o >h0 @sdZddlmZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z ddlmZmZmZddlmZdd lmZmZmZmZejejkrqz ddlZejejfWneefypdejd <e eYnwe Z!d d Z"Gd ddej#Z$ddZ%ddZ&ddZ'e"dddZ(e"dddZ)e"dddZ*e"ddd Z+d!d"Z,  d;dd4d5Z1 d?d@d8d9Z2e3d:kre%dSdS)Az2 Implementation module for the `ckeygen` command. ) annotationsN)Callable)wraps)reload)AnyDictOptional)keys)failurefilepathlogusagetermioscsfdd}|S)Ncs tfdd}|t<|S)Ncs|i|SN)argskwargs keygeneratorr}/var/www/vedio/testing/chatpythonscript.ninositsolution.com/env/lib/python3.10/site-packages/twisted/conch/scripts/ckeygen.pywrapper%sz:_keyGenerator..assignkeygenerator..wrapper)rsupportedKeyTypes)rrkeyTyperrassignkeygenerator$sz)_keyGenerator..assignkeygeneratorr)rrrrr _keyGenerator#s rc @seZdZdZdZgdgdgdgdgdgdgd gd gZgd gd gd gdgdgZeje e e e ddgddZ dS)GeneralOptionszUsage: ckeygen [options] z8ckeygen manipulates public/private keys in various ways.)bitsbNz$Number of bits in the key to create.)filenamefNzFilename of the key file.)typetNzSpecify type of key to create.)commentCNzProvide new comment.)newpassNNzProvide new passphrase.)passPNzProvide old passphrase.)formato sha256-base64zFingerprint format of key file.)private-key-subtypeNNz5OpenSSH private key subtype to write ("PEM" or "v1").) fingerprintlzShow fingerprint of key file.) changepasspz&Change passphrase of private key file.)quietqzQuiet.) no-passphraseNz"Create the key with no passphrase.)showpubyz+Read private key file and print public key.PEMv1)r!r,) optActionsN)__name__ __module__ __qualname__synopsislongdesc optParametersoptFlagsr Completions CompleteListlistrr compDatarrrrr/s.  rc Cs(t}z |tjddWn"tjy1}ztd||tdWYd}~nd}~wwt t t _ |drk|d tvrYtd|dt|d |dStd|ddtfdS|drut|dS|drt|dS|d rt|dS|tddS) Nz ERROR: %sr!z&Generating public/private %s key pair.z"Key type was %s, must be one of %sz, r-r/r4)r parseOptionssysargvr UsageErrorprintopt_helpexitr discardLogs handleErrordeferrlowerrjoinr printFingerprintchangePassPhrasedisplayPublicKey)optionsurrrrunUs8    rVcCsL|ddkrtjj|d<|S|ddkrtjj|d<|Std|d)Nr)zmd5-hexr+z Unsupported fingerprint format: )r FingerprintFormatsMD5_HEX SHA256_BASE64BadFingerPrintFormat)rTrrrenumrepresentationss     r[cCsdatt)N) exitStatusr errr FailurerrrrrMsrMrsacCsZddlm}ddlm}|dsd|d<|jt|dd|d}t|}t||dS)Nrdefault_backend)r`rii)key_sizepublic_exponentbackend) cryptography.hazmat.backendsrb)cryptography.hazmat.primitives.asymmetricr`generate_private_keyintr Key_saveKey)rTrbr` keyPrimitivekeyrrrgenerateRSAkeys    rndsacCsXddlm}ddlm}|dsd|d<|jt|d|d}t|}t||dS)Nrra)rori)rcre) rfrbrgrorhrir rjrk)rTrbrorlrmrrrgenerateDSAkeys    rpecdsacCslddlm}ddlm}|dsd|d<dt|dd}|jtj||d}t |}t ||dS) Nrra)ecrsecdsa-sha2-nistpascii)curvere) rfrbrgrrstrencoderhr _curveTablerjrk)rTrbrrrurlrmrrrgenerateECDSAkeys    ryed25519cCs"tj}t|}t||dSr)r Ed25519PrivateKeygeneraterjrk)rTrlrmrrrgenerateEd25519keys  r}cCs|dkrdSdS)a Return a reasonable default private key subtype for a given key type. @type keyType: L{str} @param keyType: A key type, as returned by L{twisted.conch.ssh.keys.Key.type}. @rtype: L{str} @return: A private OpenSSH key subtype (C{'PEM'} or C{'v1'}). Ed25519r7r6rrrrr_defaultPrivateKeySubtypes rrTDict[Any, Any]inputCollectorOptional[Callable[[str], str]] keyTypeNamervreturncCs`|durt}|d}|s,tjd|}tdkr$tjd|}|d|p+|}t|S)a If C{options["filename"]} is None, prompt the user to enter a path or attempt to set it to .ssh/id_rsa @param options: command line options @param inputCollector: dependency injection for testing @param keyTypeName: key type or "rsa" Nrz ~/.ssh/id_Windowsz%HOMEPATH %\.ssh\id_z%Enter file in which the key is (%s): )inputospath expanduserplatformsystemrv)rTrrrrrr_getKeyOrDefaults   rNonecCst|}tj|dr|d7}t|}ztj|}td| | |dtj |fWdStj yAt dYdStyRt |dYdSw)N.pubz%s %s %sr)zbad key, could not be opened, please specify a file.)rrrexistsr[r rjfromFilerIsizer-basename BadKeyErrorrFrKFileNotFoundError)rTrrmrrrrQs&     rQc CsLt|}ztj|}WnvtjyX|ds td|d<z tjj||dd}Wn)tjy;t dYntjyU}zt d|WYd}~nd}~wwYn+tjyr}zt d|WYd}~nd}~wt yt |dYnw|ds td }td }||krnt d q||d<|d durt | |d <z|jd |d |dd}Wnty}zt d|WYd}~nd}~wwz tjj||ddWntjtjfy}zt d|WYd}~nd}~wwt|d }||Wdn 1swYt ddS)Nr'zEnter old passphrase:  passphrasez1Could not change passphrase: old passphrase errorzCould not change passphrase: rr%rDz0Enter new passphrase (empty for no passphrase): Enter same passphrase again: %Passphrases do not match. Try again.r,opensshsubtyperwbz;Your identification has been saved with the new passphrase.)rr rjrEncryptedKeyErrorgetgetpassrrFrKrrIrr!toString Exception fromStringopenwrite)rTrrmep1p2 newkeydatafdrrrrRsh         rRcCst|}ztj|}Wn0tyt|dYn tjy<|ds0t d|d<tjj||dd}Ynw| d d}t |dS)Nrr'zEnter passphrase: rrrt)rr rjrrrFrKrrrpublicrdecoderI)rTrrm displayKeyrrrrS2s   rSpromptcCst|S)zv Ask the user where to save the key. This needs to be a separate function so the unit test can patch it. )r)rrrr_inputSaveFile@srrmkeys.Keyc Cs|durt}ddddd}||}|d}|s-t|||}td|d }|p,|}tj|rJt|d |d }|d  d krJt | drTd|d<n|dsq t d} t d} | | krhntdqY| |d<| ddurt||d<t dt} t|} | |jd|d|dd| dt|d|jd| dt|}td|td|dtd|dd t||ddS)!z Persist a SSH key on local filesystem. @param key: Key which is persisted on local filesystem. @param options: @param inputCollector: Dependency injection for testing. Nrqrzr`ro)ECr~RSADSArz%Enter file in which to save the key (z): z already exists.zOverwrite (y/n)? rr5r3r'rDz,Enter passphrase (empty for no passphrase): rrr,@rrir)r#z&Your identification has been saved in z"Your public key has been saved in zThe key fingerprint in r)z is:)rr!rrstriprrrrIrOrFrKrrrgetusersocket gethostnamer FilePath setContentrchmodrr[r-) rmrTrKeyTypeMappingrr defaultPathnewPathynrrr#fprrrrkIs^           rk__main__)Nr`)rTrrrrrvrrv)rTrrr)rrvrrvr)rmrrTrrrrr)4__doc__ __future__rrrrrrFcollections.abcr functoolsr importlibrtypingrrrtwisted.conch.sshr twisted.pythonr r r r unix_getpassr tcgetattr tcsetattr ImportErrorAttributeErrormodulesdictrrOptionsrrVr[rMrnrpryr}rrrQrRrSrrkr9rrrrs`         &      3  F