U Nf"@sddlZddlZddlZddlmZddlmZmZmZm Z m Z m Z ddl m Z ddlmZddlmZddlmZmZddlmZd d d gZed d Gdd d ejZGdd d ejZed d Gdd d ejZe eefdddZdS)N) dataclass)AnyIterableListOptionalSetUnion)x509)api)ConfigurationError)load_cert_from_pemderload_certs_from_pemder) get_and_apply TokenCriteriaPKCS11PinEntryModePKCS11SignatureConfigT)frozenc@s>eZdZUdZdZeeed<dZee ed<e ddZ dS)rzL .. versionadded:: 0.14.0 Search criteria for a PKCS#11 token. Nlabelserialc CsZzt|d|d<Wn>tk r*Yn,tk rT}ztd|W5d}~XYnXdS)NrzVsz8PKCS11PinEntryMode.parse_mode_setting...) isinstancer#r __members__upperrr joinPROMPTSKIP)r'rrrparse_mode_settingOs  z%PKCS11PinEntryMode.parse_mode_settingN) rr r!r"enumautor4ZDEFERr5 staticmethodrr6rrrrr/s   cs&eZdZUdZeed<dZeeed<dZee ed<dZ ee j ed<dZ eeed<dZeee j ed<dZeeed <dZee ed <dZeeed <dZeeed <ejZeed <dZeeeed<dZeed<dZeed<dZeed<ee edfdd Z!efddZ"Z#S)rz Configuration for a PKCS#11 signature. This class is used to load PKCS#11 setup information from YAML configuration. module_pathN cert_labelcert_idsigning_certificatetoken_criteria other_certs key_labelkey_idslot_nouser_pin prompt_pinrother_certs_to_pullT bulk_fetchF prefer_pss raw_mechanism) keys_suppliedcstdd|DdS)NcSsh|]}|dkr|qS)) token_labelz token-labelr)r,krrr sz:PKCS11SignatureConfig.check_config_keys..)supercheck_config_keys)rrI __class__rrrNs z'PKCS11SignatureConfig.check_config_keyscst||dd}t|tr(|f}tt||d<|dd}|dk rXt||d<d|krpt|d|d<d|krt|d|d<d|krd|krd|krd|krt dd|kr|d|d<d|kr|d|d<d|kr"d|kr"d|kr"d|kr |d|d<d|kr"|d|d<t |d t j t j d |d <d |krtd t|d }d |krrd|i|d <n|d d|dS)Nr?rr=rAr<r@r;zYEither 'key_id', 'key_label', 'cert_label' or 'cert_id',must be provided in PKCS#11 setuprD)defaultrJz?'token_label' is deprecated, use 'token_criteria.label' insteadr>r)rMrgetr0r#listr r _process_pkcs11_id_valuer rrr6r4warningswarnDeprecationWarningpop setdefault)rrr? cert_fileZlblrOrrrsh              z%PKCS11SignatureConfig.process_entries)$rr r!r"r#r$r;rr<r%r=r Z Certificater>rr?rr@rArBintrCrr4rDrErrFboolrGrHr&rrNr __classcell__rrrOrr`s(      r-cCs"t|trt|gSt|SdSr))r0r[r%rrr^rrrrTs  rT) rr7rUZ dataclassesrtypingrrrrrrZ asn1cryptor Zpyhanko.configr Zpyhanko.config.errorsr Z pyhanko.keysr r Zpyhanko.pdf_utils.miscr__all__ZConfigurableMixinrEnumrrr#r[rTrrrrs"       12