U Nf!@sddlZddlZddlmZmZmZddlZddlmZddl m Z ddl m Z ddl mZmZddlmZmZmZddlmZdd lmZmZdd lmZmZmZd d gZGd ddZGdd d eZedddZ Gdd d eZ!edddZ"dS)N)ContextManagerListOptional) CLIContext) grab_certs) CLIConfig)SigningCommandPluginregister_signing_plugin)_warn_empty_passphraselogger readable_file)ConfigurationError)PemDerSignatureConfigPKCS12SignatureConfig)Signersigner_from_p12_configsigner_from_pemder_config PemderPlugin PKCS12Pluginc@s*eZdZedddZddZddZdS) KeyFileConfigWrapper)configcCs&|j}|di|_|di|_dS)Nz pemder-setupsz pkcs12-setups)Z raw_configget pemder_setups pkcs12_setups)selfrZ config_dictrG/tmp/pip-unpacked-wheel-fbovo6ns/pyhanko/cli/commands/signing/simple.py__init__szKeyFileConfigWrapper.__init__cCs>z|j|}Wn$tk r2td|dYnXt|S)Nz There's no PKCS#12 setup named '')rKeyErrorr r from_configrnamesetuprrrget_pkcs12_config s z&KeyFileConfigWrapper.get_pkcs12_configcCs>z|j|}Wn$tk r2td|dYnXt|S)Nz There's no PEM/DER setup named 'r)rrr rr r!rrrget_pemder_config's z&KeyFileConfigWrapper.get_pemder_configN)__name__ __module__ __qualname__rrr$r%rrrrrsrc@s<eZdZdZdZeejdddZe e e dddZ d S) rZpemderz$read key material from PEM/DER filesreturnc Csptjddtddtjddtddtjdtdd d tjd tdd d tjdddtdddtjddtddddgS)N)z--keyz)file containing the private key (PEM/DER)F)helptyperequired)z--certz2file containing the signer's certificate (PEM/DER)z--chainTzkfile(s) containing the chain of trust for the signer's certificate (PEM/DER). May be passed multiple times.r,multipler+)z--pemder-setupzCname of preconfigured PEM/DER profile (overrides all other options)r,r-r+z --passfilez2file containing the passphrase for the private keyrstdinr+r-r, show_defaultz --no-passz*assume the private key file is unencryptedr+r,Zis_flagdefaultr6)clickOptionr strFileboolrrrr click_options3sP zPemderPlugin.click_optionscontextr*c stjfdd}|S)Nc3stfVdSN)_pemder_signerrrBkwargsrr_mfsz&PemderPlugin.create_signer.._m contextlibcontextmanagerrrBrFrGrrEr create_signercszPemderPlugin.create_signerN) r&r'r(subcommand_name help_summaryrr:r;r@rrrrLrrrrr/s 1)ctxc Cs|rv|j}|dkrtdzt||}Wqtk rr} z&d|} tj| | dt| W5d} ~ XYqXn*|r~|stdnt||t ||j d}|j dk r|j } nZ|dk r| d} |n6|jr|stjddd} | s td} nd} t|| d S) Nz7The --pemder-setup option requires a configuration filez"Error while reading PEM/DER setup exc_infozXEither both the --key and --cert options, or the --pemder-setup option must be provided.)key_file cert_file other_certs prefer_pssutf-8zKey passphrase: prompt)Zprovided_key_passphrase)rr:ClickExceptionrr%r r errorrrrUZkey_passphrasereadlinestripencodecloseprompt_passphrasegetpassr r) rOkeycertchainZ pemder_setuppassfileno_pass cli_configZ pemder_configemsg passphraserrrrDmsN    rDc@sPeZdZdZdZeejdddZeej dddZ e e e dd d Zd S) rZpkcs12z$read key material from PKCS#12 filesr)cCstjdtddgS)N)pfxF)r,r-)r:Argumentr r?rrrclick_extra_argumentssz"PKCS12Plugin.click_extra_argumentsc CsPtjdtdddtjdtdddtjd d dtd d d tjddtddddgS)N)z --p12-setupFzCname of preconfigured PKCS#12 profile (overrides all other options)r1r.TzPEM/DER file(s) containing extra certificates to embed (e.g. chain of trust not embedded in the PKCS#12 file)May be passed multiple times.r/r2z4file containing the passphrase for the PKCS#12 file.r3r4r5r7z&assume the PKCS#12 file is unencryptedr8)r:r;r<r r=r>r?rrrr@s8zPKCS12Plugin.click_optionsrAc stjfdd}|S)Nc3stfVdSrC)_pkcs12_signerrrErrrGsz&PKCS12Plugin.create_signer.._mrHrKrrErrLszPKCS12Plugin.create_signerN)r&r'r(rMrNrr:rkrlr;r@rrrrLrrrrrs#c Cs |rv|j}|dkrtdzt||}Wqtk rr}z&d|} tj| |dt| W5d}~XYqXn$|stdnt|t ||j d}|j dk r|j } nT|dk r| d} |n0|jr|stjddd} | std} nd} t|| d S) Nz4The --p12-setup option requires a configuration filez#Error while reading PKCS#12 config rPzCEither the PFX argument or the --p12-setup option must be provided.)Zpfx_filerTrUrVzPKCS#12 passphrase: rW)Zprovided_pfx_passphrase)rr:rYrr$r r rZrrrUZpfx_passphraser[r\r]r^r_r`r r) rOrjrcrdZ p12_setuprerfZ pkcs12_configrgrhrirrrrmsP     rm)#rIr`typingrrrr:Zpyhanko.cli._ctxrZpyhanko.cli._trustrZpyhanko.cli.configrZpyhanko.cli.plugin_apirr Zpyhanko.cli.utilsr r r Zpyhanko.config.errorsr Zpyhanko.config.local_keysrrZpyhanko.sign.signers.pdf_cmsrrr__all__rrrDrrmrrrrs$    ? 63