Sr?Sr@SrASrBSrCSrDSrESrFSrG\"SS5rH\"SS5rI\!"S S 5rJ\""S!S!5rK\R"\ES"S#S$S%5rM\R"\ES&S'S(S)5rN\"S*S+S,S-9rO\ "S.S/5rP\ "S0S15rQ\$"S2S35rR\ "S4S55rS\ "S6S75rT\"S8S95rU\"S:S:S;S-9rV\"SS?S@5rX\%"SASBSC5rY\%"SDSES@5rZ\%"SFSGSH5r[\"SISJ5r\\%"SKSLSMSN5r]\"SOSP5r^\"SQSR5r_\#"SSST5r`\"SUSUSVSW9ra"SXSY\5rb"SZS[\b5rc"S\S]\b5rdg)_a Parsing for Tor server descriptors, which contains the infrequently changing information about a Tor relay (contact information, exit policy, public keys, etc). This information is provided from a few sources... * The control port via 'GETINFO desc/\*' queries. * The 'cached-descriptors' file in Tor's data directory. * Archived descriptors provided by `CollecTor `_. * Directory authorities and mirrors via their DirPort. **Module Overview:** :: ServerDescriptor - Tor server descriptor. |- RelayDescriptor - Server descriptor for a relay. | +- make_router_status_entry - Creates a router status entry for this descriptor. | |- BridgeDescriptor - Scrubbed server descriptor for a bridge. | |- is_scrubbed - checks if our content has been properly scrubbed | +- get_scrubbing_issues - description of issues with our scrubbing | |- digest - calculates the upper-case hex digest value for our content |- get_annotations - dictionary of content prior to the descriptor entry +- get_annotation_lines - lines that provided the annotations .. data:: BridgeDistribution (enum) Preferred method of distributing this relay if a bridge. .. versionadded:: 1.6.0 ===================== =========== BridgeDistribution Description ===================== =========== **ANY** No proference, BridgeDB will pick how the bridge is distributed. **HTTPS** Provided via the `web interface `_. **EMAIL** Provided in response to emails to bridges@torproject.org. **MOAT** Provided in interactive menus within Tor Browser. **HYPHAE** Provided via a cryptographic invitation-based system. ===================== =========== N)RouterStatusEntryV3) PGP_BLOCK_END Descriptor DigestHashDigestEncodingcreate_signing_key_descriptor_content_descriptor_components_read_until_keywords_bytes_for_block_value_values_parse_simple_line_parse_int_line_parse_if_present_parse_bytes_line_parse_timestamp_line_parse_forty_character_hex_parse_protocol_line_parse_key_block_append_router_signature_random_nickname_random_ipv4_address _random_date_random_crypto_blob) lru_cache)router bandwidth published onion-key signing-keyrouter-signature)identity-ed25519master-key-ed25519platform fingerprint hibernatinguptimecontact read-history write-historyeventdnsbridge-distribution-requestfamilycaches-extra-infoextra-info-digesthidden-service-dir protocolsallow-single-hop-exitstunnelled-dir-serverprotoonion-key-crosscertntor-onion-keyntor-onion-key-crosscertrouter-sig-ed25519)ANYany)HTTPShttps)EMAILemail)MOATmoat)HYPHAEhyphaezreject 1-65535 reject *:*r;c[RRR[R "U5R S55$)N=)stemutil str_tools _to_unicodebase64 b64encoderstripcontents [/home/james-whalen/.local/lib/python3.13/site-packages/stem/descriptor/server_descriptor.py_truncated_b64encoderQs3    ( ()9)9')B)I)I$)O PPc+# [SU5n[[RU5n[[R R RU5n[[SU55nU(d6[SU5n[R"SS5SnU[X`S5- nO [SUS5nU(a[USRS 5(aUSS n[RS U5nU(a[XrU40UD6v O<[XrU40UD6v O,U(a$U(a[!S S RU5-5eg GME7f)a" Iterates over the server descriptors in a file. :param file descriptor_file: file with descriptor content :param bool is_bridge: parses the file as being a bridge descriptor :param bool validate: checks the validity of the descriptor's content if **True**, skips these checks otherwise :param dict kwargs: additional arguments for the descriptor constructor :returns: iterator for ServerDescriptor instances in the file :raises: * **ValueError** if the contents is malformed and validate is True * **IOError** if the file can't be read Trc US:g$)N)xs rP_parse_file..sRrRr" r router-digests@typeNrRz0Content conform to being a server descriptor: %s )r mapbytesstriprGrHrIrJlistfilterrsplit startswithjoinBridgeDescriptorRelayDescriptor ValueError)descriptor_file is_bridgevalidatekwargs annotationsdescriptor_contentblock_end_prefixdescriptor_texts rP _parse_filerqs+V &xAKekk;/Kdii))55{CKv/=>K /0BOT',,S!4Q701ATXYY/RVW A  ) )( 3 3/3 3(:;o +PPPoOOO kLtyyYdOeeff = sEE c[SU5nUR5n[U5S:a[SU-5e[R R RUS5(d[SUS-5e[R RRUS5(d[SUS-5e[R RRUSS S 9(d[S US-5e[R RRUS S S 9(d[S US -5e[R RRUSS S 9(d[SUS-5eUSUl USUl [US5UlUS S:XaSO [US 5UlUSS:XaSUlg[US5Ulg)Nrz,Router line must have five values: router %srz,Router line entry isn't a valid nickname: %sr[z0Router line entry isn't a valid IPv4 address: %sT) allow_zeroz#Router line's ORPort is invalid: %sz&Router line's SocksPort is invalid: %sz$Router line's DirPort is invalid: %s0)r rclenrhrGrH tor_toolsis_valid_nickname connectionis_valid_ipv4_address is_valid_portnicknameaddressintor_port socks_portdir_port) descriptorentriesvalue router_comps rP_parse_router_liners 7 #% + CeK LL 99   0 0Q @ @ CkRSnT UU 99   5 5k!n E E G+VW.X YY 99   - -k!n4 - P :[^K LL 99   - -k!n4 - P = AN OO 99   - -k!n4 - P ;k!nL MM#A*"1~*;q>**"-a.C"7$SQ=P* +A# 5*3{1~;N*rRc[SU5nUR5n[U5S:a[SU-5eUSR 5(d[SUS-5eUSR 5(d[SUS-5eUSR 5(d[S US-5e[ US5Ul[ US5Ul[ US5Ulg) Nrrvz3Bandwidth line must have three values: bandwidth %srz/Bandwidth line's average rate isn't numeric: %sr[z-Bandwidth line's burst rate isn't numeric: %srtz0Bandwidth line's observed rate isn't numeric: %s) r rcryrhisdigitraverage_bandwidthburst_bandwidthobserved_bandwidth)rrrbandwidth_comps rP_parse_bandwidth_liners g &%;;=.1 JUR SS !  $ $ & & FXYIZZ [[ !  $ $ & & D~VWGXX YY !  $ $ & & G.YZJ[[ \\!$^A%6!7*">!#45*"%nQ&7"8*rRc[SS5"X5 [SU5n[R"SU5nU(a=UR 5uo@l[ RRU5Ul gg![a gf=f)Nr%z^(?:node-)?Tor (\S*).* on (.*)$) rr rematchgroupsoperating_systemrGversion _get_version tor_versionrh)rrrplatform_match version_strs rP_parse_platform_liners~J +J@ W %%88>F./=/D/D/F,K, #||88Ej     s$A;; BBc.[SU5nURSS5nURS5H n[U5S:wdM[ SU-5e [ R RRU5(d[ SU-5eX0l g)Nr&rZrUrwz=Fingerprint line should have groupings of four hex digits: %sz6Tor relay fingerprints consist of forty hex digits: %s) r replacercryrhrGrHrzis_valid_fingerprintr&)rrrr&groupings rP_parse_fingerprint_liner.s  (% c2&+++c"h 8} VY^^ __#    1 1+ > > MPUU VV&rRc[SU5nURS5n[RRR USS5(d[ SUS-5eUSUl[U5S:a USUl gSUl g)Nr0rZr(z1extra-info-digest should be 40 hex characters: %srtr[) r rcrGrHrz is_hex_digitsrhextra_info_digestryextra_info_sha256_digest)rrr digest_comps rP_parse_extrainfo_digest_liner?s $g .% C +    * *;q>2 > > H;WX>Y ZZ!,Q*:=k:Ja:O A*%UY*%rRcX[SU5nUS;a[SU-5eUS:HUlg)Nr')rx1z>Hibernating line had an invalid value, must be zero or one: %sr)r rhr')rrrs rP_parse_hibernating_linerJs6  (% * UX]] ^^ C<*rRc[SU5n[R"SU5nU(d[SU-5eUR 5upEUR S5UlUR S5Ulg)Nr2z^Link (.*) Circuit (.*)$z?Protocols line did not match the expected pattern: protocols %srZ)r rrrhrrclink_protocolscircuit_protocols)rrrprotocols_match link_versionscircuit_versionss rP_parse_protocols_linerUsk g &%HH7?/  VY^^ __$3$:$:$<!-+11#6*!1!7!7!<*rRc [SU5n/nUGH7nSU-nSU;a[SU-5eURSS5upg[RR R U5(d;[RR RUSS9(d[SU-5e[RR RU5(d[S U-5eURURS 5RS 5[U5[RR RUSS945 GM: X0l g) N or-addressz or-address %s:z#or-address line missing a colon: %sr[T)allow_bracketsz+or-address line has a malformed address: %sz(or-address line has a malformed port: %s[])rrhrsplitrGrHr|r}is_valid_ipv6_addressr~appendlstriprMr or_addresses)rr all_valuesrentrylinerports rP_parse_or_address_lineras/|W-*,e U "D %  >tyyG[G[GqGqryMQGqHR DtK LL 99   - -d 3 3 ADH II,33C8#d)TYYEYEYEoEopwKOEoFPQR )rRcx[X5n[RRR X5upxn U (a+U R S5V s/sHn [ U 5PM n n O/n [XAU5 [XBU5 [XCU 5 gs sn f![a [U<SU<SU<35ef=f)N,z line has non-numeric values: rZ) r rGrextrainfo_descriptor_parse_timestamp_and_intervalrcrrhsetattr) keywordhistory_end_attributehistory_interval_attributehistory_values_attributerrr timestampinterval remainderrhistory_valuess rP_parse_history_linerxs  "%#'??#G#G#e#efm#u )yZ090DE0DuE 0DnEnn *Y7 *(; *?F Z RWX YYZs#BB(B+BB!B9c2[US5(aUR(aF[RRR URS5S:Xa [ UlO,[RR"UR6UlU?gg)N_unparsed_exit_policyrrD) hasattrrrGrHrIrJREJECT_ALL_POLICY exit_policy ExitPolicyrrs rP_parse_exit_policyrs{ Z011''DII,?,?,K,KJLlLlmnLo,puA-A0j#//::J<\<\]j( 2rRc[SSS5"X5 UR(aC[RRR R UR5Ulgg)Nr#ed25519_certificate ED25519 CERT)rrrGr certificateEd25519Certificate from_base64rs rP_parse_identity_ed25519_linersO%'ServerDescriptoria- Common parent for server descriptors. :var str nickname: **\*** relay's nickname :var str fingerprint: identity key fingerprint :var datetime published: **\*** time in UTC when this descriptor was made :var str address: **\*** IPv4 address of the relay :var int or_port: **\*** port used for relaying :var int socks_port: **\*** port used as client (**deprecated**, always **None**) :var int dir_port: **\*** port used for descriptor mirroring :var bytes platform: line with operating system and tor version :var stem.version.Version tor_version: version of tor :var str operating_system: operating system :var int uptime: uptime when published in seconds :var bytes contact: contact information :var stem.exit_policy.ExitPolicy exit_policy: **\*** stated exit policy :var stem.exit_policy.MicroExitPolicy exit_policy_v6: **\*** exit policy for IPv6 :var BridgeDistribution bridge_distribution: **\*** preferred method of providing this relay's address if a bridge :var set family: **\*** nicknames or fingerprints of declared family :var int average_bandwidth: **\*** average rate it's willing to relay in bytes/s :var int burst_bandwidth: **\*** burst rate it's willing to relay in bytes/s :var int observed_bandwidth: **\*** estimated capacity based on usage in bytes/s :var list link_protocols: link protocols supported by the relay :var list circuit_protocols: circuit protocols supported by the relay :var bool is_hidden_service_dir: **\*** indicates if the relay serves hidden service descriptors :var bool hibernating: **\*** hibernating when published :var bool allow_single_hop_exits: **\*** flag if single hop exiting is allowed :var bool allow_tunneled_dir_requests: **\*** flag if tunneled directory requests are accepted :var bool extra_info_cache: **\*** flag if a mirror for extra-info documents :var str extra_info_digest: upper-case hex encoded digest of our extra-info document :var str extra_info_sha256_digest: base64 encoded sha256 digest of our extra-info document :var bool eventdns: flag for evdns backend (**deprecated**, always unset) :var str ntor_onion_key: base64 key used to encrypt EXTEND in the ntor protocol :var list or_addresses: **\*** alternative for our address/or_port attributes, each entry is a tuple of the form (address (**str**), port (**int**), is_ipv6 (**bool**)) :var dict protocols: mapping of protocols to their supported versions **Deprecated**, moved to extra-info descriptor... :var datetime read_history_end: end of the sampling interval :var int read_history_interval: seconds per interval :var list read_history_values: bytes read during each interval :var datetime write_history_end: end of the sampling interval :var int write_history_interval: seconds per interval :var list write_history_values: bytes written during each interval **\*** attribute is either required when we're parsed with validation or has a default value, others are left as **None** if undefined .. versionchanged:: 1.5.0 Added the allow_tunneled_dir_requests attribute. .. versionchanged:: 1.6.0 Added the extra_info_sha256_digest, protocols, and bridge_distribution attributes. .. versionchanged:: 1.7.0 Added the is_hidden_service_dir attribute. .. versionchanged:: 1.7.0 Deprecated the hidden_service_dir field, it's never been populated (:spec:`43c2f78`). This field will be removed in Stem 2.0. rNr&r)rrrrrrr%rrr(rrr.rrrrrrFr'rrr2rrrr,rrrr)rrrrrrr0r1r7rr*r+rr3)r4r5r/r-r.r,c`>[[U] X(+S9 U(aUO/Ul[ [ R RRU5USSS9uo@l S/Ul U(aURXB5 [X5 U(aUR(arUR(aaURS:aQUR[ RR!S5:a$[#SURUR4-5eUR%U5 g X@lg ) a Server descriptor constructor, created from an individual relay's descriptor content (as provided by 'GETINFO desc/*', cached descriptors, and metrics). By default this validates the descriptor's content as it's parsed. This validation can be disables to either improve performance or be accepting of malformed data. :param str raw_contents: descriptor content provided by the relay :param bool validate: checks the validity of the descriptor's content if **True**, skips these checks otherwise :param list annotations: lines that appeared prior to the descriptor :raises: **ValueError** if the contents is malformed and validate is True ) lazy_load)acceptreject)r)r%)extra_keywordsnon_ascii_fields2rz0.1.2.7z;Descriptor for version '%s' had a negative uptime value: %iN)superr__init___annotation_linesr rGrHrIrJrhidden_service_dir_parserr(rrVersionrh_check_constraints_entries)self raw_contentsrkrmr __class__s rPrServerDescriptor.__init__Vs$ D*<\*R,7[RD+AATATA`A`amAnpxL`uL+M'G ' #eD kk'$' dkkd&6&6 ;;?t//4<<3G3G 3RRX\`\l\lnrnyny[zz{ { g&mrRc[S5e)a Digest of this descriptor's content. These are referenced by... * **Consensus** * Referer: :class:`~stem.descriptor.router_status_entry.RouterStatusEntryV3` **digest** attribute * Format: **SHA1/BASE64** .. versionchanged:: 1.8.0 Added the hash_type and encoding arguments. :param stem.descriptor.DigestHash hash_type: digest hashing algorithm :param stem.descriptor.DigestEncoding encoding: digest encoding :returns: **hashlib.HASH** or **str** based on our encoding argument zRUnsupported Operation: this should be implemented by the ServerDescriptor subclass)NotImplementedErrorr hash_typeencodings rPdigestServerDescriptor.digests$ r ssrRcx0nURH'nSU;aURSS5up4XAU'M#SX'M) U$)a$ Provides content that appeared prior to the descriptor. If this comes from the cached-descriptors file then this commonly contains content like... :: @downloaded-at 2012-03-18 21:18:29 @source "173.254.216.66" .. deprecated:: 1.8.0 Users very rarely read from cached descriptor files any longer. This method will be removed in Stem 2.x. If you have some need for us to keep this please `let me know `_. :returns: **dict** with the key/value pairs in our annotations rZr[N)rrc)rannotation_dictrkeyrs rPget_annotations ServerDescriptor.get_annotationssJ(O&& ZZQ' $ $ ' rRcUR$)aC Provides the lines of content that appeared prior to the descriptor. This is the same as the :func:`~stem.descriptor.server_descriptor.ServerDescriptor.get_annotations` results, but with the unparsed lines and ordering retained. .. deprecated:: 1.8.0 Users very rarely read from cached descriptor files any longer. This method will be removed in Stem 2.x. If you have some need for us to keep this please `let me know `_. :returns: **list** with the lines of annotation that came before this descriptor )rrs rPget_annotation_lines%ServerDescriptor.get_annotation_liness  ! !!rRcUR5HnX!;dM [SU-5e UR5H)nX!;dM [X5S:dM[SU-5e UR 5nU(a.U[ UR 55S:wa[SU-5eUR5nU(a.U[ UR 55S:wa[SU-5eSUR 5;aJS UR 5;a [S 5eS [ UR 55S S ;a [S 5eUR(d [S5eg )z Does a basic check that the entries conform to this descriptor type's constraints. :param dict entries: keyword => (value, pgp key) entries :raises: **ValueError** if an issue arises in validation z!Descriptor must have a '%s' entryr[z3The '%s' entry can only appear once in a descriptorrz'Descriptor must start with a '%s' entryz%Descriptor must end with a '%s' entryr#r9zKDescriptor must have router-sig-ed25519 entry to accompany identity-ed25519NzCDescriptor must have 'router-sig-ed25519' as the next-to-last entryzAVV WWW\\^+ W\\^ 3fgg tGLLN';BC'@ @^__    U VV rRc[$r)REQUIRED_FIELDSr(s rPr.!ServerDescriptor._required_fieldss rRc[[-$r)r7 SINGLE_FIELDSr(s rPr/ServerDescriptor._single_fieldss ] **rRcg)NrrVr(s rPr0ServerDescriptor._first_keywords rRcg)Nr"rVr(s rPr2ServerDescriptor._last_keywords rR)rrrr)FN)2__name__ __module__ __qualname____firstlineno____doc__rr_parse_contact_line_parse_published_linerr_parse_uptime_lineDEFAULT_IPV6_EXIT_POLICY_parse_ipv6_policy_lineDEFAULT_BRIDGE_DISTRIBUTION'_parse_bridge_distribution_request_liner_parse_family_linerr_parse_hidden_service_dir_liner"_parse_allow_single_hop_exits_line_parse_tunneled_dir_server_line_parse_proto_line_parse_caches_extra_info_liner_parse_eventdns_line_parse_ntor_onion_key_liner_parse_read_history_line_parse_write_history_line ATTRIBUTESPARSER_FOR_LINErrSHA1rHEXr rr%r)rr.r/r0r2__static_attributes__ __classcell__rs@rPrrsGR-)*-D12-)*-$-. - D,- -()-()-4+,-)*-+,-D./-34- t'(- /1HI!-"79`a#-$ su()%-($ 56)-*34+-,4!67--0t231-2$ 563-4e%CD5-6E237-8u&HI9-:"E+J#K;-<"'(=-> =>?-@$ <=A-B'C DC-D+,E-Ft78G-HR/0I-L78M-Nd$<=O-P!":; 9:#%>?!#<=Y-*^  &$&  *  " *58  &0(,. *!"@#$< 6#J $//43j *>;M;Mt( ;<"$!WL+rRrcn^\rSrSrSrSr\"\R40S\ 4S\ 4S\ 4S\ 4S\ 4S\ 4S\4S\4S\4S\4S. D6r\"\R"40\ \ \ \ \ \\\S.D6rSU4Sjjr\SS j5r\SS j5r\"5\R0\R44S j5rS r\"5S 5rU4SjrSrU=r $)rgiat Server descriptor (`descriptor specification `_) :var stem.certificate.Ed25519Certificate certificate: ed25519 certificate :var str ed25519_certificate: base64 encoded ed25519 certificate :var str ed25519_master_key: base64 encoded master key for our ed25519 certificate :var str ed25519_signature: signature of this document using ed25519 :var str onion_key: **\*** key used to encrypt EXTEND cells :var str onion_key_crosscert: signature generated using the onion_key :var str ntor_onion_key_crosscert: signature generated using the ntor-onion-key :var str ntor_onion_key_crosscert_sign: sign of the corresponding ed25519 public key :var str signing_key: **\*** relay's long-term identity key :var str signature: **\*** signature for this descriptor **\*** attribute is required when we're parsed with validation .. versionchanged:: 1.5.0 Added the ed25519_certificate, ed25519_master_key, ed25519_signature, onion_key_crosscert, ntor_onion_key_crosscert, and ntor_onion_key_crosscert_sign attributes. .. versionchanged:: 1.6.0 Moved from the deprecated `pycrypto `_ module to `cryptography `_ for validating signatures. .. versionchanged:: 1.6.0 Added the certificate attribute. .. deprecated:: 1.6.0 Our **ed25519_certificate** is deprecated in favor of our new **certificate** attribute. The base64 encoded certificate is available via the certificate's **encoded** attribute. .. versionchanged:: 1.6.0 Added the **skip_crypto_validation** constructor argument. zserver-descriptorN) rrrrrrrrrr)r#r$r9r r6r8r!r"c,>[[U] XU5 U(GaUR(a[R "[ UR55R5nXPRR5:wa,[SURR5<SU<S35eU(Gd [RR5(aURURUR5nX`R!5:wa"[SU<SUR!5<S35eUR"(a~[RR5(a[URUR$UR"5nXpR'5:wa"[SU<SUR'5<S35e[RRSS9(a.UR((aUR(R+U5 gggg) NzEFingerprint does not match the hash of our signing key (fingerprint: z, signing key hash: )z:Decrypted digest does not match local digest (calculated: z , local: zNDecrypted onion-key-crosscert digest does not match local digest (calculated: T)ed25519)rrgrr&hashlibsha1r r hexdigestlowerrhrGprereqis_crypto_available_digest_for_signaturerr rr_onion_key_crosscert_digestrrk) rrrkrmskip_crypto_validationkey_hash signed_digestonion_key_crosscert_digestrs rPrRelayDescriptor.__init__Gs /4),+N  << 01A1A BCMMO ''--/ /@D@P@P@V@V@XZbcd d # (G(G(I(I2243C3CT^^T KKM )ivx|yDyDyFGH H  # # (G(G(I(I'+'A'A$..RVRjRj'k $ '+K+K+M M@Z\`\|\|\~@ @  ( (4 ( 8T=M=M !!$'>N 8'rRrVc U(aSnUc0nUc[nS[5<S[5<S34S[54S/[ U5R 5Vs/sHn[ URSS55PM sn-S[S 54S [S 54/-nU(Ga,U(aS U;a [S 5eU(aS U;a [S 5eUc [5nSU;a[R"[[RR R#UR$R'5555R)5R+5nSR-[RR R/US55US'UR$US '[1XU5S-n [3XR45$[1XUSS [S5445$s snf)NTrrZ 9001 0 0r)rz153600 256000 104590r[r rr!z=Cannot sign the descriptor if a signing-key has been providedr"zBCannot sign the descriptor if a router-signature has been providedr&rws router-signature )r9Nr)rrrrstr splitlinestuplercrrhrrarbr rGrHrIrJ public_digestr`rcupperre_split_by_lengthr rprivate) clsattrexcludesignrrr base_headerr&rOs rPrORelayDescriptor.content`s d | d%k%5%79M9OPQLN#+ -0 ,<,G,G,I ,IDeDJJsA ,I  '(89:)*:;<  K -4'XYY &$.]^^  (* d "ll#3DII4G4G4S4ST_TmTmTsTsTu4v#wxCCEKKM !hhtyy':':'K'KKYZ'[\]'55d=#D;?BYYg %g/B/B CC  $ 0=>>  3 s%G.c <U"URXXEU5X4(+S9$)N)rkrirN)rwrxryrkrzrrs rPcreateRelayDescriptor.creates* s{{4$[IV^zB CCrRc^URSSS9nU[R:Xa4[RR [ R"U5U5$U[R:Xa4[RR [ R"U5U5$[SU-5e)z Provides the digest of our descriptor's content. :returns: the digest string encoded in uppercase hex :raises: ValueError if the digest cannot be calculated rz router-signature )startendzGServer descriptor digests are only available in sha1 and sha256, not %s) _content_rangerrXrGr_encode_digestrarbSHA256sha256r)rrrrOs rPr RelayDescriptor.digests!!(:P!QGJOO# __ + +GLL,A8 LL j'' ' __ + +GNN7,CX NN  ilu u vvrRc PUR(d [S5eSRUR[ [ R "[RRRUR555[ [ R "[RRRUR5555URRS5UR[UR 5UR"(a[UR"5OS/5SUR$-UR&R)5R+SS5S.nUR,(aS UR,-US 'UR.(a-UR.VVVs/sHup#oB<S U<3PM snnnUS 'UR0(a%S [ UR0R25-US'[4R6"U5$s snnnf)z Provides a RouterStatusEntryV3 for this descriptor content. .. versionadded:: 1.6.0 :returns: :class:`~stem.descriptor.router_status_entry.RouterStatusEntryV3` that would be in the consensus zmServer descriptor lacks a fingerprint. This is an optional field, but required to make a router status entry.rZz%Y-%m-%d %H:%M:%Srxz Bandwidth=%iz, r)rwpzTor %srraz ed25519 %sid)r&rhrerrQbinascii unhexlifyrGrHrI _to_bytesr rstrftimerrprrrrsummaryrrrrr$rr~)rrxaddrr_s rPmake_router_status_entry(RelayDescriptor.make_router_status_entrys    G HH 88 X// 0C0C0M0MdN^N^0_`aX// 0C0C0M0Mdkkm0\]^  34  DLL"mmDMM  D22 2    # # % - -dC 8 D T---d3i ?C?P?PQ?Pmd!dD)?PQd3i "6t7G7G7K7K"LLd4j  % %d ++ Rs8H!c[R"[UR55R 5nU[ R "[RRRUR5S-5-n[RRR[R"U5R55$)z Provides the digest of the onion-key-crosscert data. This consists of the RSA identity key sha1 and ed25519 identity key. :returns: **unicode** digest encoded in uppercase hex :raises: ValueError if the digest cannot be calculated rF)rarbr rr rK b64decoderGrHrIrrrJrhexlifyrt)rsigning_key_digestdatas rPrh+RelayDescriptor._onion_key_crosscert_digests!&6t7G7G&HIPPR  0 01D1D1N1NtOfOf1gjn1n o oD 99   * *8+;+;D+A+G+G+I JJrRc>[[U] U5 UR(a9UR(d [ S5eUR (d [ S5egg)NzMDescriptor must have a 'onion-key-crosscert' when identity-ed25519 is presentzLDescriptor must have a 'router-sig-ed25519' when identity-ed25519 is present)rrgrrrrhr)rrrs rPr"RelayDescriptor._check_constraintssO /43G<   % %hii%%ghh& rR)FNF)NrVFNN)NrVTFNN)!r@rArBrCrDTYPE_ANNOTATION_NAMEdictrrVr_parse_master_key_ed25519_line_parse_router_sig_ed25519_line_parse_onion_key_line_parse_onion_key_crosscert_line$_parse_ntor_onion_key_crosscert_line_parse_signing_key_line_parse_router_signature_linerWr classmethodrOr~rrrXrrYr rrhrrZr[r\s@rPrgrgs@&P-$// 67 ">?!?@ >?-. "AB!%'K L&*,P%Q1245 4 *)99 488&: D*4 > /(2* * XCC ;)>;M;Mww$$,L ; K KiirRrgc\rSrSrSrSr\"\R40S\ 4S\ 4S\ 4S.D6r\"\R40\ \ \ S.D6r \ SSj5r\R \R$4S jrS r\"5S 5rS rS rSrSrg)rfia Bridge descriptor (`bridge descriptor specification `_) :var str ed25519_certificate_hash: sha256 hash of the original identity-ed25519 :var str router_digest_sha256: sha256 digest of this document .. versionchanged:: 1.5.0 Added the ed25519_certificate_hash and router_digest_sha256 attributes. Also added ntor_onion_key (previously this only belonged to unsanitized descriptors). zbridge-server-descriptorN)rrr)r$rr\rVc U(a[SUR-5e[XS[5<S[ 5<S34SS[ 54SS45$) NzSigning of %s not implementedrrZro)r\(006FD96BA35E7785A6A3B8B75FE2E2435A13BDB4r)rz409600 819200 5120)r z*:*)rr@r rrr)rwrxryrzs rPrOBridgeDescriptor.contentsV  ?#,, N OO t%5%79M9OPQCLN#) / rRcU[R:Xa U[R:Xa UR$[ SU<SU<35e)NzEBridge server descriptor digests are only available as sha1/hex, not /)rrXrrYrrrs rPr BridgeDescriptor.digest sDJOO#N4F4F(F \\ py|D!E FFrRc(UR5/:H$)a$ Checks if we've been properly scrubbed in accordance with the `bridge descriptor specification `_. Validation is a moving target so this may not be fully up to date. :returns: **True** if we're scrubbed, **False** otherwise )get_scrubbing_issuesr(s rP is_scrubbedBridgeDescriptor.is_scrubbeds  $ $ &" ,,rRc6/nURRS5(dURSUR-5 UR(a.URS:waURSUR-5 URHnup#nU(d,URS5(dURSU-5 M9U(dMBURS5(aMZURSU-5 Mp UR 5HnURS5(aURS U-5 M/URS 5(aURS U-5 M[URS 5(dMsURS U-5 M U$)z Provides issues with our scrubbing. :returns: **list** of strings which describe issues we have with our scrubbing, this list is empty if we're properly scrubbed z10.z=Router line's address should be scrubbed to be '10.x.x.x': %ssomebodyzFContact line should be scrubbed to be 'somebody', but instead had '%s'zAor-address line's address should be scrubbed to be '10.x.x.x': %szfd9f:2e19:3bcf::zPor-address line's address should be scrubbed to be 'fd9f:2e19:3bcf::xx:xxxx': %sz onion-key z;Bridge descriptors should have their onion-key scrubbed: %sz signing-key z=Bridge descriptors should have their signing-key scrubbed: %szrouter-signature z;Bridge descriptors should have their signature scrubbed: %s)rrdrr)rget_unrecognized_lines)rissuesrris_ipv6rs rPr%BridgeDescriptor.get_scrubbing_issuessKF << " "5 ) ) mmSVZVbVbbc || 2 mm\_c_k_kkl#00G W//66 Y\ccd 77--.@AA  hkrrs 1++-  & & SVZZ[ ??> * * UX\\] ??. / / SVZZ[ . MrRcn/SQnS/n[U[Vs/sH o3U;dM UPM sn-5$s snf)N)r r!r"r\)rrr7)rexcluded_fieldsincluded_fieldsfs rPr.!BridgeDescriptor._required_fieldsAs>OO #[!?BZA#[[ \\#[s 2 2 c0UR5[-$r)r.r:r(s rPr/BridgeDescriptor._single_fieldsQs  "] 22rRcgrrVr(s rPr2BridgeDescriptor._last_keywordTs rR)NrVF)r@rArBrCrDrrrrV'_parse_master_key_ed25519_for_hash_line _parse_router_digest_sha256_line_parse_router_digest_linerWrrOrrXrrYr rrrr.r/r2rZrVrRrPrfrfs 4$//!%'N O!#CD/04* )99A<.>/    *>;M;MF - ;  D] 3rRrf)FF)erDrKr functoolsrarstem.descriptor.certificaterG$stem.descriptor.extrainfo_descriptorstem.exit_policy stem.prereqstem.util.connectionstem.util.enumstem.util.str_toolsstem.util.tor_tools stem.version#stem.descriptor.router_status_entryrstem.descriptorrrrrrr r r r r rrrrrrrrrrrrrrre_is_lru_cache_availablerstem.util.lru_cacher7r:rHenumEnumBridgeDistributionrrrHrrrJrQrqrrrrrrrrrrrrrrErFpartialrTrUrIrNrOrPrMrQrKrLrRrrrrrSrrrrrGrrgrfrVrRrPrs,\ "+C6;;&&((!+ 4YY^^((  ++;;!23GI`!a 12EGY Z*<=Z\q*r''(C^_)*jI[\(kCST"23HJ_al"m*=-IYZ/0BKQ\]/0@BRS'78RTnp~A`(a$!34HJ]!^#56LNd#e 6 R%Xx$O}z}@ ]i&]i@r'rrR