o zqf&@s<UddlZddlZddlZddlZddlZddlZddlmZmZm Z m Z e dkr4ddl m Z mZne dkrCddlm Z mZnddlm Z mZejrTddlmZeeBejeBejeBZejed<eeBejgeeBfBZejed <dd d Zdd dZGddde Zdejej BdedBd dfddZ!dS)N)_original_SSLContext_original_super_SSLContext#_truststore_SSLContext_dunder_class"_truststore_SSLContext_super_classWindows)_configure_context_verify_peercerts_implDarwin)Buffer_StrOrBytesPath _PasswordTypereturncCsRttdtzddlmmmm}t|dtWdSty(YdSw)zqInjects the :class:`truststore.SSLContext` into the ``ssl`` module by replacing :class:`ssl.SSLContext`. SSLContextrN) setattrsslrpip._vendor.urllib3.util.ssl__vendorurllib3utilssl_ ImportError urllib3_sslrZ/root/parts/websockify/install/lib/python3.10/site-packages/pip/_vendor/truststore/_api.pyinject_into_ssls  rcCsLttdtzddlmmmm}t|_WdSt y%YdSw)z@Restores the :class:`ssl.SSLContext` class to its original staterrN) rrrrrrrrrrrrrrextract_from_ssl.s   rc@seZdZdZedefddZd[deddfddZ  d\d e j d e d e de de dBde j dBde jfddZ  d]de jde jd e de dBde j dBde jf ddZ   d^de eBeje BejeBdBde eBeje BejeBdBdeje ddfddfddZ  d_dededBdedBddfd d!Ze jjfd"e jddfd#d$Zd%eje ddfd&d'Z d(eje ddfd)d*Z!d+e ddfd,d-Z"dej#fd.d/Z$de%e effd0d1Z&de%e effd2d3Z'ej( 4d`d5ej)d de*ej#fd6d7Z+ej(d`d5ej)d de*efd8d7Z+ej(d`d5e dej#fd9d7Z+dad5e de*ej#e*eBfd:d7Z+ede fd;d<Z,e,j-d=e ddfd>d<Z,ede fd?d@Z.e.j-d=e ddfdAd@Z.ede fdBdCZ/e/j-d=e ddfdDdCZ/ede j0fdEdFZ1e1j-d=e j0ddfdGdFZ1ede j0fdHdIZ2e2j-d=e j0ddfdJdIZ2ede j3fdKdLZ4e4j-d=e j3ddfdMdLZ4ede fdNdOZ5e5j-d=e ddfdPdOZ5ede j6fdQdRZ7edefdSdTZ8ede j9fdUdVZ:e:j-d=e j9ddfdWdVZ:ede j;fdXdYZ.TruststoreSSLObjectrNcst}t||jd|S)Nserver_hostname)super do_handshake_verify_peercertsr$)r retr!rrr&Ks z=SSLContext.__init__..TruststoreSSLObject.do_handshakerN)__name__ __module__ __qualname__r& __classcell__rrr)rTruststoreSSLObjectFsr/)r_ctxr SSLObjectsslobject_class)r r"r/rrr__init__Cs  zSSLContext.__init__FTsock server_sidedo_handshake_on_connectsuppress_ragged_eofsr$sessionc Csnt|j|jj||||||d}Wdn1swYz t||dW|Sty6|w)N)r5r$r6r7r8r#)rr0 wrap_socketr' Exceptionclose)r r4r5r6r7r$r8ssl_sockrrrr9Rs"   zSSLContext.wrap_socketincomingoutgoingcCsFt|j|jj|||||d}Wd|S1swY|S)N)r$r5r8)rr0wrap_bio)r r=r>r5r$r8ssl_objrrrr?ns  zSSLContext.wrap_biocafilecapathcadatar cC|jj|||dS)N)rArBrC)r0load_verify_locations)r rArBrCrrrrEz SSLContext.load_verify_locationscertfilekeyfilepasswordcCrD)N)rGrHrI)r0load_cert_chain)r rGrHrIrrrrJrFzSSLContext.load_cert_chainpurposecC |j|Sr)r0load_default_certs)r rKrrrrMs zSSLContext.load_default_certsalpn_protocolscCrLr)r0set_alpn_protocols)r rNrrrrO zSSLContext.set_alpn_protocols npn_protocolscCrLr)r0set_npn_protocols)r rQrrrrRrPzSSLContext.set_npn_protocols_SSLContext__cipherlistcCrLr)r0 set_ciphers)r rSrrrrTrPzSSLContext.set_cipherscC |jSr)r0 get_ciphersrrrrrV zSSLContext.get_cipherscCrUr)r0 session_statsrrrrrXrWzSSLContext.session_statscCtrNotImplementedErrorrrrrcert_store_statszSSLContext.cert_store_stats. binary_formcCdSrrr r^rrr get_ca_certsszSSLContext.get_ca_certscCr_rrr`rrrracCr_rrr`rrrrarbcCrYrrZr`rrrrar]cC|jjSrr0check_hostnamerrrrrezSSLContext.check_hostnamevaluecC ||j_dSrrdr rgrrrre cCrcrr0hostname_checks_common_namerrrrrlrfz&SSLContext.hostname_checks_common_namecCrhrrkrirrrrlrjcCrcrr0keylog_filenamerrrrrnrfzSSLContext.keylog_filenamecCrhrrmrirrrrnrjcCrcr)r0maximum_versionrrrrrorfzSSLContext.maximum_versioncCtj|j|dSr)rro__set__r0rirrrrocCrcr)r0minimum_versionrrrrrsrfzSSLContext.minimum_versioncCrpr)rrsrqr0rirrrrsrrcCrcr)r0optionsrrrrrtrfzSSLContext.optionscCrpr)rrtrqr0rirrrrtrrcCrcrr0post_handshake_authrrrrrvrfzSSLContext.post_handshake_authcCrhrrurirrrrvrjcCrcr)r0r"rrrrr"rfzSSLContext.protocolcCrcr)r0security_levelrrrrrwrfzSSLContext.security_levelcCrcr)r0 verify_flagsrrrrrxrfzSSLContext.verify_flagscCrpr)rrxrqr0rirrrrxrrcCrcr)r0 verify_moderrrrry rfzSSLContext.verify_modecCrpr)rryrqr0rirrrryrrr)FTTNN)FNN)NNN)NN).)F)=r+r,r-__doc__propertytyper!intr3socketboolstrr SSLSession SSLSocketr9 MemoryBIOr1r?bytesosPathLiketypingUnionrEr r rJPurpose SERVER_AUTHrMIterablerOrRrTAnyrVdictrXr\overloadLiterallistraresetterrlrn TLSVersionrorsOptionsrtrv _SSLMethodr"rw VerifyFlagsrx VerifyModeryrrrrr9s          "rsock_or_sslobjr$cCsd|}zt|ds|j}t|drWn tyYnw|p d}dd|D}t|j||ddS)z{ Verifies the peer certificates from an SSLSocket or SSLObject against the certificates in the OS trust store. get_unverified_chainrcSsg|]}|tjqSr) public_bytes_ssl ENCODING_DER).0certrrr +sz%_verify_peercerts..r#N)hasattr_sslobjAttributeErrorrr context)rr$sslobjunverified_chain cert_bytesrrrr's     r'r*)"rplatformr~rrr_ssl_constantsrrrrsystem_windowsrr _macos_openssl TYPE_CHECKINGpip._vendor.typing_extensionsr rrrr TypeAlias__annotations__Callabler rrrrr1r'rrrrs6    &$   _