§
    &`eE  ã            	       ó<
  — d dl Z d dlZd dlZd dlZd dlZd dlmZmZmZmZm	Z	m
Z
mZmZmZ d dlmZ ddlmZ  ej        ¦   «         d          Z e eee                     d¦  «        ¦  «        ¦  «        Zedk     r eded          › ded         › ¦  «        ‚d	ed
edefd„Z edd¦  «        Z edd¦  «        ZeZe
ZeZ eZ!eZ"eZ#eZ$eZ%eZ&eZ' ee&¦  «        Z(eZ)e	Z* ee%¦  «        Z+ ee!¦  «        Z, ee"¦  «        Z- ee#¦  «        Z. ee$¦  «        Z/eZ0eZ1 ee¦  «        Z2 ee¦  «        Z3 ee¦  «        Z4eZ5eZ6	 e)e,gej7        _8        e2ej7        _9        e2gej:        _8        e,ej:        _9        e*egej;        _8        e-ej;        _9        e4e.gej<        _8        e*ej<        _9        e4egej=        _8        e*ej=        _9        e4 ee5¦  «        gej>        _8        e*ej>        _9        e1gej?        _8        e3ej?        _9        ee-gej@        _8        e3ej@        _9        e(e( ee4¦  «        gejA        _8        e*ejA        _9        e4 ee5¦  «        gejB        _8        e*ejB        _9        e4e_4        e5e_5        e*e_*        dZCdZDe(gejE        _8        dejE        _9        e(gejF        _8        e'ejF        _9        e)ee gejG        _8        e-ejG        _9        e-e gejH        _8        eejH        _9        e-eee gejI        _8        eejI        _9        e)eegejJ        _8        e,ejJ        _9        e,gejK        _8        eejK        _9        e,gejL        _8        eejL        _9        e) ee(¦  «        ee0gejM        _8        e.ejM        _9        e)ee0gejN        _8        e/ejN        _9        e/egejO        _8        dejO        _9        e.gejP        _8        eejP        _9        e.egejQ        _8        eejQ        _9        e+gejR        _8        eejR        _9        e+gejS        _8        e-ejS        _9        e) T                    ed¦  «        e_U         ejT        ed¦  «        e_V        e(e_(        e.e_.        e-e_-        e+e_+        n# eW$ r  ed¦  «        d‚w xY wde*dejX        dejX        dejX        fd„ZYeYejA        _Z        eYej<        _Z        eYejB        _Z         G d„ d¦  «        Z[de\de,fd„Z]de\de"fd„Z^de-dedz  fd „Z_d!e`e\         de/fd"„Zae jb        d#ejc        dejd        d         fd$„¦   «         Ze	 d)d%ejc        d&e`e\         d'edz  ddfd(„ZfdS )*é    N)	ÚCDLLÚPOINTERÚc_boolÚc_char_pÚc_int32Úc_longÚc_uint32Úc_ulongÚc_void_p)Úfind_libraryé   )Ú_set_ssl_context_verify_modeú.)é
   é   z,Only OS X 10.8 and newer are supported, not ÚnameÚmacos10_16_pathÚreturnc                 ó¶   — 	 t           dk    r|}nt          | ¦  «        }|st          ‚t          |d¬¦  «        S # t          $ r t	          d| › d¦  «        d‚w xY w)z:Loads a CDLL by name, falling back to known path on 10.16+)r   é   T)Ú	use_errnozThe library z failed to loadN)Ú_mac_version_infor   ÚOSErrorr   ÚImportError)r   r   Úpaths      ú1lib/python3.11/site-packages/truststore/_macos.pyÚ
_load_cdllr      s„   € ðJõ  Ò(Ð(Ø"ˆDˆDå Ñ%Ô%ˆDØð 	ÝˆMÝD DÐ)Ñ)Ô)Ð)øÝð Jð Jð JÝÐ>¨Ð>Ð>Ð>Ñ?Ô?ÀTÐIðJøøøs	   ‚69 ¹AÚSecurityz6/System/Library/Frameworks/Security.framework/SecurityÚCoreFoundationzB/System/Library/Frameworks/CoreFoundation.framework/CoreFoundationé   r   ÚkCFAllocatorDefaultÚkCFTypeArrayCallBackszError initializing ctypesÚresultÚ_Úargsc                 ó~  — t          | ¦  «        dk    r|S d}	 t                               | d¦  «        }t          j        |t          j        t          j        ¦  «        ¦  «        }t                               |t          j
        ¦  «        }|€St          j        d¦  «        }t                               ||dt          j
        ¦  «        } | st          d¦  «        ‚|j        }|t                               |¦  «         n"# |t                               |¦  «         w w xY w||dk    rd| › }t!          j        |¦  «        ‚)z<
    Raises an error if the OSStatus value is non-zero.
    r   Né   ú'Error copying C string from CFStringRefÚ z8SecureTransport operation returned a non-zero OSStatus: )Úintr   ÚSecCopyErrorMessageStringÚctypesÚcastr   r   r   ÚCFStringGetCStringPtrÚCFConstÚkCFStringEncodingUTF8Úcreate_string_bufferÚCFStringGetCStringr   ÚvalueÚ	CFReleaseÚsslÚSSLError)r#   r$   r%   Úerror_message_cfstringÚerror_message_cfstring_c_void_pÚmessageÚbuffers          r   Ú_handle_osstatusr;   Ï   sP  € õ ˆ6{„{aÒÐØˆð "Ðð!=Ý!)×!CÒ!CÀFÈDÑ!QÔ!QÐõ +1¬+Ø"¥F¤Nµ6´?Ñ$CÔ$Cñ+
ô +
Ð'õ !×6Ò6Ø+­WÔ-Jñ
ô 
ˆð ˆ?ÝÔ0°Ñ6Ô6ˆFÝ#×6Ò6Ø/ØØÝÔ-ñ	ô ˆFð ð IÝÐGÑHÔHÐHØ”lˆGð "Ð-Ý×$Ò$Ð%;Ñ<Ô<Ð<øøð "Ð-Ý×$Ò$Ð%;Ñ<Ô<Ð<Ð<ð .øøøð
 €˜' Rš-˜-ØUÈVÐUÐUˆå
Œ,wÑ
Ô
Ðs   ™CC< Ã<Dc                   ó8   — e Zd ZdZ ed¦  «        ZdZdZdZdZ	dS )r/   zCoreFoundation constantsi  iÍ÷þÿiî÷þÿi÷þÿiýöþÿN)
Ú__name__Ú
__module__Ú__qualname__Ú__doc__ÚCFStringEncodingr0   Ú#errSecIncompleteCertRevocationCheckÚerrSecHostNameMismatchÚerrSecCertificateExpiredÚerrSecNotTrusted© ó    r   r/   r/   	  s?   € € € € € Ø"Ð"à,Ð,¨ZÑ8Ô8Ðà*0Ð'Ø#ÐØ%ÐØÐÐÐrG   r/   r3   c                 óh   — t                                t           j        | t          | ¦  «        ¦  «        S ©N)r   ÚCFDataCreater!   Úlen)r3   s    r   Ú_bytes_to_cf_data_refrL     s*   € Ý×&Ò&ÝÔ*¨Eµ3°u±:´:ñô ð rG   c                 óŽ   — t          j        | ¦  «        }t                               t          j        |t
          j        ¦  «        }|S )zi
    Given a Python binary data, create a CFString.
    The string must be CFReleased by the caller.
    )r,   r   r   ÚCFStringCreateWithCStringr!   r/   r0   )r3   Úc_strÚcf_strs      r   Ú_bytes_to_cf_stringrQ     s>   € õ
 ŒO˜EÑ"Ô"€EÝ×5Ò5ÝÔ*ØÝÔ%ñô €Fð
 €MrG   Úcf_string_refc                 ó(  — t                                | t          j        ¦  «        }|€St	          j        d¦  «        }t                                | |dt          j        ¦  «        }|st          d¦  «        ‚|j        }|| 	                    d¦  «        }|S )z§
    Creates a Unicode string from a CFString object. Used entirely for error
    reporting.
    Yes, it annoys me quite a lot that this function is this complex.
    Nr'   r(   zutf-8)
r   r.   r/   r0   r,   r1   r2   r   r3   Údecode)rR   Ústringr:   r#   s       r   Ú_cf_string_ref_to_strrV   (  s–   € õ ×1Ò1Ø•wÔ4ñô €Fð €~ÝÔ,¨TÑ2Ô2ˆÝ×2Ò2Ø˜6 4­Ô)Fñ
ô 
ˆð ð 	EÝÐCÑDÔDÐDØ”ˆØÐØ—’˜wÑ'Ô'ˆØ€MrG   Úcertsc                 óJ  — t                                t           j        dt          j        t           j        ¦  «        ¦  «        }|st          d¦  «        ‚| D ]Ì}d}d}	 t          |¦  «        }t           	                    t           j        |¦  «        }t            
                    ||¦  «         |rt                                |¦  «         |rt                                |¦  «         Œ# |rt                                |¦  «         |rt                                |¦  «         w w xY w|S )z¦Builds a CFArray of SecCertificateRefs from a list of DER-encoded certificates.
    Responsibility of the caller to call CoreFoundation.CFRelease on the CFArray.
    r   zUnable to allocate memory!N)r   ÚCFArrayCreateMutabler!   r,   Úbyrefr"   ÚMemoryErrorrL   r   ÚSecCertificateCreateWithDataÚCFArrayAppendValuer4   )rW   Úcf_arrayÚ	cert_dataÚcf_dataÚsec_cert_refs        r   Ú_der_certs_to_cf_cert_arrayrb   ?  s1  € õ ×2Ò2ÝÔ*Ø	ÝŒ•^Ô9Ñ:Ô:ñô €Hð
 ð 8ÝÐ6Ñ7Ô7Ð7àð 7ð 7ˆ	ØˆØˆð
	7Ý+¨IÑ6Ô6ˆGÝ#×@Ò@ÝÔ2°Gñô ˆLõ ×-Ò-¨h¸ÑEÔEÐEàð 2Ý×(Ò(¨Ñ1Ô1Ð1Øð 7Ý×(Ò(¨Ñ6Ô6Ð6øøð ð 2Ý×(Ò(¨Ñ1Ô1Ð1Øð 7Ý×(Ò(¨Ñ6Ô6Ð6Ð6ð7øøøð €Os   ÁAC%Ã%;D Úctxc              #   óØ   K  — | j         }| j        }d| _         t          | t          j        ¦  «         	 d V — || _         t          | |¦  «         d S # || _         t          | |¦  «         w xY w)NF)Úcheck_hostnameÚverify_moder   r5   Ú	CERT_NONE)rc   re   rf   s      r   Ú_configure_contextrh   ]  s|   è è € àÔ'€NØ”/€KØ€CÔÝ  ¥c¤mÑ4Ô4Ð4ð7Øˆˆˆà+ˆÔÝ$ S¨+Ñ6Ô6Ð6Ð6Ð6øð ,ˆÔÝ$ S¨+Ñ6Ô6Ð6Ð6øøøs   ³A ÁA)Ússl_contextÚ
cert_chainÚserver_hostnamec                 óþ	  — d }d }d }d }	 |d }	 t          |                     d¦  «        ¦  «        }t                               d|¦  «        }|rt                               |¦  «         n=# |rt                               |¦  «         w w xY wt                               dd ¦  «        }|}| j        t          j        z  rÔt           	                    t          j
        dt          j        t          j        ¦  «        ¦  «        }t                               ||¦  «         t                               |¦  «         t                               t           t"          z  ¦  «        }	t                               ||	¦  «         t                               |	¦  «         n#| j        t          j        z  rt'          d¦  «        ‚d }	 t)          |¦  «        }t                               ¦   «         }t                               ||t          j        |¦  «        ¦  «         |rt                               |¦  «         n"# |rt                               |¦  «         w w xY w|                      d¬¦  «        }
|
rld }	 t)          |¦  «        }t                               ||¦  «         |rt                               |¦  «         n=# |rt                               |¦  «         w w xY wt                               |d ¦  «         t                               ¦   «         }t                               |t          j        |¦  «        ¦  «        }|dk    rd}n |dk    rd}nt          j        d|›¦  «        ‚d}|skt                               |¦  «        }| j        t          j        k    r#|t>          j         k    s|t>          j!        k    rd}n| j"        s|t>          j#        k    rd}|sºd }	 t           $                    |¦  «        }tK          |¦  «        pd	}t           &                    ¦   «         }t           '                    |t          j        |¦  «        ¦  «         t          j(        |¦  «        }||_)        ||_*        |‚# |rt                               |¦  «         w w xY w	 |rt                               |¦  «         |rt                               |¦  «         d S d S # |rt                               |¦  «         |rt                               |¦  «         w w xY w)
NÚasciiTr   z/VERIFY_CRL_CHECK_LEAF not implemented for macOS)Úbinary_formr   Fz8Unknown result from Security.SecTrustEvaluateWithError: zCertificate verification failed)+rQ   Úencoder   ÚSecPolicyCreateSSLr   r4   Úverify_flagsr5   ÚVERIFY_CRL_CHECK_CHAINrY   r!   r,   rZ   r"   r]   ÚSecPolicyCreateRevocationÚ#kSecRevocationUseAnyAvailableMethodÚ%kSecRevocationRequirePositiveResponseÚVERIFY_CRL_CHECK_LEAFÚNotImplementedErrorrb   ÚSecTrustRefÚSecTrustCreateWithCertificatesÚget_ca_certsÚSecTrustSetAnchorCertificatesÚ
CFErrorRefÚSecTrustEvaluateWithErrorr6   ÚCFErrorGetCoderf   ÚCERT_REQUIREDr/   rE   rD   re   rC   ÚCFErrorCopyDescriptionrV   ÚSecTrustResultTypeÚSecTrustGetTrustResultÚSSLCertVerificationErrorÚverify_messageÚverify_code)ri   rj   rk   rW   ÚpoliciesÚtrustÚcf_errorÚcf_str_hostnameÚ
ssl_policyÚrevocation_policyÚctx_ca_certs_derÚctx_ca_certsÚsec_trust_eval_resultÚ
is_trustedÚcf_error_codeÚcf_error_string_refÚcf_error_messageÚsec_trust_result_typeÚerrs                      r   Ú_verify_peercerts_implr•   j  sT  € ð
 €EØ€HØ€EØ€HðB,ØÐ&Ø"ˆOð>Ý"5°o×6LÒ6LÈWÑ6UÔ6UÑ"VÔ"VÝ%×8Ò8¸¸ÑOÔO
à"ð >Ý"×,Ò,¨_Ñ=Ô=Ð=øøð #ð >Ý"×,Ò,¨_Ñ=Ô=Ð=Ð=ð>øøøõ "×4Ò4°T¸4Ñ@Ô@ˆJàˆØÔ#¥cÔ&@Ñ@ð 	Yå%×:Ò:ÝÔ2ØÝ”^ÔAÑBÔBñô ˆHõ
 ×-Ò-¨h¸
ÑCÔCÐCÝ×$Ò$ ZÑ0Ô0Ð0Ý (× BÒ BÝ3Ý7ñ8ñ!ô !Ðõ ×-Ò-¨hÐ8IÑJÔJÐJÝ×$Ò$Ð%6Ñ7Ô7Ð7Ð7ØÔ%­Ô(AÑAð 	YÝ%Ð&WÑXÔXÐXàˆð	0Ý/°
Ñ;Ô;ˆEõ ×(Ò(Ñ*Ô*ˆEÝ×3Ò3Øx¥¤¨eÑ!4Ô!4ñô ð ð ð 0Ý×(Ò(¨Ñ/Ô/Ð/øøð ð 0Ý×(Ò(¨Ñ/Ô/Ð/Ð/ð0øøøð 0;×/GÒ/GØð 0Hñ 0
ô 0
Ðð ð 		@ØˆLð;Ý:¸:ÑFÔFÝ×6Ò6°u¸lÑKÔKÐKàð ;Ý"×,Ò,¨\Ñ:Ô:Ð:øøð  ð ;Ý"×,Ò,¨\Ñ:Ô:Ð:Ð:ð;øøøõ ×2Ò2°5¸$Ñ?Ô?Ð?å!×,Ò,Ñ.Ô.ˆÝ (× BÒ BØ•6”< Ñ)Ô)ñ!
ô !
Ðð
 ! AÒ%Ð%ØˆJˆJØ" aÒ'Ð'ØˆJˆJå”,ØdÐK`ÐdÐdñô ð ð ˆØð 	"Ý*×9Ò9¸(ÑCÔCˆMð
 Ô&­#Ô*;Ò;Ð;Ø¥Ô!9Ò9Ð9Ø ¥GÔ$DÒDÐDà!

àÔ.ð"à!¥WÔ%CÒCÐCà!
ð ð 	BØ"&ÐðBÝ&4×&KÒ&KÈHÑ&UÔ&UÐ#õ *Ð*=Ñ>Ô>ð 9Ø8ð !õ )1×(CÒ(CÑ(EÔ(EÐ%Ý×/Ò/Ø6œ<Ð(=Ñ>Ô>ñô ð õ Ô2Ð3CÑDÔDØ%5Ô"Ø"/”Ø	øà&ð BÝ"×,Ò,Ð-@ÑAÔAÐAÐAðBøøøð/	Bð6 ð 	/Ý×$Ò$ XÑ.Ô.Ð.Øð 	,Ý×$Ò$ UÑ+Ô+Ð+Ð+Ð+ð	,ð 	,øð ð 	/Ý×$Ò$ XÑ.Ô.Ð.Øð 	,Ý×$Ò$ UÑ+Ô+Ð+Ð+ð	,øøøsh   ŠS =A) ÁS Á)BÂD-S Æ6AH) ÈS È)IÉS É&*J- ÊS Ê-KËD S ÏBQ" Ñ"RÒS Ó;S<rI   )gÚ
contextlibr,   Úplatformr5   Útypingr   r   r   r   r   r   r	   r
   r   Úctypes.utilr   Ú_ssl_constantsr   Úmac_verÚ_mac_versionÚtupleÚmapr*   Úsplitr   r   Ústrr   r   r   ÚBooleanÚCFIndexrA   ÚCFDataÚCFStringÚCFArrayÚCFMutableArrayÚCFErrorÚCFTypeÚCFTypeIDÚ	CFTypeRefÚCFAllocatorRefÚOSStatusr|   Ú	CFDataRefÚCFStringRefÚ
CFArrayRefÚCFMutableArrayRefÚCFArrayCallBacksÚCFOptionFlagsÚSecCertificateRefÚSecPolicyRefrx   r   ÚSecTrustOptionFlagsr\   ÚargtypesÚrestypeÚSecCertificateCopyDatar+   r{   Ú!SecTrustSetAnchorCertificatesOnlyÚSecTrustEvaluaters   rp   ry   r‚   rt   ru   r4   ÚCFGetTypeIDrN   r.   r2   rJ   ÚCFDataGetLengthÚCFDataGetBytePtrÚCFArrayCreaterY   r]   ÚCFArrayGetCountÚCFArrayGetValueAtIndexr~   r€   Úin_dllr!   r"   ÚAttributeErrorÚAnyr;   Úerrcheckr/   ÚbytesrL   rQ   rV   Úlistrb   ÚcontextmanagerÚ
SSLContextÚIteratorrh   r•   rF   rG   r   ú<module>rÊ      sä  ðØ Ð Ð Ð Ø €€€Ø €€€Ø 
€
€
€
Ø €€€ð
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð 
ð %Ð $Ð $Ð $Ð $Ð $à 8Ð 8Ð 8Ð 8Ð 8Ð 8àˆxÔÑ!Ô! !Ô$€ØE˜#˜#˜c <×#5Ò#5°cÑ#:Ô#:Ñ;Ô;Ñ<Ô<Ð ØwÒÐØ
ˆ+ØdÐ7HÈÔ7KÐdÐdÐN_Ð`aÔNbÐdÐdñô ð ð
JSð J¨3ð J°4ð Jð Jð Jð Jð" ˆ:ØÐHñô €ð ØØHñô €ð
 €Ø
€ØÐ Ø	€Ø€Ø
€Ø€Ø
€Ø	€Ø€ØˆGF‰OŒO€	Ø€à€àˆWWÑÔ€
ØˆGF‰OŒO€	ØˆghÑÔ€ØˆWWÑÔ€
ØG˜NÑ+Ô+Ð ØÐ Ø€àG˜HÑ%Ô%Ð ØˆwxÑ Ô €ØˆghÑÔ€ØÐ ØÐ ðy=Ø6DÀiÐ5P€HÔ)Ô2Ø4E€HÔ)Ô1à0AÐ/B€HÔ#Ô,Ø.7€HÔ#Ô+à3;¸XÐ2F€HÔ&Ô/Ø1<€HÔ&Ô.à7BÀJÐ6O€HÔ*Ô3Ø5=€HÔ*Ô2à;FÈÐ:P€HÔ.Ô7Ø9A€HÔ.Ô6à*5°w°wÐ?QÑ7RÔ7RÐ)S€HÔÔ&Ø(0€HÔÔ%à3@°/€HÔ&Ô/Ø1=€HÔ&Ô.à,3°[Ð+A€HÔÔ(Ø*6€HÔÔ'ð 	ØØˆÑÔð8€HÔ+Ô4ð
 7?€HÔ+Ô3ð 	ØˆÐ"Ñ#Ô#ð0€HÔ#Ô,ð /7€HÔ#Ô+à&€HÔØ"4€HÔØ €HÔà*+Ð'Ø,-Ð)à)2¨€NÔÔ%Ø'+€NÔÔ$à+4¨+€NÔÔ'Ø)1€NÔÔ&ð 	ØØð9€NÔ,Ô5ð
 8C€NÔ,Ô4à5@ÐBRÐ4S€NÔ(Ô1Ø3;€NÔ(Ô0ð 	ØØØð	2€NÔ%Ô.ð 17€NÔ%Ô-à,:¸HÀgÐ+N€NÔÔ(Ø*3€NÔÔ'à/8¨k€NÔ"Ô+Ø-4€NÔ"Ô*à09¨{€NÔ#Ô,Ø.6€NÔ#Ô+ð 	Øˆ	ÑÔØØð	-€NÔ Ô)ð ,6€NÔ Ô(ð 	ØØð4€NÔ'Ô0ð
 3D€NÔ'Ô/à2CÀXÐ1N€NÔ%Ô.Ø04€NÔ%Ô-à/9¨l€NÔ"Ô+Ø-4€NÔ"Ô*à6@À'Ð5J€NÔ)Ô2Ø4<€NÔ)Ô1à.8¨\€NÔ!Ô*Ø,3€NÔ!Ô)à6@°\€NÔ)Ô2Ø4?€NÔ)Ô1à)7×)>Ò)>ØÐ-ñ*ô *€NÔ&ð ,;¨8¬?ØÐ/ñ,ô ,€NÔ(ð  )€NÔØ *€NÔØ!,€NÔØ *€NÔÐøàð =ð =ð =Ø
ˆ+Ð1Ñ
2Ô
2¸Ð<ð=øøøð2 ˜Xð 2 ¨&¬*ð 2 ¸F¼Jð 2 È6Ì:ð 2 ð 2 ð 2 ð 2 ðj 4D€Ô 'Ô 0Ø2B€Ô &Ô /Ø+;€Ô Ô (ðð ð ð ð ñ ô ð ð ð ¨9ð ð ð ð ð˜uð ¨ð ð ð ð ð¨ð ¸¸t¹ð ð ð ð ð. t¨E¤{ð Ð7Hð ð ð ð ð< Ôð	7˜CœNð 	7¨v¬¸tÔ/Dð 	7ð 	7ð 	7ñ Ôð	7ð #'ðK,ð K,Ø”ðK,àU”ðK,ð ˜4‘ZðK,ð 
ð	K,ð K,ð K,ð K,ð K,ð K,s   Ä=LQ ÑQ#