†Kðh~ã @sœdZddlZddlZyddlZWnek rHdZYnXdZGdd„deƒZddd„Zd d „Z d d „Z d d„Z dS)zJThe match_hostname() function from Python 3.3.3, essential when using SSL.éNz3.5.0.1c@seZdZdS)ÚCertificateErrorN)Ú__name__Ú __module__Ú __qualname__©rrú[/mod/web/acousticsspace/venv/lib/python3.5/site-packages/urllib3/util/ssl_match_hostname.pyrs réc CsUg}|sdS|jdƒ}|d}|dd…}|jdƒ}||krjtdt|ƒƒ‚|s†|jƒ|jƒkS|dkr¢|jdƒnY|jd ƒsÀ|jd ƒrÙ|jtj|ƒƒn"|jtj|ƒj d d ƒƒx$|D]}|jtj|ƒƒqWtj d d j |ƒdtj ƒ} | j |ƒS)zhMatching according to RFC 6125, section 6.4.3 http://tools.ietf.org/html/rfc6125#section-6.4.3 FÚ.rrNÚ*z,too many wildcards in certificate DNS name: z[^.]+zxn--z\*z[^.]*z\Az\.z\Z)ÚsplitÚcountrÚreprÚlowerÚappendÚ startswithÚreÚescapeÚreplaceÚcompileÚjoinÚ IGNORECASEÚmatch) ÚdnÚhostnameÚ max_wildcardsÚpatsÚpartsÚleftmostÚ remainderÚ wildcardsÚfragÚpatrrrÚ_dnsname_matchs*   " &r"cCs:t|tƒr6tjdkr6t|ddddƒ}|S)NéÚencodingÚasciiÚerrorsÚstrict)r#)Ú isinstanceÚstrÚsysÚ version_infoÚunicode)ÚobjrrrÚ _to_unicodeOsr.cCs%tjt|ƒjƒƒ}||kS)zˆExact matching of IP addresses. RFC 6125 explicitly doesn't define an algorithm for this (section 1.7.2 - "Out of Scope"). )Ú ipaddressÚ ip_addressr.Úrstrip)ÚipnameÚhost_ipÚiprrrÚ_ipaddress_matchVsr5cCsù|stdƒ‚ytjt|ƒƒ}WnGttfk rKd}Yn*tk rttdkrmd}n‚YnXg}|jdfƒ}x‡|D]\}}|dkrÛ|dkrËt||ƒrËdS|j|ƒq”|dkr”|dk rt ||ƒrdS|j|ƒq”W|s}x]|jdfƒD]I}x@|D]8\}}|dkr=t||ƒrhdS|j|ƒq=Wq0Wt |ƒdkrºt d |d j t t|ƒƒfƒ‚n;t |ƒdkrét d ||d fƒ‚n t d ƒ‚dS)a)Verify that *cert* (in decoded format as returned by SSLSocket.getpeercert()) matches the *hostname*. RFC 2818 and RFC 6125 rules are followed, but IP addresses are not accepted for *hostname*. CertificateError is raised on failure. On success, the function returns nothing. ztempty or no certificate, match_hostname needs a SSL socket or SSL context with either CERT_OPTIONAL or CERT_REQUIREDNÚsubjectAltNameÚDNSz IP AddressÚsubjectÚ commonNamerz&hostname %r doesn't match either of %sz, zhostname %r doesn't match %rrz=no appropriate commonName or subjectAltName fields were found)Ú ValueErrorr/r0r.Ú UnicodeErrorÚAttributeErrorÚgetr"rr5ÚlenrrÚmapr )Úcertrr3ÚdnsnamesÚsanÚkeyÚvalueÚsubrrrÚmatch_hostnamebsJ        %rF) Ú__doc__rr*r/Ú ImportErrorÚ __version__r:rr"r.r5rFrrrrÚs    6