o vh@sddlZddlmZddlmZmZddlmZmZmZddlm Z ddlm Z m Z ddl mZdd lmZmZmZdd lmZgd ZGd d d ZGdddeZGdddeZGdddeZGdddeZGdddeZGdddejZGdddejZdS)N)datetime)IterableOptional)algoscmscore)pdf)tspx509)hashes)as_signing_certificate_v2get_pyca_cryptography_hashsimple_cms_attribute) TimeStamper)SignedAttributeProviderSpecUnsignedAttributeProviderSpecCMSAttributeProviderSigningTimeProviderSigningCertificateV2ProviderAdobeRevinfoProviderCMSAlgorithmProtectionProvider TSTProviderc@s<eZdZUdZeed< d ddZd deej fddZ d S) rzB Base class to provide asynchronous CMS attribute values. attribute_typeFcst)a Build the attribute value asynchronously. :param dry_run: ``True`` if the signer is operating in dry-run (size estimation) mode. :return: An attribute value appropriate for the attribute type. NotImplementedErrorselfdry_runrU/var/www/html/hyperkenya/venv/lib/python3.10/site-packages/pyhanko/sign/attributes.pybuild_attr_value(s z%CMSAttributeProvider.build_attr_valuereturncs,|j|dIdH}|durt|j|SdS)N)r)r!rr)rrvaluerrr get_attribute4s  z"CMSAttributeProvider.get_attributeNF) __name__ __module__ __qualname____doc__str__annotations__r!rr CMSAttributer$rrrr rs   rc@s@eZdZUdZdZeed<dejfddZ d de j fd d Z d S) rz Provide a value for the signing-certificate-v2 attribute. :param signing_cert: Certificate containing the signer's public key. signing_certificate_v2r signing_certcC ||_dSN)r.)rr.rrr __init__F z%SigningCertificateV2Provider.__init__Fr"cs t|jSr0)r r.rrrr r!Is z-SigningCertificateV2Provider.build_attr_valueNr%) r&r'r(r)rr*r+r Certificater1r SigningCertificateV2r!rrrr r<s  rc@s>eZdZUdZdZeed<defddZd de j fd d Z d S) rz Provide a value for the signing-time attribute (i.e. an otherwise unauthenticated timestamp). :param timestamp: Datetime object to include. signing_timer timestampcCr/r0)r6)rr6rrr r1Xr2zSigningTimeProvider.__init__Fr"cstdt|jiS)Nutc_time)rTimerUTCTimer6rrrr r![sz$SigningTimeProvider.build_attr_valueNr%) r&r'r(r)rr*r+rr1rr8r!rrrr rMs  rc@sFeZdZUdZdZeed<dejfddZ d de ejfd d Z d S) rz Yield Adobe-style revocation information for inclusion into a CMS object. :param value: A (pre-formatted) RevocationInfoArchival object. adobe_revocation_info_archivalrr#cCr/r0r#)rr#rrr r1pr2zAdobeRevinfoProvider.__init__Fr"cs|jSr0r;rrrr r!ssz%AdobeRevinfoProvider.build_attr_valueNr%) r&r'r(r)rr*r+asn1_pdfRevocationInfoArchivalr1rr!rrrr res  rc@sBeZdZUdZeed<dedejfddZ d de j fd d Z d S) rcms_algorithm_protectionr digest_algosignature_algocCs||_||_dSr0)r?r@)rr?r@rrr r1|s z'CMSAlgorithmProtectionProvider.__init__Fr"csRd|ji}|jdkr|j}|djdkrdtdd}tt||jdS)N algorithmshake256ed448 shake256_leni)rA parameters)digest_algorithmsignature_algorithm) r?r@nativerIntegerrCMSAlgorithmProtectionrDigestAlgorithm)rrdigest_algorithm_argsmechrrr r!s  z/CMSAlgorithmProtectionProvider.build_attr_valueNr%) r&r'r(rr*r+rSignedDigestAlgorithmr1rrJr!rrrr rys  rc @s>eZdZ  d dedededefddZdd ejfd d Z d S)rsignature_time_stamp_tokenFrF data_to_ts timestamper attr_typecCs"||_||_||_||_||_dSr0)rrFrQdata prehashed)rrFrPrQrRrTrrr r1s  zTSTProvider.__init__r"csf|j}|jr |j}nt|}t|}||j|}|r'|j |}n|j ||}|IdHSr0) rFrTrSrr HashupdatefinalizerQasync_dummy_responseasync_timestamp)rrrFdigestmd_specmdts_cororrr r!s   zTSTProvider.build_attr_valueN)rOFr%) r&r'r(r*bytesrr1r ContentInfor!rrrr rs rc@s*eZdZdZdededeefddZdS)rz .. versionadded:: 0.14.0 Interface for setting up signed attributes, independently of the :class:`~pyhanko.sign.signers.pdf_cms.Signer` hierarchy. data_digestrFr"cCt)z Lazily set up signed attribute providers. :param data_digest: The digest of the data to be signed. :param digest_algorithm: The digest algorithm used. r)rr`rFrrr signed_attr_providerss z1SignedAttributeProviderSpec.signed_attr_providersN) r&r'r(r)r^r*rrrbrrrr rsrc @s0eZdZdZdedejdedee fddZ dS) rz .. versionadded:: 0.14.0 Interface for setting up unsigned attributes, independently of the :class:`~pyhanko.sign.signers.pdf_cms.Signer` hierarchy. signature signed_attrsrFr"cCra)a> Lazily set up unsigned attribute providers. :param signature: The signature computed over the signed attributes. :param signed_attrs: Signed attributes over which the signature was taken. :param digest_algorithm: The digest algorithm used. r)rrcrdrFrrr unsigned_attr_providerssz5UnsignedAttributeProviderSpec.unsigned_attr_providersN) r&r'r(r)r^r CMSAttributesr*rrrerrrr rsr)abcrtypingrr asn1cryptorrrrr<r r cryptography.hazmat.primitivesr generalr rr timestampsr__all__rrrrrrABCrrrrrr s$