From 6402eeefc18c47b7dceea5e0dda0b8aeec6719bd Mon Sep 17 00:00:00 2001
From: Magnus Ahltorp <map@kth.se>
Date: Fri, 10 Apr 2015 15:42:03 +0200
Subject: Verify SSL certificates and hostnames in python code Closes
 CATLFISH-34

---
 tools/merge.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'tools/merge.py')

diff --git a/tools/merge.py b/tools/merge.py
index ce3bf0b..c9d73fb 100755
--- a/tools/merge.py
+++ b/tools/merge.py
@@ -20,7 +20,8 @@ import select
 import struct
 from certtools import build_merkle_tree, create_sth_signature, \
     check_sth_signature, get_eckey_from_file, timing_point, http_request, \
-    get_public_key_from_file, get_leaf_hash, decode_certificate_chain
+    get_public_key_from_file, get_leaf_hash, decode_certificate_chain, \
+    create_ssl_context
 
 parser = argparse.ArgumentParser(description="")
 parser.add_argument('--config', help="System configuration", required=True)
@@ -39,6 +40,7 @@ paths = localconfig["paths"]
 mergedb = paths["mergedb"]
 
 signingnodes = config["signingnodes"]
+create_ssl_context(cafile=paths["https_cacertfile"])
 
 chainsdir = mergedb + "/chains"
 logorderfile = mergedb + "/logorder"
-- 
cgit v1.1