C3L-NOC/tls-expiry-tracker Files · backend/web.py · Chaos Computer Club Lëtzebuerg Projects

Files @ aea800cedcbd

Branch filter:

Location: C3L-NOC/tls-expiry-tracker/backend/web.py

aea800cedcbd 789 B text/x-python Show Annotation Show as Raw Download as Raw

fix: clean up console logging

#!/usr/bin/env python3
import ssl
from cryptography import x509
import socket

import tls_utils
from generic_handler import GenericHandler

class SSLHandler(GenericHandler):
    def connect(self, verification: bool) -> int:
        if verification:
            with self.context.wrap_socket(socket.socket(), server_hostname=self.host) as s:
                s.connect((self.host, self.port))
                cert = s.getpeercert()
                return tls_utils.check_cert_validity(cert)[1]
        else:
            pem_cert = ssl.get_server_certificate((self.host, self.port), timeout=5)
            cert = x509.load_pem_x509_certificate(pem_cert.encode())
            not_after = cert.not_valid_after_utc.timestamp()
            return tls_utils.compare_expiry_timestamps(not_after)[1]