o sh @sddlmZddlmZmZmZmZmZddlm Z ddl m Z m Z ddl mZddlmZdd lmZdd lZGd d d eZd S) ) annotations) AttestationAttestationTypeAttestationResult InvalidDatacatch_builtins)CoseKey)sha256websafe_decode)x509)default_backend)bytes_eqNc@s(eZdZdZd d ddZeddZd S) AndroidSafetynetAttestationzandroid-safetynetF allow_rootedboolcCs ||_dSN)r)selfrrT/var/www/html/env_mimamsha/lib/python3.10/site-packages/fido2/attestation/android.py__init__2s z$AndroidSafetynetAttestation.__init__c Cs|d}dd|dD\}}}t|d}|js&|ddur&tdt||} t| t|d s9td t|d}d d |d D} t | dt } | j t jj} | djdkrftdt|d| |ddd|ttj| S)Nresponsecss|]}t|VqdSrr .0xrrr 8sz5AndroidSafetynetAttestation.verify...utf8ctsProfileMatchTzctsProfileMatch must be true!noncezNonce does not match!cSsg|]}t|qSrrrrrr Asz6AndroidSafetynetAttestation.verify..x5crzattest.android.comz-Certificate not issued to attest.android.com!algr)splitjsonloadsdecoderrr rr r load_der_x509_certificatersubjectget_attributes_for_oidNameOID COMMON_NAMEvaluer for_namefrom_cryptography_key public_keyverifyrsplitrrBASIC) r statement auth_dataclient_data_hashjwtheaderpayloadsigdataexpected_noncer#certcnrrrr25s$  z"AndroidSafetynetAttestation.verifyN)F)rr)__name__ __module__ __qualname__FORMATrrr2rrrrr/s  r) __future__rbaserrrrrcoser utilsr r cryptographyr cryptography.hazmat.backendsr,cryptography.hazmat.primitives.constant_timerr&rrrrrs