WwgK \dZddlZddlZddlmZddlmZmZmZm Z m Z ddl m Z m Z mZmZddlmZddlmZmZddlmZdd lmZdd lmZdd ldd lmZgd Zej>e Z!Gdde"Z#Gdde#Z$Gdde#Z%dZ&Gdde'Z(Gdde"Z)dZ*dZ+dejXdejZfdZ. d=dejXdej^fdZ0dejXde ejbejdffd Z3d!e e jhejjfdejXde6fd"Z7Gd#d$e"Z8Gd%d&e8Z9de ejtfd'Z; d>de ejteffd(Z d>d+e j~fd,Z@dejXd-e=de j~fd.ZAed/0Gd1d2ZBd3e jfd4ZDd5ZEd6e jde jfd7ZHd6e jdeBfd8ZIejfd9ed:eeKd;e=de eKeLffd<ZMy)?a General tools related to Cryptographic Message Syntax (CMS) signatures, not necessarily to the extent implemented in the PDF specification. CMS is defined in :rfc:`5652`. To parse CMS messages, pyHanko relies heavily on `asn1crypto `_. N) dataclass)IOIterableListTupleUnion)algoscmstspx509)SignedDigestAlgorithm)hashes serialization)padding) RSAPublicKey) Prehashed)*)misc)simple_cms_attributefind_cms_attributefind_unique_cms_attributeNonexistentAttributeErrorMultivaluedAttributeError SigningErrorUnacceptableSignerErrorSignedDataCertsextract_signer_infoextract_certificate_infoget_cms_hash_algo_for_mechanismget_pyca_cryptography_hash&get_pyca_cryptography_hash_for_signingoptimal_pss_paramsprocess_pss_paramsas_signing_certificateas_signing_certificate_v2match_issuer_serialcheck_ess_certidCMSExtractionErrorbyte_range_digestValueErrorWithMessageCMSStructuralErrorload_cert_from_pemderload_certs_from_pemderload_certs_from_pemder_dataload_private_key_from_pemder!load_private_key_from_pemder_datac"eZdZdZfdZxZS)r*z Value error with a failure message attribute that can be conveniently extracted, instead of having to rely on extracting exception args generically. cDt||_t| |yN)strfailure_messagesuper__init__)selfr5 __class__s K/var/www/horilla/myenv/lib/python3.12/site-packages/pyhanko/sign/general.pyr7zValueErrorWithMessage.__init__Bs"?3 ))__name__ __module__ __qualname____doc__r7 __classcell__r9s@r:r*r*;s **r;r*ceZdZdZy)r+z!Structural error in a CMS object.Nr<r=r>r?r;r:r+r+Gs+r;r+c eZdZy)r(Nr<r=r>rDr;r:r(r(Kr;r(cZtjtj||fdS)a Convenience method to quickly construct a CMS attribute object with one value. :param attr_type: The attribute type, as a string or OID. :param value: The value. :return: A :class:`.cms.CMSAttribute` object. )typevalues)r CMSAttributeCMSAttributeType) attr_typevalues r:rrOs,   %%i0UHE r;c eZdZy)rNrFrDr;r:rr`rGr;rc eZdZy)rNrFrDr;r:rrdrGr;rcd}|r0|D]+}|dj|k(s|td|d|d}-||Std|d)a Find and return CMS attribute values of a given type. .. note:: This function will also check for duplicates, but not in the sense of multivalued attributes. In other words: multivalued attributes are allowed; listing the same attribute OID more than once is not. :param attrs: The :class:`.cms.CMSAttributes` object. :param name: The attribute type as a string (as defined in ``asn1crypto``). :return: The values associated with the requested type, if present. :raise NonexistentAttributeError: Raised when no such type entry could be found in the :class:`.cms.CMSAttributes` object. :raise CMSStructuralError: Raised if the given OID occurs more than once. NrIz Attribute z was duplicatedrJzUnable to locate attribute .)nativer+r)attrsname found_valuesattrs r:rrhsz,L  .DF|""d*+,$THO< $H~  .'*EdV1(MNNr;cvt||}t|dk7rtd|dt|d|dS)a  Find and return a unique CMS attribute value of a given type. :param attrs: The :class:`.cms.CMSAttributes` object. :param name: The attribute type as a string (as defined in ``asn1crypto``). :return: The value associated with the requested type, if present. :raise NonexistentAttributeError: Raised when no such type entry could be found in the :class:`.cms.CMSAttributes` object. :raise MultivaluedAttributeError: Raised when the attribute's cardinality is not 1. zExpected single-valued z attribute, but found z valuesr)rlenr)rTrUrJs r:rrsO  t ,F 6{a'%dV+A6{m7 $   !9r;certreturnc tjdtjtj|j j tjd|jig|ddddgiS)a Format an ASN.1 ``SigningCertificate`` object, where the certificate is identified by its SHA-1 digest. :param cert: An X.509 certificate. :return: A :class:`tsp.SigningCertificate` object referring to the original certificate. certsdirectory_nametbs_certificate serial_numberissuerra) cert_hash issuer_serial) r SigningCertificate ESSCertIDhashlibsha1dumpdigestr GeneralNamerc)r[s r:r$r$s  ! !  %,\\$))+%>%E%E%G!% 0 0%5t{{$C!"' .22C-D /. *   r;c Tt|}tj|}|j|j |j }t jdt jd|i|tjd|jig|ddddgiS)a Format an ASN.1 ``SigningCertificateV2`` value, where the certificate is identified by the hash algorithm specified. :param cert: An X.509 certificate. :param hash_algo: Hash algorithm to use to digest the certificate. Default is SHA-256. :return: A :class:`tsp.SigningCertificateV2` object referring to the original certificate. r^ algorithmr_r`rarb)hash_algorithmrdre) r rHashupdaterjfinalizer SigningCertificateV2 ESSCertIDv2r rlrc)r[ hash_algo hash_specmd digest_values r:r%r%s$+95I Y BIIdiik;;=L  # # +6 *B%1!% 0 0%5t{{$C!"' .22C-D /. *   r;certidcTt|tjrd}n|ddj}t |}t j |}|j|j|j}|dj}||k7ry|d}| xs t||S)a Match an ``ESSCertID`` value against a certificate. :param cert: The certificate to match against. :param certid: The ``ESSCertID`` value. :return: ``True`` if the ``ESSCertID`` matches the certificate, ``False`` otherwise. rirornrdFre) isinstancer rgrSr rrprqrjrrr&)r[ryrurvrwrxexpected_digest_valueexpected_issuer_serials r:r'r's&#--( +,[9@@ *95I Y BIIdiik;;=L";/66,,/5o/F% % )<*r;r}cd|dd}|d}t|tjr0t|dk7s|djdk7ry|dj } |j |jj k(xs||jk(}|xr|d|k(S#t$rd}YwxYw)a~ Match the issuer and serial number of an X.509 certificate against some expected identifier. :param expected_issuer_serial: A certificate identifier, either :class:`cms.IssuerAndSerialNumber` or :class:`tsp.IssuerSerial`. :param cert: An :class:`x509.Certificate`. :return: ``True`` if there's a match, ``False`` otherwise. r`rarcrYrr_F) r{r GeneralNamesrZrUchosenrjrc ValueError)r}r[ serial_asn1expected_issuer issuer_matchs r:r&r&s&()/:K,X6O /4#4#45  A %q!&&*::)!,33  "dkk&6&6&8 8 .$++-  O/@KO  sr?r4r7r@rAs@r:rrLs%C%%r;rceZdZdZy)rz= Error raised when a signer was judged unacceptable. NrCrDr;r:rrVs  r;rc|jdvrtjdStt|j S)N)shake256 shake256_len@) digest_size)lowerrSHAKE256getattrupperrns r:r r ^s<882..1wvy0133r;c6t|}|r t|S|Sr3)r r)rn prehashedrus r:r!r!gs +95I#,9Y ;);r;mechcJ|j}|dk(ry|dk(ry|jS)a% Internal function that takes a :class:`.SignedDigestAlgorithm` instance and returns the name of the digest algorithm that has to be used to compute the ``messageDigest`` attribute. :param mech: A signature mechanism. :return: A digest algorithm name. ed25519sha512ed448r)signature_algoru)rsig_algos r:rrns/""H9 W ~~r;paramsc|d}|dj}|j|jk7rtd|d|d|d}|djdk(s td|d dj}||k7rtj d |d |d |d j}t |}t||} tjtj||} | | fS)zs Extract PSS padding settings and message digest from an ``RSASSAPSSParams`` value. Internal API. rornzPSS MD 'z ' must agree with signature MD 'z'.mask_gen_algorithmmgf1zOnly MFG1 is supported parameterszMessage digest for MGF1 is z", and the one used for signing is zL. If these do not agree, some software may refuse to validate the signature. salt_length)rr)mgfr) rScasefoldrNotImplementedErrorloggerwarningr r!rPSSMGF1) rdigest_algorithmrrumd_namemga mgf_md_namesalt_lenmgf_mdrw pss_paddings r:r#r#s (..>'?I $++G-6688wi #$B (  #))=">C {  " "f ,!":;;l#K077Kg)+7!#0 1 =)00H ' 4F /9 MB++ LL6 *K ?r;rc |j}tj|jj }t |t stdt|t|}tj||}tjtjd|itjdtjd|id|dS)a" Figure out the optimal RSASSA-PSS parameters for a given certificate. The subject's public key must be an RSA key. :param cert: An RSA X.509 certificate. :param digest_algorithm: The digest algorithm to use. :return: RSASSA-PSS parameters. z&Expected RSA key, but got key of type rnr)rnr)rorr)rrload_der_public_key public_keyrjr{rrrIr rcalculate_max_pss_salt_lengthr RSASSAPSSParamsDigestAlgorithmMaskGenAlgorithm)r[rkeyrwoptimal_salt_lens r:r"r"s(--/  + +DOO,@,@,B CC c< (CDI;OPP #$4 5B<r?r Certificate__annotations__rr AttributeCertificateV2rDr;r:rrsJ!!!d&&''#4455r;rsidcjdk(rfdSjdk(r0jjtj dfdSt )Nissuer_and_serial_numberc0tj|Sr3)r&r)crs r:z'_get_signer_predicate..s,SZZ;r;subject_key_identifierzThe signature in this SignedData value seems to be identified by a subject key identifier --- this is legal in CMS, but many PDF viewers and SDKs do not support this feature.c"|jk(Sr3)key_identifier)rskis r:rz'_get_signer_predicate..s))S0r;)rUrrSrrr)rrs`@r:_get_signer_predicatersS xx--;; - -jj < 10 r;ct|d}d}g}|D]}||r|}|j| | td||fS)Nrz,signer certificate not included in signature)rappendr()r^ signer_info predicater[rrs r:_partition_certsrsd &k%&89I DK " Q<D   q ! "  | !OPP  r; signed_datacF |d\}|S#t$r tdwxYw)a5 Extract the unique ``SignerInfo`` entry of a CMS signed data value, or throw a ``ValueError``. :param signed_data: A CMS ``SignedData`` value. :return: A CMS ``SignerInfo`` value. :raises ValueError: If the number of ``SignerInfo`` values is not exactly one. signer_infosz-signer_infos should contain exactly one entry)rr()rrs r:rrs8 $^4   ;   s  c*g}g}|dD]^}|jj}|jdk(r|j|>|jdk(sN|j|`t |}t ||\}}t |||}|S)a Extract and classify embedded certificates found in the ``certificates`` field of the signed data value. :param signed_data: A CMS ``SignedData`` value. :return: A :class:`SignedDataCerts` object containing the embedded certificates. certificates certificate v2_attr_cert)rrr)runtagrUrrrr) rr^ attr_certsrr[rrr cert_infos r:rr#s EJ  ($xx~~ 66] " LL  VV~ %   d # $ &k2K/{CK"I r;stream byte_range md_algorithmct|}tj|}d}t|}t j |D]4\}} |j |t j|||| || z }6||jfS)a  Internal API to compute byte range digests. Potentially dangerous if used without due caution. :param stream: Stream over which to compute the digest. Must support seeking and reading. :param byte_range: The byte range, as a list of (offset, length) pairs, flattened. :param md_algorithm: The message digest algorithm to use. :param chunk_size: The I/O chunk size to use. :return: A tuple of the total digested length, and the actual digest. r)max_read) r rrp bytearrayr pair_iterseekchunked_digestrr) rrr chunk_sizemd_specrw total_len chunk_buflo chunk_lens r:r)r)@s,)6G W B I*%I 3 I B IvrIFY  bkkm ##r;)sha256)F)Nr?rhlogging dataclassesrtypingrrrrr asn1cryptor r r r asn1crypto.algosr cryptography.hazmat.primitivesrr)cryptography.hazmat.primitives.asymmetricr-cryptography.hazmat.primitives.asymmetric.rsar/cryptography.hazmat.primitives.asymmetric.utilsr pyhanko.keyspyhanko.pdf_utilsr__all__ getLoggerr<rrr*r+r(rKeyErrorrrrrrrfr$rsr%rgrtr'IssuerAndSerialNumber IssuerSerialboolr&rr HashAlgorithmr r!r4rrr#r"rSignerIdentifierrr SignedData SignerInforrDEFAULT_CHUNK_SIZEintbytesr)rDr;r:rs!33,,2@=FE" @   8 $ *J *,., . "    #OL2 !1!1 c6L6L H'/+   ++\   $)#--*H$I@1!#";";S=M=M"MN1   1 1h%:% l 4U63G3G-H4< 6   *+<*?C0@E$  ! !$N'   '.1' 'T $* s33  $ S^^  *#.._B&& #$ #$ #$#$  3: #$r;