Changeset Navigation

← Previous Changeset
Next Changeset →

Changeset 2459

Timestamp:

06/16/09 11:23:50

Author:

fumanchu

Message:

python3: Fix for #774 (Migrate from pyOpenSSL to the ssl module) -- mostly equal to justin's patch.

Files:

branches/python3/cherrypy/_cpwsgi_server.py (modified) (1 diff)
branches/python3/cherrypy/wsgiserver/__init__.py (modified) (17 diffs)

Legend:

: Unmodified
: Added
: Removed
: Modified
: Copied
: Moved

branches/python3/cherrypy/_cpwsgi_server.py

r2158	r2459
62	62	self.protocol = self.server_adapter.protocol_version
63	63	self.nodelay = self.server_adapter.nodelay
64		~~self.ssl_context = self.server_adapter.ssl_context~~
65	64	self.ssl_certificate = self.server_adapter.ssl_certificate
66		~~self.ssl_certificate_chain = self.server_adapter.ssl_certificate_chain~~
67	65	self.ssl_private_key = self.server_adapter.ssl_private_key
68	66

branches/python3/cherrypy/wsgiserver/init.py

r2433	r2459
100	100
101	101	try:
102		from OpenSSL import SSL
103		from OpenSSL import crypto
	102	import ssl
104	103	except ImportError:
105		~~SSL~~ = None
	104	ssl = None
106	105
107	106	import errno
…	…
132	131	"EHOSTDOWN", "EHOSTUNREACH",
133	132	)
	133
134	134	socket_errors_to_ignore.append("timed out")
	135	socket_errors_to_ignore.append("The read operation timed out")
135	136
136	137	socket_errors_nonblocking = plat_specific_errors(
…	…
319	320	# with FIN_WAIT_2).
320	321	request_line = self.rfile.readline()
	322
321	323	# Set started_request to True so communicate() knows to send 408
322	324	# from here on out.
…	…
789	791
790	792
791		~~class NoSSLError(Exception):~~
792		~~"""Exception raised when a client speaks HTTP to an HTTPS socket."""~~
793		~~pass~~
794
795
796		~~class FatalSSLAlert(Exception):~~
797		~~"""Exception raised when the SSL implementation signals a fatal alert."""~~
798		~~pass~~
799
800	793	class CP_BufferedWriter(io.BufferedWriter):
801	794	"""Faux file object attached to a socket object."""
802
	795
803	796	def write(self, b):
804
805	797	self._checkClosed()
806	798	if isinstance(b, str):
…	…
816	808	while self._write_buf:
817	809	try:
818		n = self.raw.write(self._write_buf)
819		except BlockingIOError as e:
	810	# ssl sockets only except 'bytes', not bytearrays
	811	# so perhaps we should conditionally wrap this for perf?
	812	n = self.raw.write(bytes(self._write_buf))
	813	except io.BlockingIOError as e:
820	814	n = e.characters_written
821	815	del self._write_buf[:n]
822
823		~~## class SSL_fileobject(CP_fileobject):~~
824		~~## """SSL file object attached to a socket object."""~~
825
826		~~## ssl_timeout = 3~~
827		~~## ssl_retry = .01~~
828
829		~~## def _safe_call(self, is_reader, call, args, *kwargs):~~
830		~~## """Wrap the given call with SSL error-trapping.~~
831
832		~~## is_reader: if False EOF errors will be raised. If True, EOF errors~~
833		~~## will return "" (to emulate normal sockets).~~
834		~~## """~~
835		~~## start = time.time()~~
836		~~## while True:~~
837		~~## try:~~
838		~~## return call(args, *kwargs)~~
839		~~## except SSL.WantReadError:~~
840		~~## # Sleep and try again. This is dangerous, because it means~~
841		~~## # the rest of the stack has no way of differentiating~~
842		~~## # between a "new handshake" error and "client dropped".~~
843		~~## # Note this isn't an endless loop: there's a timeout below.~~
844		~~## time.sleep(self.ssl_retry)~~
845		~~## except SSL.WantWriteError:~~
846		~~## time.sleep(self.ssl_retry)~~
847		~~## except SSL.SysCallError as e:~~
848		~~## if is_reader and e.args == (-1, 'Unexpected EOF'):~~
849		~~## return ""~~
850
851		~~## errnum = e.args[0]~~
852		~~## if is_reader and errnum in socket_errors_to_ignore:~~
853		~~## return ""~~
854		~~## raise socket.error(errnum)~~
855		~~## except SSL.Error as e:~~
856		~~## if is_reader and e.args == (-1, 'Unexpected EOF'):~~
857		~~## return ""~~
858
859		~~## thirdarg = None~~
860		~~## try:~~
861		~~## thirdarg = e.args[0][0][2]~~
862		~~## except IndexError:~~
863		~~## pass~~
864
865		~~## if thirdarg == 'http request':~~
866		~~## # The client is talking HTTP to an HTTPS server.~~
867		~~## raise NoSSLError()~~
868		~~## raise FatalSSLAlert(*e.args)~~
869		~~## except:~~
870		~~## raise~~
871
872		~~## if time.time() - start > self.ssl_timeout:~~
873		~~## raise socket.timeout("timed out")~~
874
875		~~## def recv(self, args, *kwargs):~~
876		~~## buf = []~~
877		~~## r = super(SSL_fileobject, self).recv~~
878		~~## while True:~~
879		~~## data = self._safe_call(True, r, args, *kwargs)~~
880		~~## buf.append(data)~~
881		~~## p = self._sock.pending()~~
882		~~## if not p:~~
883		~~## return "".join(buf)~~
884
885		~~## def sendall(self, args, *kwargs):~~
886		~~## return self._safe_call(False, super(SSL_fileobject, self).sendall, args, *kwargs)~~
887
888		~~## def send(self, args, *kwargs):~~
889		~~## return self._safe_call(False, super(SSL_fileobject, self).send, args, *kwargs)~~
890	816
891	817
…	…
919	845	self.environ.update(environ)
920	846
921		if SSL and isinstance(sock, SSL.ConnectionType):
922		#TODO: will need to override SocketIO for ssl
923		timeout = sock.gettimeout()
924		self.rfile = SSL_fileobject(sock, "rb", self.rbufsize)
925		self.rfile.ssl_timeout = timeout
926		self.wfile = SSL_fileobject(sock, "wb", -1)
927		self.wfile.ssl_timeout = timeout
928		else:
929		raw = socket.SocketIO(sock, "r")
930		self.rfile = io.BufferedReader(raw)
931		raw = socket.SocketIO(sock, "w")
932		self.wfile = CP_BufferedWriter(raw)
	847	self.rfile = io.BufferedReader(socket.SocketIO(sock, "r"))
	848	self.wfile = CP_BufferedWriter(socket.SocketIO(sock, "w"))
	849
933	850
934	851	# Wrap wsgi.input but not HTTPConnection.rfile itself.
…	…
964	881	except socket.error as e:
965	882	errnum = e.args[0]
966		if errnum == 'timed out':
	883	# sadly SSL sockets return a different (longer) time out string
	884	if errnum == 'timed out' or errnum == 'The read operation timed out':
967	885	# Don't error if we're between requests; only error
968	886	# if 1) no request has been started at all, or 2) we're
…	…
981	899	except (KeyboardInterrupt, SystemExit):
982	900	raise
983		~~except FatalSSLAlert as e:~~
984		~~# Close the connection.~~
985		~~return~~
986		~~except NoSSLError:~~
987		~~if req and not req.sent_headers:~~
988		~~# Unwrap our wfile~~
989		~~req.wfile = CP_fileobject(self.socket._sock, "wb", -1)~~
990		~~req.simple_response("400 Bad Request",~~
991		~~"The client sent a plain HTTP request, but "~~
992		~~"this server only speaks HTTPS on this port.")~~
993		~~self.linger = True~~
994	901	except Exception as e:
995	902	if req and not req.sent_headers:
…	…
1146	1053	c = worker.conn
1147	1054	if c and not c.rfile.closed:
1148		if SSL and isinstance(c.socket, SSL.ConnectionType):
1149		# pyOpenSSL.socket.shutdown takes no args
1150		c.socket.shutdown()
1151		else:
1152		c.socket.shutdown(socket.SHUT_RD)
	1055	c.socket.shutdown(socket.SHUT_RD)
1153	1056	worker.join()
1154	1057	except (AssertionError,
…	…
1158	1061	pass
1159	1062
1160
1161
1162		~~class SSLConnection:~~
1163		~~"""A thread-safe wrapper for an SSL.Connection.~~
1164
1165		args: the arguments to create the wrapped SSL.Connection(args).
1166		~~"""~~
1167
1168		~~def __init__(self, *args):~~
1169		~~self._ssl_conn = SSL.Connection(*args)~~
1170		~~self._lock = threading.RLock()~~
1171
1172		~~for f in ('get_context', 'pending', 'send', 'write', 'recv', 'read',~~
1173		~~'renegotiate', 'bind', 'listen', 'connect', 'accept',~~
1174		~~'setblocking', 'fileno', 'shutdown', 'close', 'get_cipher_list',~~
1175		~~'getpeername', 'getsockname', 'getsockopt', 'setsockopt',~~
1176		~~'makefile', 'get_app_data', 'set_app_data', 'state_string',~~
1177		~~'sock_shutdown', 'get_peer_certificate', 'want_read',~~
1178		~~'want_write', 'set_connect_state', 'set_accept_state',~~
1179		~~'connect_ex', 'sendall', 'settimeout'):~~
1180		~~exec("""def %s(self, *args):~~
1181		~~self._lock.acquire()~~
1182		~~try:~~
1183		~~return self._ssl_conn.%s(*args)~~
1184		~~finally:~~
1185		~~self._lock.release()~~
1186		~~""" % (f, f))~~
1187	1063
1188	1064
…	…
1241	1117	SSL/HTTPS
1242	1118	---------
1243		The OpenSSL module must be importable for SSL functionality.
1244		You can obtain it from http://pyopenssl.sourceforge.net/
1245
1246		There are two ways to use SSL:
1247
1248		Method One:
1249		ssl_context: an instance of SSL.Context.
1250
1251		If this is not None, it is assumed to be an SSL.Context instance,
1252		and will be passed to SSL.Connection on bind(). The developer is
1253		responsible for forming a valid Context object. This approach is
1254		to be preferred for more flexibility, e.g. if the cert and key are
1255		streams instead of files, or need decryption, or SSL.SSLv3_METHOD
1256		is desired instead of the default SSL.SSLv23_METHOD, etc. Consult
1257		the pyOpenSSL documentation for complete options.
1258
1259		Method Two (shortcut):
	1119	The builtin ssl module must be importable for SSL functionality.
	1120
	1121	To enable, set the following config params to valid cert/key file names
1260	1122	ssl_certificate: the filename of the server SSL certificate.
1261	1123	ssl_privatekey: the filename of the server's private key file.
1262	1124
1263		~~Both are None by default. If ssl_context is None, but ssl_privatekey~~
1264		~~and ssl_certificate are both given and valid, they will be read on~~
1265		~~server start, and self.ssl_context will be automatically created~~
1266		~~from them.~~
1267
1268		~~ssl_certificate_chain: (optional) the filename of CA's intermediate~~
1269		~~certificate bundle. This is needed for cheaper "chained root" SSL~~
1270		~~certificates, and should be left as None if not required.~~
1271	1125	"""
1272	1126
…	…
1282	1136	environ = {}
1283	1137
1284		~~# An SSL.Context instance...~~
1285		~~ssl_context = None~~
1286
1287	1138	# ...or paths to certificate and private key files
1288	1139	ssl_certificate = None
1289		~~ssl_certificate_chain = None~~
1290	1140	ssl_private_key = None
1291	1141
…	…
1418	1268	self.socket.setsockopt(socket.IPPROTO_TCP, socket.TCP_NODELAY, 1)
1419	1269
1420		if (self.ssl_context is None and
1421		self.ssl_certificate and self.ssl_private_key):
1422		if SSL is None:
1423		raise ImportError("You must install pyOpenSSL to use HTTPS.")
1424
1425		# See http://aspn.activestate.com/ASPN/Cookbook/Python/Recipe/442473
1426		self.ssl_context = SSL.Context(SSL.SSLv23_METHOD)
1427		self.ssl_context.use_privatekey_file(self.ssl_private_key)
1428		if self.ssl_certificate_chain:
1429		self.ssl_context.load_verify_locations(self.ssl_certificate_chain)
1430		self.ssl_context.use_certificate_file(self.ssl_certificate)
1431
1432		if self.ssl_context is not None:
1433		self.socket = SSLConnection(self.ssl_context, self.socket)
1434		self.populate_ssl_environ()
	1270	if self.ssl_certificate and self.ssl_private_key:
	1271	if ssl is None:
	1272	raise ImportError("You must install the ssl module to use HTTPS.")
1435	1273
1436	1274	# If listening on the IPV6 any address ('::' = IN6ADDR_ANY),
…	…
1451	1289	try:
1452	1290	s, addr = self.socket.accept()
	1291
	1292	# if ssl cert and key are set, we try to be a secure HTTP server
	1293	if self.ssl_certificate and self.ssl_private_key:
	1294	try:
	1295	s = ssl.wrap_socket(s, do_handshake_on_connect=True,
	1296	server_side=True, certfile=self.ssl_certificate,
	1297	keyfile=self.ssl_private_key,
	1298	ssl_version=ssl.PROTOCOL_SSLv23)
	1299	self.ssl_cipher = s.cipher()
	1300	except socket.timeout:
	1301	return
	1302	except ssl.SSLError as e:
	1303	if e.errno == ssl.SSL_ERROR_EOF:
	1304	# This is almost certainly due to the cherrypy engine
	1305	# 'pinging' the socket to assert it's connectable;
	1306	# the 'ping' isn't SSL.
	1307	return
	1308	elif e.errno == ssl.SSL_ERROR_SSL:
	1309	if e.args[1].endswith('http request'):
	1310	# The client is speaking HTTP to an HTTPS server.
	1311	# We used to respond with a 'please use HTTPS'
	1312	# message with pyOpenSSL, but I can't figure out
	1313	# how to do that with the builtin ssl module. TODO.
	1314	return
	1315	print("unexpected", e)
	1316	raise
	1317
1453	1318	prevent_socket_inheritance(s)
1454	1319	if not self.ready:
…	…
1478	1343	environ["REMOTE_ADDR"] = addr[0]
1479	1344	environ["REMOTE_PORT"] = str(addr[1])
	1345
	1346	if (self.ssl_certificate and self.ssl_private_key):
	1347	self.populate_ssl_environ(environ)
1480	1348
1481	1349	conn = self.ConnectionClass(s, self.wsgi_app, environ)
…	…
1553	1421	self.requests.stop(self.shutdown_timeout)
1554	1422
1555		def populate_ssl_environ(self):
	1423	# TODO: fill this out more with mod ssl env
	1424	def populate_ssl_environ(self, environ):
1556	1425	"""Create WSGI environ entries to be merged into each request."""
1557	1426	ssl_environ = {
1558	1427	"wsgi.url_scheme": "https",
1559	1428	"HTTPS": "on",
1560		# pyOpenSSL doesn't provide access to any of these AFAICT
1561		## 'SSL_PROTOCOL': 'SSLv2',
1562		## SSL_CIPHER string The cipher specification name
	1429	'SSL_PROTOCOL': self.ssl_cipher[1],
	1430	'SSL_CIPHER': self.ssl_cipher[0]
1563	1431	## SSL_VERSION_INTERFACE string The mod_ssl program version
1564	1432	## SSL_VERSION_LIBRARY string The OpenSSL program version
1565	1433	}
1566	1434
	1435	"""
1567	1436	if self.ssl_certificate:
1568	1437	# Server certificate attributes
…	…
1596	1465	wsgikey = 'SSL_SERVER_%s_DN_%s' % (prefix, key)
1597	1466	ssl_environ[wsgikey] = value
1598
1599		self.environ.update(ssl_environ)
1600
	1467	"""
	1468
	1469	environ.update(ssl_environ)
	1470

Changeset Navigation

Changeset 2459

Legend:

branches/python3/cherrypy/_cpwsgi_server.py

branches/python3/cherrypy/wsgiserver/__init__.py

Download in other formats:

branches/python3/cherrypy/wsgiserver/init.py