U g @s2ddlmZmZmZmZddlZddlmZddlm Z m Z ddl m Z ddl mZddlmZd$eeeeeeeefeeeeefeeedd d Zejed d d Zejdddedejdddde dejdddeddddejdddde dgZedejdZeedddZd d!Zd"d#ZdS)%)IterableOptionalTypeVarUnionN) CLIConfig)logger readable_file)ConfigurationError)init_validation_context_kwargs)load_certs_from_pemder) cli_configvalidation_contexttrust trust_replace other_certsretroactive_revinfoallow_fetchingc Csz<|dk rt||fr"td|dkr4tdz|j|dd}WnFtk r}z(d|d} tj| |dt| W5d}~XYnXn||s|rt||||d}nb|dk rz|jdd}Wn@tk r}z d } tj| |dt| W5d}~XYnXni}|dk r ||d <n |d d|r:d|d <|WStjk rXYn~t k r}z d } tj| |dt| W5d}~XYn@t k r}z d } tj| |dt| W5d}~XYnXdS)NzC--validation-context is incompatible with --trust and --other-certszNo config file specified.T)Zas_dictzAConfiguration problem. Are you sure that the validation context 'z0' is properly defined in the configuration file?)exc_info)rrrrz*Failed to load default validation context.rrz+I/O problem while reading validation configz:Generic processing problem while reading validation config) anyclickClickExceptionZget_validation_contextr rerrorr setdefaultIOError Exception) r r rrrrrresultemsgr6/tmp/pip-unpacked-wheel-owvgwkas/pyhanko/cli/_trust.pybuild_vc_kwargs sb         r )ctxr cCs |jj}|dkrdS|j|dS)N)name)objconfigZget_signer_key_usages)r!r r rrr_get_key_usage_settingsTsr%)z--validation-contextz"use validation context from configF)helprequiredtype)z--trustz#list trust roots (multiple allowed)T)r&r'multipler()z--trust-replacez4listed trust roots supersede OS-provided trust store)r&r'r(Zis_flagdefaultZ show_default)z --other-certsz#other certs relevant for validationFC)bound)freturncCs|jt|S)N)paramsextend TRUST_OPTIONS)r-rrr trust_optionss r2cCs6|r|rtd|rd}n|r&d}nd}||d<|S)Nz<--soft-revocation-check is incompatible with --force-revinforequirez soft-failz hard-failZrevocation_mode)rr)Z vc_kwargsZsoft_revocation_checkZ force_revinfoZrev_moderrr _prepare_vcsr4c CsT|sdSztt|WSttfk rN}ztd||W5d}~XYnXdS)Nz!Could not load certificates from )listr r ValueErrorrr)filesrrrr grab_certssr8)N)typingrrrrrZpyhanko.cli.configrZpyhanko.cli.utilsrrZpyhanko.config.errorsr Zpyhanko.config.trustr Z pyhanko.keysr strboolr Contextr%Optionr1Commandr+r2r4r8rrrrsf     H  !