o &zh)@sbddlmZddlZddlmZddlmZmZmZm Z m Z m Z ddl m Z mZmZmZddlmZddlmZmZddlmZmZmZmZmZmZd@ddZdAddZdBddZdCddZ dDddZ!dEd!d"Z"dFd$d%Z#dFd&d'Z$dGd(d)Z%d*d+Z&dHd,d-Z'dHd.d/Z( dIdJd6d7Z)e d8Z*ed9d:Gd;d<dd?d?ej-ee,Z.dS)K) annotationsN) dataclass) AsyncIteratorGenericListOptionalTypeVarUnion)algoscmscorex509) PublicKeyInfo)hashes serialization)dsaeced448ed25519paddingrsanamesx509.GeneralNameserr_msg_prefixstrreturn x509.NamecCs:ztdd|D}W|Styt|dw)Ncss |] }|jdkr|jVqdS)directory_nameN)namechosen).0gnamer"U/var/www/html/kangema/venv/lib/python3.10/site-packages/pyhanko_certvalidator/util.py sz#extract_dir_name..z>; only distinguished names are supported, and none were found.)next StopIterationNotImplementedErroruntag)rrrr"r"r#extract_dir_names  r) attr_certcms.AttributeCertificateV2cCsR|dd}|jdkr|j}n|j}t|dtjs|d}ntg}t|dS)Nac_infoissuerv1_form issuer_namez Could not extract AC issuer name)rr isinstancer Voidr GeneralNamesr))r* issuer_recaa_namesissuerv2r"r"r#extract_ac_issuer_dir_name#s     r6cert3Union[x509.Certificate, cms.AttributeCertificateV2]cCst|tjr |jSt|SN)r0r Certificater-r6)r7r"r"r# get_issuer_dn2s r;bytescCs6t|tjr |jSt|}d|j|ddjf}|S)Ns%s:%dr, serial_number)r0r r: issuer_serialr6sha256native)r7r/ result_bytesr"r"r#r>;s  r>ext_namecs6ztfdd|ddDWStyYdSw)Nc3s(|]}|djkr|djVqdS)extn_id extn_valueN)r@parsed)r extrBr"r#r$Msz)get_ac_extension_value..r, extensions)r%r&)r*rBr"rGr#get_ac_extension_valueIs   rIdps$Optional[x509.CRLDistributionPoints]ccsZ|durdS|D]!}|d}t|tjrq |jdkrq |jD] }|jdkr)|Vqq dS)Ndistribution_pointname_relative_to_crl_issueruniform_resource_identifier)r0r r1rr)rJrLdistribution_point_name general_namer"r"r#_get_absolute_http_crlsVs    rQList[x509.DistributionPoint]cCt|d}tt|S)Ncrl_distribution_pointsrIlistrQ)r*dps_extr"r"r#_get_ac_crl_dpsi  rXcCrS)N freshest_crlrU)r* delta_dps_extr"r"r#_get_ac_delta_crl_dpsprYr\cCsNt|tj}|rt|j}nt|}|r%|r||j|S|t||Sr9) r0r r:rVrTrXextenddelta_crl_distribution_pointsr\)r7 use_deltasis_pkcsourcesr"r"r#get_relevant_crl_dpsws   rbccsX|durdS|D] }|djdkr)|d}|jdkrq |j}|dr)|Vq dS)N access_methodocspaccess_locationrN)zhttp://zhttps://)r@rlower startswith)aia_extentrylocationurlr"r"r#_get_http_ocsp_urlss rlcCs*t|tjr |j}nt|d}tt|S)Nauthority_information_access)r0r r:"authority_information_access_valuerIrVrl)r7aiar"r"r# get_ocsp_urlss   rpcCsdt|tjr |j}|j}n t|d}t|d}|du}|dur,tdd|D}||fSd}||fS)NrmrTcss|] }|djdkVqdS)rcrdN)r@)r rir"r"r#r$sz'get_declared_revinfo..F)r0r r:rncrl_distribution_points_valuerIany)r7rocrl_dpshas_crlhas_ocspr"r"r#get_declared_revinfos   rv signature signed_datapublic_key_inforsigned_digest_algorithmalgos.SignedDigestAlgorithmcCsddlm}m}|j}|dkr|ddjdur|d|jdkrG|}t|tj s-J|ddj}|durA||jkrA|ddd i|d<t | } |d krq|j } t| tjs]Jtt| } | ||t| dS|dkr|j } t| tjsJt|tj sJ|d } | djd kstd | ddj} |dj}tt| }tjtj|d|d}tt| }| ||||dS|dkr|j } t| tjsJtt| }| |||dS|dkr |j } t| tjsJtt| }| ||t|dS|dkr"t| tjsJ| ||dS|dkr8t| t j!s0J| ||dStd|d)N)DSAParametersUnavailablePSSParameterMismatchr algorithm parametersz,DSA public key parameters were not provided. rsassa_psszPPublic key info includes PSS parameters that do not match those on the signaturerrsassa_pkcs1v15mask_gen_algorithmmgf1zOnly MFG1 is supported salt_length)r)mgfrecdsarrzSignature mechanism z is not supported.)"errorsr}r~signature_algor@rcopyr0r RSASSAPSSParamsrload_der_public_keydump hash_algor RSAPublicKeygetattrrupperverifyrPKCS1v15r'PSSMGF1r DSAPublicKeyrEllipticCurvePublicKeyECDSArEd25519PublicKeyrEd448PublicKey)rwrxryrzrr}r~sig_algopss_key_paramspub_keyrhmga mgf_md_namesalt_lenmgf_md pss_padding hash_specr"r"r# validate_sigsp        rListElemT)frozenc@sneZdZUded<dZded<eddd Zedd d ZddZe dddZ dddZ ddZ ddZ dS)ConsListOptional[ListElem]headNzOptional[ConsList[ListElem]]tailrConsList[ListElem]cCs tddS)Nrrr"r"r"r#emptys zConsList.emptyvaluercCst|tSr9)rr)rr"r"r#singsz ConsList.singccs0|}|jdur|jV|j}|jdusdSdSr9)rr)selfcurr"r"r#__iter__#s  zConsList.__iter__cCs,|}d}|jdur|j}|j}|jdus |Sr9)rr)rrresultr"r"r#last)s  z ConsList.lastcCs t||Sr9r)rrr"r"r#cons2 z ConsList.conscCsdttt|dS)Nz ConsList())rVreversedrr"r"r#__repr__5szConsList.__repr__cCs |jduSr9rrr"r"r#__bool__8rzConsList.__bool__)rr)rrrr)rr)rrrr)__name__ __module__ __qualname____annotations__r staticmethodrrrpropertyrrrrr"r"r"r#rs       rTc@seZdZddZdS)CancelableAsyncIteratorcstr9)r'rr"r"r#cancel@szCancelableAsyncIterator.cancelN)rrrrr"r"r"r#r?s r)rrrrrr)r*r+rr)r7r8rr)r7r8rr<)r*r+rBr)rJrK)r*r+rrR)r7r8rrR)r7r8r9)rwr<rxr<ryrrzr{)/ __future__rabc dataclassesrtypingrrrrrr asn1cryptor r r r asn1crypto.keysrcryptography.hazmat.primitivesrr)cryptography.hazmat.primitives.asymmetricrrrrrrr)r6r;r>rIrQrXr\rbrlrprvrrrrABCrr"r"r"r#s6              O%