2018-08-13 01:15:01 +02:00
|
|
|
# Copyright 2006-2018 Eygene A. Ryabinkin & contributors.
|
2014-09-21 11:15:38 +04:00
|
|
|
#
|
|
|
|
# Module that supports distribution-specific functions.
|
|
|
|
|
|
|
|
import platform
|
|
|
|
import os
|
|
|
|
|
2020-10-25 16:38:16 +01:00
|
|
|
# linux_distribution deprecated in Python 3.7
|
|
|
|
try:
|
|
|
|
from platform import linux_distribution
|
|
|
|
except ImportError:
|
|
|
|
from distro import linux_distribution
|
|
|
|
|
2014-09-21 11:15:38 +04:00
|
|
|
# For the former we will just return the value, for an iterable
|
|
|
|
# we will walk through the values and will return the first
|
|
|
|
# one that corresponds to the existing file.
|
|
|
|
__DEF_OS_LOCATIONS = {
|
Distro default certificates must be iterables
This patch changes the __DEF_OS_LOCATIONS to an iterable value.
The reason is because a list is an iterable, but an string is an
iterable too, and this is a mistake.
The function get_os_sslcertfile() has a loop to iterate the return of
get_os_sslcertfile_searchpath(), that returns the value in the
__DEF_OS_LOCATIONS dictionary. When the value is an iterable, the "f"
variable is set to the iterable value and works fine.
If the value of "f" is an string, the for-loop iterates over every
character, so the test for os.path.exists is always false (is comparing
the path with a character, not with the full path), so this function
fails and return None.
To check this change, edit your .offlineimaprc file and change the
sslcacertfile to OS-DEFAULT:
sslcacertfile = OS-DEFAULT
And run offlineimap. If you are not using 'darwin0 (the only iterable)
it will fails. Now, apply this patch, and run offlineimap again. Problem
is solved.
Signed-off-by: Rodolfo García Peñas (kix) <kix@kix.es>
2020-10-25 17:18:35 +01:00
|
|
|
'freebsd': ['/usr/local/share/certs/ca-root-nss.crt'],
|
|
|
|
'openbsd': ['/etc/ssl/cert.pem'],
|
|
|
|
'dragonfly': ['/etc/ssl/cert.pem'],
|
2014-09-21 11:15:38 +04:00
|
|
|
'darwin': [
|
2020-08-29 20:01:52 +02:00
|
|
|
# MacPorts, port curl-ca-bundle
|
|
|
|
'/opt/local/share/curl/curl-ca-bundle.crt',
|
|
|
|
# homebrew, package openssl
|
|
|
|
'/usr/local/etc/openssl/cert.pem',
|
2014-09-21 11:15:38 +04:00
|
|
|
],
|
Distro default certificates must be iterables
This patch changes the __DEF_OS_LOCATIONS to an iterable value.
The reason is because a list is an iterable, but an string is an
iterable too, and this is a mistake.
The function get_os_sslcertfile() has a loop to iterate the return of
get_os_sslcertfile_searchpath(), that returns the value in the
__DEF_OS_LOCATIONS dictionary. When the value is an iterable, the "f"
variable is set to the iterable value and works fine.
If the value of "f" is an string, the for-loop iterates over every
character, so the test for os.path.exists is always false (is comparing
the path with a character, not with the full path), so this function
fails and return None.
To check this change, edit your .offlineimaprc file and change the
sslcacertfile to OS-DEFAULT:
sslcacertfile = OS-DEFAULT
And run offlineimap. If you are not using 'darwin0 (the only iterable)
it will fails. Now, apply this patch, and run offlineimap again. Problem
is solved.
Signed-off-by: Rodolfo García Peñas (kix) <kix@kix.es>
2020-10-25 17:18:35 +01:00
|
|
|
'linux-ubuntu': ['/etc/ssl/certs/ca-certificates.crt'],
|
|
|
|
'linux-debian': ['/etc/ssl/certs/ca-certificates.crt'],
|
|
|
|
'linux-gentoo': ['/etc/ssl/certs/ca-certificates.crt'],
|
|
|
|
'linux-fedora': ['/etc/pki/tls/certs/ca-bundle.crt'],
|
|
|
|
'linux-redhat': ['/etc/pki/tls/certs/ca-bundle.crt'],
|
|
|
|
'linux-suse': ['/etc/ssl/ca-bundle.pem'],
|
|
|
|
'linux-opensuse': ['/etc/ssl/ca-bundle.pem'],
|
|
|
|
'linux-arch': ['/etc/ssl/certs/ca-certificates.crt'],
|
2014-09-21 11:15:38 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
def get_os_name():
|
|
|
|
"""
|
|
|
|
Finds out OS name. For non-Linux system it will be just a plain
|
|
|
|
OS name (like FreeBSD), for Linux it will be "linux-<distro>",
|
|
|
|
where <distro> is the name of the distribution, as returned by
|
|
|
|
the first component of platform.linux_distribution.
|
|
|
|
|
|
|
|
Return value will be all-lowercase to avoid confusion about
|
|
|
|
proper name capitalisation.
|
|
|
|
|
|
|
|
"""
|
2020-10-25 13:43:35 +01:00
|
|
|
os_name = platform.system().lower()
|
2014-09-21 11:15:38 +04:00
|
|
|
|
2020-10-25 13:43:35 +01:00
|
|
|
if os_name.startswith('linux'):
|
2020-10-25 16:38:16 +01:00
|
|
|
distro_name = linux_distribution()[0]
|
2020-10-25 13:44:53 +01:00
|
|
|
if distro_name:
|
|
|
|
os_name = os_name + "-%s" % distro_name.split()[0].lower()
|
2018-08-17 12:27:41 +02:00
|
|
|
if os.path.exists('/etc/arch-release'):
|
2020-10-25 13:43:35 +01:00
|
|
|
os_name = "linux-arch"
|
2014-09-21 11:15:38 +04:00
|
|
|
|
2020-10-25 13:43:35 +01:00
|
|
|
return os_name
|
2014-09-21 11:15:38 +04:00
|
|
|
|
2020-08-29 20:01:52 +02:00
|
|
|
|
2015-01-18 10:45:46 +03:00
|
|
|
def get_os_sslcertfile_searchpath():
|
|
|
|
"""Returns search path for CA bundle for the current OS.
|
2016-09-20 22:31:48 +02:00
|
|
|
|
2015-01-18 10:45:46 +03:00
|
|
|
We will return an iterable even if configuration has just
|
|
|
|
a single value: it is easier for our callers to be sure
|
|
|
|
that they can iterate over result.
|
|
|
|
|
|
|
|
Returned value of None means that there is no search path
|
|
|
|
at all.
|
|
|
|
"""
|
|
|
|
|
2020-10-25 16:40:07 +01:00
|
|
|
os_name = get_os_name()
|
2015-01-18 10:45:46 +03:00
|
|
|
|
2020-10-25 16:40:50 +01:00
|
|
|
location = None
|
2020-10-25 16:40:07 +01:00
|
|
|
if os_name in __DEF_OS_LOCATIONS:
|
2020-10-25 16:40:50 +01:00
|
|
|
location = __DEF_OS_LOCATIONS[os_name]
|
2020-10-25 17:32:38 +01:00
|
|
|
|
2020-10-25 16:40:50 +01:00
|
|
|
return location
|
2015-01-18 10:45:46 +03:00
|
|
|
|
2014-09-21 11:15:38 +04:00
|
|
|
|
|
|
|
def get_os_sslcertfile():
|
|
|
|
"""
|
|
|
|
Finds out the location for the distribution-specific
|
|
|
|
CA certificate file bundle.
|
|
|
|
|
|
|
|
Returns the location of the file or None if there is
|
|
|
|
no known CA certificate file or all known locations
|
|
|
|
correspond to non-existing filesystem objects.
|
|
|
|
"""
|
|
|
|
|
2020-10-25 16:42:09 +01:00
|
|
|
location = get_os_sslcertfile_searchpath()
|
|
|
|
if location is None:
|
2015-01-18 10:45:46 +03:00
|
|
|
return None
|
|
|
|
|
2020-10-25 16:42:09 +01:00
|
|
|
for f in location:
|
2020-10-25 17:27:40 +01:00
|
|
|
assert isinstance(f, str)
|
2020-08-29 20:01:52 +02:00
|
|
|
if os.path.exists(f) and (os.path.isfile(f) or os.path.islink(f)):
|
|
|
|
return f
|
2014-09-21 11:15:38 +04:00
|
|
|
|
|
|
|
return None
|