hdZddlZddlZddlZddlmZmZddlmZddl m Z ddl m Z ddl mZddlmZmZmZmZmZmZmZmZmZmZmZdd lmZmZmZmZdd l m!Z!m"Z"ej#rEdd l$m%Z%dd l&m'Z'dd l(m)Z)ddl*m+Z+m,Z,m-Z- e+j.dddZ/n#e0$r dZ/ddl1m2Z2YnwxYwdZ3dZ4dZ5ej6j7d@dZ8ej6j7dZ9dZ:Gdde;Z<Gdde=Z>Gdd e>Z?Gd!d"e?#Z@Gd$d%e@eZAGd&d'e@ZBGd(d)e@ZCGd*d+e>ZDGd,d-e ZEGd.d/eD#ZFGd0d1eFeeZGGd2d3eFZHGd4d5eFZIGd6d7e>ZJGd8d9eJ#ZKGd:d;e>ZLGd<d=eL#ZMGd>d?eNZOdS)Aa( High-level methods for PKI objects (X.509 certificates, CRLs, asymmetric keys). Supports both RSA and ECDSA objects. The classes below are wrappers for the ASN.1 objects defined in x509.py. By collecting their attributes, we bypass the ASN.1 structure, hence there is no direct method for exporting a new full DER-encoded version of a Cert instance after its serial has been modified (for example). If you need to modify an import, just use the corresponding ASN1_Packet. For instance, here is what you could do in order to modify the serial of 'cert' and then resign it with whatever 'key':: f = open('cert.der') c = X509_Cert(f.read()) c.tbsCertificate.serialNumber = 0x4B1D k = PrivKey('key.pem') new_x509_cert = k.resignCert(c) No need for obnoxious openssl tweaking anymore. :) N)confcrypto_validator)warning)binrepr)ASN1_BIT_STRING) hash_by_oid) ECDSAPrivateKey_OpenSSLECDSAPrivateKeyECDSAPublicKeyEdDSAPublicKeyEdDSAPrivateKeyRSAPrivateKey_OpenSSL RSAPrivateKey RSAPublicKey X509_CertX509_CRLX509_SubjectPublicKeyInfo) pkcs_os2ip _get_hash_EncryptAndVerifyRSA_DecryptAndSignRSA)raw bytes_encode)InvalidSignature)default_backend) serialization)rsaecx25519ipublic_exponentkey_sizeTF) rust_openssliiUNKNOWNcd|z}tj|fdtdt dD}|d|z }|d|zz }|S)z=Convert DER octet string to PEM format (with optional header)z-----BEGIN %s----- c*g|]}||dzS)@).0i base64_strings Y/mounts/lovelace/software/anaconda3/lib/python3.11/site-packages/scapy/layers/tls/cert.py zder2pem..^s& P P P!mAa"fH% P P Prr( z -----END %s----- )encodebase64 b64encoderangelenjoin) der_stringobj pem_stringchunksr,s @r-der2pemr;Xs)3.6688J$Z00M P P P PuQM8J8JB/O/O P P PF%**V$$$J)C/77999J r/cp|dd}|ddz}|d|dkrtd|dd |d}|||}|d dt j|}|S) z Convert PEM string to DER format r/s-----  -----BEGINz-pem2der() expects only one PEM-encoded objects-----rr0)replacefind Exceptionrfindr2 b64decode)r9 first_idxlast_idxr,r7s r-pem2derrHds##E3//J ++a/I}i00B66GHHH!Z-=-=h-G-GHHHy12M%%%%!-00J r/cXg}|dkr|d}|dkrn|d}|dkrtd|d|dz}|dkrt|}||||||d }|dk|S) zI Split PEM objects. Useful to process concatenated certificates. r/r?r@s-----ENDz$Invalid PEM object (missing END tag)r0rN)rBrCr5append)s pem_strings start_idxend_idxs r- split_pemrPssK s((FF=)) ?? &&%% b==BCC C&&((1, a<<!ffG1Yw./000 ghhK s(( r/ceZdZdZdZdS)_PKIObjc0||_||_||_dSN)frmtderpem)selfrUrVrWs r-__init__z_PKIObj.__init__s r/c|jSrT)rVrXs r-__str__z_PKIObj.__str__s xr/N)__name__ __module__ __qualname__rYr\r)r/r-rRrRs2r/rRceZdZddZdS) _PKIObjMakerNcd}|t|t|}d|vrtj|rtj|}||krt| t |d5}|}dddn #1swxYwYn#t$rt|wxYw|} d|vr>>  ? ? 8u  cgv..CG s+ C F H %7GH 'HH  H rTr]r^r___doc__ryr)r/r-r{r{s2 666666r/r{ceZdZdZdZdS)rze Parent class for both PubKeyRSA and PubKeyECDSA. Provides a common verifyCert() method. c|j}|j}t|jj}t |j}|t |||dSz) Verifies either a Cert or an X509_Cert. pkcshttbsCertificate signaturer algorithmvalrsignatureValueverifyrXcerttbsCertsigAlgrsigVals r- verifyCertzPubKey.verifyCertR%" (, -T()){{3w<<1{???r/N)r]r^r_rrr)r/r-rr s2 @@@@@r/r) metaclasscVeZdZdZed dZedZdZd dZd d Z dS) rz Wrapper for RSA keys based on _EncryptAndVerifyRSA from crypto/pkcs1.py Use the 'key' attribute to access original object. Nc@|pd}|sp|pd}|dkr)ts"tj||}n#tj||t }||_nott|}|r||krtdtj ||}|t |_|j }||_ |j |_|j|_dS)Nr r!r"r#backend$modulus and modulusLen do not match!ne)_RSA_512_SUPPORTEDr$rgenerate_private_keyr public_keyrr5rrRSAPublicNumberspublic_numbers _modulusLenr_modulusr_pubExp)rXmodulus modulusLenpubExpreal_modulusLen private_keypubNums r-rzPubKeyRSA.fill_and_stores+5 ?(0DO%%.@%*.CC$*,D "6$*,+-- &0022DKK!''"2"233O @o;;>???)Gv>>>F ++O,=,=>>DK++--* x r/c|\}}}t|trt|}t|trt|}||||jt jjt j j |_ t|j |_ dS)Nrr)encodingformat)rbytesrrr public_bytesrEncodingre PublicFormatSubjectPublicKeyInforWrHrV)rXtuprmmLens r-rzPubKeyRSA.import_from_tuple=s 1d a   1 A a   1 A Aa000;++"+/ -B,DD48$$r/cd|jj}|jj}|||dS)Nr)rrpublicExponentr)rXrrrs r-rzPubKeyRSA.import_from_asn1pktKs6.$&* GF;;;;;r/rsha256c6tj||||||SN)rrmgfL)rencryptrXmsgrrrrs r-rzPubKeyRSA.encryptPs #+D#aSANNNNr/c 8tj|||||||SrrrrXrsigrrrrs r-rzPubKeyRSA.verifyTs+#* #sa1#444 4r/)NNNrrNN) r]r^r_rrrrrrrr)r/r-rrs    : % % %<<< OOOO444444r/rc`eZdZdZeddZedZd dZed dZdS) rzz Wrapper for ECDSA keys based on the cryptography library. Use the 'key' attribute to access original object. Nc|p tj}tj|t}||_dSrT)r SECP256R1rrrrrXcurvers r-rzPubKeyECDSA.fill_and_store^sC%-eegg7H7HII !,,.. r/cTtj|t|_dSN)rrload_der_public_keyrrrXrs r-rzPubKeyECDSA.import_from_derds-$7 #%%    r/rc td)NzNo ECDSA encryption supportrC)rXrrkwargss r-rzPubKeyECDSA.encryptl5666r/c |j||tjt |dS#t $rYdSwxYwNTFrrrECDSArrrXrrrrs r-rzPubKeyECDSA.verifyoX  K  sC)A,,)?)? @ @ @4   55 ;? A  A rTr r]r^r_rrrrrrr)r/r-rrYs////    7777r/rc\eZdZdZeddZedZdZedZdS)rzz Wrapper for EdDSA keys based on the cryptography library. Use the 'key' attribute to access original object. Nc||p tj}|}||_dSrT)rX25519PrivateKeygeneraterrrs r-rzPubKeyEdDSA.fill_and_store~s500nn&& !,,.. r/cTtj|t|_dSrrrs r-rzPubKeyEdDSA.import_from_ders+#7 #%%    r/c td)NzNo EdDSA encryption supportr)rXrrs r-rzPubKeyEdDSA.encryptrr/c ` |j||dS#t$rYdSwxYwrrrrrXrrrs r-rzPubKeyEdDSA.verifyF  K  sC ( ( (4   55   --rTrr)r/r-rrys////    777r/rceZdZdZddZdS)_PrivKeyFactoryz Metaclass for PrivKey creation. It casts the appropriate class on the fly, then fills in the appropriate attributes with import_from_asn1pkt() submethod. Nc|Nt|}|turt}||_d|_||St||t}d} t|j }|j }t|_d}n#t$r t|j }|j }t|_d}d}n#t$r t|j }t|_d}n#t$rx t!|j }t|_d}nQ#t$rD t#|j }t$|_d}n#t$rtdwxYwYnwxYwYnwxYwYnwxYwYnwxYw ||n#t($rYnwxYw|jd kr?|r#t+t-|||_nt+|j ||_|S) z key_path may be the path to either: _an RSAPrivateKey_OpenSSL (as generated by openssl); _an ECDSAPrivateKey_OpenSSL (as generated by openssl); _an RSAPrivateKey; _an ECDSAPrivateKey. Nr}Fs PRIVATE KEYsEC PRIVATE KEYTsRSA PRIVATE KEYzUnable to import private keyrf)rryPrivKey PrivKeyECDSArrUrrarrrV privateKey PrivKeyRSArCr rr r PrivKeyEdDSAr ImportErrorr;rrW)rorr8multiPEMprivkeyrs r-ryz_PrivKeyFactory.__call__si  --$$Cg~~"CM!CH    J##C=AA L+CG44G(G&CM#FF L L L L1#'::!, , * L L LL+CG44G$.CM/FF L L L L"1#'":":(4 !2$LLLL&5cg&>&>G,8CM%3FF(LLL"+,J"K"KKL#F L L  L L0   # #G , , , ,    D  8u   3!#g,,77!#'622 s5)B F*+CF F !"DF  F"D21F2 F ="E F E: :F =F?F FF FF  F F  FFF,, F98F9rTrr)r/r-rrs2 ;;;;;;r/rceZdZdZdZeZdS)_Raw_ASN1_BIT_STRINGz+A ASN1_BIT_STRING that ignores BER encodingc|jSrT) val_readabler[s r- __bytes__z_Raw_ASN1_BIT_STRING.__bytes__s   r/N)r]r^r_rr r\r)r/r-r r s(55!!!GGGr/r c&eZdZdZddZdZdZdS)rzx Parent class for both PrivKeyRSA and PrivKeyECDSA. Provides common signTBSCert() and resignCert() methods. rc|j}|pt|jj}|t ||d}t }||_||_t|d|_ |S)a Note that this will always copy the signature field from the tbsCertificate into the signatureAlgorithm field of the result, regardless of the coherence between its contents (which might indicate ecdsa-with-SHA512) and the result (e.g. RSA signing MD2). There is a small inheritance trick for the computation of sigVal below: in order to use a sign() method which would apply to both PrivKeyRSA and PrivKeyECDSA, the sign() methods of the subclasses accept any argument, be it from the RSA or ECDSA world, and then they keep the ones they're interested in. Here, t will be passed eventually to pkcs1._DecryptAndSignRSA.sign(). rrT)readable) rrrrsignrrrsignatureAlgorithmr r)rXrrrrcs r- signTBSCertzPrivKey.signTBSCertsq" 2V-123w<<177 KK"%/FFFr/c:||jdS)z9 Rewrite the signature of either a Cert or an X509_Cert. N)r)rr)rXrs r- resignCertzPrivKey.resignCerts 3t<<???)Gv>>>F+f1:1<;ACCCG**?+<+<==DH(--//DK++--* x r/c |jj}|jj}|jj}|jj}|jj}|jj}|jj}|jj} | |||||||| dS)N)rrr&r!r"r$r%r#) rrrprivateExponentr!r"r$r%r#r) rXrrrr&r!r"r$r%r#s r-rzPrivKeyRSA.import_from_asn1pkt@s/%'+)-##%) %) )-  GF$+F6&/9(3  5 5 5 5 5r/rrc 8tj|||||||Srrrs r-rzPrivKeyRSA.verifyNs+#* #sa1#444 4r/c6tj||||||Sr)rr)rXdatarrrrs r-rzPrivKeyRSA.signSs !&tTQ!JJJJr/) NNNNNNNNNr r]r^r_rrrrrrr)r/r-rrsCG=A?C' ' ' ' R 5 5 54444 KKKKKKr/rcpeZdZdZeddZedZed dZed dZdS) rz Wrapper for ECDSA keys based on SigningKey from ecdsa library. Use the 'key' attribute to access original object. Nc|p tj}tj|t|_|j|_dSrT)rrrrrrrrXrs r-rzPrivKeyECDSA.fill_and_store\sG%*5577O4E4EFFh))++ r/ctjt|dt|_|j|_dSrrload_der_private_keyrrrrrrXrs r-rz PrivKeyECDSA.import_from_asn1pktbJ 5c'llD>M>O>OQQQh))++ r/rc |j||tjt |dS#t $rYdSwxYwrrrs r-rzPrivKeyECDSA.verifyhrrc v|j|tjt |SrT)rrrrr)rXr,rrs r-rzPrivKeyECDSA.signqs(x}}T28IaLL#9#9:::r/rTrr-r)r/r-rrWs,,,, ,,, ;;;;;;r/rcleZdZdZeddZedZedZedZdS)rzW Wrapper for EdDSA keys Use the 'key' attribute to access original object. Nc|p tj}||_|j|_dSrT)rrrrrrr0s r-rzPrivKeyEdDSA.fill_and_store{s900>>##h))++ r/ctjt|dt|_|j|_dSrr2r4s r-rz PrivKeyEdDSA.import_from_asn1pktr5r/c ` |j||dS#t$rYdSwxYwrrrs r-rzPrivKeyEdDSA.verifyrrc 6|j|SrT)rr)rXr,rs r-rzPrivKeyEdDSA.signsx}}T"""r/rTr-r)r/r-rrvs,,,, ,,, #####r/rceZdZdZdZdS) _CertMakerz Metaclass for Cert creation. It is not necessary as it was for the keys, but we reuse the model instead of creating redundant constructors. c t||td}t|_ t |j}n*#t$rtj rtdwxYw| ||S)N CERTIFICATEUnable to import certificate) rary_MAX_CERT_SIZECertrrrVrCrrr)ro cert_pathr8rs r-ryz_CertMaker.__call__s##C$2MCC  <SW%%DD < < <# :;; ; < %%% s A'A,Nrr)r/r-r>r>s-     r/r>cVeZdZdZdZdZdZddZdd Zdd Z d Z dd Z dZ dZ dS)rCzt Wrapper for the X509_Cert from layers/x509.py. Use the 'x509Cert' attribute to access original object. cJd}||_|j}||_|jr|jjdz|_nd|_|jj|_|jjj|_ | |_ | |_ t|j |_||_||_t|j|_d|_|jjj|_ |jjj|_n#t:$rt=|wxYwt?j d|j|_!|jj"j|_# |jj"j|_$n#t:$rt=|wxYwt?j d|j$|_%tMtO|j(|_)|j*r|j*D]}|j+jdkr/d|_,|j-j,r|j-j,jdk |_,A|j+jdkr|j-.|_/p|j+jdkr|j-0|_1|j+jd kr|j-j2j|_tO|j3|_3ti|j3|_5dS) NrArJ%xbasicConstraintsFrkeyUsage extKeyUsageauthorityKeyIdentifier)6x509Certrversionr serialNumberserialrroidnamer get_issuerissuerget_issuer_str issuer_strhash issuer_hash get_subjectsubjectget_subject_str subject_str subject_hashauthorityKeyIDvalidity not_before pretty_time notBefore_strdatetime timetuple notBefore ValueErrorrCtimestrftimenotBefore_str_simple not_after notAfter_strnotAfternotAfter_str_simplerrsubjectPublicKeyInfopubKey extensionsextnIDcA extnValue get_keyUsagerIget_extendedKeyUsagerJ keyIdentifierrr5 signatureLen)rXrrsrextns r-rzCert.import_from_asn1pkts2  %% ? "?.2DLLDL*. '19 ((** !002200**,, "2244 !122"$-8D '$-8AKKMMDNN ' ' 'I&& & '$(M$$G$G!#,6B '#,6?IIKKDMM ' ' 'I&& & '#'=t}#E#E S!=>>??   K* K K;&*<<<#DG~(C'+~'8'<'A"B[(J66$(N$?$?$A$ADMM[(M99'+~'J'J'L'LD$$[(,DDD*..*F*JD'!$"566 344s(D??E(F;;GcZ|j|jkrdS|j|S)z True if 'other' issued 'self', i.e.: - self.issuer == other.subject - self is signed by other FrVr[rmrrXothers r- isIssuerCertzCert.isIssuerCerts0  u1 1 15|&&t,,,r/cP|j|jkr||SdS)z Return True if the certificate is self-signed: - issuer and subject are the same - the signature of the certificate is valid. F)rVr[r{r[s r- isSelfSignedzCert.isSelfSigneds.  t0 0 0$$T** *ur/rrNc@|j|||||Sr)rmrrs r-rz Cert.encrypts#{""3!qcQ"???r/cB|j||||||Sr)rmrrs r-rz Cert.verifys%{!!#sa1#!CCCr/c|tj}nxt|trc d|vrtj|d}ntj|d}n2#t $r%t dtj}YnwxYwtj|}tj|j}||z dz }|S)af Based on the value of notAfter field, returns the number of days the certificate will still be valid. The date used for the comparison is the current and local date, as returned by time.localtime(), except if 'now' argument is provided another one. 'now' argument can be given as either a time tuple or a string representing the date. Accepted format for the string version are: - '%b %d %H:%M:%S %Y %Z' e.g. 'Jan 30 07:38:59 2008 GMT' - '%m/%d/%y' e.g. '01/30/08' (less precise) If the certificate is no more valid at the date considered, then a negative value is returned representing the number of days since it has expired. The number of days is returned as a float to deal with the unlikely case of certificates that are still just valid. N/z%m/%d/%yz%b %d %H:%M:%S %Y %Zz7Bad time string provided, will use localtime() instead.g@) re localtimerstrstrptimerCrmktimerj)rXnownftdiffs r- remainingDayszCert.remainingDayss( ;.""CC S ! ! ' '#::-Z88CC--CDDC ' ' 'QRRRn&& 'k#k$-((c j) s/A,B  B c|D]d}|j1|j*|j|jkr|jd|jDvcS|j|jkr|jd|jDvcSedS)a Given a list of trusted CRL (their signature has already been verified with trusted anchors), this function returns True if the certificate is marked as revoked by one of those CRL. Note that if the Certificate was on hold in a previous CRL and is now valid again in a new CRL and bot are in the list, it will be considered revoked: this is because _all_ CRLs are checked (not only the freshest) and revocation status is not handled. Also note that the check on the issuer is performed on the Authority Key Identifier if available in _both_ the CRL and the Cert. Otherwise, the issuers are simply compared. Nc3&K|] }|dV dSrNr)r*xs r- z!Cert.isRevoked..<&&L&Lqt&L&L&L&L&L&Lr/c3&K|] }|dV dSrr)rs r-rz!Cert.isRevoked..>rr/F)r\rOrevoked_cert_serialsrR)rXcrl_listrs r- isRevokedzCert.isRevoked(s  M MA#/ ,'1+;;;{&L&LQ5K&L&L&LLLLL(({&L&LQ5K&L&L&LLLLL)ur/rfct|d5}|dkr||jn |dkr||jddddS#1swxYwYdS)zT Export certificate in 'fmt' format (DER or PEM) to file 'filename' wbrfreN)rlwriterVrW)rXfilenamefmtrus r-exportz Cert.exportAs(D ! ! "Qe||!!!!!!!  " " " " " " " " " " " " " " " " " "sAA  A$'A$ctd|jztd|jztd|jztd|jd|jdS)Nz Serial: %sIssuer: z Subject: z Validity: z to )printrOrTrZr`rir[s r-showz Cert.showKsl lT[())) j4?*+++ kD,,--- d&8&8&8$:K:KLMMMMMr/c(d|jd|jdS)Nz[X.509 Cert. Subject:z , Issuer:])rZrTr[s r-__repr__z Cert.__repr__Qs8<8H8H8H$///ZZr/rrT)rf)r]r^r_rrr{r}rrrrrrrr)r/r-rCrCs 454545l---@@@@DDDD####J2""""NNN [[[[[r/rCceZdZdZdZdS) _CRLMakerz Metaclass for CRL creation. It is not necessary as it was for the keys, but we reuse the model instead of creating redundant constructors. ct||td}t|_ t |j}n#t$rtdwxYw|||S)NzX509 CRLUnable to import CRL) rary _MAX_CRL_SIZECRLrrrVrCr)rorDr8crls r-ryz_CRLMaker.__call__^s{##CM:NN  437##CC 4 4 4233 3 4 $$$ s AANrr)r/r-rrYs-r/rc*eZdZdZdZdZdZdZdS)rzr Wrapper for the X509_CRL from layers/x509.py. Use the 'x509CRL' attribute to access original object. cd}||_|j}t||_|jr|jjdz|_nd|_|jjj|_| |_ | |_ t|j |_|jj|_|jj}|ddkr |dd} t%j|d|_n#t*$rt+|wxYwt%jd|j|_d|_d|_|jr|jj|_|jj}|ddkr |dd} t%j|d|_n#t*$rt+|wxYwt%jd|j|_|jr0|jD](}|jjdkr|jjj|_ )g}|j!r|j!D]{}|j"j} |j#j} | ddkr | dd} t%j| dn#t*$rt+|wxYw|$| | f|||_%t|j&|_&tO|j&|_(dS)NrrJr@Zz %y%m%d%H%M%SrG cRLNumber))x509CRL tbsCertListrrMrrrrPrrQrRrSrTrUrV this_updater_lastUpdate_strrer lastUpdaterCrflastUpdate_str_simple nextUpdatenextUpdate_str_simple next_updatenextUpdate_str crlExtensionsrorqrnumberrevokedCertificatesrNrevocationDaterKrrr5ru) rXrrsrrr extensionrevokedrrOdates r-rzCRL.import_from_asn1pktos*  o {++   &.2Q6DLLDL!+5= !,,.. %446600)5A ,0 b>S #CRCJ '"mJGGDOO ' ' 'I&& & '%)]4%I%I"%)"  " N"-"9"ED $04J"~$$'_  +"&- N"K"K + + + *** +)-tT_)M)MD &  $ D(6 D D #+{::"+"5"?"CDK  * /#7 / /*.*.8s??9D/M$7777 ///#I.../~....$+!!#"455 344s$C88D=FF2 I""I<cZ|j|jkrdS|j|S)NFrxrys r-r{zCRL.isIssuerCerts.  u1 1 15|&&t,,,r/c:tfd|DS)Nc3BK|]}|VdSrT)r{)r*arXs r-rzCRL.verify..s199A4$$Q''999999r/)any)rXanchorss` r-rz CRL.verifys&9999999999r/ctd|jztd|jztd|jztd|jztd|jzdS)Nz Version: %dzsigAlg: rzlastUpdate: %sznextUpdate: %s)rrMrrTrrr[s r-rzCRL.showsu mdl*+++ j4;&''' j4?*+++ !44555 !4455555r/N)r]r^r_rrr{rrr)r/r-rris[ <5<5<5|--- :::66666r/rc8eZdZdZddZddZddZddZdZdS) Chainz/ Basically, an enhanced array of Cert. Nc t|d|r||nE|D]B}|r,||||nCt |dkrv|rvt |}|D]I}||dr,||||nJt ||krdS|rdSdSdS)a Construct a chain of certificates starting with a self-signed certificate (or any certificate submitted by the user) and following issuer/subject matching and signature validity. If there is exactly one chain to be constructed, it will be, but if there are multiple potential chains, there is no guarantee that the retained one will be the longest one. As Cert and CRL classes both share an isIssuerCert() method, the trailing element of a Chain may alternatively be a CRL. Note that we do not check AKID/{SKID/issuer/serial} matching, nor the presence of keyCertSign in keyUsage extension (if present). r)rr@N)listrYrKr}remover5r{)rXcertListcert0root_candidatetmp_lenrs r-rYzChain.__init__s9 dB   KK    "*  !..00KK///OON333E t99q== d))!A~~d2h// A ***t99''E    =  r/c|pg}|D]q}t||z|tdkr)tfd|Dr-D]}|dkrn|durcSrdS)a Perform verification of certificate chains for that certificate. A list of anchors is required. The certificates in the optional untrusted list may be used as additional elements to the final chain. On par with chain instantiation, only one chain constructed with the untrusted candidates will be retained. Eventually, dates are checked. rJc30K|]}|ddvVdS)rJNr))r*rchains r-rz$Chain.verifyChain..s/00a1abb >000000r/rr@N)rr5rr)rXr untrustedrrrs @r- verifyChainzChain.verifyChainsO  ! !A$*A..E5zzQ0000400000 !A((1,,-b >> LLLtr/c t|d5}|}dddn #1swxYwYn#t$rtdwxYwdt|D}d}|rt t|d5}|}dddn #1swxYwYn#t$rtdwxYwdt|D}|||S)z Does the same job as .verifyChain() but using the list of anchors from the cafile. As for .verifyChain(), a list of untrusted certificates can be passed (as a file, this time). rdNzCould not read from cafilec,g|]}t|Sr)rCr*rs r-r.z/Chain.verifyChainFromCAFile..s888q477888r/"Could not read from untrusted_filec,g|]}t|Sr)rrs r-r.z/Chain.verifyChainFromCAFile..EEEQaEEEr/)rlrmrCrPr)rXcafileuntrusted_fileruca_certsrruntrusted_certss r-verifyChainFromCAFilezChain.verifyChainFromCAFiles  :fd## $q6688 $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ : : :899 9 :98Ih$7$7888  F F.$///1&'ffhhO/////////////// F F F DEEE FEE)O*D*DEEEI333sQ?3 ?7?7?A:B7 B+ B7+B//B72B/3B77Cc g}tj|D]|}ttj||d5}|t |dddn #1swxYwY}n#t$rtdwxYwd}|rt t|d5}|}dddn #1swxYwYn#t$rtdwxYwdt|D}| ||S)ae Does the same job as .verifyChainFromCAFile() but using the list of anchors in capath directory. The directory should (only) contain certificates files in PEM format. As for .verifyChainFromCAFile(), a list of untrusted certificates can be passed as a file (concatenation of the certificates in PEM format). rdNz(capath provided is not a valid cert pathrc,g|]}t|Sr)rrs r-r.z/Chain.verifyChainFromCAPath..2rr/) rhlistdirrlrir6rKrCrmrCrPr) rXcapathrrrfdrrurs r-verifyChainFromCAPathzChain.verifyChainFromCAPaths HG*V,, 4 4"',,vv66==4NN4 ??333444444444444444 4 H H HFGG G H  F F.$///1&'ffhhO/////////////// F F F DEEE FEE)O*D*DEEEI333s`AB5B = B B BB BB08C5C) C5)C--C50C-1C55Dc"t|dz }|dkrdS|d}d}|s|d|jzz }n |d|jzz }d}||kr3||}|d|zdzd |jz }||kr|d z }|dz }||k3|S) NrJrrgz__ z%s [Not Self Signed] z%s [Self Signed]  z_  )r5r}rZ)rXllenrrLidxs r-rzChain.__repr__6s4yy1} !882 G ~~ 6 )AM9 9AA % 5 5ATkkS A S3Y]]]AMM: :Ad{{T  1HC Tkk r/rT) r]r^r_rrYrrrrr)r/r-rrs~""""H,4444244446r/r)r%)Prr2rhre scapy.configrr scapy.errorr scapy.utilsrscapy.asn1.asn1rscapy.asn1.mibrscapy.layers.x509r r r r r rrrrrrscapy.layers.tls.crypto.pkcs1rrrr scapy.compatrr crypto_validcryptography.exceptionsrcryptography.hazmat.backendsrcryptography.hazmat.primitivesr)cryptography.hazmat.primitives.asymmetricrrrrrrd-cryptography.hazmat.primitives.asymmetric.rsar$rrBrcommandsregisterr;rHrPobjectrRrrar{rrrrrr rrrrr>rCrrrrr)r/r-rs, ////////++++++&&&&&&                          ------------********O888888<<<<<<<<<<<<IIIIIIIIIIO  EEEE! OOO"NNNNNNNNO     *     f   ,,,,,4,,,n<<<<<\<<<~ @ @ @ @ @~ @ @ @ @<4<4<4<4<4,<4<4<4~&@&FAAAAAlAAAH?'@'@'@'@'@'@'@'@'@TCKCKCKCKCK.0BCKCKCKL;;;;;7;;;>#####7###F&f[f[f[f[f[Zf[f[f[f[Z         S6S6S6S6S6IS6S6S6S6tDDDDDDDDDDDsB B&%B&