o $i @sDddlZddlZddlZddlmZmZddZddZddZdS) N)get_localhost_ip node_ip_address_from_perspectivec CsZz"ddlm}ddlm}ddlm}m}ddlm}ddl m }Wn t y-t dw|j dd |d }|j |jj|jj|d }|||jd g}||tt|t|t|d g} tj} | !|"|j#| dd$|$%|&'| (| tj)dd*||+|} | ,|jj} | |fS)zwCreate self-signed key/cert pair for testing. This method requires the library ``cryptography`` be installed. r)x509)default_backend)hashes serialization)rsa)NameOIDz_Using `Security.temporary` requires `cryptography`, please install it using either pip or condaii)public_exponentkey_sizebackend)encodingformatencryption_algorithmz ray-internal localhostF)criticalim)days)- cryptographyrcryptography.hazmat.backendsrcryptography.hazmat.primitivesrr)cryptography.hazmat.primitives.asymmetricrcryptography.x509.oidr ImportErrorgenerate_private_key private_bytesEncodingPEM PrivateFormatPKCS8 NoEncryptiondecodeName NameAttribute COMMON_NAMESubjectAlternativeNameDNSNamesocket gethostbyname gethostnamerrdatetimeutcnowCertificateBuilder subject_name issuer_name add_extension public_key serial_numberrandom_serial_numbernot_valid_beforenot_valid_after timedeltasignSHA256 public_bytes) rrrrrr key key_contents ray_interalaltnamesnowcert cert_contentsr?S/home/ubuntu/veenaModal/venv/lib/python3.10/site-packages/ray/_private/tls_utils.pygenerate_self_signed_tls_certs sZ           rAcCsZddl}tjdddvr(t\}}}|j||fg||dud}|||S||S)Nr RAY_USE_TLS0)1true)root_certificatesrequire_client_auth) grpcosenvirongetlowerload_certs_from_envssl_server_credentialsadd_secure_portadd_insecure_port)serveraddressrHserver_cert_chain private_keyca_cert credentialsr?r?r@add_port_to_grpc_serverAs   rWcCsgd}tdd|Drtdttjdd }|}Wdn1s(wYttjdd }|}Wdn1sDwYttjdd }|}Wdn1s`wY|||fS) N)RAY_TLS_SERVER_CERTRAY_TLS_SERVER_KEYRAY_TLS_CA_CERTcss|]}|tjvVqdS)N)rIrJ).0vr?r?r@ Rsz&load_certs_from_env..zIf the environment variable RAY_USE_TLS is set to true then RAY_TLS_SERVER_CERT, RAY_TLS_SERVER_KEY and RAY_TLS_CA_CERT must also be set.rXrbrYrZ)any RuntimeErroropenrIrJread) tls_env_varsfrSrTrUr?r?r@rMPs    rM) r)rIr&ray._common.network_utilsrrrArWrMr?r?r?r@s6