New submission from Christian Heimes:
The patch implements a get_default_verify_paths() function for the ssl module.
It returns the env vars and paths that are used by openssl's
set_default_verify_paths() to load CA certs from default locations. I think it
makes a useful addition for debugging purposes.
On my system:
>>> import ssl
>>> ssl.get_default_verify_paths()
(None, '/usr/lib/ssl/certs')
>>> ssl.get_default_verify_paths(raw=True)
('SSL_CERT_FILE', '/usr/lib/ssl/cert.pem', 'SSL_CERT_DIR', '/usr/lib/ssl/certs')
SSL_CTX_set_default_verify_paths() first tries the env var. If the env var is
set the second element is ignored.
----------
files: sslverifypath.patch
keywords: patch
messages: 190669
nosy: christian.heimes, pitrou
priority: normal
severity: normal
stage: patch review
status: open
title: ssl.get_default_verify_paths()
type: enhancement
versions: Python 3.4
Added file: http://bugs.python.org/file30473/sslverifypath.patch
_______________________________________
Python tracker <rep...@bugs.python.org>
<http://bugs.python.org/issue18143>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe:
http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
