From 0bd8134e5fde7930de557c041adf69199ef2cd5a Mon Sep 17 00:00:00 2001
From: Peter Eckersley <pde@eff.org>
Date: Fri, 8 Aug 2014 11:57:01 -0700
Subject: [PATCH] Comments

(and code review in comment form)
---
 CheckSTARTTLS.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/CheckSTARTTLS.py b/CheckSTARTTLS.py
index eda1761f0..a9d8de9de 100755
--- a/CheckSTARTTLS.py
+++ b/CheckSTARTTLS.py
@@ -86,6 +86,8 @@ def valid_cert(filename):
     return False
 
 def check_certs(mail_domain):
+  # Return "" if any certs for any mx domains pointed to by mail_domain
+  # were invalid, and a public suffix for one if they were all valid
   names = set()
   for mx_hostname in os.listdir(mail_domain):
     filename = os.path.join(mail_domain, mx_hostname)
@@ -141,6 +143,8 @@ def min_tls_version(mail_domain):
   return min(protocols)
 
 def collect(mail_domain):
+  # XXX comment this function and explain why we're using the
+  # filesystem rather than internal data structures for plumbing here
   print "Checking domain %s" % mail_domain
   mkdirp(mail_domain)
   answers = dns.resolver.query(mail_domain, 'MX')