Verify SSL certificates and hostnames in python code

Closes CATLFISH-34
author: Magnus Ahltorp <map@kth.se> 2015-04-10 15:42:03 +0200
committer: Magnus Ahltorp <map@kth.se> 2015-04-10 15:44:26 +0200
commit: 6402eeefc18c47b7dceea5e0dda0b8aeec6719bd (patch)
tree: 56b0e91fabdc01c17fe37a44f77b707060171a30 /tools/verifysct.py
parent: 263862c06abd93d39d98fd40007f80b5fe57f030 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/tools/verifysct.py b/tools/verifysct.py
index 4b8e38a..71ea4e9 100755
--- a/tools/verifysct.py
+++ b/tools/verifysct.py
@@ -23,8 +23,11 @@ parser.add_argument('baseurl', help="Base URL for CT server")
 parser.add_argument('--sct-file', default=None, metavar="dir", help='SCT:s to verify')
 parser.add_argument('--parallel', type=int, default=16, metavar="n", help="Number of parallel verifications")
 parser.add_argument('--publickey', default=None, metavar="file", help='Public key for the CT log')
+parser.add_argument('--cafile', default=None, metavar="file", help='File containing the CA cert')
 args = parser.parse_args()
 
+create_ssl_context(cafile=args.cafile)
+
 from multiprocessing import Pool
 
 baseurl = args.baseurl
author	Magnus Ahltorp <map@kth.se>	2015-04-10 15:42:03 +0200
committer	Magnus Ahltorp <map@kth.se>	2015-04-10 15:44:26 +0200
commit	6402eeefc18c47b7dceea5e0dda0b8aeec6719bd (patch)
tree	56b0e91fabdc01c17fe37a44f77b707060171a30 /tools/verifysct.py
parent	263862c06abd93d39d98fd40007f80b5fe57f030 (diff)