hg @ddlZddlZddlZddlZddlZddlZddlZddlZddlZddl m Z ddl m Z ddl mZmZmZmZmZddlmZdZdZdZd Zd ZGd d ZeZejejeejed ffZej eefZ!GddZ"Gddej#Z$Gddej%Z&Gddej'Z(dS)N)decode) PyAsn1Error)char constraint namedtypetaguniv) serializableii3s -----BEGIN DH PARAMETERS----- MIICCAKCAgEAyT6LzpwVFS3gryIo29J5icvgxCnCebcdSe/NHMkD8dKJf8suFCg3 O2+dguLakSVif/t6dhImxInJk230HmfC8q93hdcg/j8rLGJYDKu3ik6H//BAHKIv j5O9yjU3rXCfmVJQic2Nne39sg3CreAepEts2TvYHhVv3TEAzEqCtOuTjgDv0ntJ Gwpj+BJBRQGG9NvprX1YGJ7WOFBP/hWU7d6tgvE6Xa7T/u9QIKpYHMIkcN/l3ZFB chZEqVlyrcngtSXCROTPcDOQ6Q8QzhaBJS+Z6rcsd7X+haiQqvoFcmaJ08Ks6LQC ZIL2EtYJw8V8z7C0igVEBIADZBI6OTbuuhDwRw//zU1uq52Oc48CIZlGxTYG/Evq o9EWAXUYVzWkDSTeBH1r4z/qLPE2cnhtMxbFxuvK53jGB0emy2y1Ei6IhKshJ5qX IB/aE7SSHyQ3MDHHkCmQJCsOd4Mo26YX61NZ+n501XjqpCBQ2+DfZCBh8Va2wDyv A2Ryg9SUz8j0AXViRNMJgJrr446yro/FuJZwnQcO3WQnXeqSBnURqKjmqkeFP+d8 6mk2tqJaY507lRNqtGlLnj7f5RNoBFJDCLBNurVgfvq9TCVWKDIFD4vZRjCrnl6I rD693XKIHUCWOjMh1if6omGXKHH40QuME2gNa50+YPn1iYDl88uDbbMCAQI= -----END DH PARAMETERS----- c ,tj}|tjj|tj}|ttjdz| d|| _ || _ | d|||| |||tjdddtjddd tjd dd tjd dd tjddd|g||d||fS)N']sbasicConstraintsTsCA:TRUEs nsCertTypeFssslCAextendedKeyUsagesbserverAuth,clientAuth,emailProtection,timeStamping,msCodeInd,msCodeCom,msCTLSign,msSGC,msEFS,nsSGCskeyUsageskeyCertSign, cRLSignssubjectKeyIdentifiershashsubjectsha256)OpenSSLcryptoPKey generate_keyTYPE_RSAX509set_serial_numberinttime set_version get_subjectCNOgmtime_adj_notBeforegmtime_adj_notAfter set_issuer set_pubkeyadd_extensions X509Extensionsign) organizationcnexpkey_sizekeycerts `/var/www/fb-scrape/myenv/lib/python3.11/site-packages/seleniumwire/thirdparty/mitmproxy/certs.py create_car.'s .    CW^,h777 >   D3ty{{U233444QD'Dj)))S!!!OOD$$&&'''OOC$$     $$     $$   q  $$   #  $$ #   %  +8 IIc8 9cg}|D]j} tj|d|d|zC#t$r|d|zYgwxYwd|}t j}| d| t| | |duot|dk}|r|| _||| _|t%t'jdz|rK|d |t jd | |g|t jd d d g||||dt5|S)a^ Generates a dummy certificate. privkey: CA private key cacert: CA certificate commonname: Common name for the generated certificate. sans: A list of Subject Alternate Names. organization: Organization name for the generated certificate. Returns cert if operation succeeded, None if not. asciisIP:%ssDNS:%ss, rN@r r subjectAltNamerFsserverAuth,clientAuthr) ipaddress ip_addressrappend ValueErrorjoinrrrr r!DEFAULT_EXP_DUMMY_CERTr"rlenrrrrrrr$r%r# get_pubkeyr&Cert) privkeycacert commonnamesansr'ssir,is_valid_commonnames r- dummy_certrDSsL B $$ $  '!2!2 3 3 3 IIhl # # # # % % % IIi!m $ $ $ $ $ % BB >   Dj)))3444OOF&&(()))$73z??R#7+ *+3ty{{U233444     ^ ) )!''      $$   $   OOF%%''(((IIgx   ::s'A"A-,A-ceZdZdZdS)CertStoreEntryc0||_||_||_dSNr, privatekey chain_file)selfr,rJrKs r-__init__zCertStoreEntry.__init__s $$r/N)__name__ __module__ __qualname__rMr/r-rFrFs#%%%%%r/rF.c eZdZdZdZdZdZedZe dde j e fdZ eejd Zeddefd Zdd ed ede j e d dfdZdede fdZede d e je fdZ dde j e de je de j e d e jdejjeffdZdS) CertStorez8 Implements an in-memory certificate store. dcZ||_||_||_||_i|_g|_dSrH)default_privatekey default_cadefault_chain_filedhparamscerts expire_queue)rLrVrWrXrYs r-rMzCertStore.__init__s7 #5$"4  ;= r/c|j|t|j|jkrF|jdfd|jD|_dSdS)Nrc(i|]\}}|k ||SrQrQ).0kvds r- z$CertStore.expire..s$HHH41aa!Qr/)r[r6r: STORE_CAPpoprZitems)rLentryras @r-expirezCertStore.expires}   ''' t ! !DN 2 2!%%a((AHHHH4:+;+;+=+=HHHDJJJ 3 2r/c<tj|sBt|d5}|t dddn #1swxYwYt jj | tj d}|t jj jkrt jj |t jjj}t jj|t jj jt jj jt jj j}t jj |t jjj}|SdS)Nwbr)ospathexistsopenwriteDEFAULT_DHPARAMrSSL_lib BIO_new_fileencodesysgetfilesystemencoding_ffiNULLgcBIO_freePEM_read_bio_DHparamsDH_free)rlfbiodhs r- load_dhparamzCertStore.load_dhparamsd w~~d## )dD!! )Q((( ) ) ) ) ) ) ) ) ) ) ) ) ) ) )k++DKK8Q8S8S,T,TVZ[[ '+"' ' '+"%%c7;+;+DEEC!77  %  %  % ''B !$$R)9)ABBBI ( 'sAAAN passphrasec~tj||dz}tj|s||||\}}nt |d5}|} dddn #1swxYwYtj tjj | }tj tjj | |}tj||dz} | | } ||||| S)N-ca.pemrb -dhparam.pem) rkrlr8rm create_storernreadrrload_certificate FILETYPE_PEMload_privatekeyr) clsrlbasenamer*rca_pathr+car}rawdh_pathrs r- from_storezCertStore.from_storesL',,tX %9::w~~g&& &&tXx@@GCgt$$ ffhh               00+B.00+C',,tX%>??   g & &s3GR(((s.BBBc#Ktjd}tj|dz dVtj|dS#tj|wxYw)z Context to temporarily set umask to its original value bitor 0o77. Useful when writing private keys to disk so that only the owner will be able to read them. r?N)rkumask)original_umasks r- umask_secretzCertStore.umask_secretsd! $&''' % EEE H^ $ $ $ $ $BH^ $ $ $ $s A Actj|stj||p|}|p|}t ||||\}}t 5ttj||dzd5}| tj tj j || tj tj j |dddn #1swxYwYdddn #1swxYwYttj||dzd5}| tj tj j |dddn #1swxYwYttj||dzd5}| tj tj j |dddn #1swxYwYttj||dzd5}tj } | || | dddn #1swxYwYt 5ttj||dzd5}tj } | || || | dddn #1swxYwYdddn #1swxYwYttj||dzd5}| t&dddn #1swxYwY||fS) N)r'r(r)r*rriz -ca-cert.pemz -ca-cert.cerz -ca-cert.p12z-ca.p12r)rkrlrmmakedirsr.rSrrnr8rorrdump_privatekeyrdump_certificatePKCS12set_certificateexportset_privatekeyrp) rlrr*r'r(expiryr+rr}p12s r-rzCertStore.create_storesw~~d##  K   #/x ^8"&S[\\\R  # # % %  tBGLLx)?S,T,TVZ'['[ _` GG..N/    GG//N/                                  "',,tX%>?? F F ! GG//N/                  "',,tX%>?? F F ! GG//N/                  "',,tX%>?? F F "!.''))C    # # # GGCJJLL ! ! ! " " " " " " " " " " " " " " "  # # % % " "tBGLLx)?S,T,TVZ'['[ "_`.''))C    # # #   s # # # GGCJJLL ! ! !  " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " "',,tX%>?? F F %! GGO $ $ $ % % % % % % % % % % % % % % %Bws+2EBD." E.D2 2E5D2 6EE  E AGGG AII"IAK>>LL"2O'A0O O'O O'O O''O+.O+#Q  QQspecrlreturnct|d5}|}dddn #1swxYwYttjtjj|} tjtjj||}n#t$r |j }YnwxYw| t|||| ddS)Nridna) rnrr<rrrrr ExceptionrVadd_certrFrt)rLrrlrr}rr,rJs r- add_cert_filezCertStore.add_cert_files3 $   &&((C                N + ++   1 77+JJ 1 1 10JJJ 1 4T 2 2 KK       s266:0B++B?>B?rfnamesc|jjr||j|jj<|jjD] }||j|< |D] }||j|< dS)z Adds a cert to the certstore. We register the CN in the cert plus any SANs, and also the list of names provided as an argument. N)r,r(rZaltnames)rLrfrrBs r-rzCertStore.add_cert/sg := .(-DJuz} %$ " "A!DJqMM " "A!DJqMM " "r/dnc |d}|g}tdt|D]5}|dd||dz6|S)z Return all asterisk forms for a domain. For example, for www.example.com this will return [b"www.example.com", b"*.example.com", b"*.com"]. The single wildcard "*" is omitted. .s*.N)splitranger:r6r8)rpartsretrBs r-asterisk_formszCertStore.asterisk_forms;sl dq#e**%% 5 5A JJutyyqrr333 4 4 4 4 r/r?r@r'r<c |g}|r(|||D]*}||+|d||t|ft t fd|d}|rj|}nettj j |||j j }|j|t|f< ||j |j|jfS)aM Returns an (cert, privkey, cert_chain) tuple. commonname: Common name for the generated certificate. Must be a valid, plain-ASCII, IDNA-encoded domain name. sans: A list of Subject Alternate Names. organization: Organization name for the generated certificate. *c|jvSrH)rZ)r+rLs r-z$CertStore.get_cert..assdj0r/NrI)extendrr6tuplenextfilterrZrFrDrVrWrXrgr,rJrK)rLr?r@r'potential_keyssnamerfs` r-get_certzCertStore.get_certGs`"02  C  ! !$"5"5j"A"A B B B : :A  ! !$"5"5a"8"8 9 9 9 9d###z5;;7888 0000. A A     Jt$EE"+O ""  22444E5:DJ E$KK0 1 KK   z5+U-===r/rH)rNrOrP__doc__rcrMrg staticmethodr classmethodtypingOptionalbytesr contextlibcontextmanagerr DEFAULT_EXPrstrrrFrListrTuplerrqrrrQr/r-rSrSsI   III \&))foe>T)))[)$ % %\ %<@TR]111\1f  # S foe>T `d    & "n "e " " " " 5 V[%7   \ 48 ,>,>.,>+e$,>!/%0 ,> fgk.3 4 ,>,>,>,>,>,>r/rSc XeZdZejejdeje j e j e j dejde je j e j e j dZdS) _GeneralNamedNSNamer ) implicitTag iPAddressN)rNrOrPr NamedTypes NamedTyper IA5StringsubtyperTagtagClassContexttagFormatSimpler OctetString componentTyperQr/r-rrvs(I( I~t~'7'7'?'? 3S5H!LL(@( (     K)9)9););)C)C 3S5H!LL*D* *   MMMr/rc^eZdZeZejjej ddzZdS) _GeneralNamesriN) rNrOrPrrr SequenceOfsizeSpecrValueSizeConstraintrQr/r-rrs: LNNM'& &q$//0HHHr/rcPeZdZdZdZdZdZedZedZ edZ dZ d Z e d Ze d Ze d Ze d Ze dZe dZe dZe dZe dZe dZdS)r<c||_dS)zQ Returns a (common name, [subject alternative names]) tuple. N)x509)rLr,s r-rMz Cert.__init__s r/cZ|d|dkS)Nr)digest)rLothers r-__eq__z Cert.__eq__s%{{8$$ X(>(>>>r/c*|SrH)to_pemrLs r- get_statezCert.get_states{{}}r/cntjtjj||_dSrH)rrrrr)rLstates r- set_statezCert.set_states%N33GN4OQVWW r/c,||SrH)from_pem)rrs r- from_statezCert.from_states||E"""r/cvtjtjj|}||SrH)rrrr)rtxtrs r-rz Cert.from_pems,~..w~/JCPPs4yyr/cTtj|}||SrH)sslDER_cert_to_PEM_certr)rderpems r-from_derz Cert.from_ders$&s++||C   r/cjtjtjj|jSrH)rrrrrrs r-rz Cert.to_pems)~.. N ' I r/c6|j|SrH)rr)rLrs r-rz Cert.digestsy%%%r/cX|jSrH)r get_issuerget_componentsrs r-issuerz Cert.issuers"y##%%44666r/c|j}tj|ddSNr1z %Y%m%d%H%M%SZ)r get_notBeforedatetimestrptimerrLts r- notbeforezCert.notbefores: I # # % % ))!((7*;*;_MMMr/c|j}tj|ddSr)r get_notAfterrrrrs r-notafterz Cert.notafters: I " " $ $ ))!((7*;*;_MMMr/c4|jSrH)r has_expiredrs r-r zCert.has_expiredsy$$&&&r/cX|jSrH)rrrrs r-rz Cert.subjects"y$$&&55777r/c4|jSrH)rget_serial_numberrs r-serialz Cert.serialsy**,,,r/c|j}tjjdtjjdi}||d|fS)NRSADSAUNKNOWN) rr;rrrTYPE_DSAgettypebits)rLpktypess r-keyinfoz Cert.keyinfos` Y ! ! # # N #U N #U  IIbggii + + GGII  r/cFd}|jD]}|ddkr|d}|S)NrsCNrrrLcrBs r-r(zCert.cns4   Atu}}aDr/cFd}|jD]}|ddkr|d}|S)NrOrrrs r-r'zCert.organizations4   Att||aDr/cg}t|jD]}|j|}|dkr t |t}n#t$rYqwxYw|dD]K}|d r/|d }| |L|S)z8 Returns: All DNS altnames. r3)asn1Specr) rrget_extension_count get_extensionget_short_namerget_datarrhasValueasOctetsr6)rLrrBextdeces r-rz Cert.altnamessty446677 + +A)))!,,C!!##'888 -//JJJCC"HQ++At}}+aDMMOO ***s/B BBN)rNrOrPrMrrrrrrrrrpropertyrrr r rrrr(r'rrQr/r-r<r<s ???XXX##[#[!![! &&&77X7NNXNNNXN''X'88X8--X-   X  XXXr/r<))rrr4rkrrurrrpyasn1.codec.der.decoderr pyasn1.errorr pyasn1.typerrrrr +seleniumwire.thirdparty.mitmproxy.coretypesr rr9rpr.rDrFr TCustomCertIdrrTGeneratedCertIdUnionTCertIdrSChoicerrr Serializabler<rQr/r-r6s ++++++$$$$$$>>>>>>>>>>>>>>DDDDDD !")))X555p%%%%%%%% < 6 UCZ8P PQ ,}&66 7[>[>[>[>[>[>[>[>|     4;   00000DO000 qqqqq< $qqqqqr/