o vhVK @sdZddlZddlZddlmZddlmZmZmZm Z m Z ddl m Z m Z mZmZddlmZddlmZmZddlmZdd lmZdd lmZdd lTdd lmZgd Zee Z!Gddde"Z#Gddde#Z$Gddde#Z%ddZ&Gddde'Z(Gddde"Z)ddZ*ddZ+dej,dej-fd d!Z. "dPdej,dej/fd#d$Z0dej,d%e ej1ej2ffd&d'Z3d(e e j4ej5fdej,de6fd)d*Z7Gd+d,d,e"Z8Gd-d.d.e8Z9de ej:fd/d0Z; 1dQde ej:effd2d3Z 1dQd7e j?fd8d9Z@dej,d:e=de j?fd;d<ZAed=d>Gd?d@d@ZBdAe jCfdBdCZDdDdEZEdFe jFde jGfdGdHZHdFe jFdeBfdIdJZIejJfdKedLeeKdMe=de eKeLffdNdOZMdS)Ra General tools related to Cryptographic Message Syntax (CMS) signatures, not necessarily to the extent implemented in the PDF specification. CMS is defined in :rfc:`5652`. To parse CMS messages, pyHanko relies heavily on `asn1crypto `_. N) dataclass)IOIterableListTupleUnion)algoscmstspx509)SignedDigestAlgorithm)hashes serialization)padding) RSAPublicKey) Prehashed)*)misc)simple_cms_attributefind_cms_attributefind_unique_cms_attributeNonexistentAttributeErrorMultivaluedAttributeError SigningErrorUnacceptableSignerErrorSignedDataCertsextract_signer_infoextract_certificate_infoget_cms_hash_algo_for_mechanismget_pyca_cryptography_hash&get_pyca_cryptography_hash_for_signingoptimal_pss_paramsprocess_pss_paramsas_signing_certificateas_signing_certificate_v2match_issuer_serialcheck_ess_certidCMSExtractionErrorbyte_range_digestValueErrorWithMessageCMSStructuralErrorload_cert_from_pemderload_certs_from_pemderload_certs_from_pemder_dataload_private_key_from_pemder!load_private_key_from_pemder_datacs eZdZdZfddZZS)r)z Value error with a failure message attribute that can be conveniently extracted, instead of having to rely on extracting exception args generically. cst||_t|dSN)strfailure_messagesuper__init__)selfr2 __class__R/var/www/html/hyperkenya/venv/lib/python3.10/site-packages/pyhanko/sign/general.pyr4As zValueErrorWithMessage.__init__)__name__ __module__ __qualname____doc__r4 __classcell__r8r8r6r9r):sr)c@eZdZdZdS)r*z!Structural error in a CMS object.Nr:r;r<r=r8r8r8r9r*Fsr*c@ eZdZdS)r'Nr:r;r<r8r8r8r9r'Jr'cCstt||fdS)a Convenience method to quickly construct a CMS attribute object with one value. :param attr_type: The attribute type, as a string or OID. :param value: The value. :return: A :class:`.cms.CMSAttribute` object. )typevalues)r CMSAttributeCMSAttributeType) attr_typevaluer8r8r9rNs rc@rA)rNrBr8r8r8r9r_rCrc@rA)rNrBr8r8r8r9rcrCrcCs\d}|r |D]}|dj|kr|durtd|d|d}q|dur&|Std|d)a Find and return CMS attribute values of a given type. .. note:: This function will also check for duplicates, but not in the sense of multivalued attributes. In other words: multivalued attributes are allowed; listing the same attribute OID more than once is not. :param attrs: The :class:`.cms.CMSAttributes` object. :param name: The attribute type as a string (as defined in ``asn1crypto``). :return: The values associated with the requested type, if present. :raise NonexistentAttributeError: Raised when no such type entry could be found in the :class:`.cms.CMSAttributes` object. :raise CMSStructuralError: Raised if the given OID occurs more than once. NrDz Attribute z was duplicatedrEzUnable to locate attribute .)nativer*r)attrsname found_valuesattrr8r8r9rgs rcCs8t||}t|dkrtd|dt|d|dS)a  Find and return a unique CMS attribute value of a given type. :param attrs: The :class:`.cms.CMSAttributes` object. :param name: The attribute type as a string (as defined in ``asn1crypto``). :return: The value associated with the requested type, if present. :raise NonexistentAttributeError: Raised when no such type entry could be found in the :class:`.cms.CMSAttributes` object. :raise MultivaluedAttributeError: Raised when the attribute's cardinality is not 1. zExpected single-valued z attribute, but found z valuesr)rlenr)rLrMrEr8r8r9rs  rcertreturnc CsFtdtt|td|j ig|ddddgiS)a Format an ASN.1 ``SigningCertificate`` object, where the certificate is identified by its SHA-1 digest. :param cert: An X.509 certificate. :return: A :class:`tsp.SigningCertificate` object referring to the original certificate. certsdirectory_nametbs_certificate serial_numberissuerrW) cert_hash issuer_serial) r SigningCertificate ESSCertIDhashlibsha1dumpdigestr GeneralNamerY)rRr8r8r9r#s" r#sha256c Csft|}t|}|||}tdtd|i|t d|j ig|ddddgiS)a Format an ASN.1 ``SigningCertificateV2`` value, where the certificate is identified by the hash algorithm specified. :param cert: An X.509 certificate. :param hash_algo: Hash algorithm to use to digest the certificate. Default is SHA-256. :return: A :class:`tsp.SigningCertificateV2` object referring to the original certificate. rT algorithmrUrVrWrX)hash_algorithmrZr[) rr Hashupdater`finalizer SigningCertificateV2 ESSCertIDv2r rbrY)rR hash_algo hash_specmd digest_valuer8r8r9r$s, r$certidcCsvt|tjr d}n|ddj}t|}t|}||| }|dj}||kr/dS|d}| p:t ||S)a Match an ``ESSCertID`` value against a certificate. :param cert: The certificate to match against. :param certid: The ``ESSCertID`` value. :return: ``True`` if the ``ESSCertID`` matches the certificate, ``False`` otherwise. r_rerdrZFr[) isinstancer r]rKrr rfrgr`rhr%)rRrorkrlrmrnexpected_digest_valueexpected_issuer_serialr8r8r9r&s   r&rrcCs|dd}|d}t|tjr$t|dks|djdkrdS|dj}z||jkp2||jk}Wn ty?d}Ynw|oG|d|kS)a~ Match the issuer and serial number of an X.509 certificate against some expected identifier. :param expected_issuer_serial: A certificate identifier, either :class:`cms.IssuerAndSerialNumber` or :class:`tsp.IssuerSerial`. :param cert: An :class:`x509.Certificate`. :return: ``True`` if there's a match, ``False`` otherwise. rVrWrYrPrrUF) rpr GeneralNamesrQrMchosenr`rY ValueError)rrrR serial_asn1expected_issuer issuer_matchr8r8r9r%s     r%cs&eZdZdZdeffdd ZZS)rz1 Error encountered while signing a file. msgcs||_tj|g|RdSr0)ryr3r4)r5ryargsr6r8r9r4PszSigningError.__init__)r:r;r<r=r1r4r>r8r8r6r9rKsrc@r?)rz= Error raised when a signer was judged unacceptable. Nr@r8r8r8r9rUsrcCs(|dvr tjddStt|S)N)shake256 shake256_len@) digest_size)lowerr SHAKE256getattrupperrdr8r8r9r]s  rFcCst|}|r t|S|Sr0)rr)rd prehashedrkr8r8r9r fsr mechcCs$|j}|dkr dS|dkrdS|jS)a% Internal function that takes a :class:`.SignedDigestAlgorithm` instance and returns the name of the digest algorithm that has to be used to compute the ``messageDigest`` attribute. :param mech: A signature mechanism. :return: A digest algorithm name. ed25519sha512ed448r{)signature_algork)rsig_algor8r8r9rms rparamsc Cs|d}|dj}||krtd|d|d|d}|djdks+td|d dj}||krBtd |d |d |d j}t|}t||d} tj tj |d|d} | | fS)zs Extract PSS padding settings and message digest from an ``RSASSAPSSParams`` value. Internal API. rerdzPSS MD 'z ' must agree with signature MD 'z'.mask_gen_algorithmmgf1zOnly MFG1 is supported parameterszMessage digest for MGF1 is z", and the one used for signing is zL. If these do not agree, some software may refuse to validate the signature. salt_length)rr)mgfr) rKcasefoldruNotImplementedErrorloggerwarningrr rPSSMGF1) rdigest_algorithmrrkmd_namemga mgf_md_namesalt_lenmgf_mdrm pss_paddingr8r8r9r"s2    r"rc Csz|}t|j}t|tstdt|t |}t ||}t t d|it dt d|id|dS)a" Figure out the optimal RSASSA-PSS parameters for a given certificate. The subject's public key must be an RSA key. :param cert: An RSA X.509 certificate. :param digest_algorithm: The digest algorithm to use. :return: RSASSA-PSS parameters. z&Expected RSA key, but got key of type rdr)rdr)rerr)rrload_der_public_key public_keyr`rprrrDrrcalculate_max_pss_salt_lengthrRSASSAPSSParamsDigestAlgorithmMaskGenAlgorithm)rRrkeyrmoptimal_salt_lenr8r8r9r!s(  r!T)frozenc@s<eZdZUdZejed< eejed< eej ed<dS)rzT Value type to describe certificates included in a CMS signed data payload. signer_cert other_certsattribute_certsN) r:r;r<r=r Certificate__annotations__rr AttributeCertificateV2r8r8r8r9rs  rsidcsBjdkr fddSjdkrjjtdfddSt)Nissuer_and_serial_numbercs tj|Sr0)r%rtcrr8r9s z'_get_signer_predicate..subject_key_identifierzThe signature in this SignedData value seems to be identified by a subject key identifier --- this is legal in CMS, but many PDF viewers and SDKs do not support this feature.cs |jkSr0)key_identifierr)skir8r9rs )rMrtrKrrrrr8)rrr9_get_signer_predicates    rcCsNt|d}d}g}|D]}||r|}q ||q |dur#td||fS)Nrz,signer certificate not included in signature)rappendr')rT signer_info predicaterRrrr8r8r9_partition_certss  r signed_datacCs(z|d\}|WStytdw)a5 Extract the unique ``SignerInfo`` entry of a CMS signed data value, or throw a ``ValueError``. :param signed_data: A CMS ``SignedData`` value. :return: A CMS ``SignerInfo`` value. :raises ValueError: If the number of ``SignerInfo`` values is not exactly one. signer_infosz-signer_infos should contain exactly one entry)rur')rrr8r8r9r s  rc Csrg}g}|dD]}|j}|jdkr||q|jdkr$||qt|}t||\}}t|||d}|S)a Extract and classify embedded certificates found in the ``certificates`` field of the signed data value. :param signed_data: A CMS ``SignedData`` value. :return: A :class:`SignedDataCerts` object containing the embedded certificates. certificates certificate v2_attr_cert)rrr)rtuntagrMrrrr) rrT attr_certsrrRrrr cert_infor8r8r9r!s"       rstream byte_range md_algorithmc Csbt|}t|}d}t|}t|D]\}} ||tj|||| d|| 7}q||fS)a  Internal API to compute byte range digests. Potentially dangerous if used without due caution. :param stream: Stream over which to compute the digest. Must support seeking and reading. :param byte_range: The byte range, as a list of (offset, length) pairs, flattened. :param md_algorithm: The message digest algorithm to use. :param chunk_size: The I/O chunk size to use. :return: A tuple of the total digested length, and the actual digest. r)max_read) rr rf bytearrayr pair_iterseekchunked_digestrh) rrr chunk_sizemd_specrm total_len chunk_buflo chunk_lenr8r8r9r(>s    r()rc)F)Nr=r^logging dataclassesrtypingrrrrr asn1cryptorr r r asn1crypto.algosr cryptography.hazmat.primitivesr r)cryptography.hazmat.primitives.asymmetricr-cryptography.hazmat.primitives.asymmetric.rsar/cryptography.hazmat.primitives.asymmetric.utilsr pyhanko.keyspyhanko.pdf_utilsr__all__ getLoggerr:rrur)r*r'rKeyErrorrrrrrr\r#rir$r]rjr&IssuerAndSerialNumber IssuerSerialboolr%rr HashAlgorithmrr r1rrr"r!rSignerIdentifierrr SignedData SignerInforrDEFAULT_CHUNK_SIZEintbytesr(r8r8r8r9s        &$ .   4     ' )!