U
    <ßôg2  ã                   @   s´  d dl Z d dlZd dl mZmZ d dlmZ d dlmZmZmZ d dl	m
Z
 d dlmZmZ d dlmZ d dlmZ d d	lmZ d d
lmZmZmZmZmZmZ d dlmZ d dlmZ d dlm Z m!Z! d dl"m#Z#m$Z$ d dl%m&Z& d dl'm(Z( dddddddgZ)G dd„ dej*ƒZ+eddG dd„ dƒƒZ,eddG dd„ dƒƒZ-eddG dd„ dƒƒZ.eddG dd„ dƒƒZ/e0e+eee dœd d!„Z1d$e.ee ee0 ee ed"œd#d„ZdS )%é    N)Ú	dataclassÚfield)Údatetime)Ú	GeneratorÚListÚOptional)Úx509)ÚCertValidationPolicySpecÚValidationDataHandlers)Ú"bootstrap_validation_data_handlers)ÚFetcherBackend)ÚRequestsFetcherBackend)ÚKnownPOEÚ
POEManagerÚPOETypeÚValidationObjectÚValidationObjectTypeÚdigest_for_poe)ÚValidationTimingInfo)ÚNonRevokedStatusAssertion)ÚCRLContainerÚOCSPContainer)ÚDEFAULT_DIFF_POLICYÚ
DiffPolicy)ÚKeyUsageConstraints)ÚCMSAlgorithmUsagePolicyÚSignatureValidationSpecÚPdfSignatureValidationSpecÚRevinfoOnlineFetchingRuleÚLocalKnowledgeÚRevocationInfoGatheringSpecr   r   c                   @   s$   e Zd Ze ¡ Ze ¡ Ze ¡ ZdS )r   N)Ú__name__Ú
__module__Ú__qualname__ÚenumÚautoZALWAYS_FETCHÚNO_HISTORICAL_FETCHÚ
LOCAL_ONLY© r(   r(   úG/tmp/pip-unpacked-wheel-w101_d3s/pyhanko/sign/validation/policy_decl.pyr   .   s   T)Úfrozenc                   @   s.   e Zd ZU ejZeed< eedZ	e
ed< dS )r    Úonline_fetching_rule©Údefault_factoryÚfetcher_backendN)r!   r"   r#   r   r&   r+   Ú__annotations__r   r   r.   r   r(   r(   r(   r)   r    B   s
   
ÿ
ÿc                   @   s¦   e Zd ZU eedZee ed< eedZ	ee
 ed< eedZeej ed< eedZee ed< eedZee ed< edœdd	„Zeeed
d
f dœdd„Zd
S )r   r,   Úknown_ocspsÚ
known_crlsÚknown_certsÚ
known_poesÚnonrevoked_assertions)Úpoe_managerc                 C   s   | j D ]}| |¡ qd S ©N)r3   Zregister_known_poe)Úselfr5   Úpoer(   r(   r)   Úadd_to_poe_managerV   s    
z!LocalKnowledge.add_to_poe_managerN)ÚdtÚreturnc                 c   sÀ   | j D ] }tj|t|j|ƒtjdV  q| jD ]*}tt	|j
 ¡ ƒ|tjttj|ƒdV  q.| jD ]*}tt	|j ¡ ƒ|tjttj|ƒdV  q`| jD ](}tt	| ¡ ƒ|tjttj|ƒdV  q’d S )N)Úpoe_timeÚpoe_type)Údigestr<   r=   Zvalidation_object)r3   ÚdataclassesÚreplaceÚminr<   r   ZPROVIDEDr1   r   r   Zcrl_dataÚdumpr   r   ÚCRLr0   Zocsp_response_dataZOCSP_RESPONSEr2   ÚCERTIFICATE)r7   r:   r8   ÚcrlÚocspÚcertr(   r(   r)   Úassert_existence_known_atZ   sH    

ý

 ÿü

 ÿü


 ÿüz(LocalKnowledge.assert_existence_known_at)r!   r"   r#   r   Úlistr0   r   r   r/   r1   r   r2   r   ÚCertificater3   r   r4   r   r   r9   r   r   rH   r(   r(   r(   r)   r   L   s   
ÿþc                   @   sp   e Zd ZU eed< eƒ Zeed< dZee ed< dZ	ee ed< e
ƒ Ze
ed< eƒ Zeed< dZee ed< dS )	r   Zcert_validation_policyÚrevinfo_gathering_policyNÚts_cert_validation_policyÚac_validation_policyÚlocal_knowledgeÚkey_usage_settingsÚsignature_algorithm_policy)r!   r"   r#   r	   r/   r    rK   rL   r   rM   r   rN   r   rO   rP   r   r(   r(   r(   r)   r   €   s   
ÿ
c                   @   s&   e Zd ZU eed< eZee ed< dS )r   Zsignature_validation_specÚdiff_policyN)	r!   r"   r#   r   r/   r   rQ   r   r   r(   r(   r(   r)   r      s   
)ÚhistÚruleÚbackendr;   c                 C   s(   |t jkrd S |t jkr | r d S |S d S r6   )r   r'   r&   ©rR   rS   rT   r(   r(   r)   Ú_backend_if_necessary“   s
    
rV   )ÚspecÚtiming_infoÚis_historicalÚpoe_manager_overrider;   c           	      C   s^   |d kr|d k	r|j nd}n|}| j}t||j|jd}| j}t||j|j|j	||j
d}|S )NFrU   )ZfetchersZcrlsZocspsÚcertsr5   r4   )Zpoint_in_time_validationrK   rV   r+   r.   rN   Ú!_certvalidator_bootstrap_handlersr1   r0   r2   r4   )	rW   rX   rY   rZ   rR   Zrevinfo_policyr.   Z	knowledgeÚhandlersr(   r(   r)   r   ž   s,    ÿýýú)NNN)2r?   r$   r   r   r   Útypingr   r   r   Z
asn1cryptor   Zpyhanko_certvalidator.contextr	   r
   r   r\   Zpyhanko_certvalidator.fetchersr   Z0pyhanko_certvalidator.fetchers.requests_fetchersr   Zpyhanko_certvalidator.ltv.poer   r   r   r   r   r   Zpyhanko_certvalidator.ltv.typesr   Z!pyhanko_certvalidator.policy_declr   Z&pyhanko_certvalidator.revinfo.archivalr   r   Zpyhanko.sign.diff_analysisr   r   Zpyhanko.sign.validationr   Zpyhanko.sign.validation.utilsr   Ú__all__ÚEnumr   r    r   r   r   ÚboolrV   r(   r(   r(   r)   Ú<module>   s`    ù	3  þ   üû