i ddlZddlZddlZddlZddlZddlZddlmZddlm Z m Z m Z m Z m Z ejjd aerdddddZnddd Zd Zd Zd Zd ZdZdZy)N)ANYWIN)Netdev atomic_move load_resourceruncmdwunlink PRTY_NO_CFSSL皙?)mv_re_trm_re_tmv_re_rrm_re_r)r rc  tj|} tjj |}d}t ||||||||j dfz#d}YLxYw#d}Y5xYw)NzrzLfailed to %s; error %s using %s (%s): STDOUT: %s STDERR: %s STDIN: %s utf-8)shutilwhichospathgetsize Exceptiondecode) exewhatrcsosesinzszits A/home/ubuntu/myenv/lib/python3.12/site-packages/copyparty/cert.py_sp_errr$ss \\#  WW__R  [A Ar2r2r3::g3FGG HH  sAA&A#&A,c t|jd5}|j}dddtjj |jj d}tjj|jsW||jk7rtd|jzt|jd5}|jdddt|jd5}|j}|jd}|jd}d }|d krt|d z|d krt|d z||kDrt|d z ddd t|jd5}|j} ddd k(r&d} |d| j|jdyy#1swYxYw#1swYxYw#1swY~xYw#1swYZxYw#YyxYw)a the default cert (and the entire TLS support) is only here to enable the crypto.subtle javascript API, which is necessary due to the webkit guys being massive memers (https://www.chromium.org/blink/webcrypto) i feel awful about this and so should they res/insecure.pemNzcert.pemz!certificate file does not exist: wbrbs PRIVATE KEY-s CERTIFICATE-z unsupported certificate format: rzno private key inside pemz no server certificate inside pemz1private key must appear before server certificatez>using default TLS certificate; https will be insecure: {}cert)rEreadrrjoincfgisfiler)ropenwritefindformat) logargsf cert_insec cert_appdatabufo1o2m active_certr"s r# ensure_certr> s tvv1 2aVVX 77<< J7L 77>>$)) $ 499 $?$))KL L $))T " a GGJ   dii  U!ffh XX& ' XX& ' . 6A ;;< < 6A BBC C 7A SST T  U $))T " #a&&(K # * $SA +Q / %3   U U # #   sHG  G:A.G&2G>G22G> GG#&G/2G;7G>>Hc tjjtjj|j|sdifSdd|g}t ||j\}}}|rdifSt j|}|d}tjtj|d}||fS#t$r,} | jtjk(rdifcYd} ~ Sd} ~ wdifcYSxYw)Nrzcfssl-certinfoz-cert)cwd not_afterz%Y-%m-%dT%H:%M:%SZ)rrexistsr-crt_dirrjsonloadscalendartimegmtimestrptimeOSErrorerrnoENOENT) r5fnacmdrrrinfr expiryexs r# _read_crtrRKsww~~bggll4<<<=b5L '2.Ddll3 B b5Ljjn  r3G!HIs{  88u|| # "u "u s+A B: %B:3AB:: C5!C*$C5* C5cLd"fd }t|dd}tj|jdzdzdzdzz|krydjt |j dz}djt |jdzdz}|j jd|j}|jjd \}}|||dd |t |d d |igd }tj|jd} dddd} t| jd| \} } } | rtdd| | | | d} | jd} t| jd| |j \} } } | rtdd| | | | t"j$j'|j d} t)||dzt*t-||dz|dzt*t)||dzt*dd d!y#Y;xYw)#Nrcd||S)Nz cert-gen-camsgcr4s r#z_gen_ca..bsSQ7ca.pem<r {}m--crt-cn-)backdaterPpathlenalgosizeO)CNCAkeynamesrr)zcreating new ca ...zcfssl gencert -initca -)rcfsslzcreate ca-certzcfssljson -bare ca rr@ cfssljsonztranslate ca-certca.key-key.pem.csrz new ca OKr)rRrH crt_cdaysr3intcrt_backcrt_cncreplacecrt_cncrt_algsplitrDdumpsencoderr$rCrrr-r VFr)r4r5nlogrPracnrdkszreqrcmdrrrbnames` r#_gen_caras 7D tX &q )F yy{T^^b(2-2S886A||C  234H \\#dnnr1B67 8F   j$++ 6B ""3'ID##v!Dc#h/)  C **S/  )C%q) #C RS1JBB )2r2s; C ))G C RSdllCJBB  0"b"cB GGLLt ,E efnb)ej(%&."= D%&."% Q   s HH#c~ d9fd }|jr|jjdng}|Dcgc]}|j}}|js*|ddD]"}|j dj |$|j s8|jD]%}|j |jdd'|jr|Dcgc] }|dvs| }}|js9|j |j|j |jdz|sdg}d|vsd |vr|j d t|Dcic]}|d c}j} t|d \}} d | vr tdtj|jdzdzdzdzz|kD} | r td|D]#}|| d vs tdj |t!|j"d5} | j%} dddt'|j(d5} | j%} ddd r|  k7ryddddj t+|j,dz}dj t+|jdzdz}dd||gddii}t't.j0j3|j4dd 5} | j7t9j:|j=d!ddd|j>jAd"|jB}|jDjd#\}}|t+|d$d%|igd&}t9j:|j=d!}d'}|jd(dj3|zd#gz}tG|d)||j4*\}}}|rtId+d,||||d-}|j=d!}tG|jd.||j4*\}}}|rtId/d0||||t.j0j3|j4d1} tK||d2ztLtO||d3z|d2ztLtK||d4ztLt't.j0j3|j4d5d5} | j%}dddt'|d2zd5} | j%}dddt'|d6zd5} | j%}dddt'|j(d 5} | j7zzddddd7d8ycc}wcc}wcc}w#1swYxYw#1swYrxYw#t$r#}ddj |Yd}~d}~wwxYw#1swYxYw#YtxYw#1swYxYw#1swYxYw#1swYxYw#1swYxYw):Nrcd||S)Nz cert-gen-srvrUrVs r#rYz_gen_srv..sSa8rZ,z*.{}/) localhost 127.0.0.1::1z.localrrrrzsrv.pemsanszno useable cert foundr\r]g?zold server-cert has expiredzdoes not have {}r&r(r)zwill create new server-cert; {}zcreating server-cert ...rkr^signingdefault)rzkey enciphermentz server auth)rarPusagesz cfssl.jsonr'rr_r`rcrf)rirjzGcfssl gencert -config=cfssl.json -ca ca.pem -ca-key ca.key -profile=wwwz -hostname=rlrormz create certzcfssljson -bare srvrnrpztranslate certsrvrrrsrtr[z.pemznew server-cert OKrurv)(crt_nsr~strip crt_exactappendr3crt_noipkeyscrt_nolocrt_nohnnamelistrRrrH crt_sdaysrr+r,r0r)rxryrrr-rCr1rDrrcrt_cnsr{r|r}rr$r rr)r4r5netdevsrrjxniprPrOexpiredr6r7r=rQrar.rrdrrrrrNrrrrrqskeyscrts` r#_gen_srvrs 8D&*kkDKK  c "rE % &1QWWY &E & >>q +A LLq) * + ==,,. +B LL#q) * + }}!PqQ.O%OPP == TYY TYY)*  eu~ [! &1!Q$&++- .EBi0   34 4))+ 3b 82 = CCfL 9: : >AF # 2 9 9! <== >466#5 6 "!J "$))T " #a&&(K # ;*4  *A.||C  234H \\#dnnr1B67 8F $ H  C bggll4<<6 =1  3&&w/01   j$++ 6B ""3'ID#c#h/) C **S/  )C SC 99;,%8#> >Dbct||rrrr3getattrrKrL)r4r5rrQr"s r#gencertrs ~~ {{*C TdG$   F;BB2FJ 2w "ell 2QA 1 CsA B,AB''B,)rFrKrDrrrH__init__rutilrrrrr environgetrrr$r>rRrrrrUrZr#rss EE0 0  1 EB1 %B I% V,' Tg)TrZ