SrSSKJr SSKJr SSKJr SSKJr SSKJ r SSK J r SSK Jr SSK J r SSK Jr SS K Jr SS K Jr SS KJr SS KJr "S S\ R*5rg)z7Sign a user input file using an asymmetric-signing key.)absolute_import)division)unicode_literals) exceptions)base)crc32c) e2e_integrity)flags) get_digest)log)filesc\\rSrSrSr\S5rSrSrSr Sr Sr S r SS jr S rS rg )AsymmetricSign!aSign a user input file using an asymmetric-signing key version. Creates a digital signature of the input file using the provided asymmetric-signing key version and saves the base64 encoded signature. The required flag `signature-file` indicates the path to store signature. By default, the command performs integrity verification on data sent to and received from Cloud KMS. Use `--skip-integrity-verification` to disable integrity verification. ## EXAMPLES The following command will read the file '/tmp/my/file.to.sign', digest it with the digest algorithm 'sha256' and sign it using the asymmetric CryptoKey `dont-panic` Version 3, and save the signature in base64 format to '/tmp/my/signature'. $ {command} \ --location=us-central1 \ --keyring=hitchhiker \ --key=dont-panic \ --version=3 \ --digest-algorithm=sha256 \ --input-file=/tmp/my/file.to.sign \ --signature-file=/tmp/my/signature c[R"US5 [R"US5 [R"US5 [R"US5 [R "US5 [R "U5 g)Nzto use for signing.zto use for signingz"The algorithm to digest the input.zto signz to output)r AddKeyResourceFlagsAddCryptoKeyVersionFlagAddDigestAlgorithmFlagAddInputFileFlagAddSignatureFileFlagAddSkipIntegrityVerification)parsers "lib/surface/kms/asymmetric_sign.pyArgsAsymmetricSign.Args>sc f&;< !!&*>?   )MN 69- v{3 &&v.c$UR(+$N)skip_integrity_verificationselfargss r_PerformIntegrityVerification,AsymmetricSign._PerformIntegrityVerificationGs// //rcURSL$r)digest_algorithmr s r _SignOnDigestAsymmetricSign._SignOnDigestJs   ,,rc[R"U5n[U5U:a%[R"SR X55eU$)Nzr r?r@r#rrArCrD)r!r"r0rErFrG data_crc32cs r"_CreateAsymmetricSignRequestOnData1AsymmetricSign._CreateAsymmetricSignRequestOnDatajs&M  ! !$//U ! Cd ..0H  d d  , ,T 2 ? ? A e CC ))$//MM$'k"*"@"@#A#-c J#+"@"@d"@"Kc J ;;M  ' ' 0 7 7 K MMMsB::D0C>>DcrURU5(aURU5$URU5$r)r'rIrOr s r_CreateAsymmetricSignRequest+AsymmetricSign._CreateAsymmetricSignRequests5 $  6 6t <<  4 4T ::rc`URUR:wa?[R"[R"URUR55eU(a;UR(d)[R "[R "55eO:UR(d)[R "[R "55e[R"URUR5(d)[R "[R"55eg)z4Verifies integrity fields in AsymmetricSignResponse.N) r6r ResourceNameVerificationError#GetResourceNameMismatchErrorMessageverifiedDigestCrc32c$ClientSideIntegrityVerificationError'GetRequestToServerCorruptedErrorMessageverifiedDataCrc32cr Crc32cMatches signaturesignatureCrc32c*GetResponseFromServerCorruptedErrorMessage)r!rGresp use_digests r_VerifyResponseIntegrityFields-AsymmetricSign._VerifyResponseIntegrityFieldss xx499  7 7  ; ;hh  # $$  & &@@  A A CE E'  $ $@@  A A CE E   0D0D E E  > >  B B D FF Frc [R"5nURU5nURR U5nURU5(a URUWURU5S9 [R"URWRSSSS9 g![ R a n[R"U5 SnANSnAff=f![ R"an[$R&"U5eSnAff=f)N)r`T) overwritebinaryprivate)r<GetClientInstancerR8projects_locations_keyRings_cryptoKeys_cryptoKeyVersionsrapitools_exceptionsHttpBadRequestErrorr ProcessHttpBadRequestErrorr#rar'r WriteToFileOrStdoutsignature_filer\r rMrr,)r!r"clientrGr_errorrEs rRunAsymmetricSign.Runs  , , .F  + +D 1C6  I I >#   ))$// )) t 2 24 8*:+     ..   2 26..u556 ;;+  ' ' **+s/B':,C'C;CCD 2DD N)T)__name__ __module__ __qualname____firstlineno____doc__ staticmethodrr#r'r1rIrOrRrarp__static_attributes__rrrrrr!sE8//0-*%N; F2+rrN)rw __future__rrrapitools.base.pyrrigooglecloudsdk.api_lib.cloudkmsrr<googlecloudsdk.calliopegooglecloudsdk.command_lib.kmsrr r r googlecloudsdk.corer googlecloudsdk.core.utilr CommandrrrrrrsC>&'>A(.1805#*g+T\\g+r