B QUc$@sddlZddlZddlZddlZddlZddlmZddlmZddlm Z ddl m Z m Z ddlmZddlmZddlmZmZdd lmZdd lmZmZmZmZmZmZmZmZm Z dd l!m"Z"m#Z#dd l$m%Z%m&Z&m'Z'm(Z(ej)d dddZ*ee+dddZ,e-dddZ.Gddde/Z0Gddde/Z1Gdddej2dZ3GdddZ4Gdd d e3Z5Gd!d"d"e3Z6Gd#d$d$e3Z7Gd%d&d&e3Z8Gd'd(d(e3Z9Gd)d*d*Z:Gd+d,d,e3Z;Gd-d.d.e3ZGd3d4d4Z?Gd5d6d6ej@ZAeAjBeAjCeAjDeAjEeAjFeAjGeAjHeAjId7ZJeAjBd8eAjCd9eAjDd:eAjEd;eAjFdeAjId?iZKGd@dAdAe3ZLGdBdCdCe3ZMGdDdEdEZNGdFdGdGZOGdHdIdIZPGdJdKdKe3ZQGdLdMdMe3ZRGdNdOdOe3ZSGdPdQdQe3ZTGdRdSdSej@ZUdTdUeUDZVGdVdWdWe3ZWGdXdYdYe3ZXGdZd[d[e3ZYGd\d]d]ejZe*Z[Gd^d_d_Z\Gd`dadae3Z]Gdbdcdce3Z^Gdddedee3Z_Gdfdgdge3Z`Gdhdidie3ZaGdjdkdke3ZbGdldmdme3ZcGdndodoe3ZdGdpdqdqe3ZeGdrdsdse3ZfdS)tN)utils)asn1)x509) constant_time serialization)EllipticCurvePublicKey) RSAPublicKey)#CERTIFICATE_ISSUER_PUBLIC_KEY_TYPESCERTIFICATE_PUBLIC_KEY_TYPES)SignedCertificateTimestamp) DNSName DirectoryName GeneralName IPAddress OtherName RFC822Name RegisteredIDUniformResourceIdentifier_IPADDRESS_TYPES)NameRelativeDistinguishedName)CRLEntryExtensionOID ExtensionOIDOCSPExtensionOIDObjectIdentifierExtensionTypeVar ExtensionTypeT)ZboundZ covariant) public_keyreturncCslt|tr |tjjtjj}n>t|tr@|tjj tjj }n|tjjtjj }t |}t|S)N) isinstancer public_bytesrZEncodingZDERZ PublicFormatZPKCS1rZX962ZUncompressedPointZSubjectPublicKeyInforZparse_spki_for_datahashlibZsha1digest)rdataZ serializedr$;lib/python3.7/site-packages/cryptography/x509/extensions.py_key_identifier_from_public_key1s      r&) field_namecs4tdfdd }fdd}fdd}|||fS)N)rcstt|S)N)lengetattr)self)r'r$r% len_methodJsz*_make_sequence_methods..len_methodcstt|S)N)iterr))r*)r'r$r% iter_methodMsz+_make_sequence_methods..iter_methodcst||S)N)r))r*idx)r'r$r%getitem_methodPsz._make_sequence_methods..getitem_method)int)r'r+r-r/r$)r'r%_make_sequence_methodsIs  r1cs&eZdZeeddfdd ZZS)DuplicateExtensionN)msgoidrcstt||||_dS)N)superr2__init__r4)r*r3r4) __class__r$r%r6WszDuplicateExtension.__init__)__name__ __module__ __qualname__strrr6 __classcell__r$r$)r7r%r2Vsr2cs&eZdZeeddfdd ZZS)ExtensionNotFoundN)r3r4rcstt||||_dS)N)r5r=r6r4)r*r3r4)r7r$r%r6]szExtensionNotFound.__init__)r8r9r:r;rr6r<r$r$)r7r%r=\sr=c@s*eZdZUejeed<edddZdS)rr4)rcCstd|dS)z7 Serializes the extension type to DER. z8public_bytes is not implemented for extension type {0!r}N)NotImplementedErrorformat)r*r$r$r%r eszExtensionType.public_bytesN) r8r9r:typingZClassVarr__annotations__bytesr r$r$r$r%rbs ) metaclassc@sdeZdZejdddddZeddddZeje d d d d Z e d \Z Z ZedddZdS) ExtensionszExtension[ExtensionType]N) extensionsrcCst||_dS)N)list _extensions)r*rEr$r$r%r6qszExtensions.__init__)r4rcCs0x|D]}|j|kr|SqWtd||dS)NzNo {} extension was found)r4r=r?)r*r4extr$r$r%get_extension_for_oidvs  z Extensions.get_extension_for_oidzExtension[ExtensionTypeVar])extclassrcCsD|tkrtdx|D]}t|j|r|SqWtd||jdS)Nz|UnrecognizedExtension can't be used with get_extension_for_class because more than one instance of the class may be present.zNo {} extension was found)UnrecognizedExtension TypeErrorrvaluer=r?r4)r*rJrHr$r$r%get_extension_for_classs  z"Extensions.get_extension_for_classrG)rcCs d|jS)Nz)r?rG)r*r$r$r%__repr__szExtensions.__repr__)r8r9r:r@Iterabler6rrITyperrNr1__len____iter__ __getitem__r;rOr$r$r$r%rDpsrDc@sneZdZejZeddddZee dddZ edd d Z e dd d Z eedd dZedddZdS) CRLNumberN) crl_numberrcCst|tstd||_dS)Nzcrl_number must be an integer)rr0rL _crl_number)r*rVr$r$r%r6s zCRLNumber.__init__)otherrcCst|tstS|j|jkS)N)rrUNotImplementedrV)r*rXr$r$r%__eq__s zCRLNumber.__eq__)rcCs t|jS)N)hashrV)r*r$r$r%__hash__szCRLNumber.__hash__cCs d|jS)Nz)r?rV)r*r$r$r%rOszCRLNumber.__repr__cCs|jS)N)rW)r*r$r$r%rVszCRLNumber.crl_numbercCs t|S)N) rust_x509encode_extension_value)r*r$r$r%r szCRLNumber.public_bytes)r8r9r:rZ CRL_NUMBERr4r0r6objectboolrZr\r;rOpropertyrVrBr r$r$r$r%rUsrUc@seZdZejZejeejej e eje ddddZ e eddddZe ddd d d Zed d dZeedddZe d ddZeejed ddZeejeje d ddZeeje d ddZed ddZdS)AuthorityKeyIdentifierN)key_identifierauthority_cert_issuerauthority_cert_serial_numberrcCsr|dk|dkkrtd|dk rBt|}tdd|DsBtd|dk r\t|ts\td||_||_||_dS)NzXauthority_cert_issuer and authority_cert_serial_number must both be present or both Nonecss|]}t|tVqdS)N)rr).0xr$r$r% sz2AuthorityKeyIdentifier.__init__..z;authority_cert_issuer must be a list of GeneralName objectsz/authority_cert_serial_number must be an integer) ValueErrorrFallrLrr0_key_identifier_authority_cert_issuer_authority_cert_serial_number)r*rcrdrer$r$r%r6s   zAuthorityKeyIdentifier.__init__)rrcCst|}||dddS)N)rcrdre)r&)clsrr"r$r$r%from_issuer_public_keys z-AuthorityKeyIdentifier.from_issuer_public_keySubjectKeyIdentifier)skircCs||jdddS)N)rcrdre)r")rnrqr$r$r%"from_issuer_subject_key_identifiersz9AuthorityKeyIdentifier.from_issuer_subject_key_identifier)rcCs d|S)Nz)r?)r*r$r$r%rOszAuthorityKeyIdentifier.__repr__)rXrcCs2t|tstS|j|jko0|j|jko0|j|jkS)N)rrbrYrcrdre)r*rXr$r$r%rZs    zAuthorityKeyIdentifier.__eq__cCs,|jdkrd}n t|j}t|j||jfS)N)rdtupler[rcre)r*Zacir$r$r%r\s   zAuthorityKeyIdentifier.__hash__cCs|jS)N)rk)r*r$r$r%rcsz%AuthorityKeyIdentifier.key_identifiercCs|jS)N)rl)r*r$r$r%rdsz,AuthorityKeyIdentifier.authority_cert_issuercCs|jS)N)rm)r*r$r$r%resz3AuthorityKeyIdentifier.authority_cert_serial_numbercCs t|S)N)r]r^)r*r$r$r%r sz#AuthorityKeyIdentifier.public_bytes)r8r9r:rZAUTHORITY_KEY_IDENTIFIERr4r@OptionalrBrPrr0r6 classmethodr rorrr;rOr_r`rZr\rarcListrdrer r$r$r$r%rbs*!  rbc@seZdZejZeddddZee ddddZ e edd d Z e edd d Z edd dZeedddZedddZedddZdS)rpN)r"rcCs ||_dS)N)_digest)r*r"r$r$r%r6#szSubjectKeyIdentifier.__init__)rrcCs |t|S)N)r&)rnrr$r$r%from_public_key&sz$SubjectKeyIdentifier.from_public_key)rcCs|jS)N)rw)r*r$r$r%r",szSubjectKeyIdentifier.digestcCs|jS)N)rw)r*r$r$r%rc0sz#SubjectKeyIdentifier.key_identifiercCs d|jS)Nz$)r?r")r*r$r$r%rO4szSubjectKeyIdentifier.__repr__)rXrcCst|tstSt|j|jS)N)rrprYrZbytes_eqr")r*rXr$r$r%rZ7s zSubjectKeyIdentifier.__eq__cCs t|jS)N)r[r")r*r$r$r%r\=szSubjectKeyIdentifier.__hash__cCs t|S)N)r]r^)r*r$r$r%r @sz!SubjectKeyIdentifier.public_bytes)r8r9r:rZSUBJECT_KEY_IDENTIFIERr4rBr6rur rxrar"rcr;rOr_r`rZr0r\r r$r$r$r%rp srpc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)AuthorityInformationAccessAccessDescriptionN) descriptionsrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rrz)rfrgr$r$r%rhKsz6AuthorityInformationAccess.__init__..z@Every item in the descriptions list must be an AccessDescription)rFrjrL _descriptions)r*r{r$r$r%r6Gs z#AuthorityInformationAccess.__init__r|)rcCs d|jS)Nz )r?r|)r*r$r$r%rOUsz#AuthorityInformationAccess.__repr__)rXrcCst|tstS|j|jkS)N)rryrYr|)r*rXr$r$r%rZXs z!AuthorityInformationAccess.__eq__cCstt|jS)N)r[rsr|)r*r$r$r%r\^sz#AuthorityInformationAccess.__hash__cCs t|S)N)r]r^)r*r$r$r%r asz'AuthorityInformationAccess.public_bytes)r8r9r:rZAUTHORITY_INFORMATION_ACCESSr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%ryDs ryc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)SubjectInformationAccessrzN)r{rcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rrz)rfrgr$r$r%rhlsz4SubjectInformationAccess.__init__..z@Every item in the descriptions list must be an AccessDescription)rFrjrLr|)r*r{r$r$r%r6hs z!SubjectInformationAccess.__init__r|)rcCs d|jS)Nz)r?r|)r*r$r$r%rOvsz!SubjectInformationAccess.__repr__)rXrcCst|tstS|j|jkS)N)rr}rYr|)r*rXr$r$r%rZys zSubjectInformationAccess.__eq__cCstt|jS)N)r[rsr|)r*r$r$r%r\sz!SubjectInformationAccess.__hash__cCs t|S)N)r]r^)r*r$r$r%r sz%SubjectInformationAccess.public_bytes)r8r9r:rZSUBJECT_INFORMATION_ACCESSr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%r}es r}c@sneZdZeeddddZedddZee dd d Z e dd d Z e edd dZe edddZdS)rzN) access_methodaccess_locationrcCs4t|tstdt|ts$td||_||_dS)Nz)access_method must be an ObjectIdentifierz%access_location must be a GeneralName)rrrLr_access_method_access_location)r*r~rr$r$r%r6s   zAccessDescription.__init__)rcCs d|S)NzY)r?)r*r$r$r%rOszAccessDescription.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrzrYr~r)r*rXr$r$r%rZs  zAccessDescription.__eq__cCst|j|jfS)N)r[r~r)r*r$r$r%r\szAccessDescription.__hash__cCs|jS)N)r)r*r$r$r%r~szAccessDescription.access_methodcCs|jS)N)r)r*r$r$r%rsz!AccessDescription.access_location)r8r9r:rrr6r;rOr_r`rZr0r\rar~rr$r$r$r%rzs  rzc@seZdZejZeeje ddddZ e edddZ e eje ddd Z edd d Zeed d dZe dddZedddZdS)BasicConstraintsN)ca path_lengthrcCsXt|tstd|dk r&|s&td|dk rHt|tr@|dkrHtd||_||_dS)Nzca must be a boolean valuez)path_length must be None when ca is Falserz2path_length must be a non-negative integer or None)rr`rLrir0_ca _path_length)r*rrr$r$r%r6s  zBasicConstraints.__init__)rcCs|jS)N)r)r*r$r$r%rszBasicConstraints.cacCs|jS)N)r)r*r$r$r%rszBasicConstraints.path_lengthcCs d|S)Nz:)r?)r*r$r$r%rOszBasicConstraints.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZs zBasicConstraints.__eq__cCst|j|jfS)N)r[rr)r*r$r$r%r\szBasicConstraints.__hash__cCs t|S)N)r]r^)r*r$r$r%r szBasicConstraints.public_bytes)r8r9r:rZBASIC_CONSTRAINTSr4r`r@rtr0r6rarrr;rOr_rZr\rBr r$r$r$r%rsrc@sneZdZejZeddddZeedddZ e e dd d Z edd d Z edd dZedddZdS)DeltaCRLIndicatorN)rVrcCst|tstd||_dS)Nzcrl_number must be an integer)rr0rLrW)r*rVr$r$r%r6s zDeltaCRLIndicator.__init__)rcCs|jS)N)rW)r*r$r$r%rVszDeltaCRLIndicator.crl_number)rXrcCst|tstS|j|jkS)N)rrrYrV)r*rXr$r$r%rZs zDeltaCRLIndicator.__eq__cCs t|jS)N)r[rV)r*r$r$r%r\szDeltaCRLIndicator.__hash__cCs d|S)Nz.)r?)r*r$r$r%rOszDeltaCRLIndicator.__repr__cCs t|S)N)r]r^)r*r$r$r%r szDeltaCRLIndicator.public_bytes)r8r9r:rZDELTA_CRL_INDICATORr4r0r6rarVr_r`rZr\r;rOrBr r$r$r$r%rsrc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)CRLDistributionPointsDistributionPointN)distribution_pointsrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz1CRLDistributionPoints.__init__..z?distribution_points must be a list of DistributionPoint objects)rFrjrL_distribution_points)r*rr$r$r%r6s zCRLDistributionPoints.__init__r)rcCs d|jS)Nz)r?r)r*r$r$r%rOszCRLDistributionPoints.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zCRLDistributionPoints.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\szCRLDistributionPoints.__hash__cCs t|S)N)r]r^)r*r$r$r%r sz"CRLDistributionPoints.public_bytes)r8r9r:rZCRL_DISTRIBUTION_POINTSr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%rs  rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS) FreshestCRLrN)rrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rh&sz'FreshestCRL.__init__..z?distribution_points must be a list of DistributionPoint objects)rFrjrLr)r*rr$r$r%r6!s zFreshestCRL.__init__r)rcCs d|jS)Nz)r?r)r*r$r$r%rO3szFreshestCRL.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZ6s zFreshestCRL.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\<szFreshestCRL.__hash__cCs t|S)N)r]r^)r*r$r$r%r ?szFreshestCRL.public_bytes)r8r9r:rZ FRESHEST_CRLr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%rs  rc@seZdZejejeejeejejdejejeddddZ e dddZ e e d d d Zedd d ZeejejedddZeejedddZeejejddddZeejejedddZdS)r ReasonFlagsN) full_name relative_namereasons crl_issuerrcCs|r|rtd|dk r:t|}tdd|Ds:td|rPt|tsPtd|dk rzt|}tdd|Dsztd|rt|trtdd|Dstd |rtj|kstj |krtd |r|s|s|std ||_ ||_ ||_ ||_ dS) NzOYou cannot provide both full_name and relative_name, at least one must be None.css|]}t|tVqdS)N)rr)rfrgr$r$r%rhSsz-DistributionPoint.__init__..z/full_name must be a list of GeneralName objectsz1relative_name must be a RelativeDistinguishedNamecss|]}t|tVqdS)N)rr)rfrgr$r$r%rh`sz2crl_issuer must be None or a list of general namescss|]}t|tVqdS)N)rr)rfrgr$r$r%rhgsz0reasons must be None or frozenset of ReasonFlagszLunspecified and remove_from_crl are not valid reasons in a DistributionPointzPYou must supply crl_issuer, full_name, or relative_name when reasons is not None)rirFrjrLrr frozensetr unspecifiedremove_from_crl _full_name_relative_name_reasons _crl_issuer)r*rrrrr$r$r%r6DsB    zDistributionPoint.__init__)rcCs d|S)Nz})r?)r*r$r$r%rOszDistributionPoint.__repr__)rXrcCs>t|tstS|j|jko<|j|jko<|j|jko<|j|jkS)N)rrrYrrrr)r*rXr$r$r%rZs     zDistributionPoint.__eq__cCsH|jdk rt|j}nd}|jdk r0t|j}nd}t||j|j|fS)N)rrsrr[rr)r*fnrr$r$r%r\s    zDistributionPoint.__hash__cCs|jS)N)r)r*r$r$r%rszDistributionPoint.full_namecCs|jS)N)r)r*r$r$r%rszDistributionPoint.relative_namecCs|jS)N)r)r*r$r$r%rszDistributionPoint.reasonscCs|jS)N)r)r*r$r$r%rszDistributionPoint.crl_issuer)r8r9r:r@rtrPrr FrozenSetr6r;rOr_r`rZr0r\rarvrrrrr$r$r$r%rCs 5 rc@s4eZdZdZdZdZdZdZdZdZ dZ d Z d Z d S) rrZ keyCompromiseZ cACompromiseZaffiliationChanged supersededZcessationOfOperationZcertificateHoldZprivilegeWithdrawnZ aACompromiseZ removeFromCRLN) r8r9r:rkey_compromise ca_compromiseaffiliation_changedrcessation_of_operationcertificate_holdprivilege_withdrawn aa_compromiserr$r$r$r%rsr)rrrrrrrrc@seZdZejZejeejeddddZ e dddZ e e dd d Zedd d Zeejedd dZeejedddZedddZdS)PolicyConstraintsN)require_explicit_policyinhibit_policy_mappingrcCs\|dk rt|tstd|dk r4t|ts4td|dkrL|dkrLtd||_||_dS)Nz>require_explicit_policy must be a non-negative integer or Nonez=inhibit_policy_mapping must be a non-negative integer or NonezSAt least one of require_explicit_policy and inhibit_policy_mapping must not be None)rr0rLri_require_explicit_policy_inhibit_policy_mapping)r*rrr$r$r%r6s  zPolicyConstraints.__init__)rcCs d|S)Nz{)r?)r*r$r$r%rOszPolicyConstraints.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZ s  zPolicyConstraints.__eq__cCst|j|jfS)N)r[rr)r*r$r$r%r\szPolicyConstraints.__hash__cCs|jS)N)r)r*r$r$r%rsz)PolicyConstraints.require_explicit_policycCs|jS)N)r)r*r$r$r%rsz(PolicyConstraints.inhibit_policy_mappingcCs t|S)N)r]r^)r*r$r$r%r szPolicyConstraints.public_bytes)r8r9r:rZPOLICY_CONSTRAINTSr4r@rtr0r6r;rOr_r`rZr\rarrrBr r$r$r$r%rs rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)CertificatePoliciesPolicyInformationN)policiesrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rh)sz/CertificatePolicies.__init__..z;Every item in the policies list must be a PolicyInformation)rFrjrL _policies)r*rr$r$r%r6's zCertificatePolicies.__init__r)rcCs d|jS)Nz)r?r)r*r$r$r%rO3szCertificatePolicies.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZ6s zCertificatePolicies.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\<szCertificatePolicies.__hash__cCs t|S)N)r]r^)r*r$r$r%r ?sz CertificatePolicies.public_bytes)r8r9r:rZCERTIFICATE_POLICIESr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%r$s rc@seZdZeejejejedfddddZ edddZ e e d d d Z edd d ZeedddZeejejejedfdddZdS)r UserNoticeN)policy_identifierpolicy_qualifiersrcCsLt|tstd||_|dk rBt|}tdd|DsBtd||_dS)Nz-policy_identifier must be an ObjectIdentifiercss|]}t|ttfVqdS)N)rr;r)rfrgr$r$r%rhSsz-PolicyInformation.__init__..zMpolicy_qualifiers must be a list of strings and/or UserNotice objects or None)rrrL_policy_identifierrFrj_policy_qualifiers)r*rrr$r$r%r6Ds zPolicyInformation.__init__)rcCs d|S)Nze)r?)r*r$r$r%rO\szPolicyInformation.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZbs  zPolicyInformation.__eq__cCs(|jdk rt|j}nd}t|j|fS)N)rrsr[r)r*Zpqr$r$r%r\ks  zPolicyInformation.__hash__cCs|jS)N)r)r*r$r$r%rusz#PolicyInformation.policy_identifiercCs|jS)N)r)r*r$r$r%rysz#PolicyInformation.policy_qualifiers)r8r9r:rr@rtrPUnionr;r6rOr_r`rZr0r\rarrvrr$r$r$r%rCs  rc@seZdZejdejeddddZedddZee d d d Z e dd d Z e ejddddZe ejedddZdS)rNoticeReferenceN)notice_reference explicit_textrcCs&|rt|tstd||_||_dS)Nz2notice_reference must be None or a NoticeReference)rrrL_notice_reference_explicit_text)r*rrr$r$r%r6s zUserNotice.__init__)rcCs d|S)NzV)r?)r*r$r$r%rOszUserNotice.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZs  zUserNotice.__eq__cCst|j|jfS)N)r[rr)r*r$r$r%r\szUserNotice.__hash__cCs|jS)N)r)r*r$r$r%rszUserNotice.notice_referencecCs|jS)N)r)r*r$r$r%rszUserNotice.explicit_text)r8r9r:r@rtr;r6rOr_r`rZr0r\rarrr$r$r$r%rs  rc@seZdZejeejeddddZedddZ e e dd d Z edd d Z eejedd dZeejedddZdS)rN) organizationnotice_numbersrcCs2||_t|}tdd|Ds(td||_dS)Ncss|]}t|tVqdS)N)rr0)rfrgr$r$r%rhsz+NoticeReference.__init__..z)notice_numbers must be a list of integers) _organizationrFrjrL_notice_numbers)r*rrr$r$r%r6s zNoticeReference.__init__)rcCs d|S)NzU)r?)r*r$r$r%rOszNoticeReference.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZs  zNoticeReference.__eq__cCst|jt|jfS)N)r[rrsr)r*r$r$r%r\szNoticeReference.__hash__cCs|jS)N)r)r*r$r$r%rszNoticeReference.organizationcCs|jS)N)r)r*r$r$r%rszNoticeReference.notice_numbers)r8r9r:r@rtr;rPr0r6rOr_r`rZr\rarrvrr$r$r$r%rs rc@speZdZejZejeddddZ e d\Z Z Z edddZeed d d Zedd d ZedddZdS)ExtendedKeyUsageN)usagesrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz,ExtendedKeyUsage.__init__..z9Every item in the usages list must be an ObjectIdentifier)rFrjrL_usages)r*rr$r$r%r6s zExtendedKeyUsage.__init__r)rcCs d|jS)Nz)r?r)r*r$r$r%rOszExtendedKeyUsage.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zExtendedKeyUsage.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\szExtendedKeyUsage.__hash__cCs t|S)N)r]r^)r*r$r$r%r szExtendedKeyUsage.public_bytes)r8r9r:rZEXTENDED_KEY_USAGEr4r@rPrr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%rs rc@sLeZdZejZeedddZe dddZ e dddZ e dd d Zd S) OCSPNoCheck)rXrcCst|tstSdS)NT)rrrY)r*rXr$r$r%rZs zOCSPNoCheck.__eq__)rcCsttS)N)r[r)r*r$r$r%r\szOCSPNoCheck.__hash__cCsdS)Nzr$)r*r$r$r%rOszOCSPNoCheck.__repr__cCs t|S)N)r]r^)r*r$r$r%r szOCSPNoCheck.public_bytesN)r8r9r:rZ OCSP_NO_CHECKr4r_r`rZr0r\r;rOrBr r$r$r$r%rs rc@sLeZdZejZeedddZe dddZ e dddZ e dd d Zd S) PrecertPoison)rXrcCst|tstSdS)NT)rrrY)r*rXr$r$r%rZs zPrecertPoison.__eq__)rcCsttS)N)r[r)r*r$r$r%r\ szPrecertPoison.__hash__cCsdS)Nzr$)r*r$r$r%rOszPrecertPoison.__repr__cCs t|S)N)r]r^)r*r$r$r%r szPrecertPoison.public_bytesN)r8r9r:rZPRECERT_POISONr4r_r`rZr0r\r;rOrBr r$r$r$r%rs rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS) TLSFeatureTLSFeatureTypeN)featuresrcCs8t|}tdd|Dr&t|dkr.td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz&TLSFeature.__init__..rz@features must be a list of elements from the TLSFeatureType enum)rFrjr(rL _features)r*rr$r$r%r6s  zTLSFeature.__init__r)rcCs d|S)Nz$)r?)r*r$r$r%rO)szTLSFeature.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZ,s zTLSFeature.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\2szTLSFeature.__hash__cCs t|S)N)r]r^)r*r$r$r%r 5szTLSFeature.public_bytes)r8r9r:rZ TLS_FEATUREr4r@rPr6r1rRrSrTr;rOr_r`rZr0r\rBr r$r$r$r%rs rc@seZdZdZdZdS)rrN)r8r9r:Zstatus_requestZstatus_request_v2r$r$r$r%r9srcCsi|] }||jqSr$)rM)rfrgr$r$r% Dsrc@sneZdZejZeddddZedddZ e e dd d Z edd d Z eedd dZedddZdS)InhibitAnyPolicyN) skip_certsrcCs,t|tstd|dkr"td||_dS)Nzskip_certs must be an integerrz)skip_certs must be a non-negative integer)rr0rLri _skip_certs)r*rr$r$r%r6Js  zInhibitAnyPolicy.__init__)rcCs d|S)Nz-)r?)r*r$r$r%rOSszInhibitAnyPolicy.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZVs zInhibitAnyPolicy.__eq__cCs t|jS)N)r[r)r*r$r$r%r\\szInhibitAnyPolicy.__hash__cCs|jS)N)r)r*r$r$r%r_szInhibitAnyPolicy.skip_certscCs t|S)N)r]r^)r*r$r$r%r cszInhibitAnyPolicy.public_bytes)r8r9r:rZINHIBIT_ANY_POLICYr4r0r6r;rOr_r`rZr\rarrBr r$r$r$r%rGs rc @seZdZejZeeeeeeeeedd ddZeedddZ eeddd Z eedd d Z eedd d Z eedddZ eedddZeedddZeedddZeedddZedddZeedddZedddZeddd ZdS)!KeyUsageN) digital_signaturecontent_commitmentkey_enciphermentdata_encipherment key_agreement key_cert_signcrl_sign encipher_only decipher_onlyrc CsN|s|s | rtd||_||_||_||_||_||_||_||_| |_ dS)NzKencipher_only and decipher_only can only be true when key_agreement is true) ri_digital_signature_content_commitment_key_encipherment_data_encipherment_key_agreement_key_cert_sign _crl_sign_encipher_only_decipher_only) r*rrrrrrrrrr$r$r%r6js zKeyUsage.__init__)rcCs|jS)N)r)r*r$r$r%rszKeyUsage.digital_signaturecCs|jS)N)r)r*r$r$r%rszKeyUsage.content_commitmentcCs|jS)N)r)r*r$r$r%rszKeyUsage.key_enciphermentcCs|jS)N)r)r*r$r$r%rszKeyUsage.data_enciphermentcCs|jS)N)r)r*r$r$r%rszKeyUsage.key_agreementcCs|jS)N)r)r*r$r$r%rszKeyUsage.key_cert_signcCs|jS)N)r)r*r$r$r%rszKeyUsage.crl_signcCs|jstdn|jSdS)Nz7encipher_only is undefined unless key_agreement is true)rrir)r*r$r$r%rszKeyUsage.encipher_onlycCs|jstdn|jSdS)Nz7decipher_only is undefined unless key_agreement is true)rrir)r*r$r$r%rszKeyUsage.decipher_onlycCs<y|j}|j}Wntk r,d}d}YnXd|||S)NFa-)rrrir?)r*rrr$r$r%rOs  zKeyUsage.__repr__)rXrcCszt|tstS|j|jkox|j|jkox|j|jkox|j|jkox|j|jkox|j|jkox|j |j kox|j |j kox|j |j kS)N) rrrYrrrrrrrrr)r*rXr$r$r%rZs         zKeyUsage.__eq__c Cs,t|j|j|j|j|j|j|j|j|j f S)N) r[rrrrrrrrr)r*r$r$r%r\szKeyUsage.__hash__cCs t|S)N)r]r^)r*r$r$r%r szKeyUsage.public_bytes)r8r9r:rZ KEY_USAGEr4r`r6rarrrrrrrrrr;rOr_rZr0r\rBr r$r$r$r%rgsBrc@seZdZejZejeje ejeje ddddZ e e dddZ eje ddd d Zed d d Zed ddZeejeje d ddZeejeje d ddZed ddZdS)NameConstraintsN)permitted_subtreesexcluded_subtreesrcCs|dk r@t|}|stdtdd|Ds6td|||dk rt|}|s\tdtdd|Dsvtd|||dkr|dkrtd||_||_dS) Nz3permitted_subtrees must be a non-empty list or Nonecss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz+NameConstraints.__init__..z@permitted_subtrees must be a list of GeneralName objects or Nonez2excluded_subtrees must be a non-empty list or Nonecss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz?excluded_subtrees must be a list of GeneralName objects or NonezIAt least one of permitted_subtrees and excluded_subtrees must not be None)rFrirjrL_validate_ip_name_permitted_subtrees_excluded_subtrees)r*rrr$r$r%r6s.  zNameConstraints.__init__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrrYrr)r*rXr$r$r%rZs  zNameConstraints.__eq__)treercCstdd|DrtddS)Ncss.|]&}t|to$t|jtjtjf VqdS)N)rrrM ipaddressZ IPv4NetworkZ IPv6Network)rfnamer$r$r%rh$sz4NameConstraints._validate_ip_name..zGIPAddress name constraints must be an IPv4Network or IPv6Network object)anyrL)r*rr$r$r%r"s  z!NameConstraints._validate_ip_name)rcCs d|S)Nze)r?)r*r$r$r%rO/szNameConstraints.__repr__cCs@|jdk rt|j}nd}|jdk r0t|j}nd}t||fS)N)rrsrr[)r*ZpsZesr$r$r%r\5s    zNameConstraints.__hash__cCs|jS)N)r)r*r$r$r%rFsz"NameConstraints.permitted_subtreescCs|jS)N)r)r*r$r$r%rLsz!NameConstraints.excluded_subtreescCs t|S)N)r]r^)r*r$r$r%r RszNameConstraints.public_bytes)r8r9r:rZNAME_CONSTRAINTSr4r@rtrPrr6r_r`rZrr;rOr0r\rarvrrrBr r$r$r$r%rs&  rc@seZdZeeeddddZeedddZeeddd Z eedd d Z e dd d Z e edddZedddZdS) ExtensionN)r4criticalrMrcCs:t|tstdt|ts$td||_||_||_dS)Nz2oid argument must be an ObjectIdentifier instance.z critical must be a boolean value)rrrLr`_oid _critical_value)r*r4rrMr$r$r%r6Ws  zExtension.__init__)rcCs|jS)N)r)r*r$r$r%r4fsz Extension.oidcCs|jS)N)r)r*r$r$r%rjszExtension.criticalcCs|jS)N)r)r*r$r$r%rMnszExtension.valuecCs d|S)Nz@)r?)r*r$r$r%rOrszExtension.__repr__)rXrcCs2t|tstS|j|jko0|j|jko0|j|jkS)N)rrrYr4rrM)r*rXr$r$r%rZxs    zExtension.__eq__cCst|j|j|jfS)N)r[r4rrM)r*r$r$r%r\szExtension.__hash__)r8r9r:rr`rr6rar4rrMr;rOr_rZr0r\r$r$r$r%rVs  rc @seZdZejeddddZed\ZZ Z ej ej ej eej eej efejedddZej ej eejedd dZej ej eejedd dZej ej eejedd dZej ej eejedd dZej ej eej eej eej eej eej eej efej ejeejeejeejeejefdd dZedddZeedddZedddZ dS) GeneralNamesN) general_namesrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz(GeneralNames.__init__..z^Every item in the general_names list must be an object conforming to the GeneralName interface)rFrjrL_general_names)r*rr$r$r%r6s zGeneralNames.__init__r)typercCsdS)Nr$)r*rr$r$r%get_values_for_types z GeneralNames.get_values_for_typecCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscs0fdd|D}tkr(dd|DSt|S)Nc3s|]}t|r|VqdS)N)r)rfi)rr$r%rhsz3GeneralNames.get_values_for_type..cSsg|] }|jqSr$)rM)rfrr$r$r% sz4GeneralNames.get_values_for_type..)rrF)r*rZobjsr$)rr%rs)rcCs d|jS)Nz)r?r)r*r$r$r%rOszGeneralNames.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zGeneralNames.__eq__cCstt|jS)N)r[rsr)r*r$r$r%r\szGeneralNames.__hash__)!r8r9r:r@rPrr6r1rRrSrToverloadrrQr rrrvr;rr rrrrrrrOr_r`rZr0r\r$r$r$r%rsJ    rc @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)SubjectAlternativeNameN)rrcCst||_dS)N)rr)r*rr$r$r%r6szSubjectAlternativeName.__init__r)rrcCsdS)Nr$)r*rr$r$r%rs z*SubjectAlternativeName.get_values_for_typecCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCs |j|S)N)rr)r*rr$r$r%r s)rcCs d|jS)Nz)r?r)r*r$r$r%rO szSubjectAlternativeName.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZ#s zSubjectAlternativeName.__eq__cCs t|jS)N)r[r)r*r$r$r%r\)szSubjectAlternativeName.__hash__cCs t|S)N)r]r^)r*r$r$r%r ,sz#SubjectAlternativeName.public_bytes)&r8r9r:rZSUBJECT_ALTERNATIVE_NAMEr4r@rPrr6r1rRrSrTrrrQr rrrvr;rr rrrrrrrOr_r`rZr0r\rBr r$r$r$r%rsN  rc @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)IssuerAlternativeNameN)rrcCst||_dS)N)rr)r*rr$r$r%r63szIssuerAlternativeName.__init__r)rrcCsdS)Nr$)r*rr$r$r%r8s z)IssuerAlternativeName.get_values_for_typecCsdS)Nr$)r*rr$r$r%rCscCsdS)Nr$)r*rr$r$r%rJscCsdS)Nr$)r*rr$r$r%rQscCsdS)Nr$)r*rr$r$r%rWscCs |j|S)N)rr)r*rr$r$r%r]s)rcCs d|jS)Nz)r?r)r*r$r$r%rOqszIssuerAlternativeName.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZts zIssuerAlternativeName.__eq__cCs t|jS)N)r[r)r*r$r$r%r\zszIssuerAlternativeName.__hash__cCs t|S)N)r]r^)r*r$r$r%r }sz"IssuerAlternativeName.public_bytes)&r8r9r:rZISSUER_ALTERNATIVE_NAMEr4r@rPrr6r1rRrSrTrrrQr rrrvr;rr rrrrrrrOr_r`rZr0r\rBr r$r$r$r%r0sN  rc @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)CertificateIssuerN)rrcCst||_dS)N)rr)r*rr$r$r%r6szCertificateIssuer.__init__r)rrcCsdS)Nr$)r*rr$r$r%rs z%CertificateIssuer.get_values_for_typecCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCsdS)Nr$)r*rr$r$r%rscCs |j|S)N)rr)r*rr$r$r%rs)rcCs d|jS)Nz)r?r)r*r$r$r%rOszCertificateIssuer.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zCertificateIssuer.__eq__cCs t|jS)N)r[r)r*r$r$r%r\szCertificateIssuer.__hash__cCs t|S)N)r]r^)r*r$r$r%r szCertificateIssuer.public_bytes)&r8r9r:rZCERTIFICATE_ISSUERr4r@rPrr6r1rRrSrTrrrQr rrrvr;rr rrrrrrrOr_r`rZr0r\rBr r$r$r$r%rsN  rc@sneZdZejZeddddZedddZ e e dd d Z e dd d Zeedd dZedddZdS) CRLReasonN)reasonrcCst|tstd||_dS)Nz*reason must be an element from ReasonFlags)rrrL_reason)r*rr$r$r%r6s zCRLReason.__init__)rcCs d|jS)Nz)r?r)r*r$r$r%rOszCRLReason.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zCRLReason.__eq__cCs t|jS)N)r[r)r*r$r$r%r\szCRLReason.__hash__cCs|jS)N)r)r*r$r$r%rszCRLReason.reasoncCs t|S)N)r]r^)r*r$r$r%r szCRLReason.public_bytes)r8r9r:rZ CRL_REASONr4rr6r;rOr_r`rZr0r\rarrBr r$r$r$r%rsrc@sreZdZejZejddddZedddZ e e dd d Z e dd d Zeejdd dZedddZdS)InvalidityDateN)invalidity_datercCst|tjstd||_dS)Nz+invalidity_date must be a datetime.datetime)rdatetimerL_invalidity_date)r*rr$r$r%r6s zInvalidityDate.__init__)rcCs d|jS)Nz$)r?r)r*r$r$r%rOszInvalidityDate.__repr__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZs zInvalidityDate.__eq__cCs t|jS)N)r[r)r*r$r$r%r\szInvalidityDate.__hash__cCs|jS)N)r)r*r$r$r%rszInvalidityDate.invalidity_datecCs t|S)N)r]r^)r*r$r$r%r szInvalidityDate.public_bytes)r8r9r:rZINVALIDITY_DATEr4rr6r;rOr_r`rZr0r\rarrBr r$r$r$r%rsrc@speZdZejZejeddddZ e d\Z Z Z edddZedd d Zeed d d ZedddZdS))PrecertificateSignedCertificateTimestampsN)signed_certificate_timestampsrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr )rfsctr$r$r%rhszEPrecertificateSignedCertificateTimestamps.__init__..zYEvery item in the signed_certificate_timestamps list must be a SignedCertificateTimestamp)rFrjrL_signed_certificate_timestamps)r*rr$r$r%r6s z2PrecertificateSignedCertificateTimestamps.__init__r)rcCsdt|S)Nz/)r?rF)r*r$r$r%rO&sz2PrecertificateSignedCertificateTimestamps.__repr__cCstt|jS)N)r[rsr)r*r$r$r%r\+sz2PrecertificateSignedCertificateTimestamps.__hash__)rXrcCst|tstS|j|jkS)N)rrrYr)r*rXr$r$r%rZ.s z0PrecertificateSignedCertificateTimestamps.__eq__cCs t|S)N)r]r^)r*r$r$r%r 7sz6PrecertificateSignedCertificateTimestamps.public_bytes)r8r9r:rZ%PRECERT_SIGNED_CERTIFICATE_TIMESTAMPSr4r@rPr r6r1rRrSrTr;rOr0r\r_r`rZrBr r$r$r$r%rs   rc@speZdZejZejeddddZ e d\Z Z Z edddZedd d Zeed d d ZedddZdS)SignedCertificateTimestampsN)rrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdS)N)rr )rfrr$r$r%rhFsz7SignedCertificateTimestamps.__init__..zYEvery item in the signed_certificate_timestamps list must be a SignedCertificateTimestamp)rFrjrLr)r*rr$r$r%r6>s z$SignedCertificateTimestamps.__init__r)rcCsdt|S)Nz!)r?rF)r*r$r$r%rOSsz$SignedCertificateTimestamps.__repr__cCstt|jS)N)r[rsr)r*r$r$r%r\Vsz$SignedCertificateTimestamps.__hash__)rXrcCst|tstS|j|jkS)N)rr rYr)r*rXr$r$r%rZYs z"SignedCertificateTimestamps.__eq__cCs t|S)N)r]r^)r*r$r$r%r bsz(SignedCertificateTimestamps.public_bytes)r8r9r:rZSIGNED_CERTIFICATE_TIMESTAMPSr4r@rPr r6r1rRrSrTr;rOr0r\r_r`rZrBr r$r$r$r%r ;s   r c@sneZdZejZeddddZee dddZ e dd d Z e dd d Zeedd dZedddZdS) OCSPNonceN)noncercCst|tstd||_dS)Nznonce must be bytes)rrBrL_nonce)r*r r$r$r%r6is zOCSPNonce.__init__)rXrcCst|tstS|j|jkS)N)rr rYr )r*rXr$r$r%rZos zOCSPNonce.__eq__)rcCs t|jS)N)r[r )r*r$r$r%r\uszOCSPNonce.__hash__cCs d|S)Nz)r?)r*r$r$r%rOxszOCSPNonce.__repr__cCs|jS)N)r )r*r$r$r%r {szOCSPNonce.noncecCs t|S)N)r]r^)r*r$r$r%r szOCSPNonce.public_bytes)r8r9r:rZNONCEr4rBr6r_r`rZr0r\r;rOrar r r$r$r$r%r fsr c @s"eZdZejZejeje eje e e ejej e e e ddddZedddZee dd d Zedd d Zeejeje dd dZeeje dddZee dddZee dddZeejej e dddZee dddZee dddZedddZdS)IssuingDistributionPointN)rronly_contains_user_certsonly_contains_ca_certsonly_some_reasons indirect_crlonly_contains_attribute_certsrc Cs|dk rt|}|r8t|tr0tdd|Ds8td|rXtj|ksPtj|krXtdt|t rt|t rt|t rt|t std||||g}t dd|Ddkrtd t |||||||gstd ||_ ||_ ||_||_||_||_||_dS) Ncss|]}t|tVqdS)N)rr)rfrgr$r$r%rhsz4IssuingDistributionPoint.__init__..z:only_some_reasons must be None or frozenset of ReasonFlagszTunspecified and remove_from_crl are not valid reasons in an IssuingDistributionPointzuonly_contains_user_certs, only_contains_ca_certs, indirect_crl and only_contains_attribute_certs must all be boolean.cSsg|] }|r|qSr$r$)rfrgr$r$r%rsz5IssuingDistributionPoint.__init__..rzOnly one of the following can be set to True: only_contains_user_certs, only_contains_ca_certs, indirect_crl, only_contains_attribute_certszCannot create empty extension: if only_contains_user_certs, only_contains_ca_certs, indirect_crl, and only_contains_attribute_certs are all False, then either full_name, relative_name, or only_some_reasons must have a value.)rFrrrjrLrrrrir`r(r_only_contains_user_certs_only_contains_ca_certs _indirect_crl_only_contains_attribute_certs_only_some_reasonsrr) r*rrrrrrrZcrl_constraintsr$r$r%r6sT        z!IssuingDistributionPoint.__init__)rcCs d|S)NaG)r?)r*r$r$r%rOsz!IssuingDistributionPoint.__repr__)rXrcCsbt|tstS|j|jko`|j|jko`|j|jko`|j|jko`|j|jko`|j|jko`|j |j kS)N) rr rYrrrrrrr)r*rXr$r$r%rZs       zIssuingDistributionPoint.__eq__cCs$t|j|j|j|j|j|j|jfS)N)r[rrrrrrr)r*r$r$r%r\sz!IssuingDistributionPoint.__hash__cCs|jS)N)r)r*r$r$r%rsz"IssuingDistributionPoint.full_namecCs|jS)N)r)r*r$r$r%rsz&IssuingDistributionPoint.relative_namecCs|jS)N)r)r*r$r$r%r sz1IssuingDistributionPoint.only_contains_user_certscCs|jS)N)r)r*r$r$r%r sz/IssuingDistributionPoint.only_contains_ca_certscCs|jS)N)r)r*r$r$r%rsz*IssuingDistributionPoint.only_some_reasonscCs|jS)N)r)r*r$r$r%rsz%IssuingDistributionPoint.indirect_crlcCs|jS)N)r)r*r$r$r%rsz6IssuingDistributionPoint.only_contains_attribute_certscCs t|S)N)r]r^)r*r$r$r%r sz%IssuingDistributionPoint.public_bytes) r8r9r:rZISSUING_DISTRIBUTION_POINTr4r@rtrPrrr`rrr6r;rOr_rZr0r\rarvrrrrrrrrBr r$r$r$r%r s6J  r c@s|eZdZeeddddZeedddZeeddd Ze dd d Z e e d d dZ edddZedddZdS)rKN)r4rMrcCs"t|tstd||_||_dS)Nzoid must be an ObjectIdentifier)rrrLrr)r*r4rMr$r$r%r6$s zUnrecognizedExtension.__init__)rcCs|jS)N)r)r*r$r$r%r4*szUnrecognizedExtension.oidcCs|jS)N)r)r*r$r$r%rM.szUnrecognizedExtension.valuecCs d|S)Nz7)r?)r*r$r$r%rO2szUnrecognizedExtension.__repr__)rXrcCs&t|tstS|j|jko$|j|jkS)N)rrKrYr4rM)r*rXr$r$r%rZ8s zUnrecognizedExtension.__eq__cCst|j|jfS)N)r[r4rM)r*r$r$r%r\>szUnrecognizedExtension.__hash__cCs|jS)N)rM)r*r$r$r%r Asz"UnrecognizedExtension.public_bytes)r8r9r:rrBr6rar4rMr;rOr_r`rZr0r\r r$r$r$r%rK#srK)gabcrr!rr@Z cryptographyrZ"cryptography.hazmat.bindings._rustrrr]Zcryptography.hazmat.primitivesrrZ,cryptography.hazmat.primitives.asymmetric.ecrZ-cryptography.hazmat.primitives.asymmetric.rsarZ/cryptography.hazmat.primitives.asymmetric.typesr r Z*cryptography.x509.certificate_transparencyr Zcryptography.x509.general_namer r rrrrrrrZcryptography.x509.namerrZcryptography.x509.oidrrrrZTypeVarrrBr&r;r1 Exceptionr2r=ABCMetarrDrUrbrpryr}rzrrrrrEnumrrrrrrrrrZ_REASON_BIT_MAPPINGZ_CRLREASONFLAGSrrrrrrrrrrZ_TLS_FEATURE_TYPE_TO_ENUMrrrZGenericrrrrrrrrr r r rKr$r$r$r%s      ,   'l$!!(.%%p  A=+("  j0YQQQ-+!