python-gnutls-3.0.0/0000755000175000017500000000000012670041246013675 5ustar dandan00000000000000python-gnutls-3.0.0/PKG-INFO0000644000175000017500000000336412670041246015000 0ustar dandan00000000000000Metadata-Version: 1.1 Name: python-gnutls Version: 3.0.0 Summary: Python wrapper for the GnuTLS library Home-page: https://github.com/AGProjects/python-gnutls Author: Dan Pascu Author-email: dan@ag-projects.com License: LGPL Description: Python wrapper for the GnuTLS library This package provides a high level object oriented wrapper around libgnutls, as well as low level bindings to the GnuTLS types and functions via ctypes. The high level wrapper hides the details of accessing the GnuTLS library via ctypes behind a set of classes that encapsulate GnuTLS sessions, certificates and credentials and expose them to python applications using a simple API. The package also includes a Twisted interface that has seamless intergration with Twisted, providing connectTLS and listenTLS methods on the Twisted reactor once imported (the methods are automatically attached to the reactor by simply importing the GnuTLS Twisted interface module). The high level wrapper is written using the GnuTLS library bindings that are made available via ctypes. This makes the wrapper very powerful and flexible as it has direct access to all the GnuTLS internals and is also very easy to extend without any need to write C code or recompile anything. Platform: Platform Independent Classifier: Development Status :: 5 - Production/Stable Classifier: Intended Audience :: Developers Classifier: License :: OSI Approved :: GNU Library or Lesser General Public License (LGPL) Classifier: Operating System :: OS Independent Classifier: Programming Language :: Python Classifier: Topic :: Software Development :: Libraries :: Python Modules python-gnutls-3.0.0/INSTALL0000644000175000017500000000402412667551574014746 0ustar dandan00000000000000 Installation procedure ---------------------- 1. Linux / UNIX Build dependencies: - gcc - python and python-dev (>= 2.7) Runtime dependencies: - libgnutls (>= 3.2.0) - libgnutls dependencies - python (>= 2.7) To build and install python-gnutls run: python setup.py install 2. Mac OS X Build dependencies: - Mac OS X Leopard (10.5) or Snow Leopard (10.6) - Apple Developer Tools (XCode) Runtime dependencies: - libgnutls (>= 3.2.0) - libgnutls dependencies - python (this is already preinstalled on every OS X) Note: libgnutls and its dependencies can be installed from Homebre, MacPorts, Fink or by compiling and installing them from source. To build and install python-gnutls run: python setup.py install 3. Windows This was only tested on Windows XP. Other Windows versions may work, but they were not tested. Build dependencies: - Visual Studio (the version must match the one used to build the python interpreter that will be used. For example the python-2.7 windows binaries from python.org were built with Visual Studio 9) - libpthreads (http://sourceware.org/pthreads-win32) - python and python-dev (>= 2.7) (select to include the development files when installing python) Runtime dependencies: - libgnutls (>= 3.2) - libgnutls dependencies - libpthreads - python (>= 2.7) Before building python-gnutls, copy the pthread header files (pthread.h, sched.h, semaphore.h) to C:\Developer\include\ and the pthread developer libraries (libpthread*.a and pthread*.lib) to C:\Developer\lib\ (create these directories first). To build and install python-gnutls run: python setup.py install In order to run an application based on python-gnutls, make sure that the DLLs mentioned in the runtime dependencies (pthread*.dll, libgnutls*.dll, etc) are somewhere in %PATH% 4. Cygwin Build dependencies: - cygwin (>= 1.7.1) - gcc - python and python-dev (>= 2.7) Runtime dependencies: - libgnutls (>= 3.2.0) - libgnutls dependencies - python (>= 2.7) To build and install python-gnutls run: python setup.py install python-gnutls-3.0.0/examples/0000755000175000017500000000000012670041246015513 5ustar dandan00000000000000python-gnutls-3.0.0/examples/server.py0000755000175000017500000000516412661627741017416 0ustar dandan00000000000000#!/usr/bin/env python """Synchronous server that handles each connection in a thread""" import sys import os import socket from threading import Thread from gnutls.crypto import * from gnutls.connection import * script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) key = X509PrivateKey(open(certs_path + '/valid.key').read()) ca = X509Certificate(open(certs_path + '/ca.pem').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) cred = X509Credentials(cert, key, [ca], [crl]) context = TLSContext(cred) sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1) ssf = ServerSessionFactory(sock, context) ssf.bind(('0.0.0.0', 10000)) ssf.listen(100) class SessionHandler(Thread): def __init__(self, session, address): Thread.__init__(self, name='SessionHandler') self.setDaemon(True) self.session = session self.address = address def run(self): session = self.session try: session.handshake() peer_cert = session.peer_certificate try: peer_name = peer_cert.subject except AttributeError: peer_name = 'Unknown' print '\nNew connection from:', peer_name print 'Protocol: ', session.protocol print 'KX algorithm: ', session.kx_algorithm print 'Cipher: ', session.cipher print 'MAC algorithm:', session.mac_algorithm print 'Compression: ', session.compression session.verify_peer() cred.check_certificate(peer_cert, cert_name='peer certificate') except Exception, e: print 'Handshake failed:', e else: while True: try: buf = session.recv(1024) if not buf: print "Peer has closed the session" break else: if buf.strip().lower() == 'quit': print "Got quit command, closing connection" session.bye() break session.send(buf) except Exception, e: print "Error in reception: ", e break try: session.shutdown() except: pass session.close() while True: session, address = ssf.accept() handler = SessionHandler(session, address) handler.start() python-gnutls-3.0.0/examples/twisted-server.py0000755000175000017500000000361412661627741021075 0ustar dandan00000000000000#!/usr/bin/env python """Asynchronous server using Twisted with GNUTLS""" import sys import os from twisted.internet.protocol import Factory from twisted.protocols.basic import LineOnlyReceiver from twisted.internet.error import CannotListenError, ConnectionDone from twisted.internet import reactor from gnutls.constants import * from gnutls.crypto import * from gnutls.errors import * from gnutls.interfaces.twisted import TLSContext, X509Credentials class EchoProtocol(LineOnlyReceiver): def connectionMade(self): session = self.transport.socket try: peer_name = session.peer_certificate.subject except AttributeError: peer_name = 'Unknown' print '\nNew connection from: %s' % peer_name print 'Protocol: %s' % session.protocol print 'KX algorithm: %s' % session.kx_algorithm print 'Cipher: %s' % session.cipher print 'MAC algorithm: %s' % session.mac_algorithm print 'Compression: %s' % session.compression def lineReceived(self, line): if line == 'quit': self.transport.loseConnection() return self.sendLine(line) def connectionLost(self, reason): if reason.type != ConnectionDone: print "Connection was lost: %s" % reason.value class EchoFactory(Factory): protocol = EchoProtocol script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) key = X509PrivateKey(open(certs_path + '/valid.key').read()) ca = X509Certificate(open(certs_path + '/ca.pem').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) cred = X509Credentials(cert, key, [ca], [crl]) cred.verify_peer = True context = TLSContext(cred, session_parameters="NORMAL:+COMP-DEFLATE") reactor.listenTLS(10000, EchoFactory(), context) reactor.run() python-gnutls-3.0.0/examples/crypto.py0000755000175000017500000000635211131676706017424 0ustar dandan00000000000000#!/usr/bin/env python """Cryptographic examples using python-gnutls""" import sys import os import time from gnutls.crypto import * script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) print '' print 'CRL certs/crl.pem:' print '------------------' print 'CRL issuer:' print ' CN = %s' % crl.issuer.CN # or crl.issuer.common_name print ' O = %s' % crl.issuer.O # or crl.issuer.organization print ' OU = %s' % crl.issuer.OU # or crl.issuer.organization_unit print ' C = %s' % crl.issuer.C # or crl.issuer.country print ' ST = %s' % crl.issuer.ST # or crl.issuer.state print ' L = %s' % crl.issuer.L # or crl.issuer.locality print ' EMAIL = %s' % crl.issuer.EMAIL # or crl.issuer.email print 'CRL version:', crl.version print 'CRL count: ', crl.count print '' print 'Certificate certs/valid.crt:' print '----------------------------' print 'Cert subject:' print ' CN = %s' % cert.subject.CN # or cert.subject.common_name print ' O = %s' % cert.subject.O # or cert.subject.organization print ' OU = %s' % cert.subject.OU # or cert.subject.organization_unit print ' C = %s' % cert.subject.C # or cert.subject.country print ' ST = %s' % cert.subject.ST # or cert.subject.state print ' L = %s' % cert.subject.L # or cert.subject.locality print ' EMAIL = %s' % cert.subject.EMAIL # or cert.subject.email print 'Cert issuer:' print ' CN = %s' % cert.issuer.CN # or cert.issuer.common_name print ' O = %s' % cert.issuer.O # or cert.issuer.organization print ' OU = %s' % cert.issuer.OU # or cert.issuer.organization_unit print ' C = %s' % cert.issuer.C # or cert.issuer.country print ' ST = %s' % cert.issuer.ST # or cert.issuer.state print ' L = %s' % cert.issuer.L # or cert.issuer.locality print ' EMAIL = %s' % cert.issuer.EMAIL # or cert.issuer.email print 'Cert serial: ', cert.serial_number print 'Cert version: ', cert.version print 'Cert activation:', time.ctime(cert.activation_time) print 'Cert expiration:', time.ctime(cert.expiration_time) print 'Cert is revoked:', crl.is_revoked(cert) print '' cert = X509Certificate(open(certs_path + '/revoked.crt').read()) print 'Certificate certs/revoked.crt:' print '------------------------------' print 'Cert subject:' print ' CN = %s' % cert.subject.common_name # here we use long names print ' O = %s' % cert.subject.organization print ' OU = %s' % cert.subject.organization_unit print ' C = %s' % cert.subject.country print ' ST = %s' % cert.subject.state print ' L = %s' % cert.subject.locality print ' EMAIL = %s' % cert.subject.email print 'Cert issuer:' print ' CN = %s' % cert.issuer.common_name print ' O = %s' % cert.issuer.organization print ' OU = %s' % cert.issuer.organization_unit print ' C = %s' % cert.issuer.country print ' ST = %s' % cert.issuer.state print ' L = %s' % cert.issuer.locality print ' EMAIL = %s' % cert.issuer.email print 'Cert serial: ', cert.serial_number print 'Cert version: ', cert.version print 'Cert activation:', time.ctime(cert.activation_time) print 'Cert expiration:', time.ctime(cert.expiration_time) print 'Cert is revoked:', crl.is_revoked(cert) print '' python-gnutls-3.0.0/examples/client.py0000755000175000017500000000151112661627741017356 0ustar dandan00000000000000#!/usr/bin/env python """Synchronous client using python-gnutls""" import sys import os import socket from gnutls.crypto import * from gnutls.connection import * script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) key = X509PrivateKey(open(certs_path + '/valid.key').read()) ca = X509Certificate(open(certs_path + '/ca.pem').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) cred = X509Credentials(cert, key) context = TLSContext(cred) sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) session = ClientSession(sock, context) session.connect(('localhost', 10000)) session.handshake() session.send("test\r\n") buf = session.recv(1024) print 'Received: ', buf.rstrip() session.bye() session.close() python-gnutls-3.0.0/examples/certs/0000755000175000017500000000000012670041246016633 5ustar dandan00000000000000python-gnutls-3.0.0/examples/certs/valid.key0000644000175000017500000000156710604443321020450 0ustar dandan00000000000000-----BEGIN RSA PRIVATE KEY----- MIICWwIBAAKBgQCmG/QS3GuCd8rM8kWjAvs7ySoXjrETmBTfcCHPhABTuUVBRBUU PwIX8NgJmPtW50uSu7TFfCeeHKByNETqIbJExFysdYhfuuyq3s397X1GNMxj4Uxm lydjpEXgJmUL42uCIVsQU0ARatW26Q6TsvwyduJwRICaD01C36hseSFaCQIDAQAB AoGAC6qs8uIuXuSBBvIBOBjOgn13il4IS+MDnEno5gVUbIz3s0TP4jMmt32//rSS +qCWK0EpyjEVK0LBdiP7ryIcviC3EMU33SErqSPdpJN/UOYePn5CX45d30OyDL/J 1ai4AsQbG9twe5cOJae8ZLa76O4Q82MTxN2agrSoV41lcu0CQQDZID9NbHioGBPE cgwzwgTAWXc+sdHKsEJERxCPGyqChuFwFjgTdl0MQms3mclAOUq/23j6XYHkjG7o YS3FcBaTAkEAw9lnMKN5kF3/9xxZxmr62qm6RlgvpdgW4zs9m7SVGSq7fio07i4z a/5RGC0Tr/WzfjHD1+SyUEXmT1DMl7eycwJAQUX2gdoYM8B5QNdgX7b2IrVCqfBf N2XhphEPI1ZxYygVYdLsLL2qn2LgRKjQ3aPbmu3p4qp1wDWPqgB8+BwITQJAP1nA fkQy21b8qCM8iukp8bc7MOvvpbarWJ9eA1K7c+OVuG7Qpka9jW47LxXNq3pPsD9K uTgZ0ct6fyeEtoLOLwJAM1Eeopu3wSkNbf2p4TbhePc5ASZRR2c1GZZQE4GIYamB yEk53aQ5MDpHLffWdWI7vZ449s/AHwrN6txlu/+VTQ== -----END RSA PRIVATE KEY----- python-gnutls-3.0.0/examples/certs/revoked.crt0000644000175000017500000000406210604443163021005 0ustar dandan00000000000000-----BEGIN CERTIFICATE----- MIIF4DCCA8igAwIBAgIBAjANBgkqhkiG9w0BAQUFADCBqzELMAkGA1UEBhMCTkwx FjAUBgNVBAgTDU5vb3JkLUhvb2xhbmQxEDAOBgNVBAcTB0hhYXJsZW0xFDASBgNV BAoTC0FHIFByb2plY3RzMRQwEgYDVQQLEwtEZXZlbG9wbWVudDEgMB4GA1UEAxMX QUcgUHJvamVjdHMgRGV2ZWxvcG1lbnQxJDAiBgkqhkiG9w0BCQEWFWRldmVsQGFn LXByb2plY3RzLmNvbTAeFw0wNzA0MDMxMjExMzFaFw0xNzAzMzExMjExMzFaMIGm MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9vbGFuZDEQMA4GA1UEBxMH SGFhcmxlbTEUMBIGA1UEChMLQUcgUHJvamVjdHMxFDASBgNVBAsTC0RldmVsb3Bt ZW50MRwwGgYDVQQDExNSZXZva2VkIGNlcnRpZmljYXRlMSMwIQYJKoZIhvcNAQkB FhR0ZXN0QGFnLXByb2plY3RzLmNvbTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkC gYEA+2k1ZYLmqLlogixTwVfZUw4WvfWjWXfTH0MJx4WynG7Oc7iLUw9KOCJaxOY+ utE2etfRlVj4/SQ5JjgmkXuHfuaKpXXpWz7+na+YZqTcMs1cajGQ8sfdzQYKTlKw vyHjAxDPCxG7HtXubiwkqqimABpD4leloT/cQNBfmNGCGU0CAwEAAaOCAZQwggGQ MAkGA1UdEwQCMAAwEQYJYIZIAYb4QgEBBAQDAgZAMCsGCWCGSAGG+EIBDQQeFhxU aW55Q0EgR2VuZXJhdGVkIENlcnRpZmljYXRlMB0GA1UdDgQWBBSuCSZulRupp+T6 AuKl/0OYvpPBbzCB4AYDVR0jBIHYMIHVgBSWd0/MJQO1y0Mzp9ee96IBwwg4+qGB saSBrjCBqzELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvb2xhbmQxEDAO BgNVBAcTB0hhYXJsZW0xFDASBgNVBAoTC0FHIFByb2plY3RzMRQwEgYDVQQLEwtE ZXZlbG9wbWVudDEgMB4GA1UEAxMXQUcgUHJvamVjdHMgRGV2ZWxvcG1lbnQxJDAi BgkqhkiG9w0BCQEWFWRldmVsQGFnLXByb2plY3RzLmNvbYIJAPV2qch7qoEZMCAG A1UdEgQZMBeBFWRldmVsQGFnLXByb2plY3RzLmNvbTAfBgNVHREEGDAWgRR0ZXN0 QGFnLXByb2plY3RzLmNvbTANBgkqhkiG9w0BAQUFAAOCAgEApOy1uTOLlzZX4aMg hy+k7ginbqRWLgZNSvgbUAs1oIiLxB5DnWr7+S6eOw6ao4xaXAUdffL0RjlI30DQ hS/nWbHGePG65E2qFIPjnielEORrp5xI5mYbz221Khs9A51r/UIUzCPcRgKzZmpH K2o0YApw61JWIl7LCsnoBPfOexe5GPJBVJDvOkdrqL/DdH8YrMyPpbawe/q5yh+5 aYvwdKr9q6RL+WatOXKh4vQ1kcB8g7RGsAG8i2+hUGHTpyE2sJzNnsf/jGYeqPv/ lTXjWOgKpdoIwjOetwpY0PXnnV4UESTQ9HA54pIv7wrB+Jfj38wD9DTk4YVlKcVc nSJpNpZvj336G8fdypUOufGLH9KuYMOMv/6KA79gAicFbOsbzbZwDnZ5+zDqZMTx F/k8+X+ofArJrva0jw8xe6LAwmxwRLVfurVZU1edqCh8LD+oV84V4wlJGYcMDqi5 EaIXA0oOn1pUQEhnv/yTL6OH/N8BtpyC055Uw/rrU4N/N1umlV1ePdGh6ntyECSY T8ZAziBUyzdkE3EpHuR15Dx0u3ah7uEBKejxUUYWs2mlEO5nxQCuGrtMSkv5+Y8g duOXKuAGfQXMOBO8njGEwfInHKEQeeiPeZZMXjm3yuY/zyMSdI7wDgmvZzJhKtuK 4eds2Jp+RGmYDlNnq1ZazlAz3kc= -----END CERTIFICATE----- python-gnutls-3.0.0/examples/certs/crl.pem0000644000175000017500000000215110604443450020113 0ustar dandan00000000000000-----BEGIN X509 CRL----- MIIDGjCCAQICAQEwDQYJKoZIhvcNAQEFBQAwgasxCzAJBgNVBAYTAk5MMRYwFAYD VQQIEw1Ob29yZC1Ib29sYW5kMRAwDgYDVQQHEwdIYWFybGVtMRQwEgYDVQQKEwtB RyBQcm9qZWN0czEUMBIGA1UECxMLRGV2ZWxvcG1lbnQxIDAeBgNVBAMTF0FHIFBy b2plY3RzIERldmVsb3BtZW50MSQwIgYJKoZIhvcNAQkBFhVkZXZlbEBhZy1wcm9q ZWN0cy5jb20XDTA3MDQwMzEyMjMwNFoXDTE3MDMzMTEyMjMwNFowIjAgAgECFw0w NzA0MDMxMjIxNTlaMAwwCgYDVR0VBAMKAQEwDQYJKoZIhvcNAQEFBQADggIBAIoF 8pCAPnWt1kpao/TXkR80/ZOyrdKRAyo+hYejUJw41lxsWey4NUEwbWp9pnCWsL3s DMrLt948PRzIqMhI/9zXhl4+ipuuWSTJAb4usMh3CG0vJsexzE1e8SMAnoJdE3Fu 5M2xCmd8loCaq3/oA05Ovv8Kc1KwTBiJUNQNvVEMhw9Wsn3mrFk2mWNlLa0vnANI DlO9HFZJOrw0ipco03ACDxTGGQiNxw6Yjw+OCqMaV3AAE9GvE8VXy3PgeaDgvffM 9e71+6TC5j6S0S5c8P83NQpAAbYatQh5/McPd8b8o9ailj/rGt1krYxiLSUb12NE yy6EmybdLJmat9nvMAlpbxtzdRQdX0E9aDQaK4J388OkMiT6P83ykEKT7qCloEk6 vkAebqCexA/dqv+7+AsNe+h18iHB+aZxv0xU3NS1Te4X902AUj2n4UGtiOUELMgJ leEN8Nh5R9a8/OsXQVLqqeMg6QmTjP3Y1PYNv4GSnJNAYMhEUPz19tC0E5kR4cLQ Y7csgROnfo5EX7byeQK1PjSGTMOP5KMgdH1YpxSg43uuTk12ZJEqKYeIXa50KYCA 6OurC+2fOWQQogRnRlx94lOInfKeTlN7F09sMjBzIA+m9sKahKsZ00rHxuvcjP/e ZN+qO9H56VmfcOefMRLRPSPwuwtQdR3udI/QyL4D -----END X509 CRL----- python-gnutls-3.0.0/examples/certs/revoked.key0000644000175000017500000000157310604443273021013 0ustar dandan00000000000000-----BEGIN RSA PRIVATE KEY----- MIICXgIBAAKBgQD7aTVlguaouWiCLFPBV9lTDha99aNZd9MfQwnHhbKcbs5zuItT D0o4IlrE5j660TZ619GVWPj9JDkmOCaRe4d+5oqldelbPv6dr5hmpNwyzVxqMZDy x93NBgpOUrC/IeMDEM8LEbse1e5uLCSqqKYAGkPiV6WhP9xA0F+Y0YIZTQIDAQAB AoGBANKqwjehjK5tTollo3krp8vUznG2134szhgwEI3EFnrGzvBg/z5GXabUAsNj O8VHciNVnSVMPLfCFrFT892MaWffkEYwkyrkX+VUZYlRoMeNE/xT4BzPFchHg1rw I8rwFRWZumHB0AhKzg7N015/cxNar2aIKtU5m833NrN9K3vxAkEA/7yFJLsAuPHT scqPMXQ0XW/7P74lSFYHtbLOihVr/4myzLqpwuUvL55q1Ixi4AF/UHZ29pLilbDQ jQIKfT6K9wJBAPurjBJ8E0unfg+UYhx7/ws718uiDqJ7E0nC37RTOO+qyqZF4687 B0yOIt/MbwDRUQttArLoNIv+nSs7yvzCiNsCQQDEZWjyzlI9tinXTjItzoowf8E6 MLK9HKSLG6iWTuFDu+H+bBPXQt67+TMdzDpawYuepXuy3Rb50nI2+CxKBu/9AkEA 8/SOizyK18M8h42mrUXlLNaNkG8/EHGNeOrWPs6NWoWMezE0TCBEKwl89MQOthQx I4pAG3zLswjVAZusYOeSEQJAdHhBRhk8EHgo/rMITeL0sGRH3nT82oPOJIPLDoDQ 1T8aRVTvTtSsBXSadBw+cwmfgl2Z5GCmAmFoRS6bZqZCHQ== -----END RSA PRIVATE KEY----- python-gnutls-3.0.0/examples/certs/valid.crt0000644000175000017500000000405610604443145020450 0ustar dandan00000000000000-----BEGIN CERTIFICATE----- MIIF3jCCA8agAwIBAgIBATANBgkqhkiG9w0BAQUFADCBqzELMAkGA1UEBhMCTkwx FjAUBgNVBAgTDU5vb3JkLUhvb2xhbmQxEDAOBgNVBAcTB0hhYXJsZW0xFDASBgNV BAoTC0FHIFByb2plY3RzMRQwEgYDVQQLEwtEZXZlbG9wbWVudDEgMB4GA1UEAxMX QUcgUHJvamVjdHMgRGV2ZWxvcG1lbnQxJDAiBgkqhkiG9w0BCQEWFWRldmVsQGFn LXByb2plY3RzLmNvbTAeFw0wNzA0MDMxMjEwNTFaFw0xNzAzMzExMjEwNTFaMIGk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9vbGFuZDEQMA4GA1UEBxMH SGFhcmxlbTEUMBIGA1UEChMLQUcgUHJvamVjdHMxFDASBgNVBAsTC0RldmVsb3Bt ZW50MRowGAYDVQQDExFWYWxpZCBjZXJ0aWZpY2F0ZTEjMCEGCSqGSIb3DQEJARYU dGVzdEBhZy1wcm9qZWN0cy5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB AKYb9BLca4J3yszyRaMC+zvJKheOsROYFN9wIc+EAFO5RUFEFRQ/Ahfw2AmY+1bn S5K7tMV8J54coHI0ROohskTEXKx1iF+67Krezf3tfUY0zGPhTGaXJ2OkReAmZQvj a4IhWxBTQBFq1bbpDpOy/DJ24nBEgJoPTULfqGx5IVoJAgMBAAGjggGUMIIBkDAJ BgNVHRMEAjAAMBEGCWCGSAGG+EIBAQQEAwIGQDArBglghkgBhvhCAQ0EHhYcVGlu eUNBIEdlbmVyYXRlZCBDZXJ0aWZpY2F0ZTAdBgNVHQ4EFgQUDN4YV9HDpJrHcbzV 8Ayu0Lymh2AwgeAGA1UdIwSB2DCB1YAUlndPzCUDtctDM6fXnveiAcMIOPqhgbGk ga4wgasxCzAJBgNVBAYTAk5MMRYwFAYDVQQIEw1Ob29yZC1Ib29sYW5kMRAwDgYD VQQHEwdIYWFybGVtMRQwEgYDVQQKEwtBRyBQcm9qZWN0czEUMBIGA1UECxMLRGV2 ZWxvcG1lbnQxIDAeBgNVBAMTF0FHIFByb2plY3RzIERldmVsb3BtZW50MSQwIgYJ KoZIhvcNAQkBFhVkZXZlbEBhZy1wcm9qZWN0cy5jb22CCQD1dqnIe6qBGTAgBgNV HRIEGTAXgRVkZXZlbEBhZy1wcm9qZWN0cy5jb20wHwYDVR0RBBgwFoEUdGVzdEBh Zy1wcm9qZWN0cy5jb20wDQYJKoZIhvcNAQEFBQADggIBABCal7eKH7K5UmMt2CRh xjLdpLfo2d83dCSvAerabfyLYuSE4qg4pP6x1P3vBGFVuMc504AF+TwZIOLWQ47U b0NbzNi49NGPKjCUsjZiAhGE9SBjiac2xZXUW7UytkVlboyeqKn3Tc9rMT+THd/y wJj5Nqz2vcAcJ1LSpKs/c+NFE3KX+gdaiQtkgUZfkGBz2N6gvXn6r6w1sY/j8Gdw wuVXHv2pbM2zkhUFIFJbuT/3AEQlM2sqk7fVEHlm9cLOtzHsoBVo0pnSw/8mcl5J Z6oss51eR8zLVBhU3XrKTbammHv8uZ2vawRKuUR2Ot2RfINAPdwiW6r61ugBj/ux HGTmY8uO1Zx8dpNS/cC+HtjTKqD2zaBa6dX+6USf+4jgrVismMGAtUCX7IlwjNYV /p5TiwovA5p+xC2KWb9d0vTr8pGHV6vyDaE5Ba0jLfEjkT6b4MbZmWanUDUkYHuy P31NTgUPrIiU83bKfBlQZbS5YsyspdJQBzuGuon68Bw/ULpfERdRlipeTpkDhUn3 gAAS0iLwgPybw8d9/d16nKPCdtSjDBvOUmMLPc0FqggvSGeFkkDn5hiN6eJ4DgTA Ze5X9kpc57dV2SvA1eqPCkmA8pZfPWaJtwf5AiiOzhGUAAx4+4hXyRWULIJXNCcD 175SpToDKAei7ZSJfaiqPU/T -----END CERTIFICATE----- python-gnutls-3.0.0/examples/certs/ca.pem0000644000175000017500000000512210604442215017715 0ustar dandan00000000000000-----BEGIN CERTIFICATE----- MIIHcTCCBVmgAwIBAgIJAPV2qch7qoEZMA0GCSqGSIb3DQEBBQUAMIGrMQswCQYD VQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9vbGFuZDEQMA4GA1UEBxMHSGFhcmxl bTEUMBIGA1UEChMLQUcgUHJvamVjdHMxFDASBgNVBAsTC0RldmVsb3BtZW50MSAw HgYDVQQDExdBRyBQcm9qZWN0cyBEZXZlbG9wbWVudDEkMCIGCSqGSIb3DQEJARYV ZGV2ZWxAYWctcHJvamVjdHMuY29tMB4XDTA3MDQwMzEyMTAwOFoXDTI3MDMyOTEy MTAwOFowgasxCzAJBgNVBAYTAk5MMRYwFAYDVQQIEw1Ob29yZC1Ib29sYW5kMRAw DgYDVQQHEwdIYWFybGVtMRQwEgYDVQQKEwtBRyBQcm9qZWN0czEUMBIGA1UECxML RGV2ZWxvcG1lbnQxIDAeBgNVBAMTF0FHIFByb2plY3RzIERldmVsb3BtZW50MSQw IgYJKoZIhvcNAQkBFhVkZXZlbEBhZy1wcm9qZWN0cy5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC1OQihc1t/UTcwZCEcz74t8nmzw6osCW7depcR lPt7KCzamvBu+l/h5j5ONP3SJARCyoVcimMwgjB8NJGBkXCv8AOg4VXkxyfVI8/f wm5STPZc2zg5ByPCxyrOn/QBtd787moSk8xfO59qHDfyGnhYOvLIJnwZFoXcnO6/ KKd9RljiEI7+aG0uziYRoqzn1EC9UswAPkUOz/YwwBCvquoH+1IeYQyOxzAfkzAc lf7mw8sHgl9F//jFgUUa+tV3oj/ZSgzEA5PtbT4uh8LZlaTDDjfgghFfTF2wKf3u yMQWQ3kfnkaBEklRrx5hOPFoeqmnNwJGPxXWPoi6T/B+hNTtzpX1IzNTpz4AD+Vm s2iFRc3CZvKSpq/+QvylPElWUXD5haPzjv7TFyvAvn7bIOjs8czhqD3ten9RbMBa 0AvQxr4m7KqeuOs0QdeiB74bf0FYWtIjleDJn84yFTQao7zCUEnXk+ib5dvBYGkR j1gxNUzmmbrDb000i+mEE19hpcJ1zHOitBVoe/uECUo9Lvbf+jlRBHm+XM24POUk cQD6TT37Z4gv7sVbjC3IljxZzxMxuC/gfkVygxmuDRFzIdwOWlbn1X/YhyrLGhBw nkfw3Z+fuHHKwBaov16Sc7eZSEgrzkG0KtmeOjfxeVNFVwhcTXeIRbUw1Be/AeZA DgfrFwIDAQABo4IBlDCCAZAwHQYDVR0OBBYEFJZ3T8wlA7XLQzOn1573ogHDCDj6 MIHgBgNVHSMEgdgwgdWAFJZ3T8wlA7XLQzOn1573ogHDCDj6oYGxpIGuMIGrMQsw CQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9vbGFuZDEQMA4GA1UEBxMHSGFh cmxlbTEUMBIGA1UEChMLQUcgUHJvamVjdHMxFDASBgNVBAsTC0RldmVsb3BtZW50 MSAwHgYDVQQDExdBRyBQcm9qZWN0cyBEZXZlbG9wbWVudDEkMCIGCSqGSIb3DQEJ ARYVZGV2ZWxAYWctcHJvamVjdHMuY29tggkA9XapyHuqgRkwDwYDVR0TAQH/BAUw AwEB/zARBglghkgBhvhCAQEEBAMCAQYwCQYDVR0SBAIwADArBglghkgBhvhCAQ0E HhYcVGlueUNBIEdlbmVyYXRlZCBDZXJ0aWZpY2F0ZTAgBgNVHREEGTAXgRVkZXZl bEBhZy1wcm9qZWN0cy5jb20wDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3DQEBBQUA A4ICAQBkd1PtA3yYKZKtZz2xx3movWISQXsa6IfYxwlZGdL72catyuilcVCsPAD7 UqUDRp/EyKZe2xN8vQm9yIBfA8fCnI/0nvSKpuPgYDOCKufesUiOkPVtVeOshXsC QWQilM7o8oDpqCaZ84y853gdGMJaNMjctc7GzFOWJf7Bon2dYMWm/1muCWuBUMBq PUJG5OaYrGU1E/pWntdqIFS9b+89q+tUd5OiGlz8OuXB7m0gtprj2VA+3lAc8QqZ 3FVCojhOLPKpe417BfgmHHA7233/5ARhmqVoEa791GpYFK/dV4tVLZcPxRF5+9QH skSa80IVDOBqCZsBHb59DCnlZieG3CC3s7ddtPzwJ3zX3eBLnZ1EKMquSbEvAvI+ tpdGSKHRXEZ/3M5b0FyKgBd+MBMExyupPTY+Fkhp1BkuCu6jH6OTBGqkFWU+9Onq q79g3jYa3kqJFeK/k8L6Akl8jb8yX18hZIs2JiIZfmB3911OU6/rFWt/BRLLLYk/ RfGa/BtMaSVFzXNTcUE9odCr6Y4DF801lXr6npn19/llPHGArAvyZ7MsrLNcgXKv dIg/KCqHxd9ZhdW9p5ySfn0xw9j7F1KA6G0qRMQAOFbkVcCkJgyYIjtTSqTmL7IO jd/OMQHcE/Tjx+zTGHGE+lqLdOG3JmyPtu5Baz490jIyxkkD3Q== -----END CERTIFICATE----- python-gnutls-3.0.0/examples/twisted-client.py0000755000175000017500000000306512661627741021045 0ustar dandan00000000000000#!/usr/bin/env python """Asynchronous client using Twisted with GNUTLS""" import sys import os from twisted.internet.error import ConnectionDone from twisted.internet.protocol import ClientFactory from twisted.protocols.basic import LineOnlyReceiver from twisted.internet import reactor from gnutls.constants import * from gnutls.crypto import * from gnutls.errors import * from gnutls.interfaces.twisted import TLSContext, X509Credentials class EchoProtocol(LineOnlyReceiver): def connectionMade(self): self.sendLine('echo') def lineReceived(self, line): print 'received: %s' % line self.transport.loseConnection() def connectionLost(self, reason): if reason.type != ConnectionDone: print "connection was lost: %s" % reason.value reactor.stop() class EchoFactory(ClientFactory): protocol = EchoProtocol def clientConnectionFailed(self, connector, err): print "connection failed: %s" % err.value reactor.stop() script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) key = X509PrivateKey(open(certs_path + '/valid.key').read()) ca = X509Certificate(open(certs_path + '/ca.pem').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) cred = X509Credentials(cert, key, [ca]) cred.verify_peer = True context = TLSContext(cred, session_parameters="NORMAL:-COMP-ALL:+COMP-DEFLATE:+COMP-NULL") reactor.connectTLS('localhost', 10000, EchoFactory(), context) reactor.run() python-gnutls-3.0.0/examples/twisted-green-client.py0000755000175000017500000000171311777553201022135 0ustar dandan00000000000000#!/usr/bin/env python """Asynchronous client using Twisted with GNUTLS""" import sys import os from twisted.internet import reactor from eventlet.twistedutil.protocol import GreenClientCreator from gnutls.constants import * from gnutls.crypto import * from gnutls.errors import * from gnutls.interfaces.twisted import X509Credentials script_path = os.path.realpath(os.path.dirname(sys.argv[0])) certs_path = os.path.join(script_path, 'certs') cert = X509Certificate(open(certs_path + '/valid.crt').read()) key = X509PrivateKey(open(certs_path + '/valid.key').read()) ca = X509Certificate(open(certs_path + '/ca.pem').read()) crl = X509CRL(open(certs_path + '/crl.pem').read()) cred = X509Credentials(cert, key, [ca]) cred.verify_peer = True try: conn = GreenClientCreator(reactor).connectTLS('localhost', 10000, cred) conn.write('echo\r\n') print "received: %s" % conn.recv().rstrip() conn.loseConnection() except CertificateError, e: print e python-gnutls-3.0.0/examples/README0000644000175000017500000000130410604543340016366 0ustar dandan00000000000000 This directory holds some examples of using python-gnutls. - An example of writing a synchronous client and server using the ClientSession and ServerSession classes from python-gnutls is given in client.py and server.py - An example of writing an asynchronous client and server using the python-gnutls twisted interface is given in twisted-client.py and twisted-server.py - An example of working with X509 certificates and their attributes as well as using a CRL to check their revocation is in crypto.py To run the examples without installing python-gnutls, run the following command prior to trying the examples (after python-gnutls was built): export PYTHONPATH=/path/to/python-gnutls python-gnutls-3.0.0/ChangeLog0000644000175000017500000001466612667551574015504 0ustar dandan00000000000000Changes in version 3.0.0 ------------------------ * Fixed check for OpenPGP support * Don't force the reactor type in test scripts * Support GnuTLS 3.4 * Refactor passing parameters to Session objects * Added __info__ module with package details * Minor improvements to the Debian packaging * Updated installation instructions * Fix tests with latest python-application Changes in version 2.0.1 ------------------------ * Initialize default cipher priorities on Session Changes in version 2.0.0 ------------------------ * Swtich to GnuTLS 3 (>= 3.1.4) * Added gnutls_certificate_verify_peers3 * Add dependency on libgnutls * Remove no longer needed workaround for ctypes * Avoid sending empty data to peer * Add count command line option to tc-openssl * Bumped Debian Standards-Version * Only build Debian package for Python >= 2.7 Changes in version 1.2.5 ------------------------ * Fixed initializing libgcrypt * Enhanced logging in example scripts Changes in version 1.2.4 ------------------------ * Fixed compatibility with twisted 11.1.0 for TLSServer as well Changes in version 1.2.3 ------------------------ * Always use the gnutls library with the requested version * Fixed issue with dlopen ignoring changes to LD_LIBRARY_PATH after launch * Fixed the twisted interface to work with changes in twisted 11.1.0 * Removed unused imports and variables * Allow specifying the server session class in TLSPort and reactor.listenTLS Changes in version 1.2.2 ------------------------ * Fixed compatibility with libgnutls 2.11 * Bumped debian standards version to 3.9.2 * Reworked debian packaging Changes in version 1.2.1 ------------------------ * Removed no longer needed dependencies from Build-Depends * Add the current directory to the Windows search path * Refactored error handling code to improve robustness * Allow extension to be build with mingw on windows * Use the system path separator when building the list of packages * Only load SRP functions from libgnutls if available * Fixed compatibility with Twisted 11.0 * Included support for more protocols, ciphers and MAC algorithms * Added export methods on X509Certificate, X509PrivateKey and X509CRL * Bumped Debian standards version to 3.9.1 * Added debian source format file Changes in version 1.2.0 ------------------------ * Fixed threading issue with ctypes older than 1.0.3 * Removed compile time dependency on gnutls and reorganized library code * Improved finding the gnutls library at runtime * Fixed the shutdown procedure in examples/server.py * Remove unneeded shutdown call from examples/client.py * Made examples/server.py threaded * Simplified windows build procedure * Added support for cygwin * Improved error handling * Added INSTALL file * Bumped debian standards version to 3.8.3 Changes in version 1.1.9 ------------------------ * Made loseConnection signature match the corresponding one from twisted * Bumped debian standards version to 3.8.2 * Fixed lintian warning about missing misc:Depends dependency Changes in version 1.1.8 ------------------------ * Workaround for changed tcp.Server.__init__ signature in twisted 8.2.0 * Fixed DeprecationWarning when running with python2.6 or newer Changes in version 1.1.7 ------------------------ * Updated debian build dependency to libgnutls-dev 2.4.1 or newer * Use the default python interpreter instead of /usr/bin/python in example, test and setup scripts * Improved detection of gnutls libraries by using libgnutls-config * Fixed gnutls library location for Mac OSX installations Changes in version 1.1.6 ------------------------ * Require libgnutls version 2.4.1 or higher. Changes in version 1.1.5 ------------------------ * Added server name extension support. * Fixed 64-bit issues with size_t and ssize_t. * Require libgnutls version 2.2.2 or higher. Changes in version 1.1.4 ------------------------ * Better integration with twisted. The TLSClient and TLSServer classes now declare that they implement ISSLTransport. Changes in version 1.1.3 ------------------------ * Better version headers for changelog entries. * Check if C module initialization failed. Changes in version 1.1.2 ------------------------ * Added LICENSE file and updated copyright notices to reference it. * Only included the relevant examples in the source distribution. * Avoid multiple splits on name/value pairs in X509Name. Changes in version 1.1.1 ------------------------ * Removed a circular reference manifesting on handshake failures. Changes in version 1.1.0 ------------------------ * Send TLS bye if the client session peer certificate verification fails * Based CertificateError on GNUTLSError and added 4 new certificate related exceptions derived from it. * Added the ability to send TLS alerts based on certain error conditions Using this mechanism a python exception related to GNUTLS can be mapped to a TLS alert and sent to the peer which will map it back to the original python exception, making it possible to transfer error conditions and raise their corresponding exception on the other side that becomes this way aware of the errors that occured in the peer. Currently this is used to map certificate related exceptions into TLS alerts and back to python exceptions on the other side. * Send a TLS alert before closing a connection as a result of an error in the twisted interface. * Preserve closing reason while sending the close alerts. * Pass the proper exception when a client connection fails. * Improved some exception messages related to certificate errors. * Added the ability to specify the certificate name to use in exceptions raised by certificate checking methods, which helps improve the clarity of the error messages. * Set transport on protocol after the TCP connection is made, because we may call connectionLost without calling connectionMade if TLS negociation fails (which in turn will call connectionLost on the protocol). * Added _closeWriteConnection to handle half closed connections. Changes in version 1.0.2 ------------------------ * Avoid the need to handle bye timeouts in the twisted interface by not waiting for the bye notification acknowledgement as we do not use the TCP connection anymore after closing the TLS session. Changes in version 1.0.1 ------------------------ * Fixed typo in internal class name in the twisted interface python-gnutls-3.0.0/MANIFEST.in0000644000175000017500000000030012354765276015443 0ustar dandan00000000000000recursive-include examples README crypto.py client.py server.py twisted-*.py recursive-include examples certs/*.pem certs/valid.* certs/revoked.* include MANIFEST.in ChangeLog INSTALL LICENSE python-gnutls-3.0.0/setup.py0000755000175000017500000000202112667551574015425 0ustar dandan00000000000000#!/usr/bin/env python import os from distutils.core import setup from gnutls import __info__ as package_info def find_packages(toplevel): return [directory.replace(os.path.sep, '.') for directory, subdirs, files in os.walk(toplevel) if '__init__.py' in files] setup( name=package_info.__project__, version=package_info.__version__, description=package_info.__summary__, long_description=open('README').read(), license=package_info.__license__, url=package_info.__webpage__, author=package_info.__author__, author_email=package_info.__email__, platforms=["Platform Independent"], classifiers=[ "Development Status :: 5 - Production/Stable", "Intended Audience :: Developers", "License :: OSI Approved :: GNU Library or Lesser General Public License (LGPL)", "Operating System :: OS Independent", "Programming Language :: Python", "Topic :: Software Development :: Libraries :: Python Modules" ], packages=find_packages('gnutls') ) python-gnutls-3.0.0/LICENSE0000644000175000017500000000134012667551574014720 0ustar dandan00000000000000 Copyright (C) 2006-2016 AG Projects This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA. python-gnutls-3.0.0/gnutls/0000755000175000017500000000000012670041246015211 5ustar dandan00000000000000python-gnutls-3.0.0/gnutls/validators.py0000644000175000017500000001465512667551574017766 0ustar dandan00000000000000 """GNUTLS data validators""" __all__ = ['function_args', 'method_args', 'none', 'ignore', 'list_of', 'one_of'] # Helper functions (internal use) # def isclass(obj): return hasattr(obj, '__bases__') or isinstance(obj, type) # Internal validator classes # class Validator(object): _registered = [] def __init__(self, typ): self.type = typ def check(self, value): return False @staticmethod def can_validate(typ): return False @classmethod def register(cls, validator): cls._registered.append(validator) @classmethod def get(cls, typ): for validator in cls._registered: if validator.can_validate(typ): return validator(typ) else: return None @staticmethod def join_names(names): if type(names) in (tuple, list): if len(names) <= 2: return ' or '.join(names) else: return ' or '.join((', '.join(names[:-1]), names[-1])) else: return names def _type_names(self): if isinstance(self.type, tuple): return self.join_names([t.__name__.replace('NoneType', 'None') for t in self.type]) else: return self.type.__name__.replace('NoneType', 'None') @property def name(self): name = self._type_names() if name.startswith('None'): prefix = '' elif name[0] in ('a', 'e', 'i', 'o', 'u'): prefix = 'an ' else: prefix = 'a ' return prefix + name class IgnoringValidator(Validator): def __init__(self, typ): self.type = none def check(self, value): return True @staticmethod def can_validate(obj): return obj is ignore class TypeValidator(Validator): def check(self, value): return isinstance(value, self.type) @staticmethod def can_validate(obj): return isclass(obj) class MultiTypeValidator(TypeValidator): @staticmethod def can_validate(obj): return isinstance(obj, tuple) and not filter(lambda x: not isclass(x), obj) class OneOfValidator(Validator): def __init__(self, typ): self.type = typ.type def check(self, value): return value in self.type @staticmethod def can_validate(obj): return isinstance(obj, one_of) @property def name(self): return 'one of %s' % self.join_names(["`%r'" % e for e in self.type]) class ListOfValidator(Validator): def __init__(self, typ): self.type = typ.type def check(self, value): return isinstance(value, (tuple, list)) and not filter(lambda x: not isinstance(x, self.type), value) @staticmethod def can_validate(obj): return isinstance(obj, list_of) @property def name(self): return 'a list of %s' % self._type_names() class ComplexValidator(Validator): def __init__(self, typ): self.type = [Validator.get(x) for x in typ] def check(self, value): return bool(sum(t.check(value) for t in self.type)) @staticmethod def can_validate(obj): return isinstance(obj, tuple) and not filter(lambda x: Validator.get(x) is None, obj) @property def name(self): return self.join_names([x.name for x in self.type]) Validator.register(IgnoringValidator) Validator.register(TypeValidator) Validator.register(MultiTypeValidator) Validator.register(OneOfValidator) Validator.register(ListOfValidator) Validator.register(ComplexValidator) # Extra types to be used with argument validating decorators # none = type(None) class one_of(object): def __init__(self, *args): if len(args) < 2: raise ValueError("one_of must have at least 2 arguments") self.type = args class list_of(object): def __init__(self, *args): if filter(lambda x: not isclass(x), args): raise TypeError("list_of arguments must be types") if len(args) == 1: self.type = args[0] else: self.type = args ignore = type('ignore', (), {})() # Helpers for writing well behaved decorators # def decorator(func): """A syntactic marker with no other effect than improving readability.""" return func def preserve_signature(func): """Preserve the original function signature and attributes in decorator wrappers.""" from inspect import getargspec, formatargspec from gnutls.constants import GNUTLSConstant constants = [c for c in (getargspec(func)[3] or []) if isinstance(c, GNUTLSConstant)] signature = formatargspec(*getargspec(func))[1:-1] parameters = formatargspec(*getargspec(func), **{'formatvalue': lambda value: ""})[1:-1] def fix_signature(wrapper): if constants: ## import the required GNUTLSConstants used as function default arguments code = "from gnutls.constants import %s\n" % ', '.join(c.name for c in constants) exec code in locals(), locals() code = "def %s(%s): return wrapper(%s)\nnew_wrapper = %s\n" % (func.__name__, signature, parameters, func.__name__) exec code in locals(), locals() new_wrapper.__name__ = func.__name__ new_wrapper.__doc__ = func.__doc__ new_wrapper.__module__ = func.__module__ new_wrapper.__dict__.update(func.__dict__) return new_wrapper return fix_signature # Argument validating decorators # def _callable_args(*args, **kwargs): """Internal function used by argument checking decorators""" start = kwargs.get('_start', 0) validators = [] for i, arg in enumerate(args): validator = Validator.get(arg) if validator is None: raise TypeError("unsupported type `%r' at position %d for argument checking decorator" % (arg, i+1)) validators.append(validator) def check_args_decorator(func): @preserve_signature(func) def check_args(*func_args): pos = start for validator in validators: if not validator.check(func_args[pos]): raise TypeError("argument %d must be %s" % (pos+1-start, validator.name)) pos += 1 return func(*func_args) return check_args return check_args_decorator @decorator def method_args(*args): """Check class or instance method arguments""" return _callable_args(*args, **{'_start': 1}) @decorator def function_args(*args): """Check functions or staticmethod arguments""" return _callable_args(*args) python-gnutls-3.0.0/gnutls/crypto.py0000644000175000017500000003032512667551574017126 0ustar dandan00000000000000 """GNUTLS crypto support""" __all__ = ['X509Name', 'X509Certificate', 'X509PrivateKey', 'X509Identity', 'X509CRL', 'DHParams'] import re from ctypes import * from gnutls.validators import method_args, one_of from gnutls.constants import X509_FMT_DER, X509_FMT_PEM from gnutls.errors import * from gnutls.library.constants import GNUTLS_SAN_DNSNAME, GNUTLS_SAN_RFC822NAME, GNUTLS_SAN_URI from gnutls.library.constants import GNUTLS_SAN_IPADDRESS, GNUTLS_SAN_OTHERNAME, GNUTLS_SAN_DN from gnutls.library.constants import GNUTLS_E_SHORT_MEMORY_BUFFER from gnutls.library.types import * from gnutls.library.functions import * class X509NameMeta(type): long_names = {'country': 'C', 'state': 'ST', 'locality': 'L', 'common_name': 'CN', 'organization': 'O', 'organization_unit': 'OU', 'email': 'EMAIL'} def __new__(cls, name, bases, dic): instance = type.__new__(cls, name, bases, dic) instance.ids = X509NameMeta.long_names.values() for long_name, short_name in X509NameMeta.long_names.items(): ## Map a long_name property to the short_name attribute cls.add_property(instance, long_name, short_name) return instance def add_property(instance, name, short_name): setattr(instance, name, property(lambda self: getattr(self, short_name, None))) class X509Name(str): __metaclass__ = X509NameMeta def __init__(self, dname): str.__init__(self) pairs = [x.replace('\,', ',') for x in re.split(r'(? 0: self.__watchdog = RecurrentCall(credentials.verify_period, self._recurrentVerify) def doHandshake(self): self.stopWriting() try: self.socket.handshake() except (OperationWouldBlock, OperationInterrupted): if self.socket.interrupted_while_writing: self.startWriting() return except GNUTLSError, e: del self.doRead self.failIfNotConnected(err = e) return ## reset any references to the old doRead del self.doRead self.stopReading() try: self._verifyPeer() except GNUTLSError, e: self.closeTLSSession(e) self.failIfNotConnected(err = e) return except Exception, e: self.closeTLSSession(e) self.failIfNotConnected(err = error.getConnectError(str(e))) return ## TLS handshake (including certificate verification) finished succesfully tcp.Client._connectDone(self) def startTLS(self): self.doRead = self.doHandshake self.startReading() self.doHandshake() def _connectDone(self): self.startTLS() def loseConnection(self, reason=failure.Failure(main.CONNECTION_DONE)): reason = failure.Failure(reason) # accept python exceptions too self._close_reason = reason.value abstract.FileDescriptor.loseConnection(self, reason) def connectionLost(self, reason): if self.__watchdog is not None: self.__watchdog.cancel() self.__watchdog = None tcp.Client.connectionLost(self, reason) class TLSConnector(base.BaseConnector): def __init__(self, host, port, factory, context, timeout, bindAddress, reactor=None, server_name=None): self.host = host self.port = port self.bindAddress = bindAddress self.context = context self.server_name = server_name base.BaseConnector.__init__(self, factory, timeout, reactor) def _makeTransport(self): return TLSClient(self.host, self.port, self.bindAddress, self.context, self, self.reactor, self.server_name) class TLSServer(TLSMixin, tcp.Server): """Add TLS capabilities to a TCP server""" implementsOnly(interfaces.ISSLTransport, *[i for i in implementedBy(tcp.Server) if i != interfaces.ITLSTransport]) def __init__(self, sock, protocol, client, server, sessionno, *args, **kw): self.__watchdog = None self.context = server.context tcp.Server.__init__(self, sock, protocol, client, server, sessionno, *args, **kw) self.protocol.makeConnection = lambda *args: None self.protocol.transport = self ## because we may call connectionLost without connectionMade self.startTLS() def _recurrentVerify(self): if not self.connected or self.disconnecting: return try: self.context.credentials.verify_callback(self.socket.peer_certificate) except Exception, e: self.loseConnection(e) return else: return KeepRunning def _verifyPeer(self): session = self.socket credentials = self.context.credentials if not credentials.verify_peer: return try: session.verify_peer() except Exception, e: preverify_status = e else: preverify_status = CertificateOK credentials.verify_callback(session.peer_certificate, preverify_status) if credentials.verify_period > 0: self.__watchdog = RecurrentCall(credentials.verify_period, self._recurrentVerify) def doHandshake(self): self.stopWriting() try: self.socket.handshake() except (OperationWouldBlock, OperationInterrupted): if self.socket.interrupted_while_writing: self.startWriting() return except GNUTLSError, e: del self.doRead return e ## reset any references to the old doRead del self.doRead self.stopReading() self.startReading() try: self._verifyPeer() except Exception, e: self.loseConnection(e) return ## TLS handshake (including certificate verification) finished succesfully del self.protocol.makeConnection self.protocol.makeConnection(self) def startTLS(self): self.doRead = self.doHandshake self.startReading() def loseConnection(self, reason=failure.Failure(main.CONNECTION_DONE)): reason = failure.Failure(reason) # accept python exceptions too self._close_reason = reason.value abstract.FileDescriptor.loseConnection(self, reason) def connectionLost(self, reason): if self.__watchdog is not None: self.__watchdog.cancel() self.__watchdog = None tcp.Server.connectionLost(self, reason) class TLSPort(tcp.Port): """Add TLS capabilities to a TCP port""" transport = TLSServer def __init__(self, port, factory, context, backlog=50, interface='', reactor=None, session_class=ServerSession): tcp.Port.__init__(self, port, factory, backlog, interface, reactor) self.context = context self.session_class = session_class def createInternetSocket(self): sock = tcp.Port.createInternetSocket(self) return ServerSessionFactory(sock, self.context, self.session_class) def connectTLS(reactor, host, port, factory, context, timeout=30, bindAddress=None, server_name=None): c = TLSConnector(host, port, factory, context, timeout, bindAddress, reactor, server_name) c.connect() return c def listenTLS(reactor, port, factory, context, backlog=50, interface='', session_class=ServerSession): p = TLSPort(port, factory, context, backlog, interface, reactor, session_class) p.startListening() return p ## Add the connectTLS and listenTLS methods to the reactor import new from twisted.internet.posixbase import PosixReactorBase method = new.instancemethod(connectTLS, None, PosixReactorBase) setattr(PosixReactorBase, 'connectTLS', method) method = new.instancemethod(listenTLS, None, PosixReactorBase) setattr(PosixReactorBase, 'listenTLS', method) python-gnutls-3.0.0/gnutls/interfaces/__init__.py0000644000175000017500000000000012667551574021453 0ustar dandan00000000000000python-gnutls-3.0.0/gnutls/errors.py0000644000175000017500000000136112667551574017120 0ustar dandan00000000000000 """GNUTLS errors""" __all__ = ['Error', 'GNUTLSError', 'OperationWouldBlock', 'OperationInterrupted', 'CertificateError', 'CertificateAuthorityError', 'CertificateSecurityError', 'CertificateExpiredError', 'CertificateRevokedError', 'RequestedDataNotAvailable'] class Error(Exception): pass class GNUTLSError(Error): pass class OperationWouldBlock(GNUTLSError): pass class OperationInterrupted(GNUTLSError): pass class CertificateError(GNUTLSError): pass class CertificateAuthorityError(CertificateError): pass class CertificateSecurityError(CertificateError): pass class CertificateExpiredError(CertificateError): pass class CertificateRevokedError(CertificateError): pass class RequestedDataNotAvailable(GNUTLSError): pass python-gnutls-3.0.0/gnutls/__init__.py0000644000175000017500000000026012667551574017340 0ustar dandan00000000000000 """Python wrapper for the GnuTLS library""" from gnutls.__info__ import __project__, __summary__, __webpage__, __version__, __author__, __email__, __license__, __copyright__ python-gnutls-3.0.0/gnutls/constants.py0000644000175000017500000000170412667551574017621 0ustar dandan00000000000000 """GNUTLS constants""" __all__ = [ ## Credential types 'CRED_CERTIFICATE', 'CRED_ANON', ## X509 certificate/private key formats 'X509_FMT_DER', 'X509_FMT_PEM', ## Miscellaneous 'CERT_REQUEST', 'CERT_REQUIRE', 'SHUT_RDWR', 'SHUT_WR' ] __name_map__ = { 'PROTO_TLS1_2': 'TLS1_2', 'PROTO_TLS1_1': 'TLS1_1', 'PROTO_TLS1_0': 'TLS1_0', 'PROTO_SSL3': 'SSL3', 'CRED_CERTIFICATE': 'CRD_CERTIFICATE', 'CRED_ANON': 'CRD_ANON' } from gnutls.library import constants class GNUTLSConstant(int): def __new__(cls, name): gnutls_name = 'GNUTLS_' + __name_map__.get(name, name) instance = int.__new__(cls, getattr(constants, gnutls_name)) instance.name = name return instance def __repr__(self): return self.name ## Generate all exported constants code = '\n'.join(["%s = GNUTLSConstant('%s')" % (name, name) for name in __all__]) exec code in locals(), globals() del code, name del constants python-gnutls-3.0.0/gnutls/library/0000755000175000017500000000000012670041246016655 5ustar dandan00000000000000python-gnutls-3.0.0/gnutls/library/errors.py0000644000175000017500000000576012667551574020573 0ustar dandan00000000000000 """GNUTLS library errors""" from gnutls.errors import * from gnutls.errors import __all__ from gnutls.library.constants import GNUTLS_E_AGAIN, GNUTLS_E_INTERRUPTED, GNUTLS_E_NO_CERTIFICATE_FOUND from gnutls.library.constants import GNUTLS_E_MEMORY_ERROR, GNUTLS_E_SHORT_MEMORY_BUFFER from gnutls.library.constants import GNUTLS_E_FATAL_ALERT_RECEIVED, GNUTLS_A_BAD_CERTIFICATE from gnutls.library.constants import GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE from gnutls.library.constants import GNUTLS_A_UNKNOWN_CA, GNUTLS_A_INSUFFICIENT_SECURITY from gnutls.library.constants import GNUTLS_A_CERTIFICATE_EXPIRED, GNUTLS_A_CERTIFICATE_REVOKED from gnutls.library.functions import gnutls_strerror, gnutls_alert_get class ErrorMessage(str): def __new__(cls, code): obj = str.__new__(cls, gnutls_strerror(code)) obj.code = code return obj # Check functions which return an integer status code (negative codes being errors) # class ErrorHandler(object): alert_map = { GNUTLS_A_BAD_CERTIFICATE : CertificateError("peer rejected our certificate as invalid"), GNUTLS_A_UNKNOWN_CA : CertificateAuthorityError("peer does not trust our certificate authority"), GNUTLS_A_INSUFFICIENT_SECURITY : CertificateSecurityError("peer rejected us on insufficient security"), GNUTLS_A_CERTIFICATE_EXPIRED : CertificateExpiredError("peer rejected our certificate as expired"), GNUTLS_A_CERTIFICATE_REVOKED : CertificateRevokedError("peer rejected our certificate as revoked") } @classmethod def check_status(cls, retcode, function, args): if retcode >= 0: return retcode elif retcode == -1: raise GNUTLSError(getattr(function, 'errmsg', None) or ErrorMessage(retcode)) elif retcode == GNUTLS_E_AGAIN: raise OperationWouldBlock(gnutls_strerror(retcode)) elif retcode == GNUTLS_E_INTERRUPTED: raise OperationInterrupted(gnutls_strerror(retcode)) elif retcode in (GNUTLS_E_MEMORY_ERROR, GNUTLS_E_SHORT_MEMORY_BUFFER): raise MemoryError(ErrorMessage(retcode)) elif retcode == GNUTLS_E_NO_CERTIFICATE_FOUND: raise CertificateSecurityError(gnutls_strerror(retcode)) elif retcode == GNUTLS_E_FATAL_ALERT_RECEIVED: exception = cls.alert_map.get(gnutls_alert_get(args[0])) raise exception and exception.__class__(*exception.args) or GNUTLSError(ErrorMessage(retcode)) elif retcode == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE: raise RequestedDataNotAvailable(gnutls_strerror(retcode)) else: raise GNUTLSError(ErrorMessage(retcode)) # Attach the error checking function to all functions returning integers # from gnutls.library import functions from ctypes import c_int, c_long for func in (obj for name, obj in functions.__dict__.iteritems() if name in functions.__all__ and obj.restype in (c_int, c_long)): func.errcheck = ErrorHandler.check_status del c_int, c_long, func, functions python-gnutls-3.0.0/gnutls/library/__init__.py0000644000175000017500000000515212667551574021011 0ustar dandan00000000000000 from itertools import chain __all__ = ['constants', 'errors', 'functions', 'types'] def get_system_name(): import platform system = platform.system().lower() if system.startswith('cygwin'): system = 'cygwin' return system def library_locations(abi_version): import os system = get_system_name() if system == 'darwin': library_names = ['libgnutls.%d.dylib' % abi_version] dynamic_loader_env_vars = ['DYLD_LIBRARY_PATH', 'LD_LIBRARY_PATH'] additional_paths = ['/usr/local/lib', '/opt/local/lib', '/sw/lib'] elif system == 'windows': library_names = ['libgnutls-%d.dll' % abi_version] dynamic_loader_env_vars = ['PATH'] additional_paths = ['.'] elif system == 'cygwin': library_names = ['cyggnutls-%d.dll' % abi_version] dynamic_loader_env_vars = ['LD_LIBRARY_PATH'] additional_paths = ['/usr/bin'] else: # Debian uses libgnutls-deb0.so.28, go figure library_names = ['libgnutls.so.%d' % abi_version, 'libgnutls-deb0.so.%d' % abi_version] dynamic_loader_env_vars = ['LD_LIBRARY_PATH'] additional_paths = ['/usr/local/lib'] for library_name in library_names: for path in (path for env_var in dynamic_loader_env_vars for path in os.environ.get(env_var, '').split(':') if os.path.isdir(path)): yield os.path.join(path, library_name) yield library_name for path in additional_paths: yield os.path.join(path, library_name) def load_library(abi_versions): from ctypes import CDLL for library in chain.from_iterable(library_locations(abi_version) for abi_version in sorted(abi_versions, reverse=True)): try: return CDLL(library) except OSError: pass else: break else: raise RuntimeError('cannot find a supported version of libgnutls on this system') libgnutls = load_library(abi_versions=(28, 30)) # will use the highest of the available ABI versions from gnutls.library import constants from gnutls.library import errors from gnutls.library import functions from gnutls.library import types __need_version__ = '3.2.0' if functions.gnutls_check_version(__need_version__) is None: version = functions.gnutls_check_version(None) raise RuntimeError("Found GNUTLS library version %s, but at least version %s is required" % (version, __need_version__)) # calling gnutls_global_init is no longer required starting with gnutls 3.3 if functions.gnutls_check_version('3.3') is None: libgnutls.gnutls_global_init() del get_system_name, library_locations, load_library python-gnutls-3.0.0/gnutls/library/constants.py0000644000175000017500000003102612667551574021265 0ustar dandan00000000000000 GNUTLS_AL_FATAL = 2 GNUTLS_AL_WARNING = 1 GNUTLS_A_ACCESS_DENIED = 49 GNUTLS_A_BAD_CERTIFICATE = 42 GNUTLS_A_BAD_RECORD_MAC = 20 GNUTLS_A_CERTIFICATE_EXPIRED = 45 GNUTLS_A_CERTIFICATE_REVOKED = 44 GNUTLS_A_CERTIFICATE_UNKNOWN = 46 GNUTLS_A_CERTIFICATE_UNOBTAINABLE = 111 GNUTLS_A_CLOSE_NOTIFY = 0 GNUTLS_A_DECODE_ERROR = 50 GNUTLS_A_DECOMPRESSION_FAILURE = 30 GNUTLS_A_DECRYPTION_FAILED = 21 GNUTLS_A_DECRYPT_ERROR = 51 GNUTLS_A_EXPORT_RESTRICTION = 60 GNUTLS_A_HANDSHAKE_FAILURE = 40 GNUTLS_A_ILLEGAL_PARAMETER = 47 GNUTLS_A_INNER_APPLICATION_FAILURE = 208 GNUTLS_A_INNER_APPLICATION_VERIFICATION = 209 GNUTLS_A_INSUFFICIENT_SECURITY = 71 GNUTLS_A_INTERNAL_ERROR = 80 GNUTLS_A_NO_RENEGOTIATION = 100 GNUTLS_A_PROTOCOL_VERSION = 70 GNUTLS_A_RECORD_OVERFLOW = 22 GNUTLS_A_SSL3_NO_CERTIFICATE = 41 GNUTLS_A_UNEXPECTED_MESSAGE = 10 GNUTLS_A_UNKNOWN_CA = 48 GNUTLS_A_UNKNOWN_PSK_IDENTITY = 115 GNUTLS_A_UNRECOGNIZED_NAME = 112 GNUTLS_A_UNSUPPORTED_CERTIFICATE = 43 GNUTLS_A_UNSUPPORTED_EXTENSION = 110 GNUTLS_A_USER_CANCELED = 90 GNUTLS_CERT_IGNORE = 0 GNUTLS_CERT_INSECURE_ALGORITHM = 256 GNUTLS_CERT_INVALID = 2 GNUTLS_CERT_REQUEST = 1 GNUTLS_CERT_REQUIRE = 2 GNUTLS_CERT_REVOKED = 32 GNUTLS_CERT_SIGNER_NOT_CA = 128 GNUTLS_CERT_SIGNER_NOT_FOUND = 64 GNUTLS_CIPHER_3DES_CBC = 3 GNUTLS_CIPHER_AES_128_CBC = 4 GNUTLS_CIPHER_AES_256_CBC = 5 GNUTLS_CIPHER_ARCFOUR_128 = 2 GNUTLS_CIPHER_ARCFOUR_40 = 6 GNUTLS_CIPHER_CAMELLIA_128_CBC = 7 GNUTLS_CIPHER_CAMELLIA_256_CBC = 8 GNUTLS_CIPHER_DES_CBC = 91 GNUTLS_CIPHER_NULL = 1 GNUTLS_CIPHER_RC2_40_CBC = 90 GNUTLS_CIPHER_UNKNOWN = 0 GNUTLS_CLIENT = 2 GNUTLS_COMP_DEFLATE = 2 GNUTLS_COMP_NULL = 1 GNUTLS_COMP_UNKNOWN = 0 GNUTLS_CRD_ANON = 2 GNUTLS_CRD_CERTIFICATE = 1 GNUTLS_CRD_IA = 5 GNUTLS_CRD_PSK = 4 GNUTLS_CRD_SRP = 3 GNUTLS_CRL_REASON_AA_COMPROMISE = 32768 # Variable c_int GNUTLS_CRL_REASON_AFFILIATION_CHANGED = 16 # Variable c_int GNUTLS_CRL_REASON_CA_COMPROMISE = 32 # Variable c_int GNUTLS_CRL_REASON_CERTIFICATE_HOLD = 2 # Variable c_int GNUTLS_CRL_REASON_CESSATION_OF_OPERATION = 4 # Variable c_int GNUTLS_CRL_REASON_KEY_COMPROMISE = 64 # Variable c_int GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN = 1 # Variable c_int GNUTLS_CRL_REASON_SUPERSEEDED = 8 # Variable c_int GNUTLS_CRL_REASON_UNUSED = 128 # Variable c_int GNUTLS_CRT_OPENPGP = 2 GNUTLS_CRT_PRINT_FULL = 0 GNUTLS_CRT_PRINT_ONELINE = 1 GNUTLS_CRT_PRINT_UNSIGNED_FULL = 2 GNUTLS_CRT_UNKNOWN = 0 GNUTLS_CRT_X509 = 1 GNUTLS_DIG_MD2 = 5 GNUTLS_DIG_MD5 = 2 GNUTLS_DIG_NULL = 1 GNUTLS_DIG_RMD160 = 4 GNUTLS_DIG_SHA1 = 3 GNUTLS_DIG_SHA224 = 9 GNUTLS_DIG_SHA256 = 6 GNUTLS_DIG_SHA384 = 7 GNUTLS_DIG_SHA512 = 8 GNUTLS_E_AGAIN = -28 # Variable c_int GNUTLS_E_APPLICATION_ERROR_MAX = -65000 # Variable c_int GNUTLS_E_APPLICATION_ERROR_MIN = -65500 # Variable c_int GNUTLS_E_ASN1_DER_ERROR = -69 # Variable c_int GNUTLS_E_ASN1_DER_OVERFLOW = -77 # Variable c_int GNUTLS_E_ASN1_ELEMENT_NOT_FOUND = -67 # Variable c_int GNUTLS_E_ASN1_GENERIC_ERROR = -71 # Variable c_int GNUTLS_E_ASN1_IDENTIFIER_NOT_FOUND = -68 # Variable c_int GNUTLS_E_ASN1_SYNTAX_ERROR = -76 # Variable c_int GNUTLS_E_ASN1_TAG_ERROR = -73 # Variable c_int GNUTLS_E_ASN1_TAG_IMPLICIT = -74 # Variable c_int GNUTLS_E_ASN1_TYPE_ANY_ERROR = -75 # Variable c_int GNUTLS_E_ASN1_VALUE_NOT_FOUND = -70 # Variable c_int GNUTLS_E_ASN1_VALUE_NOT_VALID = -72 # Variable c_int GNUTLS_E_BASE64_DECODING_ERROR = -34 # Variable c_int GNUTLS_E_BASE64_ENCODING_ERROR = -201 # Variable c_int GNUTLS_E_BASE64_UNEXPECTED_HEADER_ERROR = -207 # Variable c_int GNUTLS_E_CERTIFICATE_ERROR = -43 # Variable c_int GNUTLS_E_CERTIFICATE_KEY_MISMATCH = -60 # Variable c_int GNUTLS_E_COMPRESSION_FAILED = -27 # Variable c_int GNUTLS_E_CONSTRAINT_ERROR = -101 # Variable c_int GNUTLS_E_CRYPTO_ALREADY_REGISTERED = -209 # Variable c_int GNUTLS_E_DB_ERROR = -30 # Variable c_int GNUTLS_E_DECOMPRESSION_FAILED = -26 # Variable c_int GNUTLS_E_DECRYPTION_FAILED = -24 # Variable c_int GNUTLS_E_DH_PRIME_UNACCEPTABLE = -63 # Variable c_int GNUTLS_E_ENCRYPTION_FAILED = -40 # Variable c_int GNUTLS_E_ERROR_IN_FINISHED_PACKET = -18 # Variable c_int GNUTLS_E_EXPIRED = -29 # Variable c_int GNUTLS_E_FATAL_ALERT_RECEIVED = -12 # Variable c_int GNUTLS_E_FILE_ERROR = -64 # Variable c_int GNUTLS_E_GOT_APPLICATION_DATA = -38 # Variable c_int GNUTLS_E_HANDSHAKE_TOO_LARGE = -210 # Variable c_int GNUTLS_E_HASH_FAILED = -33 # Variable c_int GNUTLS_E_IA_VERIFY_FAILED = -104 # Variable c_int GNUTLS_E_ILLEGAL_SRP_USERNAME = -90 # Variable c_int GNUTLS_E_INCOMPATIBLE_CRYPTO_LIBRARY = -202 # Variable c_int GNUTLS_E_INCOMPATIBLE_GCRYPT_LIBRARY = -202 # Variable c_int GNUTLS_E_INCOMPATIBLE_LIBTASN1_LIBRARY = -203 # Variable c_int GNUTLS_E_INIT_LIBEXTRA = -82 # Variable c_int GNUTLS_E_INSUFFICIENT_CREDENTIALS = -32 # Variable c_int GNUTLS_E_INTERNAL_ERROR = -59 # Variable c_int GNUTLS_E_INTERRUPTED = -52 # Variable c_int GNUTLS_E_INVALID_PASSWORD = -99 # Variable c_int GNUTLS_E_INVALID_REQUEST = -50 # Variable c_int GNUTLS_E_INVALID_SESSION = -10 # Variable c_int GNUTLS_E_KEY_USAGE_VIOLATION = -48 # Variable c_int GNUTLS_E_LARGE_PACKET = -7 # Variable c_int GNUTLS_E_LIBRARY_VERSION_MISMATCH = -83 # Variable c_int GNUTLS_E_MAC_VERIFY_FAILED = -100 # Variable c_int GNUTLS_E_MEMORY_ERROR = -25 # Variable c_int GNUTLS_E_MPI_PRINT_FAILED = -35 # Variable c_int GNUTLS_E_MPI_SCAN_FAILED = -23 # Variable c_int GNUTLS_E_NO_CERTIFICATE_FOUND = -49 # Variable c_int GNUTLS_E_NO_CIPHER_SUITES = -87 # Variable c_int GNUTLS_E_NO_COMPRESSION_ALGORITHMS = -86 # Variable c_int GNUTLS_E_NO_TEMPORARY_DH_PARAMS = -93 # Variable c_int GNUTLS_E_NO_TEMPORARY_RSA_PARAMS = -84 # Variable c_int GNUTLS_E_OPENPGP_FINGERPRINT_UNSUPPORTED = -94 # Variable c_int GNUTLS_E_OPENPGP_GETKEY_FAILED = -88 # Variable c_int GNUTLS_E_OPENPGP_KEYRING_ERROR = -204 # Variable c_int GNUTLS_E_OPENPGP_SUBKEY_ERROR = -208 # Variable c_int GNUTLS_E_OPENPGP_UID_REVOKED = -79 # Variable c_int GNUTLS_E_PKCS1_WRONG_PAD = -57 # Variable c_int GNUTLS_E_PK_DECRYPTION_FAILED = -45 # Variable c_int GNUTLS_E_PK_ENCRYPTION_FAILED = -44 # Variable c_int GNUTLS_E_PK_SIGN_FAILED = -46 # Variable c_int GNUTLS_E_PK_SIG_VERIFY_FAILED = -89 # Variable c_int GNUTLS_E_PULL_ERROR = -54 # Variable c_int GNUTLS_E_PUSH_ERROR = -53 # Variable c_int GNUTLS_E_RANDOM_FAILED = -206 # Variable c_int GNUTLS_E_RECEIVED_ILLEGAL_EXTENSION = -58 # Variable c_int GNUTLS_E_RECEIVED_ILLEGAL_PARAMETER = -55 # Variable c_int GNUTLS_E_RECORD_LIMIT_REACHED = -39 # Variable c_int GNUTLS_E_REHANDSHAKE = -37 # Variable c_int GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE = -56 # Variable c_int GNUTLS_E_SHORT_MEMORY_BUFFER = -51 # Variable c_int GNUTLS_E_SRP_PWD_ERROR = -31 # Variable c_int GNUTLS_E_SRP_PWD_PARSING_ERROR = -91 # Variable c_int GNUTLS_E_SUCCESS = 0 # Variable c_int GNUTLS_E_TOO_MANY_EMPTY_PACKETS = -78 # Variable c_int GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET = -19 # Variable c_int GNUTLS_E_UNEXPECTED_PACKET = -15 # Variable c_int GNUTLS_E_UNEXPECTED_PACKET_LENGTH = -9 # Variable c_int GNUTLS_E_UNIMPLEMENTED_FEATURE = -1250 # Variable c_int GNUTLS_E_UNKNOWN_ALGORITHM = -105 # Variable c_int GNUTLS_E_UNKNOWN_CIPHER_SUITE = -21 # Variable c_int GNUTLS_E_UNKNOWN_CIPHER_TYPE = -6 # Variable c_int GNUTLS_E_UNKNOWN_COMPRESSION_ALGORITHM = -3 # Variable c_int GNUTLS_E_UNKNOWN_HASH_ALGORITHM = -96 # Variable c_int GNUTLS_E_UNKNOWN_PKCS_BAG_TYPE = -98 # Variable c_int GNUTLS_E_UNKNOWN_PKCS_CONTENT_TYPE = -97 # Variable c_int GNUTLS_E_UNKNOWN_PK_ALGORITHM = -80 # Variable c_int GNUTLS_E_UNSUPPORTED_CERTIFICATE_TYPE = -61 # Variable c_int GNUTLS_E_UNSUPPORTED_VERSION_PACKET = -8 # Variable c_int GNUTLS_E_UNWANTED_ALGORITHM = -22 # Variable c_int GNUTLS_E_WARNING_ALERT_RECEIVED = -16 # Variable c_int GNUTLS_E_WARNING_IA_FPHF_RECEIVED = -103 # Variable c_int GNUTLS_E_WARNING_IA_IPHF_RECEIVED = -102 # Variable c_int GNUTLS_E_X509_UNKNOWN_SAN = -62 # Variable c_int GNUTLS_E_X509_UNSUPPORTED_ATTRIBUTE = -95 # Variable c_int GNUTLS_E_X509_UNSUPPORTED_CRITICAL_EXTENSION = -47 # Variable c_int GNUTLS_E_X509_UNSUPPORTED_OID = -205 # Variable c_int GNUTLS_HANDSHAKE_CERTIFICATE_PKT = 11 GNUTLS_HANDSHAKE_CERTIFICATE_REQUEST = 13 GNUTLS_HANDSHAKE_CERTIFICATE_VERIFY = 15 GNUTLS_HANDSHAKE_CLIENT_HELLO = 1 GNUTLS_HANDSHAKE_CLIENT_KEY_EXCHANGE = 16 GNUTLS_HANDSHAKE_FINISHED = 20 GNUTLS_HANDSHAKE_HELLO_REQUEST = 0 GNUTLS_HANDSHAKE_SERVER_HELLO = 2 GNUTLS_HANDSHAKE_SERVER_HELLO_DONE = 14 GNUTLS_HANDSHAKE_SERVER_KEY_EXCHANGE = 12 GNUTLS_HANDSHAKE_SUPPLEMENTAL = 23 GNUTLS_IA_APPLICATION_PAYLOAD = 0 GNUTLS_IA_FINAL_PHASE_FINISHED = 2 GNUTLS_IA_INTERMEDIATE_PHASE_FINISHED = 1 GNUTLS_KEY_CRL_SIGN = 2 # Variable c_int GNUTLS_KEY_DATA_ENCIPHERMENT = 16 # Variable c_int GNUTLS_KEY_DECIPHER_ONLY = 32768 # Variable c_int GNUTLS_KEY_DIGITAL_SIGNATURE = 128 # Variable c_int GNUTLS_KEY_ENCIPHER_ONLY = 1 # Variable c_int GNUTLS_KEY_KEY_AGREEMENT = 8 # Variable c_int GNUTLS_KEY_KEY_CERT_SIGN = 4 # Variable c_int GNUTLS_KEY_KEY_ENCIPHERMENT = 32 # Variable c_int GNUTLS_KEY_NON_REPUDIATION = 64 # Variable c_int GNUTLS_KP_ANY = '2.5.29.37.0' # Variable STRING GNUTLS_KP_CODE_SIGNING = '1.3.6.1.5.5.7.3.3' # Variable STRING GNUTLS_KP_EMAIL_PROTECTION = '1.3.6.1.5.5.7.3.4' # Variable STRING GNUTLS_KP_OCSP_SIGNING = '1.3.6.1.5.5.7.3.9' # Variable STRING GNUTLS_KP_TIME_STAMPING = '1.3.6.1.5.5.7.3.8' # Variable STRING GNUTLS_KP_TLS_WWW_CLIENT = '1.3.6.1.5.5.7.3.2' # Variable STRING GNUTLS_KP_TLS_WWW_SERVER = '1.3.6.1.5.5.7.3.1' # Variable STRING GNUTLS_KX_ANON_DH = 4 GNUTLS_KX_DHE_DSS = 2 GNUTLS_KX_DHE_PSK = 10 GNUTLS_KX_DHE_RSA = 3 GNUTLS_KX_PSK = 9 GNUTLS_KX_RSA = 1 GNUTLS_KX_RSA_EXPORT = 6 GNUTLS_KX_SRP = 5 GNUTLS_KX_SRP_DSS = 8 GNUTLS_KX_SRP_RSA = 7 GNUTLS_KX_UNKNOWN = 0 GNUTLS_MAC_MD2 = 5 GNUTLS_MAC_MD5 = 2 GNUTLS_MAC_NULL = 1 GNUTLS_MAC_RMD160 = 4 GNUTLS_MAC_SHA1 = 3 GNUTLS_MAC_SHA256 = 6 GNUTLS_MAC_SHA384 = 7 GNUTLS_MAC_SHA512 = 8 GNUTLS_MAC_UNKNOWN = 0 GNUTLS_MASTER_SIZE = 48 # Variable c_int GNUTLS_MAX_ALGORITHM_NUM = 16 # Variable c_int GNUTLS_MAX_SESSION_ID = 32 # Variable c_int GNUTLS_NAME_DNS = 1 GNUTLS_OID_LDAP_DC = '0.9.2342.19200300.100.1.25' # Variable STRING GNUTLS_OID_LDAP_UID = '0.9.2342.19200300.100.1.1' # Variable STRING GNUTLS_OID_PKCS9_EMAIL = '1.2.840.113549.1.9.1' # Variable STRING GNUTLS_OID_PKIX_COUNTRY_OF_CITIZENSHIP = '1.3.6.1.5.5.7.9.4' # Variable STRING GNUTLS_OID_PKIX_COUNTRY_OF_RESIDENCE = '1.3.6.1.5.5.7.9.5' # Variable STRING GNUTLS_OID_PKIX_DATE_OF_BIRTH = '1.3.6.1.5.5.7.9.1' # Variable STRING GNUTLS_OID_PKIX_GENDER = '1.3.6.1.5.5.7.9.3' # Variable STRING GNUTLS_OID_PKIX_PLACE_OF_BIRTH = '1.3.6.1.5.5.7.9.2' # Variable STRING GNUTLS_OID_X520_COMMON_NAME = '2.5.4.3' # Variable STRING GNUTLS_OID_X520_COUNTRY_NAME = '2.5.4.6' # Variable STRING GNUTLS_OID_X520_DN_QUALIFIER = '2.5.4.46' # Variable STRING GNUTLS_OID_X520_GENERATION_QUALIFIER = '2.5.4.44' # Variable STRING GNUTLS_OID_X520_GIVEN_NAME = '2.5.4.42' # Variable STRING GNUTLS_OID_X520_INITIALS = '2.5.4.43' # Variable STRING GNUTLS_OID_X520_LOCALITY_NAME = '2.5.4.7' # Variable STRING GNUTLS_OID_X520_ORGANIZATIONAL_UNIT_NAME = '2.5.4.11' # Variable STRING GNUTLS_OID_X520_ORGANIZATION_NAME = '2.5.4.10' # Variable STRING GNUTLS_OID_X520_PSEUDONYM = '2.5.4.65' # Variable STRING GNUTLS_OID_X520_STATE_OR_PROVINCE_NAME = '2.5.4.8' # Variable STRING GNUTLS_OID_X520_SURNAME = '2.5.4.4' # Variable STRING GNUTLS_OID_X520_TITLE = '2.5.4.12' # Variable STRING GNUTLS_OPENPGP_CERT = 0 GNUTLS_OPENPGP_CERT_FINGERPRINT = 1 GNUTLS_OPENPGP_FMT_BASE64 = 1 GNUTLS_OPENPGP_FMT_RAW = 0 GNUTLS_PARAMS_DH = 2 GNUTLS_PARAMS_RSA_EXPORT = 1 GNUTLS_PKCS_PLAIN = 1 GNUTLS_PKCS_USE_PBES2_3DES = 16 GNUTLS_PKCS_USE_PKCS12_3DES = 2 GNUTLS_PKCS_USE_PKCS12_ARCFOUR = 4 GNUTLS_PKCS_USE_PKCS12_RC2_40 = 8 GNUTLS_PK_DSA = 2 GNUTLS_PK_RSA = 1 GNUTLS_PK_UNKNOWN = 0 GNUTLS_PSK_KEY_HEX = 1 GNUTLS_PSK_KEY_RAW = 0 GNUTLS_RANDOM_SIZE = 32 # Variable c_int GNUTLS_SAN_DN = 6 GNUTLS_SAN_DNSNAME = 1 GNUTLS_SAN_IPADDRESS = 4 GNUTLS_SAN_OTHERNAME = 5 GNUTLS_SAN_OTHERNAME_XMPP = 1000 GNUTLS_SAN_RFC822NAME = 2 GNUTLS_SAN_URI = 3 GNUTLS_SERVER = 1 GNUTLS_SHUT_RDWR = 0 GNUTLS_SHUT_WR = 1 GNUTLS_SIGN_DSA_SHA1 = 2 GNUTLS_SIGN_RSA_MD2 = 4 GNUTLS_SIGN_RSA_MD5 = 3 GNUTLS_SIGN_RSA_RMD160 = 5 GNUTLS_SIGN_RSA_SHA1 = 1 GNUTLS_SIGN_RSA_SHA224 = 9 GNUTLS_SIGN_RSA_SHA256 = 6 GNUTLS_SIGN_RSA_SHA384 = 7 GNUTLS_SIGN_RSA_SHA512 = 8 GNUTLS_SIGN_UNKNOWN = 0 GNUTLS_SUPPLEMENTAL_USER_MAPPING_DATA = 0 GNUTLS_SSL3 = 1 GNUTLS_TLS1_0 = 2 GNUTLS_TLS1_1 = 3 GNUTLS_TLS1_2 = 4 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT = 8 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2 = 16 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5 = 32 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT = 2 GNUTLS_VERIFY_DISABLE_CA_SIGN = 1 GNUTLS_VERIFY_DO_NOT_ALLOW_SAME = 4 GNUTLS_VERSION_UNKNOWN = 255 GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED = 1 GNUTLS_X509_FMT_DER = 0 GNUTLS_X509_FMT_PEM = 1 __all__ = sorted(name for name in dir() if name.startswith('GNUTLS_')) python-gnutls-3.0.0/gnutls/library/functions.py0000644000175000017500000025251712667551574021273 0ustar dandan00000000000000 import sys from ctypes import * from gnutls.library import libgnutls from gnutls.library.types import * # Functions # gnutls_alert_get = libgnutls.gnutls_alert_get gnutls_alert_get.argtypes = [gnutls_session_t] gnutls_alert_get.restype = gnutls_alert_description_t gnutls_alert_get_name = libgnutls.gnutls_alert_get_name gnutls_alert_get_name.argtypes = [gnutls_alert_description_t] gnutls_alert_get_name.restype = c_char_p gnutls_alert_send = libgnutls.gnutls_alert_send gnutls_alert_send.argtypes = [gnutls_session_t, gnutls_alert_level_t, gnutls_alert_description_t] gnutls_alert_send.restype = c_int gnutls_alert_send_appropriate = libgnutls.gnutls_alert_send_appropriate gnutls_alert_send_appropriate.argtypes = [gnutls_session_t, c_int] gnutls_alert_send_appropriate.restype = c_int gnutls_anon_allocate_client_credentials = libgnutls.gnutls_anon_allocate_client_credentials gnutls_anon_allocate_client_credentials.argtypes = [POINTER(gnutls_anon_client_credentials_t)] gnutls_anon_allocate_client_credentials.restype = c_int gnutls_anon_allocate_server_credentials = libgnutls.gnutls_anon_allocate_server_credentials gnutls_anon_allocate_server_credentials.argtypes = [POINTER(gnutls_anon_server_credentials_t)] gnutls_anon_allocate_server_credentials.restype = c_int gnutls_anon_free_client_credentials = libgnutls.gnutls_anon_free_client_credentials gnutls_anon_free_client_credentials.argtypes = [gnutls_anon_client_credentials_t] gnutls_anon_free_client_credentials.restype = None gnutls_anon_free_server_credentials = libgnutls.gnutls_anon_free_server_credentials gnutls_anon_free_server_credentials.argtypes = [gnutls_anon_server_credentials_t] gnutls_anon_free_server_credentials.restype = None gnutls_anon_set_params_function = libgnutls.gnutls_anon_set_params_function gnutls_anon_set_params_function.argtypes = [gnutls_anon_server_credentials_t, gnutls_params_function] gnutls_anon_set_params_function.restype = None gnutls_anon_set_server_dh_params = libgnutls.gnutls_anon_set_server_dh_params gnutls_anon_set_server_dh_params.argtypes = [gnutls_anon_server_credentials_t, gnutls_dh_params_t] gnutls_anon_set_server_dh_params.restype = None gnutls_anon_set_server_params_function = libgnutls.gnutls_anon_set_server_params_function gnutls_anon_set_server_params_function.argtypes = [gnutls_anon_server_credentials_t, gnutls_params_function] gnutls_anon_set_server_params_function.restype = None gnutls_auth_client_get_type = libgnutls.gnutls_auth_client_get_type gnutls_auth_client_get_type.argtypes = [gnutls_session_t] gnutls_auth_client_get_type.restype = gnutls_credentials_type_t gnutls_auth_get_type = libgnutls.gnutls_auth_get_type gnutls_auth_get_type.argtypes = [gnutls_session_t] gnutls_auth_get_type.restype = gnutls_credentials_type_t gnutls_auth_server_get_type = libgnutls.gnutls_auth_server_get_type gnutls_auth_server_get_type.argtypes = [gnutls_session_t] gnutls_auth_server_get_type.restype = gnutls_credentials_type_t gnutls_bye = libgnutls.gnutls_bye gnutls_bye.argtypes = [gnutls_session_t, gnutls_close_request_t] gnutls_bye.restype = c_int gnutls_certificate_activation_time_peers = libgnutls.gnutls_certificate_activation_time_peers gnutls_certificate_activation_time_peers.argtypes = [gnutls_session_t] gnutls_certificate_activation_time_peers.restype = time_t gnutls_certificate_activation_time_peers.errmsg = "cannot get certificate activation time" gnutls_certificate_allocate_credentials = libgnutls.gnutls_certificate_allocate_credentials gnutls_certificate_allocate_credentials.argtypes = [POINTER(gnutls_certificate_credentials_t)] gnutls_certificate_allocate_credentials.restype = c_int gnutls_certificate_client_get_request_status = libgnutls.gnutls_certificate_client_get_request_status gnutls_certificate_client_get_request_status.argtypes = [gnutls_session_t] gnutls_certificate_client_get_request_status.restype = c_int gnutls_certificate_set_retrieve_function = libgnutls.gnutls_certificate_set_retrieve_function gnutls_certificate_set_retrieve_function.argtypes = [gnutls_certificate_credentials_t, gnutls_certificate_retrieve_function] gnutls_certificate_set_retrieve_function.restype = None gnutls_certificate_expiration_time_peers = libgnutls.gnutls_certificate_expiration_time_peers gnutls_certificate_expiration_time_peers.argtypes = [gnutls_session_t] gnutls_certificate_expiration_time_peers.restype = time_t gnutls_certificate_expiration_time_peers.errmsg = "cannot get certificate expiration time" gnutls_certificate_free_ca_names = libgnutls.gnutls_certificate_free_ca_names gnutls_certificate_free_ca_names.argtypes = [gnutls_certificate_credentials_t] gnutls_certificate_free_ca_names.restype = None gnutls_certificate_free_cas = libgnutls.gnutls_certificate_free_cas gnutls_certificate_free_cas.argtypes = [gnutls_certificate_credentials_t] gnutls_certificate_free_cas.restype = None gnutls_certificate_free_credentials = libgnutls.gnutls_certificate_free_credentials gnutls_certificate_free_credentials.argtypes = [gnutls_certificate_credentials_t] gnutls_certificate_free_credentials.restype = None gnutls_certificate_free_crls = libgnutls.gnutls_certificate_free_crls gnutls_certificate_free_crls.argtypes = [gnutls_certificate_credentials_t] gnutls_certificate_free_crls.restype = None gnutls_certificate_free_keys = libgnutls.gnutls_certificate_free_keys gnutls_certificate_free_keys.argtypes = [gnutls_certificate_credentials_t] gnutls_certificate_free_keys.restype = None gnutls_certificate_get_ours = libgnutls.gnutls_certificate_get_ours gnutls_certificate_get_ours.argtypes = [gnutls_session_t] gnutls_certificate_get_ours.restype = POINTER(gnutls_datum_t) gnutls_certificate_get_peers = libgnutls.gnutls_certificate_get_peers gnutls_certificate_get_peers.argtypes = [gnutls_session_t, POINTER(c_uint)] gnutls_certificate_get_peers.restype = POINTER(gnutls_datum_t) gnutls_certificate_send_x509_rdn_sequence = libgnutls.gnutls_certificate_send_x509_rdn_sequence gnutls_certificate_send_x509_rdn_sequence.argtypes = [gnutls_session_t, c_int] gnutls_certificate_send_x509_rdn_sequence.restype = None gnutls_certificate_server_set_request = libgnutls.gnutls_certificate_server_set_request gnutls_certificate_server_set_request.argtypes = [gnutls_session_t, gnutls_certificate_request_t] gnutls_certificate_server_set_request.restype = None gnutls_certificate_set_dh_params = libgnutls.gnutls_certificate_set_dh_params gnutls_certificate_set_dh_params.argtypes = [gnutls_certificate_credentials_t, gnutls_dh_params_t] gnutls_certificate_set_dh_params.restype = None gnutls_certificate_set_params_function = libgnutls.gnutls_certificate_set_params_function gnutls_certificate_set_params_function.argtypes = [gnutls_certificate_credentials_t, gnutls_params_function] gnutls_certificate_set_params_function.restype = None gnutls_certificate_set_verify_flags = libgnutls.gnutls_certificate_set_verify_flags gnutls_certificate_set_verify_flags.argtypes = [gnutls_certificate_credentials_t, c_uint] gnutls_certificate_set_verify_flags.restype = None gnutls_certificate_set_verify_limits = libgnutls.gnutls_certificate_set_verify_limits gnutls_certificate_set_verify_limits.argtypes = [gnutls_certificate_credentials_t, c_uint, c_uint] gnutls_certificate_set_verify_limits.restype = None gnutls_certificate_set_x509_crl = libgnutls.gnutls_certificate_set_x509_crl gnutls_certificate_set_x509_crl.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_x509_crl_t), c_int] gnutls_certificate_set_x509_crl.restype = c_int gnutls_certificate_set_x509_crl_file = libgnutls.gnutls_certificate_set_x509_crl_file gnutls_certificate_set_x509_crl_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_crl_file.restype = c_int gnutls_certificate_set_x509_crl_mem = libgnutls.gnutls_certificate_set_x509_crl_mem gnutls_certificate_set_x509_crl_mem.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_crl_mem.restype = c_int gnutls_certificate_set_x509_key = libgnutls.gnutls_certificate_set_x509_key gnutls_certificate_set_x509_key.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_x509_crt_t), c_int, gnutls_x509_privkey_t] gnutls_certificate_set_x509_key.restype = c_int gnutls_certificate_set_x509_key_file = libgnutls.gnutls_certificate_set_x509_key_file gnutls_certificate_set_x509_key_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, c_char_p, gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_key_file.restype = c_int gnutls_certificate_set_x509_key_mem = libgnutls.gnutls_certificate_set_x509_key_mem gnutls_certificate_set_x509_key_mem.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_key_mem.restype = c_int gnutls_certificate_set_x509_simple_pkcs12_file = libgnutls.gnutls_certificate_set_x509_simple_pkcs12_file gnutls_certificate_set_x509_simple_pkcs12_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, gnutls_x509_crt_fmt_t, c_char_p] gnutls_certificate_set_x509_simple_pkcs12_file.restype = c_int gnutls_certificate_set_x509_trust = libgnutls.gnutls_certificate_set_x509_trust gnutls_certificate_set_x509_trust.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_x509_crt_t), c_int] gnutls_certificate_set_x509_trust.restype = c_int gnutls_certificate_set_x509_trust_file = libgnutls.gnutls_certificate_set_x509_trust_file gnutls_certificate_set_x509_trust_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_trust_file.restype = c_int gnutls_certificate_set_x509_trust_mem = libgnutls.gnutls_certificate_set_x509_trust_mem gnutls_certificate_set_x509_trust_mem.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_certificate_set_x509_trust_mem.restype = c_int gnutls_certificate_type_get = libgnutls.gnutls_certificate_type_get gnutls_certificate_type_get.argtypes = [gnutls_session_t] gnutls_certificate_type_get.restype = gnutls_certificate_type_t gnutls_certificate_type_get_id = libgnutls.gnutls_certificate_type_get_id gnutls_certificate_type_get_id.argtypes = [c_char_p] gnutls_certificate_type_get_id.restype = gnutls_certificate_type_t gnutls_certificate_type_get_name = libgnutls.gnutls_certificate_type_get_name gnutls_certificate_type_get_name.argtypes = [gnutls_certificate_type_t] gnutls_certificate_type_get_name.restype = c_char_p gnutls_certificate_type_list = libgnutls.gnutls_certificate_type_list gnutls_certificate_type_list.argtypes = [] gnutls_certificate_type_list.restype = POINTER(gnutls_certificate_type_t) gnutls_certificate_verify_peers2 = libgnutls.gnutls_certificate_verify_peers2 gnutls_certificate_verify_peers2.argtypes = [gnutls_session_t, POINTER(c_uint)] gnutls_certificate_verify_peers2.restype = c_int gnutls_certificate_verify_peers3 = libgnutls.gnutls_certificate_verify_peers3 gnutls_certificate_verify_peers3.argtypes = [gnutls_session_t, c_char_p, POINTER(c_uint)] gnutls_certificate_verify_peers3.restype = c_int gnutls_check_version = libgnutls.gnutls_check_version gnutls_check_version.argtypes = [c_char_p] gnutls_check_version.restype = c_char_p gnutls_cipher_get = libgnutls.gnutls_cipher_get gnutls_cipher_get.argtypes = [gnutls_session_t] gnutls_cipher_get.restype = gnutls_cipher_algorithm_t gnutls_cipher_get_id = libgnutls.gnutls_cipher_get_id gnutls_cipher_get_id.argtypes = [c_char_p] gnutls_cipher_get_id.restype = gnutls_cipher_algorithm_t gnutls_cipher_get_key_size = libgnutls.gnutls_cipher_get_key_size gnutls_cipher_get_key_size.argtypes = [gnutls_cipher_algorithm_t] gnutls_cipher_get_key_size.restype = size_t gnutls_cipher_get_name = libgnutls.gnutls_cipher_get_name gnutls_cipher_get_name.argtypes = [gnutls_cipher_algorithm_t] gnutls_cipher_get_name.restype = c_char_p gnutls_cipher_list = libgnutls.gnutls_cipher_list gnutls_cipher_list.argtypes = [] gnutls_cipher_list.restype = POINTER(gnutls_cipher_algorithm_t) gnutls_cipher_suite_get_name = libgnutls.gnutls_cipher_suite_get_name gnutls_cipher_suite_get_name.argtypes = [gnutls_kx_algorithm_t, gnutls_cipher_algorithm_t, gnutls_mac_algorithm_t] gnutls_cipher_suite_get_name.restype = c_char_p gnutls_cipher_suite_info = libgnutls.gnutls_cipher_suite_info gnutls_cipher_suite_info.argtypes = [size_t, c_char_p, POINTER(gnutls_kx_algorithm_t), POINTER(gnutls_cipher_algorithm_t), POINTER(gnutls_mac_algorithm_t), POINTER(gnutls_protocol_t)] gnutls_cipher_suite_info.restype = c_char_p gnutls_compression_get = libgnutls.gnutls_compression_get gnutls_compression_get.argtypes = [gnutls_session_t] gnutls_compression_get.restype = gnutls_compression_method_t gnutls_compression_get_id = libgnutls.gnutls_compression_get_id gnutls_compression_get_id.argtypes = [c_char_p] gnutls_compression_get_id.restype = gnutls_compression_method_t gnutls_compression_get_name = libgnutls.gnutls_compression_get_name gnutls_compression_get_name.argtypes = [gnutls_compression_method_t] gnutls_compression_get_name.restype = c_char_p gnutls_compression_list = libgnutls.gnutls_compression_list gnutls_compression_list.argtypes = [] gnutls_compression_list.restype = POINTER(gnutls_compression_method_t) gnutls_credentials_clear = libgnutls.gnutls_credentials_clear gnutls_credentials_clear.argtypes = [gnutls_session_t] gnutls_credentials_clear.restype = None gnutls_credentials_set = libgnutls.gnutls_credentials_set gnutls_credentials_set.argtypes = [gnutls_session_t, gnutls_credentials_type_t, c_void_p] gnutls_credentials_set.restype = c_int gnutls_db_check_entry = libgnutls.gnutls_db_check_entry gnutls_db_check_entry.argtypes = [gnutls_session_t, gnutls_datum_t] gnutls_db_check_entry.restype = c_int gnutls_db_get_ptr = libgnutls.gnutls_db_get_ptr gnutls_db_get_ptr.argtypes = [gnutls_session_t] gnutls_db_get_ptr.restype = c_void_p gnutls_db_remove_session = libgnutls.gnutls_db_remove_session gnutls_db_remove_session.argtypes = [gnutls_session_t] gnutls_db_remove_session.restype = None gnutls_db_set_cache_expiration = libgnutls.gnutls_db_set_cache_expiration gnutls_db_set_cache_expiration.argtypes = [gnutls_session_t, c_int] gnutls_db_set_cache_expiration.restype = None gnutls_db_set_ptr = libgnutls.gnutls_db_set_ptr gnutls_db_set_ptr.argtypes = [gnutls_session_t, c_void_p] gnutls_db_set_ptr.restype = None gnutls_db_set_remove_function = libgnutls.gnutls_db_set_remove_function gnutls_db_set_remove_function.argtypes = [gnutls_session_t, gnutls_db_remove_func] gnutls_db_set_remove_function.restype = None gnutls_db_set_retrieve_function = libgnutls.gnutls_db_set_retrieve_function gnutls_db_set_retrieve_function.argtypes = [gnutls_session_t, gnutls_db_retr_func] gnutls_db_set_retrieve_function.restype = None gnutls_db_set_store_function = libgnutls.gnutls_db_set_store_function gnutls_db_set_store_function.argtypes = [gnutls_session_t, gnutls_db_store_func] gnutls_db_set_store_function.restype = None gnutls_deinit = libgnutls.gnutls_deinit gnutls_deinit.argtypes = [gnutls_session_t] gnutls_deinit.restype = None gnutls_dh_get_group = libgnutls.gnutls_dh_get_group gnutls_dh_get_group.argtypes = [gnutls_session_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_dh_get_group.restype = c_int gnutls_dh_get_peers_public_bits = libgnutls.gnutls_dh_get_peers_public_bits gnutls_dh_get_peers_public_bits.argtypes = [gnutls_session_t] gnutls_dh_get_peers_public_bits.restype = c_int gnutls_dh_get_prime_bits = libgnutls.gnutls_dh_get_prime_bits gnutls_dh_get_prime_bits.argtypes = [gnutls_session_t] gnutls_dh_get_prime_bits.restype = c_int gnutls_dh_get_pubkey = libgnutls.gnutls_dh_get_pubkey gnutls_dh_get_pubkey.argtypes = [gnutls_session_t, POINTER(gnutls_datum_t)] gnutls_dh_get_pubkey.restype = c_int gnutls_dh_get_secret_bits = libgnutls.gnutls_dh_get_secret_bits gnutls_dh_get_secret_bits.argtypes = [gnutls_session_t] gnutls_dh_get_secret_bits.restype = c_int gnutls_dh_params_cpy = libgnutls.gnutls_dh_params_cpy gnutls_dh_params_cpy.argtypes = [gnutls_dh_params_t, gnutls_dh_params_t] gnutls_dh_params_cpy.restype = c_int gnutls_dh_params_deinit = libgnutls.gnutls_dh_params_deinit gnutls_dh_params_deinit.argtypes = [gnutls_dh_params_t] gnutls_dh_params_deinit.restype = None gnutls_dh_params_export_pkcs3 = libgnutls.gnutls_dh_params_export_pkcs3 gnutls_dh_params_export_pkcs3.argtypes = [gnutls_dh_params_t, gnutls_x509_crt_fmt_t, POINTER(c_ubyte), POINTER(size_t)] gnutls_dh_params_export_pkcs3.restype = c_int gnutls_dh_params_export_raw = libgnutls.gnutls_dh_params_export_raw gnutls_dh_params_export_raw.argtypes = [gnutls_dh_params_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(c_uint)] gnutls_dh_params_export_raw.restype = c_int gnutls_dh_params_generate2 = libgnutls.gnutls_dh_params_generate2 gnutls_dh_params_generate2.argtypes = [gnutls_dh_params_t, c_uint] gnutls_dh_params_generate2.restype = c_int gnutls_dh_params_import_pkcs3 = libgnutls.gnutls_dh_params_import_pkcs3 gnutls_dh_params_import_pkcs3.argtypes = [gnutls_dh_params_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_dh_params_import_pkcs3.restype = c_int gnutls_dh_params_import_raw = libgnutls.gnutls_dh_params_import_raw gnutls_dh_params_import_raw.argtypes = [gnutls_dh_params_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_dh_params_import_raw.restype = c_int gnutls_dh_params_init = libgnutls.gnutls_dh_params_init gnutls_dh_params_init.argtypes = [POINTER(gnutls_dh_params_t)] gnutls_dh_params_init.restype = c_int gnutls_dh_set_prime_bits = libgnutls.gnutls_dh_set_prime_bits gnutls_dh_set_prime_bits.argtypes = [gnutls_session_t, c_uint] gnutls_dh_set_prime_bits.restype = None gnutls_error_is_fatal = libgnutls.gnutls_error_is_fatal gnutls_error_is_fatal.argtypes = [c_int] gnutls_error_is_fatal.restype = c_int gnutls_error_to_alert = libgnutls.gnutls_error_to_alert gnutls_error_to_alert.argtypes = [c_int, POINTER(c_int)] gnutls_error_to_alert.restype = c_int gnutls_fingerprint = libgnutls.gnutls_fingerprint gnutls_fingerprint.argtypes = [gnutls_digest_algorithm_t, POINTER(gnutls_datum_t), c_void_p, POINTER(size_t)] gnutls_fingerprint.restype = c_int gnutls_global_deinit = libgnutls.gnutls_global_deinit gnutls_global_deinit.argtypes = [] gnutls_global_deinit.restype = None gnutls_global_init = libgnutls.gnutls_global_init gnutls_global_init.argtypes = [] gnutls_global_init.restype = c_int gnutls_global_set_log_function = libgnutls.gnutls_global_set_log_function gnutls_global_set_log_function.argtypes = [gnutls_log_func] gnutls_global_set_log_function.restype = None gnutls_global_set_log_level = libgnutls.gnutls_global_set_log_level gnutls_global_set_log_level.argtypes = [c_int] gnutls_global_set_log_level.restype = None gnutls_global_set_mem_functions = libgnutls.gnutls_global_set_mem_functions gnutls_global_set_mem_functions.argtypes = [gnutls_alloc_function, gnutls_alloc_function, gnutls_is_secure_function, gnutls_realloc_function, gnutls_free_function] gnutls_global_set_mem_functions.restype = None gnutls_handshake = libgnutls.gnutls_handshake gnutls_handshake.argtypes = [gnutls_session_t] gnutls_handshake.restype = c_int gnutls_handshake_get_last_in = libgnutls.gnutls_handshake_get_last_in gnutls_handshake_get_last_in.argtypes = [gnutls_session_t] gnutls_handshake_get_last_in.restype = gnutls_handshake_description_t gnutls_handshake_get_last_out = libgnutls.gnutls_handshake_get_last_out gnutls_handshake_get_last_out.argtypes = [gnutls_session_t] gnutls_handshake_get_last_out.restype = gnutls_handshake_description_t gnutls_handshake_set_max_packet_length = libgnutls.gnutls_handshake_set_max_packet_length gnutls_handshake_set_max_packet_length.argtypes = [gnutls_session_t, size_t] gnutls_handshake_set_max_packet_length.restype = None gnutls_handshake_set_post_client_hello_function = libgnutls.gnutls_handshake_set_post_client_hello_function gnutls_handshake_set_post_client_hello_function.argtypes = [gnutls_session_t, gnutls_handshake_post_client_hello_func] gnutls_handshake_set_post_client_hello_function.restype = None gnutls_handshake_set_private_extensions = libgnutls.gnutls_handshake_set_private_extensions gnutls_handshake_set_private_extensions.argtypes = [gnutls_session_t, c_int] gnutls_handshake_set_private_extensions.restype = None gnutls_hex2bin = libgnutls.gnutls_hex2bin gnutls_hex2bin.argtypes = [c_char_p, size_t, c_char_p, POINTER(size_t)] gnutls_hex2bin.restype = c_int gnutls_hex_decode = libgnutls.gnutls_hex_decode gnutls_hex_decode.argtypes = [POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_hex_decode.restype = c_int gnutls_hex_encode = libgnutls.gnutls_hex_encode gnutls_hex_encode.argtypes = [POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_hex_encode.restype = c_int gnutls_init = libgnutls.gnutls_init gnutls_init.argtypes = [POINTER(gnutls_session_t), gnutls_connection_end_t] gnutls_init.restype = c_int gnutls_kx_get = libgnutls.gnutls_kx_get gnutls_kx_get.argtypes = [gnutls_session_t] gnutls_kx_get.restype = gnutls_kx_algorithm_t gnutls_kx_get_id = libgnutls.gnutls_kx_get_id gnutls_kx_get_id.argtypes = [c_char_p] gnutls_kx_get_id.restype = gnutls_kx_algorithm_t gnutls_kx_get_name = libgnutls.gnutls_kx_get_name gnutls_kx_get_name.argtypes = [gnutls_kx_algorithm_t] gnutls_kx_get_name.restype = c_char_p gnutls_kx_list = libgnutls.gnutls_kx_list gnutls_kx_list.argtypes = [] gnutls_kx_list.restype = POINTER(gnutls_kx_algorithm_t) gnutls_mac_get = libgnutls.gnutls_mac_get gnutls_mac_get.argtypes = [gnutls_session_t] gnutls_mac_get.restype = gnutls_mac_algorithm_t gnutls_mac_get_id = libgnutls.gnutls_mac_get_id gnutls_mac_get_id.argtypes = [c_char_p] gnutls_mac_get_id.restype = gnutls_mac_algorithm_t gnutls_mac_get_key_size = libgnutls.gnutls_mac_get_key_size gnutls_mac_get_key_size.argtypes = [gnutls_mac_algorithm_t] gnutls_mac_get_key_size.restype = size_t gnutls_mac_get_name = libgnutls.gnutls_mac_get_name gnutls_mac_get_name.argtypes = [gnutls_mac_algorithm_t] gnutls_mac_get_name.restype = c_char_p gnutls_mac_list = libgnutls.gnutls_mac_list gnutls_mac_list.argtypes = [] gnutls_mac_list.restype = POINTER(gnutls_mac_algorithm_t) gnutls_pem_base64_decode = libgnutls.gnutls_pem_base64_decode gnutls_pem_base64_decode.argtypes = [c_char_p, POINTER(gnutls_datum_t), POINTER(c_ubyte), POINTER(size_t)] gnutls_pem_base64_decode.restype = c_int gnutls_pem_base64_encode = libgnutls.gnutls_pem_base64_encode gnutls_pem_base64_encode.argtypes = [c_char_p, POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_pem_base64_encode.restype = c_int gnutls_perror = libgnutls.gnutls_perror gnutls_perror.argtypes = [c_int] gnutls_perror.restype = None gnutls_pk_algorithm_get_name = libgnutls.gnutls_pk_algorithm_get_name gnutls_pk_algorithm_get_name.argtypes = [gnutls_pk_algorithm_t] gnutls_pk_algorithm_get_name.restype = c_char_p gnutls_pkcs7_deinit = libgnutls.gnutls_pkcs7_deinit gnutls_pkcs7_deinit.argtypes = [gnutls_pkcs7_t] gnutls_pkcs7_deinit.restype = None gnutls_pkcs7_delete_crl = libgnutls.gnutls_pkcs7_delete_crl gnutls_pkcs7_delete_crl.argtypes = [gnutls_pkcs7_t, c_int] gnutls_pkcs7_delete_crl.restype = c_int gnutls_pkcs7_delete_crt = libgnutls.gnutls_pkcs7_delete_crt gnutls_pkcs7_delete_crt.argtypes = [gnutls_pkcs7_t, c_int] gnutls_pkcs7_delete_crt.restype = c_int gnutls_pkcs7_export = libgnutls.gnutls_pkcs7_export gnutls_pkcs7_export.argtypes = [gnutls_pkcs7_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_pkcs7_export.restype = c_int gnutls_pkcs7_get_crl_count = libgnutls.gnutls_pkcs7_get_crl_count gnutls_pkcs7_get_crl_count.argtypes = [gnutls_pkcs7_t] gnutls_pkcs7_get_crl_count.restype = c_int gnutls_pkcs7_get_crl_raw = libgnutls.gnutls_pkcs7_get_crl_raw gnutls_pkcs7_get_crl_raw.argtypes = [gnutls_pkcs7_t, c_int, c_void_p, POINTER(size_t)] gnutls_pkcs7_get_crl_raw.restype = c_int gnutls_pkcs7_get_crt_count = libgnutls.gnutls_pkcs7_get_crt_count gnutls_pkcs7_get_crt_count.argtypes = [gnutls_pkcs7_t] gnutls_pkcs7_get_crt_count.restype = c_int gnutls_pkcs7_get_crt_raw = libgnutls.gnutls_pkcs7_get_crt_raw gnutls_pkcs7_get_crt_raw.argtypes = [gnutls_pkcs7_t, c_int, c_void_p, POINTER(size_t)] gnutls_pkcs7_get_crt_raw.restype = c_int gnutls_pkcs7_import = libgnutls.gnutls_pkcs7_import gnutls_pkcs7_import.argtypes = [gnutls_pkcs7_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_pkcs7_import.restype = c_int gnutls_pkcs7_init = libgnutls.gnutls_pkcs7_init gnutls_pkcs7_init.argtypes = [POINTER(gnutls_pkcs7_t)] gnutls_pkcs7_init.restype = c_int gnutls_pkcs7_set_crl = libgnutls.gnutls_pkcs7_set_crl gnutls_pkcs7_set_crl.argtypes = [gnutls_pkcs7_t, gnutls_x509_crl_t] gnutls_pkcs7_set_crl.restype = c_int gnutls_pkcs7_set_crl_raw = libgnutls.gnutls_pkcs7_set_crl_raw gnutls_pkcs7_set_crl_raw.argtypes = [gnutls_pkcs7_t, POINTER(gnutls_datum_t)] gnutls_pkcs7_set_crl_raw.restype = c_int gnutls_pkcs7_set_crt = libgnutls.gnutls_pkcs7_set_crt gnutls_pkcs7_set_crt.argtypes = [gnutls_pkcs7_t, gnutls_x509_crt_t] gnutls_pkcs7_set_crt.restype = c_int gnutls_pkcs7_set_crt_raw = libgnutls.gnutls_pkcs7_set_crt_raw gnutls_pkcs7_set_crt_raw.argtypes = [gnutls_pkcs7_t, POINTER(gnutls_datum_t)] gnutls_pkcs7_set_crt_raw.restype = c_int gnutls_prf = libgnutls.gnutls_prf gnutls_prf.argtypes = [gnutls_session_t, size_t, c_char_p, c_int, size_t, c_char_p, size_t, c_char_p] gnutls_prf.restype = c_int gnutls_prf_raw = libgnutls.gnutls_prf_raw gnutls_prf_raw.argtypes = [gnutls_session_t, size_t, c_char_p, size_t, c_char_p, size_t, c_char_p] gnutls_prf_raw.restype = c_int gnutls_priority_deinit = libgnutls.gnutls_priority_deinit gnutls_priority_deinit.argtypes = [gnutls_priority_t] gnutls_priority_deinit.restype = None gnutls_priority_init = libgnutls.gnutls_priority_init gnutls_priority_init.argtypes = [POINTER(gnutls_priority_t), c_char_p, POINTER(c_char_p)] gnutls_priority_init.restype = c_int gnutls_priority_set = libgnutls.gnutls_priority_set gnutls_priority_set.argtypes = [gnutls_session_t, gnutls_priority_t] gnutls_priority_set.restype = c_int gnutls_priority_set_direct = libgnutls.gnutls_priority_set_direct gnutls_priority_set_direct.argtypes = [gnutls_session_t, c_char_p, POINTER(c_char_p)] gnutls_priority_set_direct.restype = c_int gnutls_protocol_get_id = libgnutls.gnutls_protocol_get_id gnutls_protocol_get_id.argtypes = [c_char_p] gnutls_protocol_get_id.restype = gnutls_protocol_t gnutls_protocol_get_name = libgnutls.gnutls_protocol_get_name gnutls_protocol_get_name.argtypes = [gnutls_protocol_t] gnutls_protocol_get_name.restype = c_char_p gnutls_protocol_get_version = libgnutls.gnutls_protocol_get_version gnutls_protocol_get_version.argtypes = [gnutls_session_t] gnutls_protocol_get_version.restype = gnutls_protocol_t gnutls_protocol_list = libgnutls.gnutls_protocol_list gnutls_protocol_list.argtypes = [] gnutls_protocol_list.restype = POINTER(gnutls_protocol_t) gnutls_psk_allocate_client_credentials = libgnutls.gnutls_psk_allocate_client_credentials gnutls_psk_allocate_client_credentials.argtypes = [POINTER(gnutls_psk_client_credentials_t)] gnutls_psk_allocate_client_credentials.restype = c_int gnutls_psk_allocate_server_credentials = libgnutls.gnutls_psk_allocate_server_credentials gnutls_psk_allocate_server_credentials.argtypes = [POINTER(gnutls_psk_server_credentials_t)] gnutls_psk_allocate_server_credentials.restype = c_int gnutls_psk_client_get_hint = libgnutls.gnutls_psk_client_get_hint gnutls_psk_client_get_hint.argtypes = [gnutls_session_t] gnutls_psk_client_get_hint.restype = c_char_p gnutls_psk_free_client_credentials = libgnutls.gnutls_psk_free_client_credentials gnutls_psk_free_client_credentials.argtypes = [gnutls_psk_client_credentials_t] gnutls_psk_free_client_credentials.restype = None gnutls_psk_free_server_credentials = libgnutls.gnutls_psk_free_server_credentials gnutls_psk_free_server_credentials.argtypes = [gnutls_psk_server_credentials_t] gnutls_psk_free_server_credentials.restype = None gnutls_psk_server_get_username = libgnutls.gnutls_psk_server_get_username gnutls_psk_server_get_username.argtypes = [gnutls_session_t] gnutls_psk_server_get_username.restype = c_char_p gnutls_psk_set_client_credentials = libgnutls.gnutls_psk_set_client_credentials gnutls_psk_set_client_credentials.argtypes = [gnutls_psk_client_credentials_t, c_char_p, POINTER(gnutls_datum_t), gnutls_psk_key_flags] gnutls_psk_set_client_credentials.restype = c_int gnutls_psk_set_client_credentials_function = libgnutls.gnutls_psk_set_client_credentials_function gnutls_psk_set_client_credentials_function.argtypes = [gnutls_psk_client_credentials_t, gnutls_psk_client_credentials_function] gnutls_psk_set_client_credentials_function.restype = None gnutls_psk_set_params_function = libgnutls.gnutls_psk_set_params_function gnutls_psk_set_params_function.argtypes = [gnutls_psk_server_credentials_t, gnutls_params_function] gnutls_psk_set_params_function.restype = None gnutls_psk_set_server_credentials_file = libgnutls.gnutls_psk_set_server_credentials_file gnutls_psk_set_server_credentials_file.argtypes = [gnutls_psk_server_credentials_t, c_char_p] gnutls_psk_set_server_credentials_file.restype = c_int gnutls_psk_set_server_credentials_function = libgnutls.gnutls_psk_set_server_credentials_function gnutls_psk_set_server_credentials_function.argtypes = [gnutls_psk_server_credentials_t, gnutls_psk_server_credentials_function] gnutls_psk_set_server_credentials_function.restype = None gnutls_psk_set_server_credentials_hint = libgnutls.gnutls_psk_set_server_credentials_hint gnutls_psk_set_server_credentials_hint.argtypes = [gnutls_psk_server_credentials_t, c_char_p] gnutls_psk_set_server_credentials_hint.restype = c_int gnutls_psk_set_server_dh_params = libgnutls.gnutls_psk_set_server_dh_params gnutls_psk_set_server_dh_params.argtypes = [gnutls_psk_server_credentials_t, gnutls_dh_params_t] gnutls_psk_set_server_dh_params.restype = None gnutls_psk_set_server_params_function = libgnutls.gnutls_psk_set_server_params_function gnutls_psk_set_server_params_function.argtypes = [gnutls_psk_server_credentials_t, gnutls_params_function] gnutls_psk_set_server_params_function.restype = None gnutls_record_check_pending = libgnutls.gnutls_record_check_pending gnutls_record_check_pending.argtypes = [gnutls_session_t] gnutls_record_check_pending.restype = size_t gnutls_record_disable_padding = libgnutls.gnutls_record_disable_padding gnutls_record_disable_padding.argtypes = [gnutls_session_t] gnutls_record_disable_padding.restype = None gnutls_record_get_direction = libgnutls.gnutls_record_get_direction gnutls_record_get_direction.argtypes = [gnutls_session_t] gnutls_record_get_direction.restype = c_int gnutls_record_get_max_size = libgnutls.gnutls_record_get_max_size gnutls_record_get_max_size.argtypes = [gnutls_session_t] gnutls_record_get_max_size.restype = size_t gnutls_record_recv = libgnutls.gnutls_record_recv gnutls_record_recv.argtypes = [gnutls_session_t, c_void_p, size_t] gnutls_record_recv.restype = ssize_t gnutls_record_send = libgnutls.gnutls_record_send gnutls_record_send.argtypes = [gnutls_session_t, c_void_p, size_t] gnutls_record_send.restype = ssize_t gnutls_record_set_max_size = libgnutls.gnutls_record_set_max_size gnutls_record_set_max_size.argtypes = [gnutls_session_t, size_t] gnutls_record_set_max_size.restype = ssize_t gnutls_rehandshake = libgnutls.gnutls_rehandshake gnutls_rehandshake.argtypes = [gnutls_session_t] gnutls_rehandshake.restype = c_int gnutls_server_name_get = libgnutls.gnutls_server_name_get gnutls_server_name_get.argtypes = [gnutls_session_t, c_void_p, POINTER(size_t), POINTER(c_uint), c_uint] gnutls_server_name_get.restype = c_int gnutls_server_name_set = libgnutls.gnutls_server_name_set gnutls_server_name_set.argtypes = [gnutls_session_t, gnutls_server_name_type_t, c_void_p, size_t] gnutls_server_name_set.restype = c_int gnutls_session_enable_compatibility_mode = libgnutls.gnutls_session_enable_compatibility_mode gnutls_session_enable_compatibility_mode.argtypes = [gnutls_session_t] gnutls_session_enable_compatibility_mode.restype = None gnutls_session_get_data = libgnutls.gnutls_session_get_data gnutls_session_get_data.argtypes = [gnutls_session_t, c_void_p, POINTER(size_t)] gnutls_session_get_data.restype = c_int gnutls_session_get_data2 = libgnutls.gnutls_session_get_data2 gnutls_session_get_data2.argtypes = [gnutls_session_t, POINTER(gnutls_datum_t)] gnutls_session_get_data2.restype = c_int gnutls_session_get_id = libgnutls.gnutls_session_get_id gnutls_session_get_id.argtypes = [gnutls_session_t, c_void_p, POINTER(size_t)] gnutls_session_get_id.restype = c_int gnutls_session_get_ptr = libgnutls.gnutls_session_get_ptr gnutls_session_get_ptr.argtypes = [gnutls_session_t] gnutls_session_get_ptr.restype = c_void_p gnutls_session_is_resumed = libgnutls.gnutls_session_is_resumed gnutls_session_is_resumed.argtypes = [gnutls_session_t] gnutls_session_is_resumed.restype = c_int gnutls_session_set_data = libgnutls.gnutls_session_set_data gnutls_session_set_data.argtypes = [gnutls_session_t, c_void_p, size_t] gnutls_session_set_data.restype = c_int gnutls_session_set_ptr = libgnutls.gnutls_session_set_ptr gnutls_session_set_ptr.argtypes = [gnutls_session_t, c_void_p] gnutls_session_set_ptr.restype = None gnutls_set_default_priority = libgnutls.gnutls_set_default_priority gnutls_set_default_priority.argtypes = [gnutls_session_t] gnutls_set_default_priority.restype = c_int gnutls_sign_get_name = libgnutls.gnutls_sign_get_name gnutls_sign_get_name.argtypes = [gnutls_sign_algorithm_t] gnutls_sign_get_name.restype = c_char_p gnutls_strerror = libgnutls.gnutls_strerror gnutls_strerror.argtypes = [c_int] gnutls_strerror.restype = c_char_p gnutls_supplemental_get_name = libgnutls.gnutls_supplemental_get_name gnutls_supplemental_get_name.argtypes = [gnutls_supplemental_data_format_type_t] gnutls_supplemental_get_name.restype = c_char_p gnutls_transport_get_ptr = libgnutls.gnutls_transport_get_ptr gnutls_transport_get_ptr.argtypes = [gnutls_session_t] gnutls_transport_get_ptr.restype = gnutls_transport_ptr_t gnutls_transport_get_ptr2 = libgnutls.gnutls_transport_get_ptr2 gnutls_transport_get_ptr2.argtypes = [gnutls_session_t, POINTER(gnutls_transport_ptr_t), POINTER(gnutls_transport_ptr_t)] gnutls_transport_get_ptr2.restype = None gnutls_transport_set_errno = libgnutls.gnutls_transport_set_errno gnutls_transport_set_errno.argtypes = [gnutls_session_t, c_int] gnutls_transport_set_errno.restype = None gnutls_transport_set_ptr = libgnutls.gnutls_transport_set_ptr gnutls_transport_set_ptr.argtypes = [gnutls_session_t, gnutls_transport_ptr_t] gnutls_transport_set_ptr.restype = None gnutls_transport_set_ptr2 = libgnutls.gnutls_transport_set_ptr2 gnutls_transport_set_ptr2.argtypes = [gnutls_session_t, gnutls_transport_ptr_t, gnutls_transport_ptr_t] gnutls_transport_set_ptr2.restype = None gnutls_transport_set_pull_function = libgnutls.gnutls_transport_set_pull_function gnutls_transport_set_pull_function.argtypes = [gnutls_session_t, gnutls_pull_func] gnutls_transport_set_pull_function.restype = None gnutls_transport_set_push_function = libgnutls.gnutls_transport_set_push_function gnutls_transport_set_push_function.argtypes = [gnutls_session_t, gnutls_push_func] gnutls_transport_set_push_function.restype = None gnutls_x509_crl_check_issuer = libgnutls.gnutls_x509_crl_check_issuer gnutls_x509_crl_check_issuer.argtypes = [gnutls_x509_crl_t, gnutls_x509_crt_t] gnutls_x509_crl_check_issuer.restype = c_int gnutls_x509_crl_deinit = libgnutls.gnutls_x509_crl_deinit gnutls_x509_crl_deinit.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_deinit.restype = None gnutls_x509_crl_export = libgnutls.gnutls_x509_crl_export gnutls_x509_crl_export.argtypes = [gnutls_x509_crl_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_x509_crl_export.restype = c_int gnutls_x509_crl_get_crt_count = libgnutls.gnutls_x509_crl_get_crt_count gnutls_x509_crl_get_crt_count.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_get_crt_count.restype = c_int gnutls_x509_crl_get_crt_serial = libgnutls.gnutls_x509_crl_get_crt_serial gnutls_x509_crl_get_crt_serial.argtypes = [gnutls_x509_crl_t, c_int, POINTER(c_ubyte), POINTER(size_t), POINTER(time_t)] gnutls_x509_crl_get_crt_serial.restype = c_int gnutls_x509_crl_get_dn_oid = libgnutls.gnutls_x509_crl_get_dn_oid gnutls_x509_crl_get_dn_oid.argtypes = [gnutls_x509_crl_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crl_get_dn_oid.restype = c_int gnutls_x509_crl_get_issuer_dn = libgnutls.gnutls_x509_crl_get_issuer_dn gnutls_x509_crl_get_issuer_dn.argtypes = [gnutls_x509_crl_t, c_char_p, POINTER(size_t)] gnutls_x509_crl_get_issuer_dn.restype = c_int gnutls_x509_crl_get_issuer_dn_by_oid = libgnutls.gnutls_x509_crl_get_issuer_dn_by_oid gnutls_x509_crl_get_issuer_dn_by_oid.argtypes = [gnutls_x509_crl_t, c_char_p, c_int, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_crl_get_issuer_dn_by_oid.restype = c_int gnutls_x509_crl_get_next_update = libgnutls.gnutls_x509_crl_get_next_update gnutls_x509_crl_get_next_update.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_get_next_update.restype = time_t gnutls_x509_crl_get_next_update.errmsg = "cannot get CRL's next update time" gnutls_x509_crl_get_signature = libgnutls.gnutls_x509_crl_get_signature gnutls_x509_crl_get_signature.argtypes = [gnutls_x509_crl_t, c_char_p, POINTER(size_t)] gnutls_x509_crl_get_signature.restype = c_int gnutls_x509_crl_get_signature_algorithm = libgnutls.gnutls_x509_crl_get_signature_algorithm gnutls_x509_crl_get_signature_algorithm.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_get_signature_algorithm.restype = c_int gnutls_x509_crl_get_this_update = libgnutls.gnutls_x509_crl_get_this_update gnutls_x509_crl_get_this_update.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_get_this_update.restype = time_t gnutls_x509_crl_get_this_update.errmsg = "cannot get CRL's issue time" gnutls_x509_crl_get_version = libgnutls.gnutls_x509_crl_get_version gnutls_x509_crl_get_version.argtypes = [gnutls_x509_crl_t] gnutls_x509_crl_get_version.restype = c_int gnutls_x509_crl_import = libgnutls.gnutls_x509_crl_import gnutls_x509_crl_import.argtypes = [gnutls_x509_crl_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_x509_crl_import.restype = c_int gnutls_x509_crl_init = libgnutls.gnutls_x509_crl_init gnutls_x509_crl_init.argtypes = [POINTER(gnutls_x509_crl_t)] gnutls_x509_crl_init.restype = c_int gnutls_x509_crl_print = libgnutls.gnutls_x509_crl_print gnutls_x509_crl_print.argtypes = [gnutls_x509_crl_t, gnutls_certificate_print_formats_t, POINTER(gnutls_datum_t)] gnutls_x509_crl_print.restype = c_int gnutls_x509_crl_set_crt = libgnutls.gnutls_x509_crl_set_crt gnutls_x509_crl_set_crt.argtypes = [gnutls_x509_crl_t, gnutls_x509_crt_t, time_t] gnutls_x509_crl_set_crt.restype = c_int gnutls_x509_crl_set_crt_serial = libgnutls.gnutls_x509_crl_set_crt_serial gnutls_x509_crl_set_crt_serial.argtypes = [gnutls_x509_crl_t, c_void_p, size_t, time_t] gnutls_x509_crl_set_crt_serial.restype = c_int gnutls_x509_crl_set_next_update = libgnutls.gnutls_x509_crl_set_next_update gnutls_x509_crl_set_next_update.argtypes = [gnutls_x509_crl_t, time_t] gnutls_x509_crl_set_next_update.restype = c_int gnutls_x509_crl_set_this_update = libgnutls.gnutls_x509_crl_set_this_update gnutls_x509_crl_set_this_update.argtypes = [gnutls_x509_crl_t, time_t] gnutls_x509_crl_set_this_update.restype = c_int gnutls_x509_crl_set_version = libgnutls.gnutls_x509_crl_set_version gnutls_x509_crl_set_version.argtypes = [gnutls_x509_crl_t, c_uint] gnutls_x509_crl_set_version.restype = c_int gnutls_x509_crl_sign = libgnutls.gnutls_x509_crl_sign gnutls_x509_crl_sign.argtypes = [gnutls_x509_crl_t, gnutls_x509_crt_t, gnutls_x509_privkey_t] gnutls_x509_crl_sign.restype = c_int gnutls_x509_crl_sign2 = libgnutls.gnutls_x509_crl_sign2 gnutls_x509_crl_sign2.argtypes = [gnutls_x509_crl_t, gnutls_x509_crt_t, gnutls_x509_privkey_t, gnutls_digest_algorithm_t, c_uint] gnutls_x509_crl_sign2.restype = c_int gnutls_x509_crl_verify = libgnutls.gnutls_x509_crl_verify gnutls_x509_crl_verify.argtypes = [gnutls_x509_crl_t, POINTER(gnutls_x509_crt_t), c_int, c_uint, POINTER(c_uint)] gnutls_x509_crl_verify.restype = c_int gnutls_x509_crq_deinit = libgnutls.gnutls_x509_crq_deinit gnutls_x509_crq_deinit.argtypes = [gnutls_x509_crq_t] gnutls_x509_crq_deinit.restype = None gnutls_x509_crq_export = libgnutls.gnutls_x509_crq_export gnutls_x509_crq_export.argtypes = [gnutls_x509_crq_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_x509_crq_export.restype = c_int gnutls_x509_crq_get_attribute_by_oid = libgnutls.gnutls_x509_crq_get_attribute_by_oid gnutls_x509_crq_get_attribute_by_oid.argtypes = [gnutls_x509_crq_t, c_char_p, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crq_get_attribute_by_oid.restype = c_int gnutls_x509_crq_get_challenge_password = libgnutls.gnutls_x509_crq_get_challenge_password gnutls_x509_crq_get_challenge_password.argtypes = [gnutls_x509_crq_t, c_char_p, POINTER(size_t)] gnutls_x509_crq_get_challenge_password.restype = c_int gnutls_x509_crq_get_dn = libgnutls.gnutls_x509_crq_get_dn gnutls_x509_crq_get_dn.argtypes = [gnutls_x509_crq_t, c_char_p, POINTER(size_t)] gnutls_x509_crq_get_dn.restype = c_int gnutls_x509_crq_get_dn_by_oid = libgnutls.gnutls_x509_crq_get_dn_by_oid gnutls_x509_crq_get_dn_by_oid.argtypes = [gnutls_x509_crq_t, c_char_p, c_int, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_crq_get_dn_by_oid.restype = c_int gnutls_x509_crq_get_dn_oid = libgnutls.gnutls_x509_crq_get_dn_oid gnutls_x509_crq_get_dn_oid.argtypes = [gnutls_x509_crq_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crq_get_dn_oid.restype = c_int gnutls_x509_crq_get_pk_algorithm = libgnutls.gnutls_x509_crq_get_pk_algorithm gnutls_x509_crq_get_pk_algorithm.argtypes = [gnutls_x509_crq_t, POINTER(c_uint)] gnutls_x509_crq_get_pk_algorithm.restype = c_int gnutls_x509_crq_import = libgnutls.gnutls_x509_crq_import gnutls_x509_crq_import.argtypes = [gnutls_x509_crq_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_x509_crq_import.restype = c_int gnutls_x509_crq_init = libgnutls.gnutls_x509_crq_init gnutls_x509_crq_init.argtypes = [POINTER(gnutls_x509_crq_t)] gnutls_x509_crq_init.restype = c_int gnutls_x509_crq_set_attribute_by_oid = libgnutls.gnutls_x509_crq_set_attribute_by_oid gnutls_x509_crq_set_attribute_by_oid.argtypes = [gnutls_x509_crq_t, c_char_p, c_void_p, size_t] gnutls_x509_crq_set_attribute_by_oid.restype = c_int gnutls_x509_crq_set_challenge_password = libgnutls.gnutls_x509_crq_set_challenge_password gnutls_x509_crq_set_challenge_password.argtypes = [gnutls_x509_crq_t, c_char_p] gnutls_x509_crq_set_challenge_password.restype = c_int gnutls_x509_crq_set_dn_by_oid = libgnutls.gnutls_x509_crq_set_dn_by_oid gnutls_x509_crq_set_dn_by_oid.argtypes = [gnutls_x509_crq_t, c_char_p, c_uint, c_void_p, c_uint] gnutls_x509_crq_set_dn_by_oid.restype = c_int gnutls_x509_crq_set_key = libgnutls.gnutls_x509_crq_set_key gnutls_x509_crq_set_key.argtypes = [gnutls_x509_crq_t, gnutls_x509_privkey_t] gnutls_x509_crq_set_key.restype = c_int gnutls_x509_crq_set_version = libgnutls.gnutls_x509_crq_set_version gnutls_x509_crq_set_version.argtypes = [gnutls_x509_crq_t, c_uint] gnutls_x509_crq_set_version.restype = c_int gnutls_x509_crq_sign = libgnutls.gnutls_x509_crq_sign gnutls_x509_crq_sign.argtypes = [gnutls_x509_crq_t, gnutls_x509_privkey_t] gnutls_x509_crq_sign.restype = c_int gnutls_x509_crq_sign2 = libgnutls.gnutls_x509_crq_sign2 gnutls_x509_crq_sign2.argtypes = [gnutls_x509_crq_t, gnutls_x509_privkey_t, gnutls_digest_algorithm_t, c_uint] gnutls_x509_crq_sign2.restype = c_int gnutls_x509_crt_check_hostname = libgnutls.gnutls_x509_crt_check_hostname gnutls_x509_crt_check_hostname.argtypes = [gnutls_x509_crt_t, c_char_p] gnutls_x509_crt_check_hostname.restype = c_int gnutls_x509_crt_check_issuer = libgnutls.gnutls_x509_crt_check_issuer gnutls_x509_crt_check_issuer.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_t] gnutls_x509_crt_check_issuer.restype = c_int gnutls_x509_crt_check_revocation = libgnutls.gnutls_x509_crt_check_revocation gnutls_x509_crt_check_revocation.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_x509_crl_t), c_int] gnutls_x509_crt_check_revocation.restype = c_int gnutls_x509_crt_cpy_crl_dist_points = libgnutls.gnutls_x509_crt_cpy_crl_dist_points gnutls_x509_crt_cpy_crl_dist_points.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_t] gnutls_x509_crt_cpy_crl_dist_points.restype = c_int gnutls_x509_crt_deinit = libgnutls.gnutls_x509_crt_deinit gnutls_x509_crt_deinit.argtypes = [gnutls_x509_crt_t] gnutls_x509_crt_deinit.restype = None gnutls_x509_crt_export = libgnutls.gnutls_x509_crt_export gnutls_x509_crt_export.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_x509_crt_export.restype = c_int gnutls_x509_crt_get_activation_time = libgnutls.gnutls_x509_crt_get_activation_time gnutls_x509_crt_get_activation_time.argtypes = [gnutls_x509_crt_t] gnutls_x509_crt_get_activation_time.restype = time_t gnutls_x509_crt_get_activation_time.errmsg = "cannot get X509 certificate activation time" gnutls_x509_crt_get_authority_key_id = libgnutls.gnutls_x509_crt_get_authority_key_id gnutls_x509_crt_get_authority_key_id.argtypes = [gnutls_x509_crt_t, c_void_p, POINTER(size_t), POINTER(c_uint)] gnutls_x509_crt_get_authority_key_id.restype = c_int gnutls_x509_crt_get_basic_constraints = libgnutls.gnutls_x509_crt_get_basic_constraints gnutls_x509_crt_get_basic_constraints.argtypes = [gnutls_x509_crt_t, POINTER(c_uint), POINTER(c_int), POINTER(c_int)] gnutls_x509_crt_get_basic_constraints.restype = c_int gnutls_x509_crt_get_ca_status = libgnutls.gnutls_x509_crt_get_ca_status gnutls_x509_crt_get_ca_status.argtypes = [gnutls_x509_crt_t, POINTER(c_uint)] gnutls_x509_crt_get_ca_status.restype = c_int gnutls_x509_crt_get_crl_dist_points = libgnutls.gnutls_x509_crt_get_crl_dist_points gnutls_x509_crt_get_crl_dist_points.argtypes = [gnutls_x509_crt_t, c_uint, c_void_p, POINTER(size_t), POINTER(c_uint), POINTER(c_uint)] gnutls_x509_crt_get_crl_dist_points.restype = c_int gnutls_x509_crt_get_dn = libgnutls.gnutls_x509_crt_get_dn gnutls_x509_crt_get_dn.argtypes = [gnutls_x509_crt_t, c_char_p, POINTER(size_t)] gnutls_x509_crt_get_dn.restype = c_int gnutls_x509_crt_get_dn_by_oid = libgnutls.gnutls_x509_crt_get_dn_by_oid gnutls_x509_crt_get_dn_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_int, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_dn_by_oid.restype = c_int gnutls_x509_crt_get_dn_oid = libgnutls.gnutls_x509_crt_get_dn_oid gnutls_x509_crt_get_dn_oid.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_dn_oid.restype = c_int gnutls_x509_crt_get_expiration_time = libgnutls.gnutls_x509_crt_get_expiration_time gnutls_x509_crt_get_expiration_time.argtypes = [gnutls_x509_crt_t] gnutls_x509_crt_get_expiration_time.restype = time_t gnutls_x509_crt_get_expiration_time.errmsg = "cannot get X509 certificate expiration time" gnutls_x509_crt_get_extension_by_oid = libgnutls.gnutls_x509_crt_get_extension_by_oid gnutls_x509_crt_get_extension_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_int, c_void_p, POINTER(size_t), POINTER(c_uint)] gnutls_x509_crt_get_extension_by_oid.restype = c_int gnutls_x509_crt_get_extension_data = libgnutls.gnutls_x509_crt_get_extension_data gnutls_x509_crt_get_extension_data.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_extension_data.restype = c_int gnutls_x509_crt_get_extension_info = libgnutls.gnutls_x509_crt_get_extension_info gnutls_x509_crt_get_extension_info.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t), POINTER(c_int)] gnutls_x509_crt_get_extension_info.restype = c_int gnutls_x509_crt_get_extension_oid = libgnutls.gnutls_x509_crt_get_extension_oid gnutls_x509_crt_get_extension_oid.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_extension_oid.restype = c_int gnutls_x509_crt_get_fingerprint = libgnutls.gnutls_x509_crt_get_fingerprint gnutls_x509_crt_get_fingerprint.argtypes = [gnutls_x509_crt_t, gnutls_digest_algorithm_t, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_fingerprint.restype = c_int gnutls_x509_crt_get_issuer = libgnutls.gnutls_x509_crt_get_issuer gnutls_x509_crt_get_issuer.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_x509_dn_t)] gnutls_x509_crt_get_issuer.restype = c_int gnutls_x509_crt_get_issuer_dn = libgnutls.gnutls_x509_crt_get_issuer_dn gnutls_x509_crt_get_issuer_dn.argtypes = [gnutls_x509_crt_t, c_char_p, POINTER(size_t)] gnutls_x509_crt_get_issuer_dn.restype = c_int gnutls_x509_crt_get_issuer_dn_by_oid = libgnutls.gnutls_x509_crt_get_issuer_dn_by_oid gnutls_x509_crt_get_issuer_dn_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_int, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_issuer_dn_by_oid.restype = c_int gnutls_x509_crt_get_issuer_dn_oid = libgnutls.gnutls_x509_crt_get_issuer_dn_oid gnutls_x509_crt_get_issuer_dn_oid.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_issuer_dn_oid.restype = c_int gnutls_x509_crt_get_key_id = libgnutls.gnutls_x509_crt_get_key_id gnutls_x509_crt_get_key_id.argtypes = [gnutls_x509_crt_t, c_uint, POINTER(c_ubyte), POINTER(size_t)] gnutls_x509_crt_get_key_id.restype = c_int gnutls_x509_crt_get_key_purpose_oid = libgnutls.gnutls_x509_crt_get_key_purpose_oid gnutls_x509_crt_get_key_purpose_oid.argtypes = [gnutls_x509_crt_t, c_int, c_void_p, POINTER(size_t), POINTER(c_uint)] gnutls_x509_crt_get_key_purpose_oid.restype = c_int gnutls_x509_crt_get_key_usage = libgnutls.gnutls_x509_crt_get_key_usage gnutls_x509_crt_get_key_usage.argtypes = [gnutls_x509_crt_t, POINTER(c_uint), POINTER(c_uint)] gnutls_x509_crt_get_key_usage.restype = c_int gnutls_x509_crt_get_pk_algorithm = libgnutls.gnutls_x509_crt_get_pk_algorithm gnutls_x509_crt_get_pk_algorithm.argtypes = [gnutls_x509_crt_t, POINTER(c_uint)] gnutls_x509_crt_get_pk_algorithm.restype = c_int gnutls_x509_crt_get_pk_dsa_raw = libgnutls.gnutls_x509_crt_get_pk_dsa_raw gnutls_x509_crt_get_pk_dsa_raw.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_crt_get_pk_dsa_raw.restype = c_int gnutls_x509_crt_get_pk_rsa_raw = libgnutls.gnutls_x509_crt_get_pk_rsa_raw gnutls_x509_crt_get_pk_rsa_raw.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_crt_get_pk_rsa_raw.restype = c_int gnutls_x509_crt_get_proxy = libgnutls.gnutls_x509_crt_get_proxy gnutls_x509_crt_get_proxy.argtypes = [gnutls_x509_crt_t, POINTER(c_uint), POINTER(c_int), POINTER(c_char_p), POINTER(c_char_p), POINTER(size_t)] gnutls_x509_crt_get_proxy.restype = c_int gnutls_x509_crt_get_raw_dn = libgnutls.gnutls_x509_crt_get_raw_dn gnutls_x509_crt_get_raw_dn.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_datum_t)] gnutls_x509_crt_get_raw_dn.restype = c_int gnutls_x509_crt_get_raw_issuer_dn = libgnutls.gnutls_x509_crt_get_raw_issuer_dn gnutls_x509_crt_get_raw_issuer_dn.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_datum_t)] gnutls_x509_crt_get_raw_issuer_dn.restype = c_int gnutls_x509_crt_get_serial = libgnutls.gnutls_x509_crt_get_serial gnutls_x509_crt_get_serial.argtypes = [gnutls_x509_crt_t, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_serial.restype = c_int gnutls_x509_crt_get_signature = libgnutls.gnutls_x509_crt_get_signature gnutls_x509_crt_get_signature.argtypes = [gnutls_x509_crt_t, c_char_p, POINTER(size_t)] gnutls_x509_crt_get_signature.restype = c_int gnutls_x509_crt_get_signature_algorithm = libgnutls.gnutls_x509_crt_get_signature_algorithm gnutls_x509_crt_get_signature_algorithm.argtypes = [gnutls_x509_crt_t] gnutls_x509_crt_get_signature_algorithm.restype = c_int gnutls_x509_crt_get_subject = libgnutls.gnutls_x509_crt_get_subject gnutls_x509_crt_get_subject.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_x509_dn_t)] gnutls_x509_crt_get_subject.restype = c_int gnutls_x509_crt_get_subject_alt_name = libgnutls.gnutls_x509_crt_get_subject_alt_name gnutls_x509_crt_get_subject_alt_name.argtypes = [gnutls_x509_crt_t, c_uint, c_void_p, POINTER(size_t), POINTER(c_uint)] gnutls_x509_crt_get_subject_alt_name.restype = c_int gnutls_x509_crt_get_subject_alt_name2 = libgnutls.gnutls_x509_crt_get_subject_alt_name2 gnutls_x509_crt_get_subject_alt_name2.argtypes = [gnutls_x509_crt_t, c_uint, c_void_p, POINTER(size_t), POINTER(c_uint), POINTER(c_uint)] gnutls_x509_crt_get_subject_alt_name2.restype = c_int gnutls_x509_crt_get_subject_alt_othername_oid = libgnutls.gnutls_x509_crt_get_subject_alt_othername_oid gnutls_x509_crt_get_subject_alt_othername_oid.argtypes = [gnutls_x509_crt_t, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_crt_get_subject_alt_othername_oid.restype = c_int gnutls_x509_crt_get_subject_key_id = libgnutls.gnutls_x509_crt_get_subject_key_id gnutls_x509_crt_get_subject_key_id.argtypes = [gnutls_x509_crt_t, c_void_p, POINTER(size_t), POINTER(c_uint)] gnutls_x509_crt_get_subject_key_id.restype = c_int gnutls_x509_crt_get_version = libgnutls.gnutls_x509_crt_get_version gnutls_x509_crt_get_version.argtypes = [gnutls_x509_crt_t] gnutls_x509_crt_get_version.restype = c_int gnutls_x509_crt_import = libgnutls.gnutls_x509_crt_import gnutls_x509_crt_import.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_x509_crt_import.restype = c_int gnutls_x509_crt_init = libgnutls.gnutls_x509_crt_init gnutls_x509_crt_init.argtypes = [POINTER(gnutls_x509_crt_t)] gnutls_x509_crt_init.restype = c_int gnutls_x509_crt_list_import = libgnutls.gnutls_x509_crt_list_import gnutls_x509_crt_list_import.argtypes = [POINTER(gnutls_x509_crt_t), POINTER(c_uint), POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t, c_uint] gnutls_x509_crt_list_import.restype = c_int gnutls_x509_crt_list_verify = libgnutls.gnutls_x509_crt_list_verify gnutls_x509_crt_list_verify.argtypes = [POINTER(gnutls_x509_crt_t), c_int, POINTER(gnutls_x509_crt_t), c_int, POINTER(gnutls_x509_crl_t), c_int, c_uint, POINTER(c_uint)] gnutls_x509_crt_list_verify.restype = c_int gnutls_x509_crt_print = libgnutls.gnutls_x509_crt_print gnutls_x509_crt_print.argtypes = [gnutls_x509_crt_t, gnutls_certificate_print_formats_t, POINTER(gnutls_datum_t)] gnutls_x509_crt_print.restype = c_int gnutls_x509_crt_set_activation_time = libgnutls.gnutls_x509_crt_set_activation_time gnutls_x509_crt_set_activation_time.argtypes = [gnutls_x509_crt_t, time_t] gnutls_x509_crt_set_activation_time.restype = c_int gnutls_x509_crt_set_authority_key_id = libgnutls.gnutls_x509_crt_set_authority_key_id gnutls_x509_crt_set_authority_key_id.argtypes = [gnutls_x509_crt_t, c_void_p, size_t] gnutls_x509_crt_set_authority_key_id.restype = c_int gnutls_x509_crt_set_basic_constraints = libgnutls.gnutls_x509_crt_set_basic_constraints gnutls_x509_crt_set_basic_constraints.argtypes = [gnutls_x509_crt_t, c_uint, c_int] gnutls_x509_crt_set_basic_constraints.restype = c_int gnutls_x509_crt_set_ca_status = libgnutls.gnutls_x509_crt_set_ca_status gnutls_x509_crt_set_ca_status.argtypes = [gnutls_x509_crt_t, c_uint] gnutls_x509_crt_set_ca_status.restype = c_int gnutls_x509_crt_set_crl_dist_points = libgnutls.gnutls_x509_crt_set_crl_dist_points gnutls_x509_crt_set_crl_dist_points.argtypes = [gnutls_x509_crt_t, gnutls_x509_subject_alt_name_t, c_void_p, c_uint] gnutls_x509_crt_set_crl_dist_points.restype = c_int gnutls_x509_crt_set_crq = libgnutls.gnutls_x509_crt_set_crq gnutls_x509_crt_set_crq.argtypes = [gnutls_x509_crt_t, gnutls_x509_crq_t] gnutls_x509_crt_set_crq.restype = c_int gnutls_x509_crt_set_dn_by_oid = libgnutls.gnutls_x509_crt_set_dn_by_oid gnutls_x509_crt_set_dn_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_uint, c_void_p, c_uint] gnutls_x509_crt_set_dn_by_oid.restype = c_int gnutls_x509_crt_set_expiration_time = libgnutls.gnutls_x509_crt_set_expiration_time gnutls_x509_crt_set_expiration_time.argtypes = [gnutls_x509_crt_t, time_t] gnutls_x509_crt_set_expiration_time.restype = c_int gnutls_x509_crt_set_extension_by_oid = libgnutls.gnutls_x509_crt_set_extension_by_oid gnutls_x509_crt_set_extension_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_void_p, size_t, c_uint] gnutls_x509_crt_set_extension_by_oid.restype = c_int gnutls_x509_crt_set_issuer_dn_by_oid = libgnutls.gnutls_x509_crt_set_issuer_dn_by_oid gnutls_x509_crt_set_issuer_dn_by_oid.argtypes = [gnutls_x509_crt_t, c_char_p, c_uint, c_void_p, c_uint] gnutls_x509_crt_set_issuer_dn_by_oid.restype = c_int gnutls_x509_crt_set_key = libgnutls.gnutls_x509_crt_set_key gnutls_x509_crt_set_key.argtypes = [gnutls_x509_crt_t, gnutls_x509_privkey_t] gnutls_x509_crt_set_key.restype = c_int gnutls_x509_crt_set_key_purpose_oid = libgnutls.gnutls_x509_crt_set_key_purpose_oid gnutls_x509_crt_set_key_purpose_oid.argtypes = [gnutls_x509_crt_t, c_void_p, c_uint] gnutls_x509_crt_set_key_purpose_oid.restype = c_int gnutls_x509_crt_set_key_usage = libgnutls.gnutls_x509_crt_set_key_usage gnutls_x509_crt_set_key_usage.argtypes = [gnutls_x509_crt_t, c_uint] gnutls_x509_crt_set_key_usage.restype = c_int gnutls_x509_crt_set_proxy = libgnutls.gnutls_x509_crt_set_proxy gnutls_x509_crt_set_proxy.argtypes = [gnutls_x509_crt_t, c_int, c_char_p, c_char_p, size_t] gnutls_x509_crt_set_proxy.restype = c_int gnutls_x509_crt_set_proxy_dn = libgnutls.gnutls_x509_crt_set_proxy_dn gnutls_x509_crt_set_proxy_dn.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_t, c_uint, c_void_p, c_uint] gnutls_x509_crt_set_proxy_dn.restype = c_int gnutls_x509_crt_set_serial = libgnutls.gnutls_x509_crt_set_serial gnutls_x509_crt_set_serial.argtypes = [gnutls_x509_crt_t, c_void_p, size_t] gnutls_x509_crt_set_serial.restype = c_int gnutls_x509_crt_set_subject_alternative_name = libgnutls.gnutls_x509_crt_set_subject_alternative_name gnutls_x509_crt_set_subject_alternative_name.argtypes = [gnutls_x509_crt_t, gnutls_x509_subject_alt_name_t, c_char_p] gnutls_x509_crt_set_subject_alternative_name.restype = c_int gnutls_x509_crt_set_subject_key_id = libgnutls.gnutls_x509_crt_set_subject_key_id gnutls_x509_crt_set_subject_key_id.argtypes = [gnutls_x509_crt_t, c_void_p, size_t] gnutls_x509_crt_set_subject_key_id.restype = c_int gnutls_x509_crt_set_version = libgnutls.gnutls_x509_crt_set_version gnutls_x509_crt_set_version.argtypes = [gnutls_x509_crt_t, c_uint] gnutls_x509_crt_set_version.restype = c_int gnutls_x509_crt_sign = libgnutls.gnutls_x509_crt_sign gnutls_x509_crt_sign.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_t, gnutls_x509_privkey_t] gnutls_x509_crt_sign.restype = c_int gnutls_x509_crt_sign2 = libgnutls.gnutls_x509_crt_sign2 gnutls_x509_crt_sign2.argtypes = [gnutls_x509_crt_t, gnutls_x509_crt_t, gnutls_x509_privkey_t, gnutls_digest_algorithm_t, c_uint] gnutls_x509_crt_sign2.restype = c_int gnutls_x509_crt_verify = libgnutls.gnutls_x509_crt_verify gnutls_x509_crt_verify.argtypes = [gnutls_x509_crt_t, POINTER(gnutls_x509_crt_t), c_int, c_uint, POINTER(c_uint)] gnutls_x509_crt_verify.restype = c_int gnutls_x509_dn_deinit = libgnutls.gnutls_x509_dn_deinit gnutls_x509_dn_deinit.argtypes = [gnutls_x509_dn_t] gnutls_x509_dn_deinit.restype = None gnutls_x509_dn_export = libgnutls.gnutls_x509_dn_export gnutls_x509_dn_export.argtypes = [gnutls_x509_dn_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_x509_dn_export.restype = c_int gnutls_x509_dn_get_rdn_ava = libgnutls.gnutls_x509_dn_get_rdn_ava gnutls_x509_dn_get_rdn_ava.argtypes = [gnutls_x509_dn_t, c_int, c_int, POINTER(gnutls_x509_ava_st)] gnutls_x509_dn_get_rdn_ava.restype = c_int gnutls_x509_dn_import = libgnutls.gnutls_x509_dn_import gnutls_x509_dn_import.argtypes = [gnutls_x509_dn_t, POINTER(gnutls_datum_t)] gnutls_x509_dn_import.restype = c_int gnutls_x509_dn_init = libgnutls.gnutls_x509_dn_init gnutls_x509_dn_init.argtypes = [POINTER(gnutls_x509_dn_t)] gnutls_x509_dn_init.restype = c_int gnutls_x509_dn_oid_known = libgnutls.gnutls_x509_dn_oid_known gnutls_x509_dn_oid_known.argtypes = [c_char_p] gnutls_x509_dn_oid_known.restype = c_int gnutls_x509_privkey_cpy = libgnutls.gnutls_x509_privkey_cpy gnutls_x509_privkey_cpy.argtypes = [gnutls_x509_privkey_t, gnutls_x509_privkey_t] gnutls_x509_privkey_cpy.restype = c_int gnutls_x509_privkey_deinit = libgnutls.gnutls_x509_privkey_deinit gnutls_x509_privkey_deinit.argtypes = [gnutls_x509_privkey_t] gnutls_x509_privkey_deinit.restype = None gnutls_x509_privkey_export = libgnutls.gnutls_x509_privkey_export gnutls_x509_privkey_export.argtypes = [gnutls_x509_privkey_t, gnutls_x509_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_x509_privkey_export.restype = c_int gnutls_x509_privkey_export_dsa_raw = libgnutls.gnutls_x509_privkey_export_dsa_raw gnutls_x509_privkey_export_dsa_raw.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_privkey_export_dsa_raw.restype = c_int gnutls_x509_privkey_export_pkcs8 = libgnutls.gnutls_x509_privkey_export_pkcs8 gnutls_x509_privkey_export_pkcs8.argtypes = [gnutls_x509_privkey_t, gnutls_x509_crt_fmt_t, c_char_p, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_privkey_export_pkcs8.restype = c_int gnutls_x509_privkey_export_rsa_raw = libgnutls.gnutls_x509_privkey_export_rsa_raw gnutls_x509_privkey_export_rsa_raw.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_privkey_export_rsa_raw.restype = c_int gnutls_x509_privkey_fix = libgnutls.gnutls_x509_privkey_fix gnutls_x509_privkey_fix.argtypes = [gnutls_x509_privkey_t] gnutls_x509_privkey_fix.restype = c_int gnutls_x509_privkey_generate = libgnutls.gnutls_x509_privkey_generate gnutls_x509_privkey_generate.argtypes = [gnutls_x509_privkey_t, gnutls_pk_algorithm_t, c_uint, c_uint] gnutls_x509_privkey_generate.restype = c_int gnutls_x509_privkey_get_key_id = libgnutls.gnutls_x509_privkey_get_key_id gnutls_x509_privkey_get_key_id.argtypes = [gnutls_x509_privkey_t, c_uint, POINTER(c_ubyte), POINTER(size_t)] gnutls_x509_privkey_get_key_id.restype = c_int gnutls_x509_privkey_get_pk_algorithm = libgnutls.gnutls_x509_privkey_get_pk_algorithm gnutls_x509_privkey_get_pk_algorithm.argtypes = [gnutls_x509_privkey_t] gnutls_x509_privkey_get_pk_algorithm.restype = c_int gnutls_x509_privkey_import = libgnutls.gnutls_x509_privkey_import gnutls_x509_privkey_import.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t] gnutls_x509_privkey_import.restype = c_int gnutls_x509_privkey_import_dsa_raw = libgnutls.gnutls_x509_privkey_import_dsa_raw gnutls_x509_privkey_import_dsa_raw.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_privkey_import_dsa_raw.restype = c_int gnutls_x509_privkey_import_pkcs8 = libgnutls.gnutls_x509_privkey_import_pkcs8 gnutls_x509_privkey_import_pkcs8.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), gnutls_x509_crt_fmt_t, c_char_p, c_uint] gnutls_x509_privkey_import_pkcs8.restype = c_int gnutls_x509_privkey_import_rsa_raw = libgnutls.gnutls_x509_privkey_import_rsa_raw gnutls_x509_privkey_import_rsa_raw.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_privkey_import_rsa_raw.restype = c_int gnutls_x509_privkey_init = libgnutls.gnutls_x509_privkey_init gnutls_x509_privkey_init.argtypes = [POINTER(gnutls_x509_privkey_t)] gnutls_x509_privkey_init.restype = c_int gnutls_x509_privkey_sign_data = libgnutls.gnutls_x509_privkey_sign_data gnutls_x509_privkey_sign_data.argtypes = [gnutls_x509_privkey_t, gnutls_digest_algorithm_t, c_uint, POINTER(gnutls_datum_t), c_void_p, POINTER(size_t)] gnutls_x509_privkey_sign_data.restype = c_int gnutls_x509_privkey_sign_hash = libgnutls.gnutls_x509_privkey_sign_hash gnutls_x509_privkey_sign_hash.argtypes = [gnutls_x509_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_x509_privkey_sign_hash.restype = c_int gnutls_x509_rdn_get = libgnutls.gnutls_x509_rdn_get gnutls_x509_rdn_get.argtypes = [POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_x509_rdn_get.restype = c_int gnutls_x509_rdn_get_by_oid = libgnutls.gnutls_x509_rdn_get_by_oid gnutls_x509_rdn_get_by_oid.argtypes = [POINTER(gnutls_datum_t), c_char_p, c_int, c_uint, c_void_p, POINTER(size_t)] gnutls_x509_rdn_get_by_oid.restype = c_int gnutls_x509_rdn_get_oid = libgnutls.gnutls_x509_rdn_get_oid gnutls_x509_rdn_get_oid.argtypes = [POINTER(gnutls_datum_t), c_int, c_void_p, POINTER(size_t)] gnutls_x509_rdn_get_oid.restype = c_int # The openpgp related functions are not always present (on windows for example they are missing) # try: gnutls_certificate_set_openpgp_key = libgnutls.gnutls_certificate_set_openpgp_key except AttributeError: pass else: gnutls_certificate_set_openpgp_key = libgnutls.gnutls_certificate_set_openpgp_key gnutls_certificate_set_openpgp_key.argtypes = [gnutls_certificate_credentials_t, gnutls_openpgp_crt_t, gnutls_openpgp_privkey_t] gnutls_certificate_set_openpgp_key.restype = c_int gnutls_certificate_set_openpgp_key_file = libgnutls.gnutls_certificate_set_openpgp_key_file gnutls_certificate_set_openpgp_key_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, c_char_p, gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_key_file.restype = c_int gnutls_certificate_set_openpgp_key_file2 = libgnutls.gnutls_certificate_set_openpgp_key_file2 gnutls_certificate_set_openpgp_key_file2.argtypes = [gnutls_certificate_credentials_t, c_char_p, c_char_p, c_char_p, gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_key_file2.restype = c_int gnutls_certificate_set_openpgp_key_mem = libgnutls.gnutls_certificate_set_openpgp_key_mem gnutls_certificate_set_openpgp_key_mem.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_key_mem.restype = c_int gnutls_certificate_set_openpgp_key_mem2 = libgnutls.gnutls_certificate_set_openpgp_key_mem2 gnutls_certificate_set_openpgp_key_mem2.argtypes = [gnutls_certificate_credentials_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), c_char_p, gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_key_mem2.restype = c_int gnutls_certificate_set_openpgp_keyring_file = libgnutls.gnutls_certificate_set_openpgp_keyring_file gnutls_certificate_set_openpgp_keyring_file.argtypes = [gnutls_certificate_credentials_t, c_char_p, gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_keyring_file.restype = c_int gnutls_certificate_set_openpgp_keyring_mem = libgnutls.gnutls_certificate_set_openpgp_keyring_mem gnutls_certificate_set_openpgp_keyring_mem.argtypes = [gnutls_certificate_credentials_t, POINTER(c_ubyte), size_t, gnutls_openpgp_crt_fmt_t] gnutls_certificate_set_openpgp_keyring_mem.restype = c_int gnutls_openpgp_crt_check_hostname = libgnutls.gnutls_openpgp_crt_check_hostname gnutls_openpgp_crt_check_hostname.argtypes = [gnutls_openpgp_crt_t, c_char_p] gnutls_openpgp_crt_check_hostname.restype = c_int gnutls_openpgp_crt_deinit = libgnutls.gnutls_openpgp_crt_deinit gnutls_openpgp_crt_deinit.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_deinit.restype = None gnutls_openpgp_crt_export = libgnutls.gnutls_openpgp_crt_export gnutls_openpgp_crt_export.argtypes = [gnutls_openpgp_crt_t, gnutls_openpgp_crt_fmt_t, c_void_p, POINTER(size_t)] gnutls_openpgp_crt_export.restype = c_int gnutls_openpgp_crt_get_auth_subkey = libgnutls.gnutls_openpgp_crt_get_auth_subkey gnutls_openpgp_crt_get_auth_subkey.argtypes = [gnutls_openpgp_crt_t, POINTER(c_ubyte), c_uint] gnutls_openpgp_crt_get_auth_subkey.restype = c_int gnutls_openpgp_crt_get_creation_time = libgnutls.gnutls_openpgp_crt_get_creation_time gnutls_openpgp_crt_get_creation_time.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_get_creation_time.restype = time_t gnutls_openpgp_crt_get_creation_time.errmsg = "cannot get OpenPGP key creation time" gnutls_openpgp_crt_get_expiration_time = libgnutls.gnutls_openpgp_crt_get_expiration_time gnutls_openpgp_crt_get_expiration_time.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_get_expiration_time.restype = time_t gnutls_openpgp_crt_get_expiration_time.errmsg = "cannot get OpenPGP key expiration time" gnutls_openpgp_crt_get_fingerprint = libgnutls.gnutls_openpgp_crt_get_fingerprint gnutls_openpgp_crt_get_fingerprint.argtypes = [gnutls_openpgp_crt_t, c_void_p, POINTER(size_t)] gnutls_openpgp_crt_get_fingerprint.restype = c_int gnutls_openpgp_crt_get_key_id = libgnutls.gnutls_openpgp_crt_get_key_id gnutls_openpgp_crt_get_key_id.argtypes = [gnutls_openpgp_crt_t, POINTER(c_ubyte)] gnutls_openpgp_crt_get_key_id.restype = c_int gnutls_openpgp_crt_get_key_usage = libgnutls.gnutls_openpgp_crt_get_key_usage gnutls_openpgp_crt_get_key_usage.argtypes = [gnutls_openpgp_crt_t, POINTER(c_uint)] gnutls_openpgp_crt_get_key_usage.restype = c_int gnutls_openpgp_crt_get_name = libgnutls.gnutls_openpgp_crt_get_name gnutls_openpgp_crt_get_name.argtypes = [gnutls_openpgp_crt_t, c_int, c_char_p, POINTER(size_t)] gnutls_openpgp_crt_get_name.restype = c_int gnutls_openpgp_crt_get_pk_algorithm = libgnutls.gnutls_openpgp_crt_get_pk_algorithm gnutls_openpgp_crt_get_pk_algorithm.argtypes = [gnutls_openpgp_crt_t, POINTER(c_uint)] gnutls_openpgp_crt_get_pk_algorithm.restype = gnutls_pk_algorithm_t gnutls_openpgp_crt_get_pk_dsa_raw = libgnutls.gnutls_openpgp_crt_get_pk_dsa_raw gnutls_openpgp_crt_get_pk_dsa_raw.argtypes = [gnutls_openpgp_crt_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_crt_get_pk_dsa_raw.restype = c_int gnutls_openpgp_crt_get_pk_rsa_raw = libgnutls.gnutls_openpgp_crt_get_pk_rsa_raw gnutls_openpgp_crt_get_pk_rsa_raw.argtypes = [gnutls_openpgp_crt_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_crt_get_pk_rsa_raw.restype = c_int gnutls_openpgp_crt_get_preferred_key_id = libgnutls.gnutls_openpgp_crt_get_preferred_key_id gnutls_openpgp_crt_get_preferred_key_id.argtypes = [gnutls_openpgp_crt_t, POINTER(c_ubyte)] gnutls_openpgp_crt_get_preferred_key_id.restype = c_int gnutls_openpgp_crt_get_revoked_status = libgnutls.gnutls_openpgp_crt_get_revoked_status gnutls_openpgp_crt_get_revoked_status.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_get_revoked_status.restype = c_int gnutls_openpgp_crt_get_subkey_count = libgnutls.gnutls_openpgp_crt_get_subkey_count gnutls_openpgp_crt_get_subkey_count.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_get_subkey_count.restype = c_int gnutls_openpgp_crt_get_subkey_creation_time = libgnutls.gnutls_openpgp_crt_get_subkey_creation_time gnutls_openpgp_crt_get_subkey_creation_time.argtypes = [gnutls_openpgp_crt_t, c_uint] gnutls_openpgp_crt_get_subkey_creation_time.restype = time_t gnutls_openpgp_crt_get_subkey_creation_time.errmsg = "cannot get OpenPGP subkey creation time" gnutls_openpgp_crt_get_subkey_expiration_time = libgnutls.gnutls_openpgp_crt_get_subkey_expiration_time gnutls_openpgp_crt_get_subkey_expiration_time.argtypes = [gnutls_openpgp_crt_t, c_uint] gnutls_openpgp_crt_get_subkey_expiration_time.restype = time_t gnutls_openpgp_crt_get_subkey_expiration_time.errmsg = "cannot get OpenPGP subkey expiration time" gnutls_openpgp_crt_get_subkey_fingerprint = libgnutls.gnutls_openpgp_crt_get_subkey_fingerprint gnutls_openpgp_crt_get_subkey_fingerprint.argtypes = [gnutls_openpgp_crt_t, c_uint, c_void_p, POINTER(size_t)] gnutls_openpgp_crt_get_subkey_fingerprint.restype = c_int gnutls_openpgp_crt_get_subkey_id = libgnutls.gnutls_openpgp_crt_get_subkey_id gnutls_openpgp_crt_get_subkey_id.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(c_ubyte)] gnutls_openpgp_crt_get_subkey_id.restype = c_int gnutls_openpgp_crt_get_subkey_idx = libgnutls.gnutls_openpgp_crt_get_subkey_idx gnutls_openpgp_crt_get_subkey_idx.argtypes = [gnutls_openpgp_crt_t, POINTER(c_ubyte)] gnutls_openpgp_crt_get_subkey_idx.restype = c_int gnutls_openpgp_crt_get_subkey_pk_algorithm = libgnutls.gnutls_openpgp_crt_get_subkey_pk_algorithm gnutls_openpgp_crt_get_subkey_pk_algorithm.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(c_uint)] gnutls_openpgp_crt_get_subkey_pk_algorithm.restype = gnutls_pk_algorithm_t gnutls_openpgp_crt_get_subkey_pk_dsa_raw = libgnutls.gnutls_openpgp_crt_get_subkey_pk_dsa_raw gnutls_openpgp_crt_get_subkey_pk_dsa_raw.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_crt_get_subkey_pk_dsa_raw.restype = c_int gnutls_openpgp_crt_get_subkey_pk_rsa_raw = libgnutls.gnutls_openpgp_crt_get_subkey_pk_rsa_raw gnutls_openpgp_crt_get_subkey_pk_rsa_raw.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_crt_get_subkey_pk_rsa_raw.restype = c_int gnutls_openpgp_crt_get_subkey_revoked_status = libgnutls.gnutls_openpgp_crt_get_subkey_revoked_status gnutls_openpgp_crt_get_subkey_revoked_status.argtypes = [gnutls_openpgp_crt_t, c_uint] gnutls_openpgp_crt_get_subkey_revoked_status.restype = c_int gnutls_openpgp_crt_get_subkey_usage = libgnutls.gnutls_openpgp_crt_get_subkey_usage gnutls_openpgp_crt_get_subkey_usage.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(c_uint)] gnutls_openpgp_crt_get_subkey_usage.restype = c_int gnutls_openpgp_crt_get_version = libgnutls.gnutls_openpgp_crt_get_version gnutls_openpgp_crt_get_version.argtypes = [gnutls_openpgp_crt_t] gnutls_openpgp_crt_get_version.restype = c_int gnutls_openpgp_crt_import = libgnutls.gnutls_openpgp_crt_import gnutls_openpgp_crt_import.argtypes = [gnutls_openpgp_crt_t, POINTER(gnutls_datum_t), gnutls_openpgp_crt_fmt_t] gnutls_openpgp_crt_import.restype = c_int gnutls_openpgp_crt_init = libgnutls.gnutls_openpgp_crt_init gnutls_openpgp_crt_init.argtypes = [POINTER(gnutls_openpgp_crt_t)] gnutls_openpgp_crt_init.restype = c_int gnutls_openpgp_crt_print = libgnutls.gnutls_openpgp_crt_print gnutls_openpgp_crt_print.argtypes = [gnutls_openpgp_crt_t, gnutls_certificate_print_formats_t, POINTER(gnutls_datum_t)] gnutls_openpgp_crt_print.restype = c_int gnutls_openpgp_crt_set_preferred_key_id = libgnutls.gnutls_openpgp_crt_set_preferred_key_id gnutls_openpgp_crt_set_preferred_key_id.argtypes = [gnutls_openpgp_crt_t, POINTER(c_ubyte)] gnutls_openpgp_crt_set_preferred_key_id.restype = c_int gnutls_openpgp_crt_verify_ring = libgnutls.gnutls_openpgp_crt_verify_ring gnutls_openpgp_crt_verify_ring.argtypes = [gnutls_openpgp_crt_t, gnutls_openpgp_keyring_t, c_uint, POINTER(c_uint)] gnutls_openpgp_crt_verify_ring.restype = c_int gnutls_openpgp_crt_verify_self = libgnutls.gnutls_openpgp_crt_verify_self gnutls_openpgp_crt_verify_self.argtypes = [gnutls_openpgp_crt_t, c_uint, POINTER(c_uint)] gnutls_openpgp_crt_verify_self.restype = c_int gnutls_openpgp_keyring_check_id = libgnutls.gnutls_openpgp_keyring_check_id gnutls_openpgp_keyring_check_id.argtypes = [gnutls_openpgp_keyring_t, POINTER(c_ubyte), c_uint] gnutls_openpgp_keyring_check_id.restype = c_int gnutls_openpgp_keyring_deinit = libgnutls.gnutls_openpgp_keyring_deinit gnutls_openpgp_keyring_deinit.argtypes = [gnutls_openpgp_keyring_t] gnutls_openpgp_keyring_deinit.restype = None gnutls_openpgp_keyring_get_crt = libgnutls.gnutls_openpgp_keyring_get_crt gnutls_openpgp_keyring_get_crt.argtypes = [gnutls_openpgp_keyring_t, c_uint, POINTER(gnutls_openpgp_crt_t)] gnutls_openpgp_keyring_get_crt.restype = c_int gnutls_openpgp_keyring_get_crt_count = libgnutls.gnutls_openpgp_keyring_get_crt_count gnutls_openpgp_keyring_get_crt_count.argtypes = [gnutls_openpgp_keyring_t] gnutls_openpgp_keyring_get_crt_count.restype = c_int gnutls_openpgp_keyring_import = libgnutls.gnutls_openpgp_keyring_import gnutls_openpgp_keyring_import.argtypes = [gnutls_openpgp_keyring_t, POINTER(gnutls_datum_t), gnutls_openpgp_crt_fmt_t] gnutls_openpgp_keyring_import.restype = c_int gnutls_openpgp_keyring_init = libgnutls.gnutls_openpgp_keyring_init gnutls_openpgp_keyring_init.argtypes = [POINTER(gnutls_openpgp_keyring_t)] gnutls_openpgp_keyring_init.restype = c_int gnutls_openpgp_privkey_deinit = libgnutls.gnutls_openpgp_privkey_deinit gnutls_openpgp_privkey_deinit.argtypes = [gnutls_openpgp_privkey_t] gnutls_openpgp_privkey_deinit.restype = None gnutls_openpgp_privkey_export = libgnutls.gnutls_openpgp_privkey_export gnutls_openpgp_privkey_export.argtypes = [gnutls_openpgp_privkey_t, gnutls_openpgp_crt_fmt_t, c_char_p, c_uint, c_void_p, POINTER(size_t)] gnutls_openpgp_privkey_export.restype = c_int gnutls_openpgp_privkey_export_dsa_raw = libgnutls.gnutls_openpgp_privkey_export_dsa_raw gnutls_openpgp_privkey_export_dsa_raw.argtypes = [gnutls_openpgp_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_privkey_export_dsa_raw.restype = c_int gnutls_openpgp_privkey_export_rsa_raw = libgnutls.gnutls_openpgp_privkey_export_rsa_raw gnutls_openpgp_privkey_export_rsa_raw.argtypes = [gnutls_openpgp_privkey_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_privkey_export_rsa_raw.restype = c_int gnutls_openpgp_privkey_export_subkey_dsa_raw = libgnutls.gnutls_openpgp_privkey_export_subkey_dsa_raw gnutls_openpgp_privkey_export_subkey_dsa_raw.argtypes = [gnutls_openpgp_privkey_t, c_uint, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_privkey_export_subkey_dsa_raw.restype = c_int gnutls_openpgp_privkey_export_subkey_rsa_raw = libgnutls.gnutls_openpgp_privkey_export_subkey_rsa_raw gnutls_openpgp_privkey_export_subkey_rsa_raw.argtypes = [gnutls_openpgp_privkey_t, c_uint, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_openpgp_privkey_export_subkey_rsa_raw.restype = c_int gnutls_openpgp_privkey_get_fingerprint = libgnutls.gnutls_openpgp_privkey_get_fingerprint gnutls_openpgp_privkey_get_fingerprint.argtypes = [gnutls_openpgp_privkey_t, c_void_p, POINTER(size_t)] gnutls_openpgp_privkey_get_fingerprint.restype = c_int gnutls_openpgp_privkey_get_key_id = libgnutls.gnutls_openpgp_privkey_get_key_id gnutls_openpgp_privkey_get_key_id.argtypes = [gnutls_openpgp_privkey_t, POINTER(c_ubyte)] gnutls_openpgp_privkey_get_key_id.restype = c_int gnutls_openpgp_privkey_get_pk_algorithm = libgnutls.gnutls_openpgp_privkey_get_pk_algorithm gnutls_openpgp_privkey_get_pk_algorithm.argtypes = [gnutls_openpgp_privkey_t, POINTER(c_uint)] gnutls_openpgp_privkey_get_pk_algorithm.restype = gnutls_pk_algorithm_t gnutls_openpgp_privkey_get_preferred_key_id = libgnutls.gnutls_openpgp_privkey_get_preferred_key_id gnutls_openpgp_privkey_get_preferred_key_id.argtypes = [gnutls_openpgp_privkey_t, POINTER(c_ubyte)] gnutls_openpgp_privkey_get_preferred_key_id.restype = c_int gnutls_openpgp_privkey_get_revoked_status = libgnutls.gnutls_openpgp_privkey_get_revoked_status gnutls_openpgp_privkey_get_revoked_status.argtypes = [gnutls_openpgp_privkey_t] gnutls_openpgp_privkey_get_revoked_status.restype = c_int gnutls_openpgp_privkey_get_subkey_count = libgnutls.gnutls_openpgp_privkey_get_subkey_count gnutls_openpgp_privkey_get_subkey_count.argtypes = [gnutls_openpgp_privkey_t] gnutls_openpgp_privkey_get_subkey_count.restype = c_int gnutls_openpgp_privkey_get_subkey_creation_time = libgnutls.gnutls_openpgp_privkey_get_subkey_creation_time gnutls_openpgp_privkey_get_subkey_creation_time.argtypes = [gnutls_openpgp_privkey_t, c_uint] gnutls_openpgp_privkey_get_subkey_creation_time.restype = time_t gnutls_openpgp_privkey_get_subkey_creation_time.errmsg = "cannot get OpenPGP subkey creation time" gnutls_openpgp_privkey_get_subkey_expiration_time = libgnutls.gnutls_openpgp_privkey_get_subkey_expiration_time gnutls_openpgp_privkey_get_subkey_expiration_time.argtypes = [gnutls_openpgp_privkey_t, c_uint] gnutls_openpgp_privkey_get_subkey_expiration_time.restype = time_t gnutls_openpgp_privkey_get_subkey_expiration_time.errmsg = "cannot get OpenPGP subkey expiration time" gnutls_openpgp_privkey_get_subkey_fingerprint = libgnutls.gnutls_openpgp_privkey_get_subkey_fingerprint gnutls_openpgp_privkey_get_subkey_fingerprint.argtypes = [gnutls_openpgp_privkey_t, c_uint, c_void_p, POINTER(size_t)] gnutls_openpgp_privkey_get_subkey_fingerprint.restype = c_int gnutls_openpgp_privkey_get_subkey_id = libgnutls.gnutls_openpgp_privkey_get_subkey_id gnutls_openpgp_privkey_get_subkey_id.argtypes = [gnutls_openpgp_privkey_t, c_uint, POINTER(c_ubyte)] gnutls_openpgp_privkey_get_subkey_id.restype = c_int gnutls_openpgp_privkey_get_subkey_idx = libgnutls.gnutls_openpgp_privkey_get_subkey_idx gnutls_openpgp_privkey_get_subkey_idx.argtypes = [gnutls_openpgp_privkey_t, POINTER(c_ubyte)] gnutls_openpgp_privkey_get_subkey_idx.restype = c_int gnutls_openpgp_privkey_get_subkey_pk_algorithm = libgnutls.gnutls_openpgp_privkey_get_subkey_pk_algorithm gnutls_openpgp_privkey_get_subkey_pk_algorithm.argtypes = [gnutls_openpgp_privkey_t, c_uint, POINTER(c_uint)] gnutls_openpgp_privkey_get_subkey_pk_algorithm.restype = gnutls_pk_algorithm_t gnutls_openpgp_privkey_get_subkey_revoked_status = libgnutls.gnutls_openpgp_privkey_get_subkey_revoked_status gnutls_openpgp_privkey_get_subkey_revoked_status.argtypes = [gnutls_openpgp_privkey_t, c_uint] gnutls_openpgp_privkey_get_subkey_revoked_status.restype = c_int gnutls_openpgp_privkey_import = libgnutls.gnutls_openpgp_privkey_import gnutls_openpgp_privkey_import.argtypes = [gnutls_openpgp_privkey_t, POINTER(gnutls_datum_t), gnutls_openpgp_crt_fmt_t, c_char_p, c_uint] gnutls_openpgp_privkey_import.restype = c_int gnutls_openpgp_privkey_init = libgnutls.gnutls_openpgp_privkey_init gnutls_openpgp_privkey_init.argtypes = [POINTER(gnutls_openpgp_privkey_t)] gnutls_openpgp_privkey_init.restype = c_int gnutls_openpgp_privkey_set_preferred_key_id = libgnutls.gnutls_openpgp_privkey_set_preferred_key_id gnutls_openpgp_privkey_set_preferred_key_id.argtypes = [gnutls_openpgp_privkey_t, POINTER(c_ubyte)] gnutls_openpgp_privkey_set_preferred_key_id.restype = c_int gnutls_openpgp_send_cert = libgnutls.gnutls_openpgp_send_cert gnutls_openpgp_send_cert.argtypes = [gnutls_session_t, gnutls_openpgp_crt_status_t] gnutls_openpgp_send_cert.restype = None gnutls_openpgp_set_recv_key_function = libgnutls.gnutls_openpgp_set_recv_key_function gnutls_openpgp_set_recv_key_function.argtypes = [gnutls_session_t, gnutls_openpgp_recv_key_func] gnutls_openpgp_set_recv_key_function.restype = None # The SRP related functions are not always present (some distributions do not compile SRP support into libgnutls) # try: gnutls_srp_allocate_client_credentials = libgnutls.gnutls_srp_allocate_client_credentials except AttributeError: pass else: gnutls_srp_allocate_client_credentials = libgnutls.gnutls_srp_allocate_client_credentials gnutls_srp_allocate_client_credentials.argtypes = [POINTER(gnutls_srp_client_credentials_t)] gnutls_srp_allocate_client_credentials.restype = c_int gnutls_srp_allocate_server_credentials = libgnutls.gnutls_srp_allocate_server_credentials gnutls_srp_allocate_server_credentials.argtypes = [POINTER(gnutls_srp_server_credentials_t)] gnutls_srp_allocate_server_credentials.restype = c_int gnutls_srp_base64_decode = libgnutls.gnutls_srp_base64_decode gnutls_srp_base64_decode.argtypes = [POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_srp_base64_decode.restype = c_int gnutls_srp_base64_encode = libgnutls.gnutls_srp_base64_encode gnutls_srp_base64_encode.argtypes = [POINTER(gnutls_datum_t), c_char_p, POINTER(size_t)] gnutls_srp_base64_encode.restype = c_int gnutls_srp_free_client_credentials = libgnutls.gnutls_srp_free_client_credentials gnutls_srp_free_client_credentials.argtypes = [gnutls_srp_client_credentials_t] gnutls_srp_free_client_credentials.restype = None gnutls_srp_free_server_credentials = libgnutls.gnutls_srp_free_server_credentials gnutls_srp_free_server_credentials.argtypes = [gnutls_srp_server_credentials_t] gnutls_srp_free_server_credentials.restype = None gnutls_srp_server_get_username = libgnutls.gnutls_srp_server_get_username gnutls_srp_server_get_username.argtypes = [gnutls_session_t] gnutls_srp_server_get_username.restype = c_char_p gnutls_srp_set_client_credentials = libgnutls.gnutls_srp_set_client_credentials gnutls_srp_set_client_credentials.argtypes = [gnutls_srp_client_credentials_t, c_char_p, c_char_p] gnutls_srp_set_client_credentials.restype = c_int gnutls_srp_set_client_credentials_function = libgnutls.gnutls_srp_set_client_credentials_function gnutls_srp_set_client_credentials_function.argtypes = [gnutls_srp_client_credentials_t, gnutls_srp_client_credentials_function] gnutls_srp_set_client_credentials_function.restype = None gnutls_srp_set_server_credentials_file = libgnutls.gnutls_srp_set_server_credentials_file gnutls_srp_set_server_credentials_file.argtypes = [gnutls_srp_server_credentials_t, c_char_p, c_char_p] gnutls_srp_set_server_credentials_file.restype = c_int gnutls_srp_set_server_credentials_function = libgnutls.gnutls_srp_set_server_credentials_function gnutls_srp_set_server_credentials_function.argtypes = [gnutls_srp_server_credentials_t, gnutls_srp_server_credentials_function] gnutls_srp_set_server_credentials_function.restype = None gnutls_srp_verifier = libgnutls.gnutls_srp_verifier gnutls_srp_verifier.argtypes = [c_char_p, c_char_p, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)] gnutls_srp_verifier.restype = c_int __all__ = sorted(name for name, obj in sys.modules[__name__].__dict__.iteritems() if name.startswith('gnutls_') and hasattr(obj, 'restype')) python-gnutls-3.0.0/gnutls/library/types.py0000644000175000017500000001745012667551574020422 0ustar dandan00000000000000 import sys from ctypes import * # Type aliases # time_t = c_long size_t = c_size_t ssize_t = c_long gnutls_openpgp_keyid_t = c_ubyte * 8 gnutls_transport_ptr_t = c_void_p gnutls_x509_dn_t = c_void_p # Enumerations # gnutls_alert_description_t = c_int # enum gnutls_alert_level_t = c_int # enum gnutls_certificate_import_flags = c_int # enum gnutls_certificate_print_formats = c_int # enum gnutls_certificate_request_t = c_int # enum gnutls_certificate_status_t = c_int # enum gnutls_certificate_type_t = c_int # enum gnutls_certificate_verify_flags = c_int # enum gnutls_cipher_algorithm_t = c_int # enum gnutls_close_request_t = c_int # enum gnutls_compression_method_t = c_int # enum gnutls_connection_end_t = c_int # enum gnutls_credentials_type_t = c_int # enum gnutls_digest_algorithm_t = c_int # enum gnutls_handshake_description_t = c_int # enum gnutls_ia_apptype_t = c_int # enum gnutls_kx_algorithm_t = c_int # enum gnutls_mac_algorithm_t = c_int # enum gnutls_openpgp_crt_fmt = c_int # enum gnutls_openpgp_crt_status_t = c_int # enum gnutls_params_type_t = c_int # enum gnutls_pk_algorithm_t = c_int # enum gnutls_pkcs_encrypt_flags_t = c_int # enum gnutls_privkey_type_t = c_int # enum gnutls_protocol_t = c_int # enum gnutls_psk_key_flags = c_int # enum gnutls_server_name_type_t = c_int # enum gnutls_sign_algorithm_t = c_int # enum gnutls_supplemental_data_format_type_t = c_int # enum gnutls_x509_crt_fmt_t = c_int # enum gnutls_x509_subject_alt_name_t = c_int # enum gnutls_certificate_print_formats_t = gnutls_certificate_print_formats gnutls_openpgp_crt_fmt_t = gnutls_openpgp_crt_fmt # Unions, structures and pointers to structure types # class gnutls_session_int(Structure): _fields_ = [] gnutls_session_t = POINTER(gnutls_session_int) class gnutls_ia_server_credentials_st(Structure): _fields_ = [] gnutls_ia_server_credentials_t = POINTER(gnutls_ia_server_credentials_st) class gnutls_ia_client_credentials_st(Structure): _fields_ = [] gnutls_ia_client_credentials_t = POINTER(gnutls_ia_client_credentials_st) class gnutls_dh_params_int(Structure): _fields_ = [] gnutls_dh_params_t = POINTER(gnutls_dh_params_int) class gnutls_x509_privkey_int(Structure): _fields_ = [] gnutls_x509_privkey_t = POINTER(gnutls_x509_privkey_int) gnutls_rsa_params_t = POINTER(gnutls_x509_privkey_int) class params(Union): _fields_ = [('dh', gnutls_dh_params_t), ('rsa_export', gnutls_rsa_params_t)] class gnutls_pkcs11_privkey_st(Structure): _fields_ = [] gnutls_pkcs11_privkey_t = POINTER(gnutls_pkcs11_privkey_st) class gnutls_priority_st(Structure): _fields_ = [] gnutls_priority_t = POINTER(gnutls_priority_st) class gnutls_datum_t(Structure): _fields_ = [('data', POINTER(c_ubyte)), ('size', c_uint)] class gnutls_params_st(Structure): _fields_ = [('type', gnutls_params_type_t), ('params', params), ('deinit', c_int)] class gnutls_certificate_credentials_st(Structure): _fields_ = [] gnutls_certificate_credentials_t = POINTER(gnutls_certificate_credentials_st) gnutls_certificate_server_credentials = gnutls_certificate_credentials_t gnutls_certificate_client_credentials = gnutls_certificate_credentials_t class gnutls_anon_server_credentials_st(Structure): _fields_ = [] gnutls_anon_server_credentials_t = POINTER(gnutls_anon_server_credentials_st) class gnutls_anon_client_credentials_st(Structure): _fields_ = [] gnutls_anon_client_credentials_t = POINTER(gnutls_anon_client_credentials_st) class gnutls_x509_crl_int(Structure): _fields_ = [] gnutls_x509_crl_t = POINTER(gnutls_x509_crl_int) class gnutls_x509_crt_int(Structure): _fields_ = [] gnutls_x509_crt_t = POINTER(gnutls_x509_crt_int) class gnutls_openpgp_keyring_int(Structure): _fields_ = [] gnutls_openpgp_keyring_t = POINTER(gnutls_openpgp_keyring_int) class gnutls_srp_server_credentials_st(Structure): _fields_ = [] gnutls_srp_server_credentials_t = POINTER(gnutls_srp_server_credentials_st) class gnutls_srp_client_credentials_st(Structure): _fields_ = [] gnutls_srp_client_credentials_t = POINTER(gnutls_srp_client_credentials_st) class gnutls_psk_server_credentials_st(Structure): _fields_ = [] gnutls_psk_server_credentials_t = POINTER(gnutls_psk_server_credentials_st) class gnutls_psk_client_credentials_st(Structure): _fields_ = [] gnutls_psk_client_credentials_t = POINTER(gnutls_psk_client_credentials_st) class gnutls_openpgp_crt_int(Structure): _fields_ = [] gnutls_openpgp_crt_t = POINTER(gnutls_openpgp_crt_int) class gnutls_openpgp_privkey_int(Structure): _fields_ = [] gnutls_openpgp_privkey_t = POINTER(gnutls_openpgp_privkey_int) class cert(Union): _fields_ = [('x509', POINTER(gnutls_x509_crt_t)), ('pgp', gnutls_openpgp_crt_t)] class key(Union): _fields_ = [('x509', gnutls_x509_privkey_t), ('pgp', gnutls_openpgp_privkey_t), ('pkcs11', gnutls_pkcs11_privkey_t)] class gnutls_retr2_st(Structure): _fields_ = [('cert_type', gnutls_certificate_type_t), ('key_type', gnutls_privkey_type_t), ('cert', cert), ('ncerts', c_uint), ('key', key), ('deinit_all', c_uint)] class gnutls_x509_ava_st(Structure): _fields_ = [('oid', gnutls_datum_t), ('value', gnutls_datum_t), ('value_tag', c_ulong)] class gnutls_pkcs7_int(Structure): _fields_ = [] gnutls_pkcs7_t = POINTER(gnutls_pkcs7_int) class gnutls_x509_crq_int(Structure): _fields_ = [] gnutls_x509_crq_t = POINTER(gnutls_x509_crq_int) # Function type declarations # gnutls_alloc_function = CFUNCTYPE(c_void_p, size_t) gnutls_calloc_function = CFUNCTYPE(c_void_p, size_t, size_t) gnutls_certificate_retrieve_function = CFUNCTYPE(c_int, gnutls_session_t, POINTER(gnutls_datum_t), c_int, POINTER(gnutls_pk_algorithm_t), c_int, POINTER(gnutls_retr2_st)) gnutls_db_remove_func = CFUNCTYPE(c_int, c_void_p, gnutls_datum_t) gnutls_db_retr_func = CFUNCTYPE(gnutls_datum_t, c_void_p, gnutls_datum_t) gnutls_db_store_func = CFUNCTYPE(c_int, c_void_p, gnutls_datum_t, gnutls_datum_t) gnutls_free_function = CFUNCTYPE(None, c_void_p) gnutls_handshake_post_client_hello_func = CFUNCTYPE(c_int, gnutls_session_t) gnutls_ia_avp_func = CFUNCTYPE(c_int, gnutls_session_t, c_void_p, c_char_p, size_t, POINTER(c_char_p), POINTER(size_t)) gnutls_is_secure_function = CFUNCTYPE(c_int, c_void_p) gnutls_log_func = CFUNCTYPE(None, c_int, c_char_p) gnutls_openpgp_recv_key_func = CFUNCTYPE(c_int, gnutls_session_t, POINTER(c_ubyte), c_uint, POINTER(gnutls_datum_t)) gnutls_oprfi_callback_func = CFUNCTYPE(c_int, gnutls_session_t, c_void_p, size_t, POINTER(c_ubyte), POINTER(c_ubyte)) gnutls_params_function = CFUNCTYPE(c_int, gnutls_session_t, gnutls_params_type_t, POINTER(gnutls_params_st)) gnutls_psk_client_credentials_function = CFUNCTYPE(c_int, gnutls_session_t, POINTER(c_char_p), POINTER(gnutls_datum_t)) gnutls_psk_server_credentials_function = CFUNCTYPE(c_int, gnutls_session_t, c_char_p, POINTER(gnutls_datum_t)) gnutls_pull_func = CFUNCTYPE(ssize_t, gnutls_transport_ptr_t, c_void_p, size_t) gnutls_push_func = CFUNCTYPE(ssize_t, gnutls_transport_ptr_t, c_void_p, size_t) gnutls_realloc_function = CFUNCTYPE(c_void_p, c_void_p, size_t) gnutls_sign_func = CFUNCTYPE(c_int, gnutls_session_t, c_void_p, gnutls_certificate_type_t, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)) gnutls_srp_client_credentials_function = CFUNCTYPE(c_int, gnutls_session_t, POINTER(c_char_p), POINTER(c_char_p)) gnutls_srp_server_credentials_function = CFUNCTYPE(c_int, gnutls_session_t, c_char_p, POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t), POINTER(gnutls_datum_t)) __all__ = sorted(name for name in sys.modules[__name__].__dict__ if name.startswith('gnutls_') or name in ('size_t', 'ssize_t', 'time_t', 'cert', 'key', 'params')) python-gnutls-3.0.0/gnutls/connection.py0000644000175000017500000004004712667551574017747 0ustar dandan00000000000000 """GNUTLS connection support""" __all__ = ['X509Credentials', 'TLSContext', 'ClientSession', 'ServerSession', 'ServerSessionFactory'] from time import time from socket import SHUT_RDWR as SOCKET_SHUT_RDWR from _ctypes import PyObj_FromPtr from ctypes import * from gnutls.validators import * from gnutls.constants import * from gnutls.crypto import * from gnutls.errors import * from gnutls.library.constants import GNUTLS_SERVER, GNUTLS_CLIENT, GNUTLS_CRT_X509 from gnutls.library.constants import GNUTLS_CERT_INVALID, GNUTLS_CERT_REVOKED, GNUTLS_CERT_INSECURE_ALGORITHM from gnutls.library.constants import GNUTLS_CERT_SIGNER_NOT_FOUND, GNUTLS_CERT_SIGNER_NOT_CA from gnutls.library.constants import GNUTLS_AL_FATAL, GNUTLS_A_BAD_CERTIFICATE from gnutls.library.constants import GNUTLS_A_UNKNOWN_CA, GNUTLS_A_INSUFFICIENT_SECURITY from gnutls.library.constants import GNUTLS_A_CERTIFICATE_EXPIRED, GNUTLS_A_CERTIFICATE_REVOKED from gnutls.library.constants import GNUTLS_NAME_DNS from gnutls.library.types import gnutls_certificate_credentials_t, gnutls_session_t, gnutls_x509_crt_t from gnutls.library.types import gnutls_certificate_retrieve_function from gnutls.library.types import gnutls_priority_t from gnutls.library.functions import * @gnutls_certificate_retrieve_function def _retrieve_certificate(c_session, req_ca_dn, nreqs, pk_algos, pk_algos_length, retr_st): session = PyObj_FromPtr(gnutls_session_get_ptr(c_session)) identity = session.credentials.select_server_identity(session) retr_st.contents.deinit_all = 0 if identity is None: retr_st.contents.ncerts = 0 else: retr_st.contents.ncerts = 1 retr_st.contents.cert_type = GNUTLS_CRT_X509 retr_st.contents.cert.x509.contents = identity.cert._c_object retr_st.contents.key.x509 = identity.key._c_object return 0 class _ServerNameIdentities(dict): """Used internally by X509Credentials to map server names to X509 identities for the server name extension""" def __init__(self, identities): dict.__init__(self) for identity in identities: self.add(identity) def add(self, identity): for name in identity.cert.alternative_names.dns: self[name.lower()] = identity for ip in identity.cert.alternative_names.ip: self[ip] = identity subject = identity.cert.subject if subject.CN is not None: self[subject.CN.lower()] = identity def get(self, server_name, default=None): server_name = server_name.lower() if server_name in self: return self[server_name] for name in (n for n in self if n.startswith('*.')): suffix = name[1:] if server_name.endswith(suffix) and '.' not in server_name[:-len(suffix)]: return self[name] return default class X509Credentials(object): def __new__(cls, *args, **kwargs): c_object = gnutls_certificate_credentials_t() gnutls_certificate_allocate_credentials(byref(c_object)) instance = object.__new__(cls) instance.__deinit = gnutls_certificate_free_credentials instance._c_object = c_object return instance @method_args((X509Certificate, none), (X509PrivateKey, none), list_of(X509Certificate), list_of(X509CRL), list_of(X509Identity)) def __init__(self, cert=None, key=None, trusted=[], crl_list=[], identities=[]): """Credentials contain a X509 certificate, a private key, a list of trusted CAs and a list of CRLs (all optional). An optional list of additional X509 identities can be specified for applications that need more that one identity""" if cert and key: gnutls_certificate_set_x509_key(self._c_object, byref(cert._c_object), 1, key._c_object) elif (cert, key) != (None, None): raise ValueError("Specify neither or both the certificate and private key") gnutls_certificate_set_retrieve_function(self._c_object, _retrieve_certificate) self._max_depth = 5 self._max_bits = 8200 self._type = CRED_CERTIFICATE self._cert = cert self._key = key self._identities = tuple(identities) self._trusted = () self.add_trusted(trusted) self.crl_list = crl_list self.server_name_identities = _ServerNameIdentities(identities) if cert and key: self.server_name_identities.add(X509Identity(cert, key)) def __del__(self): self.__deinit(self._c_object) # Methods to alter the credentials at runtime @method_args(list_of(X509Certificate)) def add_trusted(self, trusted): size = len(trusted) if size > 0: ca_list = (gnutls_x509_crt_t * size)(*[cert._c_object for cert in trusted]) gnutls_certificate_set_x509_trust(self._c_object, cast(byref(ca_list), POINTER(gnutls_x509_crt_t)), size) self._trusted = self._trusted + tuple(trusted) # Properties @property def cert(self): return self._cert @property def key(self): return self._key @property def identities(self): return self._identities @property def trusted(self): return self._trusted def _get_crl_list(self): return self._crl_list @method_args(list_of(X509CRL)) def _set_crl_list(self, crl_list): self._crl_list = tuple(crl_list) crl_list = property(_get_crl_list, _set_crl_list) del _get_crl_list, _set_crl_list def _get_max_verify_length(self): return self._max_depth @method_args(int) def _set_max_verify_length(self, max_depth): gnutls_certificate_set_verify_limits(self._c_object, self._max_bits, max_depth) self._max_depth = max_depth max_verify_length = property(_get_max_verify_length, _set_max_verify_length) del _get_max_verify_length, _set_max_verify_length def _get_max_verify_bits(self): return self._max_bits @method_args(int) def _set_max_verify_bits(self, max_bits): gnutls_certificate_set_verify_limits(self._c_object, max_bits, self._max_depth) self._max_bits = max_bits max_verify_bits = property(_get_max_verify_bits, _set_max_verify_bits) del _get_max_verify_bits, _set_max_verify_bits # Methods to select and validate certificates def check_certificate(self, cert, cert_name='certificate'): """Verify activation, expiration and revocation for the given certificate""" now = time() if cert.activation_time > now: raise CertificateExpiredError("%s is not yet activated" % cert_name) if cert.expiration_time < now: raise CertificateExpiredError("%s has expired" % cert_name) for crl in self.crl_list: crl.check_revocation(cert, cert_name=cert_name) def select_server_identity(self, session): """Select which identity the server will use for a given session. The default selection algorithm uses the server name extension. A subclass can overwrite it if a different selection algorithm is desired.""" server_name = session.server_name if server_name is not None: return self.server_name_identities.get(server_name) elif self.cert and self.key: return self ## since we have the cert and key attributes we can behave like a X509Identity else: return None class TLSContext(object): def __init__(self, credentials, session_parameters=None): self.credentials = credentials self.session_parameters = session_parameters @property def session_parameters(self): return self.__dict__.get('session_parameters') @session_parameters.setter def session_parameters(self, value): priority = gnutls_priority_t() try: gnutls_priority_init(byref(priority), value, None) except GNUTLSError: raise ValueError("invalid session parameters: %s" % value) else: gnutls_priority_deinit(priority) self.__dict__['session_parameters'] = value class Session(object): """Abstract class representing a TLS session created from a TCP socket and a Credentials object.""" session_type = None ## placeholder for GNUTLS_SERVER or GNUTLS_CLIENT as defined by subclass def __new__(cls, *args, **kwargs): if cls is Session: raise RuntimeError("Session cannot be instantiated directly") instance = object.__new__(cls) instance.__deinit = gnutls_deinit instance._c_object = gnutls_session_t() return instance def __init__(self, socket, context): gnutls_init(byref(self._c_object), self.session_type) ## Store a pointer to self on the C session gnutls_session_set_ptr(self._c_object, id(self)) gnutls_set_default_priority(self._c_object) gnutls_priority_set_direct(self._c_object, context.session_parameters, None) gnutls_transport_set_ptr(self._c_object, socket.fileno()) gnutls_handshake_set_private_extensions(self._c_object, 1) self.socket = socket self.credentials = context.credentials def __del__(self): self.__deinit(self._c_object) def __getattr__(self, name): ## Generic wrapper for the underlying socket methods and attributes. return getattr(self.socket, name) # Session properties def _get_credentials(self): return self._credentials @method_args(X509Credentials) def _set_credentials(self, credentials): ## Release all credentials, otherwise gnutls will only release an existing credential of ## the same type as the one being set and we can end up with multiple credentials in C. gnutls_credentials_clear(self._c_object) gnutls_credentials_set(self._c_object, credentials._type, cast(credentials._c_object, c_void_p)) self._credentials = credentials credentials = property(_get_credentials, _set_credentials) del _get_credentials, _set_credentials @property def protocol(self): return gnutls_protocol_get_name(gnutls_protocol_get_version(self._c_object)) @property def kx_algorithm(self): return gnutls_kx_get_name(gnutls_kx_get(self._c_object)) @property def cipher(self): return gnutls_cipher_get_name(gnutls_cipher_get(self._c_object)) @property def mac_algorithm(self): return gnutls_mac_get_name(gnutls_mac_get(self._c_object)) @property def compression(self): return gnutls_compression_get_name(gnutls_compression_get(self._c_object)) @property def peer_certificate(self): if gnutls_certificate_type_get(self._c_object) != GNUTLS_CRT_X509: return None list_size = c_uint() cert_list = gnutls_certificate_get_peers(self._c_object, byref(list_size)) if list_size.value == 0: return None cert = cert_list[0] return X509Certificate(string_at(cert.data, cert.size), X509_FMT_DER) # Status checking after an operation was interrupted (these properties are # only useful to check after an operation was interrupted, otherwise their # value is meaningless). @property def interrupted_while_writing(self): """True if an operation was interrupted while writing""" return gnutls_record_get_direction(self._c_object)==1 @property def interrupted_while_reading(self): """True if an operation was interrupted while reading""" return gnutls_record_get_direction(self._c_object)==0 # Session methods def handshake(self): gnutls_handshake(self._c_object) def send(self, data): data = str(data) if not data: return 0 return gnutls_record_send(self._c_object, data, len(data)) def sendall(self, data): size = len(data) while size > 0: sent = self.send(data[-size:]) size -= sent def recv(self, limit): data = create_string_buffer(limit) size = gnutls_record_recv(self._c_object, data, limit) return data[:size] def send_alert(self, exception): alertdict = { CertificateError: GNUTLS_A_BAD_CERTIFICATE, CertificateAuthorityError: GNUTLS_A_UNKNOWN_CA, CertificateSecurityError: GNUTLS_A_INSUFFICIENT_SECURITY, CertificateExpiredError: GNUTLS_A_CERTIFICATE_EXPIRED, CertificateRevokedError: GNUTLS_A_CERTIFICATE_REVOKED} alert = alertdict.get(exception.__class__) if alert: gnutls_alert_send(self._c_object, GNUTLS_AL_FATAL, alert) @method_args(one_of(SHUT_RDWR, SHUT_WR)) def bye(self, how=SHUT_RDWR): gnutls_bye(self._c_object, how) def shutdown(self, how=SOCKET_SHUT_RDWR): self.socket.shutdown(how) def close(self): self.socket.close() def verify_peer(self): status = c_uint() gnutls_certificate_verify_peers2(self._c_object, byref(status)) status = status.value if status & GNUTLS_CERT_INVALID: raise CertificateError("peer certificate is invalid") elif status & GNUTLS_CERT_SIGNER_NOT_FOUND: raise CertificateAuthorityError("peer certificate signer not found") elif status & GNUTLS_CERT_SIGNER_NOT_CA: raise CertificateAuthorityError("peer certificate signer is not a CA") elif status & GNUTLS_CERT_INSECURE_ALGORITHM: raise CertificateSecurityError("peer certificate uses an insecure algorithm") elif status & GNUTLS_CERT_REVOKED: raise CertificateRevokedError("peer certificate was revoked") class ClientSession(Session): session_type = GNUTLS_CLIENT def __init__(self, socket, context, server_name=None): Session.__init__(self, socket, context) self._server_name = None if server_name is not None: self.server_name = server_name def _get_server_name(self): return self._server_name @method_args(str) def _set_server_name(self, server_name): gnutls_server_name_set(self._c_object, GNUTLS_NAME_DNS, c_char_p(server_name), len(server_name)) self._server_name = server_name server_name = property(_get_server_name, _set_server_name) del _get_server_name, _set_server_name class ServerSession(Session): session_type = GNUTLS_SERVER def __init__(self, socket, context): Session.__init__(self, socket, context) gnutls_certificate_server_set_request(self._c_object, CERT_REQUEST) @property def server_name(self): data_length = c_size_t(256) data = create_string_buffer(data_length.value) hostname_type = c_uint() for i in xrange(2**16): try: gnutls_server_name_get(self._c_object, data, byref(data_length), byref(hostname_type), i) except RequestedDataNotAvailable: break except MemoryError: data_length.value += 1 ## one extra byte for the terminating 0 data = create_string_buffer(data_length.value) gnutls_server_name_get(self._c_object, data, byref(data_length), byref(hostname_type), i) if hostname_type.value != GNUTLS_NAME_DNS: continue return data.value return None class ServerSessionFactory(object): def __init__(self, socket, context, session_class=ServerSession): if not issubclass(session_class, ServerSession): raise TypeError, "session_class must be a subclass of ServerSession" self.socket = socket self.context = context self.session_class = session_class def __getattr__(self, name): ## Generic wrapper for the underlying socket methods and attributes return getattr(self.socket, name) def bind(self, address): self.socket.bind(address) def listen(self, backlog): self.socket.listen(backlog) def accept(self): new_sock, address = self.socket.accept() session = self.session_class(new_sock, self.context) return (session, address) def shutdown(self, how=SOCKET_SHUT_RDWR): self.socket.shutdown(how) def close(self): self.socket.close() python-gnutls-3.0.0/README0000644000175000017500000000175412667551574014604 0ustar dandan00000000000000 Python wrapper for the GnuTLS library This package provides a high level object oriented wrapper around libgnutls, as well as low level bindings to the GnuTLS types and functions via ctypes. The high level wrapper hides the details of accessing the GnuTLS library via ctypes behind a set of classes that encapsulate GnuTLS sessions, certificates and credentials and expose them to python applications using a simple API. The package also includes a Twisted interface that has seamless intergration with Twisted, providing connectTLS and listenTLS methods on the Twisted reactor once imported (the methods are automatically attached to the reactor by simply importing the GnuTLS Twisted interface module). The high level wrapper is written using the GnuTLS library bindings that are made available via ctypes. This makes the wrapper very powerful and flexible as it has direct access to all the GnuTLS internals and is also very easy to extend without any need to write C code or recompile anything.