ó ³Ebc@sdZddlZddlZddlZddlZddlZddlmZddlm Z ddl m Z ddl m Z ddl m Z dd l mZdd l mZdd l mZd Zd Ze dƒjZeeddƒZeƒZed„ejjejjgDƒƒZeddd„Zeddd„Zd„Z d„Z!d„Z"d„Z#ddd„Z$d„Z%d„Z&dS(s« werkzeug.security ~~~~~~~~~~~~~~~~~ Security related helpers such as secure password hashing tools. :copyright: 2007 Pallets :license: BSD-3-Clause iÿÿÿÿN(t SystemRandom(tStructi(tizip(tPY2(t range_type(t text_type(tto_bytes(t to_nativet>abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789iðIs>Itcompare_digestccs!|]}|dkr|VqdS(t/N(NR (tNone(t.0tsep((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pys !scCs.t|||||ƒ}ttj|dƒƒS(s)Like :func:`pbkdf2_bin`, but returns a hex-encoded string. .. versionadded:: 0.9 :param data: the data to derive. :param salt: the salt for the derivation. :param iterations: the number of iterations. :param keylen: the length of the resulting key. If not provided, the digest size will be used. :param hashfunc: the hash function to use. This can either be the string name of a known hash function, or a function from the hashlib module. Defaults to sha256. t hex_codec(t pbkdf2_binRtcodecstencode(tdatatsaltt iterationstkeylenthashfunctrv((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyt pbkdf2_hex%scCsp|sd}nt|ƒ}t|ƒ}t|ƒrQ|ƒ}t|ddƒ}n|}tj|||||ƒS(sòReturns a binary digest for the PBKDF2 hash algorithm of `data` with the given `salt`. It iterates `iterations` times and produces a key of `keylen` bytes. By default, SHA-256 is used as hash function; a different hashlib `hashfunc` can be provided. .. versionadded:: 0.9 :param data: the data to derive. :param salt: the salt for the derivation. :param iterations: the number of iterations. :param keylen: the length of the resulting key. If not provided the digest size will be used. :param hashfunc: the hash function to use. This can either be the string name of a known hash function or a function from the hashlib module. Defaults to sha256. tsha256tnameN(RtcallabletgetattrR thashlibt pbkdf2_hmac(RRRRRt _test_hasht hash_name((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyR9s     cCsøt|tƒr!|jdƒ}nt|tƒrB|jdƒ}ntdk r[t||ƒSt|ƒt|ƒkrwtSd}trÀxht||ƒD]&\}}|t |ƒt |ƒAO}q“Wn.x+t||ƒD]\}}|||AO}qÐW|dkS(söThis function compares strings in somewhat constant time. This requires that the length of at least one string is known in advance. Returns `True` if the two strings are equal, or `False` if they are not. .. versionadded:: 0.7 sutf-8iN( t isinstanceRRt_builtin_safe_str_cmpR tlentFalseRRtord(tatbRtxty((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyt safe_str_cmpZs  !cCs8|dkrtdƒ‚ndjd„t|ƒDƒƒS(sAGenerate a random string of SALT_CHARS with specified ``length``.isSalt length must be positivetcss|]}tjtƒVqdS(N(t_sys_rngtchoicet SALT_CHARS(R t_((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pys |s(t ValueErrortjoinR(tlength((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pytgen_saltxs c Csp|dkr||fSt|tƒr7|jdƒ}n|jdƒrÄ|djdƒ}t|ƒd krztdƒ‚n|jd ƒ}|r¥t|d pŸd ƒp¨t }t }d ||f}n t }|}|r|sëtd ƒ‚nt |||d |ƒ}n`|rNt|tƒr-|jdƒ}nt |||ƒ}|jƒ}ntj||ƒjƒ}||fS(sInternal password hash helper. Supports plaintext without salt, unsalted and salted passwords. In case salted passwords are used hmac is used. tplainsutf-8spbkdf2:it:iis&Invalid number of arguments for PBKDF2is pbkdf2:%s:%dsSalt is required for PBKDF2R(ii(R!RRt startswithtsplitR#R0tpoptinttDEFAULT_PBKDF2_ITERATIONStTrueR$Rt _create_mact hexdigestRtnew( tmethodRtpasswordtargsRt is_pbkdf2t actual_methodRtmac((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyt_hash_internals2  "csMtˆƒrtj||ˆƒSd‡fd†}||_tj|||ƒS(NR+cstjˆ|ƒS(N(RR>(td(R?(si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyR¨s(RthmactHMACt__call__(tkeytmsgR?R((R?si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyR<¤s   s pbkdf2:sha256icCsG|dkrt|ƒnd}t|||ƒ\}}d|||fS(søHash a password with the given method and salt with a string of the given length. The format of the string returned includes the method that was used so that :func:`check_password_hash` can check the hash. The format for the hashed string looks like this:: method$salt$hash This method can **not** generate unsalted passwords but it is possible to set param method='plain' in order to enforce plaintext passwords. If a salt is used, hmac is used internally to salt the password. If PBKDF2 is wanted it can be enabled by setting the method to ``pbkdf2:method:iterations`` where iterations is optional:: pbkdf2:sha256:80000$salt$hash pbkdf2:sha256$salt$hash :param password: the password to hash. :param method: the hash method to use (one that hashlib supports). Can optionally be in the format ``pbkdf2:[:iterations]`` to enable PBKDF2. :param salt_length: the length of the salt in letters. R4R+s%s$%s$%s(R3RE(R@R?t salt_lengthRthRC((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pytgenerate_password_hash±scCsQ|jdƒdkrtS|jddƒ\}}}tt|||ƒd|ƒS(sÉcheck a password against a given salted and hashed password value. In order to support unsalted legacy passwords this method supports plain text passwords, md5 and sha1 hashes (both salted and unsalted). Returns `True` if the password matched, `False` otherwise. :param pwhash: a hashed string like returned by :func:`generate_password_hash`. :param password: the plaintext password to compare against the hash. t$ii(tcountR$R7R*RE(tpwhashR@R?Rthashval((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pytcheck_password_hashÏs csŸ|g}x†|D]~‰ˆdkr4tjˆƒ‰nt‡fd†tDƒƒs}tjjˆƒs}ˆdks}ˆjdƒrdS|j ˆƒqWtj |ŒS(s2Safely join zero or more untrusted path components to a base directory to avoid escaping the base directory. :param directory: The trusted base directory. :param pathnames: The untrusted path components relative to the base directory. :return: A safe path, otherwise ``None``. R+c3s|]}|ˆkVqdS(N((R R (tfilename(si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pys ðss..s../N( t posixpathtnormpathtanyt _os_alt_sepstostpathtisabsR6R tappendR1(t directoryt pathnamestparts((RTsi/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyt safe_joinàs    ('t__doc__RRRGRYRUtrandomRtstructRt_compatRRRRRRR.R:tpackt _pack_intRR R"R,tlistRZR taltsepRXRRR*R3RER<RNRSR`(((si/var/www/html/facial-emotion-detection-webapp-main/flask/lib/python2.7/site-packages/werkzeug/security.pyt s:      %   %