Package rpki.https


Classes

class  Checker
class  httpsClient
class  httpsServer
class  requestHandler

Functions

def build_https_ta_cache
def client
def server
def tlslite_certChain

Variables

 debug_tls_certs = False
 disable_tls_certificate_validation_exceptions = False
string rpki_content_type = "application/x-rpki"


Detailed Description

HTTPS utilities, both client and server.

At the moment this only knows how to use the PEM certs in my
subversion repository; generalizing it would not be hard, but the more
general version should use SQL anyway.

$Id: https.py 1873 2008-06-12 02:49:41Z sra $

Copyright (C) 2007--2008  American Registry for Internet Numbers ("ARIN")

Permission to use, copy, modify, and distribute this software for any
purpose with or without fee is hereby granted, provided that the above
copyright notice and this permission notice appear in all copies.

THE SOFTWARE IS PROVIDED "AS IS" AND ARIN DISCLAIMS ALL WARRANTIES WITH
REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
AND FITNESS.  IN NO EVENT SHALL ARIN BE LIABLE FOR ANY SPECIAL, DIRECT,
INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
PERFORMANCE OF THIS SOFTWARE.

Function Documentation

def rpki.https.build_https_ta_cache (   certs  ) 

Build a dynamic TLS trust anchor cache.

Definition at line 45 of file https.py.

def rpki.https.client (   msg,
  client_key,
  client_cert,
  server_ta,
  url,
  timeout = 300 
)

Open client HTTPS connection, send a message, wait for response.

This function wraps most of what one needs to do to send a message
over HTTPS and get a response.  The certificate checking isn't quite
up to snuff; it's better than with the other packages I've found,
but doesn't appear to handle subjectAltName extensions (sigh).

Definition at line 152 of file https.py.

def rpki.https.server (   handlers,
  server_key,
  server_cert,
  port = 4433,
  host = "",
  client_ta = None,
  dynamic_https_trust_anchor = None,
  catch_signals = (signal.SIGINT, signal.SIGTERM 
)

Run an HTTPS server and wait (forever) for connections.

Definition at line 266 of file https.py.

def rpki.https.tlslite_certChain (   x509  ) 

Utility function to construct tlslite certChains.

Definition at line 38 of file https.py.


Variable Documentation

Definition at line 34 of file https.py.

Definition at line 31 of file https.py.

string rpki::https.rpki_content_type = "application/x-rpki"

Definition at line 36 of file https.py.


Generated on Wed Jul 16 00:59:38 2008 for RPKI Engine by  doxygen 1.5.6