| Current File : //lib/python2.7/site-packages/paramiko/pkey.pyc |
��
�=OXc������������@���s����d��Z��d��d��l��Z��d��d��l��m��Z���d��d��l��Z��d��d��l��m��Z���d��d��l��m��Z���d��d��l �m
�Z
��d��d��l��m��Z��m
�Z
�m��Z���d��d��l��m��Z���d��d �l��m��Z���d��d
�l��m��Z��m��Z��m��Z��m��Z���d��d��l��m��Z��m��Z���d��e��f��d
�������YZ��d��S(����s!���
Common API for all public keys.
i����N(����t ���unhexlify(����t����md5(����t����default_backend(����t
���serialization(����t
���algorithmst����modest����Cipher(����t����util(����t����o600(����t����ut����encodebytest����decodebytest����b(����t����SSHExceptiont����PasswordRequiredExceptiont����PKeyc������������B���sD���e��Z��d��Z��i��i��e��j��d��6d��d��6d��d��6e��j��d��6d��6i��e��j��d��6d��d��6d��d��6e��j��d��6d �6Z��d��d��d
����Z
�d�����Z��d�����Z��d
����Z
�d�����Z��d�����Z��d�����Z��d�����Z��d�����Z��d�����Z��d�����Z��d�����Z��e��d��d��������Z��e��d��d��������Z��d��d�����Z��d��d�����Z��d��d�����Z��d��d�����Z��d��d�����Z��d��d�����Z��RS(����s%���
Base class for public keys.
t����cipheri����t����keysizet ���blocksizet����modes����AES-128-CBCi����i����s����DES-EDE3-CBCc������������C���s����d��S(����sI���
Create a new instance of this public key type. If ``msg`` is given,
the key's public part(s) will be filled in from the message. If
``data`` is given, the key's public part(s) will be filled in from
the string.
:param .Message msg:
an optional SSH `.Message` containing a public key of this type.
:param str data: an optional string containing a public key of this type
:raises SSHException:
if a key cannot be created from the ``data`` or ``msg`` given, or
no key was passed in.
N(����(����t����selft����msgt����data(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����__init__;���s������c������������C���s����t�����S(����s����
Return a string of an SSH `.Message` made up of the public part(s) of
this key. This string is suitable for passing to `__init__` to
re-create the key object later.
(����t����bytes(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����asbytesL���s������c������������C���s
���|��j�����S(����N(����R����(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����__str__T���s������c������������C���sJ���t��|�����}��t��|�����}��|��|��k��r1�t��|��|�����St��|��j�����|��j��������S(����sB���
Compare this key to another. Returns 0 if this key is equivalent to
the given key, or non-0 if they are different. Only the public parts
of the key are compared, so a public key will compare equal to its
corresponding private key.
:param .Pkey other: key to compare to.
(����t����hasht����cmpR����(����R����t����othert����hst����ho(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����__cmp__X���s
���� ������
�c������������C���s����t��|�����t��|�����k��S(����N(����R����(����R����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����__eq__g���s������c������������C���s����d��S(����s����
Return the name of this private key implementation.
:return:
name of this private key type, in SSH terminology, as a `str` (for
example, ``"ssh-rsa"``).
t����(����(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����get_namej���s������c������������C���s����d��S(����s����
Return the number of significant bits in this key. This is useful
for judging the relative security of a key.
:return: bits in the key (as an `int`)
i����(����(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����get_bitst���s������c������������C���s����t��S(����sf���
Return ``True`` if this key has the private part necessary for signing
data.
(����t����False(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����can_sign}���s������c������������C���s����t��|��j��������j�����S(����s����
Return an MD5 fingerprint of the public part of this key. Nothing
secret is revealed.
:return:
a 16-byte `string <str>` (binary) of the MD5 fingerprint, in SSH
format.
(����R����R����t����digest(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����get_fingerprint����s����� c������������C���s"���t��t��|��j�����������j��d��d�����S(����s+���
Return a base64 string containing the public part of this key. Nothing
secret is revealed. This format is compatible with that used to store
public key files or recognized host keys.
:return: a base64 `string <str>` containing the public part of the key.
s����
R"���(����R ���R
���R����t����replace(����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt
���get_base64����s������c������������C���s����t�����S(����s����
Sign a blob of data with this private key, and return a `.Message`
representing an SSH signature message.
:param str data: the data to sign.
:return: an SSH signature `message <.Message>`.
(����R����(����R����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt
���sign_ssh_data����s������c������������C���s����t��S(����s\���
Given a blob of data, and an SSH message representing a signature of
that data, verify that it was signed with this key.
:param str data: the data that was signed.
:param .Message msg: an SSH signature message
:return:
``True`` if the signature verifies correctly; ``False`` otherwise.
(����R%���(����R����R����R����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����verify_ssh_sig����s�����
c������������C���s����|��d��|��d��|�����}��|��S(����s����
Create a key object by reading a private key file. If the private
key is encrypted and ``password`` is not ``None``, the given password
will be used to decrypt the key (otherwise `.PasswordRequiredException`
is thrown). Through the magic of Python, this factory method will
exist in all subclasses of PKey (such as `.RSAKey` or `.DSSKey`), but
is useless on the abstract PKey class.
:param str filename: name of the file to read
:param str password:
an optional password to use to decrypt the key file, if it's
encrypted
:return: a new `.PKey` based on the given private key
:raises IOError: if there was an error reading the file
:raises PasswordRequiredException: if the private key file is
encrypted, and ``password`` is ``None``
:raises SSHException: if the key file is invalid
t����filenamet����password(����(����t����clsR-���R.���t����key(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����from_private_key_file����s��������c������������C���s����|��d��|��d��|�����}��|��S(����s����
Create a key object by reading a private key from a file (or file-like)
object. If the private key is encrypted and ``password`` is not
``None``, the given password will be used to decrypt the key (otherwise
`.PasswordRequiredException` is thrown).
:param file_obj: the file-like object to read from
:param str password:
an optional password to use to decrypt the key, if it's encrypted
:return: a new `.PKey` based on the given private key
:raises IOError: if there was an error reading the key
:raises PasswordRequiredException:
if the private key file is encrypted, and ``password`` is ``None``
:raises SSHException: if the key file is invalid
t����file_objR.���(����(����R/���R2���R.���R0���(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����from_private_key����s��������c������������C���s����t��d��������d��S(����s����
Write private key contents into a file. If the password is not
``None``, the key is encrypted before writing.
:param str filename: name of the file to write
:param str password:
an optional password to use to encrypt the key file
:raises IOError: if there was an error writing the file
:raises SSHException: if the key is invalid
s����Not implemented in PKeyN(����t ���Exception(����R����R-���R.���(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����write_private_key_file����s������c������������C���s����t��d��������d��S(����s����
Write private key contents into a file (or file-like) object. If the
password is not ``None``, the key is encrypted before writing.
:param file_obj: the file-like object to write into
:param str password: an optional password to use to encrypt the key
:raises IOError: if there was an error writing to the file
:raises SSHException: if the key is invalid
s����Not implemented in PKeyN(����R4���(����R����R2���R.���(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����write_private_key����s������c������������C���s1���t��|��d��������}��|��j��|��|��|�����}��Wd��QX|��S(����s����
Read an SSH2-format private key file, looking for a string of the type
``"BEGIN xxx PRIVATE KEY"`` for some ``xxx``, base64-decode the text we
find, and return it as a string. If the private key is encrypted and
``password`` is not ``None``, the given password will be used to decrypt
the key (otherwise `.PasswordRequiredException` is thrown).
:param str tag: ``"RSA"`` or ``"DSA"``, the tag used to mark the data block.
:param str filename: name of the file to read.
:param str password:
an optional password to use to decrypt the key file, if it's
encrypted.
:return: data blob (`str`) that makes up the private key.
:raises IOError: if there was an error reading the file.
:raises PasswordRequiredException: if the private key file is
encrypted, and ``password`` is ``None``.
:raises SSHException: if the key file is invalid.
t����rN(����t����opent����_read_private_key(����R����t����tagR-���R.���t����fR����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����_read_private_key_file����s����������c������������C���s����|��j�����}��d��}��x>�|��t��|�����k��rR�|��|���j�����d��|���d���k��rR�|��d��7}��q��W|��t��|�����k��r|�t��d��|���d���������n��i��}��|��d��7}��xg�|��t��|�����k��r��|��|���j��d�����}��t��|�����d��k��r��Pn��|��d���j�����|��|��d���j�����<|��d��7}��q��W|��}��x>�|��t��|�����k��r<�|��|���j�����d��|���d���k��r<�|��d��7}��q��Wy&�t��t��d �j��|��|��|��!���������} �Wn/��t �j
�j��k
�r���}
��t��d
�t��|
�����������n��Xd��|��k��r��| �S|��d���d��k��r��t��d
�|��d����������n��y��|��d���j��d�����\��}��}��Wn�����t��d��������n��X|��|��j
�k��r!�t��d��|���������n��|��d��k��r<�t��d��������n��|��j
�|���d���}
�|��j
�|���d���}��|��j
�|���d���}��t��t��|��������}��t��j��t��|��|��|�����}��t��|
�|�����|��|�����d��t��������j�����}��|��j��| ����|��j������S(����Ni����s����-----BEGIN s���� PRIVATE KEY-----i����s����not a valid s���� private key files����: s ���-----END R"���s����base64 decoding error: s ���proc-types����4,ENCRYPTEDs"���Unknown private key structure "%s"s����dek-infot����,s(���Can't parse DEK-info in private key files����Unknown private key cipher "%s"s����Private key file is encryptedR����R����R����t����backend(����t ���readlinest����lent����stripR
���t����splitt����lowerR����R����t����joint����base64t����binasciit����Errort����strt
���_CIPHER_TABLEt����NoneR����R����R����t����generate_key_bytesR����R����R����t ���decryptort����updatet����finalize(����R����R:���R;���R.���t����linest����startt����headerst����lt����endR����t����et����encryption_typet����saltstrR����R����R����t����saltR0���RL���(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyR9�������sR���������3���������
���������������3�����&�����������������������������������������'�c������������C���s?���t��|��d������*�}��t��j��|��t������|��j��|��|��|������Wd��QXd��S(����s����
Write an SSH2-format private key file in a form that can be read by
paramiko or openssh. If no password is given, the key is written in
a trivially-encoded format (base64) which is completely insecure. If
a password is given, DES-EDE3-CBC is used.
:param str tag:
``"RSA"`` or ``"DSA"``, the tag used to mark the data block.
:param filename: name of the file to write.
:param str data: data blob that makes up the private key.
:param str password: an optional password to use to encrypt the file.
:raises IOError: if there was an error writing the file.
t����wN(����R8���t����ost����chmodR����t����_write_private_key(����R����R-���R0���t����formatR.���R;���(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����_write_private_key_fileA���s����������c������������C���sV���|��d��k��r��t��j�����}��n��t��j��|�����}��|��j��|��j��t��j��j��|��|�����j���������d��S(����N( ���RJ���R����t����NoEncryptiont����BestEncryptiont����writet
���private_bytest����Encodingt����PEMt����decode(����R����R;���R0���R\���R.���t
���encryption(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyR[���T���s�������������� ���N(����t����__name__t
���__module__t����__doc__R����t����AESR����t����CBCt ���TripleDESRI���RJ���R����R����R����R ���R!���R#���R$���R&���R(���R*���R+���R,���t����classmethodR1���R3���R5���R6���R<���R9���R]���R[���(����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyR����&���sD�����������
���������
��������� � � � �
� �
������������
���2��(����Rh���RE���RF���R����RY���t����hashlibR����t����cryptography.hazmat.backendsR����t����cryptography.hazmat.primitivesR����t&���cryptography.hazmat.primitives.ciphersR����R����R����t����paramikoR����t����paramiko.commonR����t����paramiko.py3compatR ���R
���R����R����t����paramiko.ssh_exceptionR
���R����t����objectR����(����(����(����s1���/usr/lib/python2.7/site-packages/paramiko/pkey.pyt����<module>����s������������������������"���