1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
|
#!/usr/bin/env python
"""
setuptools based installer for M2Crypto.
Copyright (c) 1999-2004, Ng Pheng Siong. All rights reserved.
Portions created by Open Source Applications Foundation (OSAF) are
Copyright (C) 2004-2007 OSAF. All Rights Reserved.
Copyright 2008-2011 Heikki Toivonen. All rights reserved.
"""
import glob
import logging
import os
import platform
import string
import subprocess
import sys
from distutils.command import build, sdist
from distutils.command.clean import clean
from distutils.dir_util import mkpath
from distutils.version import StrictVersion
import setuptools
from setuptools.command import build_ext
logging.basicConfig(format='%(levelname)s:%(funcName)s:%(message)s',
stream=sys.stdout, level=logging.INFO)
log = logging.getLogger('setup')
REQUIRED_SWIG_VERSION = '2.0.4'
MAXIMUM_OPENSSL_VERSION = '1.0.1'
if sys.version_info[:2] <= (2, 6):
# This covers hopefully only RHEL-6 (users of any other 2.6 Pythons
# ... Solaris?, *BSD? ... should file an issue and be prepared to
# help with adjusting this script.
requires_list = ["unittest2==0.5.1"]
else:
requires_list = ['typing']
def _get_additional_includes():
pid = subprocess.Popen(['cpp', '-Wp,-v', '-'],
stdin=open(os.devnull, 'r'),
stdout=subprocess.PIPE,
stderr=subprocess.PIPE)
_, err = pid.communicate()
err = [line.lstrip() for line in err.decode('utf8').split('\n')
if line and line[0] == ' ']
log.debug('additional includes:\n%s', err)
return err
def openssl_version(req_ver, required=False):
# type: (str, bool) -> bool
"""
Compare version of the installed OpenSSL with the maximum required version.
:param req_ver: required version as a str (e.g., '1.0.1')
:param required: whether we want bigger-or-equal or less-or-equal
:return: Boolean indicating whether the satisfying version of
OpenSSL has been installed.
"""
ver_str = None
try:
pid = subprocess.Popen(['openssl', 'version', '-v'],
stdout=subprocess.PIPE)
except OSError:
return False
out, _ = pid.communicate()
if hasattr(out, 'decode'):
out = out.decode('utf8')
ver_str = out.split()[1].strip(string.ascii_letters + string.punctuation +
string.whitespace)
if not ver_str:
raise OSError('Unknown format of openssl version -v output:\n%s' % out)
if required:
return StrictVersion(ver_str) >= StrictVersion(req_ver)
else:
return StrictVersion(ver_str) <= StrictVersion(req_ver)
class _M2CryptoSDist(sdist.sdist):
"""Make sure we don't run sdist with old OpenSSL."""
def run(self):
if openssl_version(MAXIMUM_OPENSSL_VERSION, True):
sdist.sdist.run(self)
else:
raise OSError(
'We need OpenSSL version at least %s!' %
MAXIMUM_OPENSSL_VERSION)
class _M2CryptoBuild(build.build):
"""Enable swig_opts to inherit any include_dirs settings made elsewhere."""
user_options = build.build.user_options + \
[('openssl=', 'o', 'Prefix for openssl installation location')]
def initialize_options(self):
"""Overload to enable custom openssl settings to be picked up."""
build.build.initialize_options(self)
self.openssl = None
class _M2CryptoBuildExt(build_ext.build_ext):
"""Enable swig_opts to inherit any include_dirs settings made elsewhere."""
user_options = build_ext.build_ext.user_options + \
[('openssl=', 'o', 'Prefix for openssl installation location')]
def initialize_options(self):
"""Overload to enable custom openssl settings to be picked up."""
build_ext.build_ext.initialize_options(self)
self.openssl = None
def finalize_options(self):
"""Append custom openssl include file and library linking options."""
build_ext.build_ext.finalize_options(self)
# openssl is the attribute corresponding to openssl directory prefix
# command line option
if os.name == 'nt':
if openssl_version('1.1.0'):
self.libraries = ['ssleay32', 'libeay32']
self.openssl_default = 'c:\\pkg'
else:
self.libraries = ['libssl', 'libcrypto']
if platform.architecture()[0] == '32bit':
self.openssl_default = os.environ.get('ProgramFiles(86)')
if not self.openssl:
self.openssl_default = os.environ.get('ProgramFiles')
else:
self.openssl_default = os.environ.get('ProgramW6432')
if not self.openssl_default:
raise RuntimeError('cannot detect platform')
self.openssl_default = os.path.join(self.openssl, 'OpenSSL')
else:
self.libraries = ['ssl', 'crypto']
self.openssl_default = None
self.set_undefined_options('build', ('openssl', 'openssl'))
if self.openssl is None:
self.openssl = self.openssl_default
if not self.swig_opts:
if sys.version_info[:1] >= (3,):
self.swig_opts = ['-py3']
else:
self.swig_opts = []
log.debug('self.include_dirs = %s', self.include_dirs)
log.debug('self.library_dirs = %s', self.library_dirs)
if self.openssl is not None:
log.debug('self.openssl = %s', self.openssl)
openssl_library_dir = os.path.join(self.openssl, 'lib')
openssl_include_dir = os.path.join(self.openssl, 'include')
self.library_dirs.append(openssl_library_dir)
self.include_dirs.append(openssl_include_dir)
log.debug('self.include_dirs = %s', self.include_dirs)
log.debug('self.library_dirs = %s', self.library_dirs)
if platform.system() == "Linux":
# For RedHat-based distros, the '-D__{arch}__' option for
# Swig needs to be normalized, particularly on i386.
mach = platform.machine().lower()
if mach in ('i386', 'i486', 'i586', 'i686'):
arch = '__i386__'
elif mach in ('ppc64', 'powerpc64'):
arch = '__powerpc64__'
elif mach in ('ppc', 'powerpc'):
arch = '__powerpc__'
else:
arch = '__%s__' % mach
self.swig_opts.append('-D%s' % arch)
self.swig_opts.extend(['-I%s' % i for i in self.include_dirs])
# Some Linux distributor has added the following line in
# /usr/include/openssl/opensslconf.h:
#
# #include "openssl-x85_64.h"
#
# This is fine with C compilers, because they are smart enough to
# handle 'local inclusion' correctly. Swig, on the other hand, is
# not as smart, and needs to be told where to find this file...
#
# Note that this is risky workaround, since it takes away the
# namespace that OpenSSL uses. If someone else has similarly
# named header files in /usr/include, there will be clashes.
if self.openssl is None:
self.swig_opts.append('-I/usr/include/openssl')
else:
self.swig_opts.append('-I' + os.path.join(openssl_include_dir, 'openssl'))
# swig seems to need the default header file directories
self.swig_opts.extend(['-I%s' % i for i in _get_additional_includes()])
self.swig_opts.append('-includeall')
self.swig_opts.append('-modern')
self.swig_opts.append('-builtin')
# Swig doesn't know the version of MSVC, which causes errors in e_os2.h
# trying to import stdint.h. Since python 2.7 is intimately tied to
# MSVC 2008, it's harmless for now to define this. Will come back to
# this shortly to come up with a better fix.
if os.name == 'nt':
self.swig_opts.append('-D_MSC_VER=1500')
# These two lines are a workaround for
# http://bugs.python.org/issue2624 , hard-coding that we are only
# building a single extension with a known path; a proper patch to
# distutils would be in the run phase, when extension name and path are
# known.
self.swig_opts.extend(['-outdir',
os.path.join(os.getcwd(), 'M2Crypto')])
self.include_dirs.append(os.path.join(os.getcwd(), 'SWIG'))
if sys.platform == 'cygwin' and self.openssl is not None:
# Cygwin SHOULD work (there's code in distutils), but
# if one first starts a Windows command prompt, then bash,
# the distutils code does not seem to work. If you start
# Cygwin directly, then it would work even without this change.
# Someday distutils will be fixed and this won't be needed.
self.library_dirs += [os.path.join(self.openssl, 'bin')]
mkpath(os.path.join(self.build_lib, 'M2Crypto'))
def swig_version(req_ver):
# type: (str) -> bool
"""
Compare version of the swig with the required version.
:param req_ver: required version as a str (e.g., '2.0.4')
:return: Boolean indicating whether the satisfying version of swig
has been installed.
"""
ver_str = None
IND_VER_LINE = 'SWIG Version '
try:
pid = subprocess.Popen(['swig', '-version'], stdout=subprocess.PIPE)
except OSError:
return False
out, _ = pid.communicate()
if hasattr(out, 'decode'):
out = out.decode('utf8')
for line in out.split('\n'):
line = line.strip()
if line.startswith(IND_VER_LINE):
ver_str = line.strip()[len(IND_VER_LINE):]
break
if not ver_str:
raise OSError('Unknown format of swig -version output:\n%s' % out)
return StrictVersion(ver_str) >= StrictVersion(req_ver)
x_comp_args = set()
if sys.platform == 'darwin':
x_comp_args.add("-Wno-deprecated-declarations")
elif sys.platform == 'win32':
x_comp_args.update(['-DTHREADING', '-D_CRT_SECURE_NO_WARNINGS'])
else:
x_comp_args.add('-DTHREADING')
# We take care of deprecated functions in OpenSSL with our code, no need
# to spam compiler output with it.
if openssl_version('1.1.0', required=True):
x_comp_args.add("-Wno-deprecated-declarations")
# Don't try to run swig on the ancient platforms
if swig_version(REQUIRED_SWIG_VERSION):
lib_sources = ['SWIG/_m2crypto.i']
else:
lib_sources = ['SWIG/_m2crypto_wrap.c']
m2crypto = setuptools.Extension(name='M2Crypto._m2crypto',
sources=lib_sources,
extra_compile_args=list(x_comp_args),
# Uncomment to build Universal Mac binaries
# extra_link_args =
# ['-Wl,-search_paths_first'],
)
class Clean(clean):
def __init__(self, dist):
clean.__init__(self, dist)
def initialize_options(self):
clean.initialize_options(self)
self.all = True
def finalize_options(self):
clean.finalize_options(self)
def run(self):
clean.run(self)
garbage_list = [
"M2Crypto/*m2crypto*.so",
"M2Crypto/*m2crypto*.pyd"
]
for p in garbage_list:
for f in glob.glob(p):
if os.path.exists(f):
os.unlink(f)
def __get_version(): # noqa
with open('M2Crypto/__init__.py') as init_file:
for line in init_file:
if line.startswith('__version__ ='):
return line.split('=')[1].strip(string.whitespace + "'")
long_description_text = '''\
M2Crypto is the most complete Python wrapper for OpenSSL featuring RSA, DSA,
DH, EC, HMACs, message digests, symmetric ciphers (including AES); SSL
functionality to implement clients and servers; HTTPS extensions to Python's
httplib, urllib, and xmlrpclib; unforgeable HMAC'ing AuthCookies for web
session management; FTP/TLS client and server; S/MIME; M2Crypto can also be
used to provide SSL for Twisted. Smartcards supported through the Engine
interface.'''
setuptools.setup(
name='M2Crypto',
version=__get_version(),
description='M2Crypto: A Python crypto and SSL toolkit',
long_description=long_description_text,
license='MIT',
platforms=['any'],
author='Ng Pheng Siong',
author_email='ngps at sandbox rulemaker net',
maintainer='Matej Cepl',
maintainer_email='mcepl@cepl.eu',
url='https://gitlab.com/m2crypto/m2crypto',
classifiers=[
'Development Status :: 5 - Production/Stable',
'Intended Audience :: Developers',
'License :: OSI Approved :: MIT License',
'Operating System :: OS Independent',
'Programming Language :: C',
'Programming Language :: Python',
'Topic :: Security :: Cryptography',
'Topic :: Software Development :: Libraries :: Python Modules',
'Programming Language :: Python :: 2',
'Programming Language :: Python :: 2.6',
'Programming Language :: Python :: 2.7',
],
keywords='cryptography openssl',
packages=setuptools.find_packages(exclude=['contrib', 'docs', 'tests']),
ext_modules=[m2crypto],
test_suite='tests.alltests.suite',
install_requires=requires_list,
cmdclass={
'build_ext': _M2CryptoBuildExt,
'build': _M2CryptoBuild,
'sdist': _M2CryptoSDist,
'clean': Clean
}
)
|