a °…bx7ã@s€UddlZddlZddlZddlZddlZddlmZddlmZ ddl mZmZGdd„dej ƒZdd„eDƒZejejejejejejejejejejejejiZejeefed <ejeefZejd ejdej dej!d ej"dejdej#dejdej$di Z%eed<dd„e% &¡DƒZ'ej(ee)fedœdd„Z*eedœdd„Z+Gdd„dƒZ,Gdd„dƒZ-Gdd„dƒZ.Gd d!„d!ƒZ/dS)"éN)Úutils)Úx509)ÚNameOIDÚObjectIdentifierc@s<eZdZdZdZdZdZdZdZdZ dZ d Zd ZdZ dZd S)Ú _ASN1TypeééééééééééééN)Ú__name__Ú __module__Ú__qualname__Ú BitStringZOctetStringÚ UTF8StringZ NumericStringÚPrintableStringZ T61StringÚ IA5StringZUTCTimeZGeneralizedTimeZ VisibleStringZUniversalStringZ BMPString©rrú=/tmp/pip-target-98j97qn4/lib/python/cryptography/x509/name.pyrsrcCsi|]}|j|“qSr)Úvalue©Ú.0ÚirrrÚ !ór Ú_NAMEOID_DEFAULT_TYPEZCNÚLZSTÚOZOUÚCZSTREETZDCÚUIDÚ_NAMEOID_TO_NAMEcCsi|]\}}||“qSrr)rÚkÚvrrrr ;r!)ÚvalÚreturncCsº|sdSt|tƒr&dt |¡ d¡S| dd¡}| dd¡}| dd ¡}| d d¡}| dd ¡}| dd¡}| dd¡}| dd¡}|ddvršd|}|ddkr¶|dd…d}|S)z>Escape special characters in RFC4514 Distinguished Name value.Úú#Úutf8ú\z\\ú"z\"ú+z\+ú,z\,ú;z\;úz\>úz\00r)r-ú éÿÿÿÿr7Nz\ )Ú isinstanceÚbytesÚbinasciiÚhexlifyÚdecodeÚreplace)r*rrrÚ_escape_dn_value>s" r?cCs|sdSdd„}tj ||¡S)Nr,cSs(| d¡}t|ƒdkr|Stt|dƒƒS)Néé)ÚgroupÚlenÚchrÚint)Úmr*rrrÚsubcs z_unescape_dn_value..sub)Ú_RFC4514NameParserÚ_PAIR_RErG)r*rGrrrÚ_unescape_dn_value[srJc@s¾eZdZdddœeejeefeje e ddœdd„Zeedœdd „ƒZ eejeefdœd d„ƒZeedœdd „ƒZdejeedœdd„Zee dœdd„Zedœdd„Zedœdd„ZdS)Ú NameAttributeNT)Ú _validate)ÚoidrÚ_typerLr+cCsøt|tƒstdƒ‚|tjkrB|tjkr.tdƒ‚t|tƒsTtdƒ‚nt|tƒsTtdƒ‚|tj ksh|tj krºt|tƒsvJ‚t| d¡ƒ}|dkrž|duržt dƒ‚n|dkrºtjd |¡dd |durÐt |tj¡}t|tƒsâtdƒ‚||_||_||_dS)Nz2oid argument must be an ObjectIdentifier instance.z6oid must be X500_UNIQUE_IDENTIFIER for BitString type.z!value must be bytes for BitStringzvalue argument must be a strr.éTz/Country name must be a 2 character country codezUCountry names should be two characters, but the attribute is {} characters in length.)Ú stacklevelz%_type must be from the _ASN1Type enum)r9rÚ TypeErrorrrrZX500_UNIQUE_IDENTIFIERr:ÚstrÚCOUNTRY_NAMEÚJURISDICTION_COUNTRY_NAMErCÚencodeÚ ValueErrorÚwarningsÚwarnÚformatr"ÚgetrÚ_oidÚ_valuerN)ÚselfrMrrNrLZc_lenrrrÚ__init__osJ ÿ ÿ ÿþÿÿý zNameAttribute.__init__©r+cCs|jS©N)r[©r]rrrrM§szNameAttribute.oidcCs|jSr`)r\rarrrr«szNameAttribute.valuecCst |j|jj¡S)zt The short attribute name (for example "CN") if available, otherwise the OID dotted string. )r'rZrMZ dotted_stringrarrrÚrfc4514_attribute_name¯sz$NameAttribute.rfc4514_attribute_name©Úattr_name_overridesr+cCs6|r| |j¡nd}|dur"|j}|›dt|jƒ›S)z Format as RFC4514 Distinguished Name string. Use short attribute name if available, otherwise fall back to OID dotted string. Nú=)rZrMrbr?r)r]rdÚ attr_namerrrÚrfc4514_string·s ÿzNameAttribute.rfc4514_string©Úotherr+cCs&t|tƒstS|j|jko$|j|jkSr`)r9rKÚNotImplementedrMr©r]rirrrÚ__eq__Ès zNameAttribute.__eq__cCst|j|jfƒSr`)ÚhashrMrrarrrÚ__hash__ÎszNameAttribute.__hash__cCs d |¡S)Nz/)rYrarrrÚ__repr__ÑszNameAttribute.__repr__)N)N)rrrrÚtypingÚUnionrRr:ÚOptionalrÚboolr^ÚpropertyrMrrbÚ_OidNameMaprgÚobjectrlrErnrorrrrrKns0üúù8ÿþrKc@sœeZdZejedœdd„Zeejedœdd„Z dej eedœd d „Z eedœdd „Zedœdd„Zejedœdd„Zedœdd„Zedœdd„ZdS)ÚRelativeDistinguishedName)Ú attributescCs\t|ƒ}|stdƒ‚tdd„|Dƒƒs.tdƒ‚||_t|ƒ|_t|jƒt|ƒkrXtdƒ‚dS)Nz-a relative distinguished name cannot be emptycss|]}t|tƒVqdSr`©r9rK©rÚxrrrÚ Úr!z5RelativeDistinguishedName.__init__..z/attributes must be an iterable of NameAttributez$duplicate attributes are not allowed)ÚlistrVÚallrQÚ_attributesÚ frozensetÚ_attribute_setrC©r]rxrrrr^Ös z"RelativeDistinguishedName.__init__©rMr+cs‡fdd„|DƒS)Ncsg|]}|jˆkr|‘qSr©rMrr„rrÚ çr!zDRelativeDistinguishedName.get_attributes_for_oid..r©r]rMrr„rÚget_attributes_for_oidäsz0RelativeDistinguishedName.get_attributes_for_oidNrccsd ‡fdd„|jDƒ¡S)z¬ Format as RFC4514 Distinguished Name string. Within each RDN, attributes are joined by '+', although that is rarely used in certificates. r1c3s|]}| ˆ¡VqdSr`©rg©rÚattr©rdrrr|òsÿz;RelativeDistinguishedName.rfc4514_string..)Újoinr©r]rdrr‹rrgés þz(RelativeDistinguishedName.rfc4514_stringrhcCst|tƒstS|j|jkSr`)r9rwrjrrkrrrrl÷s z RelativeDistinguishedName.__eq__r_cCs t|jƒSr`)rmrrarrrrnýsz"RelativeDistinguishedName.__hash__cCs t|jƒSr`)ÚiterrrarrrÚ__iter__sz"RelativeDistinguishedName.__iter__cCs t|jƒSr`)rCrrarrrÚ__len__sz!RelativeDistinguishedName.__len__cCsd | ¡¡S)Nz)rYrgrarrrrosz"RelativeDistinguishedName.__repr__)N)rrrrpÚIterablerKr^rÚListr‡rrrurRrgrvrsrlrErnÚIteratorrrrorrrrrwÕsþÿþrwc@s eZdZejejeddœdd„ƒZejejeddœdd„ƒZejej eefddœdd„Ze eddœdd „ƒZd!ej eed œdd„Zeejed œdd„Zeejedœdd„ƒZd"ejedœdd„Zeedœdd„Zedœdd„Zejedœdd„Zedœdd„Zedœdd „Z dS)#ÚNameN)rxr+cCsdSr`rr‚rrrr^sz Name.__init__cCsdSr`rr‚rrrr^scCs`t|ƒ}tdd„|Dƒƒr,dd„|Dƒ|_n0tdd„|DƒƒrTt tjt|¡|_ntdƒ‚dS)Ncss|]}t|tƒVqdSr`ryrzrrrr|r!z Name.__init__..cSsg|]}tt t|¡gƒ‘qSr)rwrpÚcastrKrzrrrr…sÿz!Name.__init__..css|]}t|tƒVqdSr`)r9rwrzrrrr|!r!zNattributes must be a list of NameAttribute or a list RelativeDistinguishedName)r}r~rrpr•r’rwrQr‚rrrr^sþ ÿÿ©Údatar+cCst|ƒ ¡Sr`)rHÚparse)Úclsr—rrrÚfrom_rfc4514_string+szName.from_rfc4514_stringrccsd ‡fdd„t|jƒDƒ¡S)að Format as RFC4514 Distinguished Name string. For example 'CN=foobar.com,O=Foo Corp,C=US' An X.509 name is a two-level structure: a list of sets of attributes. Each list element is separated by ',' and within each list element, set elements are separated by '+'. The latter is almost never used in real world certificates. According to RFC4514 section 2.1 the RDNSequence must be reversed when converting to string representation. r2c3s|]}| ˆ¡VqdSr`rˆr‰r‹rrr|<sÿz&Name.rfc4514_string..)rŒÚreversedrrrr‹rrg/s þzName.rfc4514_stringrƒcs‡fdd„|DƒS)Ncsg|]}|jˆkr|‘qSrr„rr„rrr…Dr!z/Name.get_attributes_for_oid..rr†rr„rr‡AszName.get_attributes_for_oidr_cCs|jSr`©rrarrrÚrdnsFsz Name.rdns)Úbackendr+cCs t |¡Sr`)Ú rust_x509Zencode_name_bytes)r]ržrrrÚpublic_bytesJszName.public_bytesrhcCst|tƒstS|j|jkSr`)r9r”rjrrkrrrrlMs zName.__eq__cCstt|jƒƒSr`)rmÚtuplerrarrrrnSsz Name.__hash__ccs |jD]}|D] }|VqqdSr`rœ)r]ÚrdnZavarrrrXs z Name.__iter__cCstdd„|jDƒƒS)Ncss|]}t|ƒVqdSr`)rC)rr¢rrrr|^r!zName.__len__..)Úsumrrarrrr]szName.__len__cCs d dd„|jDƒ¡}d |¡S)Nr2css|]}| ¡VqdSr`rˆr‰rrrr|ar!z Name.__repr__..z )rŒrrY©r]rrrrro`sz Name.__repr__)N)N)!rrrrpÚoverloadr‘rKr^rwrqÚclassmethodrRršrrrurgrr’r‡rtrÚAnyr:r rvrsrlrErnr“rrrorrrrr” s:þÿûÿþþr”c@s.eZdZe d¡Ze d¡ZdZe e¡ZdZ dZ dZdee jƒ›dZe ›d e›Ze ›d e›Ze›d e›Ze d e›d e›de›d e›de›d e›d ej¡Ze d¡Zeddœdd„Zedœdd„Zejedœdd„Zeddœdd„Zedœdd„Zedœdd„Z e!dœdd „Z"e#dœd!d"„Z$dS)#rHz!(0|([1-9]\d*))(\.(0|([1-9]\d*)))+z[a-zA-Z][a-zA-Z\d-]*z!\\([\\ #=\"\+,;<>]|[\da-zA-Z]{2})z7[\x01-\x1f\x21\x24-\x2A\x2D-\x3A\x3D\x3F-\x5B\x5D-\x7F]z3[\x01-\x21\x23-\x2A\x2D-\x3A\x3D\x3F-\x5B\x5D-\x7F]z7[\x01-\x1F\x21\x23-\x2A\x2D-\x3A\x3D\x3F-\x5B\x5D-\x7F]z[\x80-ú]ú|z ( (z!) ( (z)* (z$) )? )? z#([\da-zA-Z]{2})+Nr–cCs||_d|_dS)Nr)Ú_dataÚ_idx)r]r—rrrr^€sz_RFC4514NameParser.__init__r_cCs|jt|jƒkSr`)r«rCrªrarrrÚ _has_data„sz_RFC4514NameParser._has_datacCs| ¡r|j|jSdSr`)r¬rªr«rarrrÚ_peek‡sz_RFC4514NameParser._peek)Úchr+cCs"| ¡|krt‚|jd7_dS)Nr@)rrVr«)r]r®rrrÚ _read_charŒsz_RFC4514NameParser._read_charcCs<|j|j|jd}|durt‚| ¡}|jt|ƒ7_|S)N)Úpos)Úmatchrªr«rVrBrC)r]Úpatr±r*rrrÚ_read_re‘sz_RFC4514NameParser._read_recCs4| ¡g}| ¡r,| d¡| | ¡¡q t|ƒS)Nr2)Ú _parse_rdnr¬r¯Úappendr”r¤rrrr˜™s z_RFC4514NameParser.parsecCs8| ¡g}| ¡dkr0| d¡| | ¡¡q t|ƒS)Nr1)Ú _parse_narr¯rµrw)r]Znasrrrr´¢s z_RFC4514NameParser._parse_rdncCs¦z| |j¡}Wn4tyD| |j¡}t |¡}|dur@t‚Yn 0t|ƒ}| d¡| ¡dkrˆ| |j ¡}t |dd…¡ ¡}n| |j ¡}t|ƒ}t||ƒS)Nrer-r@)r³Ú_OID_RErVÚ _DESCR_REÚ_NAME_TO_NAMEOIDrZrr¯rÚ _HEXSTRING_REr;Ú unhexlifyr=Ú _STRING_RErJrK)r]Z oid_valueÚnamerMrZ raw_valuerrrr¶ªs z_RFC4514NameParser._parse_na)%rrrÚreÚcompiler·r¸Z_PAIRrIZ_LUTF1Z_SUTF1Z_TUTF1rDÚsysÚ maxunicodeZ_UTFMBZ _LEADCHARZ_STRINGCHARZ _TRAILCHARÚVERBOSEr¼rºrRr^rsr¬rprrrr¯r³r”r˜rwr´rKr¶rrrrrHesH þþüüûû ö rH)0r;r¾rÀrprWZcryptographyrZ"cryptography.hazmat.bindings._rustrrŸZcryptography.x509.oidrrÚEnumrZ_ASN1_TYPE_TO_ENUMrSrrTZ SERIAL_NUMBERZDN_QUALIFIERZ EMAIL_ADDRESSrZDOMAIN_COMPONENTr"ÚDictÚ__annotations__ÚMappingrRruZCOMMON_NAMEZ LOCALITY_NAMEZSTATE_OR_PROVINCE_NAMEZORGANIZATION_NAMEZORGANIZATIONAL_UNIT_NAMEZSTREET_ADDRESSZUSER_IDr'Úitemsr¹rqr:r?rJrKrwr”rHrrrrÚsD ú ÷g5[