3
OÉ6bJ  ã            "   @   s†  d Z ddlZddlZddlZddlmZ ddlmZ dZyddl	j
ZW n< ek
r‚   yddljZW n ek
r|   dZY nX Y nX dZyddlZdZW n ek
r¬   Y nX dZyddlmZ dZW n ek
rÚ   Y nX ejƒ ZdaerRddlZddlmZmZmZ ejZejp(ejdd	… dkZej Z dd„ Z!dd„ Z"dd„ Z#dd„ Z$n0G dd„ de%ƒZ dZdZdd„ Z!dd„ Z"dd„ Z$dS )zSupport for SSL in PyMongo.é    N)Ústring_type)ÚConfigurationErrorTF)ÚCertFile)Ú	CERT_NONEÚCERT_OPTIONALÚCERT_REQUIREDé   é   é   c             C   sN   |dkr|S t |tƒr*tt|ƒr*tt|ƒ}|tttfkr<|S td| f ƒ‚dS )z¨Validate the cert reqs are valid. It must be None or one of the
        three values ``ssl.CERT_NONE``, ``ssl.CERT_OPTIONAL`` or
        ``ssl.CERT_REQUIRED``.
        Nz[The value of %s must be one of: `ssl.CERT_NONE`, `ssl.CERT_OPTIONAL` or `ssl.CERT_REQUIRED`)	Ú
isinstancer   ÚhasattrÚ
_stdlibsslÚgetattrr   r   r   Ú
ValueError)ÚoptionÚvalue© r   úR/var/www/html/sandeepIITI/myenv/lib/python3.6/site-packages/pymongo/ssl_support.pyÚvalidate_cert_reqs=   s    
r   c             C   s"   ddl m} || |ƒ}|rtS tS )z;Validate the option to allow invalid certificates is valid.r   )Úvalidate_boolean_or_string)Zpymongo.commonr   r   r   )r   r   r   Zboolean_cert_reqsr   r   r   Úvalidate_allow_invalid_certsM   s
    
r   c              C   s.   t ƒ } | jdƒ | jdƒ tj| jƒ | adS )z6Set _WINCERTS to an instance of wincertstore.Certfile.ÚCAÚROOTN)r   ZaddstoreÚatexitÚregisterÚcloseÚ	_WINCERTS)Úcertfiler   r   r   Ú_load_wincertsV   s
    

r   c              G   s  | \}}}}}}}}|dkr t n|}	tjtjƒ}
t|
dƒrVtjrP|	tkrP||
_nd|
_t|
dƒrf||
_t|
dƒr°|
 j	tj
O  _	|
 j	tjO  _	|
 j	tjO  _	|
 j	tjO  _	|dk	rþy|
j|||ƒ W n2 tjk
rü } ztd|f ƒ‚W Y dd}~X nX |dk	rDtjrtdƒ‚t|
dƒs,td	ƒ‚ttd
dƒ|
_|
j|ƒ |dk	rZ|
j|ƒ n |tkrút|
dƒrz|
jƒ  n€tjdkrœt|
dƒrœ|
jƒ  n^tjdkrÜtrÜt tdkrÄtƒ  W dQ R X |
jtjƒ ntrò|
jtj ƒ ƒ ntdƒ‚|	|
_!|
S )z'Create and return an SSLContext object.NÚcheck_hostnameFÚcheck_ocsp_endpointÚoptionsz)Private key doesn't match certificate: %sz)ssl_crlfile cannot be used with PyOpenSSLÚverify_flagszESupport for ssl_crlfile requires python 2.7.9+ (pypy 2.5.1+) or  3.4+ÚVERIFY_CRL_CHECK_LEAFr   Úload_default_certsÚwin32Úset_default_verify_pathszo`ssl_cert_reqs` is not ssl.CERT_NONE and no system CA certificates could be loaded. `ssl_ca_certs` is required.)"r   Ú_sslÚ
SSLContextÚPROTOCOL_SSLv23r   ZCHECK_HOSTNAME_SAFEr   r   r    r!   ÚOP_NO_SSLv2ÚOP_NO_SSLv3ÚOP_NO_COMPRESSIONZOP_NO_RENEGOTIATIONÚload_cert_chainÚSSLErrorr   ÚIS_PYOPENSSLr   r"   Úload_verify_locationsr$   ÚsysÚplatformr&   ÚHAVE_WINCERTSTOREÚ_WINCERTSLOCKr   r   ÚnameÚHAVE_CERTIFIÚcertifiÚwhereÚverify_mode)Úargsr   ÚkeyfileZ
passphraseÚca_certsÚ	cert_reqsZcrlfileÚmatch_hostnamer    r9   ÚctxÚexcr   r   r   Úget_ssl_contexta   s`    	









rA   c               @   s   e Zd ZdS )r.   N)Ú__name__Ú
__module__Ú__qualname__r   r   r   r   r.   ¨   s   r.   c             C   s   t d| f ƒ‚dS )z(No ssl module, raise ConfigurationError.zNThe value of %s is set but can't be validated. The ssl module is not availableN)r   )r   Údummyr   r   r   r   ¬   s    c             C   s
   t | |ƒS )z(No ssl module, raise ConfigurationError.)r   )r   rE   r   r   r   r   ²   s    c              G   s   t dƒ‚dS )z(No ssl module, raise ConfigurationError.z The ssl module is not available.N)r   )rE   r   r   r   rA   ¶   s    )r	   r
   )&Ú__doc__r   r1   Ú	threadingZbson.py3compatr   Zpymongo.errorsr   ZHAVE_SSLZpymongo.pyopenssl_contextZpyopenssl_contextr'   ÚImportErrorZpymongo.ssl_contextÚssl_contextr6   r7   r3   Zwincertstorer   ÚLockr4   r   Ússlr   r   r   r   ÚHAS_SNIr/   Úversion_infoZIPADDR_SAFEr.   r   r   r   rA   Ú	Exceptionr   r   r   r   Ú<module>   sV   	
G