$dZddlmZddlmZddlmZddlZddlZddlZddlZddl m Z ddl m Z ddl m Z dd l m Z dd lmZddlZddlZdd lmZddlZd Zd ZdZdZdZdZdZdZedzZdZdZdZ dZ!dZ"ejFdgdZ$Gdde jJZ&Gdde jJZ'Gdde jJZ(Gd d!e jJZ)Gd"d#e jJZ*Gd$d%e jJZ+Gd&d'e jJZ,d(Z-d)Z.d*Z/d+Z0d,Z1d-Z2d.Z3d/Z4d0Z5d1Z6d2Z7d3Z8d4Z9d5Z:d6Z;d7Z!>!@j+ :)<< "#G#-$. //"A m33}7I7I#0#8#8#:#@#@#B K Z+HH$%I%/&01 1 'HH'(F(2)34 4 $C$1#8#8#:#@#@#B K Z+LL$%I%/&01 1$C ))44JzU%:%:: $  1 1* = > ??; r&cVtj}tjjj j }|r|}tjj|sCd}tj||d|zz }|rtj||St||S)z'Get and check that CA cert file exists.z&Unable to locate CA certificates file.z [%s])httplib2CA_CERTSr VALUEScorecustom_ca_certs_fileGetospathexistsrwarninginfor ) ignore_certsca_certscustom_ca_certs error_msgs r'CheckCACertsFilerPs   (%%**??CCE/H  !8IKK  8##I hhy / #9 -- /r&cJ|stjrtjdks#tjrmtjdkrYt dtjj tjjtjjfzyyy)N)rr )rrzqPython version %d.%d.%d does not support SSL/TLS SNI needed for certificate verification on WebSocket connection.) sixPY2sys version_infoPY3r2majorminormicro)rLs r'CheckPythonVersionr\s  ww3##i/ ww3##i/ ! <    !1!1!7!7     ! ! ""0w r&cp|j|j|d}|jrI|j|d<|j|d<|j|d<|j r=|j |d<n-|j |d<|j|d<|j|d<tt||jS) z,Create Connect URL for WebSocket connection.)rr newWebsocketrrrgrouprrr) rrrrrrrrr_CreateWebSocketUrlCONNECT_ENDPOINTr)r<should_use_new_websocketurl_query_piecess r'CreateWebSocketConnectUrlrds&&  . !.!5!5X"/"7"7Y,11V"/":":w,11V#0#9#9Z $1$;$;[! -/?*77 99r&c|||d}|jr|j|d<n|j|d<tt||j S)z.Create Reconnect URL for WebSocket connection.)sidackr^rr)rrrr`RECONNECT_ENDPOINTr)r<rf ack_bytesrbrcs r'CreateWebSocketReconnectUrlrjs^ . !.!5!5X,11V /1A*77 99r&ct}ttj}t j r|rt nt}ndt j}t}|r'tj|}|dd\}}}|r|dk7r|}tj|} |jdr||n|d|} tj||| d| dfS)z$Create URL for WebSocket connection.ztunnel-cloudproxy.NrS/) URL_SCHEMEboolrConfigr IsDefaultUniverse MTLS_URL_HOSTURL_HOSTGetUniverseDomain URL_PATH_ROOTr urlparse urlencodeendswith urlunparse) endpointrcrschemeuse_mtlshostname path_rooturl_override_parts path_overrideqsrHs r'r`r`s & -&&( )(!!# (}hH#J$@$@$B#CDH) 5&8!&<#FHm#-i '(",5,>,>s,CIx (#X.   68T2r2> ??r&c tjtdt|S#tj$rt d|zwxYw)Nz>HQzInvalid Ack [%r])structpackstrSUBPROTOCOL_TAG_ACKerrorr,)ris r'CreateSubprotocolAckFramersFJ ;;s5z#6 BB J )*HI%ds)rrrlenSUBPROTOCOL_TAG_DATA) bytes_to_sends r'CreateSubprotocolDataFramers2 SC $667)3}+=} NNr&ct|SN_ExtractUnsignedInt64 binary_datas r'ExtractSubprotocolAckr { ++r&c6t|\}}t||Sr_ExtractUnsignedInt32_ExtractBinaryArrayrdata_lens r'#ExtractSubprotocolConnectSuccessSidr/ <(K [( 33r&c6t|\}}t||Srrrs r'ExtractSubprotocolDatarrr&ct|Srrrs r'%ExtractSubprotocolReconnectSuccessAckrrr&ct|Sr)_ExtractUnsignedInt16rs r'ExtractSubprotocolTagrrr&ct|dkr ttjt d|ddd|ddfS)Nrz>Hrrr*runpackrrs r'rrH   --D ;r? 3A 6 ab/ r&ct|dkr ttjt d|ddd|ddfS)Nrz>Irrrs r'rr rr&ct|dkr ttjt d|ddd|ddfS)Nz>Qrrrs r'rrrr&ct||kr ttjt d|z|d|d||dfS)Nz%dsrrrs r'rrsP   --EH,-{9H/E Fq I hi  ""r&)>__doc__ __future__rrr collectionsrGrrVgooglecloudsdk.corerrrr googlecloudsdk.core.utilr rArTsix.moves.urllibr r9rnrsrrrurarhSUBPROTOCOL_NAMESUBPROTOCOL_TAG_LENSUBPROTOCOL_HEADER_LENSUBPROTOCOL_MAX_DATA_FRAME_SIZE#SUBPROTOCOL_TAG_CONNECT_SUCCESS_SID%SUBPROTOCOL_TAG_RECONNECT_SUCCESS_ACKrr namedtupleIapTunnelTargetInfoErrorr r*r,r.r0r2r4r?rPr\rdrjr`rrrrrrrrrrrr%r&r'rs A&' -*#*5 "  ",   0,q0"'&,#(.%-k,,>? Z--Z%%j&6&6Z-- 0 0j..:++(?V""9.9$@*JN ,4 4 ,,"r&