RIFFò  WEBPVP8X
      Ç  Ç  ALPH¡  ðÇÿÿz)ñÿÝÏçëœ†NaéØµ¨EÊ.ÖÌ±–²•nìî–ØÀãmwwwHÝ5óŠûçuÎœaëý~Âˆ˜ ~óÿoþÿÍÿÿeW|û×a®øVæƒÀâÕèí_„£:]ñŒ\Ëç i›V­‹Û¦6Ø¿Ã·i]ì65°b%Ã™±ymnûiåòòååU]^^¾|Å‡d±ŽöO®ZV¾¼¼êË—/_ñV_\Ñn’´áP\ŽQòªªu<î_€ñ°ªóÃ +Š£ý*mß®'°OßÊ$Œ‹¾C_ÕÀýóÃ}¥Q¥Ç¹QjEZú;\Q<=×)‰ô©ž?U(QÑcýÒø_ñ¸ªóó,V¤Þ›r^Ë·Û6U„éq¾(Lß¡÷Àþù9º½¾eÃÆÔ;R*7lLÝ°ùóqkcA×«À$OÑ`ÿl‡ö©š^®X¡lÚ©}j‡RŒ¢m*Ã;÷µ—^~ùåW^\ $%ùø…W^~ùå—_½«/ÿ"^¨H¡î¦@G5½ž£ÀKIJõ ¿å˜óAÞÁœ‚ ðÎà‚ p)ÎAx«’9Aà½+ séF+V¨d\º‘kÎ¹ÞUæåz®Î÷#°\ç¼‘×¹*˜§@çÓ¹Î“×æ<:Ÿ/¿gTÊt<…zOÞ/¯¹BúâÉï€æûž{ÑÅCö®Þ
ñÀïú»äÂ‹ïRÎF»³Fij÷zñ%§ïžÁ,Ÿyðö¿ð¢/9b÷ZàÜÎàÐª÷Y#/Y¶G]ðÕE±<üé¡EÛ$iów7uËcŽ’“_²I’âUŸ]ÙãÌ’Vœ
&}»Q’Ö½Xšƒ6£ß_±]’âµßÜÐ|õ9è>áÕ¥•»îûiÍqÿž–s$)ŠÂXÒšóÁ¥˜qè‡’…Q(IÛînDÀþR†ZßjÏ$ÅaKºŒtS.IQ…’´}ú.øê2º>¸E’¢ŠÊÊXÒ‚ø O÷Ÿ•„q¢DI…Ò`€Á)ŽâX’’8
¥‡qÜ­ŠDI¬»~Pe'R‡Ò<àiú¬Eq"II…Ò/½ñÕãØm™…¡$…QT©5ÀítžN‹T™Hq”(Ž¥(ÖH<à˜$…’”DaKŠ´iOx@‘$ÅR…Q¢ÜPwÁá¨ýŽÂX’â0ŒII¥VíŽ¯Ï]ÚF’âMvH‰*ô<ØNfØóª+5–"méŽÇs„IR¬Ü8R¢­ýavš’(‘¤$'‰u:ãNU$’’X’’D’*ôI]\õÌR…´ãÅÉƒ:¶ësÛ6%‰âð;™§L‘¤X¯¸÷‹K¡faŽúß+”¤Xúòå7VHÉ-i	÷ç‰¥¯_ú V"I¡Æy–I‰´äÕW~bI
5_=ý×iþ´½©#”(ÔÍ;›‘}''ÑŽ# öÞ¨X±V´!ÃùŠ$)Ö¼cê@—‹¾‘t)._¢í–Âé[•HŠôIÇ
%%Òµ­ ÑõŠ%Åšß«Œ=7¼÷.C­/Gz!Àv*Ï€J¤PÃyï¹O‘’Dƒñþ¥”X›þHjÝ“&lXž$ÖÅà`¶BI±æ·†®kKŠt;˜Á™JI‰TøÀ9A–Æú¶æv¦€QŠ$Å:›Þ—p¶b)Ô•ÐnµI‘f83ïÉµ|‘¾«O`Ã§,éƒKJ´±33OæE’BÝ„¯\ñFÞ;r~m´“ÓS¤_¿øú«¯¾þb±”3ŽR¢”3	È5x(ä	0<§*IYÜ&+’éZà¸9%ÒsV-Þ€m»uÌÑÇò¢¢X+šãv&ƒ¹yò'I’Tê!’’(9Ÿ’ž/Ô\,§¬ ÛRBÍÁ Fæy¿Wþ8ñÉ/,Sj¢X«ZìlþÙ*åÆš*N©Ü¿¨BG˜™ç/ø´y¾®_-ŽÎs+•›¤H±V6ßÙ˜›gûæ-›·lÞ²yóæÍ›¶ýÚ†§(Ña;M¸)ÏÃXÚÅyÞ/­Ï•Ä’´yÓæM•)-v.Œé)‘¦6ëÒ1µSçÎÝšpŠ’œHg¤˜÷ÞªkjJ¤7k`€ãæ<O9¬h†½ I¬5÷=®SÇÎÍR˜ì|cRBÍ¢pïè]©$e6ÞÈµj:I±¤D«Û€Ã¿“êV<EóôÜ®$Ö¯=I¿çÂ³¥)Öæ>8ïØõŒ!Íð4™§XR¬­À€ìAçîÕÔubI‘n38NJ$Å:™ xG)V¤ñd¼wÞûÅ;Ÿ£ôsE’býxPð­O{h­ô~<3JR¬…‡—@³³Þ‘t.¾Z<)””(šXJŽ/W,)Ò/M±ê8Aqi CçuJªòZQ®ª
žJR¬øËÿþÒjII¤ó)¡×VÅ’KŸþmÎ"I¡~nBÕN+$Ãþ±bI‰4ï¡¿"Å’j<žê8T‰"ÝàAEªÊëE¹&O”Ç¨õ®*%)RjÆI¥îÁ;îSEŽbåÆQkMw˜]•²|íñÆLUJR+7–¤J}VWŽ–‹'Š/ h:K‰rš§lÌy­(W¤HI¿4<¿_¦ŠXREQKŠwèÒœFŸ¨2–¤$Š¢XR¨U]á”(ß©ù:áŒo*Œ$)Ž¢(‘”ThÅx
©H¡îËƒãfU$‰ôìèsî\¤ÜX+[òjNW¥¤X›vÅ¥àé1O
£D©IIóÚàð´þ@
c¥'Q˜è	3îS¥¤
ÍÀg€âDŠ´°OÓç¥(J”šÄ¡´¨/žÂÆ*R¥fRÿ#UF‰ÒxCq¬òæ9=Öå¼YÇ.¿(Œ£H³0òz~7»BREQœHÚúÔn8ÀS÷ŽJIqÅq,)z°9IaIƒð`ÔýZaEú+ðd&®‘”ÄQÅ’*f·ÅS…SG¡&æÃÑöm)‰*Ã(ÖöSUQ¡ŸëbŽVåª¬Ð¸*áÙûGIz´1.zßóM¤ÔÕo\µ'8r=ôŸù­Ò+>¹kpÀèJIÛ&` Ž>ßJÒóÍRðÐþê÷·)5ùvÆÞà)Ü(}RÒ{qyðÔõr·<Ù—=~•t$-ë^Ë¦;Äpêõ:~ÊøÉ—ØÅŽtgÐ¤wÙ´ñ'Û½.àÀ`Ï¦]Ø4Œ'O™pDGªy¨±× I'L9åMÀU5jœtÙÐF:h°ïE“&Ÿ±xÚ™v 4ud'ŒbzR…›wè½‘ß¼£@ïÀ¹ÎH÷¤:ò{OÎUwä:
6O^0r\GqwÎU7ïs>pFUÍ{çœóÞÈï½óžwÎ›÷Î9ç½Q\óÎ;ªjÞ;ç=€óÎ“×;ïøÏÓù÷-ÏŒAË¶mþ½o[+ÇÑúëK–þ;¿dåáx€L×Ýwû7¿.–óŸ ¸ ›-ÉfK2Îè‚lIIÖ;Ÿ×á«ìÌ§‚w¾ÀLI6[’Í–dœ/¢Ãùâº ›Í–d³Ù¬w¾:ÎWÝ8o F~£@Gª‘×—RuOê€&Å4Ò­Ô(®±“Zm£êŽ½:cä:™6fä¹cÆLˆås”–M{ XŠçÈ¬ ÏŸ4ÆŽß´¾ã&yî˜1“b9Xš§÷Û±b8Ú;öü‹ÇN8¯V<Çïßi‰«Š§ó†3ò¾÷²¢û®¹ë88:¼÷ùÜ§æ?Ùç}à†/Ê˜¼÷¬{ýr&æœóÞ§½ëò¢û®¹ûp2Þ;Çn76ÆÌ{ï­Ý8ï½wÞ{ËévË7nøìŠÛ.k@àà¼÷†wÞ{|.×µÇ;ï}Ž÷Þ9Gýw¯ÅÞ`Àá¿Ô!ÕÀÀxúI åì>@–³Ì f€‘k€ƒá‡áTËþôK]òf9d]c¹^Ò,Ç‘k¤À;Éëpl8 Gß¥í Ì0ÒM Ý Ërò¢6Ðe\)œP†u~>™  GfÜ£wv‚?ÿì‚ñ»B¯Ñ§?ü÷ƒÙ}l–Úº¦3ô¶ÛôGŽÀ —åäEmÉRkÜÜ;»rÂ›kæ^]§þÅÞ0²,ÇÑüÖ9ãjRrI÷¡O\Ý,ûñÕdesfôÆ³Û½sF×ð£÷ºà±Ëëã8ð¯Ÿjô_Þö›ýÐ©`œüèÝ‡÷dX2ûÞ;gJmðœ´°¹®ÌygÆýû`d^ørÒã¿îÍ°_h¸á¾¢&wÎ¿ú®…»Ÿ´6Sãµo&?¹´çW>sÕôõ‡àÏ‰‹ZAÍ¿ŸúØòÞ˜¹bÒ±uæ~zí½åqØ²f˜£ã·OOüðAêþôóôI?=†ÿèJ®ŸwÅ}?õç%Mùê†’åî¶ìïpæšW-½‹þË;rÖê;®Yx=L]sãÍ/%e|q'ÍÿûÔïÿVØaó:ÀÌ9ŽFYðí'×ã¼%õà‘—2‡3bÀæîÐ>{ê|ÎYVæ¾ÂYÛºÃó6¬¼<ð6,n@¶-0{.ƒ–5Ã9þ>øn ?> }×wÁ§||%ôYÖ¦Ìåó» V»:ïƒ#Ö¶È.}7wÛcuËÒÅB¿ÝZ­?éXÞ¾Šõ óÂ:´°üõ1ÌpÐvð]åoÚ#s©IÙ’LÙ|,9ÎžÏ”OËÀYóyäQJ9¹œ¡ßÖôL
WÈƒÿE)Ç¯¬qøòŽPcÔ_®ÿáÁOÉ—ïÜ4ýæ­eü4º”÷(èüõ·M¿ñý·Û”@¨·èhè·¬c5Éðó®k÷YÓ	Wë§²Ã—6€†Oã½k`ß{ïxà×zyµ‚Aó;ÀŒÇ0h±þ¨YR“S—•”- áâÃ¡l7|ä|ÆsÖ<{„RNZá‡|[f=Y@k˜ó8µ8neÍAK:Rãåù“Nïá<5ž;läÈ?7­ñÝ¹ÐuÅ^]qÁÅ#Göè¶v %žzÃ€¥íú¬ÎùqD×µú­éˆ/ýñ¬#—44/8w¯§lË_‡]1?Ï‰ó[Â!å­àý‡0Ç.eY Æª£FÌî|³¢NùQpË/œ¸¶9”rÚ<ÆþÜõ!#¾¬ÓŸÈ3x~+5ßÁ-Ÿqøê¦´ÝÑž~„Ã7ÃÁ÷’[úåè²4ß—ÃŸ–×¨»`,P»Þüã¡ßÂÎ¥«NƒŽ{ÿaE‹Æ+N„Îzìº¡/Ôq¼u-=û,®“P¶¾54™÷Ø	wjNNã>ŸxúˆÏÞªQçË½zÕœ·<ËóßŸ2uí‚š¼ðù}Ùý¤µ®Ñ7¯wÃºÃµ°<ø
8m}hüÅÇ_»þ(šÿ0÷°:o½Æ­šË‘››ã=WO|Õ}léÅÐmkÏ<ßß„çáŸÎòæÎ^7íÄgo¬±öØwCw&¯}ÚÿÅÀ-˜´ê‚²o‚K†œÿÊŽøòvÎÞ0þ¢Ï6§8zÝÓ ÏžOxÑù£0uÎ{îõ×'×‡&Óß{vèwk@«û>¾ù¤›j^÷Þ+Cès{	­g¾ûô>pÐ-cèàèyo<-¦¿ûìþxv›óX½æýtüðQt»·>†c¯Çßzú´Læ¶¡é¬v¸®<	O0åÍ×oìG¿þöÍÝ={Ã®Ó[ÂŸ_{{j)íîkg¾ùödŒÿìÙA_œÅe§`CÞ{òÈëRòéæÈu Fº#¿#×Œb:rŒT#ÝQ|#ÕŒÂTéÁï]×õŒÂÍ œáå`ÞaÞÀ9œ3pçÌcœÃy0Ìò˜8‡yÀ9pÎœ3ÌRpç3Àò™æÍ¼ox‡å˜7¼ÞÌ;xâû;o]ô8Ã¼™³<¤`FfFª€€)`C>RÀŒTŒÜ<˜`TT3rÍ  0ƒ4ÌÀh~Ùs/\V#×ŒþÝ6Rÿ]ñ›ÿóÿoþÿ¿. VP8 „  °9 *È È >Q(‘F#¢¡¡$Øèp
	MÜi%’•¼ÒkÃþÁæ½U~£øƒ‹žŽòïäö¿n>óÿ¹{ üûþÜô£ýï÷¾²^`?•ÿeÿÁþ+Ý;üíw¹@çŸã¿û{Qÿ·öþµÿØù'÷¿VŸõ_·?¶ßµ_ÿÏ?¼øö ô ô ìaþÉÛþ=;Šìáý|2‡uî'©ŠJ“¿Ú9å³Â¨Ÿ–_¯ÞbÿÙÅÞ±»Ö7zÆïXÝë½cw¬nõÞ±»Ö!²”\59h'ŠBØÊá·÷¾á|q®ðY:Lš!FÞµÁ“!‘È%Âtà^€/´'£ú}«÷f“´_©¡íX˜Ô…]ñ=óÁS~<€‚¦´g1yb¯í^Féìl€W¤RÑS”õgŸ $ÕËx€’ae	eŸæNŠ—åB.ÙÜÚÏ¶…œò,ûJÓ×ˆÁ„ùµ}u7GË|›ºCôÑÎÏìhf=Vçç¼ð•Ç(¤V½²H4rûg3• [<¡‰@S˜9’Ð´RüH!]èºÐŠÈ…7Q%ÀFn­Ê ëXÅtê¾!Rr6*{äNÝ¥	_a+ì%}„¯°•ö¾ÂWØJû	_a+å  þÿ³´  ‰®¼^&Ö”9Åƒ&t*AwWDD'Î¦%×CÐÓÙc?ùL?¦a¹/[l.ü ÿª(y3Œ›]qhn•éÿ s«ky;A	âŸ£©¯XäÂ¥U§+Á¡¯Þuûø«èó×¡šœÄ†îÿmñã<á®¨”Zã~!¾EùpóÑ«	ýÜ—sbKt¢î.ÃF9˜ZW>æÇ„aËP÷&¹\îq`fÒv—;	—D-žéÈÄûd®ýYt©w%‹BGÍPoÔ}7_¼$|½å¡ëóF¶Œ‘q%ø?„¦Î)t^¿n›5÷+ÒWCð«ªÐXF|CNêäÃO.×÷'{½|Íœ½[žxx˜ÌkG˜DVÓ0í·YÿvBœj<«OàDš¸L$ÈŒYoåHÛÀ³+ûWBoÞÖGƒ»ëfÇ›l¾-Äw5‘éâÐ®UÁ“@¥lÈ¡/;úJPÝôìV 5r£ûfj9¶iéìÌ½o·ØKÊÖ¶ÚKãgÍÜ<ÏIøæ4”×g=¦ Š$é ©ÝµÛ{¨nâß\¹À¡>â€x¹]rªw÷¢Ë±Í|§¯†åöÐ‘ü™Ý€’È7gZ  #‚¹äø6oÖ€Ûˆ/¡ù>ò®UhÜÛ8\d­²¹„ö<•ß­í¶§Ë.‚˜gS±#H+`#Õ’UFŠñß4/7Û³¤´7\‡³:Ræ8f!æ¡äÛÆ*ÌP*
OPü0’ñšL¯Hw°Í¢ßçÂh>q2}Œ+vO “FøÍõ¸ÿxrtŸ×3,â.óÛ|Nˆ¥8œPrˆ£¨ƒK­i#’Í‘SG}%¦+$æ¾‰bËQÈŸã2ÿF_q¼U¶ÍÊ©G’|uÁËZûƒe7~LåÒáÒìK¡».ýÿù®DUž¼ð‘³N'ˆØ..¿M}Ò‘GÿúNö‡«Ý³¸ãiÜþwksàDxåcþÌeß{/¤pk	7«Þƒí	­P*¤P•–ÁÇâ1A ô¡Ö¨Â.I=<b›i¨¨A8)‡íyÙ±×g^NÀ8Å3Ë…g \=ÊØò&Óý¾5åùåNe…þ$Csú÷ÍZºÍ„t¨k™»½¶	jc‡*s›æ%N–/Lº©°‘nÚ\
f£õÇà¯û=AU{Õ·å Õ¥qŸªî¿Û<»ÍA5$ßâ¼X‡}¼§¼ŠN€„7&šì…6ü¬½<!V3ãÂ¸ÿ„ào°—AøbÅúH•­JÍøT^úd×Tñì%á¾„“åî¿âE¤×xQéæk%0§nRÿØ°ÂAÀŒ!“ÚuüãÎ5Á(„¬d6Öð{¤™ÎÌœàÆ¹øHb·#-Ð©Ï
o$Õ¨oW'—±ñþiýZ¶WpÜ£ßÇå0À°Ùõçü¾öÆÑ“Ÿˆ_Yd05»†´&æm_}q‹X@yCw)H÷†?ÊªßK4¡bé¤,ÊJo;Kš”<ËÁ½ºÌðoE‹i†Êëk)/çú6š&b{¬2|…+ø5ö­7æÇ´>Í À#PŠLuVŸ¥1-+$™$•-ƒ?4
At¹ŸÐÁ1ùjS>å²§s}§?«r ÎUµ?Kö>7<D[{u»¸ÆyÚýa©ç-fâÃüGÓ·ámwäÆçPõ >N8ðÙd7Ç=ÏÎI%_B.)tN˜0VUö­à·Ó‡aP'\êˆ±qBŸï˜C!=r°‹_È]ëdô¨a¿‹æ_~ˆ¶¥óÒUu¬4ˆxP²$Äwr)¸Ç®ô&vP-©ÆÔô"•¿A"ËÜzI–þÝÊ¡ŸùÙ¡ÿZ´e<‘ £lþyØ”víÑ¶RWD%6µ‚*¾µvŠú}Uê“ã†^Øë|r5gýúÜ$ÕUÓtÃæœ¹’ÑZdëÖÙ©9Ó¹™¿vÜ’¿-m¡"ôøo¤6íNaZ?ÒÂ¯0ž;¯_„#« $6ÍúB»$n­žÛEyô¿ÊíñCÎ“N‹Ñ}²ÁQi~Í5ÓÒëzÕ“}[foÄQ6Pedñ „z0âé±«¿ýˆ}™’g,ãnÃŸ&aM>œhíj8î9S÷Ío1ãòç¬üMÆxëx]Qe?	F¤Žb–ÑýPB28†eJÈZ•ÓÃÛ^s† jF´¿Yk~4WUj1fx[ÜH“8ª¤™Î £k…ç*­1átÆMÒêæ¥­Ò‡¾¶Ù%Åbo›·¬ZÞl]º;÷’MS®š“ò‹‹Ì0e«ŠBk2LŠÿþù2oÂŠwSÿ@zŽMgÊ”KïÇŠéÖ7=ø<,”ìÌ†UÑd´pg¿œè•\fI9×Z„EE7PW $™Z6â…þ¨¶(ÃÎ0{†kç	ýf‚/@‡â—\¥½7×q'_YgÏÁÐ$Q·±˜II” ë1žf¾ã­jõž»É×¿\Õj¿XìÕì²ñdxiù0}a$¨ßXWæIÑÛIaõÔ¢p¦ß‘°H“I"àHÓM6"—¸d»o‰JoUvíô®síB¢š4
Â)†ZlEá“c•ËØr=Ý¢ì$ï/:ÂyßX†4owôQŽÊ–Þ#ò„
a²xÓ¦7½™?$Wï:+§Gmµ)8µ èûÌÉæ¤Ê0BºÍjÿàÛÅ&"ïr¨_Úp*Õ›ìrá£¤F>>ºïe'“à¶q|H‰‹~•Á2®0÷^pSÈx›ÑÓÖñ=Å––_(üwdì¶õÃªÇá0oBG™]‘¢$µ-#÷|YzWrFëŸ< çV?m^Ð¸/J:òÄ5.7c›Å'’~AL®^ˆ[–'ô¡èåuzíòÚÑÀ(C¨eýIý›Ô}¡©<ÐkM2GP$ðÞÊÈÿ·°! ÊdD;úTFr0¢tèv»Ò~™ÚA„ö¿ö:ÚE[hë#Úƒ	Ã‹èN¨ôß–êsÎ…s5úç%·¬¼ÉyüÆV¡*Q1¹Ó;öC¡Úð’d‡2¦GÄø©Bk¥BÊzô=YAº+ºë×Fë}
WÕÖj2mžæ€b_½â+Ÿ*¶˜šúuh&Ç2^Óçè¼°Ú¼Ð]»œcòè,Î	hüŠK“â˜m8ë¤êj)	Á}÷(iwqVËÆqCÜ1[,ƒB;-IwÐ{‘´r}FS.ä~¹«BKo$‚ª³	3"Ù½ç5íŒÐgÝ© ý!§DšáŸ	ò—ôÅþ‘R	{+Kë¡öXµ	B (òÑa)þ$õz_CX	¡G…hšt”v”Èã>Ëç’ÿMËØîK!×x.ŠË|u²>\Õ•>sÌb–†TÅKB(O£ŠÁG¹›sÿ{h+ý¿ïg©Aà£tW×&¾ß§?‘6·±<«1Ê‹ƒyEÛèŠÙ 2Šq¶|5²÷?À­º*•£¬“¦‹­Ÿ_ÚóFÓ’Ú»–ÕwÈ
ø
åÄ™S:Ì½b¤%¿“‚h,Ñr„Ç*ÑùÓA»Ï&›0¿Ü;  @2j+²Š¿rþtÉe¯Î       EXIFº   Exif  II*                V       ^   (              i‡    f       H      H            0210‘           0100     ÿÿ       È        È       XMP Û   <?xpacket begin="" id="W5M0MpCehiHzreSzNTczkc9d"?>
<x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Go XMP SDK 1.0"><rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"></rdf:RDF></x:xmpmeta>
<?xpacket end="w"?> #
# Higher-level SSL objects used by rpclib
#
# Copyright (c) 2002--2017 Red Hat, Inc.
#
# Author: Mihai Ibanescu <misa@redhat.com>
#
# In addition, as a special exception, the copyright holders give
# permission to link the code of portions of this program with the
# OpenSSL library under certain conditions as described in each
# individual source file, and distribute linked combinations
# including the two.
# You must obey the GNU General Public License in all respects
# for all of the code used other than OpenSSL.  If you modify
# file(s) with this exception, you may extend this exception to your
# version of the file(s), but you are not obligated to do so.  If you
# do not wish to do so, delete this exception statement from your
# version.  If you delete this exception statement from all source
# files in the program, then also delete it here.


"""
rhn.SSL builds an abstraction on top of the objects provided by pyOpenSSL
"""

from OpenSSL import SSL
# SSL.crypto is provided to other modules
from OpenSSL import crypto
import os

import socket
import select
from rhn.i18n import bstr
import sys

DEFAULT_TIMEOUT = 120

if hasattr(socket, 'sslerror'):
    socket_error = socket.sslerror
else:
    from ssl import socket_error

class SSLSocket:
    """
    Class that wraps a pyOpenSSL Connection object, adding more methods
    """
    def __init__(self, socket, trusted_certs=None):
        # SSL.Context object
        self._ctx = None
        # SSL.Connection object
        self._connection = None
        self._sock = socket
        self._trusted_certs = []
        # convert None to empty list
        trusted_certs = trusted_certs or []
        for f in trusted_certs:
            self.add_trusted_cert(f)
        # SSL method to use
        self._ssl_method = SSL.SSLv23_METHOD
        # Flags to pass to the SSL layer
        self._ssl_verify_flags = SSL.VERIFY_PEER

        # Buffer size for reads
        self._buffer_size = 8192

        # Position, for tell()
        self._pos = 0
        # Buffer
        self._buffer = bstr("")

        # Flag to show if makefile() was called
        self._makefile_called = 0

        self._closed = None

    def add_trusted_cert(self, file):
        """
        Adds a trusted certificate to the certificate store of the SSL context
        object.
        """
        if not os.access(file, os.R_OK):
            raise ValueError("Unable to read certificate file %s" % file)
        self._trusted_certs.append(file.encode("utf-8"))

    def init_ssl(self):
        """
        Initializes the SSL connection.
        """
        self._check_closed()
        # Get a context
        self._ctx = SSL.Context(self._ssl_method)
        self._ctx.set_options(SSL.OP_NO_SSLv2)
        self._ctx.set_options(SSL.OP_NO_SSLv3)
        if self._trusted_certs:
            # We have been supplied with trusted CA certs
            for f in self._trusted_certs:
                self._ctx.load_verify_locations(f)
        else:
            # Reset the verify flags
            self._ssl_verify_flags = 0

        self._ctx.set_verify(self._ssl_verify_flags, ssl_verify_callback)
        if hasattr(SSL, "OP_DONT_INSERT_EMPTY_FRAGMENTS"):
            # Certain SSL implementations break when empty fragments are
            # initially sent (even if sending them is compliant to
            # SSL 3.0 and TLS 1.0 specs). Play it safe and disable this
            # feature (openssl 0.9.6e and later)
            self._ctx.set_options(SSL.OP_DONT_INSERT_EMPTY_FRAGMENTS)

        # Init the connection
        self._connection = SSL.Connection(self._ctx, self._sock)
        # Place the connection in client mode
        self._connection.set_connect_state()

    def makefile(self, mode, bufsize=None):
        """
        Returns self, since we are a file-like object already
        """
        if bufsize:
            self._buffer_size = bufsize

        # Increment the counter with the number of times we've called makefile
        # - we don't want close to actually close things until all the objects
        # that originally called makefile() are gone
        self._makefile_called = self._makefile_called + 1
        return self

    def close(self):
        """
        Closes the SSL connection
        """
        # XXX Normally sock.makefile does a dup() on the socket file
        # descriptor; httplib relies on this, but there is no dup for an ssl
        # connection; so we have to count how may times makefile() was called
        if self._closed:
            # Nothing to do
            return
        if not self._makefile_called:
            self._really_close()
            return
        self._makefile_called = self._makefile_called - 1

    # BZ 1464157 - Python 3 http attempts to call this method during close,
    # at least add it empty
    def flush(self):
        pass

    def _really_close(self):
        # No connection was established
        if self._connection is None:
            return
        get_state = None
        try:
            get_state = getattr(self._connection, 'state_string')
        except AttributeError:
            get_state = getattr(self._connection, 'get_state_string')

        if get_state is not None:
            # for Python 3
            if sys.version_info[0] == 3:
                if get_state() == b'SSL negotiation finished successfully':
                    self._connection.shutdown()
            # for Python 2
            else:
                if get_state() == 'SSL negotiation finished successfully':
                    self._connection.shutdown()

        self._connection.close()
        self._closed = 1

    def _check_closed(self):
        if self._closed:
            raise ValueError("I/O operation on closed file")

    def __getattr__(self, name):
        if hasattr(self._connection, name):
            return getattr(self._connection, name)
        raise AttributeError(name)

    # File methods
    def isatty(self):
        """
        Returns false always.
        """
        return 0

    def tell(self):
        return self._pos

    def seek(self, pos, mode=0):
        raise NotImplementedError("seek")

    def read(self, amt=None):
        """
        Reads up to amt bytes from the SSL connection.
        """
        self._check_closed()
        # Initially, the buffer size is the default buffer size.
        # Unfortunately, pending() does not return meaningful data until
        # recv() is called, so we only adjust the buffer size after the
        # first read
        buffer_size = self._buffer_size

        buffer_length = len(self._buffer)
        # Read only the specified amount of data
        while buffer_length < amt or amt is None:
            # if amt is None (read till the end), fills in self._buffer
            if amt is not None:
                buffer_size = min(amt - buffer_length, buffer_size)

            try:
                data = self._connection.recv(buffer_size)

                self._buffer = self._buffer + data
                buffer_length = len(self._buffer)

                # More bytes to read?
                pending = self._connection.pending()
                if pending == 0:
                    # we're done here
                    break
            except SSL.ZeroReturnError:
                # Nothing more to be read
                break
            except SSL.SysCallError:
                e = sys.exc_info()[1]
                print("SSL exception", e.args)
                break
            except SSL.WantWriteError:
                self._poll(select.POLLOUT, 'read')
            except SSL.WantReadError:
                self._poll(select.POLLIN, 'read')

        if amt:
            ret = self._buffer[:amt]
            self._buffer = self._buffer[amt:]
        else:
            ret = self._buffer
            self._buffer = bstr("")

        self._pos = self._pos + len(ret)
        return ret

    def readinto(self, buf):
        buf[:] = self.read(len(buf))
        return len(buf)

    def _poll(self, filter_type, caller_name):
        poller = select.poll()
        poller.register(self._sock, filter_type)
        res = poller.poll(self._sock.gettimeout() * 1000)
        if res == []:
            raise TimeoutException("Connection timed out on %s" % caller_name)

    def write(self, data):
        """
        Writes to the SSL connection.
        """
        self._check_closed()

        # XXX Should use sendall
        # sent = self._connection.sendall(data)
        origlen = len(data)
        while True:
            try:
                sent = self._connection.send(data)
                if sent == len(data):
                    break
                data = data[sent:]
            except SSL.WantWriteError:
                self._poll(select.POLLOUT, 'write')
            except SSL.WantReadError:
                self._poll(select.POLLIN, 'write')

        return origlen

    def recv(self, amt):
        return self.read(amt)

    send = write

    sendall = write

    def readline(self, length=None):
        """
        Reads a single line (up to `length' characters long) from the SSL
        connection.
        """
        self._check_closed()
        while True:
            # charcount contains the number of chars to be outputted (or None
            # if none to be outputted at this time)
            charcount = None
            i = self._buffer.find(bstr('\n'))
            if i >= 0:
                # Go one char past newline
                charcount = i + 1
            elif length and len(self._buffer) >= length:
                charcount = length

            if charcount is not None:
                ret = self._buffer[:charcount]
                self._buffer = self._buffer[charcount:]
                self._pos = self._pos + len(ret)
                return ret

            # Determine the number of chars to be read next
            bufsize = self._buffer_size
            if length:
                # we know length > len(self._buffer)
                bufsize = min(self._buffer_size, length - len(self._buffer))

            try:
                data = self._connection.recv(bufsize)
                self._buffer = self._buffer + data
            except SSL.ZeroReturnError:
                # Nothing more to be read
                break
            except SSL.WantWriteError:
                self._poll(select.POLLOUT, 'readline')
            except SSL.WantReadError:
                self._poll(select.POLLIN, 'readline')

        # We got here if we're done reading, so return everything
        ret = self._buffer
        self._buffer = ""
        self._pos = self._pos + len(ret)
        return ret


def ssl_verify_callback(conn, cert, errnum, depth, ok):
    """
    Verify callback, which will be called for each certificate in the
    certificate chain.
    """
    # Nothing by default
    return ok

class TimeoutException(SSL.Error, socket.timeout):

    def __init__(self, *args):
        self.args = args

    def __str__(self):
        return "Timeout Exception"