U we8 @sdZddlmZddlmZddlmZmZddlm Z ddl m Z m Z ddl mZddlmZdd lmZdd lmZdd lmZmZdd lmZGd ddeZdS)z DSS keys. )InvalidSignature)default_backend)hashes serialization)dsa)decode_dss_signatureencode_dss_signature)util) zero_byte) SSHException)Message)BER BERException)PKeyc@seZdZdZdZd#ddZddZdd Zed d Z d d Z ddZ ddZ d$ddZ ddZd%ddZd&ddZed'ddZddZdd Zd!d"ZdS)(DSSKeyzX Representation of a DSS key which can be used to sign an verify SSH2 data. zssh-dssNcCsd|_d|_d|_d|_d|_d|_|dk r<|||dS|dk rT|||dS|dkrl|dk rlt|}|dk r|\|_|_|_|_nB|j ||j |j dd| |_| |_| |_| |_t |j|_dS)Nz-cert-v01@openssh.com)msgkey_typeZ cert_type)pqgyx public_blob_from_private_key_from_private_key_filer Z_check_type_and_load_certname get_mpintr bit_lengthsize)selfrdatafilenamepasswordvalsfile_objr%n/mounts/lovelace/software/anaconda3/envs/qiime2-amplicon-2024.2/lib/python3.8/site-packages/paramiko/dsskey.py__init__0s4        zDSSKey.__init__cCsJt}||j||j||j||j||j|SN) r add_stringr add_mpintrrrrasbytes)rmr%r%r&r+Us     zDSSKey.asbytescCs|Sr()r+rr%r%r&__str__^szDSSKey.__str__cCs||j|j|j|jfSr()get_namerrrrr-r%r%r&_fieldsaszDSSKey._fieldscCs|jSr()rr-r%r%r&r/fszDSSKey.get_namecCs|jSr()rr-r%r%r&get_bitsiszDSSKey.get_bitscCs |jdk Sr()rr-r%r%r&can_signlszDSSKey.can_signc Cstj|jtj|jtj|j|j|jdddj t d}| |t }t|\}}t}||jt|d}t|d} t|dkrtdt||}t| dkrtdt| | } ||| |S)Nrrrrparameter_numbersrpublic_numbersbackendr)rDSAPrivateNumbersrDSAPublicNumbersrDSAParameterNumbersrrr private_keyrsignrSHA1rr r)rr deflate_longlenr ) rr algorithmkeysigrsr,ZrstrZsstrr%r%r& sign_ssh_dataos2       zDSSKey.sign_ssh_datac Cst|dkr|}n|}||jkr0dS|}t|ddd}t|ddd}t||}tj |j tj |j |j |jddjtd}z|||tWntk rYdSXd SdS) N(rr:r3r4r8FT)rBr+get_textr get_binaryr inflate_longrrr<rr=rrrZ public_keyrverifyrr@r) rr rrEkindZsigRZsigS signaturerDr%r%r&verify_ssh_sigs0   zDSSKey.verify_ssh_sigc CsRtj|jtj|jtj|j|j|jdddj t d}|j ||t j j|ddSNr3r4r6r8)r")rr;rr<rr=rrrr>rZ_write_private_key_filer PrivateFormatTraditionalOpenSSL)rr!r"rDr%r%r&write_private_key_files& zDSSKey.write_private_key_filec CsRtj|jtj|jtj|j|j|jdddj t d}|j ||t j j|ddSrR)rr;rr<rr=rrrr>rZ_write_private_keyrrSrT)rr$r"rDr%r%r&write_private_keys& zDSSKey.write_private_keycCsHtj|td}t|jjj|jjj|jjj |jj fd}|j |_ |S)a$ Generate a new private DSS key. This factory function can be used to generate a new host key or authentication key. :param int bits: number of bits the generated key should be. :param progress_func: Unused :return: new `.DSSKey` private key r8)r#) rZgenerate_private_keyrZprivate_numbersrr7r5rrrrr)bitsZ progress_funcnumbersrDr%r%r&generates  zDSSKey.generatecCs|d||}||dSNZDSA)Z_read_private_key_file _decode_key)rr!r"r r%r%r&rszDSSKey._from_private_key_filecCs|d||}||dSr[)Z_read_private_keyr\)rr$r"r r%r%r&rszDSSKey._from_private_keyc Cs|\}}||jkrVzt|}Wqtk rR}ztd|W5d}~XYqXn0||jkr|||d}dgt|}n | |t |tk st |dks|ddkrtd|d|_ |d|_ |d|_|d |_|d |_t|j |_dS) NzUnable to parse key file: {}Ziiiiirz3not a valid DSA private key file (bad ber encoding)rJ)Z_PRIVATE_KEY_FORMAT_ORIGINALr decoderr formatZ_PRIVATE_KEY_FORMAT_OPENSSHZ_uint32_cstruct_unpacklistZ_got_bad_key_format_idtyperBrrrrrr rr)rr ZpkformatZkeylister%r%r&r\s( "   $     zDSSKey._decode_key)NNNNNN)N)N)N)rWN)__name__ __module__ __qualname____doc__rr'r+r.propertyr0r/r1r2rHrQrUrV staticmethodrZrrr\r%r%r%r&r(s2 %      rN)rjcryptography.exceptionsrcryptography.hazmat.backendsrZcryptography.hazmat.primitivesrrZ)cryptography.hazmat.primitives.asymmetricrZ/cryptography.hazmat.primitives.asymmetric.utilsrrparamikor paramiko.commonr paramiko.ssh_exceptionr paramiko.messager Z paramiko.berr r paramiko.pkeyrrr%r%r%r&s