M}bgENdZddlmZddlZddlZddlmZddlm Z ddl m Z m Z m Z mZmZddlmZddlmZdd lmZdd lmZdd lmZdd lmZ dd l!m"Z#ddl$m%Z&ddl'm(Z)ddl*m+Z,ddl*m-Z.ddl/m0Z1ddl/m2Z3ddl4m5Z6ddl4m7Z8ddl4m9Z:ddl4m;Z<ddl4m=Z>ddl4m?Z@ddlAmBZCddlAmDZEddlAmFZGddlAmHZIddlJmKZLddlJmMZNdd lOmPZQdd!lRmSZTdd"lUmVZVe rzdd#lWmXZXmYZYmZZZm[Z[m\Z\m]Z]m^Z^dd$l_m`Z`dd%l*maZadd&l4mbZbmcZcdd'ldmeZemfZfdd(lAmgZgmhZhdd)limjZjdd*lkmlZldd+lmmnZneeXje\j"eYje[joeZjpe^j(e]j%fZqejresZtejud,ejvZwdcd1Zxddd9ZydedBZzdfdFZ{dgdGZ|dhdLZ}didOZ~djdRZdkdTZdjdUZdld[ZdmdbZdS)nz4Support for requesting and verifying OCSP responses.) annotationsN)datetime)timezone) TYPE_CHECKINGIterableOptionalTypeUnion)InvalidSignature)default_backend) DSAPublicKey)ECDSA)EllipticCurvePublicKey)PKCS1v15) RSAPublicKey) X448PublicKey)X25519PublicKey)SHA1)Hash)Encoding) PublicFormat)AuthorityInformationAccess)ExtendedKeyUsage)ExtensionNotFound) TLSFeature)TLSFeatureType)load_pem_x509_certificate)OCSPCertStatus)OCSPRequestBuilder)OCSPResponseStatus)load_der_ocsp_response)AuthorityInformationAccessOID)ExtendedKeyUsageOID)post)RequestException)_csot)dsaeced448ed25519rsax448x25519) Prehashed) HashAlgorithm) CertificateName) ExtensionExtensionTypeVar) OCSPRequest OCSPResponse) Connection) _OCSPCache) _CallbackDatas9-----BEGIN CERTIFICATE[^ ]+.+?-----END CERTIFICATE[^ ]+cafilestrreturnlist[Certificate]ct|d5}|}dddn #1swxYwYg}t}tjt |D]%}|t||&|S)z0Parse the tlsCAFile into a list of certificates.rbN)openread_default_backend_refindall _CERT_REGEXappend_load_pem_x509_certificate)r9fdatatrusted_ca_certsbackend cert_datas g/home/e360mart.nyusoft.in/public_html/e360mart_env/lib/python3.11/site-packages/pymongo/ocsp_support.py_load_trusted_ca_certsrMhs fd  qvvxx  G[d33PP  :9g N NOOOO s 266certr0chainIterable[Certificate]rIOptional[list[Certificate]]Optional[Certificate]ch|j}|D]}|j|kr|cS|r|D]}|j|kr|cSdSN)issuersubject)rNrOrI issuer_name candidates rL_get_issuer_certrYusv+K   + +    ,!) ! !I K//    0 4keyCertificateIssuerPublicKeyTypes signaturebytes algorithm%Union[Prehashed, HashAlgorithm, None]rHintc t|tr%|||t|nt|tr||||nnt|t r%|||t |n4t|ttfrdS|||n#t$rYdSwxYwdS)Nr) isinstance _RSAPublicKeyverify _PKCS1v15 _DSAPublicKey_EllipticCurvePublicKey_ECDSA_X25519PublicKey_X448PublicKey_InvalidSignature)r[r]r_rHs rL_verify_signaturerns c= ) ) ( JJy$ Y ? ? ? ? ] + + ( JJy$ 2 2 2 2 4 5 5 ( JJy$y(9(9 : : : :  "N3   (1 JJy$ ' ' ' qq 1sB=CC C&%C&klassType[ExtensionTypeVar]%Optional[Extension[ExtensionTypeVar]]cZ |j|S#t$rYdSwxYwrT) extensionsget_extension_for_class_ExtensionNotFound)rNros rL_get_extensionrvs?66u=== tts  **c"|}t|tr+|tjt j}njt|tr+|tj t j }n*|tjt j }ttt}|||S)N)rJ) public_keyrdre public_bytes _EncodingDER _PublicFormatPKCS1riX962UncompressedPointSubjectPublicKeyInfo_Hash_SHA1rAupdatefinalize)rNrxpbytesdigests rL_public_key_hashrs""J *m,,\(( 8KLL J 7 8 8\((9XYY(( 8Z[[ 577$4$6$6 7 7 7F MM& ??  rZ certificatesrUresponder_key_hashOptional[bytes]c$fd|DS)NcZg|]'}t|k|jjk%|(S)rrUrV).0rNrUrs rL z*_get_certs_by_key_hash..sE     D ! !%7 7 7DK6>.s>     <> ) )dkV^.K.K .K.K.KrZr)rrUrs ``rL_get_certs_by_namerrrZresponser5c|j}|j}|j}| ||jks||krtd|}n:td|j}|j,t|||}tdn+t|||}td|stddS|d}t|t}|rtj |j vrtddSt||j|j|jstddSt||j|j|j} | std | S) NzResponder is issuerzResponder is a delegatezUsing responder namezUsing key hashz%No matching or valid responder certs.rz(Delegate not authorized for OCSP signingz&Delegate signature verification failedz&Response signature verification failed)rrissuer_key_hashrV_LOGGERdebugrrrrv_ExtendedKeyUsage_ExtendedKeyUsageOID OCSP_SIGNINGvaluernrxr]signature_hash_algorithmtbs_certificate_bytestbs_response_bytes) rUrname rkey_hash ikey_hashresponder_certcertsresponder_certsextrets rL_verify_response_signaturers  "D+I(I DFN22i96L6L +,,, /000%  " .0EEO MM0 1 1 1 14UFINNO MM* + + +  MMA B B B1)+^->?? *7syHH MMD E E E1       $  3  0     MMB C C C1 !!##)#   C @ >??? JrZr4ct}|||t}|SrT)_OCSPRequestBuilderadd_certificaterbuild)rNrUbuilders rL_build_ocsp_requestrs6!##G%%dFEGG<.bs$ 6 6 6sS " " 6 6 6rZz!Peer presented a must-staple certTrZz$Peer did not staple an OCSP responsez5Must-staple cert with no stapled response, hard fail.z.OCSP endpoint checking is disabled, soft fail.z*No authority access information, soft failcPg|]#}|jtjk|jj$Sr) access_method_AuthorityInformationAccessOIDOCSPaccess_locationr)rdescs rLrz"_ocsp_callback..s:   !%C%HHH  &HHHrZzNo OCSP URI, soft failzNo issuer cert?zRequesting OCSP dataz Trying %szOCSP cert status: %rz)No definitive OCSP cert status, soft failzPeer stapled an OCSP responser)get_peer_certificaterrrhasattrrget_peer_cert_chainrIrYrv _TLSFeaturer_TLSFeatureTypestatus_requestrcheck_ocsp_endpoint_AuthorityInformationAccessrcertificate_status_OCSPCertStatusGOODREVOKEDrrrrrr)rrrpycertrNpychainrIrOrU must_stapleext_tlsfeaturerext_aiaurisrrs rL_ocsp_callbackrOs 9  & & ( (F ~ o&&&u  ! ! # #Dt)**6))++**,,$5  +,,,u 6 6g 6 6 6E dE+; < MM+ , , ,5 ,---  C MM+s + + +)$=PQQH MM0(2M N N N*o.BBBtt*o.EEEuuF  ABBBt MM1222 ~ '(((u&z22H MM,h.FGGG#6#AAAu FH - -u=E+D&99: MM((*EFFF"o&===u 4rZ)r9r:r;r<)rNr0rOrPrIrQr;rR) r[r\r]r^r_r`rHr^r;ra)rNr0rorpr;rq)rNr0r;r^)rrPrUr0rrr;r<)rrPrUr0rrr;r<)rUr0rr5r;ra)rNr0rUr0r;r4) rNr0rUr0rrrr7r;r)rr6rr^rrr;r)__doc__ __future__rlogging_loggingrerBrrrtypingrrrr r cryptography.exceptionsr rmcryptography.hazmat.backendsr rA-cryptography.hazmat.primitives.asymmetric.dsar rh,cryptography.hazmat.primitives.asymmetric.ecrrjrri1cryptography.hazmat.primitives.asymmetric.paddingrrg-cryptography.hazmat.primitives.asymmetric.rsarre.cryptography.hazmat.primitives.asymmetric.x448rrl0cryptography.hazmat.primitives.asymmetric.x25519rrk%cryptography.hazmat.primitives.hashesrrrr,cryptography.hazmat.primitives.serializationrrzrr|cryptography.x509rrrrrrurrrrrrFcryptography.x509.ocsprrrrr rr!rcryptography.x509.oidr"rr#rrequestsr$rrequests.exceptionsr%rpymongor&)cryptography.hazmat.primitives.asymmetricr'r(r)r*r+r,r-/cryptography.hazmat.primitives.asymmetric.utilsr.r/r0r1cryptography.x509.extensionsr2r3r4r5 OpenSSL.SSLr6pymongo.ocsp_cacher7pymongo.pyopenssl_contextr8Ed25519PublicKeyEd448PublicKeyr\ getLogger__name__rcompileDOTALLrDrMrYrnrvrrrrrrrrrrZrLrs';:""""""******AAAAAAAAAAAAAAIIIIIILLLLLLWWWWWWHHHHHHTSSSSSWWWWWW@???????????NNNNNNVVVVVVWWWWWWCCCCCCEEEEEE777777??????UUUUUUDDDDDDLLLLLLLLLLLLTTTTTTNMMMMM""""""EEEEEEJIIIIICCCCCC33333333HHHHHHHH@@@@@@@@&&&&&&------777777&+   !     '# ( X & &ckDcj    &    4"3333l    *****ZaaaaaarZ