1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
|
# $Id$
import BaseHTTPServer, tlslite.api
class requestHandler(BaseHTTPServer.BaseHTTPRequestHandler):
def do_POST(self):
echo = ""
for h in self.headers:
echo += "%s: %s\n" % (h, self.headers[h])
self.query_string = self.rfile.read(int(self.headers["Content-Length"]))
echo += self.query_string
if False:
f = open("http-server.log", "a")
f.write(echo)
f.close()
self.send_response(200)
self.send_header("Content-Type", "application/x-wombat")
self.end_headers()
self.wfile.write(echo)
certChain = []
for file in ("biz-certs/Carol-EE.cer", "biz-certs/Carol-CA.cer"):
f = open(file, "r")
x509 = tlslite.api.X509()
x509.parse(f.read())
f.close()
certChain.append(x509)
certChain = tlslite.api.X509CertChain(certChain)
f = open("biz-certs/Carol-EE.key", "r")
privateKey = tlslite.api.parsePEMKey(f.read(), private=True)
f.close()
sessionCache = tlslite.api.SessionCache()
class httpServer(tlslite.api.TLSSocketServerMixIn, BaseHTTPServer.HTTPServer):
def handshake(self, tlsConnection):
try:
tlsConnection.handshakeServer(certChain=certChain,
privateKey=privateKey,
sessionCache=sessionCache)
tlsConnection.ignoreAbruptClose = True
return True
except tlslite.api.TLSError, error:
print "TLS handshake failure:", str(error)
return False
httpd = httpServer(("", 4433), requestHandler)
httpd.serve_forever()
|
