JSrSSKJr SSKJr SSKJr SSKJr SSKJ r SSKJ r SSKJ r SSK J r SSKJr SS KJr "S S \R$5rg ) zADecrypt an input file using an asymmetric-encryption key version.) exceptions)base)crc32c) e2e_integrity)flags)log) console_io)filesc@\rSrSrSr\S5rSrSrSr Sr Sr g ) AsymmetricDecryptaDecrypt an input file using an asymmetric-encryption key version. Decrypts the given ciphertext file using the provided asymmetric-encryption key version and saves the decrypted data to the plaintext file. By default, the command performs integrity verification on data sent to and received from Cloud KMS. Use `--skip-integrity-verification` to disable integrity verification. ## EXAMPLES The following command will read the file '/tmp/my/secret.file.enc', decrypt it using the asymmetric CryptoKey `dont-panic` Version 3 and write the plaintext to '/tmp/my/secret.file.dec'. $ {command} \ --location=us-central1 \ --keyring=hitchhiker \ --key=dont-panic \ --version=3 \ --ciphertext-file=/tmp/my/secret.file.enc \ --plaintext-file=/tmp/my/secret.file.dec c[R"US5 [R"US5 [R"US5 [R"US5 [R "U5 g)Nz!to use for asymmetric-decryption.z to use for asymmetric-decryptionz to decryptz to output)rAddKeyResourceFlagsAddCryptoKeyVersionFlagAddCiphertextFileFlagAddPlaintextFileFlagAddSkipIntegrityVerification)parsers %lib/surface/kms/asymmetric_decrypt.pyArgsAsymmetricDecrypt.Args7sR f&IJ !!&*LM  5 v{3 &&v.c$UR(+$)N)skip_integrity_verification)selfargss r_PerformIntegrityVerification/AsymmetricDecrypt._PerformIntegrityVerification?s// //rc[R"URSS9n[R"5n[R"U5nURUR5S9nURU5(a,[R "U5nUR#X'S9UlU$UR#US9UlU$![Ra5n[ R "SRURU55eSnAff=f)NT)binaryz)Failed to read ciphertext file [{0}]: {1})name) ciphertextciphertextCrc32c)r")r ReadFromFileOrStdinciphertext_filer ErrorrBadFileExceptionformat cloudkms_baseGetMessagesModulerParseCryptoKeyVersionNameTCloudkmsProjectsLocationsKeyRingsCryptoKeysCryptoKeyVersionsAsymmetricDecryptRequest RelativeNamerrCrc32cAsymmetricDecryptRequestasymmetricDecryptRequest)rrr"emessagescrypto_key_refreqciphertext_crc32cs r_CreateAsymmetricDecryptRequest1AsymmetricDecrypt._CreateAsymmetricDecryptRequestBs(11   t-j..0H44T:N  g g  ( ( * h ,C ))$// -- 3%-%F%F&G&Ec" J&.%F%F&G&!c" J% ;;(  ' ' 5 < <""A ' (((sCD 0DD c*UR(d)[R"[R"55e[R "UR UR5(d)[R"[R"55eg)z&Verifies integrity fields in response.N) verifiedCiphertextCrc32cr$ClientSideIntegrityVerificationError'GetRequestToServerCorruptedErrorMessager Crc32cMatches plaintextplaintextCrc32c*GetResponseFromServerCorruptedErrorMessage)rr4resps r_VerifyResponseIntegrityFields0AsymmetricDecrypt._VerifyResponseIntegrityFieldsZst  ( (  > >  ? ? A CC   0D0D E E  > >  B B D FF FrcURU5n[R"5nURR U5nURU5(aURUW5 [R"URWR=(d SSSSS9 g![ R a n[R"U5 SnANSnAff=f![R an["R$"U5eSnAff=f)NT) overwriter private)r6r)GetClientInstance8projects_locations_keyRings_cryptoKeys_cryptoKeyVersionsr apitools_exceptionsHttpBadRequestErrorrProcessHttpBadRequestErrorrrArWriteToFileOrStdoutplaintext_filer=r r&rr')rrr4clientr@errorr1s rRunAsymmetricDecrypt.Rungs  . .t 4C  , , .F6  I I  S !  ))$// ))#t4+     .. B   2 26..u556 ;;+  ' ' **+s/B",5C"C6CCD-DDN) __name__ __module__ __qualname____firstlineno____doc__ staticmethodrrr6rArP__static_attributes__rRrrr r s00//00 F+rr N)rWapitools.base.pyrrIgooglecloudsdk.api_lib.cloudkmsrr)googlecloudsdk.calliopegooglecloudsdk.command_lib.kmsrrrgooglecloudsdk.corergooglecloudsdk.core.consoler googlecloudsdk.core.utilr Commandr rRrrrbs=H?A(.180#2*`+ `+r