*?gc @sfdZddlZddlZddlZddlmZmZmZddlmZddlmZm Z m Z ddlm Z m Z m Z ddlmZmZmZmZmZmZmZmZmZddlmZmZmZid e6d e6d e6Zydd lmZeZWnek r8eZn Xd ee|jj||S|jj|||SdS(Ns%sendto not allowed on instances of %s(R`RERRXRQtsendto(RuRt flags_or_addrtaddr((s/usr/lib/python2.7/ssl.pyRWs   cCs|jrq|dkr+td|jnt|}d}x-||krl|j||}||7}q@W|Stj|||SdS(Nis6non-zero flags not allowed in calls to sendall() on %s(R`RERRGRRtsendall(RuRRtamountR*R((s/usr/lib/python2.7/ssl.pyR`s   cCsO|jr8|dkr+td|jn|j|S|jj||SdS(Nis3non-zero flags not allowed in calls to recv() on %s(R`RERR}RQRc(RutbuflenR((s/usr/lib/python2.7/ssl.pyRcos   cCs|r!|dkr!t|}n|dkr6d}n|jr|dkratd|jn|j|}t|}|||*|S|jj|||SdS(Niis8non-zero flags not allowed in calls to recv_into() on %s(RXRGR`RERR}RQt recv_into(RutbuffertnbytesRt tmp_bufferR((s/usr/lib/python2.7/ssl.pyRys      cCs6|jrtd|jn|jj||SdS(Ns'recvfrom not allowed on instances of %s(R`RERRQtrecvfrom(RuRR((s/usr/lib/python2.7/ssl.pyRs cCs9|jrtd|jn|jj|||SdS(Ns,recvfrom_into not allowed on instances of %s(R`RERRQt recvfrom_into(RuRRR((s/usr/lib/python2.7/ssl.pyRs cCs|jr|jjSdSdS(Ni(R`tpending(Ru((s/usr/lib/python2.7/ssl.pyRs  cCs?|jr%|jj}d|_|Stdt|dS(NsNo SSL wrapper around (R`tshutdownRXREtstr(Ruts((s/usr/lib/python2.7/ssl.pytunwraps   cCsd|_tj||dS(N(RXR`RR(Ruthow((s/usr/lib/python2.7/ssl.pyRs cCs;|jdkr(d|_tj|n|jd8_dS(Ni(RtRXR`RRg(Ru((s/usr/lib/python2.7/ssl.pyRgs cCs|jjdS(sPerform a TLS/SSL handshake.N(R`Rk(Ru((s/usr/lib/python2.7/ssl.pyRksc Cs|jrtdntj|jt|j|j|j|j |j |j |_ ya|rrt j||}nd}t j|||s|jr|jnt|_n|SWntk rd|_ nXdS(Ns/attempt to connect already-connected SSLSocket!(R_RERiRjRQR(RlRmRnRoRpRqR`Rt connect_exRXtconnectRrRkRhR\(RuRt return_errnotrc((s/usr/lib/python2.7/ssl.pyt _real_connects$       cCs|j|tdS(sQConnects to remote ADDR, and then wraps the connection in an SSL channel.N(RR((RuR((s/usr/lib/python2.7/ssl.pyRscCs|j|tS(sQConnects to remote ADDR, and then wraps the connection in an SSL channel.(RRh(RuR((s/usr/lib/python2.7/ssl.pyRscCstj|\}}ybt|d|jd|jdtd|jd|jd|jd|j d|j d |j  |fSWn#t k r}|j |nXd S( sAccepts a new connection from a remote client, and returns a tuple containing that new connection wrapped with a server-side SSL channel, and the address of the remote client.RlRmRwRnRoRpRqRrRsN(RtacceptRPRlRmRhRnRoRpRqRrRsR\Rg(RutnewsockRRy((s/usr/lib/python2.7/ssl.pyRs            tricCs%|jd7_t|||dtS(sMake and return a file-like object that works with the SSL connection. Just use the code from the socket module.iRg(RtRRh(Rutmodetbufsize((s/usr/lib/python2.7/ssl.pytmakefilesN(R$R%t__doc__RXR(RRRhRUR}RRRRRRRcRRRRRRRgRkRRRRR(((s/usr/lib/python2.7/ssl.pyRPs6P              c Cs@t|d|d|d|d|d|d|d|d|d |  S( NRlRmRwRnRoRpRrRsRq(RP( RvRlRmRwRnRoRpRrRsRq((s/usr/lib/python2.7/ssl.pyt wrap_sockets   cCs%ddl}|j|j|dS(sTakes a date-time string in standard ASN1_print form ("MON DAY 24HOUR:MINUTE:SEC YEAR TIMEZONE") and return a Python time value in seconds past the epoch.iNs%b %d %H:%M:%S %Y GMT(ttimetmktimetstrptime(t cert_timeR((s/usr/lib/python2.7/ssl.pytcert_time_to_seconds s s-----BEGIN CERTIFICATE-----s-----END CERTIFICATE-----cCscttdrBtj|}tdtj|ddtdStdtj|tdSdS(s[Takes a certificate in binary DER format and returns the PEM version of it as a string.tstandard_b64encodes i@N(thasattrtbase64Rt PEM_HEADERttextwraptfillt PEM_FOOTERt encodestring(tder_cert_bytestf((s/usr/lib/python2.7/ssl.pytDER_cert_to_PEM_certs$cCsw|jts"tdtn|jjtsJtdtn|jtttt !}tj|S(shTakes a certificate in ASCII PEM format and returns the DER-encoded version of it as a byte sequences(Invalid PEM encoding; must start with %ss&Invalid PEM encoding; must end with %s( R.RREtstriptendswithRRGRt decodestring(tpem_cert_stringtd((s/usr/lib/python2.7/ssl.pytPEM_cert_to_DER_cert(s   cCsx|\}}|dk r!t}nt}ttd|d|d|}|j||jt}|jt |S(sRetrieve the certificate from the server at the specified address, and return it as a PEM-encoded string. If 'ca_certs' is specified, validate the server cert against it. If 'ssl_version' is specified, use it in the connection attempt.RoRnRpN( RXRRRRRRRhRgR(RRoRpthosttportRnRtdercert((s/usr/lib/python2.7/ssl.pytget_server_certificate6s     cCstj|dS(Ns (t_PROTOCOL_NAMESRF(t protocol_code((s/usr/lib/python2.7/ssl.pytget_protocol_nameIscCslt|dr|j}ntj|d||ttd}y|jWntk r]n X|j |S(sA replacement for the old socket.ssl function. Designed for compability with Python 2.5 and earlier. Will disappear in Python 3.0.RQiN( RRQRiRjRRRXR[R\Rk(RvRlRmtssl_sock((s/usr/lib/python2.7/ssl.pytsslwrap_simpleOs    (<RRR/RiRRRRRRRRRR R R R R RRRRRRRRRRRYt ImportErrorRXRRRRR\Rt _getnameinfoR R!R"RR]RZRER#R@RORPR(RhRRRRRRRRR(((s/usr/lib/python2.7/ssl.pyt8sV   @      "   3 (9