Python CertUtil示例

编程语言: Python

命名空间/包名称: gae_proxy.local.cert_util

类/类型: CertUtil

hotexamples.com的示例: 3

Python CertUtil - 已找到3个示例。这些是从开源项目中提取的最受好评的gae_proxy.local.cert_util.CertUtil现实Python示例。您可以评价示例，以帮助我们提高示例质量。

常用方法

显示隐藏

get_cert(2)

init_ca(1)

示例#1

显示文件

文件： proxy_handler.py 项目： mymatrix2002/XX-Net

    def do_CONNECT(self):
        """deploy fake cert to client"""
        host, _, port = self.path.rpartition(b':')
        port = int(port)
        if port not in (80, 443):
            xlog.warn("CONNECT %s port:%d not support", host, port)
            return

        certfile = CertUtil.get_cert(host)
        self.wfile.write(b'HTTP/1.1 200 Connection Established\r\n\r\n')
        self.wfile.flush()
        #self.conntunnel = True
 
        leadbyte = self.connection.recv(1, socket.MSG_PEEK)
        if leadbyte in (b'\x80', b'\x16'):
            try:
                ssl_sock = ssl.wrap_socket(self.connection, keyfile=CertUtil.cert_keyfile, certfile=certfile, server_side=True)
            except ssl.SSLError as e:
                xlog.info('ssl error: %s, create full domain cert for host:%s', e, host)
                certfile = CertUtil.get_cert(host, full_name=True)
                return
            except Exception as e:
                if e.args[0] not in (errno.ECONNABORTED, errno.ECONNRESET):
                    xlog.exception('ssl.wrap_socket(self.connection=%r) failed: %s path:%s, errno:%s', self.connection, e, self.path, e.args[0])
                return

            self.__realwfile = self.wfile
            self.__realrfile = self.rfile
            self.connection = ssl_sock
            self.rfile = self.connection.makefile('rb', self.bufsize)
            self.wfile = self.connection.makefile('wb', 0)

        self.close_connection = 0

示例#2

显示文件

文件： proxy.py 项目： xlwmin/XX-Net-mini

def main(args):
    global ready, proxy_server
    no_mess_system = args.get("no_mess_system", 0)
    allow_remote = args.get("allow_remote", 0)

    log_info()

    CertUtil.init_ca(no_mess_system)

    listen_ips = front.config.listen_ip
    if isinstance(listen_ips, str):
        listen_ips = [listen_ips]
    else:
        listen_ips = list(listen_ips)

    if allow_remote and ("0.0.0.0" not in listen_ips
                         or "::" not in listen_ips):
        listen_ips = [
            ("0.0.0.0"),
        ]
    addresses = [(listen_ip, front.config.listen_port)
                 for listen_ip in listen_ips]

    front.start()
    direct_front.start()

    proxy_server = simple_http_server.HTTPServer(addresses,
                                                 proxy_handler.GAEProxyHandler,
                                                 logger=xlog)

    ready = True  # checked by launcher.module_init

    proxy_server.serve_forever()

示例#3

显示文件

def wrap_ssl(sock, host, port, client_address):
    certfile = CertUtil.get_cert(host or b'www.google.com')
    ssl_sock = ssl.wrap_socket(sock,
                               keyfile=CertUtil.cert_keyfile,
                               certfile=certfile,
                               server_side=True)
    return ssl_sock