%PDF- %PDF- Mini Shell
Mini Shell

Direktori : /usr/lib/python3/dist-packages/urllib3/contrib/__pycache__/
Current File : //usr/lib/python3/dist-packages/urllib3/contrib/__pycache__/pyopenssl.cpython-312.pyc
�

�g�J�
��UdZddlmZddlZddlmZ	ddlmZddlZddlZddl
Z
ddlmZdd	lmZdd
lmZddlmZe
j*rdd
lmZddgZej2j4ej6j8ej2j:ej6j8ej<ej6j>iZ e!ed�r6e!ej6d�r#ej6jDe ejF<e!ed�r6e!ej6d�r#ej6jHe ejJ<ejLej6jNejPej6jRejTej6jRej6jVziZ,e,j[�D��cic]\}}||��
c}}Z.e/ej6dd�e/ej6dd�zZ0de1d<e/ej6dd�Z2de1d<e/ej6dd�Z3de1d<e/ej6dd�Z4de1d<e/ej6dd�Z5de1d<ejljne0ejljpe0ejljre0e2zejljte0e2ze3zejljve0e2ze3ze4zejljxe0e2ze3ze4ziZ=d e1d!<ejljne0e2ze3ze4ze5zejljpe0e3ze4ze5zejljre0e4ze5zejljte0e5zejljve0ejljxe0iZ>d e1d"<d#Z?ej2j�ZAej�eC�ZDd.d$�ZEd.d%�ZFd.d&�ZGd/d'�ZHd0d(�ZIGd)�d*�ZJej�eJ_KGd+�d,�ZL												d1d-�ZMy#e	$rGd�de
�ZY��3wxYwcc}}w)2a
Module for using pyOpenSSL as a TLS backend. This module was relevant before
the standard library ``ssl`` module supported SNI, but now that we've dropped
support for Python 2.7 all relevant Python versions support SNI so
**this module is no longer recommended**.

This needs the following packages installed:

* `pyOpenSSL`_ (tested with 16.0.0)
* `cryptography`_ (minimum 1.3.4, from pyopenssl)
* `idna`_ (minimum 2.0, from cryptography)

However, pyOpenSSL depends on cryptography, which depends on idna, so while we
use all three directly here we end up having relatively few packages required.

You can install them with the following command:

.. code-block:: bash

    $ python -m pip install pyopenssl cryptography idna

To activate certificate checking, call
:func:`~urllib3.contrib.pyopenssl.inject_into_urllib3` from your Python code
before you begin making HTTP requests. This can be done in a ``sitecustomize``
module, or at any other time before your application begins using ``urllib3``,
like this:

.. code-block:: python

    try:
        import urllib3.contrib.pyopenssl
        urllib3.contrib.pyopenssl.inject_into_urllib3()
    except ImportError:
        pass

.. _pyopenssl: https://www.pyopenssl.org
.. _cryptography: https://cryptography.io
.. _idna: https://github.com/kjd/idna
�)�annotationsN)�x509)�UnsupportedExtensionc��eZdZy)rN)�__name__�
__module__�__qualname__���;/usr/lib/python3/dist-packages/urllib3/contrib/pyopenssl.pyrr2s��rr)�BytesIO)�socket)�timeout�)�util��X509�inject_into_urllib3�extract_from_urllib3�PROTOCOL_TLSv1_1�TLSv1_1_METHOD�PROTOCOL_TLSv1_2�TLSv1_2_METHOD�OP_NO_SSLv2�OP_NO_SSLv3�int�_OP_NO_SSLv2_OR_SSLv3�OP_NO_TLSv1�_OP_NO_TLSv1�
OP_NO_TLSv1_1�_OP_NO_TLSv1_1�
OP_NO_TLSv1_2�_OP_NO_TLSv1_2�
OP_NO_TLSv1_3�_OP_NO_TLSv1_3zdict[int, int]�_openssl_to_ssl_minimum_version�_openssl_to_ssl_maximum_versioni@c��t�tt_ttj_dt_dtj_y)z7Monkey-patch urllib3 with PyOpenSSL-backed SSL-support.TN)�_validate_dependencies_met�PyOpenSSLContextr�
SSLContext�ssl_�IS_PYOPENSSLr
rrrr�s1��� �&�D�O�+�D�I�I���D��!�D�I�I�rc��tt_ttj_dt_dtj_y)z4Undo monkey-patching by :func:`inject_into_urllib3`.FN)�orig_util_SSLContextrr+r,r-r
rrrr�s+��+�D�O�/�D�I�I���D��"�D�I�I�rc��ddlm}t|dd��td��ddlm}|�}t|dd��td��y)	z{
    Verifies that PyOpenSSL's package-level dependencies have been met.
    Throws `ImportError` if they are not met.
    r)�
Extensions�get_extension_for_classNzX'cryptography' module missing required functionality.  Try upgrading to v1.3.4 or newer.r�_x509zS'pyOpenSSL' module missing required functionality. Try upgrading to v0.14 or newer.)�cryptography.x509.extensionsr1�getattr�ImportError�OpenSSL.cryptor)r1rrs   rr)r)�s[��8��z�4�d�;�C��
0�
�	
�$��6�D��t�W�d�#�+��
/�
�	
�,rc�N�dd�}d|vr|S||�}|�y|jd�S)a%
    Converts a dNSName SubjectAlternativeName field to the form used by the
    standard library on the given Python version.

    Cryptography produces a dNSName as a unicode string that was idna-decoded
    from ASCII bytes. We need to idna-encode that string to get it back, and
    then on Python 3 we also need to convert to unicode via UTF-8 (the stdlib
    uses PyUnicode_FromStringAndSize on it, which decodes via UTF-8).

    If the name cannot be idna-encoded then we return None signalling that
    the name given should be skipped.
    c��ddl}	dD]F}|j|�s�|t|�d}|jd�|j|�zcS|j|�S#|jj
$rYywxYw)z�
        Borrowed wholesale from the Python Cryptography Project. It turns out
        that we can't just safely call `idna.encode`: it can explode for
        wildcard names. This avoids that problem.
        rN)z*.�.�ascii)�idna�
startswith�len�encode�core�	IDNAError)�namer<�prefixs   r�idna_encodez'_dnsname_to_stdlib.<locals>.idna_encode�s���	�	�%�
F���?�?�6�*���F��
�.�D�!�=�=��1�D�K�K��4E�E�E�
F��;�;�t�$�$���y�y�"�"�	��	�s�A"�2A"�A"�"A>�=A>�:N�utf-8)rB�str�return�bytes | None)�decode)rBrD�encoded_names   r�_dnsname_to_stdlibrL�s9���$�d�{����t�$�L�������w�'�'rc�N�|j�}	|jjtj�j
}tt|jtj ��D�cgc]}|�d|f��
}}|j#d�|jtj$�D��|S#tj$rgcYStjttjtf$r"}tjd|�gcYd}~Sd}~wwxYwcc}w)zU
    Given an PyOpenSSL certificate, provides all the subject alternative names.
    z�A problem was encountered with the certificate that prevented urllib3 from finding the SubjectAlternativeName field. This can affect certificate validation. The error was %sN�DNSc3�6K�|]}dt|�f���y�w)z
IP AddressN)rG)�.0rBs  r�	<genexpr>z$get_subj_alt_name.<locals>.<genexpr>s�����&*��s�4�y�!��s�)�to_cryptography�
extensionsr2r�SubjectAlternativeName�value�ExtensionNotFound�DuplicateExtensionr�UnsupportedGeneralNameType�UnicodeError�log�warning�maprL�get_values_for_type�DNSName�extend�	IPAddress)�	peer_cert�cert�ext�erB�namess      r�get_subj_alt_namerf�s���$�$�&�D���o�o�5�5�d�6Q�6Q�R�X�X��:�*�C�,C�,C�D�L�L�,Q�R�
����
��
�
�E�
�

�L�L��.1�.E�.E�d�n�n�.U����L��G�!�!���	������'�'��	��	���
>�
�		
��	����.
s)�3B:�4
D"�:D�,D�=D�D�Dc��eZdZdZ	d							dd�Zdd�Zdd�Zdd�Zdd�Zdd�Z	dd�Z
dd	�Zdd
�Zdd�Z
dd�Z	d			dd
�Zdd�Zy)�
WrappedSocketz@API-compatibility wrapper for Python OpenSSL's Connection-class.c�J�||_||_||_d|_d|_y�NrF)�
connectionr�suppress_ragged_eofs�_io_refs�_closed)�selfrkrrls    r�__init__zWrappedSocket.__init__s(��%������$8��!���
���rc�6�|jj�S�N)r�fileno�ros rrszWrappedSocket.fileno!s���{�{�!�!�#�#rc��|jdkDr|xjdzc_|jr|j�yy)Nr�)rmrn�closerts r�_decref_socketioszWrappedSocket._decref_socketios%s1���=�=�1���M�M�Q��M��<�<��J�J�L�rc� �	|jj|i|��}|S#tjj$rH}|j
r|jdk(rYd}~yt|jdt|��|�d}~wtjj$r9|jj�tjjk(rYy�tjj$r`}tj|j|jj!��st#d�|�|j|i|��cYd}~Sd}~wtjj$$r}t'j(d|���|�d}~wwxYw)N����zUnexpected EOFrr�The read operation timed out�read error: )rk�recv�OpenSSL�SSL�SysCallErrorrl�args�OSErrorrG�ZeroReturnError�get_shutdown�RECEIVED_SHUTDOWN�
WantReadErrorr�
wait_for_readr�
gettimeoutr�Error�ssl�SSLError)ror��kwargs�datards     rr~zWrappedSocket.recv+s4��	�'�4�?�?�'�'��8��8�D�*�K��)�{�{�'�'�	8��(�(�Q�V�V�7M�-M���a�f�f�Q�i��Q��0�a�7���{�{�*�*�	����+�+�-����1N�1N�N����{�{�(�(�	2��%�%�d�k�k�4�;�;�3I�3I�3K�L��<�=�1�D� �t�y�y�$�1�&�1�1���{�{� � �	<��,�,��a�U�3�4�!�;��	<�s@� �F
�B�#B�AF
�F
�4AE�	F
� F
�/F�F
c��	|jj|i|��S#tjj$rH}|j
r|jdk(rYd}~yt|jdt|��|�d}~wtjj$r9|jj�tjjk(rYy�tjj$r`}tj|j|jj!��st#d�|�|j|i|��cYd}~Sd}~wtjj$$r}t'j(d|���|�d}~wwxYw)Nrzrr|r})rk�	recv_intorr�r�rlr�r�rGr�r�r�r�rr�rr�rr�r�r�)ror�r�rds    rr�zWrappedSocket.recv_intoDs,��	<�,�4�?�?�,�,�d�=�f�=�=���{�{�'�'�	8��(�(�Q�V�V�7M�-M���a�f�f�Q�i��Q��0�a�7���{�{�*�*�	����+�+�-����1N�1N�N����{�{�(�(�	7��%�%�d�k�k�4�;�;�3I�3I�3K�L��<�=�1�D�%�t�~�~�t�6�v�6�6���{�{� � �	<��,�,��a�U�3�4�!�;��	<�s@��F�A>�#A>�>AF�F�2AE
�F�
 F�-F�Fc�8�|jj|�Srr)r�
settimeout)rors  rr�zWrappedSocket.settimeout[s���{�{�%�%�g�.�.rc��		|jj|�S#tjj$rM}tj|j|jj��st�|�Yd}~��d}~wtjj$r(}t|jdt|��|�d}~wwxYw�Nr)rk�sendrr��WantWriteErrorr�wait_for_writerr�rr�r�r�rG)ror�rds   r�_send_until_donezWrappedSocket._send_until_done^s����
8����+�+�D�1�1���;�;�-�-�
��*�*�4�;�;����8N�8N�8P�Q�!�)��*����;�;�+�+�
8��a�f�f�Q�i��Q��0�a�7��
8�s!��C�AB� C�##C�Cc��d}|t|�kr0|j|||tz�}||z
}|t|�kr�/yyr�)r>r��SSL_WRITE_BLOCKSIZE)ror��
total_sent�sents    r�sendallzWrappedSocket.sendallisM���
��3�t�9�$��(�(��Z�*�/B�"B�C��D�
�$��J�	�3�t�9�$rc�8�|jj�yrr)rk�shutdownrts rr�zWrappedSocket.shutdownqs����� � �"rc�R�d|_|jdkr|j�yy)NTr)rnrm�_real_closerts rrwzWrappedSocket.closeus&������=�=�A������rc�~�	|jj�S#tjj$rYywxYwrr)rkrwrr�r�rts rr�zWrappedSocket._real_closezs6��	��?�?�(�(�*�*���{�{� � �	��	�s��<�<c��|jj�}|s|S|r8tjj	tjj
|�Sd|j�jffft|�d�S)N�
commonName)�subject�subjectAltName)	rk�get_peer_certificater�crypto�dump_certificate�
FILETYPE_ASN1�get_subject�CNrf)ro�binary_formrs   r�getpeercertzWrappedSocket.getpeercert�sw�����3�3�5����K���>�>�2�2�7�>�>�3O�3O�QU�V�V�'�(8��(8�(8�(:�(=�(=�>�@�B�/��5�
�	
rc�6�|jj�Srr)rk�get_protocol_version_namerts r�versionzWrappedSocket.version�s�����8�8�:�:rN)T)rk�OpenSSL.SSL.Connectionr�
socket_clsrl�boolrH�None�rHr�rHr�)r��
typing.Anyr�r�rH�bytes)r�r�r�r�rHr)r�floatrHr�)r�r�rHr)r�r�rHr�)F)r�r�rHz"dict[str, list[typing.Any]] | None)rHrG)rrr	�__doc__rprsrxr~r�r�r�r�r�rwr�r�r�r
rrrhrhs���J�&*�	
�*�
��
�#�	
�

�
�$���2<�./�	8��#��
�#(�
��
�	+�
� ;rrhc�z�eZdZdZdd�Zedd��Zejdd��Zedd��Zejdd��Zdd�Z	dd�Z
			d							dd
�Z		d							dd�Zdd�Z
				d											dd
�Zdd�Zedd��Zejd d��Zedd��Zejd!d��Zy	)"r*z�
    I am a wrapper class for the PyOpenSSL ``Context`` object. I am responsible
    for translating the interface of the standard library ``SSLContext`` object
    to calls into PyOpenSSL.
    c��t||_tjj	|j�|_d|_d|_tjj|_tjj|_
yrj)�_openssl_versions�protocolrr��Context�_ctx�_options�check_hostnamer��
TLSVersion�MINIMUM_SUPPORTED�_minimum_version�MAXIMUM_SUPPORTED�_maximum_version)ror�s  rrpzPyOpenSSLContext.__init__�s[��)�(�3��
��K�K�'�'��
�
�6��	���
�#���%(�^�^�%E�%E���%(�^�^�%E�%E��rc��|jSrr)r�rts r�optionszPyOpenSSLContext.options�s���}�}�rc�2�||_|j�yrr)r��_set_ctx_options�rorUs  rr�zPyOpenSSLContext.options�s����
����rc�D�t|jj�Srr)�_openssl_to_stdlib_verifyr��get_verify_moderts r�verify_modezPyOpenSSLContext.verify_mode�s��(����)B�)B�)D�E�Erc�R�|jjt|t�yrr)r��
set_verify�_stdlib_to_openssl_verify�_verify_callbackr�s  rr�zPyOpenSSLContext.verify_mode�s���	�	���6�u�=�?O�Prc�8�|jj�yrr)r��set_default_verify_pathsrts rr�z)PyOpenSSLContext.set_default_verify_paths�s���	�	�*�*�,rc�|�t|t�r|jd�}|jj	|�y)NrF)�
isinstancerGr?r��set_cipher_list)ro�cipherss  r�set_cipherszPyOpenSSLContext.set_ciphers�s,���g�s�#��n�n�W�-�G��	�	�!�!�'�*rNc�T�|�|jd�}|�|jd�}	|jj||�|�%|jjt|��yy#tj
j$r}tjd|���|�d}~wwxYw)NrFz%unable to load trusted certificates: )	r?r��load_verify_locationsr
rr�r�r�r�)ro�cafile�capath�cadatards     rr�z&PyOpenSSLContext.load_verify_locations�s������]�]�7�+�F����]�]�7�+�F�	U��I�I�+�+�F�F�;��!��	�	�/�/����@�"���{�{� � �	U��,�,�!F�q�e�L�M�ST�T��	U�s�AA,�,B'�	B"�"B'c�z��	|jj|���?t�t�s�j	d��|jj�fd��|jj
|xs|�y#tjj$r}tjd|���|�d}~wwxYw)NrFc����Srrr
)�_�passwords �r�<lambda>z2PyOpenSSLContext.load_cert_chain.<locals>.<lambda>�s���8�rz"Unable to load certificate chain: )r��use_certificate_chain_filer�r�r?�
set_passwd_cb�use_privatekey_filerr�r�r�r�)ro�certfile�keyfiler�rds   ` r�load_cert_chainz PyOpenSSLContext.load_cert_chain�s����	R��I�I�0�0��:��#�!�(�E�2�'���w�7�H��	�	�'�'�(;�<��I�I�)�)�'�*=�X�>���{�{� � �	R��,�,�!C�A�5�I�J�PQ�Q��	R�s�A;A?�?B:�B5�5B:c��|D�cgc]"}tjj|d���$}}|jj|�Scc}w)Nr;)r�to_bytesr��set_alpn_protos)ro�	protocols�ps   r�set_alpn_protocolsz#PyOpenSSLContext.set_alpn_protocols�sA��=F�G��T�Y�Y�'�'��7�3�G�	�G��y�y�(�(��3�3��Hs�'A	c��tjj|j|�}|rQtj
j
|�s2t|t�r|jd�}|j|�|j�		|j�	t)||�S#tjj$r:}t	j||j��st!d�|�Yd}~�qd}~wtjj"$r}t%j&d|���|�d}~wwxYw)NrFzselect timed outzbad handshake: )rr��
Connectionr�rr,�is_ipaddressr�rGr?�set_tlsext_host_name�set_connect_state�do_handshaker�r�r�rr�r�r�rh)ro�sock�server_side�do_handshake_on_connectrl�server_hostname�cnxrds        r�wrap_socketzPyOpenSSLContext.wrap_socket�s���k�k�$�$�T�Y�Y��5���4�9�9�#9�#9�/�#J��/�3�/�"1�"8�"8��"A���$�$�_�5������
C�� � �"�
��S�$�'�'���;�;�,�,�
��)�)�$����0A�B�!�"4�5�1�<����;�;�$�$�
C��l�l�_�Q�E�#:�;��B��
C�s$�B-�-D=�
0C?�? D=�D8�8D=c��|jj|jt|jzt
|jz�yrr)r��set_optionsr�r&r�r'r�rts rr�z!PyOpenSSLContext._set_ctx_optionssC���	�	����M�M�-�d�.C�.C�D�
E�-�d�.C�.C�D�
E�	
rc��|jSrr)r�rts r�minimum_versionz PyOpenSSLContext.minimum_version
����$�$�$rc�2�||_|j�yrr)r�r�)rors  rrz PyOpenSSLContext.minimum_version��� /������rc��|jSrr)r�rts r�maximum_versionz PyOpenSSLContext.maximum_versionrrc�2�||_|j�yrr)r�r�)rors  rrz PyOpenSSLContext.maximum_versionrr)r�rrHr�r�)rUrrHr�)rUzssl.VerifyModerHr�r�)r�zbytes | strrHr�)NNN)r��
str | Noner�r	r�rIrHr�)NN)r�rGr�r	r�r	rHr�)r�zlist[bytes | str]rHr�)FTTN)r�r�r�r�r�r�rlr�r�zbytes | str | NonerHrh)rrrHr�)rrrHr�)rrr	r�rp�propertyr��setterr�r�r�r�r�r�r�r�rrr
rrr*r*�s����F�����
�^�^� �� ��F��F����Q��Q�-�+�"�!�#�	U��U��U��	U�

�U�(#�#�	R��R��R��	R�

�R� 4�"�(,�%)�.2�
(��(��(�"&�	(�
#�(�,�
(�
�(�>
��%��%���� �� ��%��%���� �� rr*c��|dk(Sr�r
)r�r�err_no�	err_depth�return_codes     rr�r�s���Q�;�rr�)rBrGrHr	)rarrHzlist[tuple[str, str]])r�r�rrr
rrrrrrHr�)Nr��
__future__r�OpenSSL.SSLr�cryptographyr�cryptography.x509rr6�	Exception�loggingr��typing�ior
rr�r�r�
TYPE_CHECKINGr7r�__all__r,�PROTOCOL_TLSr��
SSLv23_METHOD�PROTOCOL_TLS_CLIENT�PROTOCOL_TLSv1�TLSv1_METHODr��hasattrrrrr�	CERT_NONE�VERIFY_NONE�
CERT_OPTIONAL�VERIFY_PEER�
CERT_REQUIRED�VERIFY_FAIL_IF_NO_PEER_CERTr��itemsr�r5r�__annotations__rr!r#r%r�r��TLSv1�TLSv1_1�TLSv1_2�TLSv1_3r�r&r'r�r+r/�	getLoggerrrZrrr)rLrfrh�makefiler*r�)�k�vs00r�<module>r1s>��&�P#���
�6��
�
��'���	���#�!�"8�
9��	�I�I���G�K�K�5�5��I�I�!�!�7�;�;�#<�#<�������0�0����3�"�#�����=M�(N�.5�k�k�.H�.H��c�*�*�+�
�3�"�#�����=M�(N�.5�k�k�.H�.H��c�*�*�+��M�M�7�;�;�*�*����w�{�{�.�.����w�{�{�.�.�
�k�k�-�-�.���/H�.M�.M�.O�P�d�a��Q��T�P��%�W�[�[�-��C�g��K�K���G���s���G�K�K���:��c�:��g�k�k�?�A�>���>��g�k�k�?�A�>���>��g�k�k�?�A�>���>��N�N�$�$�&;��N�N���/��N�N���1�L�@��N�N���1�L�@�>�Q��N�N�����,�~�=��N��N�N�$�$���,�~�=��N�3�����N�N�$�$��
�	�
�	��	��		��N�N�����.��?�.�P��N�N���1�N�B�^�S��N�N���1�N�B��N�N���1��N�N�$�$�&;�3����$���y�y�+�+���g����!��"�#�
�4&(�R-�`;�;�D$�,�,�
��C �C �L�	��
��
���	�
��
�
��[�
�
�y�
�
��RQs�P;�
Q�;Q�Q
Zerion Mini Shell 1.0