コード例 #1
0
    def __init__(self,parameters):
        Thread.__init__(self)

        if VOMSProxyManager.logger==None:
            VOMSProxyManager.logger = mainLogger.get_instance(classid='VOMSProxyManager')
#        if not hasattr(parameters, 'vo') or parameters.vo=='':
#            raise Exception, "Missing vo parameter"

        self.cert, self.key = getUserKeyAndCert()
        if self.cert==None:
            VOMSProxyManager.logger.debug("Using external proxy certificate")
            self.usingProxy = True
            self.proxyFile = getProxyFile()
            if int(self)==0:
                raise Exception, "Proxy %s is expired" % self.proxyFile
            return
        
        VOMSProxyManager.logger.debug("Enabled voms proxy management")
        self.usingProxy = False
        if checkEncryptedKey(self.key):
            self.password = getpass.getpass('Password for user key: ')
        else:
            self.password = ''
        
        self.proxyFile = '/tmp/x509up_u%d_%d' % (os.getuid(), os.getpid())
            
        if hasattr(parameters, 'valid') and parameters.valid<>'':
            tokens = string.split(parameters.valid, ':')
            self.interval = int(tokens[0])*3600 + int(tokens[1])*60
        else:
            self.interval = 600

        self.parameters = parameters
        self.running = True
        self.cond = Condition()
        self.pCond = Condition()
        self.wCheck = False
        self.rCheck = 0
        
        self.renewProxy()
        os.environ['X509_USER_PROXY'] = self.proxyFile
    def __init__(self, address, parameters, jobTable=None, proxyMan=None):
        HTTPServer.__init__(self, address, SOAPRequestHandler)
        
        if os.environ.has_key("X509_CONSUMER_CERT") and \
            os.environ.has_key("X509_CONSUMER_KEY"):
            self.consumerCert = os.environ["X509_CONSUMER_CERT"]
            if not os.path.isfile(self.consumerCert):
                raise Exception, "Cannot find: " + self.consumerCert
            self.consumerKey = os.environ["X509_CONSUMER_KEY"]
            if not os.path.isfile(self.consumerKey):
                raise Exception, "Cannot find: " + self.consumerKey
            
            if testsuite_utils.checkEncryptedKey(self.consumerKey):
                import getpass
                self.password = getpass.getpass('Password for consumer key: ')
            else:
                self.password = ''
#        elif proxyMan<>None and proxyMan.key<>None:
#                self.consumerCert = proxyMan.cert
#                self.consumerKey = proxyMan.key
#                self.password = proxyMan.password
        else:
            self.consumerCert = None
            self.consumerKey = None
            self.password = None
        
        if self.consumerKey<>None:
            ConsumerServer.logger.debug("Enabled secure channel for notifications")
            self.ssl_context = SSL.Context(SSL.SSLv23_METHOD)
            buffer = self.readPEMFile(self.consumerKey)
            if self.password<>'':
                privateKey = crypto.load_privatekey(crypto.FILETYPE_PEM, 
                                                    buffer, self.password)
            else:
                privateKey = crypto.load_privatekey(crypto.FILETYPE_PEM, buffer)
            self.ssl_context.use_privatekey(privateKey)
            self.ssl_context.use_certificate_file(self.consumerCert)
            caStore = self.ssl_context.get_cert_store()
            caList = glob.glob(testsuite_utils.getCACertDir() + "/*.0")
            for item in caList:
                buffer = self.readPEMFile(item)
                caCert = crypto.load_certificate(crypto.FILETYPE_PEM, buffer)
                caStore.add_cert(caCert)
            
            tmpsock = socket.socket(self.address_family,self.socket_type)
            self.socket = TSafeConnection(self.ssl_context, tmpsock)
            self.socket.settimeout(30)
            self.server_bind()
            self.server_activate()
        else:
            self.ssl_context = None
        
        self.jobTable = jobTable
        self.parameters = parameters
        self.running = False
        self.servicePrefix = 'https://' + parameters.resourceURI[:string.find(parameters.resourceURI,'/') + 1]
        self.cemonURL = self.servicePrefix + "ce-monitor/services/CEMonitor"
        
        self.proxyFile = testsuite_utils.getProxyFile()
        self.subscrId = job_utils.subscribeToCREAMJobs(self.cemonURL, \
                                                       self.parameters, self.proxyFile, self.ssl_context<>None)