ó ÐH/\c @@sÏdZddlmZddlZejZddlZddlZddlm Z ddl m Z m Z ddl m ZmZddl mZddlmZdd lmZd d d d gZeeeƒdedgdfƒZeeeƒeeƒBƒZdekrejdƒnd e fd„ƒYZepGeedƒ reed„d„ƒe_ne dƒZ!e dƒZ"e dƒZ#e$e$e%e&e'e$e(e(e$d„ Z)e'e$d„Z*e$e$d„Z+dS(s< SSL wrapper for socket objects on Python 2.7.8 and below. For the documentation, refer to :mod:`ssl` module manual. This module implements cooperative SSL socket wrappers. .. deprecated:: 1.3 This module is not secure. Support for Python versions with only this level of SSL will be dropped in gevent 1.4. i(tabsolute_importN(tsocket(t _fileobjectttimeout_default(terrort EWOULDBLOCK(ttimeout(tPYPY(t copy_globalst SSLSockett wrap_sockettget_server_certificatetsslwrap_simpletnames_to_ignoreRtdunder_names_to_keept namedtuplec B@s"eZdZddeeedeedd„ Zdd„Z d„Z ed„Z d„Z de d„Zdd „Zd „Zddd „Zddd „Zd „Zd„Zd„Zd„Zd„Zd„Zd„Zeröd„Zd„Znd„Zd„Zd„Zddd„Z RS(s{ gevent `ssl.SSLSocket `_ for Pythons < 2.7.9. c C@sPtj|d|ƒtr&|jƒn|r<| r<|}nytj|ƒWn8tk r‡} | jdtjkr{‚nd|_ ntX| dkr¾t j |j ||||||ƒ|_ n*t j |j ||||||| ƒ|_ |rû|jƒn||_||_||_||_||_| |_||_| |_d|_dS(Nt_socki(Rt__init__Rt_dropt getpeernamet socket_errortargsterrnotENOTCONNtNonet_sslobjt_ssltsslwrapRt do_handshaketkeyfiletcertfilet cert_reqst ssl_versiontca_certstcipherstdo_handshake_on_connecttsuppress_ragged_eofst_makefile_refs( tselftsockRRt server_sideRR R!R#R$R"te((s+lib/python2.7/site-packages/gevent/_ssl2.pyR;s<                icC@sôxítrïy|jj|ƒSWqtk rë}|jdtkrO|jrOdS|jdtkrš|jdkrw‚nt j ƒ|j |j dt ƒqì|jdtkrå|jdkr‚nt j ƒ|j |jdt ƒqì‚qXqWdS(sORead up to LEN bytes and return them. Return zero-length string on EOF.itgt timeout_excN(tTrueRtreadtSSLErrorRt SSL_ERROR_EOFR$tSSL_ERROR_WANT_READRtsyst exc_cleart_waitt _read_eventt_SSLErrorReadTimeouttSSL_ERROR_WANT_WRITEt _write_event(R&tlentex((s+lib/python2.7/site-packages/gevent/_ssl2.pyR-gs"   cC@sÔxÍtrÏy|jj|ƒSWqtk rË}|jdtkrz|jdkrW‚ntjƒ|j |j dt ƒqÌ|jdt krÅ|jdkr¢‚ntjƒ|j |j dt ƒqÌ‚qXqWdS(shWrite DATA to the underlying SSL channel. Returns number of bytes of DATA actually transmitted.igR+N(R,RtwriteR.RR0RR1R2R3R4t_SSLErrorWriteTimeoutR6R7(R&tdataR9((s+lib/python2.7/site-packages/gevent/_ssl2.pyR:~s   cC@s|jj|ƒS(sáReturns a formatted version of the data in the certificate provided by the other end of the SSL channel. Return None if no certificate was provided, {} if a certificate was provided, but not validated.(Rtpeer_certificate(R&t binary_form((s+lib/python2.7/site-packages/gevent/_ssl2.pyt getpeercert’scC@s|js dS|jjƒS(N(RRtcipher(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pyR@™s icC@s&|tkr|j}n|jr |dkrCtd|jƒ‚nxÜtry|jj|ƒ}Wnœtk r}|jdt kr·|jdkršdSt j ƒ|j |j ƒq|jdtkrú|jdkrÝdSt j ƒ|j |jƒq‚qFX|SqFWntj||||ƒSdS(Nis3non-zero flags not allowed in calls to send() on %sg(RRRt ValueErrort __class__R,R:R.RR0R1R2R3R4R6R7Rtsend(R&R<tflagsRtvtx((s+lib/python2.7/site-packages/gevent/_ssl2.pyRCžs0        cC@s[ytj||ƒWn@tk rV}|jdkrDttƒ‚nt|jŒ‚nXdS(Ng(Rtsendallt_socket_timeoutRR.R6R(R&R<RDR9((s+lib/python2.7/site-packages/gevent/_ssl2.pyRG¼s cG@s3|jrtd|jƒ‚ntj||ŒSdS(Ns%sendto not allowed on instances of %s(RRARBRtsendto(R&R((s+lib/python2.7/site-packages/gevent/_ssl2.pyRIÇs cC@sK|jr8|dkr+td|jƒ‚n|j|ƒStj|||ƒS(Nis3non-zero flags not allowed in calls to recv() on %s(RRARBR-Rtrecv(R&tbuflenRD((s+lib/python2.7/site-packages/gevent/_ssl2.pyRJÎs   cC@s|r!|dkr!t|ƒ}n|dkr6d}n|jrÿ|dkratd|jƒ‚nx±trûy-|j|ƒ}t|ƒ}|||*|SWqdtk r÷}|jdt krñ|j dkrÑ‚nt j ƒ|j |jƒqdqø‚qdXqdWntj||||ƒSdS(Niis8non-zero flags not allowed in calls to recv_into() on %sg(RR8RRARBR,R-R.RR0RR1R2R3R4Rt recv_into(R&tbuffertnbytesRDt tmp_bufferRERF((s+lib/python2.7/site-packages/gevent/_ssl2.pyRLØs0        cG@s3|jrtd|jƒ‚ntj||ŒSdS(Ns'recvfrom not allowed on instances of %s(RRARBRtrecvfrom(R&R((s+lib/python2.7/site-packages/gevent/_ssl2.pyRPôs cG@s3|jrtd|jƒ‚ntj||ŒSdS(Ns,recvfrom_into not allowed on instances of %s(RRARBRt recvfrom_into(R&R((s+lib/python2.7/site-packages/gevent/_ssl2.pyRQûs cC@s|jr|jjƒSdS(Ni(Rtpending(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pyRRs  cC@sñxêtrìy|jjƒSWqtk rè}|jdtkrL|jrLdS|jdtkr—|jdkrt‚nt j ƒ|j |j dt ƒqé|jdtkrâ|jdkr¿‚nt j ƒ|j |jdtƒqé‚qXqWdS(NiR*gR+(R,RtshutdownR.RR/R$R0RR1R2R3R4R5R6R7R;(R&R9((s+lib/python2.7/site-packages/gevent/_ssl2.pyt_sslobj_shutdowns"   cC@sD|js"tdt|ƒƒ‚n|jƒ}d|_td|ƒS(NsNo SSL wrapper around R(RRAtstrRTRR(R&ts((s+lib/python2.7/site-packages/gevent/_ssl2.pytunwraps    cC@sd|_tj||ƒdS(N(RRRRS(R&thow((s+lib/python2.7/site-packages/gevent/_ssl2.pyRS"s cC@s;|jdkr(d|_tj|ƒn|jd8_dS(Ni(R%RRRtclose(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pyRY&s cC@s|jd7_dS(Ni(R%(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pyt_reuse/scC@s/|jdkr|jƒn|jd8_dS(Ni(R%RY(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pyR2s cC@sÑxÊtrÌy|jjƒSWqtk rÈ}|jdtkrw|jdkrT‚ntjƒ|j |j dt ƒqÉ|jdt krÂ|jdkrŸ‚ntjƒ|j |j dt ƒqÉ‚qXqWdS(sPerform a TLS/SSL handshake.igR+N(R,RRR.RR0RR1R2R3R4t_SSLErrorHandshakeTimeoutR6R7(R&R9((s+lib/python2.7/site-packages/gevent/_ssl2.pyR8s   c C@sÆ|jrtdƒ‚ntj||ƒ|jdkrptj|jt |j |j |j |j |jƒ|_n<tj|jt |j |j |j |j |j|jƒ|_|jrÂ|jƒndS(sQConnects to remote ADDR, and then wraps the connection in an SSL channel.s/attempt to connect already-connected SSLSocket!N(RRARtconnectR"RRRRtFalseRRRR R!R#R(R&taddr((s+lib/python2.7/site-packages/gevent/_ssl2.pyR\Ks    cC@sé|j}xytr„y|jƒ\}}PWnEtk rp}|jdtks]|jdkrc‚ntjƒnX|j |j ƒq Wt |d|j d|j dtd|jd|jd|jd |jd |jd |jƒ }||fS( s¿Accepts a new connection from a remote client, and returns a tuple containing that new connection wrapped with a server-side SSL channel, and the address of the remote client.igRRR(RR R!R#R$R"(RR,tacceptRRRRR1R2R3R4R RRRR R!R#R$R"(R&R't client_sockettaddressR9tsslobj((s+lib/python2.7/site-packages/gevent/_ssl2.pyR_^s*  "         triÿÿÿÿcC@s.ts|jd7_nt|||dtƒS(sMake and return a file-like object that works with the SSL connection. Just use the code from the socket module.iRY(RR%RR,(R&tmodetbufsize((s+lib/python2.7/site-packages/gevent/_ssl2.pytmakefilezsN(!t__name__t __module__t__doc__RR]t CERT_NONEtPROTOCOL_SSLv23R,RR-R:R?R@RRCRGRIRJRLRPRQRRRTRWRSRYRRZRRR\R_Rf(((s+lib/python2.7/site-packages/gevent/_ssl2.pyR 5s< '                  RcC@s |jƒS(N(t gettimeout(R&((s+lib/python2.7/site-packages/gevent/_ssl2.pytŒscC@s |j|ƒS(N(t settimeout(R&tvalue((s+lib/python2.7/site-packages/gevent/_ssl2.pyRmssThe read operation timed outsThe write operation timed outs!The handshake operation timed outc C@s@t|d|d|d|d|d|d|d|d|d | ƒ S( s)Create a new :class:`SSLSocket` instance.RRR(RR R!R#R$R"(R ( R'RRR(RR R!R#R$R"((s+lib/python2.7/site-packages/gevent/_ssl2.pyR •s   cC@sl|dk rt}nt}ttƒd|d|d|ƒ}|j|ƒ|jtƒ}|jƒt |ƒS(s÷Retrieve the certificate from the server at the specified address, and return it as a PEM-encoded string. If 'ca_certs' is specified, validate the server cert against it. If 'ssl_version' is specified, use it in the connection attempt.R RR!N( Rt CERT_REQUIREDRjR RR\R?R,RYtDER_cert_to_PEM_cert(R^R R!RRVtdercert((s+lib/python2.7/site-packages/gevent/_ssl2.pyR £s    cC@st|||ƒS(sŽA replacement for the old socket.ssl function. Designed for compatibility with Python 2.5 and earlier. Will disappear in Python 3.0.(R (R'RR((s+lib/python2.7/site-packages/gevent/_ssl2.pyR µs(,Rit __future__Rtsslt__ssl__RR1Rtgevent._socket2Rt gevent.socketRRRRRRRHtgevent._compatRt gevent._utilRt__implements__tglobalst __imports__tlisttsett__all__tremoveR thasattrtpropertyR.R5R;R[RR]RjRkR,R R R (((s+lib/python2.7/site-packages/gevent/_ssl2.pyt sH        ÿP