fiveop/doorstatus
1
0
Fork 0
forked from berhsi/doorstatus
Code Issues Pull requests Releases Wiki Activity

setstatus.py: add check if certs readable

Browse source
This commit is contained in:
+++ 2020-06-22 11:32:36 +02:00
parent eb000bff46
commit cb05cb787a
1 changed files with 20 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
setstatus.py
View file

@ -12,11 +12,12 @@ import argparse
import socket import socket
import ssl import ssl
import sys import sys
import os
def main(): def main():
parser = argparse.ArgumentParser(description="Set door status of description = "Set door status of Krautspace"
Krautspace.") parser = argparse.ArgumentParser(description=description)
parser.add_argument("status_code", help="status to set", type=int, parser.add_argument("status_code", help="status to set", type=int,
choices=(0, 1)) choices=(0, 1))
args = parser.parse_args() args = parser.parse_args()
@ -31,12 +32,21 @@ def main():
STATUS = None STATUS = None
RESPONSE = None RESPONSE = None
context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH, print('Check certs')
for certfile in (CLIENT_CERT, CLIENT_KEY, SERVER_CERT):
if os.access(certfile, os.R_OK) is False:
print('Failed to read cert: {}'.format(certfile))
sys.exit(1)
try:
context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH,
cafile=SERVER_CERT) cafile=SERVER_CERT)
context.set_ciphers('EECDH+AESGCM') # only ciphers for tls 1.2 and 1.3 context.load_cert_chain(certfile=CLIENT_CERT, keyfile=CLIENT_KEY)
context.options |= getattr(ssl._ssl, 'OP_NO_COMPRESSION', 0) context.set_ciphers('EECDH+AESGCM') # only ciphers for tls 1.2 and 1.3
context.load_cert_chain(certfile=CLIENT_CERT, keyfile=CLIENT_KEY) context.options |= getattr(ssl._ssl, 'OP_NO_COMPRESSION', 0)
print('SSL context created') print('SSL context created')
except Exception as e:
print('Failed to create ssl context: {}'.format(e))
sys.exit(2)
with socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0) as mySocket: with socket.socket(socket.AF_INET, socket.SOCK_STREAM, 0) as mySocket:
print('Socket created') print('Socket created')
@ -54,14 +64,14 @@ def main():
print('Connection timeout') print('Connection timeout')
except Exception as e: except Exception as e:
print('Connection failed: {}'.format(e)) print('Connection failed: {}'.format(e))
sys.exit(1) sys.exit(3)
try: try:
print('Send new status: {}'.format(STATUS)) print('Send new status: {}'.format(STATUS))
conn.send(STATUS) conn.send(STATUS)
except Exception as e: except Exception as e:
print('Error: {}'.format(e)) print('Error: {}'.format(e))
sys.exit(2) sys.exit(4)
try: try:
RESPONSE = conn.recv(1) RESPONSE = conn.recv(1)
@ -73,7 +83,7 @@ def main():
print('Disconnect from server') print('Disconnect from server')
except Exception as e: except Exception as e:
print('Error: {}'.format(e)) print('Error: {}'.format(e))
sys.exit(3) sys.exit(5)
if __name__ == '__main__': if __name__ == '__main__':