U  W[^' @shdZddlmZddlZddlZddlZddlZddlmZddl m Z ejej krzddl Z e j e jfWn*eefk rdejd<e eYnXddlmZddlmZmZmZmZdd lmZmZeZd d ZGd d d ejZ ddZ!ddZ"ddZ#edddZ$edddZ%edddZ&ddZ'dd Z(d!d"Z)d#d$Z*e+d%krde!dS)&z2 Implementation module for the `ckeygen` command. )print_functionN)wraps)reloadtermios)keys)failurefilepathlogusage) raw_input_PY3csfdd}|S)Ncs tfdd}|t<|S)Ncs ||S)N)argskwargs keygeneratorr ?/usr/lib/python3/dist-packages/twisted/conch/scripts/ckeygen.pywrapper sz:_keyGenerator..assignkeygenerator..wrapper)rsupportedKeyTypes)rrkeyTyperrassignkeygeneratorsz)_keyGenerator..assignkeygeneratorr )rrr rr _keyGenerators rc @seZdZdZdZddddgdddd gd d dd gd dddgddddgddddgddddggZdddgdddgd d!d"gd#dd$gd%d&d'ggZejd e e e id(Z dS))GeneralOptionszUsage: ckeygen [options] z8ckeygen manipulates public/private keys in various ways.bitsbNz$Number of bits in the key to create.filenamefzFilename of the key file.typetzSpecify type of key to create.commentCzProvide new comment.newpassNzProvide new passphrase.passPzProvide old passphrase.formato sha256-base64zFingerprint format of key file. fingerprintlzShow fingerprint of key file. changepasspz&Change passphrase of private key file.quietqzQuiet. no-passphrasez"Create the key with no passphrase.showpubyz+Read private key file and print public key.)Z optActions)__name__ __module__ __qualname__ZsynopsisZlongdescZ optParametersZoptFlagsr Z CompletionsZ CompleteListlistrrZcompDatar r r rr)s&       rc Cst}z|tjddWnBtjk r`}z"td||tdW5d}~XYnXt t t _ |dr|d tkrtd|dt|d |n td|ddtfnJ|drt|n8|drt|n&|d rt|n|tddS) Nz ERROR: %srz&Generating public/private %s key pair.z"Key type was %s, must be one of %sz, r)r+r0)rZ parseOptionssysargvr Z UsageErrorprintZopt_helpexitr Z discardLogs handleErrorZdeferrlowerrjoinrprintFingerprintchangePassPhrasedisplayPublicKey)optionsur r rrunBs4     rCcCsP|ddkrtjj|d<|S|ddkr8tjj|d<|Std|dfdS)Nr&zmd5-hexr(z"Unsupported fingerprint format: %s)rZFingerprintFormatsZMD5_HEXZ SHA256_BASE64ZBadFingerPrintFormat)rAr r renumrepresentation_s     rDcCsdattdS)N)Z exitStatusr errrZFailurer r r rr;lsr;rsacCsZddlm}ddlm}|ds(d|d<|jt|dd|d}t|}t||dS)Nrdefault_backend)rGri)key_sizeZpublic_exponentbackend) cryptography.hazmat.backendsrI)cryptography.hazmat.primitives.asymmetricrGgenerate_private_keyintrKey_saveKey)rArIrG keyPrimitivekeyr r rgenerateRSAkeyss    rUdsacCsXddlm}ddlm}|ds(d|d<|jt|d|d}t|}t||dS)NrrH)rVrrJ)rKrL) rMrIrNrVrOrPrrQrR)rArIrVrSrTr r rgenerateDSAkeys    rWecdsacCslddlm}ddlm}|ds(d|d<dt|dd}|jtj||d}t |}t ||dS) NrrH)ecrsecdsa-sha2-nistpascii)curverL) rMrIrNrYstrencoderOrZ _curveTablerQrR)rArIrYr\rSrTr r rgenerateECDSAkeys   r_cCs|ds$tjd}td||d<tj|ddrH|dd7<t|}z@tj|d}t d| | |dtj |dfWn tj k rtdYnXdS)Nr ~/.ssh/id_rsa%Enter file in which the key is (%s): .pubz%s %s %sr&zbad key)ospath expanduserr existsrDrrQfromFiler9sizer)basename BadKeyErrorr7r:)rArrTr r rr>s   r>c Cs |ds$tjd}td||d<ztj|d}Wntjk r|dsbt d|d<ztjj|d|dd}WnRtj k rt dYn4tjk r}zt d|fW5d}~XYnXYn6tj k r }zt d|fW5d}~XYnX|d sNt d }t d }||kr:qFt d q||d <z|jd |d d}Wn4tk r}zt d|fW5d}~XYnXztjj||d dWn<tjtj fk r}zt d|fW5d}~XYnXt|dd}||W5QRXt ddS)Nrr`rar$zEnter old passphrase: Z passphrasez1Could not change passphrase: old passphrase errorzCould not change passphrase: %sr"z0Enter new passphrase (empty for no passphrase): Enter same passphrase again: %Passphrases do not match. Try again.openssh)Zextrawbz;Your identification has been saved with the new passphrase.)rcrdrer rrQrgEncryptedKeyErrorgetgetpassrjr7r:r9toString ExceptionZ fromStringopenwrite)rArrTep1p2Z newkeydatafdr r rr?sR   &"    ""r?cCs|ds$tjd}td||d<ztj|d}WnFtjk r~|dsbt d|d<tjj|d|dd}YnX| d}t r| d}t|dS) Nrr`rar$zEnter passphrase: rkrnr[)rcrdrer rrQrgrprqrrpublicrsr decoder9)rArrTZ displayKeyr r rr@s     r@c Csdddd}||}|dsPtjd|f}td|f}|pJ||d<tj|drtd|dftd }|d d krt | d rd |d<n8|dst d}t d}||krqtdq||d<dt tf} t|d|d|dt|ddt|dd|d| t|}td|dftd|dftd|dft||ddS)z Persist a SSH key on local filesystem. @param key: Key which is persisted on local filesystem. @type key: C{keys.Key} implementation. @param options: @type options: L{dict} rXrGrV)ZECZRSAZDSArz ~/.ssh/id_%sz*Enter file in which to save the key (%s): z%s already exists.zOverwrite (y/n)? rr1r/r$z,Enter passphrase (empty for no passphrase): rlrmz%s@%srnirbz(Your identification has been saved in %sz(Your public key has been saved in %s.pubzThe key fingerprint in %s is:r&N)rrcrdrer striprfr9r<r7r:rqrrZgetusersocketZ gethostnamerZFilePathZ setContentrschmodr{rDr)) rTrAZKeyTypeMappingZ keyTypeNameZ defaultPathZnewPathZynrxryr r r rrRsF       rR__main__),__doc__Z __future__rr7rcrrr functoolsrimprZ unix_getpassrZ tcgetattrZ tcsetattr ImportErrorAttributeErrormodulesZtwisted.conch.sshrZtwisted.pythonrrr r Ztwisted.python.compatr r dictrrZOptionsrrCrDr;rUrWr_r>r?r@rRr2r r r rs@            05