From 2452999eae785800753aed298c7f86966972b6c9 Mon Sep 17 00:00:00 2001 From: Hans Trompert <hans.trompert@surf.nl> Date: Fri, 29 Oct 2021 14:39:12 +0200 Subject: [PATCH] additional logging of wich TLS mode is being used --- opennsa/setup.py | 3 +++ 1 file changed, 3 insertions(+) diff --git a/opennsa/setup.py b/opennsa/setup.py index f4cea162..bfacc74e 100644 --- a/opennsa/setup.py +++ b/opennsa/setup.py @@ -100,6 +100,7 @@ def setupBackend(backend_cfg, network_name, nrm_ports, parent_requester): def setupTLSContext(vc): # ssl/tls contxt if vc[config.TLS]: + log.message('setup for full client/server TLS mode') from opennsa.opennsaTlsContext import opennsa2WayTlsContext ctx_factory = opennsa2WayTlsContext( vc[config.KEY], vc[config.CERTIFICATE], vc[config.CERTIFICATE_DIR], vc[config.VERIFY_CERT]) @@ -110,11 +111,13 @@ def setupTLSContext(vc): 'certdir value {} is not a directory'.format(vc[config.CERTIFICATE_DIR])) if vc[config.KEY] and vc[config.CERTIFICATE]: # enable client authentication even when not in TLS mode + log.message('setup for client TLS mode with client authentication') from opennsa.opennsaTlsContext import opennsa2WayTlsContext ctx_factory = opennsa2WayTlsContext( vc[config.KEY], vc[config.CERTIFICATE], vc[config.CERTIFICATE_DIR], vc[config.VERIFY_CERT]) else: from opennsa.opennsaTlsContext import opennsaTlsContext + log.message('setup for client TLS mode without client authentication') ctx_factory = opennsaTlsContext( vc[config.CERTIFICATE_DIR], vc[config.VERIFY_CERT]) else: -- GitLab