o >e@sddlZddlZddlZddlmZmZmZddlZddlm Z ddl m Z ddl m Z ddlmZmZddlmZddlmZmZmZdd lmZd d gZzddlZd ZWn eycdZd ZYnwdZdZGdd d e Zde fddZ Gdd d e Z!GdddZ"de fddZ#dS)N)ContextManagerListOptional) CLIContext) CLIConfig)SigningCommandPlugin)logger readable_file)ConfigurationError)PKCS11PinEntryModePKCS11SignatureConfig TokenCriteria)Signer PKCS11Plugin BEIDPluginTFPYHANKO_PKCS11_PINz7This subcommand requires python-pkcs11 to be installed.c@PeZdZdZdZeZdefddZde e j fddZ de deefd d Zd S) rpkcs11z"use generic PKCS#11 device to signreturncCtSNpkcs11_availableselfrh/var/www/html/humari/django-venv/lib/python3.10/site-packages/pyhanko/cli/commands/signing/pkcs11_cli.py is_available)zPKCS11Plugin.is_availablecCstjddtddtjddtddtjddtddtjd d td dd tjd dtddtjdddtddtjdtd ddd ddtjdtdddtjdtddd dg S)Nz--libzpath to PKCS#11 moduleFhelptyperequired)z --token-labelzPKCS#11 token label)z --cert-labelzcertificate label)z--raw-mechanismzinvoke raw PKCS#11 mechanismT)r!r"is_flagr#)z --key-labelz key labelz --slot-nospecify PKCS#11 slot to user!r#r"default)z--skip-user-pinz7do not prompt for PIN (e.g. if the token has a PIN pad))r" show_defaultr(r#r$r!)z --p11-setupzCname of preconfigured PKCS#11 profile (overrides all other options))r"r#r!)z --other-certz3label of other cert to pull (multiple uses allowed))r"r#r!multiple)clickOptionr strboolintrrrr click_options,st zPKCS11Plugin.click_optionscontextcKt|fi|Sr)_pkcs11_signer_contextrr1kwargsrrr create_signerjzPKCS11Plugin.create_signerN__name__ __module__ __qualname__subcommand_name help_summary UNAVAIL_MSGunavailable_messager.rrr+r,r0rrrr6rrrrr$s>ctxc  Cs ddlm} |r;|j} | durtdz t| |} Wn<ty:} zd|}tj || dt|d} ~ ww|r?|sDtd|rIt j nt j }t ||||t|||| d} | j}|durntjtd}|rn|}| jt j kr~|dur~tjdd }| j| |d S) Nr)rz4The --p11-setup option requires a configuration filez#Error while reading PKCS#11 config exc_infoz3The parameters --lib and --cert-label are required.) module_path cert_label key_labelslot_notoken_criteria prompt_pin raw_mechanismother_certs_to_pullzPKCS#11 user PIN: )prompt)user_pin) pyhanko.signrconfigr+ClickExceptionModuleConfigWrapperget_pkcs11_configr rerrorr SKIPPROMPTr r rLosenvirongetP11_PIN_ENV_VARstriprHgetpassPKCS11SigningContext)r@lib token_labelrDrErF skip_user_pin p11_setuprI other_certr cli_config pkcs11_configemsg pinentry_modepinpin_envrrrr3psV     r3c@r) rbeidzuse Belgian eID to signrcCrrrrrrrrrzBEIDPlugin.is_availablecCs&tjddtddtjdddtddgS)Nrz"path to libbeidpkcs11 library fileFr r%r&r')r+r,r r/rrrrr0szBEIDPlugin.click_optionsr1cKr2r)_beid_signer_contextr4rrrr6r7zBEIDPlugin.create_signerNr8rrrrrsc@s"eZdZdefddZddZdS)rPrNcCs&|j}|dd|_|di|_dS)Nzbeid-module-pathz pkcs11-setups) raw_configrWbeid_module_path pkcs11_setups)rrN config_dictrrr__init__szModuleConfigWrapper.__init__cCs8z|j|}Wntytd|dwt|S)Nz There's no PKCS#11 setup named '')rlKeyErrorr r from_config)rnamesetuprrrrQs   z%ModuleConfigWrapper.get_pkcs11_configN)r9r:r;rrnrQrrrrrPs rPcsnddlddlm|s&|j}d}|durt|j}|dur#td|n|tj fdd}|S)Nr)rhz\The --lib option is mandatory unless beid-module-path is provided in the configuration file.c 3sz jd}Wn"jy,}ztjd|dtdt|jd|d}~ww||VWddS1sAwYdS)N)rFz PKCS#11 errorrAzPKCS#11 error: [z] ) open_beid_session PKCS11ErrorrrRr+rOr"r9 BEIDSigner)sessionrcrhrCrrFrrmanagers"z%_beid_signer_context..manager) rrMrhrNrPrkr+rO contextlibcontextmanager)r@r\rFrarkryrrxrris    ri)$rzrZrUtypingrrrr+pyhanko.cli._ctxrpyhanko.cli.configrpyhanko.cli.plugin_apirpyhanko.cli.utilsrr pyhanko.config.errorsr pyhanko.config.pkcs11r r r rMr__all__rr ImportErrorrXr>rr3rrPrirrrrs:      L A