'h @ddlZddlZddlZddlZddlZddlZddlZddlZddlZddl m Z ddl m Z ddl mZmZmZmZmZddlmZdZdZdZd Zd ZGd d ZeZej:ej<eej:ed ffZej@eefZ!GddZ"GddejFZ$GddejJZ&GddejNZ(y)N)decode) PyAsn1Error)char constraint namedtypetaguniv) serializableii3s -----BEGIN DH PARAMETERS----- MIICCAKCAgEAyT6LzpwVFS3gryIo29J5icvgxCnCebcdSe/NHMkD8dKJf8suFCg3 O2+dguLakSVif/t6dhImxInJk230HmfC8q93hdcg/j8rLGJYDKu3ik6H//BAHKIv j5O9yjU3rXCfmVJQic2Nne39sg3CreAepEts2TvYHhVv3TEAzEqCtOuTjgDv0ntJ Gwpj+BJBRQGG9NvprX1YGJ7WOFBP/hWU7d6tgvE6Xa7T/u9QIKpYHMIkcN/l3ZFB chZEqVlyrcngtSXCROTPcDOQ6Q8QzhaBJS+Z6rcsd7X+haiQqvoFcmaJ08Ks6LQC ZIL2EtYJw8V8z7C0igVEBIADZBI6OTbuuhDwRw//zU1uq52Oc48CIZlGxTYG/Evq o9EWAXUYVzWkDSTeBH1r4z/qLPE2cnhtMxbFxuvK53jGB0emy2y1Ei6IhKshJ5qX IB/aE7SSHyQ3MDHHkCmQJCsOd4Mo26YX61NZ+n501XjqpCBQ2+DfZCBh8Va2wDyv A2Ryg9SUz8j0AXViRNMJgJrr446yro/FuJZwnQcO3WQnXeqSBnURqKjmqkeFP+d8 6mk2tqJaY507lRNqtGlLnj7f5RNoBFJDCLBNurVgfvq9TCVWKDIFD4vZRjCrnl6I rD693XKIHUCWOjMh1if6omGXKHH40QuME2gNa50+YPn1iYDl88uDbbMCAQI= -----END DH PARAMETERS----- c tjj}|jtjj|tjj }|j ttjdz|jd||j_ ||j_ |jd|j||j|j|j!||j#tjj%dddtjj%ddd tjj%d dd tjj%d dd tjj%ddd|g|j'|d||fS)N']sbasicConstraintsTsCA:TRUEs nsCertTypeFssslCAextendedKeyUsagesbserverAuth,clientAuth,emailProtection,timeStamping,msCodeInd,msCodeCom,msCTLSign,msSGC,msEFS,nsSGCskeyUsageskeyCertSign, cRLSignssubjectKeyIdentifiershashsubjectsha256)OpenSSLcryptoPKey generate_keyTYPE_RSAX509set_serial_numberinttime set_version get_subjectCNOgmtime_adj_notBeforegmtime_adj_notAfter set_issuer set_pubkeyadd_extensions X509Extensionsign) organizationcnexpkey_sizekeycerts g/var/www/html/scrapers/gsc/venv/lib/python3.12/site-packages/seleniumwire/thirdparty/mitmproxy/certs.py create_car.'s ..   CW^^,,h7 >>   D3tyy{U234QD'Dj)S!OOD$$&'OOC$$    $$    $$   q $$   # $$ #   % +8 IIc8 9cg}|D];} tj|jd|jd|z=dj |}t jj}|jd|jt|j|j|duxrt|dk}|r||j_|||j_|j#t%t'j&dz|rC|j)d |j+t jj-d | |g|j+t jj-d d d g|j/|j1|j3|dt5|S#t$r|jd|zYwxYw)a^ Generates a dummy certificate. privkey: CA private key cacert: CA certificate commonname: Common name for the generated certificate. sans: A list of Subject Alternate Names. organization: Organization name for the generated certificate. Returns cert if operation succeeded, None if not. asciisIP:%ssDNS:%ss, rN@r r subjectAltNamerFsserverAuth,clientAuthr) ipaddress ip_addressrappend ValueErrorjoinrrrr r!DEFAULT_EXP_DUMMY_CERTr"rlenrrrrrrr$r%r# get_pubkeyr&Cert) privkeycacert commonnamesansr'ssir,is_valid_commonnames r- dummy_certrDSs B $ $  '!2 3 IIhl # $ BB >>   Dj)34OOF&&()$73z?R#7 *+3tyy{U234    ^^ ) )!''    $$   $  OOF%%'(IIgx :K % IIi!m $ %s$GG;:G;ceZdZdZy)CertStoreEntryc.||_||_||_yNr, privatekey chain_file)selfr,rJrKs r-__init__zCertStoreEntry.__init__s $$r/N)__name__ __module__ __qualname__rMr/r-rFrFs%r/rF.c eZdZdZdZdZdZedZe dde je fdZ eejd Zeddefd Zdd ed ede je d dfdZdede fdZede d e j.e fdZ dde je de j.e de je d e j2dej6j8effdZy) CertStorez8 Implements an in-memory certificate store. dcX||_||_||_||_i|_g|_yrH)default_privatekey default_cadefault_chain_filedhparamscerts expire_queue)rLrVrWrXrYs r-rMzCertStore.__init__s1 #5$"4  ;= r/c4|jj|t|j|jkDrU|jj d}|j j Dcic]\}}||k7s ||c}}|_yycc}}w)Nr)r[r6r: STORE_CAPpoprZitems)rLentrydkvs r-expirezCertStore.expiresx   ' t  !DNN 2!!%%a(A+/::+;+;+=H41aa!Q$HDJ 3Hs 6 BBctjj|s*t|d5}|j t dddt jjj|jtjd}|t jjjk7r,t jjj|t jjj }t jjj#|t jjjt jjjt jjj}t jjj|t jjj$}|Sy#1swYxYw)Nwbr)ospathexistsopenwriteDEFAULT_DHPARAMrSSL_lib BIO_new_fileencodesysgetfilesystemencoding_ffiNULLgcBIO_freePEM_read_bio_DHparamsDH_free)rifbiodhs r- load_dhparamzCertStore.load_dhparamsD ww~~d#dD! )Q( )kk++DKK8Q8Q8S,TVZ[ '++""'' '++""%%c7;;+;+;+D+DEC!!77   %%   %%   %% 'B !!$$R)9)9)A)ABBI (  ) )s G**G4N passphrasecvtjj||dz}tjj|s|j |||\}}nt |d5}|j } dddtjjtjj }tjjtjj| |}tjj||dz} |j| } ||||| S#1swYxYw)N-ca.pemrb -dhparam.pem) rhrir8rj create_storerkreadrrload_certificate FILETYPE_PEMload_privatekeyr}) clsribasenamer*r~ca_pathr+carzrawdh_pathr|s r- from_storezCertStore.from_stores'',,tX %9:ww~~g&&&tXx@GCgt$ ffh 00++B..00++C'',,tX%>?   g &3GR((  s &D//D8c#Ktjd}tj|dz dtj|y#tj|wxYww)z Context to temporarily set umask to its original value bitor 0o77. Useful when writing private keys to disk so that only the owner will be able to read them. r?N)rhumask)original_umasks r- umask_secretzCertStore.umask_secretsF! $&' %  HH^ $BHH^ $s.A%A A% A""A%c6tjj|stj||xs|}|xs|}t ||||\}}t j 5ttjj||dzd5}|jtjjtjj||jtjjtjj|ddddddttjj||dzd5}|jtjjtjj|dddttjj||dzd5}|jtjjtjj|dddttjj||dzd5}tjj} | j!||j| j#dddt j 5ttjj||dzd5}tjj} | j!|| j%||j| j#ddddddttjj||dzd5}|jt&ddd||fS#1swYxYw#1swYxYw#1swY&xYw#1swYxYw#1swY?xYw#1swYxYw#1swYxYw#1swY||fSxYw) N)r'r(r)r*rrfz -ca-cert.pemz -ca-cert.cerz -ca-cert.p12z-ca.p12r)rhrirjmakedirsr.rSrrkr8rlrrdump_privatekeyrdump_certificatePKCS12set_certificateexportset_privatekeyrm) rirr*r'r(expiryr+rrzp12s r-rzCertStore.create_storesww~~d# KK #/x ^8"&S[\R  # # % tBGGLLx)?S,TVZ'[ _` GG..NN//  GG//NN//    "'',,tX%>? F ! GG//NN//  "'',,tX%>? F ! GG//NN//  "'',,tX%>? F "!..'')C    # GGCJJL ! "  # # % "tBGGLLx)?S,TVZ'[ "_`..'')C    #   s # GGCJJL !  " " "'',,tX%>? F %! GGO $ %BwQ         " "  " " " "  %Bws}'.OBN3$O!AO AOAO'.P4A O4PP 3N= 8OO  OO$'O14O= 9PP  Pspecrireturnct|d5}|j}dddttjj tjj } tjjtjj ||}|jt||||jdy#1swYxYw#t$r|j}YPwxYw)Nridna) rkrr<rrrrr ExceptionrVadd_certrFrq)rLrrir~rzrr,rJs r- add_cert_filezCertStore.add_cert_files $  &&(C  NN + +++  1 77++J 4T 2 KK     100J 1sC(9CCC21C2r`namesc|jjr#||j|jj<|jjD]}||j|<|D]}||j|<y)z Adds a cert to the certstore. We register the CN in the cert plus any SANs, and also the list of names provided as an argument. N)r,r(rZaltnames)rLr`rrBs r-rzCertStore.add_cert/sg ::==(-DJJuzz}} %$$ "A!DJJqM " "A!DJJqM "r/dnc |jd}|g}tdt|D](}|jddj ||dz*|S)z Return all asterisk forms for a domain. For example, for www.example.com this will return [b"www.example.com", b"*.example.com", b"*.com"]. The single wildcard "*" is omitted. .s*.N)splitranger:r6r8)rpartsretrBs r-asterisk_formszCertStore.asterisk_forms;sW dq#e*% 5A JJutyyqr33 4 5 r/r?r@r'r<c lg}|r |jj||D]"}|jj|$|jd|j|t|ft t fd|d}|rj |}nnttjj|||jj}|j |t|f<j||j|j|jfS)aM Returns an (cert, privkey, cert_chain) tuple. commonname: Common name for the generated certificate. Must be a valid, plain-ASCII, IDNA-encoded domain name. sans: A list of Subject Alternate Names. organization: Organization name for the generated certificate. *c |jvSrH)rZ)r+rLs r-z$CertStore.get_cert..assdjj0r/NrI)extendrr6tuplenextfilterrZrFrDrVrWrXrdr,rJrK)rLr?r@r'potential_keyssnamer`s` r-get_certzCertStore.get_certGs"02   ! !$"5"5j"A B :A  ! !$"5"5a"8 9 :d#z5;78 0. A   JJt$E"++OO "  22224E5:DJJ E$K0 1 KK zz5++U-=-===r/rH)rNrOrP__doc__r]rMrd staticmethodr} classmethodtypingOptionalbytesr contextlibcontextmanagerr DEFAULT_EXPrstrrrFrListrTuplerrnrrrQr/r-rSrSs^I I &)fooe>T))$ % %<@TR]11f # S fooe>T `d & "n "e " 5 V[[%7  48 ,>.,>++e$,>!//%0 ,> fgkk..3 4 ,>r/rSc eZdZejej dejje je je jdej de jje je je jdZy) _GeneralNamedNSNamer ) implicitTag iPAddressN)rNrOrPr NamedTypes NamedTyper IA5StringsubtyperTagtagClassContexttagFormatSimpler OctetString componentTyperQr/r-rrvs(I(( I~t~~'7'?'? 3 3S5H5H!L(@(    K)9)9)9);)C)C 3 3S5H5H!L*D*  Mr/rcneZdZeZej jejddzZy) _GeneralNamesriN) rNrOrPrrr SequenceOfsizeSpecrValueSizeConstraintrQr/r-rrs/ NM''& &&q$/0Hr/rceZdZdZdZdZdZedZedZ edZ dZ d Z e d Ze d Ze d Ze d Ze dZe dZe dZe dZe dZe dZy)r<c||_y)zQ Returns a (common name, [subject alternative names]) tuple. N)x509)rLr,s r-rMz Cert.__init__s  r/cH|jd|jdk(S)Nr)digest)rLothers r-__eq__z Cert.__eq__s{{8$ X(>>>r/c"|jSrH)to_pemrLs r- get_statezCert.get_states{{}r/c~tjjtjj||_yrH)rrrrr)rLstates r- set_statezCert.set_states%NN33GNN4O4OQVW r/c$|j|SrH)from_pem)rrs r- from_statezCert.from_states||E""r/ctjjtjj|}||SrH)rrrr)rtxtrs r-rz Cert.from_pems,~~..w~~/J/JCP4yr/cNtj|}|j|SrH)sslDER_cert_to_PEM_certr)rderpems r-from_derz Cert.from_ders!&&s+||C  r/ctjjtjj|jSrH)rrrrrrs r-rz Cert.to_pems-~~.. NN ' ' II r/c8|jj|SrH)rr)rLrs r-rz Cert.digestsyy%%r/cR|jjjSrH)r get_issuerget_componentsrs r-issuerz Cert.issuersyy##%4466r/c|jj}tjj|j ddSNr1z %Y%m%d%H%M%SZ)r get_notBeforedatetimestrptimerrLts r- notbeforezCert.notbefores6 II # # %  ))!((7*;_MMr/c|jj}tjj|j ddSr)r get_notAfterrrrrs r-notafterz Cert.notafters6 II " " $  ))!((7*;_MMr/c6|jjSrH)r has_expiredrs r-rzCert.has_expiredsyy$$&&r/cR|jjjSrH)rrrrs r-rz Cert.subjectsyy$$&5577r/c6|jjSrH)rget_serial_numberrs r-serialz Cert.serialsyy**,,r/c|jj}tjjdtjj di}|j |jd|jfS)NRSADSAUNKNOWN) rr;rrrTYPE_DSAgettypebits)rLpktypess r-keyinfoz Cert.keyinfosb YY ! ! # NN # #U NN # #U  IIbggi + GGI  r/cHd}|jD]}|ddk(s |d}|S)NrsCNrrrLcrBs r-r(zCert.cns5  Atu}aD r/cHd}|jD]}|ddk(s |d}|S)NrOrrrs r-r'zCert.organizations5  Att|aD r/cg}t|jjD]}|jj|}|j dk(s2 t |j t}|dD]:}|djs|dj}|j|<|S#t$rYwxYw)z8 Returns: All DNS altnames. r3)asn1Specr) rrget_extension_count get_extensionget_short_namerget_datarrhasValueasOctetsr6)rLrrBextdeces r-rz Cert.altnamesstyy4467 +A))))!,C!!#'88 -/JCQ+At}}aDMMO *+ +#s#C C CN)rNrOrPrMrrrrrrrrrpropertyrrrrrr rr(r'rrQr/r-r<r<s) ?X##!! &77NNNN''88--    r/r<))rrr4rhrrrrrrpyasn1.codec.der.decoderr pyasn1.errorr pyasn1.typerrrrr +seleniumwire.thirdparty.mitmproxy.coretypesr rr9rmr.rDrFr TCustomCertIdrrTGeneratedCertIdUnionTCertIdrSChoicerrr Serializabler<rQr/r-r3s +$>>D !")X5p%% << 6 UCZ8P PQ ,,}&66 7[>[>| 4;; 0DOO0 q< $ $qr/