U @†6^ã@s<ddlZddlmZddlmZmZmZGdd„deƒZdS)éN)Úurlparse)Ú SpiderFootÚSpiderFootPluginÚSpiderFootEventc@sVeZdZdZdddddœZdddd dœZd Zeƒfdd„Zd d„Z dd„Z dd„Zd S)Úsfp_sslcertz‰SSL Certificates:Footprint,Investigate:Crawling and Scanning::Gather information about SSL certificates used by the target's HTTPS sites.Té é)ÚtryhttpÚverifyÚ ssltimeoutÚcertexpiringdaysz6Also try to HTTPS-connect to HTTP sites and hostnames.z5Verify certificate subject alternative names resolve.z1Seconds before giving up trying to HTTPS connect.zNNumber of days in the future a certificate expires to consider it as expiring.NcCs4||_| ¡|_t| ¡ƒD]}|||j|<qdS)N)ÚsfÚtempStorageÚresultsÚlistÚkeysÚopts)ÚselfÚsfcÚuserOptsÚopt©rú6/var/www/spiderfoot.crq.systems/modules/sfp_sslcert.pyÚsetup*s zsfp_sslcert.setupcCs dddgS)NÚ INTERNET_NAMEÚLINKED_URL_INTERNALÚ IP_ADDRESSr©rrrrÚ watchedEvents6szsfp_sslcert.watchedEventsc Csddddddddd d ddd g S)NÚ TCP_PORT_OPENrÚINTERNET_NAME_UNRESOLVEDÚAFFILIATE_INTERNET_NAMEÚ"AFFILIATE_INTERNET_NAME_UNRESOLVEDÚSSL_CERTIFICATE_ISSUEDÚSSL_CERTIFICATE_ISSUERÚSSL_CERTIFICATE_MISMATCHÚSSL_CERTIFICATE_EXPIREDÚSSL_CERTIFICATE_EXPIRINGÚSSL_CERTIFICATE_RAWÚDOMAIN_NAMEÚAFFILIATE_DOMAIN_NAMErrrrrÚproducedEvents<sûzsfp_sslcert.producedEventsc Csä|j}|j}|j}|j d|d|¡|dkr¶| ¡ d¡sN|jdsNdSz,t|ƒ}d}|j rh|j }|j | ¡¡}Wq¾tk r²}z|j d|¡WY¢dSd}~XYq¾Xn|}d}||jkrÔd|j|<ndS|j d |d t |ƒ¡zR|j |||jd¡} | ¡| d¡} |j | ¡}|j t |ƒ||jd¡}WnJtk r} z*|j d |dt | ƒd¡WY¢dSd} ~ XYnX|dkrÂtd|d t |ƒ|j|ƒ}| |¡| d¡sâ|j d|¡dStd|d|j|ƒ}| |¡| d¡r*td|d|j|ƒ}| |¡| d¡rTtd|d|j|ƒ}| |¡|dkr| d¡rtdd | d¡¡|j|ƒ}| |¡t| dtƒ¡ƒD]Ø}| dd ¡}| ¡j|dd!rÌd"}nd#}|jd$r|j |¡s|j d%|d&¡|d'7}t|||j|ƒ}| |¡|j ||jd(¡r¢| d)¡r^td*||j|ƒ}| |¡ntd+||j|ƒ}| |¡q¢| d,¡r®td-| d.d/¡|j|ƒ}| |¡dS| d0¡ràtd1| d.d/¡|j|ƒ}| |¡dSdS)2NzReceived event, z, from rzhttps://r i»zCouldn't parse URL: TzTesting SSL for: ú:rrzUnable to SSL-connect to z (ú))rrrÚtextz!Failed to parse the SSL cert for r(Úissuedr#Úissuerr$rÚmismatchr%z, ÚhostsÚaltnamesz*.Ú)ÚincludeChildrenrr!r zHost z could not be resolvedÚ_UNRESOLVEDÚ _internettldsÚ AFFILIATEr*r)Úexpiredr&Ú expirystrÚUnknownÚexpiringr') Ú eventTypeÚmoduleÚdatar ÚdebugÚlowerÚ startswithrrÚportÚurlFQDNÚ BaseExceptionrÚstrÚ safeSSLSocketÚdo_handshakeÚgetpeercertÚsslDerToPemÚ parseCertÚinforÚ__name__ÚnotifyListenersÚgetÚjoinÚsetrÚreplaceÚ getTargetÚmatchesÚresolveHostÚisDomain)rÚeventÚ eventNameÚ srcModuleNameÚ eventDataÚurCÚfqdnÚeÚsockÚdercertZpemcertÚcertÚxÚevtÚrawevtÚsanÚdomainÚevt_typerrrÚhandleEventEs zsfp_sslcert.handleEvent)rMÚ __module__Ú__qualname__Ú__doc__rÚoptdescsrÚdictrrr+rgrrrrrs ü ü r)ÚtimeÚurllib.parserÚsflibrrrrrrrrÚ s