mbi UdZddlmZddlZddlmZddlmZddlm Z ddl m Z ddl mZmZd Zd ed <gZd ed <eZeddZ eddZddZddZddZdZdS)z the Wassima library is a simple library. It aims to provide a pythonic way to retrieve root CAs from your system without any difficulties or hazmat. ) annotationsN) lru_cache)RLock)root_der_certificates)VERSION __version__zECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-CHACHA20-POLY1305strMOZ_INTERMEDIATE_CIPHERS list[bytes]_MANUALLY_REGISTERED_CAreturnct5t}|st}|t|cdddS#1swxYwYdS)N)_USER_APPEND_CA_LOCK_root_der_certificatesfallback_der_certificatesextendr ) certificatess `/var/www/html/mdtn/previsions/meteo_cartes/venv/lib/python3.11/site-packages/wassima/__init__.pyrrs -//  7466L3444s:AAA list[str]czg}tD])}|tj|*|S)zs Retrieve a list of root certificate from your operating system trust store. They will be PEM encoded. )rappendsslDER_cert_to_PEM_cert) pem_certsbin_certs rroot_pem_certificatesr(sF I)++==1(;;<<<< cDdtS)z Generate an aggregated CA bundle that originate from your system trust store. Simply put, concatenated root PEM certificate. z )joinrrrgenerate_ca_bundler"6s ;;,.. / //rpem_or_der_certificate bytes | strNonecBt5t|trtj|}|t vrLt |ttddddS#1swxYwYdS)zZ You may register your own CA certificate in addition to your system trust store. N) r isinstancer rPEM_cert_to_DER_certr rr cache_clearr)r#s r register_car*>s 00 ,c 2 2 V%(%=>T%U%U " !)@ @ @ # * *+A B B B ! - - / / / ! - - / / /000000000000000000sA?BBBssl.SSLContextcltjtj}|t tjj|_|ttj |_ d|_ n#t$rYnwxYw d|_n#t$rYnwxYw|S)aq Instantiate a native SSLContext (client purposes) that ships with your system root CAs. In addition to that, assign it the default OpenSSL ciphers suite and set TLS 1.2 as the minimum supported version. Also disable commonName check and enforce hostname altName verification. The Mozilla Recommended Cipher Suite is used instead of system default. )cadataFT)r SSLContextPROTOCOL_TLS_CLIENTload_verify_locationsr" TLSVersionTLSv1_2minimum_version set_ciphersr CERT_REQUIRED verify_modehostname_checks_common_nameAttributeErrorcheck_hostname)ctxs rcreate_default_ssl_contextr;Ms .0 1 1C%7%9%9:::.0COO,---'CO */''       !       Js$B BBB$$ B10B1)rrr"r;r*r r)rr )rr)rr )r#r$rr%)rr+)__doc__ __future__rr functoolsr threadingr_osrr _os._embedr_versionrr r __annotations__r rrr"r*r;__all__r!rrrEsr #""""" KJJJJJ********!^^^^^')))))uww            0000 0 0 0 08 r