tlslite/tlsrecordlayer.py
Showing 132 of 132 total issues
Function _getMsg has a Cognitive Complexity of 182 (exceeds 5 allowed). Consider refactoring. Open
Open
def _getMsg(self, expectedType, secondaryType=None, constructorType=None): try: if not isinstance(expectedType, tuple): expectedType = (expectedType,) - Read upRead up
File tlsrecordlayer.py has 1163 lines of code (exceeds 250 allowed). Consider refactoring. Open
Open
# Authors:# Trevor Perrin# Google (adapted by Sam Rushing) - NPN support# Google - minimal padding# Martin von Loewis - python 3 portCyclomatic complexity is too high in method _getMsg. (81) Open
Open
def _getMsg(self, expectedType, secondaryType=None, constructorType=None): try: if not isinstance(expectedType, tuple): expectedType = (expectedType,) - Read upRead up
- Exclude checks
Function readAsync has a Cognitive Complexity of 66 (exceeds 5 allowed). Consider refactoring. Open
Open
def readAsync(self, max=None, min=1): """Start a read operation on the TLS connection. This function returns a generator which behaves similarly to read(). Successive invocations of the generator will return 0- Read upRead up
TLSRecordLayer has 59 functions (exceeds 20 allowed). Consider refactoring. Open
Open
class TLSRecordLayer(object): """ This class handles data transmission for a TLS connection. Its only subclass is :py:class:`~tlslite.tlsconnection.TLSConnection`.Function _handle_srv_pha has a Cognitive Complexity of 43 (exceeds 5 allowed). Consider refactoring. Open
Open
def _handle_srv_pha(self, cert): """Process the post-handshake authentication from client.""" prf_name = 'sha256' prf_size = 32 if self.session.cipherSuite in CipherSuite.sha384PrfSuites:- Read upRead up
Cyclomatic complexity is too high in method readAsync. (33) Open
Open
def readAsync(self, max=None, min=1): """Start a read operation on the TLS connection. This function returns a generator which behaves similarly to read(). Successive invocations of the generator will return 0- Read upRead up
- Exclude checks
Function _decrefAsync has a Cognitive Complexity of 32 (exceeds 5 allowed). Consider refactoring. Open
Open
def _decrefAsync(self): self._refCount -= 1 if self._refCount == 0 and not self.closed: try: for result in self._sendMsg(Alert().create(\- Read upRead up
Cyclomatic complexity is too high in method _handle_srv_pha. (25) Open
Open
def _handle_srv_pha(self, cert): """Process the post-handshake authentication from client.""" prf_name = 'sha256' prf_size = 32 if self.session.cipherSuite in CipherSuite.sha384PrfSuites:- Read upRead up
- Exclude checks
Function _getNextRecordFromSocket has a Cognitive Complexity of 25 (exceeds 5 allowed). Consider refactoring. Open
Open
def _getNextRecordFromSocket(self): """Read a record, handle errors""" try: # otherwise... read the next record- Read upRead up
Function _handle_pha has a Cognitive Complexity of 22 (exceeds 5 allowed). Consider refactoring. Open
Open
def _handle_pha(self, cert_request): cert, p_key = self._client_keypair handshake_context = self._first_handshake_hashes.copy() handshake_context.update(cert_request.write())- Read upRead up
Function _getNextRecord has a Cognitive Complexity of 22 (exceeds 5 allowed). Consider refactoring. Open
Open
def _getNextRecord(self): """read next message from socket, defragment message""" while True: # support for fragmentation- Read upRead up
Cyclomatic complexity is too high in method _getNextRecordFromSocket. (18) Open
Open
def _getNextRecordFromSocket(self): """Read a record, handle errors""" try: # otherwise... read the next record- Read upRead up
- Exclude checks
Cyclomatic complexity is too high in method _handle_pha. (16) Open
Open
def _handle_pha(self, cert_request): cert, p_key = self._client_keypair handshake_context = self._first_handshake_hashes.copy() handshake_context.update(cert_request.write())- Read upRead up
- Exclude checks
Function _sendMsgThroughSocket has a Cognitive Complexity of 18 (exceeds 5 allowed). Consider refactoring. Open
Open
def _sendMsgThroughSocket(self, msg): """Send message, handle errors""" try: for result in self._recordLayer.sendRecord(msg):- Read upRead up
Cyclomatic complexity is too high in method _decrefAsync. (13) Open
Open
def _decrefAsync(self): self._refCount -= 1 if self._refCount == 0 and not self.closed: try: for result in self._sendMsg(Alert().create(\- Read upRead up
- Exclude checks
Cyclomatic complexity is too high in method _sendMsg. (12) Open
Open
def _sendMsg(self, msg, randomizeFirstBlock=True, update_hashes=True): """Fragment and send message through socket""" #Whenever we're connected and asked to send an app data message, #we first send the first byte of the message. This prevents #an attacker from launching a chosen-plaintext attack based on- Read upRead up
- Exclude checks
Cyclomatic complexity is too high in method _getNextRecord. (12) Open
Open
def _getNextRecord(self): """read next message from socket, defragment message""" while True: # support for fragmentation- Read upRead up
- Exclude checks
Function __init__ has 33 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def __init__(self, sock): sock = BufferedSocket(sock) self.sock = sock self._recordLayer = RecordLayer(sock) Function _sendMsg has a Cognitive Complexity of 10 (exceeds 5 allowed). Consider refactoring. Open
Open
def _sendMsg(self, msg, randomizeFirstBlock=True, update_hashes=True): """Fragment and send message through socket""" #Whenever we're connected and asked to send an app data message, #we first send the first byte of the message. This prevents #an attacker from launching a chosen-plaintext attack based on- Read upRead up
Function _handle_keyupdate_request has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring. Open
Open
def _handle_keyupdate_request(self, request): """Process the KeyUpdate request. :type request: KeyUpdate :param request: Recieved KeyUpdate message.- Read upRead up
Function _create_cert_msg has 7 arguments (exceeds 4 allowed). Consider refactoring. Open
Open
def _create_cert_msg(self, peer, request_msg, valid_compression_algos,Avoid deeply nested control flow statements. Open
Open
if subType == HandshakeType.client_hello: reneg = True # Send no_renegotiation if we're not negotiating # a connection now, then try again if reneg and self.session:Avoid deeply nested control flow statements. Open
Open
for result in self._sendMsg(alertMsg): yield result continueAvoid deeply nested control flow statements. Open
Open
if not self.heartbeat_can_receive: for result in self._sendError( AlertDescription. unexpected_message, "Received heartbeat_request to "Avoid deeply nested control flow statements. Open
Open
if result in (0,1): yield result if result.contentType == ContentType.alert:Avoid deeply nested control flow statements. Open
Open
if subType == HandshakeType.hello_request: reneg = True else:Avoid deeply nested control flow statements. Open
Open
if len(heartbeat_message.padding) < 16: # per RFC, silently ignore if the message # is malformed continue heartbeat_response = heartbeat_message.\Avoid deeply nested control flow statements. Open
Open
if alert.description == \ AlertDescription.close_notify: self._shutdown(True) elif alert.level == AlertLevel.warning: self._shutdown(False)Avoid deeply nested control flow statements. Open
Open
for result in self._sendMsg(alertMsg): yield result except socket.error:Avoid deeply nested control flow statements. Open
Open
for result in self._sendMsg( heartbeat_response): yield result # If we received heartbeat response, then we # check, if its payload is same as payload ofFunction _calcPendingStates has 5 arguments (exceeds 4 allowed). Consider refactoring. Open
Open
def _calcPendingStates(self, cipherSuite, masterSecret,Function makefile has a Cognitive Complexity of 6 (exceeds 5 allowed). Consider refactoring. Open
Open
def makefile(self, mode='r', bufsize=-1): """Create a file object for the TLS connection (socket emulation). :rtype: socket._fileobject """- Read upRead up
TODO found Open
Open
# TODO: verify that the extensions used by client were sent by us in- Exclude checks
Similar blocks of code found in 2 locations. Consider refactoring. Open
Open
while True: # empty message buffer ret = self._defragmenter.get_message() if ret is None: break- Read upRead up
tlslite/messagesocket.py on lines 75..82
Similar blocks of code found in 3 locations. Consider refactoring. Open
Open
elif sig_scheme[1] == SignatureAlgorithm.ecdsa: pad_type = None hash_name = HashAlgorithm.toRepr(sig_scheme[0]) salt_len = None sig_func = p_key.sign- Read upRead up
tlslite/tlsconnection.py on lines 1579..1590
tlslite/tlsconnection.py on lines 3069..3080
Similar blocks of code found in 3 locations. Consider refactoring. Open
Open
if not ver_func( cert_verify.signature, signature_context, pad_type, hash_name, salt_len): for result in self._sendError( AlertDescription.decrypt_error,- Read upRead up
tlslite/tlsconnection.py on lines 3208..3216
tlslite/tlsconnection.py on lines 4676..4684
Similar blocks of code found in 2 locations. Consider refactoring. Open
Open
self.session.cl_app_secret, self.session.sr_app_secret = self._recordLayer.\ calcTLS1_3KeyUpdate_sender( self.session.cipherSuite, self.session.cl_app_secret, self.session.sr_app_secret)- Read upRead up
tlslite/tlsrecordlayer.py on lines 1535..1539
Similar blocks of code found in 2 locations. Consider refactoring. Open
Open
self.session.cl_app_secret, self.session.sr_app_secret = \ self._recordLayer.calcTLS1_3KeyUpdate_reciever( self.session.cipherSuite, self.session.cl_app_secret, self.session.sr_app_secret)- Read upRead up
tlslite/tlsrecordlayer.py on lines 1502..1506
Similar blocks of code found in 10 locations. Consider refactoring. Open
Open
for result in self._getMsg(ContentType.handshake, HandshakeType.certificate_verify): if result in (0, 1): yield result- Read upRead up
tlslite/tlsconnection.py on lines 972..974
tlslite/tlsconnection.py on lines 1084..1087
tlslite/tlsconnection.py on lines 1335..1338
tlslite/tlsconnection.py on lines 1426..1429
tlslite/tlsconnection.py on lines 1836..1839
tlslite/tlsconnection.py on lines 3159..3162
tlslite/tlsconnection.py on lines 3335..3337
tlslite/tlsconnection.py on lines 4085..4088
tlslite/tlsconnection.py on lines 4599..4602
Similar blocks of code found in 3 locations. Consider refactoring. Open
Open
if not ver_func(signature, signature_context, pad_type, hash_name, salt_len): for result in self._sendError(- Read upRead up
tlslite/tlsconnection.py on lines 1596..1603
tlslite/tlsconnection.py on lines 3086..3093
Similar blocks of code found in 7 locations. Consider refactoring. Open
Open
if comp_cert_ext and not comp_cert_ext.algorithms: for result in self._sendError( AlertDescription.decode_error, "Empty algorithm list in compress_certificate " "extension"):- Read upRead up
tlslite/tlsconnection.py on lines 1346..1351
tlslite/tlsconnection.py on lines 1375..1380
tlslite/tlsconnection.py on lines 1828..1833
tlslite/tlsconnection.py on lines 2822..2826
tlslite/tlsconnection.py on lines 4222..4226
tlslite/tlsconnection.py on lines 4452..4457
Block comment should start with '# ' Open
Open
#and pretend the connection was shut down properly? (writeable)- Read upRead up
- Exclude checks
Indentation is not a multiple of 4 (comment) Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Line too long (80 > 79 characters) Open
Open
if request.message_type == KeyUpdateMessageType.update_not_requested or\- Read upRead up
- Exclude checks
Line too long (80 > 79 characters) Open
Open
unread the last data from a socket, that won't wake up selected waiters,- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If the sendMsg() call fails because the socket has- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If the socket is abruptly closed, do we ignore it- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#a close_notify, but ignore any socket errors, since- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Convert secondaryType to tuple, if it isn't already- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendError(\- Read upRead up
- Exclude checks
Line too long (87 > 79 characters) Open
Open
raise TLSClosedConnectionError("attempt to write to closed connection")- Read upRead up
- Exclude checks
Continuation line under-indented for visual indent Open
Open
ContentType.application_data)):- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If an exception was raised by a Parser or Message instance:- Read upRead up
- Exclude checks
At least two spaces before inline comment Open
Open
self.closed = True #read-only- Read upRead up
- Exclude checks
Inline comment should start with '# ' Open
Open
self.resumed = False #read-only- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#an attacker from launching a chosen-plaintext attack based on- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#expect. The loop will be repeated if:- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendError(\- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Returns next record or next handshake message- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._getMsg((ContentType.alert, \- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Indentation is not a multiple of 4 (comment) Open
Open
# Public Functions END- Read upRead up
- Exclude checks
Too many blank lines (2) Open
Open
def _sendError(self, alertDescription, errorStr=None):- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#already been closed, we will be forgiving and not- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
AlertDescription.unexpected_message, \- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendMsg(applicationData, \- Read upRead up
- Exclude checks
Line too long (80 > 79 characters) Open
Open
# Don't invalidate the session on write failure if abrupt closes are- Read upRead up
- Exclude checks
Indentation is not a multiple of 4 (comment) Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If we received a renegotiation attempt...- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Otherwise: this is an unexpected record, but neither an- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Buffers for processing messages- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Spin in a loop, until we've got a non-empty record of a type we- Read upRead up
- Exclude checks
Continuation line over-indented for visual indent Open
Open
AlertDescription.close_notify:- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#My session object (Session instance; read-only)- Read upRead up
- Exclude checks
Inline comment should start with '# ' Open
Open
self._refCount = 0 #Used to trigger closure- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#On a call to close(), do we close the socket? (writeable)- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Fault we will induce, for testing purposes- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendMsg(Alert().create(\- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#We either received a fatal error, a warning, or a- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#report the error nor invalidate the "resumability"- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If it's a handshake message, check handshake header- Read upRead up
- Exclude checks
At least two spaces before inline comment Open
Open
self.resumed = False #read-only- Read upRead up
- Exclude checks
At least two spaces before inline comment Open
Open
self._refCount = 0 #Used to trigger closure- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If the other side closes the socket, that's okay- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Whenever we're connected and asked to send an app data message,- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#connection. In the latter two cases we respond with- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Parse based on handshake type- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#knowing the next IV (a la BEAST).- Read upRead up
- Exclude checks
Line too long (88 > 79 characters) Open
Open
self.session.cl_app_secret, self.session.sr_app_secret = self._recordLayer.\- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Raise the alert as an exception- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendError(\- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
for result in self._sendError(\- Read upRead up
- Exclude checks
Inline comment should start with '# ' Open
Open
self.closed = True #read-only- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#What username did the client claim in his handshake?- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Expected 1 blank line, found 0 Open
Open
def _handle_pha(self, cert_request):- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#close_notify. In any case, we're going to close the- Read upRead up
- Exclude checks
The backslash is redundant between brackets Open
Open
yield ClientKeyExchange(constructorType, \- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If we received an unexpected record type...- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#the other side might have already closed the socket.- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#If this is an empty application-data fragment, try again- Read upRead up
- Exclude checks
Too many blank lines (2) Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Line too long (80 > 79 characters) Open
Open
ver_func = cert.cert_chain.getEndEntityPublicKey().hashAndVerify- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#we first send the first byte of the message. This prevents- Read upRead up
- Exclude checks
Line too long (80 > 79 characters) Open
Open
raise TLSIllegalParameterException("KeyUpdate is a TLS 1.3 specific"- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Too many blank lines (2) Open
Open
#*********************************************************- Read upRead up
- Exclude checks
Block comment should start with '# ' Open
Open
#Even if resumable is False, we'll never toggle this on- Read upRead up
- Exclude checks