o Z2h@sBUddlmZddlZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl mZddlmZddlmZddlmZmZmZmZmZddlmZdd lmZmZmZmZdd lm Z m!Z!m"Z"m#Z#m$Z$m%Z%z dd l&m'Z(d Z)Wne*yd Z) ddddZ(YnwdZ+dZ,dZ-dZ.dZ/dZ0dZ1d Z2d!Z3d"Z4d#Z5e6d$Z7d%Z8d&Z9d'Z:d(Z;d)Ze6e9d,e:ej?Z@eAeBeCd-d.ZDe Gd/d0d0ZEeEejFd1ejGd+d+dd d2eEejFd1ejHd+d+dd d2eEejFd1ejId+d3d+d d2d4ZJd5eKd6<e.e/e0d7ZLdd:d;ZMdd>d?ZNe9d@e:d@fddEdFZOddIdJZPddKdLZQddPdQZRddTdUZSddVdWZTddYdZZUdd[d\ZVdd^d_ZWGd`dadaZXGdbdcdcZYGdddedeZZGdfdgdgZ[GdhdidiZ\ddjdkZ]GdldmdmZ^GdndodoZ_e,eYe-eZe+e\e.e[dpe`e/e[dqeae0e[drebe2e^e3e_iZcddtduZdejeejfejgejhejifZj dd dvdd{d|ZkdddZlejeejmejnejoejpfZqejeejmejnejpfZrGdddejsZtGdddZudddZv ddddZwdddZxdddZydddZz ddddZ{dddZ|ejeejfejgejifZ}dZ~GdddZdS)) annotationsN) encodebytes) dataclass)utilsUnsupportedAlgorithm)hashes)dsaeced25519paddingrsa)AEADDecryptionContextCipher algorithmsmodes)EncodingKeySerializationEncryption NoEncryption PrivateFormat PublicFormat_KeySerializationEncryption)kdfTFpasswordbytessaltdesired_key_bytesintroundsignore_few_roundsboolreturncCtd)NzNeed bcrypt moduler)rrrrrr#/home/skpark/git/infrasmart_work/infrasmart/venv/lib/python3.10/site-packages/cryptography/hazmat/primitives/serialization/ssh.py _bcrypt_kdf1sr%s ssh-ed25519sssh-rsasssh-dsssecdsa-sha2-nistp256secdsa-sha2-nistp384secdsa-sha2-nistp521s-cert-v01@openssh.comssk-ssh-ed25519@openssh.coms"sk-ecdsa-sha2-nistp256@openssh.coms rsa-sha2-256s rsa-sha2-512s\A(\S+)[ \t]+(\S+)sopenssh-key-v1s#-----BEGIN OPENSSH PRIVATE KEY-----s!-----END OPENSSH PRIVATE KEY-----sbcryptsnone aes256-ctrs(.*?)c@sFeZdZUded<ded<ded<ded<ded<d ed <d ed <d S) _SSHCipherztype[algorithms.AES]algrkey_lenz3type[modes.CTR] | type[modes.CBC] | type[modes.GCM]mode block_leniv_len int | Nonetag_lenr is_aeadN)__name__ __module__ __qualname____annotations__r#r#r#r$r*\s  r* )r+r,r-r.r/r1r2 )r&s aes256-cbcsaes256-gcm@openssh.comzdict[bytes, _SSHCipher] _SSH_CIPHERS) secp256r1 secp384r1 secp521r1key&SSHPrivateKeyTypes | SSHPublicKeyTypescCst|tjrt|}|St|tjrt|}|St|tjtjfr't }|St|t j t j fr4t }|St|tjtjfrAt}|Std)NUnsupported key type) isinstancer EllipticCurvePrivateKey_ecdsa_key_type public_keyEllipticCurvePublicKeyr RSAPrivateKey RSAPublicKey_SSH_RSAr DSAPrivateKey DSAPublicKey_SSH_DSAr Ed25519PrivateKeyEd25519PublicKey _SSH_ED25519 ValueError)r=key_typer#r#r$_get_ssh_key_types$      rPrCec.EllipticCurvePublicKeycCs*|j}|jtvrtd|jt|jS)z3Return SSH key_type and curve_name for private key.z'Unsupported curve for ssh private key: )curvename_ECDSA_KEY_TYPErN)rCrRr#r#r$rBs    rB data utils.BufferprefixsuffixcCsd|t||gS)N)join_base64_encode)rVrXrYr#r#r$_ssh_pem_encodesr]r.NonecCs |r t||dkrtddS)zRequire data to be full blocksrzCorrupt data: missing paddingN)lenrN)rVr.r#r#r$_check_block_sizesr`cCs|rtddS)z!All data should have been parsed.zCorrupt data: unparsed dataN)rNrVr#r#r$ _check_emptysrb ciphername bytes | None)Cipher[modes.CBC | modes.CTR | modes.GCM]cCsV|stdt|}t|||j|j|d}t||d|j|||jdS)z$Generate key + iv and return cipher.z9Key is password-protected, but password was not provided.TN) TypeErrorr9r%r,r/rr+r-)rcrrrciphseedr#r#r$ _init_ciphersri memoryviewtuple[int, memoryview]cC6t|dkr tdtj|dddd|ddfS)Uint32 Invalid dataNbig byteorderr_rNr from_bytesrar#r#r$_get_u32 "rucCrl)Uint64roNrprqrsrar#r#r$_get_u64rvrytuple[memoryview, memoryview]cCs8t|\}}|t|krtd|d|||dfS)zBytes with u32 length prefixroN)rur_rN)rVnr#r#r$ _get_sshstrs  r|cCs4t|\}}|r|ddkrtdt|d|fS)z Big integer.rrorp)r|rNrrt)rVvalr#r#r$ _get_mpints rr~cCs4|dkrtd|s dS|dd}t||S)z!Storage format for signed bigint.rznegative mpint not allowedrZrx)rN bit_lengthr int_to_bytes)r~nbytesr#r#r$ _to_mpints  rc@sxeZdZUdZded<d$d%d d Zd&d dZd'ddZd'ddZd(ddZ d'ddZ d)ddZ d*d+dd Z d,d"d#Z dS)- _FragListz,Build recursive structure without data copy.zlist[utils.Buffer]flistNinitlist[utils.Buffer] | Noner!r^cCsg|_|r |j|dSdSN)rextend)selfrr#r#r$__init__sz_FragList.__init__r~rWcCs|j|dS)zAdd plain bytesN)rappendrr~r#r#r$put_rawz_FragList.put_rawrcC|j|jddddS)zBig-endian uint32rnrplengthrrNrrto_bytesrr#r#r$put_u32 z_FragList.put_u32cCr)zBig-endian uint64rxrprNrrr#r#r$put_u64rz_FragList.put_u64bytes | _FragListcCsNt|tttfr|t||j|dS|||j |jdS)zBytes prefixed with u32 lengthN) r@rrj bytearrayrr_rrsizerrr#r#r$ put_sshstrs z_FragList.put_sshstrcCs|t|dS)z*Big-endian bigint prefixed with u32 lengthN)rrrr#r#r$ put_mpintsz_FragList.put_mpintcCsttt|jS)zCurrent number of bytes)summapr_rrr#r#r$r rz_FragList.sizerdstbufrjposcCs2|jD]}t|}|||}}||||<q|S)zWrite into bytearray)rr_)rrrfragflenstartr#r#r$render$s z_FragList.renderrcCs"tt|}|||S)zReturn as bytes)rjrrrtobytes)rbufr#r#r$r,s z_FragList.tobytesr)rrr!r^)r~rWr!r^)r~rr!r^)r~rr!r^r!r)r)rrjrrr!rr!r)r3r4r5__doc__r6rrrrrrrrrr#r#r#r$rs        rc@BeZdZdZdddZdd d ZdddZd ddZd!ddZdS)" _SSHFormatRSAzhFormat for RSA keys. Public: mpint e, n Private: mpint n, e, d, iqmp, p, q rVrjr!"tuple[tuple[int, int], memoryview]cCs$t|\}}t|\}}||f|fS)zRSA public fieldsr)rrVer{r#r#r$ get_public<s   z_SSHFormatRSA.get_public#tuple[rsa.RSAPublicKey, memoryview]cCs.||\\}}}t||}|}||fS)zMake RSA public key from data.)rr RSAPublicNumbersrC)rrVrr{public_numbersrCr#r#r$ load_publicDs z_SSHFormatRSA.load_publicunsafe_skip_rsa_key_validationr $tuple[rsa.RSAPrivateKey, memoryview]c Cst|\}}t|\}}t|\}}t|\}}t|\}}t|\} }||f|kr.tdt||} t|| } t||} t|| || | || } | j|d}||fS)zMake RSA private key from data.z Corrupt data: rsa field mismatchr)rrNr rsa_crt_dmp1 rsa_crt_dmq1rRSAPrivateNumbers private_key)rrV pubfieldsrr{rdiqmppqdmp1dmq1rprivate_numbersrr#r#r$ load_privateMs$          z_SSHFormatRSA.load_privaterCrsa.RSAPublicKeyf_pubrr^cCs$|}||j||jdS)zWrite RSA public keyN)rrrr{)rrCrpubnr#r#r$ encode_publices z_SSHFormatRSA.encode_publicrrsa.RSAPrivateKeyf_privcCsZ|}|j}||j||j||j||j||j||jdS)zWrite RSA private keyN) rrrr{rrrrr)rrrrrr#r#r$encode_privatems     z_SSHFormatRSA.encode_privateN)rVrjr!r)rVrjr!r)rVrjrr r!r)rCrrrr!r^)rrrrr!r^ r3r4r5rrrrrrr#r#r#r$r3s   rc@sLeZdZdZd!ddZd"d d Zd#ddZd$ddZd%ddZd&ddZ d S)' _SSHFormatDSAzhFormat for DSA keys. Public: mpint p, q, g, y Private: mpint p, q, g, y, x rVrjr!tuple[tuple, memoryview]cCs@t|\}}t|\}}t|\}}t|\}}||||f|fS)zDSA public fieldsr)rrVrrgyr#r#r$rs    z_SSHFormatDSA.get_public#tuple[dsa.DSAPublicKey, memoryview]c CsJ||\\}}}}}t|||}t||}|||}||fS)zMake DSA public key from data.)rr DSAParameterNumbersDSAPublicNumbers _validaterC) rrVrrrrparameter_numbersrrCr#r#r$rs   z_SSHFormatDSA.load_publicrr $tuple[dsa.DSAPrivateKey, memoryview]c Csz||\\}}}}}t|\}}||||f|krtdt|||} t|| } || t|| } | } | |fS)zMake DSA private key from data.z Corrupt data: dsa field mismatch) rrrNr rrrDSAPrivateNumbersr) rrVrrrrrrxrrrrr#r#r$rs    z_SSHFormatDSA.load_privaterCdsa.DSAPublicKeyrrr^cCsL|}|j}||||j||j||j||jdS)zWrite DSA public keyN)rrrrrrrr)rrCrrrr#r#r$rs    z_SSHFormatDSA.encode_publicrdsa.DSAPrivateKeyrcCs$|||||jdS)zWrite DSA private keyN)rrCrrr)rrrr#r#r$rsz_SSHFormatDSA.encode_privaterdsa.DSAPublicNumberscCs |j}|jdkrtddS)Niz#SSH supports only 1024 bit DSA keys)rrrrN)rrrr#r#r$rsz_SSHFormatDSA._validateN)rVrjr!r)rVrjr!r)rVrjrr r!r)rCrrrr!r^)rrrrr!r^)rrr!r^) r3r4r5rrrrrrrr#r#r#r$r}s    rc@sLeZdZdZd#ddZd$d d Zd%ddZd&ddZd'ddZd(d d!Z d"S))_SSHFormatECDSAzFormat for ECDSA keys. Public: str curve bytes point Private: str curve bytes point mpint secret ssh_curve_namerrRec.EllipticCurvecCs||_||_dSr)rrR)rrrRr#r#r$rs z_SSHFormatECDSA.__init__rVrjr!0tuple[tuple[memoryview, memoryview], memoryview]cCsJt|\}}t|\}}||jkrtd|ddkrtd||f|fS)zECDSA public fieldszCurve name mismatchrrnzNeed uncompressed point)r|rrNNotImplementedError)rrVrRpointr#r#r$rs     z_SSHFormatECDSA.get_public,tuple[ec.EllipticCurvePublicKey, memoryview]cCs.||\\}}}tj|j|}||fSz Make ECDSA public key from data.)rr rDfrom_encoded_pointrRr)rrV_rrCr#r#r$rs  z_SSHFormatECDSA.load_publicrr -tuple[ec.EllipticCurvePrivateKey, memoryview]cCsH||\\}}}t|\}}||f|krtdt||j}||fS)z!Make ECDSA private key from data.z"Corrupt data: ecdsa field mismatch)rrrNr derive_private_keyrR)rrVrr curve_namersecretrr#r#r$rs   z_SSHFormatECDSA.load_privaterCrQrrr^cCs*|tjtj}||j||dS)zWrite ECDSA public keyN) public_bytesrX962rUncompressedPointrr)rrCrrr#r#r$rs  z_SSHFormatECDSA.encode_publicrec.EllipticCurvePrivateKeyrcCs,|}|}|||||jdS)zWrite ECDSA private keyN)rCrrr private_value)rrrrCrr#r#r$rs z_SSHFormatECDSA.encode_privateN)rrrRr)rVrjr!rrVrjr!r)rVrjrr r!r)rCrQrrr!r^)rrrrr!r^) r3r4r5rrrrrrrr#r#r#r$rs   rc@r)"_SSHFormatEd25519z~Format for Ed25519 keys. Public: bytes point Private: bytes point bytes secret_and_point rVrjr!$tuple[tuple[memoryview], memoryview]cCst|\}}|f|fS)zEd25519 public fields)r|)rrVrr#r#r$rs  z_SSHFormatEd25519.get_public+tuple[ed25519.Ed25519PublicKey, memoryview]cCs(||\\}}tj|}||fSz"Make Ed25519 public key from data.)rr rLfrom_public_bytesr)rrVrrCr#r#r$rs z_SSHFormatEd25519.load_publicrr ,tuple[ed25519.Ed25519PrivateKey, memoryview]c Csb||\\}}t|\}}|dd}|dd}||ks#|f|kr'tdtj|}||fS)z#Make Ed25519 private key from data.Nr7z$Corrupt data: ed25519 field mismatch)rr|rNr rKfrom_private_bytes) rrVrrrkeypairrpoint2rr#r#r$r%s    z_SSHFormatEd25519.load_privaterCed25519.Ed25519PublicKeyrrr^cCs|tjtj}||dS)zWrite Ed25519 public keyN)rrRawrr)rrCrraw_public_keyr#r#r$r3sz_SSHFormatEd25519.encode_publicred25519.Ed25519PrivateKeyrcCsR|}|tjtjt}|tjtj}t||g}| ||| |dS)zWrite Ed25519 private keyN) rC private_bytesrrrrrrrrr)rrrrCraw_private_keyr f_keypairr#r#r$r<s   z _SSHFormatEd25519.encode_privateN)rVrjr!rrVrjr!r)rVrjrr r!r)rCrrrr!r^)rrrrr!r^rr#r#r#r$r s   rcCs2t|\}}|dstd|d||fS)z! U2F application strings sssh:z4U2F application string does not start with b'ssh:' ())r|r startswithrN)rV applicationr#r#r$load_applicationMs rc@$eZdZdZd ddZd d d Zd S)_SSHFormatSKEd25519z The format of a sk-ssh-ed25519@openssh.com public key is: string "sk-ssh-ed25519@openssh.com" string public key string application (user-specified, but typically "ssh:") rVrjr!rcC&tt|\}}t|\}}||fSr)_lookup_kformatrMrrrrVrCrr#r#r$rc z_SSHFormatSKEd25519.load_publictyping.NoReturncCr")Nz,sk-ssh-ed25519 private keys cannot be loadedrrrVr#r#r$rkz_SSHFormatSKEd25519.get_publicNrrVrjr!r r3r4r5rrrr#r#r#r$rZs rc@r)_SSHFormatSKECDSAz The format of a sk-ecdsa-sha2-nistp256@openssh.com public key is: string "sk-ecdsa-sha2-nistp256@openssh.com" string curve name ec_point Q string application (user-specified, but typically "ssh:") rVrjr!rcCrr)r_ECDSA_NISTP256rrr r#r#r$r}r z_SSHFormatSKECDSA.load_publicr cCr")Nz4sk-ecdsa-sha2-nistp256 private keys cannot be loadedrr r#r#r$rr z_SSHFormatSKECDSA.get_publicNrrrr#r#r#r$rss rsnistp256snistp384snistp521rOcCs4t|ts t|}|tvrt|Std|)z"Return valid format or throw errorzUnsupported key type: )r@rrjr _KEY_FORMATSr)rOr#r#r$rs  rrbackend typing.AnyrSSHPrivateKeyTypescCstd||durtd|t|}|std|d}|d}t t |||}| t s9tdt |t t d}t|\}}t|\}}t|\} }t|\} }| dkrctdt|\} }t| \} } t| } | | \}} t| |tks|tkr|}|tvrtd||tkrtd|t|j}t|j}t|\}}t|jrt|}t ||krtd nt|t||t| \}}t|\}}t|t||||}|}t ||}t|jrt |t!sJt|"|nt|#n|rt$d t|\}}t|d }t||t|\}}t|\}}||kr;td t|\}}|| krJtd | j%|||d\}}t|\}}|t&dt |kritdt |t'j(ryt)j*dtj+dd|S)z.Load private key from OpenSSH custom encoding.rVNrzNot OpenSSH private key formatr(zOnly one key supportedzUnsupported cipher: zUnsupported KDF: z+Corrupt data: invalid tag length for cipherz4Password was given but private key is not encrypted.rxzCorrupt data: broken checksumzCorrupt data: key type mismatchrzCorrupt data: invalid paddingDSSH DSA keys are deprecated and will be removed in a future release. stacklevel),r_check_byteslike _check_bytes_PEM_RCsearchrNrendbinascii a2b_base64rjr _SK_MAGICr_r|rurrrb_NONErr9r_BCRYPTr.r1r2rr`ri decryptorupdater@rfinalize_with_tagfinalizerfr_PADDINGr rHwarningswarnDeprecatedIn40)rVrrrmp1p2rckdfname kdfoptionsnkeyspubdata pub_key_typekformatrciphername_bytesblklenr1edatatagrkbufrrgdecck1ck2rOrrr#r#r$load_ssh_private_keys                             r=rencryption_algorithmrcCstd|t|tjrtjdtjddt|}t |}t }|rQt }t |j }t}t} t|tr:|jdur:|j} td} || || t||| | } nt}}d}d} d} td} d }t }|||||t | | g}||||||||td|||t }|t|||||||| |||||}|}tt ||}|!|||}| dur| "#|||||dt$|d|S) z3Serialize private key with OpenSSH custom encoding.rISSH DSA key support is deprecated and will be removed in a future releasernrNr'rxr(rZ)%rrr@r rHr)r*r+rPrr_DEFAULT_CIPHERr9r.r#_DEFAULT_ROUNDSr _kdf_roundsosurandomrrrir"rrCrrr(rr!rjrr encryptor update_intor])rrr>rOr4 f_kdfoptionsrcr6r/rrrgr1checkvalcomment f_public_key f_secretsf_mainslenmlenrofsr#r#r$_serialize_ssh_private_keysj                      rPc@seZdZdZdZdS)SSHCertificateTyper(rN)r3r4r5USERHOSTr#r#r#r$rQwsrQc@seZdZd9ddZed:ddZd;ddZedd'd(Z edddZd?ddZd@ddZdAd!d"ZdBd%d&ZdCd(d)Zd*d+Z dDd.d/Z dEd1d2Z dFd5d6Z dFd7d8Z dGdCsz9SSHCertificateBuilder.valid_principals..z5principals must be a list of bytes and can't be emptyzvalid_principals already setz:Reached or exceeded the maximum number of valid_principalsr)rrNallrfr[r__SSHKEY_CERT_MAX_PRINCIPALSrrVrXrirZr^r]r_ra)rrur#r#r$ru:s: z&SSHCertificateBuilder.valid_principalsc CsJ|jrtd|jrtdt|j|j|j|j|jd|j|j |j |j d S)Nz@valid_principals already set, can't set valid_for_all_principalsz$valid_for_all_principals already setTr) r[rNrrrVrXrirZr^r]r_rarr#r#r$valid_for_all_principals^s$z.SSHCertificateBuilder.valid_for_all_principalsrv int | floatc Csvt|ttfs tdt|}|dks|dkrtd|jdur$tdt|j|j|j |j |j |j ||j |j|jd S)Nz$valid_before must be an int or floatrrzvalid_before must [0, 2**64)zvalid_before already setr)r@rfloatrfrNr^rrVrXrirZr[rr]r_ra)rrvr#r#r$rvts& z"SSHCertificateBuilder.valid_beforerwc Csvt|ttfs tdt|}|dks|dkrtd|jdur$tdt|j|j|j |j |j |j |j ||j|jd S)Nz#valid_after must be an int or floatrrzvalid_after must [0, 2**64)zvalid_after already setr)r@rrrfrNr]rrVrXrirZr[rr^r_ra)rrwr#r#r$rws& z!SSHCertificateBuilder.valid_afterrSrc Cstt|tr t|tstd|dd|jDvrtdt|j|j|j|j |j |j |j |j g|j||f|jd S)Nname and value must be bytescSg|]\}}|qSr#r#rrSrr#r#r$ z=SSHCertificateBuilder.add_critical_option..zDuplicate critical option namer)r@rrfr_rNrrVrXrirZr[rr^r]rarrSrr#r#r$add_critical_options z)SSHCertificateBuilder.add_critical_optionc Cstt|tr t|tstd|dd|jDvrtdt|j|j|j|j |j |j |j |j |jg|j||fd S)NrcSrr#r#rr#r#r$rrz7SSHCertificateBuilder.add_extension..zDuplicate extension namer)r@rrfrarNrrVrXrirZr[rr^r]r_rr#r#r$ add_extensions z#SSHCertificateBuilder.add_extensionrSSHCertPrivateKeyTypesrTc Cst|tjtjtjfstd|jdurt d|j durdn|j }|j dur+t d|j dur2dn|j }|j s?|js?t d|jdurHt d|jdurQt d|j|jkr[t d |jjd d d |jjd d d t|j}|t}td}t|}t}||||||j|||||j j||t} |j D]} | | q|| ||j||jt} |jD]$\} } | | t | dkrt}|| | |q| | q|| t}|jD]%\} } || t | dkrt}|| ||q|| q|||dt|}t|}t}||||!|||t|tjrq|"|}t}||||||nlt|tjrt#|j$}|"|t%|}t&'|\}}t}||t}|(||(|||||n*t|tjsJt}|t)|"|t*+t,-}||||t./|0}t12t3t4d5|d|gS)NzUnsupported private key typezpublic_key must be setrztype must be setrZzAvalid_principals must be set if valid_for_all_principals is Falsezvalid_before must be setzvalid_after must be setz-valid_after must be earlier than valid_beforecS|dSNrr#rr#r#r$z,SSHCertificateBuilder.sign..)r=cSrrr#rr#r#r$rrr7r})6r@r rAr rEr rKrfrVrNrXrirZr[rr^r]r_sortrarPrrCrDrrrrrrrrr_rCsignrrRrrdecode_dss_signaturerrr rrrrrrrnrorTrr[)rrrqrtrO cert_prefixrkr4f fprincipalsrfcritrSrfoptvalfextfextvalca_typecaformatcafrfsigrrrfsigblob cert_datar#r#r$rs                                 zSSHCertificateBuilder.sign)rVrrXr0rirrZrdr[r\rr r^r0r]r0r_rrar)rCrmr!r)rqrr!r)rsrQr!r)rtrr!r)rur\r!r)rvrr!r)rwrr!r)rSrrrr!r)rrr!rT)r3r4r5rrCrqrsrtrurrvrwrrrr#r#r#r$rs.     $    r)F) rrrrrrrrrr r!r)r=r>r!r)rCrQr!r)rVrWrXrrYrr!r)rVrWr.rr!r^)rVrWr!r^) rcrrrdrrrrr!re)rVrjr!rk)rVrjr!rz)r~rr!r)r!rz)rOrWr) rVrWrrdrrrr r!r)rrrrr>rr!r)rRrr!r)rVrWr!r)rVrr!r)rrjr!r`)r=rWrrr!r)rVrWrrr!rW)rCrWr!r) __future__rrenumrCrernr)base64rr\ dataclassesr cryptographyrcryptography.exceptionsrcryptography.hazmat.primitivesr)cryptography.hazmat.primitives.asymmetricr r r r r r&cryptography.hazmat.primitives.ciphersrrrr,cryptography.hazmat.primitives.serializationrrrrrrbcryptrr%_bcrypt_supported ImportErrorrMrGrJr_ECDSA_NISTP384_ECDSA_NISTP521r_SK_SSH_ED25519_SK_SSH_ECDSA_NISTP256rrcompilerr! _SK_START_SK_ENDr#r"r@rADOTALLrrjrranger(r*AESCTRCBCGCMr9r6rTrPrBr]r`rbriruryr|rrrrrrrrrrrrrrrUnionrArErHrKrr=rPrDrFrIrLrWrmEnumrQrTrrrrrrrrrrr#r#r#r$s6                           6JFG C     rM  _