py2docfx 0.1.9.dev1927679__py3-none-any.whl → 0.1.9.dev1929293__py3-none-any.whl

py2docfx/__main__.py

@@ -3,6 +3,7 @@ import asyncio
 import argparse
 import logging
 import os
+import stat
 import sys
 import shutil
 
@@ -16,6 +17,8 @@ from py2docfx.convert_prepare.params import load_file_params, load_command_param
 from py2docfx.convert_prepare.package_info import PackageInfo
 import py2docfx.convert_prepare.environment as py2docfxEnvironment
 
+os.chdir(PACKAGE_ROOT)
+
 def get_parser() -> argparse.ArgumentParser:
     parser = argparse.ArgumentParser(
         description=(
@@ -310,10 +313,24 @@ def prepare_out_dir(output_root: str | os.PathLike) -> os.PathLike | None:
     else:
         return None
 
+def on_rm_error( func, path, exc_info):
+    # path contains the path of the file that couldn't be removed
+    # let's just assume that it's read-only and unlink it.
+    os.chmod(path, stat.S_IWRITE)
+    os.unlink(path)
+
+def remove_folder(folder: str | os.PathLike) -> None:
+    try:
+        shutil.rmtree(folder)
+    except PermissionError:
+        shutil.rmtree(folder, ignore_errors=False, onerror=on_rm_error)
+        if os.path.exists(folder):
+            raise ValueError(f"Failed to remove folder {folder}")
+        
 def temp_folder_clean_up(folder_list: list[str | os.PathLike]) -> None:
     for folder in folder_list:
         if os.path.exists(folder):
-            shutil.rmtree(folder)
+            remove_folder(folder)
 
 def decide_global_log_level(verbose: bool, show_warning: bool) -> None:
     if verbose and show_warning:
@@ -347,7 +364,6 @@ def main(argv) -> int:
     py2docfx_logger.info(msg)
     
     sys.path.insert(0, os.path.join(os.path.dirname(os.path.abspath(__file__)),'docfx_yaml'))
-    os.chdir(PACKAGE_ROOT)
     output_doc_folder = prepare_out_dir(output_root)
 
     try:

py2docfx/convert_prepare/git.py

@@ -1,7 +1,7 @@
 import re
 import subprocess
 
-from py2docfx.docfx_yaml.logger import get_logger
+from py2docfx.docfx_yaml.logger import get_logger, log_git_clone_subprocess_ouput
 
 repoMap = {}
 
@@ -57,7 +57,8 @@ def clone(repo_location, branch, folder, extra_token=None):
                             extra_token
                         ),
                     ]
-                subprocess.run(clone_params, check=True)
+                output = subprocess.run(clone_params, check=True, capture_output=True, text=True)
+                log_git_clone_subprocess_ouput(output, py2docfx_logger)
                 repoMap[pureURL] = folder
                 msg = "<CI INFO>: Repo {} successfully cloned in {}...".format(
                         repo_location, repoMap[pureURL]
@@ -144,7 +145,7 @@ def checkout(folder, branch):
     if "* {}".format(branch) not in branches:
         # branch is not exactly current branch
         if branch not in branches:
-            subprocess.run(
+            output = subprocess.run(
                 [
                     "git",
                     "-C",
@@ -153,10 +154,12 @@ def checkout(folder, branch):
                     "--quiet",
                     remote,
                     "{}:{}".format(branch, branch),
-                ]
+                ], capture_output=True, text=True
             )
+            log_subprocess_ouput(output, py2docfx_logger)
 
-        subprocess.run(["git", "-C", folder, "checkout", "--quiet", branch])
+        output = subprocess.run(["git", "-C", folder, "checkout", "--quiet", branch], check=True, capture_output=True, text=True)
+        log_subprocess_ouput(output, py2docfx_logger)
         msg = "<CI INFO>: Switched to branch {}.".format(branch)
         py2docfx_logger.info(msg)
 

py2docfx/docfx_yaml/logger.py

@@ -71,6 +71,19 @@ def log_subprocess_ouput(subprocess_out: subprocess.CompletedProcess, logger: lo
         logger.error(f"Subprocess failed with return code {subprocess_out.returncode}")
         raise RuntimeError()
 
+def log_git_clone_subprocess_ouput(subprocess_out: subprocess.CompletedProcess, logger: logging.Logger):
+    if subprocess_out.stdout:
+        logger.info(subprocess_out.stdout)
+    if subprocess_out.stderr:
+        msgs = subprocess_out.stderr.split('\n')
+        for msg in msgs:
+            if msg is None or msg == "":
+                continue
+            logger.info(msg)
+    if subprocess_out.returncode != 0:
+        logger.error(f"Subprocess failed with return code {subprocess_out.returncode}")
+        raise RuntimeError()
+
 def counts_errors_warnings(log_file_path):
     error_count = 0
     warning_count = 0

py2docfx/venv/venv1/Lib/site-packages/cryptography/__about__.py

@@ -10,7 +10,7 @@ __all__ = [
     "__version__",
 ]
 
-__version__ = "43.0.3"
+__version__ = "44.0.0"
 
 
 __author__ = "The Python Cryptographic Authority and individual contributors"

py2docfx/venv/venv1/Lib/site-packages/cryptography/__init__.py

@@ -4,6 +4,10 @@
 
 from __future__ import annotations
 
+import sys
+import warnings
+
+from cryptography import utils
 from cryptography.__about__ import __author__, __copyright__, __version__
 
 __all__ = [
@@ -11,3 +15,12 @@ __all__ = [
     "__copyright__",
     "__version__",
 ]
+
+if sys.version_info[:2] == (3, 7):
+    warnings.warn(
+        "Python 3.7 is no longer supported by the Python core team "
+        "and support for it is deprecated in cryptography. A future "
+        "release of cryptography will remove support for Python 3.7.",
+        utils.CryptographyDeprecationWarning,
+        stacklevel=2,
+    )

py2docfx/venv/venv1/Lib/site-packages/cryptography/fernet.py

@@ -213,3 +213,11 @@ class MultiFernet:
             except InvalidToken:
                 pass
         raise InvalidToken
+
+    def extract_timestamp(self, msg: bytes | str) -> int:
+        for f in self._fernets:
+            try:
+                return f.extract_timestamp(msg)
+            except InvalidToken:
+                pass
+        raise InvalidToken

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/_oid.py

@@ -39,6 +39,7 @@ class ExtensionOID:
     PRECERT_POISON = ObjectIdentifier("1.3.6.1.4.1.11129.2.4.3")
     SIGNED_CERTIFICATE_TIMESTAMPS = ObjectIdentifier("1.3.6.1.4.1.11129.2.4.5")
     MS_CERTIFICATE_TEMPLATE = ObjectIdentifier("1.3.6.1.4.1.311.21.7")
+    ADMISSIONS = ObjectIdentifier("1.3.36.8.3.3")
 
 
 class OCSPExtensionOID:
@@ -284,6 +285,7 @@ _OID_NAMES = {
     ),
     ExtensionOID.PRECERT_POISON: "ctPoison",
     ExtensionOID.MS_CERTIFICATE_TEMPLATE: "msCertificateTemplate",
+    ExtensionOID.ADMISSIONS: "Admissions",
     CRLEntryExtensionOID.CRL_REASON: "cRLReason",
     CRLEntryExtensionOID.INVALIDITY_DATE: "invalidityDate",
     CRLEntryExtensionOID.CERTIFICATE_ISSUER: "certificateIssuer",

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/backends/openssl/backend.py

@@ -101,23 +101,11 @@ class Backend:
     def openssl_version_number(self) -> int:
         return rust_openssl.openssl_version()
 
-    def _evp_md_from_algorithm(self, algorithm: hashes.HashAlgorithm):
-        if algorithm.name in ("blake2b", "blake2s"):
-            alg = f"{algorithm.name}{algorithm.digest_size * 8}".encode(
-                "ascii"
-            )
-        else:
-            alg = algorithm.name.encode("ascii")
-
-        evp_md = self._lib.EVP_get_digestbyname(alg)
-        return evp_md
-
     def hash_supported(self, algorithm: hashes.HashAlgorithm) -> bool:
         if self._fips_enabled and not isinstance(algorithm, self._fips_hashes):
             return False
 
-        evp_md = self._evp_md_from_algorithm(algorithm)
-        return evp_md != self._ffi.NULL
+        return rust_openssl.hashes.hash_supported(algorithm)
 
     def signature_hash_supported(
         self, algorithm: hashes.HashAlgorithm
@@ -132,7 +120,13 @@ class Backend:
         if self._fips_enabled:
             return False
         else:
-            return hasattr(rust_openssl.kdf, "derive_scrypt")
+            return hasattr(rust_openssl.kdf.Scrypt, "derive")
+
+    def argon2_supported(self) -> bool:
+        if self._fips_enabled:
+            return False
+        else:
+            return hasattr(rust_openssl.kdf.Argon2id, "derive")
 
     def hmac_supported(self, algorithm: hashes.HashAlgorithm) -> bool:
         # FIPS mode still allows SHA1 for HMAC

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/asymmetric/rsa.py

@@ -5,6 +5,7 @@
 from __future__ import annotations
 
 import abc
+import random
 import typing
 from math import gcd
 
@@ -212,9 +213,8 @@ def rsa_recover_private_exponent(e: int, p: int, q: int) -> int:
 
 
 # Controls the number of iterations rsa_recover_prime_factors will perform
-# to obtain the prime factors. Each iteration increments by 2 so the actual
-# maximum attempts is half this number.
-_MAX_RECOVERY_ATTEMPTS = 1000
+# to obtain the prime factors.
+_MAX_RECOVERY_ATTEMPTS = 500
 
 
 def rsa_recover_prime_factors(n: int, e: int, d: int) -> tuple[int, int]:
@@ -222,6 +222,9 @@ def rsa_recover_prime_factors(n: int, e: int, d: int) -> tuple[int, int]:
     Compute factors p and q from the private exponent d. We assume that n has
     no more than two factors. This function is adapted from code in PyCrypto.
     """
+    # reject invalid values early
+    if 17 != pow(17, e * d, n):
+        raise ValueError("n, d, e don't match")
     # See 8.2.2(i) in Handbook of Applied Cryptography.
     ktot = d * e - 1
     # The quantity d*e-1 is a multiple of phi(n), even,
@@ -235,8 +238,10 @@ def rsa_recover_prime_factors(n: int, e: int, d: int) -> tuple[int, int]:
     # See "Digitalized Signatures and Public Key Functions as Intractable
     # as Factorization", M. Rabin, 1979
     spotted = False
-    a = 2
-    while not spotted and a < _MAX_RECOVERY_ATTEMPTS:
+    tries = 0
+    while not spotted and tries < _MAX_RECOVERY_ATTEMPTS:
+        a = random.randint(2, n - 1)
+        tries += 1
         k = t
         # Cycle through all values a^{t*2^i}=a^k
         while k < ktot:
@@ -249,8 +254,6 @@ def rsa_recover_prime_factors(n: int, e: int, d: int) -> tuple[int, int]:
                 spotted = True
                 break
             k *= 2
-        # This value was not any good... let's try another!
-        a += 2
     if not spotted:
         raise ValueError("Unable to compute factors p and q from exponent d.")
     # Found !

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/ciphers/algorithms.py

@@ -82,7 +82,8 @@ utils.deprecated(
     __name__,
     "ARC4 has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.ARC4 and "
-    "will be removed from this module in 48.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 48.0.0.",
     utils.DeprecatedIn43,
     name="ARC4",
 )
@@ -93,7 +94,8 @@ utils.deprecated(
     __name__,
     "TripleDES has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.TripleDES and "
-    "will be removed from this module in 48.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 48.0.0.",
     utils.DeprecatedIn43,
     name="TripleDES",
 )
@@ -103,7 +105,8 @@ utils.deprecated(
     __name__,
     "Blowfish has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.Blowfish and "
-    "will be removed from this module in 45.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 45.0.0.",
     utils.DeprecatedIn37,
     name="Blowfish",
 )
@@ -114,7 +117,8 @@ utils.deprecated(
     __name__,
     "CAST5 has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.CAST5 and "
-    "will be removed from this module in 45.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 45.0.0.",
     utils.DeprecatedIn37,
     name="CAST5",
 )
@@ -125,7 +129,8 @@ utils.deprecated(
     __name__,
     "IDEA has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.IDEA and "
-    "will be removed from this module in 45.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 45.0.0.",
     utils.DeprecatedIn37,
     name="IDEA",
 )
@@ -136,7 +141,8 @@ utils.deprecated(
     __name__,
     "SEED has been moved to "
     "cryptography.hazmat.decrepit.ciphers.algorithms.SEED and "
-    "will be removed from this module in 45.0.0.",
+    "will be removed from "
+    "cryptography.hazmat.primitives.ciphers.algorithms in 45.0.0.",
     utils.DeprecatedIn37,
     name="SEED",
 )

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/kdf/argon2.py

@@ -0,0 +1,13 @@
+# This file is dual licensed under the terms of the Apache License, Version
+# 2.0, and the BSD License. See the LICENSE file in the root of this repository
+# for complete details.
+
+from __future__ import annotations
+
+from cryptography.hazmat.bindings._rust import openssl as rust_openssl
+from cryptography.hazmat.primitives.kdf import KeyDerivationFunction
+
+Argon2id = rust_openssl.kdf.Argon2id
+KeyDerivationFunction.register(Argon2id)
+
+__all__ = ["Argon2id"]

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/kdf/scrypt.py

@@ -5,76 +5,15 @@
 from __future__ import annotations
 
 import sys
-import typing
 
-from cryptography import utils
-from cryptography.exceptions import (
-    AlreadyFinalized,
-    InvalidKey,
-    UnsupportedAlgorithm,
-)
 from cryptography.hazmat.bindings._rust import openssl as rust_openssl
-from cryptography.hazmat.primitives import constant_time
 from cryptography.hazmat.primitives.kdf import KeyDerivationFunction
 
 # This is used by the scrypt tests to skip tests that require more memory
 # than the MEM_LIMIT
 _MEM_LIMIT = sys.maxsize // 2
 
+Scrypt = rust_openssl.kdf.Scrypt
+KeyDerivationFunction.register(Scrypt)
 
-class Scrypt(KeyDerivationFunction):
-    def __init__(
-        self,
-        salt: bytes,
-        length: int,
-        n: int,
-        r: int,
-        p: int,
-        backend: typing.Any = None,
-    ):
-        from cryptography.hazmat.backends.openssl.backend import (
-            backend as ossl,
-        )
-
-        if not ossl.scrypt_supported():
-            raise UnsupportedAlgorithm(
-                "This version of OpenSSL does not support scrypt"
-            )
-        self._length = length
-        utils._check_bytes("salt", salt)
-        if n < 2 or (n & (n - 1)) != 0:
-            raise ValueError("n must be greater than 1 and be a power of 2.")
-
-        if r < 1:
-            raise ValueError("r must be greater than or equal to 1.")
-
-        if p < 1:
-            raise ValueError("p must be greater than or equal to 1.")
-
-        self._used = False
-        self._salt = salt
-        self._n = n
-        self._r = r
-        self._p = p
-
-    def derive(self, key_material: bytes) -> bytes:
-        if self._used:
-            raise AlreadyFinalized("Scrypt instances can only be used once.")
-        self._used = True
-
-        utils._check_byteslike("key_material", key_material)
-
-        return rust_openssl.kdf.derive_scrypt(
-            key_material,
-            self._salt,
-            self._n,
-            self._r,
-            self._p,
-            _MEM_LIMIT,
-            self._length,
-        )
-
-    def verify(self, key_material: bytes, expected_key: bytes) -> None:
-        derived_key = self.derive(key_material)
-        if not constant_time.bytes_eq(derived_key, expected_key):
-            raise InvalidKey("Keys do not match.")
+__all__ = ["Scrypt"]

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/padding.py

@@ -11,8 +11,8 @@ from cryptography import utils
 from cryptography.exceptions import AlreadyFinalized
 from cryptography.hazmat.bindings._rust import (
     PKCS7PaddingContext,
+    PKCS7UnpaddingContext,
     check_ansix923_padding,
-    check_pkcs7_padding,
 )
 
 
@@ -115,32 +115,11 @@ class PKCS7:
         return PKCS7PaddingContext(self.block_size)
 
     def unpadder(self) -> PaddingContext:
-        return _PKCS7UnpaddingContext(self.block_size)
-
-
-class _PKCS7UnpaddingContext(PaddingContext):
-    _buffer: bytes | None
-
-    def __init__(self, block_size: int):
-        self.block_size = block_size
-        # TODO: more copies than necessary, we should use zero-buffer (#193)
-        self._buffer = b""
-
-    def update(self, data: bytes) -> bytes:
-        self._buffer, result = _byte_unpadding_update(
-            self._buffer, data, self.block_size
-        )
-        return result
-
-    def finalize(self) -> bytes:
-        result = _byte_unpadding_check(
-            self._buffer, self.block_size, check_pkcs7_padding
-        )
-        self._buffer = None
-        return result
+        return PKCS7UnpaddingContext(self.block_size)
 
 
 PaddingContext.register(PKCS7PaddingContext)
+PaddingContext.register(PKCS7UnpaddingContext)
 
 
 class ANSIX923:

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/serialization/pkcs7.py

@@ -263,6 +263,11 @@ class PKCS7EnvelopeBuilder:
         return rust_pkcs7.encrypt_and_serialize(self, encoding, options)
 
 
+pkcs7_decrypt_der = rust_pkcs7.decrypt_der
+pkcs7_decrypt_pem = rust_pkcs7.decrypt_pem
+pkcs7_decrypt_smime = rust_pkcs7.decrypt_smime
+
+
 def _smime_signed_encode(
     data: bytes, signature: bytes, micalg: str, text_mode: bool
 ) -> bytes:
@@ -328,6 +333,34 @@ def _smime_enveloped_encode(data: bytes) -> bytes:
     return m.as_bytes(policy=m.policy.clone(linesep="\n", max_line_length=0))
 
 
+def _smime_enveloped_decode(data: bytes) -> bytes:
+    m = email.message_from_bytes(data)
+    if m.get_content_type() not in {
+        "application/x-pkcs7-mime",
+        "application/pkcs7-mime",
+    }:
+        raise ValueError("Not an S/MIME enveloped message")
+    return bytes(m.get_payload(decode=True))
+
+
+def _smime_remove_text_headers(data: bytes) -> bytes:
+    m = email.message_from_bytes(data)
+    # Using get() instead of get_content_type() since it has None as default,
+    # where the latter has "text/plain". Both methods are case-insensitive.
+    content_type = m.get("content-type")
+    if content_type is None:
+        raise ValueError(
+            "Decrypted MIME data has no 'Content-Type' header. "
+            "Please remove the 'Text' option to parse it manually."
+        )
+    if "text/plain" not in content_type:
+        raise ValueError(
+            f"Decrypted MIME data content type is '{content_type}', not "
+            "'text/plain'. Remove the 'Text' option to parse it manually."
+        )
+    return bytes(m.get_payload(decode=True))
+
+
 class OpenSSLMimePart(email.message.MIMEPart):
     # A MIMEPart subclass that replicates OpenSSL's behavior of not including
     # a newline if there are no headers.

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/twofactor/hotp.py

@@ -67,6 +67,9 @@ class HOTP:
         self._algorithm = algorithm
 
     def generate(self, counter: int) -> bytes:
+        if not isinstance(counter, int):
+            raise TypeError("Counter parameter must be an integer type.")
+
         truncated_value = self._dynamic_truncate(counter)
         hotp = truncated_value % (10**self._length)
         return "{0:0{1}}".format(hotp, self._length).encode()
@@ -77,7 +80,12 @@ class HOTP:
 
     def _dynamic_truncate(self, counter: int) -> int:
         ctx = hmac.HMAC(self._key, self._algorithm)
-        ctx.update(counter.to_bytes(length=8, byteorder="big"))
+
+        try:
+            ctx.update(counter.to_bytes(length=8, byteorder="big"))
+        except OverflowError:
+            raise ValueError(f"Counter must be between 0 and {2 ** 64 - 1}.")
+
         hmac_value = ctx.finalize()
 
         offset = hmac_value[len(hmac_value) - 1] & 0b1111

py2docfx/venv/venv1/Lib/site-packages/cryptography/hazmat/primitives/twofactor/totp.py

@@ -31,6 +31,11 @@ class TOTP:
         )
 
     def generate(self, time: int | float) -> bytes:
+        if not isinstance(time, (int, float)):
+            raise TypeError(
+                "Time parameter must be an integer type or float type."
+            )
+
         counter = int(time / self._time_step)
         return self._hotp.generate(counter)
 

py2docfx/venv/venv1/Lib/site-packages/cryptography/x509/__init__.py

@@ -30,6 +30,8 @@ from cryptography.x509.base import (
 )
 from cryptography.x509.extensions import (
     AccessDescription,
+    Admission,
+    Admissions,
     AuthorityInformationAccess,
     AuthorityKeyIdentifier,
     BasicConstraints,
@@ -55,6 +57,7 @@ from cryptography.x509.extensions import (
     KeyUsage,
     MSCertificateTemplate,
     NameConstraints,
+    NamingAuthority,
     NoticeReference,
     OCSPAcceptableResponses,
     OCSPNoCheck,
@@ -63,6 +66,7 @@ from cryptography.x509.extensions import (
     PolicyInformation,
     PrecertificateSignedCertificateTimestamps,
     PrecertPoison,
+    ProfessionInfo,
     ReasonFlags,
     SignedCertificateTimestamps,
     SubjectAlternativeName,
@@ -174,6 +178,8 @@ __all__ = [
     "OID_CA_ISSUERS",
     "OID_OCSP",
     "AccessDescription",
+    "Admission",
+    "Admissions",
     "Attribute",
     "AttributeNotFound",
     "Attributes",
@@ -216,6 +222,7 @@ __all__ = [
     "NameAttribute",
     "NameConstraints",
     "NameOID",
+    "NamingAuthority",
     "NoticeReference",
     "OCSPAcceptableResponses",
     "OCSPNoCheck",
@@ -226,6 +233,7 @@ __all__ = [
     "PolicyInformation",
     "PrecertPoison",
     "PrecertificateSignedCertificateTimestamps",
+    "ProfessionInfo",
     "PublicKeyAlgorithmOID",
     "RFC822Name",
     "ReasonFlags",