Mercurial > hg > orthanc
comparison Resources/RetrieveCACertificates.py @ 1534:95b3b0260240
Options to validate peers against CA certificates in HTTPS requests
author | Sebastien Jodogne <s.jodogne@gmail.com> |
---|---|
date | Thu, 13 Aug 2015 12:42:32 +0200 |
parents | |
children | b1291df2f780 |
comparison
equal
deleted
inserted
replaced
1533:0011cc99443c | 1534:95b3b0260240 |
---|---|
1 #!/usr/bin/python | |
2 | |
3 # Orthanc - A Lightweight, RESTful DICOM Store | |
4 # Copyright (C) 2012-2015 Sebastien Jodogne, Medical Physics | |
5 # Department, University Hospital of Liege, Belgium | |
6 # | |
7 # This program is free software: you can redistribute it and/or | |
8 # modify it under the terms of the GNU General Public License as | |
9 # published by the Free Software Foundation, either version 3 of the | |
10 # License, or (at your option) any later version. | |
11 # | |
12 # In addition, as a special exception, the copyright holders of this | |
13 # program give permission to link the code of its release with the | |
14 # OpenSSL project's "OpenSSL" library (or with modified versions of it | |
15 # that use the same license as the "OpenSSL" library), and distribute | |
16 # the linked executables. You must obey the GNU General Public License | |
17 # in all respects for all of the code used other than "OpenSSL". If you | |
18 # modify file(s) with this exception, you may extend this exception to | |
19 # your version of the file(s), but you are not obligated to do so. If | |
20 # you do not wish to do so, delete this exception statement from your | |
21 # version. If you delete this exception statement from all source files | |
22 # in the program, then also delete it here. | |
23 # | |
24 # This program is distributed in the hope that it will be useful, but | |
25 # WITHOUT ANY WARRANTY; without even the implied warranty of | |
26 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | |
27 # General Public License for more details. | |
28 # | |
29 # You should have received a copy of the GNU General Public License | |
30 # along with this program. If not, see <http://www.gnu.org/licenses/>. | |
31 | |
32 | |
33 import re | |
34 import sys | |
35 import subprocess | |
36 import urllib2 | |
37 | |
38 | |
39 if len(sys.argv) <= 2: | |
40 print('Download a set of CA certificates, convert them to PEM, then format them as a C macro') | |
41 print('Usage: %s [Macro] [Certificate1] <Certificate2>...' % sys.argv[0]) | |
42 print('') | |
43 print('Example: %s BITBUCKET_CERTIFICATES https://www.digicert.com/CACerts/DigiCertHighAssuranceEVRootCA.crt' % sys.argv[0]) | |
44 print('') | |
45 sys.exit(-1) | |
46 | |
47 MACRO = sys.argv[1] | |
48 | |
49 sys.stdout.write('#define %s ' % MACRO) | |
50 | |
51 for url in sys.argv[2:]: | |
52 # Download the certificate from the CA authority, in the DES format | |
53 des = urllib2.urlopen(url).read() | |
54 | |
55 # Convert DES to PEM | |
56 p = subprocess.Popen([ 'openssl', 'x509', '-inform', 'DES', '-outform', 'PEM' ], | |
57 stdin = subprocess.PIPE, | |
58 stdout = subprocess.PIPE) | |
59 pem = p.communicate(input = des)[0] | |
60 pem = re.sub(r'\r', '', pem) # Remove any carriage return | |
61 pem = re.sub(r'\\', r'\\\\', pem) # Escape any backslash | |
62 pem = re.sub(r'"', r'\\"', pem) # Escape any quote | |
63 | |
64 # Write the PEM data into the macro | |
65 for line in pem.split('\n'): | |
66 sys.stdout.write(' \\\n') | |
67 sys.stdout.write('"%s\\n" ' % line) | |
68 | |
69 sys.stdout.write('\n') | |
70 sys.stderr.write('Done!\n') |