Csi$XddlZddlZddlZddlmZddlmZmZmZm Z m Z m Z ddl m Z mZddlmZddlmZddlmZmZddlmZgd Zed Gd d ej2ZGddej6Zed Gddej2Zde eeffdZ y)N) dataclass)AnyIterableListOptionalSetUnion)algosx509)api)ConfigurationError)load_cert_from_pemderload_certs_from_pemder) get_and_apply)PKCS11PinEntryModePKCS11SignatureConfig TokenCriteriaT)frozencNeZdZUdZdZeeed< dZee ed< e dZ y)rzL .. versionadded:: 0.14.0 Search criteria for a PKCS#11 token. Nlabelserialc tj|d|d<y#t$rYyt$r}t d|d}~wwxYw)Nrzz8PKCS11PinEntryMode.parse_mode_setting..Vs J!aff Js!.) isinstancer&r __members__upperrr joinPROMPTSKIP)r-s r parse_mode_settingz%PKCS11PinEntryMode.parse_mode_settingNs eS ! )55ekkmDD.3")) 8J8O8O  (-eY6Gyy J7I JJK1N s A6B N) r"r#r$r%enumautor<DEFERr= staticmethodrr>r*r+r rr.sfTYY[F DIIKE 499;D # *>  r+rceZdZUdZeed< dZeeed< dZee ed< dZ ee jed< dZ eeed< dZeee jed< dZeeed < dZee ed < dZeeed < dZeeed < ej.Zeed < dZeeeed< dZeed< dZeed< dZeed< dZeed< dZ ee!jDed< e#de$effd Z%e#fdZ&xZ'S)rz Configuration for a PKCS#11 signature. This class is used to load PKCS#11 setup information from YAML configuration. module_pathN cert_labelcert_idsigning_certificatetoken_criteria other_certs key_labelkey_idslot_nouser_pin prompt_pinr*other_certs_to_pullT bulk_fetchF prefer_pss raw_mechanismonly_resident_certssignature_mechanism keys_suppliedcRt||Dchc]}|dvr| c}ycc}w)N) token_labelz token-label)supercheck_config_keys)rrUk __class__s r rYz'PKCS11SignatureConfig.check_config_keyss8 !' ::   s $ct|||jdd}t|tr|f}t t ||d<|jdd}|t||d<d|vrt|d|d<d|vrt|d|d<d|vr/d|vr+d|vrd|vr tdd|vr|d|d<d|vr|d|d<d|vr d|vrd|vrd|vr|d|d<d|vr|d|d<t|d tjtj |d <d |vrMtjd t |j#d }d |vrd|i|d <y|d j%d|yy)NrIr*rGrKrFrJrEzYEither 'key_id', 'key_label', 'cert_label' or 'cert_id',must be provided in PKCS#11 setuprN)defaultrWz?'token_label' is deprecated, use 'token_criteria.label' insteadrHr)rXr!getr8r&listrr_process_pkcs11_id_valuer rrr>r<warningswarnDeprecationWarningpop setdefault)rrrI cert_filelblr[s r r!z%PKCS11SignatureConfig.process_entriess  ,!oomR8 k3 '&.K%)*@*M%N M"OO$94@  1F2K- . { "$<H%%K !  #%=I&&K " k )hk.I + K0O(8K'(3I(> H%{*+6|+D K(  +,%[8;&)4X)> I&k),7 ,D L)$1    1 1&-- % L! K ' MM"  //-0C{218# ,-,-88#F (r+)(r"r#r$r%r&r'rErrFr(rGr CertificaterHrrIrrJrKrLintrMrr<rNrOrrPboolrQrRrSrTr SignedDigestAlgorithmr)rrYr! __classcell__)r[s@r rr_s3 $J $4#GXe_#16:$"2"23: /3NH]+248K$t//018&#Ix}# #FHUO""GXc]!#Hhsm" &8%>%>J">46(3-05 JJ M4!&%BF%"="=>E  c#h    =G=Gr+rr5cdt|tr t|gStj|Sr1)r8rir(rr)r5s r r`r`$s)!SaSz!!!$$r+)!rr?ra dataclassesrtypingrrrrrr asn1cryptor r pyhanko.configr pyhanko.config.errorsr pyhanko.keysrrpyhanko.pdf_utils.miscr__all__ConfigurableMixinrEnumrrr&rir`r*r+r rxs !<<"4F0 J $C)):..b $AGC11AGAGH%c3h%r+