ó ²vMc @szdZeZddlmZddlmZmZmZddl m Z m Z m Z m Z ddd„ƒYZdefd„ƒYZd d d „ƒYZd e jfd „ƒYZd e jfd„ƒYZde jfd„ƒYZde jfd„ƒYZddlmZmZmZddlmZmZddlmZddlmZddd dddddddg ZeZdS(!sR SSL transport. Requires PyOpenSSL (http://pyopenssl.sf.net). SSL connections require a ContextFactory so they can create SSL contexts. End users should only use the ContextFactory classes directly - for SSL connections use the reactor.connectSSL/listenSSL and so on, as documented in IReactorSSL. All server context factories should inherit from ContextFactory, and all client context factories should inherit from ClientContextFactory. At the moment this is not enforced, but in the future it might be. Future Plans: - split module so reactor-specific classes are in a separate module iÿÿÿÿ(tSSL(t implementstimplementsOnlyt implementedBy(ttcpt interfacestbasetaddresstContextFactorycBseZdZdZd„ZRS(s>A factory for SSL context objects, for server SSL connections.icCs t‚dS(s4Return a SSL.Context object. override in subclasses.N(tNotImplementedError(tself((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyt getContext6s(t__name__t __module__t__doc__tisClientR (((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR1stDefaultOpenSSLContextFactorycBsMeZdZdZejejd„Zd„Z d„Z d„Z d„Z RS(sI L{DefaultOpenSSLContextFactory} is a factory for server-side SSL context objects. These objects define certain parameters related to SSL handshakes and the subsequent connection. @ivar _contextFactory: A callable which will be used to create new context objects. This is typically L{SSL.Context}. cCs2||_||_||_||_|jƒdS(sÐ @param privateKeyFileName: Name of a file containing a private key @param certificateFileName: Name of a file containing a certificate @param sslmethod: The SSL method to use N(tprivateKeyFileNametcertificateFileNamet sslmethodt_contextFactoryt cacheContext(R RRRR((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyt__init__Fs     cCsa|jdkr]|j|jƒ}|jtjƒ|j|jƒ|j |j ƒ||_ndS(N( t_contexttNoneRRt set_optionsRt OP_NO_SSLv2tuse_certificate_fileRtuse_privatekey_fileR(R tctx((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyRXs cCs|jjƒ}|d=|S(NR(t__dict__tcopy(R td((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyt __getstate__cscCs ||_dS(N(R(R tstate((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyt __setstate__iscCs|jS(s( Return an SSL context. (R(R ((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR msN( R R RRRRt SSLv23_METHODtContextRRR!R#R (((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR;s  tClientContextFactorycBs/eZdZdZejZejZd„Z RS(s"A context factory for SSL clients.icCs&|j|jƒ}|jtjƒ|S(N(RtmethodRRR(R R((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR s( R R RRRR$R'R%RR (((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR&ts   tClientcBs^eZdZeejgeejƒD]Z e ej kr%e ^q%Œdd„Z d„Z RS(s I am an SSL client. cCs,||_tjj||||||ƒdS(N(t ctxFactoryRR(R(R thosttportt bindAddressR)t connectortreactor((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyRs cCs.|j|jƒ|jƒtjj|ƒdS(N(tstartTLSR)t startWritingRR(t _connectDone(R ((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR1”s N(R R RRRt ISSLTransportRRR(tit ITLSTransportRRR1(((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR(‡s  2 tServercBs$eZdZeejƒd„ZRS(s I am an SSL server. cOs-tjj|||Ž|j|jjƒdS(N(RR5RR/tserverR)(R targstkwargs((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR¡s(R R RRRR2R(((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR5›s tPortcBs&eZdZeZdddd„ZRS(s I am an SSL port. i2tcCs,tjj||||||ƒ||_dS(N(RR9RR)(R R+tfactoryR)tbacklogt interfaceR.((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR­sN(R R RR5t transportRR(((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR9§st ConnectorcBseZdd„Zd„ZRS(cCs/||_tjj|||||||ƒdS(N(tcontextFactoryRR?R(R R*R+R;R@ttimeoutR,R.((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR´s cCs(t|j|j|j|j||jƒS(N(R(R*R+R,R@R.(R ((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyt_makeTransport¹sN(R R RRRB(((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyR?³s (tDistinguishedNametDNt Certificate(tCertificateRequesttPrivateCertificate(tKeyPair(tOpenSSLCertificateOptionsRCRDRERFRGRHtCertificateOptionsN((( RtFalset supportedtOpenSSLRtzope.interfaceRRRttwisted.internetRRRRRRR&R(R5R9R?ttwisted.internet._sslverifyRCRDRERFRGRHRIRJt__all__tTrue(((s8/usr/lib/python2.7/dist-packages/twisted/internet/ssl.pyts*" 9