WwgndZddlZddlmZmZmZddlmZddlm Z ddl m Z m Z m Z mZdgZGd dZy) z Module to handle the timestamping functionality in pyHanko. Many PDF signature profiles require trusted timestamp tokens. The tools in this module allow pyHanko to obtain such tokens from :rfc:`3161`-compliant time stamping authorities. N)algoscmstsp)CertificateValidator)SimpleCertificateStore) dummy_digestextract_ts_certs get_noncehandle_tsp_response TimeStamperceZdZdZd dZdZdZdZdZde jfdZ d e jde jfd Zde jfd Zy )r z .. versionchanged:: 0.9.0 Made API more asyncio-friendly _(breaking change)_ Class to make :rfc:`3161` timestamp requests. cLi|_i|_t|_||_yN)_dummy_response_cache_certsr cert_registry include_nonce)selfrs R/var/www/horilla/myenv/lib/python3.12/site-packages/pyhanko/sign/timestamps/api.py__init__zTimeStamper.__init__"s$%'" 35*cdtjtjd|i|ddd}|jr#t }t j||d<nd}|tj|fS)a& Format the body of an :rfc:`3161` request as a CMS object. Subclasses with more specific needs may want to override this. :param message_digest: Message digest to which the timestamp will apply. :param md_algorithm: Message digest algorithm to use. .. note:: As per :rfc:`8933`, ``md_algorithm`` should also be the algorithm used to compute ``message_digest``. :return: An :class:`.asn1crypto.tsp.TimeStampReq` object. r algorithm)hash_algorithmhashed_messageT)versionmessage_imprintcert_reqnonceN) rMessageImprintrDigestAlgorithmrr rInteger TimeStampReq)rmessage_digest md_algorithmreqr s r request_cmszTimeStamper.request_cms(s""11&+&;&;$l3''5       KE;;u-CLEc&&s+++rcKjd{fd}t|jj}t j |D]}|d{y7V7 w)a+ Produce validation paths for the certificates gathered by this :class:`.TimeStamper`. This is internal API. :param validation_context: The validation context to apply. :return: An asynchronous generator of validation paths. Ncjt|j}|jtdhS)N)intermediate_certsvalidation_context time_stamping)rrasync_validate_usageset)cert validatorrr,s r_validation_jobz5TimeStamper.validation_paths.._validation_jobZs6,#'#5#5#5I 11#%/9JK Kr) _ensure_dummymaprvaluesasyncio as_completed)rr,r2jobsjobs`` rvalidation_pathszTimeStamper.validation_pathsLsh  """ L?DKK$6$6$89''- C)O  #s"A3A/A A3$A1% A31A3c||j|<t||jD]}||j|j<yr)rr rr issuer_serial)rr&dummyr0s r_register_dummyzTimeStamper._register_dummygsB38""<0$UD,>,>? 3D.2DKK** + 3rchK|js ddlm}|j|d{yy7w)Nr) DEFAULT_MD)r pyhanko.signr@async_dummy_response)rr@s rr3zTimeStamper._ensure_dummyls0)) /++J7 7 7* 8s '202returncK |j|S#t$r'|jt||d{7}YnwxYw|j |||Sw)a9 Return a dummy response for use in CMS object size estimation. For every new ``md_algorithm`` passed in, this method will call the :meth:`timestamp` method exactly once, with a dummy digest. The resulting object will be cached and reused for future invocations of :meth:`dummy_response` with the same ``md_algorithm`` value. :param md_algorithm: Message digest algorithm to use. :return: A timestamp token, encoded as an :class:`.asn1crypto.cms.ContentInfo` object. N)rKeyErrorasync_timestampr r>)rr&r=s rrBz TimeStamper.async_dummy_responsessf$ --l; ; ..\*LE  \51 s.AA'A=AAAAr'cKtw)aF Submit the specified timestamp request to the server. :param req: Request body to submit. :return: A timestamp response from the server. :raises IOError: Raised in case of an I/O issue in the communication with the timestamping server. )NotImplementedError)rr's rasync_request_tsa_responsez&TimeStamper.async_request_tsa_responses"!s cK|j||\}}|j|d{}t||S7w)a+ Request a timestamp for the given message digest. :param message_digest: Message digest to which the timestamp will apply. :param md_algorithm: Message digest algorithm to use. .. note:: As per :rfc:`8933`, ``md_algorithm`` should also be the algorithm used to compute ``message_digest``. :return: A timestamp token, encoded as an :class:`.asn1crypto.cms.ContentInfo` object. :raises IOError: Raised in case of an I/O issue in the communication with the timestamping server. :raises TimestampRequestError: Raised if the timestamp server did not return a success response, or if the server's response is invalid. N)r(rIr )rr%r&r r'ress rrFzTimeStamper.async_timestampsC2%%nlC s33C88"3..9s *?=?N)T)__name__ __module__ __qualname____doc__rr(r:r>r3r ContentInforBrr$ TimeStampResprIrFrrr r sc+ ",H63 8#//6"##"  " / /r)rOr6 asn1cryptorrrpyhanko_certvalidatorrpyhanko_certvalidator.registryr common_utilsr r r r __all__r rRrrrXs:&&6A /_/_/r