U
    <ßôg—  ã                   @   s  d dl Z d dlmZ d dlmZmZ d dlmZmZmZ d dlm	Z
 d dlmZmZ d dlmZ dd	lmZmZmZ dd
lmZ ddddddddgZG dd„ dƒZG dd„ deƒZG dd„ deƒZG dd„ deƒZG dd„ deƒZG dd„ deƒZG dd„ de jƒZG dd„ de jƒZdS )é    N)Údatetime)ÚIterableÚOptional)ÚalgosÚcmsÚcore)Úpdf)ÚtspÚx509)Úhashesé   )Úas_signing_certificate_v2Úget_pyca_cryptography_hashÚsimple_cms_attribute)ÚTimeStamperÚSignedAttributeProviderSpecÚUnsignedAttributeProviderSpecÚCMSAttributeProviderÚSigningTimeProviderÚSigningCertificateV2ProviderÚAdobeRevinfoProviderÚCMSAlgorithmProtectionProviderÚTSTProviderc                   @   s:   e Zd ZU dZeed< d
dd„Zdeej	 dœdd„Z
d	S )r   zB
    Base class to provide asynchronous CMS attribute values.
    Úattribute_typeFc                 Ã   s   t ‚dS )a  
        Build the attribute value asynchronously.

        :param dry_run:
            ``True`` if the signer is operating in dry-run (size estimation)
            mode.
        :return:
            An attribute value appropriate for the attribute type.
        N©ÚNotImplementedError©ÚselfÚdry_run© r   ú;/tmp/pip-unpacked-wheel-w101_d3s/pyhanko/sign/attributes.pyÚbuild_attr_value(   s    
z%CMSAttributeProvider.build_attr_value©Úreturnc                 Ã   s.   | j |dI d H }|d k	r&t| j|ƒS d S d S )N)r   )r!   r   r   )r   r   Úvaluer   r   r    Úget_attribute4   s    z"CMSAttributeProvider.get_attributeN)F)F)Ú__name__Ú
__module__Ú__qualname__Ú__doc__ÚstrÚ__annotations__r!   r   r   ZCMSAttributer%   r   r   r   r    r      s   

c                   @   s@   e Zd ZU dZdZeed< ejdœdd„Z	de
jdœd	d
„ZdS )r   z•
    Provide a value for the signing-certificate-v2 attribute.

    :param signing_cert:
        Certificate containing the signer's public key.
    Zsigning_certificate_v2r   ©Úsigning_certc                 C   s
   || _ d S ©Nr,   )r   r-   r   r   r    Ú__init__F   s    z%SigningCertificateV2Provider.__init__Fr"   c                 Ã   s
   t | jƒS r.   )r   r-   r   r   r   r    r!   I   s    z-SigningCertificateV2Provider.build_attr_valueN)F)r&   r'   r(   r)   r   r*   r+   r
   ÚCertificater/   r	   ZSigningCertificateV2r!   r   r   r   r    r   <   s   
c                   @   s>   e Zd ZU dZdZeed< edœdd„Zde	j
dœd	d
„ZdS )r   z¦
    Provide a value for the signing-time attribute (i.e. an otherwise
    unauthenticated timestamp).

    :param timestamp:
        Datetime object to include.
    Zsigning_timer   ©Ú	timestampc                 C   s
   || _ d S r.   r1   )r   r2   r   r   r    r/   X   s    zSigningTimeProvider.__init__Fr"   c                 Ã   s   t  dt | j¡i¡S )NZutc_time)r   ÚTimer   ÚUTCTimer2   r   r   r   r    r!   [   s    z$SigningTimeProvider.build_attr_valueN)F)r&   r'   r(   r)   r   r*   r+   r   r/   r   r3   r!   r   r   r   r    r   M   s   
c                   @   sD   e Zd ZU dZdZeed< ejdœdd„Z	de
ej dœd	d
„ZdS )r   z£
    Yield Adobe-style revocation information for inclusion into a CMS
    object.

    :param value:
        A (pre-formatted) RevocationInfoArchival object.
    Zadobe_revocation_info_archivalr   ©r$   c                 C   s
   || _ d S r.   r5   )r   r$   r   r   r    r/   p   s    zAdobeRevinfoProvider.__init__Fr"   c                 Ã   s   | j S r.   r5   r   r   r   r    r!   s   s    z%AdobeRevinfoProvider.build_attr_valueN)F)r&   r'   r(   r)   r   r*   r+   Úasn1_pdfZRevocationInfoArchivalr/   r   r!   r   r   r   r    r   e   s   
 ÿþc                   @   s>   e Zd ZU dZeed< eejdœdd„Zde	j
dœdd	„Zd
S )r   Zcms_algorithm_protectionr   ©Údigest_algoÚsignature_algoc                 C   s   || _ || _d S r.   r7   )r   r8   r9   r   r   r    r/   |   s    z'CMSAlgorithmProtectionProvider.__init__Fr"   c                 Ã   sP   d| j i}| j dkr8| j}|d jdkr8dt d¡dœ}t t |¡| jdœ¡S )NÚ	algorithmÚshake256Úed448Zshake256_leni   )r:   Ú
parameters)Údigest_algorithmÚsignature_algorithm)	r8   r9   Znativer   ZIntegerr   ÚCMSAlgorithmProtectionr   ZDigestAlgorithm)r   r   Zdigest_algorithm_argsZmechr   r   r    r!   ‚   s    

þÿüÿz/CMSAlgorithmProtectionProvider.build_attr_valueN)F)r&   r'   r(   r   r*   r+   r   ZSignedDigestAlgorithmr/   r   r@   r!   r   r   r   r    r   y   s   
 ÿ ÿþc                   @   s4   e Zd Zd
eeeedœdd„Zdejdœdd„Z	d	S )r   Úsignature_time_stamp_tokenF)r>   Ú
data_to_tsÚtimestamperÚ	attr_typec                 C   s"   || _ || _|| _|| _|| _d S r.   )r   r>   rC   ÚdataÚ	prehashed)r   r>   rB   rC   rD   rF   r   r   r    r/   ™   s
    zTSTProvider.__init__r"   c                 Ã   sd   | j }| jr| j}n&t|ƒ}t |¡}| | j¡ | ¡ }|rL| j 	|¡}n| j 
||¡}|I d H S r.   )r>   rF   rE   r   r   ÚHashÚupdateÚfinalizerC   Zasync_dummy_responseZasync_timestamp)r   r   r>   ÚdigestZmd_specZmdZts_coror   r   r    r!   §   s    
zTSTProvider.build_attr_valueN)rA   F)F)
r&   r'   r(   r*   Úbytesr   r/   r   ZContentInfor!   r   r   r   r    r   ˜   s     úûc                   @   s&   e Zd ZdZeeee dœdd„ZdS )r   z¥
    .. versionadded:: 0.14.0

    Interface for setting up signed attributes, independently of the
    :class:`~pyhanko.sign.signers.pdf_cms.Signer` hierarchy.
    )Údata_digestr>   r#   c                 C   s   t ‚dS )zÑ
        Lazily set up signed attribute providers.

        :param data_digest:
            The digest of the data to be signed.
        :param digest_algorithm:
            The digest algorithm used.
        Nr   )r   rL   r>   r   r   r    Úsigned_attr_providers¿   s    z1SignedAttributeProviderSpec.signed_attr_providersN)	r&   r'   r(   r)   rK   r*   r   r   rM   r   r   r   r    r   ·   s
    þc                   @   s*   e Zd ZdZeejeee	 dœdd„Z
dS )r   z§
    .. versionadded:: 0.14.0

    Interface for setting up unsigned attributes, independently of the
    :class:`~pyhanko.sign.signers.pdf_cms.Signer` hierarchy.
    )Ú	signatureÚsigned_attrsr>   r#   c                 C   s   t ‚dS )a>  
        Lazily set up unsigned attribute providers.

        :param signature:
            The signature computed over the signed attributes.
        :param signed_attrs:
            Signed attributes over which the signature was taken.
        :param digest_algorithm:
            The digest algorithm used.
        Nr   )r   rN   rO   r>   r   r   r    Úunsigned_attr_providersÕ   s    z5UnsignedAttributeProviderSpec.unsigned_attr_providersN)r&   r'   r(   r)   rK   r   ZCMSAttributesr*   r   r   rP   r   r   r   r    r   Í   s   	û)Úabcr   Útypingr   r   Z
asn1cryptor   r   r   r   r6   r	   r
   Zcryptography.hazmat.primitivesr   Zgeneralr   r   r   Z
timestampsr   Ú__all__r   r   r   r   r   r   ÚABCr   r   r   r   r   r    Ú<module>   s2   ø