+hC/JddlmZddlZddlZddlZddlmZddlmZddl m Z m Z m Z m Z mZddlmZmZmZmZddlmZmZdd lmZmZmZmZed Ze e eefd fZe ed fZGd d eZ edGddeZ!edGddee!Z"y)) annotationsN) dataclass)wraps)AnyCallableMappingTupleTypeVar)BrokenResourceError EndOfStreamaclose_forcefullyget_cancelled_exc_class)TypedAttributeSettyped_attribute) AnyByteStream ByteStreamListener TaskGroupT_Retval.ceZdZUdZeZded<eZded<eZded<eZ ded <eZ d ed <eZ d ed <eZ ded<eZ ded<eZd ed<eZded<y) TLSAttributez5Contains Transport Layer Security related attributes. str | None alpn_protocolbyteschannel_binding_tls_uniqueztuple[str, str, int]cipherz*dict[str, str | _PCTRTTT | _PCTRTT] | Nonepeer_certificatez bytes | Nonepeer_certificate_binarybool server_sidez!list[tuple[str, str, int]] | Noneshared_ciphers ssl.SSLObject ssl_objectstandard_compatiblestr tls_versionN)__name__ __module__ __qualname____doc__rr__annotations__rrrrr!r"r$r%r'D/var/www/html/venv/lib/python3.12/site-packages/anyio/streams/tls.pyrrs?!0 1M:1(7(99#2#4F 4DSCT@T,;,=\=')K)9H8IN5I / 1J 1!0 11&(K(r.rF)eqceZdZUdZded<ded<ded<ded <ded <ed d d d d  ddZ ddZddZddZ dddZ ddZ ddZ e ddZy ) TLSStreama A stream wrapper that encrypts all sent data and decrypts received data. This class has no public initializer; use :meth:`wrap` instead. All extra attributes from :class:`~TLSAttribute` are supported. :var AnyByteStream transport_stream: the wrapped stream rtransport_streamr r%r# _ssl_objectz ssl.MemoryBIO _read_bio _write_bioNT)r!hostname ssl_contextr%cK|| }|s|rtjjntjj}tj|}t tdr$|xj tjzc_tj}tj}|j||||} |||| ||} | j| jd{| S7w)a Wrap an existing stream with Transport Layer Security. This performs a TLS handshake with the peer. :param transport_stream: a bytes-transporting stream to wrap :param server_side: ``True`` if this is the server side of the connection, ``False`` if this is the client side (if omitted, will be set to ``False`` if ``hostname`` has been provided, ``False`` otherwise). Used only to create a default context when an explicit context has not been provided. :param hostname: host name of the peer (if host name checking is desired) :param ssl_context: the SSLContext object to use (if not provided, a secure default will be created) :param standard_compatible: if ``False``, skip the closing handshake when closing the connection, and don't raise an exception if the peer does the same :raises ~ssl.SSLError: if the TLS handshake fails NOP_IGNORE_UNEXPECTED_EOF)r!server_hostname)r3r%r4r5r6) sslPurpose CLIENT_AUTH SERVER_AUTHcreate_default_contexthasattroptionsr: MemoryBIOwrap_bio_call_sslobject_method do_handshake) clsr3r!r7r8r%purposebio_inbio_outr$wrappers r/wrapzTLSStream.wrapFs8  &,K+6 ''CKK!>!@@@DNN((.#/NN,,.7NN,,.OO--/-367 (( I++001E1E1GHHH&& 3((*))+)s2<< ((*))+sCOO45E//1s:)t3 1sJ,AA J,AJ,J'4A DC"D#C&$D)J'#E2(J'*E22;E--E22J'5J,8AJ'GJ'J,J';HJ'+A7J""J''J,cK|j|jjd{|jj |j j |j |jjfS7^w)z Does the TLS closing handshake. :return: a tuple of (wrapped byte stream, bytes left in the read buffer) N)rEr4unwrapr5rUr6r3rQr]s r/rdzTLSStream.unwrapsl))$*:*:*A*ABBB   " !!#$$dnn&9&9&;;; Cs)B B AB cK|jr |jd{|jj d{y7'#t$r t|jd{7wxYw73wN)r%rd BaseExceptionrr3acloseres r/rizTLSStream.aclosesm  # # kkm## ##**,,, $  '(=(=>>>  -sC A;A A A A;A9A; A !A6.A1/A66A;c~K|j|jj|d{}|st|S7wrg)rEr4rQr )r] max_bytesras r/rSzTLSStream.receives;001A1A1F1F RR  Ss *=;=clK|j|jj|d{y7wrg)rEr4rT)r]items r/rPzTLSStream.sends())$*:*:*@*@$GGGs *424c(K|jtj}tjd|}|rMt |j dt |j dxsd}}||fdkrtd|tdw)NzTLSv(\d+)(?:\.(\d+))?r r)roz;send_eof() requires at least TLSv1.3; current session uses z7send_eof() has not yet been implemented for TLS streams)extrarr'rematchintgroupNotImplementedError)r]r'rsmajorminors r/send_eofzTLSStream.send_eofsjj!9!9: 1;? u{{1~.EKKN4Ga0H5Eu~&)$$/=2 " E  sBBc<ijjtjjj tj jjtjjjtjfdtjfdtjfdtjfdtjfdtjfdtjjj i S)Nc:jjdS)NFr4 getpeercertresr/z,TLSStream.extra_attributes..s43C3C3O3OPU3Vr.c:jjdS)NTr|resr/r~z,TLSStream.extra_attributes..s$:J:J:V:V;r.c0jjSrg)r4r!resr/r~z,TLSStream.extra_attributes..sd.>.>.J.Jr.chjjrjjSdSrg)r4r!r"resr/r~z,TLSStream.extra_attributes..s0++261A1A1P1P1Rr.cjSrgr%resr/r~z,TLSStream.extra_attributes.. d6N6Nr.cjSrg)r4resr/r~z,TLSStream.extra_attributes..s T-=-=r.)r3extra_attributesrrr4selected_alpn_protocolrget_channel_bindingrrrr!r"r%r$r'versionres`r/rzTLSStream.extra_attributess ##44  & &(8(8(O(O  3 3T5E5E5Y5Y   !1!1!8!8  ) )+V  0 03  $ $&J  ' '*  , ,.N  # #%=  $ $d&6&6&>&>  r.) r3rr!z bool | Noner7rr8zssl.SSLContext | Noner%r returnr2)r^zCallable[..., T_Retval]r_objectrr)rztuple[AnyByteStream, bytes]rNone)i)rkrtrr)rmrrrrzMapping[Any, Callable[[], Any]])r(r)r*r+r, classmethodrLrErdrirSrPrypropertyrr-r.r/r2r24s$# $(#-1$(5'5! 5  5 + 5"5 55n-+-4:- -^ <-H    r.r2ceZdZUdZded<ded<dZded<d Zd ed <edd Z d ddZ ddZ e ddZ y ) TLSListenera A convenience listener that wraps another listener and auto-negotiates a TLS session on every accepted connection. If the TLS handshake times out or raises an exception, :meth:`handle_handshake_error` is called to do whatever post-mortem processing is deemed necessary. Supports only the :attr:`~TLSAttribute.standard_compatible` extra attribute. :param Listener listener: the listener to wrap :param ssl_context: the SSL context object :param standard_compatible: a flag passed through to :meth:`TLSStream.wrap` :param handshake_timeout: time limit for the TLS handshake (passed to :func:`~anyio.fail_after`) z Listener[Any]listenerzssl.SSLContextr8Tr r%floathandshake_timeoutcKt|d{t|ts(tjt j dt|trt|try7fw)a Handle an exception raised during the TLS handshake. This method does 3 things: #. Forcefully closes the original stream #. Logs the exception (unless it was a cancellation exception) using the ``anyio.streams.tls`` logger #. Reraises the exception if it was a base exception or a cancellation exception :param exc: the exception :param stream: the original stream NzError during TLS handshake)rrZrlogging getLoggerr( exception Exception)rbstreams r/handle_handshake_errorz"TLSListener.handle_handshake_errorsg  '''#689   h ' 1 12N O#y)Z=T=V-W .X (sA:A8A'A:NcKtdfd }jj||d{y7w)Nc\Kddlm} |j5tj |j j d{}dddd{y7#1swYxYw7#t$r%}j||d{7Yd}~yd}~wwxYww)Nr ) fail_after)r8r%) rrr2rLr8r%rhr)rrwrapped_streamrbhandlerr]s r/handler_wrapperz*TLSListener.serve..handler_wrapper's % . 6 67+4>>$($4$4,0,D,D,:,&Nn---&.! ?11#v>>> ?suB,A;0A- A+A-A; B,%A9&B,+A--A62A;9B,; B)B$BB$B,$B))B,)rrrr)rrserve)r]r task_grouprs`` r/rzTLSListener.serve"s; w .  .mm!!/:>>>s5A?AcTK|jjd{y7wrg)rrires r/rizTLSListener.aclose9smm""$$$s (&(c.tjfdiS)NcjSrgrresr/r~z.TLSListener.extra_attributes..?rr.)rr%res`r/rzTLSListener.extra_attributes<s  , ,.N  r.)rbrhrrrrrg)rzCallable[[TLSStream], Any]rzTaskGroup | Nonerrrr) r(r)r*r+r,r%r staticmethodrrrirrr-r.r/rrs|  $$!u!8(,?+?%?  ?.%  r.r)# __future__rrrrr< dataclassesr functoolsrtypingrrrr r rr r rr_core._typedattrrrabcrrrrrr&_PCTRTT_PCTRTTTrr2rr-r.r/rs" !99 B@@ :  c3h$ % # )$)8 ey y y x eN (9%N N r.