o ˷eQ @sHddlZddlmZddlmZddlmZmZmZm Z m Z ddl m Z ej e jejejeje jfZGdddZGdd d Z dd ed ejed ejd ejeje ejejejejffddZ dd ed ejed ejd efddZej ejefZdejedejedejejdejejedej d ef ddZ!dS)N)x509) serialization)dsaeced25519ed448rsa)PRIVATE_KEY_TYPESc@seZdZdejdejefddZe dejefddZ e dejfdd Z d e de fd d Zdefd dZdefddZdS)PKCS12Certificatecert friendly_namecCs>t|tjs td|durt|tstd||_||_dS)Nz!Expecting x509.Certificate objectz#friendly_name must be bytes or None) isinstancer Certificate TypeErrorbytes_cert_friendly_name)selfr r rj/var/www/ideatree/venv/lib/python3.10/site-packages/cryptography/hazmat/primitives/serialization/pkcs12.py__init__s  zPKCS12Certificate.__init__returncC|jSN)rrrrrr +zPKCS12Certificate.friendly_namecCrrrrrrr certificate/rzPKCS12Certificate.certificateothercCs&t|tstS|j|jko|j|jkSr)r r NotImplementedrr rrrrr__eq__3s   zPKCS12Certificate.__eq__cCst|j|jfSr)hashrr rrrr__hash__<szPKCS12Certificate.__hash__cCsd|j|jS)Nz+)formatrr rrrr__repr__?szPKCS12Certificate.__repr__N)__name__ __module__ __qualname__rrtypingOptionalrrpropertyr robjectboolr!intr#strr%rrrrr s   r c@seZdZdejedejedejefddZe dejefddZ e dejefd d Z e dejefd d Z d e defddZdefddZdefddZdS)PKCS12KeyAndCertificateskeyr additional_certscCsx|durt|tjtjtjtjt j fst d|dur$t|t s$t dt dd|Ds1t d||_||_||_dS)NLKey must be RSA, DSA, EllipticCurve, ED25519, or ED448 private key, or None.z/cert must be a PKCS12Certificate object or Nonecss|]}t|tVqdSr)r r ).0add_certrrr \s  z4PKCS12KeyAndCertificates.__init__..z@all values in additional_certs must be PKCS12Certificate objects)r r RSAPrivateKeyr DSAPrivateKeyrEllipticCurvePrivateKeyrEd25519PrivateKeyrEd448PrivateKeyrr all_keyr_additional_certs)rr1r r2rrrrFs.   z!PKCS12KeyAndCertificates.__init__rcCrr)r=rrrrr1hrzPKCS12KeyAndCertificates.keycCrrrrrrrr lrzPKCS12KeyAndCertificates.certcCrr)r>rrrrr2prz)PKCS12KeyAndCertificates.additional_certsrcCs2t|tstS|j|jko|j|jko|j|jkSr)r r0rr1r r2r rrrr!ts    zPKCS12KeyAndCertificates.__eq__cCst|j|jt|jfSr)r"r1r tupler2rrrrr#~sz!PKCS12KeyAndCertificates.__hash__cCsd}||j|j|jS)Nz@)r$r1r r2)rfmtrrrr%sz!PKCS12KeyAndCertificates.__repr__N)r&r'r(r)r*r r Listrr+r1r r2r,r-r!r.r#r/r%rrrrr0Es" " r0datapasswordbackendrcCddlm}|||SNrrD),cryptography.hazmat.backends.openssl.backendrD%load_key_and_certificates_from_pkcs12rBrCrDosslrrrload_key_and_certificatess rLcCrErF)rHrD load_pkcs12rJrrrrMs  rMnamer1r casencryption_algorithmcCs|durt|tjtjtjtjt j fst d|dur%t|t j s%t d|dur:t|}tdd|Ds:t dt|tjsDt d|durR|durR|sRtddd lm}||||||S) Nr3z"cert must be a certificate or Nonecss |] }t|tjtfVqdSr)r rrr )r4valrrrr6s z1serialize_key_and_certificates..z&all values in cas must be certificateszFKey encryption algorithm must be a KeySerializationEncryption instancez1You must supply at least one of key, cert, or casrrG)r rr7rr8rr9rr:rr;rrrlistr<rKeySerializationEncryption ValueErrorrHrD(serialize_key_and_certificates_to_pkcs12)rNr1r rOrPrDrrrserialize_key_and_certificatess@     rVr)"r) cryptographyrcryptography.hazmat.primitivesr)cryptography.hazmat.primitives.asymmetricrrrrr/cryptography.hazmat.primitives.asymmetric.typesr Unionr7r8r9r:r;_ALLOWED_PKCS12_TYPESr r0rr*AnyTuplerrArLrM_PKCS12_CAS_TYPESIterablerSrVrrrrst    'F