setstatus.py: add check if certs readable
This commit is contained in:
parent
eb000bff46
commit
cb05cb787a
1 changed files with 20 additions and 10 deletions
30
setstatus.py
30
setstatus.py
|
@ -12,11 +12,12 @@ import argparse
|
||||||
import socket
|
import socket
|
||||||
import ssl
|
import ssl
|
||||||
import sys
|
import sys
|
||||||
|
import os
|
||||||
|
|
||||||
|
|
||||||
def main():
|
def main():
|
||||||
parser = argparse.ArgumentParser(description="Set door status of
|
description = "Set door status of Krautspace"
|
||||||
Krautspace.")
|
parser = argparse.ArgumentParser(description=description)
|
||||||
parser.add_argument("status_code", help="status to set", type=int,
|
parser.add_argument("status_code", help="status to set", type=int,
|
||||||
choices=(0, 1))
|
choices=(0, 1))
|
||||||
args = parser.parse_args()
|
args = parser.parse_args()
|
||||||
|
@ -31,12 +32,21 @@ def main():
|
||||||
STATUS = None
|
STATUS = None
|
||||||
RESPONSE = None
|
RESPONSE = None
|
||||||
|
|
||||||
context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH,
|
print('Check certs')
|
||||||
|
for certfile in (CLIENT_CERT, CLIENT_KEY, SERVER_CERT):
|
||||||
|
if os.access(certfile, os.R_OK) is False:
|
||||||
|
print('Failed to read cert: {}'.format(certfile))
|
||||||
|
sys.exit(1)
|
||||||
|
try:
|
||||||
|
context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH,
|
||||||
cafile=SERVER_CERT)
|
cafile=SERVER_CERT)
|
||||||
context.set_ciphers('EECDH+AESGCM') # only ciphers for tls 1.2 and 1.3
|
context.load_cert_chain(certfile=CLIENT_CERT, keyfile=CLIENT_KEY)
|
||||||
context.options |= getattr(ssl._ssl, 'OP_NO_COMPRESSION', 0)
|
context.set_ciphers('EECDH+AESGCM') # only ciphers for tls 1.2 and 1.3
|
||||||
context.load_cert_chain(certfile=CLIENT_CERT, keyfile=CLIENT_KEY)
|
context.options |= getattr(ssl._ssl, 'OP_NO_COMPRESSION', 0)
|
||||||
print('SSL context created')
|
print('SSL context created')
|
||||||
|
except Exception as e:
|
||||||
|
print('Failed to create ssl context: {}'.format(e))
|
||||||
|
sys.exit(2)
|
||||||
|
|
||||||
with socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0) as mySocket:
|
with socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0) as mySocket:
|
||||||
print('Socket created')
|
print('Socket created')
|
||||||
|
@ -54,14 +64,14 @@ def main():
|
||||||
print('Connection timeout')
|
print('Connection timeout')
|
||||||
except Exception as e:
|
except Exception as e:
|
||||||
print('Connection failed: {}'.format(e))
|
print('Connection failed: {}'.format(e))
|
||||||
sys.exit(1)
|
sys.exit(3)
|
||||||
|
|
||||||
try:
|
try:
|
||||||
print('Send new status: {}'.format(STATUS))
|
print('Send new status: {}'.format(STATUS))
|
||||||
conn.send(STATUS)
|
conn.send(STATUS)
|
||||||
except Exception as e:
|
except Exception as e:
|
||||||
print('Error: {}'.format(e))
|
print('Error: {}'.format(e))
|
||||||
sys.exit(2)
|
sys.exit(4)
|
||||||
|
|
||||||
try:
|
try:
|
||||||
RESPONSE = conn.recv(1)
|
RESPONSE = conn.recv(1)
|
||||||
|
@ -73,7 +83,7 @@ def main():
|
||||||
print('Disconnect from server')
|
print('Disconnect from server')
|
||||||
except Exception as e:
|
except Exception as e:
|
||||||
print('Error: {}'.format(e))
|
print('Error: {}'.format(e))
|
||||||
sys.exit(3)
|
sys.exit(5)
|
||||||
|
|
||||||
|
|
||||||
if __name__ == '__main__':
|
if __name__ == '__main__':
|
||||||
|
|
Loading…
Reference in a new issue