U cc$@sddlZddlZddlZddlZddlZddlmZddlmZddlm Z ddl m Z m Z ddlmZddlmZddlmZmZdd lmZdd lmZmZmZmZmZmZmZmZm Z dd l!m"Z"m#Z#dd l$m%Z%m&Z&m'Z'm(Z(ej)d dddZ*ee+dddZ,e-dddZ.Gddde/Z0Gddde/Z1Gdddej2dZ3GdddZ4Gdd d e3Z5Gd!d"d"e3Z6Gd#d$d$e3Z7Gd%d&d&e3Z8Gd'd(d(e3Z9Gd)d*d*Z:Gd+d,d,e3Z;Gd-d.d.e3ZGd3d4d4Z?Gd5d6d6ej@ZAeAjBeAjCeAjDeAjEeAjFeAjGeAjHeAjId7ZJeAjBd8eAjCd9eAjDd:eAjEd;eAjFdeAjId?iZKGd@dAdAe3ZLGdBdCdCe3ZMGdDdEdEZNGdFdGdGZOGdHdIdIZPGdJdKdKe3ZQGdLdMdMe3ZRGdNdOdOe3ZSGdPdQdQe3ZTGdRdSdSej@ZUdTdUeUDZVGdVdWdWe3ZWGdXdYdYe3ZXGdZd[d[e3ZYGd\d]d]ejZe*Z[Gd^d_d_Z\Gd`dadae3Z]Gdbdcdce3Z^Gdddedee3Z_Gdfdgdge3Z`Gdhdidie3ZaGdjdkdke3ZbGdldmdme3ZcGdndodoe3ZdGdpdqdqe3ZeGdrdsdse3ZfdS)tN)utils)asn1)x509) constant_time serialization)EllipticCurvePublicKey) RSAPublicKey)#CERTIFICATE_ISSUER_PUBLIC_KEY_TYPESCERTIFICATE_PUBLIC_KEY_TYPES)SignedCertificateTimestamp) DNSName DirectoryName GeneralName IPAddress OtherName RFC822Name RegisteredIDUniformResourceIdentifier_IPADDRESS_TYPES)NameRelativeDistinguishedName)CRLEntryExtensionOID ExtensionOIDOCSPExtensionOIDObjectIdentifierExtensionTypeVar ExtensionTypeT)bound covariant public_keyreturncCslt|tr |tjjtjj}n>t|tr@|tjj tjj }n|tjjtjj }t |}t|SN) isinstancer public_bytesrEncodingZDERZ PublicFormatZPKCS1rZX962ZUncompressedPointZSubjectPublicKeyInforZparse_spki_for_datahashlibsha1digest)r dataZ serializedr*@/tmp/pip-unpacked-wheel-4layejjw/cryptography/x509/extensions.py_key_identifier_from_public_key1s    r, field_namecs4tdfdd }fdd}fdd}|||fS)Nr!cstt|Sr")lengetattrselfr-r*r+ len_methodJsz*_make_sequence_methods..len_methodcstt|Sr")iterr1r2r-r*r+ iter_methodMsz+_make_sequence_methods..iter_methodcst||Sr")r1)r3idxr-r*r+getitem_methodPsz._make_sequence_methods..getitem_method)int)r.r4r6r8r*r-r+_make_sequence_methodsIs  r:cs&eZdZeeddfdd ZZS)DuplicateExtensionNmsgoidr!cstt||||_dSr")superr;__init__r>r3r=r> __class__r*r+r@WszDuplicateExtension.__init____name__ __module__ __qualname__strrr@ __classcell__r*r*rBr+r;Vsr;cs&eZdZeeddfdd ZZS)ExtensionNotFoundNr<cstt||||_dSr")r?rJr@r>rArBr*r+r@]szExtensionNotFound.__init__rDr*r*rBr+rJ\srJc@s*eZdZUejeed<edddZdS)rr>r/cCstd|dS)z7 Serializes the extension type to DER. z8public_bytes is not implemented for extension type {0!r}N)NotImplementedErrorformatr2r*r*r+r$es zExtensionType.public_bytesN) rErFrGtypingClassVarr__annotations__bytesr$r*r*r*r+rbs ) metaclassc@sdeZdZejdddddZeddddZeje d d d d Z e d \Z Z ZedddZdS) ExtensionszExtension[ExtensionType]N) extensionsr!cCst||_dSr")list _extensions)r3rSr*r*r+r@qszExtensions.__init__)r>r!cCs0|D]}|j|kr|Sqtd||dS)NNo {} extension was found)r>rJrL)r3r>extr*r*r+get_extension_for_oidvs  z Extensions.get_extension_for_oidzExtension[ExtensionTypeVar])extclassr!cCsD|tkrtd|D]}t|j|r|Sqtd||jdS)Nz|UnrecognizedExtension can't be used with get_extension_for_class because more than one instance of the class may be present.rV)UnrecognizedExtension TypeErrorr#valuerJrLr>)r3rYrWr*r*r+get_extension_for_classs  z"Extensions.get_extension_for_classrUr/cCs d|jS)Nz)rLrUr2r*r*r+__repr__szExtensions.__repr__)rErFrGrMIterabler@rrXTyperr]r:__len____iter__ __getitem__rHr^r*r*r*r+rRps   rRc@sneZdZejZeddddZee dddZ edd d Z e dd d Z eedd dZedddZdS) CRLNumberN crl_numberr!cCst|tstd||_dSNzcrl_number must be an integerr#r9r[ _crl_numberr3rfr*r*r+r@s zCRLNumber.__init__otherr!cCst|tstS|j|jkSr")r#rdNotImplementedrfr3rlr*r*r+__eq__s zCRLNumber.__eq__r/cCs t|jSr"hashrfr2r*r*r+__hash__szCRLNumber.__hash__cCs d|jS)Nz)rLrfr2r*r*r+r^szCRLNumber.__repr__cCs|jSr"rir2r*r*r+rfszCRLNumber.crl_numbercCs t|Sr" rust_x509Zencode_extension_valuer2r*r*r+r$szCRLNumber.public_bytes)rErFrGrZ CRL_NUMBERr>r9r@objectboolrorrrHr^propertyrfrPr$r*r*r*r+rdsrdc@seZdZejZejeejej e eje ddddZ e eddddZe ddd d d Zed d dZeedddZe d ddZeejed ddZeejeje d ddZeeje d ddZed ddZdS)AuthorityKeyIdentifierN)key_identifierauthority_cert_issuerauthority_cert_serial_numberr!cCsr|dk|dkkrtd|dk rBt|}tdd|DsBtd|dk r\t|ts\td||_||_||_dS)NzXauthority_cert_issuer and authority_cert_serial_number must both be present or both Nonecss|]}t|tVqdSr"r#r.0xr*r*r+ sz2AuthorityKeyIdentifier.__init__..z;authority_cert_issuer must be a list of GeneralName objectsz/authority_cert_serial_number must be an integer) ValueErrorrTallr[r#r9_key_identifier_authority_cert_issuer_authority_cert_serial_number)r3rzr{r|r*r*r+r@s, zAuthorityKeyIdentifier.__init__rcCst|}||dddSN)rzr{r|r,)clsr r(r*r*r+from_issuer_public_keys z-AuthorityKeyIdentifier.from_issuer_public_keySubjectKeyIdentifier)skir!cCs||jdddSr)r()rrr*r*r+"from_issuer_subject_key_identifiers z9AuthorityKeyIdentifier.from_issuer_subject_key_identifierr/cCs d|S)NzrLr2r*r*r+r^szAuthorityKeyIdentifier.__repr__rkcCs2t|tstS|j|jko0|j|jko0|j|jkSr")r#ryrmrzr{r|rnr*r*r+ros   zAuthorityKeyIdentifier.__eq__cCs,|jdkrd}n t|j}t|j||jfSr")r{tuplerqrzr|)r3Zacir*r*r+rrs    zAuthorityKeyIdentifier.__hash__cCs|jSr")rr2r*r*r+rzsz%AuthorityKeyIdentifier.key_identifiercCs|jSr")rr2r*r*r+r{sz,AuthorityKeyIdentifier.authority_cert_issuercCs|jSr")rr2r*r*r+r|sz3AuthorityKeyIdentifier.authority_cert_serial_numbercCs t|Sr"rtr2r*r*r+r$sz#AuthorityKeyIdentifier.public_bytes)rErFrGrZAUTHORITY_KEY_IDENTIFIERr>rMOptionalrPr_rr9r@ classmethodr rrrHr^rvrwrorrrxrzListr{r|r$r*r*r*r+rys2 &    ryc@seZdZejZeddddZee ddddZ e edd d Z e edd d Z edd dZeedddZedddZedddZdS)rN)r(r!cCs ||_dSr"Z_digest)r3r(r*r*r+r@#szSubjectKeyIdentifier.__init__rcCs |t|Sr"r)rr r*r*r+from_public_key&sz$SubjectKeyIdentifier.from_public_keyr/cCs|jSr"rr2r*r*r+r(,szSubjectKeyIdentifier.digestcCs|jSr"rr2r*r*r+rz0sz#SubjectKeyIdentifier.key_identifiercCs d|jS)Nz$)rLr(r2r*r*r+r^4szSubjectKeyIdentifier.__repr__rkcCst|tstSt|j|jSr")r#rrmrZbytes_eqr(rnr*r*r+ro7s zSubjectKeyIdentifier.__eq__cCs t|jSr")rqr(r2r*r*r+rr=szSubjectKeyIdentifier.__hash__cCs t|Sr"rtr2r*r*r+r$@sz!SubjectKeyIdentifier.public_bytes)rErFrGrZSUBJECT_KEY_IDENTIFIERr>rPr@rr rrxr(rzrHr^rvrwror9rrr$r*r*r*r+r src@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)AuthorityInformationAccessAccessDescriptionN descriptionsr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"r#rr~r*r*r+rKsz6AuthorityInformationAccess.__init__..@Every item in the descriptions list must be an AccessDescriptionrTrr[ _descriptionsr3rr*r*r+r@Gs z#AuthorityInformationAccess.__init__rr/cCs d|jS)Nz rLrr2r*r*r+r^Usz#AuthorityInformationAccess.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+roXs z!AuthorityInformationAccess.__eq__cCstt|jSr"rqrrr2r*r*r+rr^sz#AuthorityInformationAccess.__hash__cCs t|Sr"rtr2r*r*r+r$asz'AuthorityInformationAccess.public_bytes)rErFrGrZAUTHORITY_INFORMATION_ACCESSr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+rDs rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)SubjectInformationAccessrNrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"rr~r*r*r+rlsz4SubjectInformationAccess.__init__..rrrr*r*r+r@hs z!SubjectInformationAccess.__init__rr/cCs d|jS)Nzrr2r*r*r+r^vsz!SubjectInformationAccess.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+roys zSubjectInformationAccess.__eq__cCstt|jSr"rr2r*r*r+rrsz!SubjectInformationAccess.__hash__cCs t|Sr"rtr2r*r*r+r$sz%SubjectInformationAccess.public_bytes)rErFrGrZSUBJECT_INFORMATION_ACCESSr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+res rc@sneZdZeeddddZedddZee dd d Z e dd d Z e edd dZe edddZdS)rN) access_methodaccess_locationr!cCs4t|tstdt|ts$td||_||_dS)Nz)access_method must be an ObjectIdentifierz%access_location must be a GeneralName)r#rr[r_access_method_access_location)r3rrr*r*r+r@s   zAccessDescription.__init__r/cCs d|S)NzYrr2r*r*r+r^szAccessDescription.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ros    zAccessDescription.__eq__cCst|j|jfSr")rqrrr2r*r*r+rrszAccessDescription.__hash__cCs|jSr")rr2r*r*r+rszAccessDescription.access_methodcCs|jSr")rr2r*r*r+rsz!AccessDescription.access_location)rErFrGrrr@rHr^rvrwror9rrrxrrr*r*r*r+rs  rc@seZdZejZeeje ddddZ e edddZ e eje ddd Z edd d Zeed d dZe dddZedddZdS)BasicConstraintsN)ca path_lengthr!cCsXt|tstd|dk r&|s&td|dk rHt|tr@|dkrHtd||_||_dS)Nzca must be a boolean valuez)path_length must be None when ca is Falserz2path_length must be a non-negative integer or None)r#rwr[rr9_ca _path_length)r3rrr*r*r+r@s  zBasicConstraints.__init__r/cCs|jSr")rr2r*r*r+rszBasicConstraints.cacCs|jSr")rr2r*r*r+rszBasicConstraints.path_lengthcCs d|S)Nz:rr2r*r*r+r^szBasicConstraints.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ros zBasicConstraints.__eq__cCst|j|jfSr")rqrrr2r*r*r+rrszBasicConstraints.__hash__cCs t|Sr"rtr2r*r*r+r$szBasicConstraints.public_bytes)rErFrGrZBASIC_CONSTRAINTSr>rwrMrr9r@rxrrrHr^rvrorrrPr$r*r*r*r+rsrc@sneZdZejZeddddZeedddZ e e dd d Z edd d Z edd dZedddZdS)DeltaCRLIndicatorNrecCst|tstd||_dSrgrhrjr*r*r+r@s zDeltaCRLIndicator.__init__r/cCs|jSr"rsr2r*r*r+rfszDeltaCRLIndicator.crl_numberrkcCst|tstS|j|jkSr")r#rrmrfrnr*r*r+ros zDeltaCRLIndicator.__eq__cCs t|jSr"rpr2r*r*r+rrszDeltaCRLIndicator.__hash__cCs d|S)Nz.rr2r*r*r+r^szDeltaCRLIndicator.__repr__cCs t|Sr"rtr2r*r*r+r$szDeltaCRLIndicator.public_bytes)rErFrGrZDELTA_CRL_INDICATORr>r9r@rxrfrvrwrorrrHr^rPr$r*r*r*r+rsrc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)CRLDistributionPointsDistributionPointNdistribution_pointsr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"r#rr~r*r*r+rsz1CRLDistributionPoints.__init__..?distribution_points must be a list of DistributionPoint objectsrTrr[_distribution_pointsr3rr*r*r+r@szCRLDistributionPoints.__init__rr/cCs d|jS)NzrLrr2r*r*r+r^szCRLDistributionPoints.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+ros zCRLDistributionPoints.__eq__cCstt|jSr"rqrrr2r*r*r+rrszCRLDistributionPoints.__hash__cCs t|Sr"rtr2r*r*r+r$sz"CRLDistributionPoints.public_bytes)rErFrGrZCRL_DISTRIBUTION_POINTSr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+rs  rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS) FreshestCRLrNrcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"rr~r*r*r+r%sz'FreshestCRL.__init__..rrrr*r*r+r@!szFreshestCRL.__init__rr/cCs d|jS)Nzrr2r*r*r+r^3szFreshestCRL.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+ro6s zFreshestCRL.__eq__cCstt|jSr"rr2r*r*r+rr<szFreshestCRL.__hash__cCs t|Sr"rtr2r*r*r+r$?szFreshestCRL.public_bytes)rErFrGrZ FRESHEST_CRLr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+rs  rc@seZdZejejeejeejejdejejeddddZ e dddZ e e d d d Zedd d ZeejejedddZeejedddZeejejddddZeejejedddZdS)r ReasonFlagsN) full_name relative_namereasons crl_issuerr!cCs|r|rtd|dk r:t|}tdd|Ds:td|rPt|tsPtd|dk rzt|}tdd|Dsztd|rt|trtdd|Dstd |rtj|kstj |krtd |r|s|s|std ||_ ||_ ||_ ||_ dS) NzOYou cannot provide both full_name and relative_name, at least one must be None.css|]}t|tVqdSr"r}r~r*r*r+rSsz-DistributionPoint.__init__..z/full_name must be a list of GeneralName objectsz1relative_name must be a RelativeDistinguishedNamecss|]}t|tVqdSr"r}r~r*r*r+r`sz2crl_issuer must be None or a list of general namescss|]}t|tVqdSr"r#rr~r*r*r+rgsz0reasons must be None or frozenset of ReasonFlagszLunspecified and remove_from_crl are not valid reasons in a DistributionPointzPYou must supply crl_issuer, full_name, or relative_name when reasons is not None)rrTrr[r#r frozensetr unspecifiedremove_from_crl _full_name_relative_name_reasons _crl_issuer)r3rrrrr*r*r+r@DsV zDistributionPoint.__init__r/cCs d|S)Nz}rr2r*r*r+r^szDistributionPoint.__repr__rkcCs>t|tstS|j|jko<|j|jko<|j|jko<|j|jkSr")r#rrmrrrrrnr*r*r+ros     zDistributionPoint.__eq__cCsH|jdk rt|j}nd}|jdk r0t|j}nd}t||j|j|fSr")rrrrqrr)r3fnrr*r*r+rrs  zDistributionPoint.__hash__cCs|jSr"rr2r*r*r+rszDistributionPoint.full_namecCs|jSr"rr2r*r*r+rszDistributionPoint.relative_namecCs|jSr")rr2r*r*r+rszDistributionPoint.reasonscCs|jSr")rr2r*r*r+rszDistributionPoint.crl_issuer)rErFrGrMrr_rr FrozenSetr@rHr^rvrwror9rrrxrrrrrr*r*r*r+rCs" ; rc@s4eZdZdZdZdZdZdZdZdZ dZ d Z d Z d S) rrZ keyCompromiseZ cACompromiseZaffiliationChanged supersededZcessationOfOperationZcertificateHoldZprivilegeWithdrawnZ aACompromiseZ removeFromCRLN) rErFrGrkey_compromise ca_compromiseaffiliation_changedrcessation_of_operationcertificate_holdprivilege_withdrawn aa_compromiserr*r*r*r+rsr)rrrrrrrrc@seZdZejZejeejeddddZ e dddZ e e dd d Zedd d Zeejedd dZeejedddZedddZdS)PolicyConstraintsN)require_explicit_policyinhibit_policy_mappingr!cCs\|dk rt|tstd|dk r4t|ts4td|dkrL|dkrLtd||_||_dS)Nz>require_explicit_policy must be a non-negative integer or Nonez=inhibit_policy_mapping must be a non-negative integer or NonezSAt least one of require_explicit_policy and inhibit_policy_mapping must not be None)r#r9r[r_require_explicit_policy_inhibit_policy_mapping)r3rrr*r*r+r@s(  zPolicyConstraints.__init__r/cCs d|S)Nz{rr2r*r*r+r^szPolicyConstraints.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ro s    zPolicyConstraints.__eq__cCst|j|jfSr")rqrrr2r*r*r+rrs zPolicyConstraints.__hash__cCs|jSr")rr2r*r*r+rsz)PolicyConstraints.require_explicit_policycCs|jSr")rr2r*r*r+rsz(PolicyConstraints.inhibit_policy_mappingcCs t|Sr"rtr2r*r*r+r$ szPolicyConstraints.public_bytes)rErFrGrZPOLICY_CONSTRAINTSr>rMrr9r@rHr^rvrwrorrrxrrrPr$r*r*r*r+rs  rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS)CertificatePoliciesPolicyInformationN)policiesr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr")r#rr~r*r*r+r)sz/CertificatePolicies.__init__..z;Every item in the policies list must be a PolicyInformation)rTrr[ _policies)r3rr*r*r+r@'s zCertificatePolicies.__init__rr/cCs d|jS)Nz)rLrr2r*r*r+r^3szCertificatePolicies.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+ro6s zCertificatePolicies.__eq__cCstt|jSr")rqrrr2r*r*r+rr<szCertificatePolicies.__hash__cCs t|Sr"rtr2r*r*r+r$?sz CertificatePolicies.public_bytes)rErFrGrZCERTIFICATE_POLICIESr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+r$s rc@seZdZeejejejedfddddZ edddZ e e d d d Z edd d ZeedddZeejejejedfdddZdS)r UserNoticeN)policy_identifierpolicy_qualifiersr!cCsLt|tstd||_|dk rBt|}tdd|DsBtd||_dS)Nz-policy_identifier must be an ObjectIdentifiercss|]}t|ttfVqdSr")r#rHrr~r*r*r+rRsz-PolicyInformation.__init__..zMpolicy_qualifiers must be a list of strings and/or UserNotice objects or None)r#rr[_policy_identifierrTr_policy_qualifiers)r3rrr*r*r+r@Ds zPolicyInformation.__init__r/cCs d|S)Nzerr2r*r*r+r^\szPolicyInformation.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+robs    zPolicyInformation.__eq__cCs(|jdk rt|j}nd}t|j|fSr")rrrqr)r3Zpqr*r*r+rrks  zPolicyInformation.__hash__cCs|jSr")rr2r*r*r+rusz#PolicyInformation.policy_identifiercCs|jSr")rr2r*r*r+rysz#PolicyInformation.policy_qualifiers)rErFrGrrMrr_UnionrHr@r^rvrwror9rrrxrrrr*r*r*r+rCs   rc@seZdZejdejeddddZedddZee d d d Z e dd d Z e ejddddZe ejedddZdS)rNoticeReferenceN)notice_reference explicit_textr!cCs&|rt|tstd||_||_dS)Nz2notice_reference must be None or a NoticeReference)r#rr[_notice_reference_explicit_text)r3rrr*r*r+r@szUserNotice.__init__r/cCs d|S)NzVrr2r*r*r+r^szUserNotice.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ros    zUserNotice.__eq__cCst|j|jfSr")rqrrr2r*r*r+rrszUserNotice.__hash__cCs|jSr")rr2r*r*r+rszUserNotice.notice_referencecCs|jSr")rr2r*r*r+rszUserNotice.explicit_text)rErFrGrMrrHr@r^rvrwror9rrrxrrr*r*r*r+rs  rc@seZdZejeejeddddZedddZ e e dd d Z edd d Z eejedd dZeejedddZdS)rN) organizationnotice_numbersr!cCs2||_t|}tdd|Ds(td||_dS)Ncss|]}t|tVqdSr")r#r9r~r*r*r+rsz+NoticeReference.__init__..z)notice_numbers must be a list of integers) _organizationrTrr[_notice_numbers)r3rrr*r*r+r@s zNoticeReference.__init__r/cCs d|S)NzUrr2r*r*r+r^szNoticeReference.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ros    zNoticeReference.__eq__cCst|jt|jfSr")rqrrrr2r*r*r+rrszNoticeReference.__hash__cCs|jSr")rr2r*r*r+rszNoticeReference.organizationcCs|jSr")rr2r*r*r+rszNoticeReference.notice_numbers)rErFrGrMrrHr_r9r@r^rvrwrorrrxrrrr*r*r*r+rs  rc@speZdZejZejeddddZ e d\Z Z Z edddZeed d d Zedd d ZedddZdS)ExtendedKeyUsageN)usagesr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr")r#rr~r*r*r+rsz,ExtendedKeyUsage.__init__..z9Every item in the usages list must be an ObjectIdentifier)rTrr[_usages)r3rr*r*r+r@s zExtendedKeyUsage.__init__rr/cCs d|jS)Nz)rLrr2r*r*r+r^szExtendedKeyUsage.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+ros zExtendedKeyUsage.__eq__cCstt|jSr")rqrrr2r*r*r+rrszExtendedKeyUsage.__hash__cCs t|Sr"rtr2r*r*r+r$szExtendedKeyUsage.public_bytes)rErFrGrZEXTENDED_KEY_USAGEr>rMr_rr@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+rs rc@sLeZdZejZeedddZe dddZ e dddZ e dd d Zd S) OCSPNoCheckrkcCst|tstSdSNT)r#rrmrnr*r*r+ros zOCSPNoCheck.__eq__r/cCsttSr")rqrr2r*r*r+rrszOCSPNoCheck.__hash__cCsdS)Nzr*r2r*r*r+r^szOCSPNoCheck.__repr__cCs t|Sr"rtr2r*r*r+r$szOCSPNoCheck.public_bytesN)rErFrGrZ OCSP_NO_CHECKr>rvrwror9rrrHr^rPr$r*r*r*r+rs rc@sLeZdZejZeedddZe dddZ e dddZ e dd d Zd S) PrecertPoisonrkcCst|tstSdSr)r#rrmrnr*r*r+ros zPrecertPoison.__eq__r/cCsttSr")rqrr2r*r*r+rr szPrecertPoison.__hash__cCsdS)Nzr*r2r*r*r+r^szPrecertPoison.__repr__cCs t|Sr"rtr2r*r*r+r$szPrecertPoison.public_bytesN)rErFrGrZPRECERT_POISONr>rvrwror9rrrHr^rPr$r*r*r*r+rs rc@speZdZejZejdddddZe d\Z Z Z e ddd Zeed d d Zedd dZedddZdS) TLSFeatureTLSFeatureTypeN)featuresr!cCs8t|}tdd|Dr&t|dkr.td||_dS)Ncss|]}t|tVqdSr")r#rr~r*r*r+rsz&TLSFeature.__init__..rz@features must be a list of elements from the TLSFeatureType enum)rTrr0r[ _features)r3rr*r*r+r@s zTLSFeature.__init__rr/cCs d|S)Nz$rr2r*r*r+r^)szTLSFeature.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+ro,s zTLSFeature.__eq__cCstt|jSr")rqrrr2r*r*r+rr2szTLSFeature.__hash__cCs t|Sr"rtr2r*r*r+r$5szTLSFeature.public_bytes)rErFrGrZ TLS_FEATUREr>rMr_r@r:rarbrcrHr^rvrwror9rrrPr$r*r*r*r+rs rc@seZdZdZdZdS)rrN)rErFrGZstatus_requestZstatus_request_v2r*r*r*r+r9srcCsi|] }|j|qSr*r\r~r*r*r+ Dsrc@sneZdZejZeddddZedddZ e e dd d Z edd d Z eedd dZedddZdS)InhibitAnyPolicyN) skip_certsr!cCs,t|tstd|dkr"td||_dS)Nzskip_certs must be an integerrz)skip_certs must be a non-negative integer)r#r9r[r _skip_certs)r3rr*r*r+r@Js  zInhibitAnyPolicy.__init__r/cCs d|S)Nz-rr2r*r*r+r^SszInhibitAnyPolicy.__repr__rkcCst|tstS|j|jkSr")r#rrmrrnr*r*r+roVs zInhibitAnyPolicy.__eq__cCs t|jSr")rqrr2r*r*r+rr\szInhibitAnyPolicy.__hash__cCs|jSr")rr2r*r*r+r_szInhibitAnyPolicy.skip_certscCs t|Sr"rtr2r*r*r+r$cszInhibitAnyPolicy.public_bytes)rErFrGrZINHIBIT_ANY_POLICYr>r9r@rHr^rvrwrorrrxrrPr$r*r*r*r+rGs rc @seZdZejZeeeeeeeeedd ddZeedddZ eeddd Z eedd d Z eedd d Z eedddZ eedddZeedddZeedddZeedddZedddZeedddZedddZeddd ZdS)!KeyUsageN) digital_signaturecontent_commitmentkey_enciphermentdata_encipherment key_agreement key_cert_signcrl_sign encipher_only decipher_onlyr!c CsN|s|s | rtd||_||_||_||_||_||_||_||_| |_ dS)NzKencipher_only and decipher_only can only be true when key_agreement is true) r_digital_signature_content_commitment_key_encipherment_data_encipherment_key_agreement_key_cert_sign _crl_sign_encipher_only_decipher_only) r3rrrrrrrrr r*r*r+r@js zKeyUsage.__init__r/cCs|jSr")r r2r*r*r+rszKeyUsage.digital_signaturecCs|jSr")r r2r*r*r+rszKeyUsage.content_commitmentcCs|jSr")r r2r*r*r+rszKeyUsage.key_enciphermentcCs|jSr")r r2r*r*r+rszKeyUsage.data_enciphermentcCs|jSr")rr2r*r*r+rszKeyUsage.key_agreementcCs|jSr")rr2r*r*r+rszKeyUsage.key_cert_signcCs|jSr")rr2r*r*r+rszKeyUsage.crl_signcCs|jstdn|jSdS)Nz7encipher_only is undefined unless key_agreement is true)rrrr2r*r*r+rs zKeyUsage.encipher_onlycCs|jstdn|jSdS)Nz7decipher_only is undefined unless key_agreement is true)rrrr2r*r*r+r s zKeyUsage.decipher_onlycCs<z|j}|j}Wntk r,d}d}YnXd|||S)NFa-)rr rrL)r3rr r*r*r+r^s  zKeyUsage.__repr__rkcCszt|tstS|j|jkox|j|jkox|j|jkox|j|jkox|j|jkox|j|jkox|j |j kox|j |j kox|j |j kSr") r#rrmrrrrrrrrrrnr*r*r+ros&          zKeyUsage.__eq__c Cs,t|j|j|j|j|j|j|j|j|j f Sr") rqrrrrrrrrrr2r*r*r+rrszKeyUsage.__hash__cCs t|Sr"rtr2r*r*r+r$szKeyUsage.public_bytes)rErFrGrZ KEY_USAGEr>rwr@rxrrrrrrrrr rHr^rvror9rrrPr$r*r*r*r+rgsD rc@seZdZejZejeje ejeje ddddZ e e dddZ eje ddd d Zed d d Zed ddZeejeje d ddZeejeje d ddZed ddZdS)NameConstraintsN)permitted_subtreesexcluded_subtreesr!cCs|dk r@t|}|stdtdd|Ds6td|||dk rt|}|s\tdtdd|Dsvtd|||dkr|dkrtd||_||_dS) Nz3permitted_subtrees must be a non-empty list or Nonecss|]}t|tVqdSr"r}r~r*r*r+rsz+NameConstraints.__init__..z@permitted_subtrees must be a list of GeneralName objects or Nonez2excluded_subtrees must be a non-empty list or Nonecss|]}t|tVqdSr"r}r~r*r*r+rsz?excluded_subtrees must be a list of GeneralName objects or NonezIAt least one of permitted_subtrees and excluded_subtrees must not be None)rTrrr[_validate_ip_name_permitted_subtrees_excluded_subtrees)r3rrr*r*r+r@s8  zNameConstraints.__init__rkcCs&t|tstS|j|jko$|j|jkSr")r#rrmrrrnr*r*r+ros    zNameConstraints.__eq__)treer!cCstdd|DrtddS)Ncss.|]&}t|to$t|jtjtjf VqdSr")r#rr\ ipaddress IPv4Network IPv6Network)rnamer*r*r+r#s   z4NameConstraints._validate_ip_name..zGIPAddress name constraints must be an IPv4Network or IPv6Network object)anyr[)r3rr*r*r+r"s z!NameConstraints._validate_ip_namer/cCs d|S)Nzerr2r*r*r+r^/szNameConstraints.__repr__cCs@|jdk rt|j}nd}|jdk r0t|j}nd}t||fSr")rrrrq)r3Zpsesr*r*r+rr5s  zNameConstraints.__hash__cCs|jSr")rr2r*r*r+rFsz"NameConstraints.permitted_subtreescCs|jSr")rr2r*r*r+rLsz!NameConstraints.excluded_subtreescCs t|Sr"rtr2r*r*r+r$RszNameConstraints.public_bytes)rErFrGrZNAME_CONSTRAINTSr>rMrr_rr@rvrwrorrHr^r9rrrxrrrrPr$r*r*r*r+rs  *  rc@seZdZeeeddddZeedddZeeddd Z eedd d Z e dd d Z e edddZedddZdS) ExtensionN)r>criticalr\r!cCs:t|tstdt|ts$td||_||_||_dS)Nz2oid argument must be an ObjectIdentifier instance.z critical must be a boolean value)r#rr[rw_oid _critical_value)r3r>r!r\r*r*r+r@Ws  zExtension.__init__r/cCs|jSr"r"r2r*r*r+r>fsz Extension.oidcCs|jSr")r#r2r*r*r+r!jszExtension.criticalcCs|jSr"r$r2r*r*r+r\nszExtension.valuecCs d|S)Nz@rr2r*r*r+r^rszExtension.__repr__rkcCs2t|tstS|j|jko0|j|jko0|j|jkSr")r#r rmr>r!r\rnr*r*r+roxs    zExtension.__eq__cCst|j|j|jfSr")rqr>r!r\r2r*r*r+rrszExtension.__hash__)rErFrGrrwrr@rxr>r!r\rHr^rvror9rrr*r*r*r+r Vs  r c @seZdZejeddddZed\ZZ Z ej ej ej eej eej efejedddZej ej eejedd dZej ej eejedd dZej ej eejedd dZej ej eejedd dZej ej eej eej eej eej eej eej efej ejeejeejeejeejefdd dZedddZeedddZedddZ dS) GeneralNamesN general_namesr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"r}r~r*r*r+rsz(GeneralNames.__init__..z^Every item in the general_names list must be an object conforming to the GeneralName interface)rTrr[_general_namesr3r)r*r*r+r@s zGeneralNames.__init__r*typer!cCsdSr"r*r3r-r*r*r+get_values_for_types z GeneralNames.get_values_for_typecCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scs0fdd|D}tkr(dd|DSt|S)Nc3s|]}t|r|VqdSr")r#rir-r*r+rs z3GeneralNames.get_values_for_type..cSsg|] }|jqSr*rr0r*r*r+ sz4GeneralNames.get_values_for_type..)rrT)r3r-objsr*r2r+r/sr/cCs d|jS)NzrLr*r2r*r*r+r^szGeneralNames.__repr__rkcCst|tstS|j|jkSr")r#r'rmr*rnr*r*r+ros zGeneralNames.__eq__cCstt|jSr")rqrr*r2r*r*r+rrszGeneralNames.__hash__)!rErFrGrMr_rr@r:rarbrcoverloadrr`r rrrrHr/r rrrrrrr^rvrwror9rrr*r*r*r+r'sb    r'c @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)SubjectAlternativeNameNr(cCst||_dSr"r'r*r+r*r*r+r@szSubjectAlternativeName.__init__r*r,cCsdSr"r*r.r*r*r+r/s z*SubjectAlternativeName.get_values_for_typecCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCs |j|Sr"r*r/r.r*r*r+r/ sr/cCs d|jS)Nzr5r2r*r*r+r^ szSubjectAlternativeName.__repr__rkcCst|tstS|j|jkSr")r#r7rmr*rnr*r*r+ro#s zSubjectAlternativeName.__eq__cCs t|jSr"rqr*r2r*r*r+rr)szSubjectAlternativeName.__hash__cCs t|Sr"rtr2r*r*r+r$,sz#SubjectAlternativeName.public_bytes)&rErFrGrZSUBJECT_ALTERNATIVE_NAMEr>rMr_rr@r:rarbrcr6rr`r rrrrHr/r rrrrrrr^rvrwror9rrrPr$r*r*r*r+r7sf   r7c @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)IssuerAlternativeNameNr(cCst||_dSr"r8r+r*r*r+r@3szIssuerAlternativeName.__init__r*r,cCsdSr"r*r.r*r*r+r/8s z)IssuerAlternativeName.get_values_for_typecCsdSr"r*r.r*r*r+r/CscCsdSr"r*r.r*r*r+r/JscCsdSr"r*r.r*r*r+r/QscCsdSr"r*r.r*r*r+r/WscCs |j|Sr"r9r.r*r*r+r/]sr/cCs d|jS)Nzr5r2r*r*r+r^qszIssuerAlternativeName.__repr__rkcCst|tstS|j|jkSr")r#r;rmr*rnr*r*r+rots zIssuerAlternativeName.__eq__cCs t|jSr"r:r2r*r*r+rrzszIssuerAlternativeName.__hash__cCs t|Sr"rtr2r*r*r+r$}sz"IssuerAlternativeName.public_bytes)&rErFrGrZISSUER_ALTERNATIVE_NAMEr>rMr_rr@r:rarbrcr6rr`r rrrrHr/r rrrrrrr^rvrwror9rrrPr$r*r*r*r+r;0sf   r;c @seZdZejZejeddddZ e d\Z Z Z ejejejeejeejefejedddZejejeejedd dZejejeejedd dZejejeejedd dZejejeejedd dZejejeejeejeejeejeejeejefejejeejeejeejeejefdd dZedddZee dddZ!e"dddZ#e$dddZ%dS)CertificateIssuerNr(cCst||_dSr"r8r+r*r*r+r@szCertificateIssuer.__init__r*r,cCsdSr"r*r.r*r*r+r/s z%CertificateIssuer.get_values_for_typecCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCsdSr"r*r.r*r*r+r/scCs |j|Sr"r9r.r*r*r+r/sr/cCs d|jS)Nzr5r2r*r*r+r^szCertificateIssuer.__repr__rkcCst|tstS|j|jkSr")r#r<rmr*rnr*r*r+ros zCertificateIssuer.__eq__cCs t|jSr"r:r2r*r*r+rrszCertificateIssuer.__hash__cCs t|Sr"rtr2r*r*r+r$szCertificateIssuer.public_bytes)&rErFrGrZCERTIFICATE_ISSUERr>rMr_rr@r:rarbrcr6rr`r rrrrHr/r rrrrrrr^rvrwror9rrrPr$r*r*r*r+r<sf   r<c@sneZdZejZeddddZedddZ e e dd d Z e dd d Zeedd dZedddZdS) CRLReasonN)reasonr!cCst|tstd||_dS)Nz*reason must be an element from ReasonFlags)r#rr[_reason)r3r>r*r*r+r@s zCRLReason.__init__r/cCs d|jS)Nz)rLr?r2r*r*r+r^szCRLReason.__repr__rkcCst|tstS|j|jkSr")r#r=rmr>rnr*r*r+ros zCRLReason.__eq__cCs t|jSr")rqr>r2r*r*r+rrszCRLReason.__hash__cCs|jSr")r?r2r*r*r+r>szCRLReason.reasoncCs t|Sr"rtr2r*r*r+r$szCRLReason.public_bytes)rErFrGrZ CRL_REASONr>rr@rHr^rvrwror9rrrxr>rPr$r*r*r*r+r=sr=c@sreZdZejZejddddZedddZ e e dd d Z e dd d Zeejdd dZedddZdS)InvalidityDateN)invalidity_dater!cCst|tjstd||_dS)Nz+invalidity_date must be a datetime.datetime)r#datetimer[_invalidity_date)r3rAr*r*r+r@s zInvalidityDate.__init__r/cCs d|jS)Nz$)rLrCr2r*r*r+r^szInvalidityDate.__repr__rkcCst|tstS|j|jkSr")r#r@rmrArnr*r*r+ros zInvalidityDate.__eq__cCs t|jSr")rqrAr2r*r*r+rrszInvalidityDate.__hash__cCs|jSr")rCr2r*r*r+rAszInvalidityDate.invalidity_datecCs t|Sr"rtr2r*r*r+r$ szInvalidityDate.public_bytes)rErFrGrZINVALIDITY_DATEr>rBr@rHr^rvrwror9rrrxrArPr$r*r*r*r+r@sr@c@speZdZejZejeddddZ e d\Z Z Z edddZedd d Zeed d d ZedddZdS))PrecertificateSignedCertificateTimestampsNsigned_certificate_timestampsr!cCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"r#r rZsctr*r*r+rszEPrecertificateSignedCertificateTimestamps.__init__..YEvery item in the signed_certificate_timestamps list must be a SignedCertificateTimestamprTrr[_signed_certificate_timestampsr3rFr*r*r+r@sz2PrecertificateSignedCertificateTimestamps.__init__rKr/cCsdt|S)Nz/rLrTr2r*r*r+r^&sz2PrecertificateSignedCertificateTimestamps.__repr__cCstt|jSr"rqrrKr2r*r*r+rr+sz2PrecertificateSignedCertificateTimestamps.__hash__rkcCst|tstS|j|jkSr")r#rDrmrKrnr*r*r+ro.s  z0PrecertificateSignedCertificateTimestamps.__eq__cCs t|Sr"rtr2r*r*r+r$7sz6PrecertificateSignedCertificateTimestamps.public_bytes)rErFrGrZ%PRECERT_SIGNED_CERTIFICATE_TIMESTAMPSr>rMr_r r@r:rarbrcrHr^r9rrrvrwrorPr$r*r*r*r+rDs   rDc@speZdZejZejeddddZ e d\Z Z Z edddZedd d Zeed d d ZedddZdS)SignedCertificateTimestampsNrEcCs,t|}tdd|Ds"td||_dS)Ncss|]}t|tVqdSr"rGrHr*r*r+rEsz7SignedCertificateTimestamps.__init__..rIrJrLr*r*r+r@>sz$SignedCertificateTimestamps.__init__rKr/cCsdt|S)Nz!rMr2r*r*r+r^Ssz$SignedCertificateTimestamps.__repr__cCstt|jSr"rNr2r*r*r+rrVsz$SignedCertificateTimestamps.__hash__rkcCst|tstS|j|jkSr")r#rOrmrKrnr*r*r+roYs  z"SignedCertificateTimestamps.__eq__cCs t|Sr"rtr2r*r*r+r$bsz(SignedCertificateTimestamps.public_bytes)rErFrGrZSIGNED_CERTIFICATE_TIMESTAMPSr>rMr_r r@r:rarbrcrHr^r9rrrvrwrorPr$r*r*r*r+rO;s   rOc@sneZdZejZeddddZee dddZ e dd d Z e dd d Zeedd dZedddZdS) OCSPNonceN)noncer!cCst|tstd||_dS)Nznonce must be bytes)r#rPr[_nonce)r3rQr*r*r+r@is zOCSPNonce.__init__rkcCst|tstS|j|jkSr")r#rPrmrQrnr*r*r+roos zOCSPNonce.__eq__r/cCs t|jSr")rqrQr2r*r*r+rruszOCSPNonce.__hash__cCs d|S)Nzrr2r*r*r+r^xszOCSPNonce.__repr__cCs|jSr")rRr2r*r*r+rQ{szOCSPNonce.noncecCs t|Sr"rtr2r*r*r+r$szOCSPNonce.public_bytes)rErFrGrZNONCEr>rPr@rvrwror9rrrHr^rxrQr$r*r*r*r+rPfsrPc @s"eZdZejZejeje eje e e ejej e e e ddddZedddZee dd d Zedd d Zeejeje dd dZeeje dddZee dddZee dddZeejej e dddZee dddZee dddZedddZdS)IssuingDistributionPointN)rronly_contains_user_certsonly_contains_ca_certsonly_some_reasons indirect_crlonly_contains_attribute_certsr!c Cs|dk rt|}|r8t|tr0tdd|Ds8td|rXtj|ksPtj|krXtdt|t rt|t rt|t rt|t std||||g}t dd|Ddkrtd t |||||||gstd ||_ ||_ ||_||_||_||_||_dS) Ncss|]}t|tVqdSr"rr~r*r*r+rsz4IssuingDistributionPoint.__init__..z:only_some_reasons must be None or frozenset of ReasonFlagszTunspecified and remove_from_crl are not valid reasons in an IssuingDistributionPointzuonly_contains_user_certs, only_contains_ca_certs, indirect_crl and only_contains_attribute_certs must all be boolean.cSsg|] }|r|qSr*r*r~r*r*r+r3sz5IssuingDistributionPoint.__init__..rzOnly one of the following can be set to True: only_contains_user_certs, only_contains_ca_certs, indirect_crl, only_contains_attribute_certszCannot create empty extension: if only_contains_user_certs, only_contains_ca_certs, indirect_crl, and only_contains_attribute_certs are all False, then either full_name, relative_name, or only_some_reasons must have a value.)rTr#rrr[rrrrrwr0r_only_contains_user_certs_only_contains_ca_certs _indirect_crl_only_contains_attribute_certs_only_some_reasonsrr) r3rrrTrUrVrWrXZcrl_constraintsr*r*r+r@st  z!IssuingDistributionPoint.__init__r/cCs d|S)NaGrr2r*r*r+r^sz!IssuingDistributionPoint.__repr__rkcCsbt|tstS|j|jko`|j|jko`|j|jko`|j|jko`|j|jko`|j|jko`|j |j kSr") r#rSrmrrrTrUrVrWrXrnr*r*r+ros"       zIssuingDistributionPoint.__eq__cCs$t|j|j|j|j|j|j|jfSr")rqrrrTrUrVrWrXr2r*r*r+rrsz!IssuingDistributionPoint.__hash__cCs|jSr"rr2r*r*r+rsz"IssuingDistributionPoint.full_namecCs|jSr"rr2r*r*r+rsz&IssuingDistributionPoint.relative_namecCs|jSr")rYr2r*r*r+rT sz1IssuingDistributionPoint.only_contains_user_certscCs|jSr")rZr2r*r*r+rU sz/IssuingDistributionPoint.only_contains_ca_certscCs|jSr")r]r2r*r*r+rVsz*IssuingDistributionPoint.only_some_reasonscCs|jSr")r[r2r*r*r+rWsz%IssuingDistributionPoint.indirect_crlcCs|jSr")r\r2r*r*r+rXsz6IssuingDistributionPoint.only_contains_attribute_certscCs t|Sr"rtr2r*r*r+r$sz%IssuingDistributionPoint.public_bytes) rErFrGrZISSUING_DISTRIBUTION_POINTr>rMrr_rrrwrrr@rHr^rvror9rrrxrrrrTrUrVrWrXrPr$r*r*r*r+rSs: S  rSc@s|eZdZeeddddZeedddZeeddd Ze dd d Z e e d d dZ edddZedddZdS)rZN)r>r\r!cCs"t|tstd||_||_dS)Nzoid must be an ObjectIdentifier)r#rr[r"r$)r3r>r\r*r*r+r@$s zUnrecognizedExtension.__init__r/cCs|jSr"r%r2r*r*r+r>*szUnrecognizedExtension.oidcCs|jSr"r&r2r*r*r+r\.szUnrecognizedExtension.valuecCs d|S)Nz7rr2r*r*r+r^2szUnrecognizedExtension.__repr__rkcCs&t|tstS|j|jko$|j|jkSr")r#rZrmr>r\rnr*r*r+ro8s zUnrecognizedExtension.__eq__cCst|j|jfSr")rqr>r\r2r*r*r+rr>szUnrecognizedExtension.__hash__cCs|jSr"rr2r*r*r+r$Asz"UnrecognizedExtension.public_bytes)rErFrGrrPr@rxr>r\rHr^rvrwror9rrr$r*r*r*r+rZ#srZ)gabcrBr&rrMZ cryptographyrZ"cryptography.hazmat.bindings._rustrrruZcryptography.hazmat.primitivesrrZ,cryptography.hazmat.primitives.asymmetric.ecrZ-cryptography.hazmat.primitives.asymmetric.rsarZ/cryptography.hazmat.primitives.asymmetric.typesr r Z*cryptography.x509.certificate_transparencyr Zcryptography.x509.general_namer r rrrrrrrZcryptography.x509.namerrZcryptography.x509.oidrrrrTypeVarrrPr,rHr: Exceptionr;rJABCMetarrRrdryrrrrrrrrrEnumrrrrrrrrrZ_REASON_BIT_MAPPINGZ_CRLREASONFLAGSrrrrrrrrrrZ_TLS_FEATURE_TYPE_TO_ENUMrrrGenericr r'r7r;r<r=r@rDrOrPrSrZr*r*r*r+s      ,   'l$!!(.%%p  A=+("  j0YQQQ-+!