af;5 LddlZddlZddlZddlmZmZmZmZddlm Z ddl m Z m Z ddl mZmZddlmZ ddlmZn#e$redZYnwxYw ddl mZd Zn#e$rd ZedZYnwxYw dd l mZdd lmZdd lmZd Zn #e$rd ZYnwxYwdZddZdeeefde fdZ!esdde"de#dee dee$fdZ%ndde"de#dee dee$fdZ%esde"deee effdZ&ndedeee effdZ&deeefde#defdZ'dS)N)OptionalUnionDictAny)Deferred) IPv4Address UNIXAddress) ITransportIProcessTransport)TransportDetails) PipeAddress) IPv6AddressTF) ISSLTransport)TLSMemoryBIOProtocol) Connection)sleeppeer2strtransport_channel_idextract_peer_certificatecreate_transport_detailscj|sddlm}t}|||jd|S)aD Inline sleep for use in co-routines (Twisted ``inlineCallback`` decorated functions). .. seealso:: * `twisted.internet.defer.inlineCallbacks `__ * `twisted.internet.interfaces.IReactorTime `__ :param delay: Time to sleep in seconds. :type delay: float :param reactor: The Twisted reactor to use. :type reactor: None or provider of ``IReactorTime``. r)reactorN)twisted.internetrr callLatercallback)delayrds G/var/www/html/env/lib/python3.11/site-packages/autobahn/twisted/util.pyrrDsF -,,,,,, A eQZ... H transportreturnctj|rd|j}nt j|r|}t |tr!d|j|j }ntr6t |tr!d|j|j }n{t |tr%|j rd|j }nDd}nAt |tr'dtj}nd}nd}|S)a Return a *peer descriptor* given a Twisted transport, for example: * ``tcp4:127.0.0.1:52914``: a TCPv4 socket * ``unix:/tmp/server.sock``: a Unix domain socket * ``process:142092``: a Pipe originating from a spawning (parent) process * ``pipe``: a Pipe terminating in a spawned (child) process :returns: Returns a string representation of the peer of the Twisted transport. z process:{}z tcp4:{0}:{1}z tcp6:{0}:{1}zunix:{0}unixz process:{0}unknown)r providedByformatpidr getPeer isinstancerhostport _HAS_IPV6rr namer osgetppid)r resaddrs rrrXs1#I..!!)-00  y ) )JSJ[J[J]J] dK ( (  '' 49==CC  :dK88  '' 49==CC k * * y  '' 22 k * *  &&rz||44CCCC Jr is_serverchannel_id_typecN|dStd|)N zUcannot determine TLS channel ID of type "{}" when TLS is not available on this system) RuntimeErrorr&)r r2r3s rrrs>  "<v}}N O OPP Prcl|dS|dvr"td|t|ts0td|t ||}|rt|t sJd}|dkro||kr|}n|}|dStj }| || Std|) a( Return TLS channel ID of WAMP transport of the given TLS channel ID type. Application-layer user authentication protocols are vulnerable to generic credential forwarding attacks, where an authentication credential sent by a client C to a server M may then be used by M to impersonate C at another server S. To prevent such credential forwarding attacks, modern authentication protocols rely on channel bindings. For example, WAMP-cryptosign can use the tls-unique channel identifier provided by the TLS layer to strongly bind authentication credentials to the underlying channel, so that a credential received on one TLS channel cannot be forwarded on another. :param transport: The Twisted TLS transport to extract the TLS channel ID from. If the transport isn't TLS based, and non-empty ``channel_id_type`` is requested, ``None`` will be returned. If the transport is indeed TLS based, an empty ``channel_id_type`` of ``None`` is requested, 32 NUL bytes will be returned. :param is_server: Flag indicating that the transport is a server transport. :param channel_id_type: TLS channel ID type, if set currently only ``"tls-unique"`` is supported. :returns: The TLS channel ID (32 bytes). Nr5) tls-uniquez*invalid TLS channel ID type "{}" requestedz[cannot determine TLS channel ID of type "{}" when TLS is not available on this transport {}Tr8z7should not arrive here (unhandled channel_id_type "{}"))r6r&r)rtype getHandlerget_peer_finished get_finishedhashlibsha256updatedigestNotImplementedError)r r2r3 connectionis_not_resumedtls_finished_msgms rrrsJ&  "< . 0 0KRRSbccdd d)%9:: 7mtt#T)__6677 7 "+!4!4!6!6 @jZ@@@@@ l * *N**$.#?#?#A#A  $.#:#:#<#< ' $|N$$)***xxzz!%&_&f&fgv&w&wxx xrcdS)z~ Dummy when no TLS is available. :param transport: Ignored. :return: Always return ``None``. N)r s rrrs trc tj|rt|dsdS|}|rd}d||dd||dd||dt||| t| || t| ||||gd }t!|D]}||}d||d|||d kd }|d |d |fd |ffD]}\}}i||<|D]^\} } || } || } d| ||d| <_~|SdS)a Extract TLS x509 client certificate information from a Twisted stream transport, and return a dict with x509 TLS client certificate information (if the client provided a TLS client certificate). :param transport: The secure transport from which to extract the peer certificate (if present). :returns: If the peer provided a certificate, the parsed certificate information set. getPeerCertificateNcZt|tr|dS|S)Nutf8)r)bytesdecode)_values r maybe_bytesz-extract_peer_certificate..maybe_bytess+fe,,"!==000!Mrz{}md5sha1r>) rPrQr>expiredhashserialsignature_algorithmversion not_before not_after extensionsr)r-valuecriticalrYsubjectissuer)rr%hasattrrIr&r@upperbool has_expiredsubject_name_hashintget_serial_numberget_signature_algorithm get_version get_notBefore get_notAfterrangeget_extension_count get_extensionget_short_name get_criticalappend get_subject get_issuerget_componentslower) r certrOresultiextext_infoentityr-keyrZs rrrs&(33  K_8`8` 4++-- &  " " "{{;;t{{5/A/A#B#BCCIIKK KK F0C0C$D$DEEKKMM++kk$++h2G2G&H&HIIOOQQ 0 0 2 233# D$:$:$<$<==d446677'2{43O3O3Q3Q'R'Rt//1122)k$*<*<*>*>??([):):)<)<==   F4335566 6 6((++ KK C4F4F4H4H(I(IJJ![[S)9)9:: # 0 0 2 2a 7 |$++H5555"+T-=-=-?-?!@8T__M^M^B_ ` R R !#v"&"5"5"7"7RRJC%+c**C'K..E?C{{5?Q?QF6N4;;s#3#3#9#9#;#;<<R MM& & rc t|}tj}ttdrt j}nt j}d}trEtj |r1dt||di}tj }t|}d} ni}tj}d}d} tj} t|| |||||| || } | S)aB Create transport details from Twisted transport. :param transport: The Twisted transport to extract information from. :param is_server: Flag indicating whether this transport side is a "server" (as in TCP server). :return: Transport details object filled with information from the Twisted transport. get_native_idr8TNF) channel_typechannel_framingpeerr2own_pidown_tidown_fd is_secure channel_id peer_cert)rr.getpidr^ threadingr{ get_ident_HAS_TLSrr%rr CHANNEL_TYPE_TLSrCHANNEL_TYPE_TCPCHANNEL_FRAMING_WEBSOCKET) r r2rrrrrr}rrr~tds rrrs I  DikkGy/**()++%'' F M,Y77  .y)\RR (8 ,Y77   '8   '@O |_[_$-wX^$-*PY [ [ [B Ir)N)(r.r=rtypingrrrrtwisted.internet.deferrtwisted.internet.addressrr twisted.internet.interfacesr r autobahn.wamp.typesr twisted.internet.stdior ImportErrorr9rr,rtwisted.protocols.tlsr OpenSSL.SSLrr__allrstrrobjectr`rLrrrrGrrrs>6 ------------++++++========EEEEEEEE0000002222222$t**KKK444444III$t**KKK999999::::::&&&&&&HHHHH     ($j*;;<$$$$$NEyPPP4PRZ[^R_PkstykzPPPPP >y>y>y4>yRZ[^R_>ykstykz>y>y>y>yB>FxS#X7O4,@4XdSVX[S[nE]4444n(j:K.K(L(Y](br((((((s3=AAAA21A26B BB