ó ßüÚ\c@`s{ddlmZmZmZddlmZddlZyddlZWnek radZnXddl Z ddl m Z ddl mZmZddlmZddlmZmZmZedƒZed ƒZed ƒZed ƒZd Zd ddddgZd„Zd„Zd„Zd„Zd„Z d„Z!d„Z"d„Z#eƒd„ƒZ$eƒd„ƒZ%dS(i(tprint_functiontdivisiontabsolute_import(tcontextmanagerN(tgen(tconnecttlisten(tSecurity(t new_configtget_certtgen_teststls-ca-cert.pems tls-cert.pems tls-key.pemstls-key-cert.pemsECDHE-RSA-AES128-GCM-SHA256tTLS_AES_128_GCM_SHA256tTLS_AES_256_GCM_SHA384tTLS_CHACHA20_POLY1305_SHA256tTLS_AES_128_CCM_SHA256tTLS_AES_128_CCM_8_SHA256cC`sãtiƒtƒ}WdQX|jdtfks7t‚|jdksLt‚|jdksat‚|jdksvt‚|j dks‹t‚|j dks t‚|j dksµt‚|j dksÊt‚|j dksßt‚dS(N(RRtrequire_encryptiontNonetFalsetAssertionErrort tls_ca_filet tls_ciphersttls_client_keyttls_client_certttls_scheduler_keyttls_scheduler_certttls_worker_keyttls_worker_cert(tsec((s>lib/python2.7/site-packages/distributed/tests/test_security.pyt test_defaults%s cC`s^tƒ}t|dƒst‚tjtƒ |jWdQXtjtƒd|_WdQXdS(NRt(RthasattrRtpytesttraisestAttributeErrort tls_foobar(R((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_attribute_error3s   cC`s"iidd6idd6dd6d6idd6d 6td 6d 6td 6}t|ƒtƒ}WdQX|jtksvt‚|jdks‹t‚|jtks t‚|jdksµt‚|j dksÊt‚|j dksßt‚|j dksôt‚|j dks t‚|jdkst‚dS( Nsca.pemsca-filesskey.pemtkeys scert.pemtcertt schedulers wcert.pemtworkertciphersttlssrequire-encryption(t FORCED_CIPHERtTrueRRRRRRRRRRRRR(tcR((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_from_config<s$   c C`siidd6idd6dd6d6d6}t|ƒ td d d td dƒ}WdQX|jtkslt‚|jdkst‚|jdks–t‚|jdks«t‚|j dksÀt‚|j dksÕt‚|j d ksêt‚|j dksÿt‚|j dkst‚dS( Nsca.pemsca-filesskey.pemR%s scert.pemR&R'R*Rs newcert.pemRR(RRR,RRRRRRRRRRR(R-R((s>lib/python2.7/site-packages/distributed/tests/test_security.pyt test_kwargsSs  c C`sDtiƒ2tddddƒ}t|ƒdks:t‚WdQXdS(NRsca.pemRs scert.pems>Security(tls_ca_file='ca.pem', tls_scheduler_cert='scert.pem')(RRtreprR(R((s>lib/python2.7/site-packages/distributed/tests/test_security.pyt test_reprjs  cC`s8iidd6idd6dd6d6idd6d 6td 6d 6}t|ƒtƒ}WdQX|jdƒ}|idd 6dd6dd6td 6ks—t‚|jd ƒ}|idd 6dd6dd6td 6ksÔt‚|jd ƒ}|idd 6dd6dd6td 6kst‚tjtƒ|jdƒWdQXdS(Nsca.pemsca-filesskey.pemR%s scert.pemR&R's wcert.pemR(R)R*tca_filetclientt supervisor( R+RRtget_tls_config_for_roleRRR R!t ValueError(R-Rtt((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_tls_config_for_roless8 c C`sd„}d„}iitd6itd6td6d6itd6d6d6}t|ƒtƒ}WdQX|jdƒ}|d  s…t‚|d }||ƒ||ƒ|jdƒ}|d }||ƒ||ƒ|jd ƒ}|jd ƒdksút‚t |dd lib/python2.7/site-packages/distributed/tests/test_security.pyt basic_checks˜scS`s4tjdkr0t|jƒƒdks0t‚ndS(Niii(ii(tsyst version_infotlent get_ciphersR(R=((s>lib/python2.7/site-packages/distributed/tests/test_security.pyt many_ciphersœssca-fileR%R&R'R(R*Rt ssl_contextR3R)srequire-encryptioniitprotocolsTLSv1.2isTLSv1.3(ii(R2tkey1tcert1tkeycert1RRtget_connection_argsRtgetRR+R,tget_listen_argsR?R@RBRA( R>RCR-RtdR=tsupported_ciphersttls_12_ciphersttls_13_ciphers((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_connection_args—sF              )) c C`sd„}d„}iitd6itd6td6d6itd6d6d6}t|ƒtƒ}WdQX|jdƒ}|d  s…t‚|d }||ƒ||ƒ|jdƒ}|d }||ƒ||ƒ|jd ƒ}|jd ƒdksút‚t |dd lib/python2.7/site-packages/distributed/tests/test_security.pyR>ÎscS`s4tjdkr0t|jƒƒdks0t‚ndS(Niii(ii(R?R@RARBR(R=((s>lib/python2.7/site-packages/distributed/tests/test_security.pyRCÒssca-fileR%R&R'R(R*RRDR3R)srequire-encryptioniiREsTLSv1.2isTLSv1.3(ii(R2RFRGRHRRRKRRJRR+R,R?R@RBRA( R>RCR-RRLR=RMRNRO((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_listen_argsÍsF              )) c c`stjd„ƒ}iitd6itd6td6d6itd6d6d6}t|ƒtƒ}WdQXt|dd lib/python2.7/site-packages/distributed/tests/test_security.pyt handle_comm s sca-fileR%R&R'R(R*NR)stls://tconnection_argsRRR3tcipher(Rt coroutineR2RFRGRHRRR+RRKRtcontact_addressRItreadRtabortR R!t TypeErrort extra_infotTLS_13_CIPHERS( RYR-Rtforced_cipher_sectlistenerRWtmsgR[t_((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_tls_listen_connects:      cc`stjd„ƒ}iitd6itd6td6d6itd6d6d6}t|ƒtƒ}WdQXt|d lib/python2.7/site-packages/distributed/tests/test_security.pyRY?ssca-fileR%R&R'R(R*Nsrequire-encryptions inproc://stls://RZcs`s<tjtƒ }dVWdQXdt|jƒks8t‚dS(Nsencryption required(R R!t RuntimeErrortstrtvalueR(texcinfo((s>lib/python2.7/site-packages/distributed/tests/test_security.pytcheck_encryption_errorcs stcp://(RR\R2RFRGRHRRR,RRKRR]RIR_RR R!Rh(RYR-Rtsec2t listen_addrRdRWRl((s>lib/python2.7/site-packages/distributed/tests/test_security.pyttest_require_encryption9sX        (&t __future__RRRt contextlibRR?R:t ImportErrorRR ttornadoRtdistributed.commRRtdistributed.securityRtdistributed.utils_testRR R R2RGRFRHR+RbRR$R.R/R1R8RPRQRgRo(((s>lib/python2.7/site-packages/distributed/tests/test_security.pyts>             $ 6 66