U ;g@s ddlZddlZddlmZddlmZmZddlmZmZm Z m Z m Z ddl m Z mZddlmZmZddd d d d gZejGd ddejZe eeeejfZee edddZeddGdddZejGdd d ejZeddGdd d Zeeddd ZGdd d ZdS)N) dataclass)datetimetimezone)AnyDictIteratorOptionalUnion)corex509) CRLContainer OCSPContainerValidationObjectTypeValidationObjectPOETypeKnownPOE POEManagerdigest_for_poec@s8eZdZdZdZdZdZdZdZdZ dZ d Z d d Z d S) rzF Types of validation objects recognised by ETSI TS 119 102-2. certificateCRL OCSPResponse timestampZevidencerecordZ publicKeyZ signedDataothercCs d|jS)Nz!urn:etsi:019102:validationObject:valueselfrA/tmp/pip-unpacked-wheel-hgp_x7fx/pyhanko_certvalidator/ltv/poe.pyurn$szValidationObjectType.urnN) __name__ __module__ __qualname____doc__ CERTIFICATEr OCSP_RESPONSE TIMESTAMPZEVIDENCE_RECORDZ PUBLIC_KEYZ SIGNED_DATAOTHERrrrrrrs)thingreturncCs6t|trtjSt|tr tjSt|tjr2tjSdSN) isinstancer rrr r%r Certificater$)r(rrrguess_validation_object_type+s   r-T)frozenc@s"eZdZUdZeed<eed<dS)rz A validation object used in the course of a validation operation for which proofs of existence can potentially be gathered. object_typerN)r r!r"r#r__annotations__rrrrrr7s c@s*eZdZdZdZdZeedddZdS)rprovidedZ validationpolicyr)cCs d|jS)Nzurn:etsi:019102:poetype:rrrrrrVsz POEType.urnN) r r!r"ZPROVIDED VALIDATIONZPOLICYpropertystrrrrrrrPs c@s6eZdZUeed<eed<eed<dZee ed<dS)rpoe_typedigestpoe_timeNvalidation_object) r r!r"rr0bytesrr:rrrrrrr[s )datar)cCst|Sr*)hashlibsha256r8)r<rrrrcsc@seZdZdZdeedddZdeeeee dddZ de eeee d d d Z e e d d dZ ee dddZeedddZddZddZdS)rz~ Class to manage proof-of-existence (POE) claims. :param current_dt_override: Override the current time. Ncurrent_dt_overridecCsi|_||_dSr*)_poes_current_dt_override)rr@rrr__init__oszPOEManager.__init__)r<r7dtr)cCst|tr|}nFt|tjr&|}n0t|tr<|j}nt|trR|j}nt t |}|pr|j prt tj}t|}d}|rt||d}|t||||dS)ao Register a new POE claim if no POE for an earlier time is available. :param data: Data to register a POE claim for. :param poe_type: The type of POE. :param dt: The POE time to register. If ``None``, assume the current time. :return: The oldest POE datetime available. N)r/rr7r8r9r:)r+r;r Z Asn1Valuedumpr Zcrl_datar Zocsp_response_dataNotImplementedErrorrrBrnowrutcr-rregister_known_poer)rr<r7rDZb_datar8Zvo_typeZvorrrregisterss.        zPOEManager.register)r8r7rDr)cCs,|p|jpttj}|t|||ddS)a Register a new POE claim if no POE for an earlier time is available. :param digest: SHA-256 digest of the data to register a POE claim for. :param dt: The POE time to register. If ``None``, assume the current time. :param poe_type: The type of POE. :return: The oldest POE datetime available. NrE)rBrrHrrIrJr)rr8r7rDrrrregister_by_digestszPOEManager.register_by_digest) known_poer)cCsN|j}|j}z|j|}|j|kr(|WSWntk r>YnX||j|<|S)z Register a new POE claim if no POE for an earlier time is available. :param known_poe: The POE object to register. :return: The oldest POE for the given digest. )r9r8rAKeyError)rrMrDr8Zcur_poerrrrJs     zPOEManager.register_known_poer3cCst|jS)z Iterate over the current earliest known POE for all items currently being managed. Returns an iterator with :class:`KnownPOE` objects. )iterrAvaluesrrrr__iter__szPOEManager.__iter__)itemr)cCs|j|tjddjS)a Return the earliest available POE for an item. .. note:: This is a wrapper around :meth:`register` with `dt=None`, and hence will register the current time as the POE time for the given item. This side effect is intentional. :param item: Item to get the current POE time for. :return: A datetime object representing the earliest available POE for the item. N)r7rD)rKrr4r9)rrRrrr __getitem__s zPOEManager.__getitem__cCs*t|tstt|D]}||qdS)ze Combine data in another POE manager with the POEs managed by this instance. N)r+r TypeErrorrOrJ)rrZpoerrr__ior__s  zPOEManager.__ior__cCst|jd}t|j|_|S)Nr?)rrBdictrA)rZ new_instancerrr__copy__s  zPOEManager.__copy__)N)N)N)r r!r"r#rrrCKnownObjectTyperrrKr;rLrJrrQrSrUrWrrrrrgs* 0   ) enumr= dataclassesrrrtypingrrrrr Z asn1cryptor r Z&pyhanko_certvalidator.revinfo.archivalr r __all__uniqueEnumrr;r,rXobjectr-rrrrrrrrrs6