mirror of
https://github.com/SSLMate/certspotter.git
synced 2025-07-01 10:35:33 +02:00
209cdb181b
Specifically, certspotter no longer terminates unless it receives SIGTERM or SIGINT or there is a serious error. Although using cron made sense in the early days of Certificate Transparency, certspotter now needs to run continuously to reliably keep up with the high growth rate of contemporary CT logs, and to gracefully handle the many transient errors that can arise when monitoring CT. Closes: #63 Closes: #37 Closes: #32 (presumably by eliminating $DNS_NAMES and $IP_ADDRESSES) Closes: #21 (with $WATCH_ITEM) Closes: #25
41 lines
1.2 KiB
Go
41 lines
1.2 KiB
Go
// Copyright (C) 2023 Opsmate, Inc.
|
|
//
|
|
// This Source Code Form is subject to the terms of the Mozilla
|
|
// Public License, v. 2.0. If a copy of the MPL was not distributed
|
|
// with this file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
//
|
|
// This software is distributed WITHOUT A WARRANTY OF ANY KIND.
|
|
// See the Mozilla Public License for details.
|
|
|
|
package monitor
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"software.sslmate.com/src/certspotter/ct"
|
|
"software.sslmate.com/src/certspotter/loglist"
|
|
)
|
|
|
|
type LogID = ct.SHA256Hash
|
|
|
|
func getLogList(ctx context.Context, source string) (map[LogID]*loglist.Log, error) {
|
|
// TODO-4: pass context to loglist.Load
|
|
// TODO-3: If-Modified-Since / If-None-Match support
|
|
list, err := loglist.Load(source)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
logs := make(map[LogID]*loglist.Log)
|
|
for operatorIndex := range list.Operators {
|
|
for logIndex := range list.Operators[operatorIndex].Logs {
|
|
log := &list.Operators[operatorIndex].Logs[logIndex]
|
|
if _, exists := logs[log.LogID]; exists {
|
|
return nil, fmt.Errorf("log list contains more than one entry with ID %s", log.LogID.Base64String())
|
|
}
|
|
logs[log.LogID] = log
|
|
}
|
|
}
|
|
return logs, nil
|
|
}
|