Verify SSL certificates and hostnames in python code

Closes CATLFISH-34
author: Magnus Ahltorp <map@kth.se> 2015-04-10 15:42:03 +0200
committer: Magnus Ahltorp <map@kth.se> 2015-04-10 15:44:26 +0200
commit: 6402eeefc18c47b7dceea5e0dda0b8aeec6719bd (patch)
tree: 56b0e91fabdc01c17fe37a44f77b707060171a30 /tools/fetchallcerts.py
parent: 263862c06abd93d39d98fd40007f80b5fe57f030 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/tools/fetchallcerts.py b/tools/fetchallcerts.py
index 395fe69..943759e 100755
--- a/tools/fetchallcerts.py
+++ b/tools/fetchallcerts.py
@@ -23,8 +23,11 @@ parser.add_argument('baseurl', help="Base URL for CT server")
 parser.add_argument('--store', default=None, metavar="dir", help='Store certificates in directory dir')
 parser.add_argument('--write-sth', action='store_true', help='Write STH')
 parser.add_argument('--publickey', default=None, metavar="file", help='Public key for the CT log')
+parser.add_argument('--cafile', default=None, metavar="file", help='File containing the CA cert')
 args = parser.parse_args()
 
+create_ssl_context(cafile=args.cafile)
+
 def get_entries_wrapper(baseurl, start, end):
     fetched_entries = 0
     while start + fetched_entries < (end + 1):
author	Magnus Ahltorp <map@kth.se>	2015-04-10 15:42:03 +0200
committer	Magnus Ahltorp <map@kth.se>	2015-04-10 15:44:26 +0200
commit	6402eeefc18c47b7dceea5e0dda0b8aeec6719bd (patch)
tree	56b0e91fabdc01c17fe37a44f77b707060171a30 /tools/fetchallcerts.py
parent	263862c06abd93d39d98fd40007f80b5fe57f030 (diff)