`f:dZddlmZddlZddlZddlZddlmZmZddl m Z ddl m Z m Z ddlmZddlmZmZdd lmZd d lmZer*dd lmZdd lmZddlmZddlmZddlm Z ddl!m"Z"ddl#m$Z$dZ%GddZ&GddZ'Gdde'Z(dS)zX.509 certificates.) annotationsN) TYPE_CHECKINGIterator)default_backend)paddingrsa)load_pem_x509_certificate) bytes_to_str ensure_bytes) SecurityError)reraise_errors) DSAPublicKey)EllipticCurvePublicKey)Ed448PublicKey)Ed25519PublicKey) RSAPublicKey) Prehashed) HashAlgorithm) Certificate CertStore FSCertStorecJeZdZdZddZddZdd Zdd Zdd ZddZ ddZ dS)rzX.509 certificate.certstrreturnNonecFtdtf5tt|t |_t |jtj std ddddS#1swxYwYdS)NzInvalid certificate: {0!r})errors)backendz'Non-RSA certificates are not supported.) r ValueErrorr r r_cert isinstance public_keyrr)selfrs M/var/www/html/env/lib/python3.11/site-packages/celery/security/certificate.py__init__zCertificate.__init__"s  (*    L L3T""O,=,=???DJdj3355s7GHH L !JKKK L  L L L L L L L L L L L L L L L L L LsA0BBBboolcZtj|jjkS)z%Check if the certificate has expired.)datetimeutcnowr"not_valid_afterr%s r& has_expiredzCertificate.has_expired,s! ''))TZ-GGGXDSAPublicKey | EllipticCurvePublicKey | Ed448PublicKey | Ed25519PublicKey | RSAPublicKeyc4|jSN)r"r$r-s r& get_pubkeyzCertificate.get_pubkey0sz$$&&&r/intc|jjS)z,Return the serial number in the certificate.)r" serial_numberr-s r&get_serial_numberzCertificate.get_serial_number5s z''r/cTdd|jjDS)zReturn issuer (CA) as a string. c3$K|] }|jV dSr2)value).0xs r& z)Certificate.get_issuer..;s$;;A;;;;;;r/)joinr"issuerr-s r& get_issuerzCertificate.get_issuer9s(xx;;):;;;;;;r/cX|d|S)z&>@@@r/databytes signaturedigestHashAlgorithm | Prehashedc2td5tjtj|tjj}||t|||ddddS#1swxYwYdS)z,Verify signature for string containing data.zBad signature: {0!r})mgf salt_lengthN)rrPSSMGF1 MAX_LENGTHr3verifyr )r%rDrFrGpads r&rOzCertificate.verifyAs 2 3 3 Q Q+L((#K2444C OO   $ $Y T0B0BC P P P  Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q Q QsA/B  BBN)rrrr)rr()rr0)rr4)rr)rDrErFrErGrHrr) __name__ __module__ __qualname____doc__r'r.r3r7rArCrOr/r&rrsLLLLHHHH'''' ((((<<<<AAAAQQQQQQr/rc2eZdZdZddZddZdd Zdd Zd S)rz"Base class for certificate stores.rrci|_dSr2)_certsr-s r&r'zCertStore.__init__Os .0 r/Iterator[Certificate]c#HK|jEd{VdS)zReturn certificate iterator.N)rXvaluesr-s r& itercertszCertStore.itercertsRs2;%%'''''''''''r/idrrcx |jt|S#t$rtd|wxYw)zGet certificate by id.zUnknown certificate: )rXr KeyErrorr )r%r]s r& __getitem__zCertStore.__getitem__VsS @;|B//0 0 @ @ @ > > >?? ? @s9rct|}||jvrtdt||j|<dS)NzDuplicate certificate: )r rCrXr r])r%rcert_ids r&add_certzCertStore.add_cert]sMt{{}}-- dk ! ! @" @ @AA A# Gr/N)rr)rrY)r]rrr)rrrr)rQrRrSrTr'r\r`rcrUr/r&rrLsn,,1111((((@@@@$$$$$$r/rc$eZdZdZdfd ZxZS)rzFile system certificate store.pathrrrcttj|r tj|d}t j|D]}t|5}t| }| r$td| | |dddn #1swxYwYdS)N*zExpired certificate: )superr'osreisdirr?globopenrreadr.r rCrc)r%repfr __class__s r&r'zFSCertStore.__init__gs(  7==   +7<<c**D4 $ $Aa $A"16688,,##%%C'A AACCC d###  $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $sA/DD D )rerrr)rQrRrSrTr' __classcell__)rps@r&rrdsC(( $ $ $ $ $ $ $ $ $ $r/r))rT __future__rr*rkritypingrrcryptography.hazmat.backendsr)cryptography.hazmat.primitives.asymmetricrrcryptography.x509r kombu.utils.encodingr r celery.exceptionsr utilsr-cryptography.hazmat.primitives.asymmetric.dsar,cryptography.hazmat.primitives.asymmetric.ecr/cryptography.hazmat.primitives.asymmetric.ed448r1cryptography.hazmat.primitives.asymmetric.ed25519r-cryptography.hazmat.primitives.asymmetric.rsar/cryptography.hazmat.primitives.asymmetric.utilsr%cryptography.hazmat.primitives.hashesr__all__rrrrUr/r&rs"""""" ********888888BBBBBBBB777777;;;;;;;;++++++!!!!!!DJJJJJJSSSSSSNNNNNNRRRRRRJJJJJJIIIIIICCCCCC 6*Q*Q*Q*Q*Q*Q*Q*QZ$$$$$$$$0 $ $ $ $ $) $ $ $ $ $r/