o e @s0ddlmZddlZddlZddlZddlZddlZddlmZddl m Z ddl m Z ddl mZmZddlmZddlmZdd lmZmZdd lmZdd lmZmZmZmZmZmZm Z m!Z!m"Z"dd l#m$Z$m%Z%dd l&m'Z'm(Z(m)Z)m*Z*ej+ddddZ,d}ddZ-d~ddZ.Gddde/Z0Gddde/Z1Gd ddej2d!Z3Gd"d#d#Z4Gd$d%d%e3Z5Gd&d'd'e3Z6Gd(d)d)e3Z7Gd*d+d+e3Z8Gd,d-d-e3Z9Gd.d/d/Z:Gd0d1d1e3Z;Gd2d3d3e3ZGd8d9d9Z?Gd:d;d;ej@ZAeAjBeAjCeAjDeAjEeAjFeAjGeAjHeAjId<ZJeAjBd=eAjCd>eAjDd?eAjEd@eAjFdAeAjGdBeAjHdCeAjIdDiZKGdEdFdFe3ZLGdGdHdHe3ZMGdIdJdJZNGdKdLdLZOGdMdNdNZPGdOdPdPe3ZQGdQdRdRe3ZRGdSdTdTe3ZSGdUdVdVe3ZTGdWdXdXej@ZUdYdZeUDZVGd[d\d\e3ZWGd]d^d^e3ZXGd_d`d`e3ZYGdadbdbejZe,Z[GdcddddZ\Gdedfdfe3Z]Gdgdhdhe3Z^Gdidjdje3Z_Gdkdldle3Z`Gdmdndne3ZaGdodpdpe3ZbGdqdrdre3ZcGdsdtdte3ZdGdudvdve3ZeGdwdxdxe3ZfGdydzdze3ZgGd{d|d|e3ZhdS)) annotationsN)utils)asn1)x509) constant_time serialization)EllipticCurvePublicKey) RSAPublicKey)CertificateIssuerPublicKeyTypesCertificatePublicKeyTypes)SignedCertificateTimestamp) DirectoryNameDNSName GeneralName IPAddress OtherName RegisteredID RFC822NameUniformResourceIdentifier_IPAddressTypes)NameRelativeDistinguishedName)CRLEntryExtensionOID ExtensionOIDObjectIdentifierOCSPExtensionOIDExtensionTypeVar ExtensionTypeT)bound covariant public_keyr returnbytescCslt|tr|tjjtjj}nt|tr |tjj tjj }n|tjjtjj }t |}t|SN) isinstancer public_bytesrZEncodingZDERZ PublicFormatZPKCS1rZX962ZUncompressedPointZSubjectPublicKeyInforZparse_spki_for_datahashlibsha1digest)r dataZ serializedr*LD:\Projects\ConvertPro\env\Lib\site-packages\cryptography/x509/extensions.py_key_identifier_from_public_key2s   r, field_namestrcs0d fdd }fdd}fdd}|||fS) Nr!intctt|Sr#)lengetattrselfr-r*r+ len_methodKz*_make_sequence_methods..len_methodcr0r#)iterr2r3r5r*r+ iter_methodNr7z+_make_sequence_methods..iter_methodcst||Sr#)r2)r4idxr5r*r+getitem_methodQr7z._make_sequence_methods..getitem_methodr!r/r*)r-r6r9r;r*r5r+_make_sequence_methodsJs   r=ceZdZd fdd ZZS) DuplicateExtensionmsgr.oidrr!Nonect|||_dSr#super__init__rAr4r@rA __class__r*r+rFX  zDuplicateExtension.__init__r@r.rArr!rB__name__ __module__ __qualname__rF __classcell__r*r*rHr+r?Wr?cr>) ExtensionNotFoundr@r.rArr!rBcrCr#rDrGrHr*r+rF^rJzExtensionNotFound.__init__rKrLr*r*rHr+rR]rQrRc@s eZdZUded<dddZdS) rz!typing.ClassVar[ObjectIdentifier]rAr!r"cCstd|)z7 Serializes the extension type to DER. z7public_bytes is not implemented for extension type {!r})NotImplementedErrorformatr3r*r*r+r%fs zExtensionType.public_bytesNr!r")rMrNrO__annotations__r%r*r*r*r+rcs ) metaclassc@sBeZdZdddZdd d ZdddZed\ZZZ dddZ dS) Extensions extensions)typing.Iterable[Extension[ExtensionType]]r!rBcCt||_dSr#)list _extensions)r4rYr*r*r+rFrszExtensions.__init__rArExtension[ExtensionType]cCs.|D] }|j|kr |Sqtd|d|)NNo  extension was found)rArR)r4rAextr*r*r+get_extension_for_oidws  z Extensions.get_extension_for_oidextclasstyping.Type[ExtensionTypeVar]Extension[ExtensionTypeVar]cCsB|turtd|D] }t|j|r|Sq td|d|j)Nz|UnrecognizedExtension can't be used with get_extension_for_class because more than one instance of the class may be present.r_r`)UnrecognizedExtension TypeErrorr$valuerRrA)r4rcrar*r*r+get_extension_for_classs z"Extensions.get_extension_for_classr]r.cCd|jdS)Nz )r]r3r*r*r+__repr__r7zExtensions.__repr__N)rYrZr!rB)rArr!r^)rcrdr!rer!r.) rMrNrOrFrbrir=__len____iter__ __getitem__rlr*r*r*r+rXqs    rXc@sReZdZejZdddZdd d Zdd d ZdddZ e dddZ dddZ dS) CRLNumber crl_numberr/r!rBcCt|ts td||_dSNzcrl_number must be an integerr$r/rg _crl_numberr4rrr*r*r+rF  zCRLNumber.__init__otherobjectboolcCt|tstS|j|jkSr#)r$rqNotImplementedrrr4ryr*r*r+__eq__  zCRLNumber.__eq__cC t|jSr#hashrrr3r*r*r+__hash__ zCRLNumber.__hash__r.cCrj)Nz   z2AuthorityKeyIdentifier.__init__..z;authority_cert_issuer must be a list of GeneralName objectsz/authority_cert_serial_number must be an integer) ValueErrorr\allrgr$r/_key_identifier_authority_cert_issuer_authority_cert_serial_number)r4rrrr*r*r+rFs*  zAuthorityKeyIdentifier.__init__r r cCst|}||dddSN)rrrr,)clsr r(r*r*r+from_issuer_public_keys z-AuthorityKeyIdentifier.from_issuer_public_keyskiSubjectKeyIdentifiercCs||jdddSrr()rrr*r*r+"from_issuer_subject_key_identifiers z9AuthorityKeyIdentifier.from_issuer_subject_key_identifierr.cC d|S)NzrTr3r*r*r+rlszAuthorityKeyIdentifier.__repr__ryrzr{cC2t|tstS|j|jko|j|jko|j|jkSr#)r$rr}rrrr~r*r*r+rs   zAuthorityKeyIdentifier.__eq__r/cCs,|jdurd}nt|j}t|j||jfSr#)rtuplerrr)r4Zacir*r*r+rs   zAuthorityKeyIdentifier.__hash__cCrr#)rr3r*r*r+rrz%AuthorityKeyIdentifier.key_identifier)typing.Optional[typing.List[GeneralName]]cCrr#)rr3r*r*r+rz,AuthorityKeyIdentifier.authority_cert_issuercCrr#)rr3r*r*r+rrz3AuthorityKeyIdentifier.authority_cert_serial_numberr"cCrr#rr3r*r*r+r%rz#AuthorityKeyIdentifier.public_bytesN)rrrrrrr!rB)r r r!r)rrr!rrmrr<)r!rr!rr!rrU)rMrNrOrZAUTHORITY_KEY_IDENTIFIERrArF classmethodrrrlrrrrrrr%r*r*r*r+rs" &       rc@sneZdZejZdddZedd d Ze dd d Z e dd dZ d ddZ d!ddZ d"ddZdddZdS)#rr(r"r!rBcCs ||_dSr#Z_digest)r4r(r*r*r+rF$rzSubjectKeyIdentifier.__init__r r cCs |t|Sr#r)rr r*r*r+from_public_key's z$SubjectKeyIdentifier.from_public_keycCrr#rr3r*r*r+r(-rzSubjectKeyIdentifier.digestcCrr#rr3r*r*r+r1rz#SubjectKeyIdentifier.key_identifierr.cCd|jdS)NzrzSubjectKeyIdentifier.__hash__cCrr#rr3r*r*r+r%Arz!SubjectKeyIdentifier.public_bytesN)r(r"r!rB)r r r!rrUrmrr<)rMrNrOrZSUBJECT_KEY_IDENTIFIERrArFrrrr(rrlrrr%r*r*r*r+r!s       rc@ReZdZejZdddZed\ZZ Z dd d Z dddZ dddZ dddZdS)AuthorityInformationAccess descriptions"typing.Iterable[AccessDescription]r!rBcC,t|}tdd|Dstd||_dS)Ncsrr#r$AccessDescriptionrr*r*r+rLz6AuthorityInformationAccess.__init__..@Every item in the descriptions list must be an AccessDescriptionr\rrg _descriptionsr4rr*r*r+rFH  z#AuthorityInformationAccess.__init__rr.cCrj)Nz.rrrr*r*r+rFirz!SubjectInformationAccess.__init__rr.cCrj)Nzrr3r*r*r+rlzAccessDescription.__repr__ryrzr{cC&t|tstS|j|jko|j|jkSr#)r$rr}rrr~r*r*r+r   zAccessDescription.__eq__r/cCt|j|jfSr#)rrrr3r*r*r+rzAccessDescription.__hash__cCrr#)rr3r*r*r+rrzAccessDescription.access_methodcCrr#)rr3r*r*r+rrz!AccessDescription.access_locationN)rrrrr!rBrmrr<r!r)r!r) rMrNrOrFrlrrrrrr*r*r*r+r    rc@s`eZdZejZdddZedd d Zedd d Z dddZ dddZ d ddZ d!ddZ dS)"BasicConstraintscar{ path_lengthrr!rBcCsXt|ts td|dur|std|dur$t|tr |dkr$td||_||_dS)Nzca must be a boolean valuez)path_length must be None when ca is Falserz2path_length must be a non-negative integer or None)r$r{rgrr/_ca _path_length)r4rrr*r*r+rFs   zBasicConstraints.__init__cCrr#)rr3r*r*r+rrzBasicConstraints.cacCrr#)rr3r*r*r+rrzBasicConstraints.path_lengthr.cCr)Nz:rr3r*r*r+rlrzBasicConstraints.__repr__ryrzcCrr#)r$rr}rrr~r*r*r+r zBasicConstraints.__eq__r/cCrr#)rrrr3r*r*r+rrzBasicConstraints.__hash__r"cCrr#rr3r*r*r+r%rzBasicConstraints.public_bytesN)rr{rrr!rBr!r{rrmrr<rU)rMrNrOrZBASIC_CONSTRAINTSrArFrrrrlrrr%r*r*r*r+rs      rc@sReZdZejZdddZedddZdd d Z dddZ dddZ dddZ dS)DeltaCRLIndicatorrrr/r!rBcCrsrtrurwr*r*r+rFrxzDeltaCRLIndicator.__init__cCrr#rr3r*r*r+rrrzDeltaCRLIndicator.crl_numberryrzr{cCr|r#)r$rr}rrr~r*r*r+rrzDeltaCRLIndicator.__eq__cCrr#rr3r*r*r+rrzDeltaCRLIndicator.__hash__r.cCrj)Nz.?distribution_points must be a list of DistributionPoint objectsr\rrg_distribution_pointsr4rr*r*r+rF zCRLDistributionPoints.__init__rr.cCrj)Nz.rrrr*r*r+rF"rzFreshestCRL.__init__rr.cCrj)Nz .z/full_name must be a list of GeneralName objectsz1relative_name must be a RelativeDistinguishedNamecsrr#rrr*r*r+rfrz2crl_issuer must be None or a list of general namescsrr#r$ ReasonFlagsrr*r*r+rmrz0reasons must be None or frozenset of ReasonFlagszLunspecified and remove_from_crl are not valid reasons in a DistributionPoint)rr\rrgr$r frozensetr unspecifiedremove_from_crl _full_name_relative_name_reasons _crl_issuer)r4rrrrr*r*r+rFEsR     zDistributionPoint.__init__r.cCr)Nz}rr3r*r*r+rlzDistributionPoint.__repr__ryrzr{cCs>t|tstS|j|jko|j|jko|j|jko|j|jkSr#)r$rr}rrrrr~r*r*r+rs     zDistributionPoint.__eq__r/cCsH|jdur t|j}nd}|jdurt|j}nd}t||j|j|fSr#)rrrrrr)r4fnrr*r*r+rs  zDistributionPoint.__hash__rcCrr#rr3r*r*r+rrzDistributionPoint.full_namecCrr#rr3r*r*r+rrzDistributionPoint.relative_namecCrr#)rr3r*r*r+rrzDistributionPoint.reasonscCrr#)rr3r*r*r+rrzDistributionPoint.crl_issuerN) rrrrrrrrr!rBrmrr<rr!rr!r) rMrNrOrFrlrrrrrrrr*r*r*r+rDs  :     rc@s4eZdZdZdZdZdZdZdZdZ dZ d Z d Z d S) rrZ keyCompromiseZ cACompromiseZaffiliationChanged supersededZcessationOfOperationZcertificateHoldZprivilegeWithdrawnZ aACompromiseZ removeFromCRLN) rMrNrOrkey_compromise ca_compromiseaffiliation_changedrcessation_of_operationcertificate_holdprivilege_withdrawn aa_compromiserr*r*r*r+rsr)r r r rrrrrc@s`eZdZejZdddZdd d ZdddZdddZ e dddZ e dddZ d ddZ dS)!PolicyConstraintsrequire_explicit_policyrinhibit_policy_mappingr!rBcCs\|dur t|ts td|durt|tstd|dur&|dur&td||_||_dS)Nz>require_explicit_policy must be a non-negative integer or Nonez=inhibit_policy_mapping must be a non-negative integer or NonezSAt least one of require_explicit_policy and inhibit_policy_mapping must not be None)r$r/rgr_require_explicit_policy_inhibit_policy_mapping)r4rrr*r*r+rFs$   zPolicyConstraints.__init__r.cCr)Nz{rr3r*r*r+rlrzPolicyConstraints.__repr__ryrzr{cCrr#)r$rr}rrr~r*r*r+r rzPolicyConstraints.__eq__r/cCrr#)rrrr3r*r*r+rs zPolicyConstraints.__hash__cCrr#)rr3r*r*r+rrz)PolicyConstraints.require_explicit_policycCrr#)rr3r*r*r+rrz(PolicyConstraints.inhibit_policy_mappingr"cCrr#rr3r*r*r+r% rzPolicyConstraints.public_bytesN)rrrrr!rBrmrr<rrU)rMrNrOrZPOLICY_CONSTRAINTSrArFrlrrrrrr%r*r*r*r+rs      rc@r)CertificatePoliciespolicies"typing.Iterable[PolicyInformation]r!rBcCr)Ncsrr#)r$PolicyInformationrr*r*r+r)rz/CertificatePolicies.__init__..z;Every item in the policies list must be a PolicyInformation)r\rrg _policies)r4rr*r*r+rF'  zCertificatePolicies.__init__rr.cCrj)Nz.zMpolicy_qualifiers must be a list of strings and/or UserNotice objects or None)r$rrg_policy_identifierr\r_policy_qualifiers)r4rr r*r*r+rFDs  zPolicyInformation.__init__r.cCr)Nzerr3r*r*r+rl\rzPolicyInformation.__repr__ryrzr{cCrr#)r$rr}rr r~r*r*r+rbrzPolicyInformation.__eq__r/cCs(|jdur t|j}nd}t|j|fSr#)r rrr)r4Zpqr*r*r+rks zPolicyInformation.__hash__cCrr#)r#r3r*r*r+rurz#PolicyInformation.policy_identifier;typing.Optional[typing.List[typing.Union[str, UserNotice]]]cCrr#)r$r3r*r*r+r yrz#PolicyInformation.policy_qualifiersN)rrr r!r!rBrmrr<r)r!r%) rMrNrOrFrlrrrrr r*r*r*r+rCs     rc@r)r"notice_reference typing.Optional[NoticeReference] explicit_texttyping.Optional[str]r!rBcCs&|r t|ts td||_||_dS)Nz2notice_reference must be None or a NoticeReference)r$NoticeReferencerg_notice_reference_explicit_text)r4r&r(r*r*r+rFs zUserNotice.__init__r.cCr)NzVrr3r*r*r+rlrzUserNotice.__repr__ryrzr{cCrr#)r$r"r}r&r(r~r*r*r+rrzUserNotice.__eq__r/cCrr#)rr&r(r3r*r*r+rrzUserNotice.__hash__cCrr#)r+r3r*r*r+r&rzUserNotice.notice_referencecCrr#)r,r3r*r*r+r(rzUserNotice.explicit_textN)r&r'r(r)r!rBrmrr<)r!r'r!r)) rMrNrOrFrlrrrr&r(r*r*r*r+r"s     r"c@r) r* organizationr)notice_numberstyping.Iterable[int]r!rBcCs2||_t|}tdd|Dstd||_dS)Ncsrr#)r$r/rr*r*r+rrz+NoticeReference.__init__..z)notice_numbers must be a list of integers) _organizationr\rrg_notice_numbers)r4r.r/r*r*r+rFs  zNoticeReference.__init__r.cCr)NzUrr3r*r*r+rlrzNoticeReference.__repr__ryrzr{cCrr#)r$r*r}r.r/r~r*r*r+rrzNoticeReference.__eq__r/cCst|jt|jfSr#)rr.rr/r3r*r*r+rzNoticeReference.__hash__cCrr#)r1r3r*r*r+r.rzNoticeReference.organizationtyping.List[int]cCrr#)r2r3r*r*r+r/rzNoticeReference.notice_numbersN)r.r)r/r0r!rBrmrr<r-)r!r4) rMrNrOrFrlrrrr.r/r*r*r*r+r*rr*c@r)ExtendedKeyUsageusages!typing.Iterable[ObjectIdentifier]r!rBcCr)Ncsrr#r$rrr*r*r+rrz,ExtendedKeyUsage.__init__..z9Every item in the usages list must be an ObjectIdentifier)r\rrg_usages)r4r6r*r*r+rFs  zExtendedKeyUsage.__init__r9r.cCrj)Nzr*r3r*r*r+rlzOCSPNoCheck.__repr__r"cCrr#rr3r*r*r+r%rzOCSPNoCheck.public_bytesNrr<rmrU) rMrNrOrZ OCSP_NO_CHECKrArrrlr%r*r*r*r+r;    r;c@r:) PrecertPoisonryrzr!r{cCr<r=)r$rDr}r~r*r*r+rr>zPrecertPoison.__eq__r/cCr?r#)rrDr3r*r*r+r r@zPrecertPoison.__hash__r.cCrA)Nzr*r3r*r*r+rlrBzPrecertPoison.__repr__r"cCrr#rr3r*r*r+r%rzPrecertPoison.public_bytesNrr<rmrU) rMrNrOrZPRECERT_POISONrArrrlr%r*r*r*r+rDrCrDc@r) TLSFeaturefeaturestyping.Iterable[TLSFeatureType]r!rBcCs8t|}tdd|Drt|dkrtd||_dS)Ncsrr#)r$TLSFeatureTyperr*r*r+rrz&TLSFeature.__init__..rz@features must be a list of elements from the TLSFeatureType enum)r\rr1rg _features)r4rFr*r*r+rFs  zTLSFeature.__init__rIr.cCrj)NzDrLc@sReZdZejZdddZddd Zdd dZdddZ e dddZ dddZ dS)InhibitAnyPolicy skip_certsr/r!rBcCs,t|ts td|dkrtd||_dS)Nzskip_certs must be an integerrz)skip_certs must be a non-negative integer)r$r/rgr _skip_certs)r4rOr*r*r+rFJs  zInhibitAnyPolicy.__init__r.cCrj)Nz)rYrZrrT)r4rYrZr*r*r+rls   zKeyUsage.__repr__ryrzcCszt|tstS|j|jko<|j|jko<|j|jko<|j|jko<|j|jko<|j|jko<|j |j ko<|j |j ko<|j |j kSr#) r$rQr}rRrSrTrUrVrWrXrbrcr~r*r*r+rs&          zKeyUsage.__eq__r/c Cs,t|j|j|j|j|j|j|j|j|j f Sr#) rrRrSrTrUrVrWrXrbrcr3r*r*r+rszKeyUsage.__hash__r"cCrr#rr3r*r*r+r%rzKeyUsage.public_bytesN)rRr{rSr{rTr{rUr{rVr{rWr{rXr{rYr{rZr{r!rBrrmrr<rU)rMrNrOrZ KEY_USAGErArFrrRrSrTrUrVrWrXrYrZrlrrr%r*r*r*r+rQgs2             rQc@s~eZdZejZd$ddZd%d d Zd&ddZd&ddZ d&ddZ d'ddZ d(ddZ e d)ddZe d)ddZd*d!d"Zd#S)+NameConstraintspermitted_subtreesrexcluded_subtreesr!rBcCs|dur t|}|stdtdd|Dstd|||dur@t|}|s.tdtdd|Ds;td|||durL|durLtd||_||_dS) Nz3permitted_subtrees must be a non-empty list or Nonecsrr#rrr*r*r+rrz+NameConstraints.__init__..z@permitted_subtrees must be a list of GeneralName objects or Nonez2excluded_subtrees must be a non-empty list or Nonecsrr#rrr*r*r+rrz?excluded_subtrees must be a list of GeneralName objects or NonezIAt least one of permitted_subtrees and excluded_subtrees must not be None)r\rrrg_validate_tree_permitted_subtrees_excluded_subtrees)r4rgrhr*r*r+rFs8   zNameConstraints.__init__ryrzr{cCrr#)r$rfr}rhrgr~r*r*r+rrzNameConstraints.__eq__treetyping.Iterable[GeneralName]cCs||||dSr#)_validate_ip_name_validate_dns_namer4rlr*r*r+ri"s zNameConstraints._validate_treecCtdd|Dr tddS)Ncss0|]}t|tot|jtjtjf VqdSr#)r$rrh ipaddress IPv4Network IPv6Networkrnamer*r*r+r's  z4NameConstraints._validate_ip_name..zGIPAddress name constraints must be an IPv4Network or IPv6Network object)anyrgrpr*r*r+rn&sz!NameConstraints._validate_ip_namecCrq)Ncss$|] }t|to d|jvVqdS)*N)r$rrhrur*r*r+r4s z5NameConstraints._validate_dns_name..zDDNSName name constraints must not contain the '*' wildcard character)rwrrpr*r*r+ro3sz"NameConstraints._validate_dns_namer.cCr)Nzerr3r*r*r+rl<rzNameConstraints.__repr__r/cCs@|jdur t|j}nd}|jdurt|j}nd}t||fSr#)rgrrhr)r4Zpsesr*r*r+rBs   zNameConstraints.__hash__rcCrr#)rjr3r*r*r+rgSrz"NameConstraints.permitted_subtreescCrr#)rkr3r*r*r+rhYrz!NameConstraints.excluded_subtreesr"cCrr#rr3r*r*r+r%_rzNameConstraints.public_bytesN)rgrrhrr!rBr)rlrmr!rBrmr<rrU)rMrNrOrZNAME_CONSTRAINTSrArFrrirnrorlrrrgrhr%r*r*r*r+rfs  *    rfc@s^eZdZdd d Zedd d Zedd dZedddZd ddZd!ddZ d"ddZ dS)# ExtensionrArcriticalr{rhrr!rBcCs:t|ts tdt|tstd||_||_||_dS)Nz2oid argument must be an ObjectIdentifier instance.z critical must be a boolean value)r$rrgr{_oid _critical_value)r4rAr{rhr*r*r+rFds   zExtension.__init__cCrr#r|r3r*r*r+rAsrz Extension.oidcCrr#)r}r3r*r*r+r{wrzExtension.criticalcCrr#r~r3r*r*r+rh{rzExtension.valuer.cCr)Nz@rr3r*r*r+rlrzExtension.__repr__ryrzcCrr#)r$rzr}rAr{rhr~r*r*r+r    zExtension.__eq__r/cCt|j|j|jfSr#)rrAr{rhr3r*r*r+rr3zExtension.__hash__N)rArr{r{rhrr!rBrr)r!rrmrr<) rMrNrOrFrrAr{rhrlrrr*r*r*r+rzcs       rzc@seZdZd(ddZed\ZZZej d)d d Z ej d*dd Z ej d+dd Z ej d,dd Z ej d-dd Z d.dd Z d/ddZ d0d"d#Z d1d%d&Z d'S)2 GeneralNames general_namesrmr!rBcCr)Ncsrr#rrr*r*r+rrz(GeneralNames.__init__..z^Every item in the general_names list must be an object conforming to the GeneralName interface)r\rrg_general_namesr4rr*r*r+rFrzGeneralNames.__init__rtypectyping.Union[typing.Type[DNSName], typing.Type[UniformResourceIdentifier], typing.Type[RFC822Name]]typing.List[str]cCdSr#r*r4rr*r*r+get_values_for_type z GeneralNames.get_values_for_typetyping.Type[DirectoryName]typing.List[Name]cCrr#r*rr*r*r+rtyping.Type[RegisteredID]typing.List[ObjectIdentifier]cCrr#r*rr*r*r+rrtyping.Type[IPAddress]typing.List[_IPAddressTypes]cCrr#r*rr*r*r+rtyping.Type[OtherName]typing.List[OtherName]cCrr#r*rr*r*r+rrtyping.Union[typing.Type[DNSName], typing.Type[DirectoryName], typing.Type[IPAddress], typing.Type[OtherName], typing.Type[RFC822Name], typing.Type[RegisteredID], typing.Type[UniformResourceIdentifier]]typing.Union[typing.List[_IPAddressTypes], typing.List[str], typing.List[OtherName], typing.List[Name], typing.List[ObjectIdentifier]]cs0fdd|D}tkrdd|DSt|S)Nc3s|] }t|r|VqdSr#)r$rirr*r+rsz3GeneralNames.get_values_for_type..cSsg|]}|jqSr*rKrr*r*r+ sz4GeneralNames.get_values_for_type..)rr\)r4rZobjsr*rr+rsr.cCrj)Nz)rTrr3r*r*r+rlszInvalidityDate.__repr__ryrzr{cCr|r#)r$rr}rr~r*r*r+r rzInvalidityDate.__eq__r/cCrr#)rrr3r*r*r+rrzInvalidityDate.__hash__cCrr#)rr3r*r*r+rrzInvalidityDate.invalidity_dater"cCrr#rr3r*r*r+r%rzInvalidityDate.public_bytesN)rrr!rBrmrr<)r!rrU) rMrNrOrZINVALIDITY_DATErArFrlrrrrr%r*r*r*r+rs     rc@ReZdZejZdddZed\ZZ Z dd d Z dd d Z dddZ dddZdS))PrecertificateSignedCertificateTimestampssigned_certificate_timestamps+typing.Iterable[SignedCertificateTimestamp]r!rBcCr)Ncsrr#r$r rZsctr*r*r+r%  zEPrecertificateSignedCertificateTimestamps.__init__..YEvery item in the signed_certificate_timestamps list must be a SignedCertificateTimestampr\rrg_signed_certificate_timestampsr4rr*r*r+rF z2PrecertificateSignedCertificateTimestamps.__init__rr.cCsdt|S)Nz/)rTr\r3r*r*r+rl3sz2PrecertificateSignedCertificateTimestamps.__repr__r/cCrr#rrrr3r*r*r+r8r7z2PrecertificateSignedCertificateTimestamps.__hash__ryrzr{cCr|r#)r$rr}rr~r*r*r+r; z0PrecertificateSignedCertificateTimestamps.__eq__r"cCrr#rr3r*r*r+r%Drz6PrecertificateSignedCertificateTimestamps.public_bytesNrrr!rBrmr<rrU)rMrNrOrZ%PRECERT_SIGNED_CERTIFICATE_TIMESTAMPSrArFr=rnrorprlrrr%r*r*r*r+rs     rc@r)SignedCertificateTimestampsrrr!rBcCr)Ncsrr#rrr*r*r+rRrz7SignedCertificateTimestamps.__init__..rrrr*r*r+rFKrz$SignedCertificateTimestamps.__init__rr.cCsdt|dS)Nz.z'All responses must be ObjectIdentifiers)r\rwrg _responses)r4rr*r*r+rFs z OCSPAcceptableResponses.__init__ryrzr{cCr|r#)r$rr}rr~r*r*r+rrzOCSPAcceptableResponses.__eq__r/cCrr#)rrrr3r*r*r+rr7z OCSPAcceptableResponses.__hash__r.cCrj)Nz#.z:only_some_reasons must be None or frozenset of ReasonFlagszTunspecified and remove_from_crl are not valid reasons in an IssuingDistributionPointzuonly_contains_user_certs, only_contains_ca_certs, indirect_crl and only_contains_attribute_certs must all be boolean.cSsg|]}|r|qSr*r*rr*r*r+rrMz5IssuingDistributionPoint.__init__..r zOnly one of the following can be set to True: only_contains_user_certs, only_contains_ca_certs, indirect_crl, only_contains_attribute_certszCannot create empty extension: if only_contains_user_certs, only_contains_ca_certs, indirect_crl, and only_contains_attribute_certs are all False, then either full_name, relative_name, or only_some_reasons must have a value.)r\r$rrrgrrrrr{r1rw_only_contains_user_certs_only_contains_ca_certs _indirect_crl_only_contains_attribute_certs_only_some_reasonsrr) r4rrrrrrrZcrl_constraintsr*r*r+rFsp     z!IssuingDistributionPoint.__init__r.cCr)NaGrr3r*r*r+rlsz!IssuingDistributionPoint.__repr__ryrzcCsbt|tstS|j|jko0|j|jko0|j|jko0|j|jko0|j|jko0|j|jko0|j |j kSr#) r$rr}rrrrrrrr~r*r*r+rs"       zIssuingDistributionPoint.__eq__r/cCs$t|j|j|j|j|j|j|jfSr#)rrrrrrrrr3r*r*r+rsz!IssuingDistributionPoint.__hash__rcCrr#rr3r*r*r+r+rz"IssuingDistributionPoint.full_namecCrr#rr3r*r*r+r/rz&IssuingDistributionPoint.relative_namecCrr#)rr3r*r*r+r3rz1IssuingDistributionPoint.only_contains_user_certscCrr#)rr3r*r*r+r7rz/IssuingDistributionPoint.only_contains_ca_certscCrr#)rr3r*r*r+r;rz*IssuingDistributionPoint.only_some_reasonscCrr#)rr3r*r*r+rArz%IssuingDistributionPoint.indirect_crlcCrr#)rr3r*r*r+rErz6IssuingDistributionPoint.only_contains_attribute_certsr"cCrr#rr3r*r*r+r%Irz%IssuingDistributionPoint.public_bytesN)rrrrrr{rr{rrrr{rr{r!rBrmrr<rrrrrU)rMrNrOrZISSUING_DISTRIBUTION_POINTrArFrlrrrrrrrrrrr%r*r*r*r+rs*  S        rc@sneZdZejZddd Zed d d Zed!d d Z ed!ddZ d"ddZ d#ddZ d$ddZ d%ddZdS)&MSCertificateTemplate template_idr major_versionr minor_versionr!rBcCsTt|ts td||_|durt|tr|dur"t|ts"td||_||_dS)Noid must be an ObjectIdentifierz8major_version and minor_version must be integers or None)r$rrg _template_idr/_major_version_minor_version)r4rrrr*r*r+rFPs  zMSCertificateTemplate.__init__cCrr#)rr3r*r*r+rdrz!MSCertificateTemplate.template_idcCrr#)rr3r*r*r+rhrz#MSCertificateTemplate.major_versioncCrr#)rr3r*r*r+rlrz#MSCertificateTemplate.minor_versionr.cCsd|jd|jd|jdS)Nz#rr3r*r*r+rlrzUnrecognizedExtension.__repr__ryrzr{cCrr#)r$rfr}rArhr~r*r*r+rrzUnrecognizedExtension.__eq__r/cCrr#)rrArhr3r*r*r+rrzUnrecognizedExtension.__hash__cCrr#rKr3r*r*r+r%sz"UnrecognizedExtension.public_bytesN)rArrhr"r!rBrrUrmrr<) rMrNrOrFrrArhrlrrr%r*r*r*r+rfs      rf)r r r!r")r-r.)i __future__rabcrr&rrrZ cryptographyrZ"cryptography.hazmat.bindings._rustrrrZcryptography.hazmat.primitivesrrZ,cryptography.hazmat.primitives.asymmetric.ecrZ-cryptography.hazmat.primitives.asymmetric.rsar Z/cryptography.hazmat.primitives.asymmetric.typesr r Z*cryptography.x509.certificate_transparencyr Zcryptography.x509.general_namer rrrrrrrrZcryptography.x509.namerrZcryptography.x509.oidrrrrTypeVarrr,r= Exceptionr?rRABCMetarrXrqrrrrrrrrrrEnumrrrrrrrr r Z_REASON_BIT_MAPPINGZ_CRLREASONFLAGSrrrr"r*r5r;rDrErHZ_TLS_FEATURE_TYPE_TO_ENUMrNrQrfGenericrzrrrrrrrrrrrrrfr*r*r*r+s       ,    'l$!!(.%%o  A=+("  w0YQQQ-+!;