�format)�self�backend�	x509_cert�version�r$�K/usr/lib/python3/dist-packages/cryptography/hazmat/backends/openssl/x509.py�__init__!s
�z_Certificate.__init__cCsd�|j�S)Nz<Certificate(subject={}, ...)>)r�subject�r r$r$r%�__repr__/sz_Certificate.__repr__�other�returncC�*t|t�stS|jj�|j|j�}|dkS�Nr)�
isinstancer�NotImplementedrr�X509_cmpr�r r*�resr$r$r%�__eq__2�
z_Certificate.__eq__cC�
||kS�Nr$�r r*r$r$r%�__ne__9�
z_Certificate.__ne__cC�t|�tjj��Sr6��hash�public_bytesr�Encoding�DERr(r$r$r%�__hash__<�z_Certificate.__hash__cCs|Sr6r$)r �memor$r$r%�__deepcopy__?sz_Certificate.__deepcopy__�	algorithmcCs*t�||j�}|�|�tjj��|��Sr6)	r�Hashr�updater=rr>r?�finalize)r rD�hr$r$r%�fingerprintBsz_Certificate.fingerprintrcC�2|jj�|j�}|j�||jjjk�t|j|�Sr6)rr�X509_get_serialNumberr�openssl_assert�_ffi�NULLr�r �asn1_intr$r$r%�
serial_numberI�z_Certificate.serial_numbercCsR|jj�|j�}||jjjkr|j��td��|jj�||jjj	�}|j�
|�S)Nz,Certificate public key is of an unknown type)rr�X509_get_pubkeyrrMrN�_consume_errors�
ValueError�gc�
EVP_PKEY_free�_evp_pkey_to_public_key�r �pkeyr$r$r%�
public_keyOs
z_Certificate.public_keycC�|jj�|j�}t|j|�Sr6)rr�X509_get0_notBeforerr�r �	asn1_timer$r$r%�not_valid_beforeZ�z_Certificate.not_valid_beforecCr\r6)rr�X509_get0_notAfterrrr^r$r$r%�not_valid_after_raz_Certificate.not_valid_aftercCrJr6)rr�X509_get_issuer_namerrLrMrNr
�r �issuerr$r$r%rfdrRz_Certificate.issuercCrJr6)rr�X509_get_subject_namerrLrMrNr
�r r'r$r$r%r'jrRz_Certificate.subjectcC�0|j}ztj|WStytd�|���w�Nz)Signature algorithm OID:{} not recognized��signature_algorithm_oidr�_SIG_OIDS_TO_HASH�KeyErrorrr�r �oidr$r$r%�signature_hash_algorithmp���z%_Certificate.signature_hash_algorithmcCs^|jj�d�}|jj�|jjj||j�|j�|d|jjjk�t|j|dj	�}t
�|�S�Nz
X509_ALGOR **r)rrM�newr�X509_get0_signaturerNrrLrrDr�ObjectIdentifier�r �algrpr$r$r%rl|��
z$_Certificate.signature_algorithm_oidcC�|jj�|j�Sr6)r�_certificate_extension_parser�parserr(r$r$r%�
extensions��z_Certificate.extensionscCsR|jj�d�}|jj�||jjj|j�|j�|d|jjjk�t|j|d�S�NzASN1_BIT_STRING **r)	rrMrtrrurNrrLr	�r �sigr$r$r%�	signature���z_Certificate.signaturec�d�jj�d�}�jj��j|�}�j�|dk��jj�|�fdd��}�jj�|d|�dd�S)N�unsigned char **rc��jj�|d�Sr-�rr�OPENSSL_free��pointerr(r$r%�<lambda>��z4_Certificate.tbs_certificate_bytes.<locals>.<lambda>)	rrMrtr�i2d_re_X509_tbsrrLrV�buffer�r �ppr2r$r(r%�tbs_certificate_bytes���z"_Certificate.tbs_certificate_bytes�encodingcC�n|j��}|tjjur|jj�||j�}n|tjjur%|jj�	||j�}nt
d��|j�|dk�|j�|�S�Nz/encoding must be an item from the Encoding enum�)
r�_create_mem_bio_gcrr>�PEMr�PEM_write_bio_X509rr?�i2d_X509_bio�	TypeErrorrL�
_read_mem_bio�r r��bior2r$r$r%r=�s
z_Certificate.public_bytesN)-�__name__�
__module__�__qualname__�typing�Any�__annotations__r&r)�object�boolr3r8�intr@rCr�
HashAlgorithm�bytesrIr�read_only_propertyr#�propertyrQrr[�datetimer`rcr�Namerfr'�Optionalrqrvrl�cached_property�
Extensionsr}r�r�rr>r=r$r$r$r%rsD



�		rc@sPeZdZdd�Zedefdd��Zedejfdd��Ze	j
dejfdd	��Z
d
S)�_RevokedCertificatecC�||_||_||_dSr6)r�_crl�
_x509_revoked)r r!�crl�x509_revokedr$r$r%r&�s
z_RevokedCertificate.__init__r+cCrJr6)rr�X509_REVOKED_get0_serialNumberr�rLrMrNrrOr$r$r%rQ�s
�z!_RevokedCertificate.serial_numbercCst|j|jj�|j��Sr6)rrr� X509_REVOKED_get0_revocationDater�r(r$r$r%�revocation_date�s��z#_RevokedCertificate.revocation_datecCrzr6)r�_revoked_cert_extension_parserr|r�r(r$r$r%r}�s�z_RevokedCertificate.extensionsN)r�r�r�r&r�r�rQr�r�rr�rr�r}r$r$r$r%r��sr�c@sdeZdZdd�Zdedefdd�Zdedefdd�Zd	ej	de
fd
d�Zej
dd
��Zdedejejfdd�Zedejej	fdd��Zedejfdd��Zedejfdd��Zedejfdd��Zedejfdd��Zede
fdd��Zede
fdd��Zde j!de
fd d!�Z"d"d#�Z#d$d%�Z$d&d'�Z%defd(d)�Z&ej
dej'fd*d+��Z(d,e)defd-d.�Z*d/S)0�_CertificateRevocationListcC�||_||_dSr6)r�	_x509_crl)r r!�x509_crlr$r$r%r&��
z#_CertificateRevocationList.__init__r*r+cCr,r-)r.r�r/rr�X509_CRL_cmpr�r1r$r$r%r3�r4z!_CertificateRevocationList.__eq__cCr5r6r$r7r$r$r%r8�r9z!_CertificateRevocationList.__ne__rDcCsXt�||j�}|j��}|jj�||j�}|j�|dk�|j�|�}|�	|�|�
�S)Nr�)rrErr�r�i2d_X509_CRL_bior�rLr�rFrG)r rDrHr�r2�derr$r$r%rI�s

z&_CertificateRevocationList.fingerprintcCs@|jj�|j�}|j�||jjjk�|jj�||jjj�}|Sr6)	rr�X509_CRL_dupr�rLrMrNrV�
X509_CRL_free)r �dupr$r$r%�_sorted_crl�sz&_CertificateRevocationList._sorted_crlrQcCsh|jj�d�}t|j|�}|jj�|j||�}|dkrdS|j�|d|jjjk�t	|j|j|d�S)NzX509_REVOKED **r)
rrMrtr
r�X509_CRL_get0_by_serialr�rLrNr�)r rQ�revokedrPr2r$r$r%�(get_revoked_certificate_by_serial_number�s��zC_CertificateRevocationList.get_revoked_certificate_by_serial_numbercCrirjrkror$r$r%rqrrz3_CertificateRevocationList.signature_hash_algorithmcC�^|jj�d�}|jj�|j|jjj|�|j�|d|jjjk�t|j|dj	�}t
�|�Srs)rrMrtr�X509_CRL_get0_signaturer�rNrLrrDrrvrwr$r$r%rlryz2_CertificateRevocationList.signature_algorithm_oidcCrJr6)rr�X509_CRL_get_issuerr�rLrMrNr
rer$r$r%rfrRz!_CertificateRevocationList.issuercCrJr6)rr�X509_CRL_get0_nextUpdater�rLrMrNr)r �nur$r$r%�next_updaterRz&_CertificateRevocationList.next_updatecCrJr6)rr�X509_CRL_get0_lastUpdater�rLrMrNr)r �lur$r$r%�last_update$rRz&_CertificateRevocationList.last_updatecC�R|jj�d�}|jj�|j||jjj�|j�|d|jjjk�t|j|d�Sr)	rrMrtrr�r�rNrLr	r�r$r$r%r�*r�z$_CertificateRevocationList.signaturecr�)Nr�rcr�r-r�r�r(r$r%r�9r�z?_CertificateRevocationList.tbs_certlist_bytes.<locals>.<lambda>)	rrMrtr�i2d_re_X509_CRL_tbsr�rLrVr�r�r$r(r%�tbs_certlist_bytes3r�z-_CertificateRevocationList.tbs_certlist_bytesr�cCr�r�)
rr�rr>r�r�PEM_write_bio_X509_CRLr�r?r�r�rLr�r�r$r$r%r==�
�z'_CertificateRevocationList.public_bytescCsD|jj�|j�}|jj�||�}|j�||jjjk�t|j||�Sr6)	rr�X509_CRL_get_REVOKEDr��sk_X509_REVOKED_valuerLrMrNr�)r �idxr��rr$r$r%�
_revoked_certKsz(_CertificateRevocationList._revoked_certccs$�tt|��D]}|�|�VqdSr6)�range�lenr�)r �ir$r$r%�__iter__Qs��z#_CertificateRevocationList.__iter__cs�t|t�r|�t���\}}}�fdd�t|||�D�St�|�}|dkr+|t��7}d|kr8t��ks;t�t���|�S)Ncsg|]}��|��qSr$)r�)�.0r�r(r$r%�
<listcomp>Xsz:_CertificateRevocationList.__getitem__.<locals>.<listcomp>r)	r.�slice�indicesr�r��operator�index�
IndexErrorr�)r r��start�stop�stepr$r(r%�__getitem__Us

�
z&_CertificateRevocationList.__getitem__cCs0|jj�|j�}||jjjkrdS|jj�|�Sr-)rrr�r�rMrN�sk_X509_REVOKED_num)r r�r$r$r%�__len__asz"_CertificateRevocationList.__len__cCrzr6)r�_crl_extension_parserr|r�r(r$r$r%r}hr~z%_CertificateRevocationList.extensionsr[cCsLt|tjtjtjf�std��|jj	�
|j|j�}|dkr$|j�
�dSdS)NzGExpecting one of DSAPublicKey, RSAPublicKey, or EllipticCurvePublicKey.r�FT)r.r�
_DSAPublicKeyr�
_RSAPublicKeyr�_EllipticCurvePublicKeyr�rr�X509_CRL_verifyr��	_evp_pkeyrT)r r[r2r$r$r%�is_signature_validls"����
z-_CertificateRevocationList.is_signature_validN)+r�r�r�r&r�r�r3r8rr�r�rIrr�r�r�r�r�r�RevokedCertificater�r�rqrvrlr�rfr�r�r�r�r�rr>r=r�r�r�r�r�r}rr�r$r$r$r%r��sH	
	�

�
�		r�c@s
eZdZdd�Zdedefdd�Zdedefdd�Zdefd	d
�Z	de
fdd�Zede
jfd
d��Zedejejfdd��Zede
jfdd��Zejde
jfdd��Zdejdefdd�Zedefdd��Zedefdd��Z edefdd��Z!de
jdefdd �Z"d!S)"�_CertificateSigningRequestcCr�r6)r�	_x509_req)r r!�x509_reqr$r$r%r&�r�z#_CertificateSigningRequest.__init__r*r+cCs2t|t�stS|�tjj�}|�tjj�}||kSr6)r.r�r/r=rr>r?)r r*�
self_bytes�other_bytesr$r$r%r3�s

z!_CertificateSigningRequest.__eq__cCr5r6r$r7r$r$r%r8�r9z!_CertificateSigningRequest.__ne__cCr:r6r;r(r$r$r%r@�rAz#_CertificateSigningRequest.__hash__cCsH|jj�|j�}|j�||jjjk�|jj�||jjj�}|j�	|�Sr6)
rr�X509_REQ_get_pubkeyr�rLrMrNrVrWrXrYr$r$r%r[�sz%_CertificateSigningRequest.public_keycCrJr6)rr�X509_REQ_get_subject_namer�rLrMrNr
rhr$r$r%r'�rRz"_CertificateSigningRequest.subjectcCrirjrkror$r$r%rq�rrz3_CertificateSigningRequest.signature_hash_algorithmcCr�rs)rrMrtr�X509_REQ_get0_signaturer�rNrLrrDrrvrwr$r$r%rl�ryz2_CertificateSigningRequest.signature_algorithm_oidcs6�jj��j�}�jj�|�fdd��}�jj�|�S)Ncs"�jj�|�jj��jjjd��S)N�X509_EXTENSION_free)rr�sk_X509_EXTENSION_pop_freerM�	addressof�
_original_lib)�xr(r$r%r��s
��z7_CertificateSigningRequest.extensions.<locals>.<lambda>)rr�X509_REQ_get_extensionsr�rMrV�_csr_extension_parserr|)r �	x509_extsr$r(r%r}�s
�	z%_CertificateSigningRequest.extensionsr�cCr�r�)
rr�rr>r�r�PEM_write_bio_X509_REQr�r?�i2d_X509_REQ_bior�rLr�r�r$r$r%r=�r�z'_CertificateSigningRequest.public_bytescr�)Nr�rcr�r-r�r�r(r$r%r��r�zB_CertificateSigningRequest.tbs_certrequest_bytes.<locals>.<lambda>)	rrMrtr�i2d_re_X509_REQ_tbsr�rLrVr�r�r$r(r%�tbs_certrequest_bytes�r�z0_CertificateSigningRequest.tbs_certrequest_bytescCr�r)	rrMrtrr�r�rNrLr	r�r$r$r%r��r�z$_CertificateSigningRequest.signaturecCsh|jj�|j�}|j�||jjjk�|jj�||jjj�}|jj�	|j|�}|dkr2|j�
�dSdS)Nr�FT)rrr�r�rLrMrNrVrW�X509_REQ_verifyrT)r rZr2r$r$r%r��s
z-_CertificateSigningRequest.is_signature_validrpcCs t|j|j�}|jj�|j|d�}|dkrt�d�|�|��|jj�	|j|�}|j�
||jjjk�|j�
|jj�
|�dk�|jj�|d�}|j�
||jjjk�|jtjjtjjtjjfvritd�||j���|jj�|d|j|jjj�}|j�
||jjjk�|jj�d|�}t|j|�S)N���zNo {} attribute was foundr�rz&OID {} has a disallowed ASN.1 type: {}z
ASN1_STRING *)rr�
dotted_stringr�X509_REQ_get_attr_by_OBJr�r�AttributeNotFoundr�X509_REQ_get_attrrLrMrN�X509_ATTRIBUTE_count�X509_ATTRIBUTE_get0_type�typer�
UTF8String�value�PrintableString�	IA5StringrU�X509_ATTRIBUTE_get0_data�castr	)r rp�obj�pos�attr�	asn1_type�datar$r$r%�get_attribute_for_oid�s>�
������z0_CertificateSigningRequest.get_attribute_for_oidN)#r�r�r�r&r�r�r3r8r�r@rr[r�rr�r'r�r�rr�rqrvrlrr�r�r}rr>r�r=r	r�r�rr$r$r$r%r��s0
�	
	r�c@s�eZdZdd�Zedejjfdd��Zede	fdd��Z
edejfdd	��Zedejj
fd
d��Zedd
��Zdefdd�Zdedefdd�Zdedefdd�ZdS)�_SignedCertificateTimestampcCr�r6)r�	_sct_list�_sct)r r!�sct_list�sctr$r$r%r&$s
z$_SignedCertificateTimestamp.__init__r+cC�,|jj�|j�}||jjjksJ�tjjjSr6)	rr�SCT_get_versionr!�SCT_VERSION_V1r�certificate_transparencyrr)r r#r$r$r%r#*s
z#_SignedCertificateTimestamp.versioncCsH|jj�d�}|jj�|j|�}|dksJ�|jj�|d|�dd�S�Nr�r)rrMrtr�SCT_get0_log_idr!r�)r �out�
log_id_lengthr$r$r%�log_id0sz"_SignedCertificateTimestamp.log_idcCs4|jj�|j�}|d}tj�|d�j|dd�S)Ni�)�microsecond)rr�SCT_get_timestampr!r��utcfromtimestamp�replace)r �	timestamp�millisecondsr$r$r%r17s
�z%_SignedCertificateTimestamp.timestampcCr$r6)	rr�SCT_get_log_entry_typer!�CT_LOG_ENTRY_TYPE_PRECERTrr'�LogEntryType�PRE_CERTIFICATE)r �
entry_typer$r$r%r7?s
z&_SignedCertificateTimestamp.entry_typecCsf|jj�d�}|jj�|j|�}|j�|dk�|j�|d|jjjk�|jj�|d|�dd�Sr()	rrMrtr�SCT_get0_signaturer!rLrNr�)r �ptrptrr2r$r$r%�
_signatureGs
z&_SignedCertificateTimestamp._signaturecCs
t|j�Sr6)r<r:r(r$r$r%r@Or9z$_SignedCertificateTimestamp.__hash__r*cCst|t�stS|j|jkSr6)r.rr/r:r7r$r$r%r3Rs
z"_SignedCertificateTimestamp.__eq__cCr5r6r$r7r$r$r%r8Xr9z"_SignedCertificateTimestamp.__ne__N)r�r�r�r&r�rr'rr#r�r,r�r1r5r7r:r�r@r�r�r3r8r$r$r$r%r s
r))r�r�r��cryptographyrr�cryptography.exceptionsr�$cryptography.hazmat.backends.opensslrrr�0cryptography.hazmat.backends.openssl.decode_asn1rr	r
rr�0cryptography.hazmat.backends.openssl.encode_asn1r
r�cryptography.hazmat.primitivesrr�cryptography.x509.baser�cryptography.x509.namer�Certificaterr�r��register_interface�CertificateRevocationListr�r��CertificateSigningRequestr�r'�SignedCertificateTimestamprr$r$r$r%�<module>s0
%
5�