ó ŒGUc @sàdZdZdZdZdZdZdZddlZejd d kr[ddl j Z n ddl Z dd l mZdd lmZd efd„ƒYZedd„Zddddedejdd„Zed„ZdS(sundg_httpsclient SSL Context utilities module containing convenience routines for setting SSL context configuration. sP J Kershaw (STFC)s09/12/11s2(C) 2012 Science and Technology Facilities Councils-BSD - see LICENSE file in top-level directorysPhilip.Kershaw@stfc.ac.uks$Id$iÿÿÿÿNii(tSSL(tServerSSLCertVerificationtSSlContextConfigcBs&eZdZdddded„ZRS(s Holds configuration options for creating a SSL context. This is used as a template to create the contexts with specific verification callbacks. cCs1||_||_||_||_||_dS(N(tkey_filet cert_filetpem_filetca_dirt verify_peer(tselfRRRRR((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyt__init__s     N(t__name__t __module__t__doc__tNonetFalseR (((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyRs cCs(t|j|j|j|j|j|ƒS(N(tmake_ssl_contextRRRRR(t ssl_configturl((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pytmake_ssl_context_from_config%s c sútj|ƒ}|r%|j|ƒnˆrJ‡fd†} |j| ƒn|r`|j|ƒn|rv|j|ƒn|s‚|r•|j||ƒnd„} | } |rã|jdƒ|rÍt||ƒqö|jtj | ƒn|jtj | ƒ|S(sL Creates SSL context containing certificate and key file locations. csˆS(N((tmax_passphrase_lent set_prompttuserdata(tkey_file_passphrase(sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyt8scSs|S(srDefault certification verification callback. Performs no checks and returns the status passed in. ((tconntx509terrnumterrdeptht preverify_ok((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyt _callbackDsi ( RtContexttuse_certificate_filet set_passwd_cbtuse_privatekey_filetload_verify_locationstset_verify_deptht&set_peer_verification_for_url_hostnamet set_verifyt VERIFY_PEERt VERIFY_NONE( RRRRRRtmethodRt ssl_contextt passwd_cbRtverify_callback((RsD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyR+s*   cCsg| s|jƒtj@rctj|ƒ}|j}td|ƒ}|jƒ}|jtj|ƒndS(sbConvenience routine to set peer verification callback based on ServerSSLCertVerification classthostnameN( tget_verify_modeRR&t urlparse_turlparseR,Rtget_verify_server_cert_funcR%(R)Rtif_verify_enabledturlObjR,tserver_ssl_cert_veriftverify_callback_((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyR$Xs   (R t __author__t__date__t __copyright__t __license__t __contact__t __revision__tsyst version_infot urllib.parsetparseR.R/tOpenSSLRt%ndg.httpsclient.ssl_peer_verificationRtobjectRRR Rt TLSv1_METHODRR$(((sD/usr/lib/python2.7/dist-packages/ndg/httpsclient/ssl_context_util.pyts$     ,