o 5׾g"@sddlZddlZddlZddlmZddlmZmZmZm Z m Z m Z ddl m Z ddlmZddlmZddlmZmZddlmZgd Zed d Gd d d ejZGdddejZed d GdddejZde eeffddZdS)N) dataclass)AnyIterableListOptionalSetUnion)x509)api)ConfigurationError)load_cert_from_pemderload_certs_from_pemder) get_and_apply) TokenCriteriaPKCS11PinEntryModePKCS11SignatureConfigT)frozenc@sBeZdZUdZdZeeed< dZee ed< e ddZ dS)rzL .. versionadded:: 0.14.0 Search criteria for a PKCS#11 token. Nlabelserialc CsNz t|d|d<WdStyYdSty&}ztd|d}~ww)NrzWsz8PKCS11PinEntryMode.parse_mode_setting...) isinstancer#r __members__upperrr joinPROMPTSKIP)r'rrrparse_mode_settingOs  z%PKCS11PinEntryMode.parse_mode_settingN) rr r!r"enumautor4DEFERr5 staticmethodrr6rrrrr/s rcsDeZdZUdZeed< dZeeed< dZee ed< dZ ee j ed< dZ eeed< dZeee j ed< dZeeed < dZee ed < dZeeed < dZeeed < ejZeed < dZeeeed< dZeed< dZeed< dZeed< ede effdd Z!efddZ"Z#S)rz Configuration for a PKCS#11 signature. This class is used to load PKCS#11 setup information from YAML configuration. module_pathN cert_labelcert_idsigning_certificatetoken_criteria other_certs key_labelkey_idslot_nouser_pin prompt_pinrother_certs_to_pullT bulk_fetchF prefer_pss raw_mechanism keys_suppliedcstdd|DdS)NcSsh|]}|dvr|qS)) token_labelz token-labelr)r,krrr s z:PKCS11SignatureConfig.check_config_keys..)supercheck_config_keys)rrJ __class__rrrOs z'PKCS11SignatureConfig.check_config_keyscs~t||dd}t|tr|f}tt||d<|dd}|dur,t||d<d|vr8t|d|d<d|vrDt|d|d<d|vrld|vrld|vrXd|vrXt dd|vrb|d|d<d|vrl|d|d<d|vrd|vrd|vrd|vr|d|d<d|vr|d|d<t |d t j t j d |d <d |vrtd t|d }d |vrd|i|d <dS|d d|dSdS)Nr@rr>rBr=rAr<zYEither 'key_id', 'key_label', 'cert_label' or 'cert_id',must be provided in PKCS#11 setuprE)defaultrKz?'token_label' is deprecated, use 'token_criteria.label' insteadr?r)rNrgetr0r#listr r _process_pkcs11_id_valuer rrr6r4warningswarnDeprecationWarningpop setdefault)rrr@ cert_filelblrPrrrsd          z%PKCS11SignatureConfig.process_entries)$rr r!r"r#r$r<rr=r%r>r Certificater?rr@rrArBrCintrDrr4rErFrrGboolrHrIr&rrOr __classcell__rrrPrr`sH       rr-cCst|tr t|gSt|Sr))r0r^r%rr)r-rrrrUs   rU) rr7rV dataclassesrtypingrrrrrr asn1cryptor pyhanko.configr pyhanko.config.errorsr pyhanko.keysr r pyhanko.pdf_utils.miscr__all__ConfigurableMixinrEnumrrr#r^rUrrrrs$      12