hddlZddlmZddlmZmZmZmZddlm Z ddl m Z m Z ddl mZddlmZ ddlmZmZn#e$rZdxZZYdZ[ndZ[wwxYwdd lmZejd ZGd d ZdS) N)Path)x509pemcrlocsp)IncrementalPdfFileWriter)signers timestamps)SigSeedSubFilter)ValidationContext)open_pkcs11_session PKCS11Signer)getFile xhtml2pdfcXeZdZedZedZedZedZedZedZ edZ edZ ed Z ed Z ed Zed Zed ZedZedZdS) PDFSignaturectd|vr3|d}t|tr|}|SdS)N passphrase) isinstancestrencode)configrs T/var/www/html/Sam_Eipo/venv/lib/python3.11/site-packages/xhtml2pdf/builders/signs.pyget_passphrasezPDFSignature.get_passphrasesH 6 ! ! -J*c** 1'..00   " !cg}d|vr|d}t|ts|g}|D]}t|tst|trlt |}t j|\}}}|tj ||||sdS|S)Nca_chain) rlistrrrrunarmorgetDataappendr Certificateload)rkeychainschaincpisafile_digicert_ca_bytess r get_chainszPDFSignature.get_chainss   :&EeT**  % %a&&%*Q*<*<%%ajjH.1k(:J:J:L:L.M.M+Aq+MM$"2"7"78I"J"JKKKKMM!$$$$  F rct|}d|vrRd|vrP|rPt|d}tj|d|d||}|SdSdSdS)Nr$certr)ca_chain_fileskey_passphrase)rrr+r SimpleSignerr#)rrr&signers rtest_simple_signerzPDFSignature.test_simple_signer/s!0088 F??v//J/ ++FJ??E)..u vf~$)/F M ?////rct|}d|vr+|r+tj|d|}|SdSdS)Npfx_file)r4r)rrr r0 load_pkcs12)rrr1s rtest_pkcs12_signerzPDFSignature.test_pkcs12_signer;sa!0088   J )55 + 6FM   rct|}t|ddddddddddd }|D]8}||vr2|dkr!t|d}|||<-||||<9t di|}|S)NFT) pkcs11_session cert_label signing_certr key_label prefer_pss embed_rootsother_certs_to_pull bulk_fetchkey_idcert_iduse_raw_mechanismr)r get_sessiondictr+r)rsessionkeysr$r&r1s rtest_pkcs11_signerzPDFSignature.test_pkcs11_signerDs**6227#!%!T$$(*t &+--- , ,Cf}}*$$(33FJGGE %DII &s DI%%%% rcHd|vrtj|d}|SdS)Ntsa)url)r HTTPTimeStamper)r tst_clients rget_timestampszPDFSignature.get_timestamps\s/ F??#3u FFFJ  ?rc"d|vrdSd}|d}|dkrt|}n]|dkr7ttdtt|}n |dkrt|}|S)Nenginepkcs12pkcs11zpyhanko.sign.pkcs11 requires pyHanko to be installed with the [pkcs11] option. You can install missing dependencies by running "pip install 'pyHanko[pkcs11]'".simple)rr6r ImportErrorerHr2)rr1rPs r get_signerszPDFSignature.get_signersbs 6 ! ! F! X  !44V<U " "((FFCC C++IvvFF Frc>g}|D]}t|tst|trVt|}tj|}|||||SN) rrrrrCertificateListr#r r!)crls list_crlsxr( cert_lists r parse_crlszPDFSignature.parse_crlss  $ $A!T"" $jC&8&8 $ /44X5E5E5G5GHH   ++++  ####rcg}|D]W}t|}tj|}||X|Sr`)rr OCSPResponser#r r!)oscps list_oscprdr(datas r parse_oscpzPDFSignature.parse_oscps`  # #AqzzH$))(*:*:*<*<==D   T " " " "rcrtd}d|vrd|dvr/t|dd|dd<d|dvr/t|dd|dd<d|dvr$t|d|dd<d|dvr$t|d|dd<d|dvr$t|d|dd<||dt d i|S) NT)allow_fetchingvalidation_contextrbocsps trust_rootsextra_trust_roots other_certsr8)rErrfrlr+updater )rcontexts rget_validation_contextz#PDFSignature.get_validation_contexts^D))) 6 ) ) 45557C7N7NvVjOklrOs7t7t+,V46"67778D8O8OPVWkPlmtPu8v8v+,W5'; <<<>J>U>UV\^k>l>l+,];"f-A&BBBDPD[D[\bdwDxDx+,-@A'; <<<>J>U>UV\^k>l>l+,]; NN6"67 8 8 8 ++7+++rctddddddddtjdt| }d|vr||d|S)N Signature1sha256FT) field_name md_algorithmlocationreasonnamecertifyembed_validation_info use_pades_lta subfiltertimestamp_field_namerometa)rEr PADESrrvrt)rrs rget_signature_metazPDFSignature.get_signature_metasm\'4(,D,2'+%1%H%H%P%P  V   KKv ' ' ' rct|}|rWt|}t|}t j|t jd|||dSdS)Nrx)rz)r1r] timestamperT)rrVIncrementalPdfWriterrNr sign_pdfPdfSignatureMetadata)r\r]rr1wrs rr[zPDFSignature.simple_signs))&11  $Y//A&55f==K  7/<HHHf+    4  rc$t|}t|}t|}t|}t jdi|}|r|rt j|||||dSdSdS)N)signature_metar1rr]Tr8)rrVrNrrr rr)r\r]rr1rrrrs rrZzPDFSignature.lta_signs))&11"11&99  + +  , ,V 4 4 5====  k   Q~f)4V    4     rc|dd}|dd}|dd}|dd}||||t||||}|SdSdSdS)N lib_locationslot_no token_labeluser_pin)rrr)getr )rrrrrrFs rrDzPDFSignature.get_sessionszz.$77 **Y--jj55 ::j$//  L$<"k&=- '{%''' $<$<&=&=rN)__name__ __module__ __qualname__ staticmethodrr+r2r6rHrNrVr^rfrlrvrr[rZrDr8rrrrs\\"  \ \\.\ \*GG\G   \ \,,\,.  \   \   \   \   rr)loggingpathlibr asn1cryptorrrr$pyhanko.pdf_utils.incremental_writerr pyhanko.signr r pyhanko.sign.fieldsr pyhanko_certvalidatorr pyhanko.sign.pkcs11r rrTrUxhtml2pdf.filesr getLoggerlogrr8rrrsH++++++++++++IIIIII,,,,,,,,000000333333,EEEEEEEEE,,,'++ ,$#####g $$NNNNNNNNNNs;AA  A