=OOf<vdZddlmZmZmZmZmZddlmZddl m Z m Z m Z m Z mZ ddlZ dd lmZmZ dd lmZmZdZddlmZGddeZdZy#e$re e r e e dedwxYw#e$r dd lmZdd lmZe e r e e d YfwxYw#e$rdZe e r e e dYywxYw) )LDAPSSLNotSupportedErrorLDAPSSLConfigurationErrorLDAPCertificateErrorstart_tls_exception_factoryLDAPStartTLSError)SEQUENCE_TYPES)log log_enabledERRORBASICNETWORKNz,SSL not supported in this Python interpreter)match_hostnameCertificateError)r)rzusing tls_backport)create_default_contextPurposeTFzSSLContext unavailable)pathc deZdZdZddej dddddddddf dZdZdZd dZ dZ dZ y) Tlsa tls/ssl configuration for Server object Starting from python 2.7.9 and python 3.4 uses the SSLContext object that tries to read the CAs defined at system level ca_certs_path and ca_certs_data are valid only when using SSLContext local_private_key_password is valid only when using SSLContext ssl_options is valid only when using SSLContext sni is the server name for Server Name Indication (when available) Nc H|g}||_|tjtjtjfvr||_n-|r+t trttd|td|rtj|r||_ n4|r+t trttd|tdd|_ |r#trtj|r||_nf|r0ts*t trttdtd|r+t trttd|tdd|_| rtr| |_n3| r*t trttdtdd|_| rtr| |_n3| r*t trttd td d|_||_||_||_||_| |_| |_t t0rtt0d |zyy) Nzinvalid validate parameter <%s>zinvalid validate parameterzinvalid CA public key file <%s>zinvalid CA public key filez8cannot use CA public keys path, SSLContext not availablez invalid CA public keys path <%s>zinvalid CA public keys pathz,cannot use CA data, SSLContext not availablez?cannot use local private key password, SSLContext not availablezBcannot use local private key password, SSLContext is not availablezinstantiated Tls: <%r>) ssl_optionsssl CERT_NONE CERT_OPTIONAL CERT_REQUIREDvalidater r r rrexists ca_certs_fileuse_ssl_context ca_certs_pathr ca_certs_dataprivate_key_passwordversionprivate_key_filecertificate_file valid_namescipherssnir) selflocal_private_key_filelocal_certificate_filerr%rr r(r"r#local_private_key_passwordr)r*s O/var/www/premiumrankchecker/venv/lib/python3.12/site-packages/ldap3/core/tls.py__init__z Tls.__init__Fs  K&  s'8'8#:K:KL L$DM 5!EPROTOCOL_SSLv23)rBcertfilerD cert_reqs ssl_versionca_certsrEr))rBrHrDrIrJrKrEz socket wrapped with SSL for <%s>)'r!r%rr SERVER_AUTHr r"r#r SSLContextload_verify_locationsrrload_default_certsr'load_cert_chainr&r$check_hostname verify_moderoptionsr) set_ciphersSSLErrorr* wrap_socketsocketr rr hasattrrG TypeErrorrrserverhostr()r+ connection do_handshake ssl_contextoptionwrapped_sockets r/rVzTls.wrap_sockets9 ||#4W=P=P<@B>S>SAF?C}}AE>B>P>PMY=A\\&KN<:O:O=B;?===A\\:>:L:LIU"W7#G?L T]]c.?.??4==TWTeTeCe >:+<+<+A+A4CSCS T* [||0|| (#'DL(s% N2A$O 2O O  #O32O3c|jjry|jr |jr"|jj s |j r!ttrttd|yd|_ ttrttd||jjsd|_ |jd}|jjsX|j|}|dk7r!ttrttd|yttrttd|y|j d d vr`d t#|j d z|_ttrttd |j$|t'|j$ttrttd||j)|S) NFz;can't start tls because operations are in progress for <%s>Tzstarting tls for <%s>z1.3.6.1.4.1.1466.20037)NNztls started for <%s>ztls not started for <%s> description)successzstartTLS failed - z %s for <%s>)rZr tls_started_executing_deferredstrategy _outstandingsasl_in_progressr r r starting_tlsrsync_awaiting_for_async_start_tlsextended get_responseresultr3 last_errorr _start_tls)r+r\rnresponses r/ start_tlsz Tls.start_tlss{      " ":+I+IjNaNaNnNnr|sNsN5!EXZ^_"&  u  . ;""''7;J 4$$%=>""''!..v6H<'u%5zBu%9:F  /{B(>5!E1:>??:. .r1c |j|d d|_|jr|jxjdz c_ d|_ y#t$r^}dt|z|_t t rt t d|j|t||jd}~wwxYw#d|_wxYw)NT)r]zwrap socket error: z*error <%s> wrapping socket for TLS in <%s>Fr) rV Exceptionr3ror r r rriusage_usagewrapped_socketsrd)r+r\es r/rpzTls._start_tlss ,   Zd  ;',J #       - - 2 -!%  H$9CF$BJ !5!EGI^I^`jk0-a01F1FG G  H ',J #s$A B7AB22B77B:: C)F) __name__ __module__ __qualname____doc__rrr0r6r<rVrrrpr1r/rr;sT)-(,--!#!##,0F8P HT#/Jr1rcN|j}ttrttd|||r|gt |t r|n|gz}n|g}|D]Y}|s|dk(r!ttrttdy t ||ttrttd|yttrttdtd|dt|d#t$r2}ttrttt|Yd}~d}~wwxYw) Nzcertificate found for %s: %s*zcertificate matches * wildcardz"certificate matches host name <%s>z"hostname doesn't match certificatez certificate z doesn't match any name in  ) getpeercertr rr isinstancer rrr3r r)sock server_nameadditional_namesserver_certificate host_names host_namerxs r/rQrQ+s))+7 G3T;MN!]*EUWe:f&6m}l~ !] %   # 7#G=>  % -y 97#GA9M %"5 E78 Qcehisetu vv   %7#GSV$ %s,C)) D$2(DD$)r| exceptionsrrrrrr8r utils.logr r r rrr ImportErrorrrutils.tls_backportrrr!osrobjectrrQr}r1r/rs2RR??S )4-3O m&m`wUS5 EAB "#Q RRS)535 E'( )-O5 E+,-s-AA5 BA25"BBB87B8