def get_request(self):
conn, addr = self.socket.accept()
try:
sconn = ssl_wrap_socket(conn, **self.ssl_wrap_args)
sconn.peercert = sconn.getpeercert()
return (sconn, addr)
except:
logger.exception("SSL setup failed")
return (None, None)
def _get_socket(self, host, port, timeout):
if self.debuglevel > 0:
print >> sys.stderr, 'connect:', (host, port)
new_socket = socket.create_connection((host, port), timeout)
new_socket = ssl.ssl_wrap_socket(
new_socket,
self.keyfile,
self.certfile,
**self._sslkwargs
)
self.file = smtplib.SSLFakeFile(new_socket)
return new_socket
def __init__(self, httpServerConfig, router):
HTTPRequestHandler.router = router
self.httpd = HTTPServer(
(httpServerConfig.hostname, httpServerConfig.port),
HTTPRequestHandler)
if (httpServerConfig.tls is not False):
self.httpd.socket = ssl_wrap_socket(self.httpd.socket,
keyfile="path/to/key.pem",
certfile='path/to/cert.pem',
server_side=True)
def _make_ssl_socket():
socket = ssl_wrap_socket(
make_socket(),
cert_reqs=CERT_REQUIRED,
ssl_version=CHANNEL_ENCRYPTION_PROTOCOL,
ca_certs=_CA_CERTIFICATES_FILE_PATH,
)
socket.connect((_API_URL, _API_TLS_PORT))
yield socket
socket.shutdown(SHUT_RDWR)
socket.close()
def _make_ssl_socket():
socket = ssl_wrap_socket(
make_socket(),
cert_reqs=CERT_REQUIRED,
ssl_version=CHANNEL_ENCRYPTION_PROTOCOL,
ca_certs=_CA_CERTIFICATES_FILE_PATH,
)
socket.connect((_API_URL, _API_TLS_PORT))
yield socket
socket.shutdown(SHUT_RDWR)
socket.close()
def connect(self):
sock = socket.create_connection((self.host, self.port), self.timeout)
if self._tunnel_host:
self.sock = sock
self._tunnel()
self.sock = ssl_wrap_socket(sock, **self.ssl_wrap_args)
