o Df@sdZddlmZddlZddlZddlZddlmZmZddl m Z ddl m Z m Z ddlmZddlmZmZdd lmZd d lmZerpdd lmZdd lmZddlmZddlmZddlm Z ddl!m"Z"ddl#m$Z$dZ%GdddZ&GdddZ'Gddde'Z(dS)zX.509 certificates.) annotationsN) TYPE_CHECKINGIterator)default_backend)paddingrsa)load_pem_x509_certificate) bytes_to_str ensure_bytes) SecurityError)reraise_errors) DSAPublicKey)EllipticCurvePublicKey)Ed448PublicKey)Ed25519PublicKey) RSAPublicKey) Prehashed) HashAlgorithm) Certificate CertStore FSCertStorec@sVeZdZdZdddZdd d Zdd d Zd ddZd!ddZd!ddZ d"ddZ dS)#rzX.509 certificate.certstrreturnNonecCsbtdtfd tt|td|_t|jtj stdWddS1s*wYdS)NzInvalid certificate: {0!r})errors)backendz'Non-RSA certificates are not supported.) r ValueErrorrr r_cert isinstance public_keyrr)selfrr#T/home/ubuntu/webapp/venv/lib/python3.10/site-packages/celery/security/certificate.py__init__"s "zCertificate.__init__boolcCstjtjj|jjkS)z%Check if the certificate has expired.)datetimenowtimezoneutcrnot_valid_afterr"r#r#r$ has_expired,zCertificate.has_expiredXDSAPublicKey | EllipticCurvePublicKey | Ed448PublicKey | Ed25519PublicKey | RSAPublicKeycCs |jSN)rr!r,r#r#r$ get_pubkey0s zCertificate.get_pubkeyintcCs|jjS)z,Return the serial number in the certificate.)r serial_numberr,r#r#r$get_serial_number5szCertificate.get_serial_numbercCsddd|jjDS)zReturn issuer (CA) as a string. css|]}|jVqdSr0)value).0xr#r#r$ ;sz)Certificate.get_issuer..)joinrissuerr,r#r#r$ get_issuer9r.zCertificate.get_issuercCs|d|S)zr@rApadr#r#r$rHAs "zCertificate.verifyN)rrrr)rr&)rr/)rr2)rr)r>r?r@r?rArBrr) __name__ __module__ __qualname____doc__r%r-r1r4r<r=rHr#r#r#r$rs     rc@s8eZdZdZdddZdddZdd d ZdddZdS)rz"Base class for certificate stores.rrcCs i|_dSr0)_certsr,r#r#r$r%Os zCertStore.__init__Iterator[Certificate]ccs|jEdHdS)zReturn certificate iterator.N)rNvaluesr,r#r#r$ itercertsRszCertStore.itercertsidrrcCs.z|jt|WStytd|w)zGet certificate by id.zUnknown certificate: )rNr KeyErrorr )r"rRr#r#r$ __getitem__Vs  zCertStore.__getitem__rcCs2t|}||jvrtdt||j|<dS)NzDuplicate certificate: )r r=rNr rR)r"rcert_idr#r#r$add_cert]s  zCertStore.add_certN)rr)rrO)rRrrr)rrrr)rJrKrLrMr%rQrTrVr#r#r#r$rLs    rcs"eZdZdZdfdd ZZS) rzFile system certificate store.pathrrrc sttj|rtj|d}t|D].}t| }t| }| r1t d| | |Wdn1s@wYqdS)N*zExpired certificate: )superr%osrWisdirr:globopenrreadr-r r=rV)r"rWpfr __class__r#r$r%gs      zFSCertStore.__init__)rWrrr)rJrKrLrMr% __classcell__r#r#rar$rdsr))rM __future__rr'r\rZtypingrrcryptography.hazmat.backendsr)cryptography.hazmat.primitives.asymmetricrrcryptography.x509rkombu.utils.encodingr r celery.exceptionsr utilsr -cryptography.hazmat.primitives.asymmetric.dsar,cryptography.hazmat.primitives.asymmetric.ecr/cryptography.hazmat.primitives.asymmetric.ed448r1cryptography.hazmat.primitives.asymmetric.ed25519r-cryptography.hazmat.primitives.asymmetric.rsar/cryptography.hazmat.primitives.asymmetric.utilsr%cryptography.hazmat.primitives.hashesr__all__rrrr#r#r#r$s0            -