subject:"\[issue20000\] SSLContext.get_ca_certs and self\-signed certs"

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2016-09-08 Thread Christian Heimes

Changes by Christian Heimes : -- status: open -> pending versions: +Python 3.7 -Python 3.5 ___ Python tracker ___ ___ Python-bugs-list

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2014-01-02 Thread Martin v . Löwis

Martin v. Löwis added the comment: BTW, congrats to issue 20,000. -- nosy: +loewis ___ Python tracker ___ ___ Python-bugs-list mailing

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Antoine Pitrou

Changes by Antoine Pitrou : -- versions: +Python 3.5 -Python 3.4 ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscribe:

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Christian Heimes

Christian Heimes added the comment: > Interesting. Is it because of the way you implemented get_ca_certs()? Yes, it's the line http://hg.python.org/cpython/file/b78de8029606/Modules/_ssl.c#l3103 that skips all certs that are not recognized as CA certs. I wasn't aware that OpenSSL supports se

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Antoine Pitrou

Antoine Pitrou added the comment: > get_ca_certs() doesn't return the cert although it is used to > successfully validate a remote cert. Interesting. Is it because of the way you implemented get_ca_certs()? > I propose to modify and rename the function and to add a "check_ca" to > the dict that

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Arfrever Frehtes Taifersar Arahesis

Changes by Arfrever Frehtes Taifersar Arahesis : -- nosy: +Arfrever ___ Python tracker ___ ___ Python-bugs-list mailing list Unsubscri

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Christian Heimes

Christian Heimes added the comment: Example: $ openssl s_server -cert Lib/test/ssl_cert.pem -key Lib/test/ssl_key.pem $ ./python >>> import ssl >>> ctx = ssl.SSLContext(ssl.PROTOCOL_SSLv3) >>> ctx.verify_mode = ssl.CERT_REQUIRED >>> ctx.check_hostname = True >>> ctx.load_verify_locations("Lib/t

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Christian Heimes

New submission from Christian Heimes: The new method SSLContext.get_ca_certs() returns all certificates in the context's trusted X509_STORE. I recently found out that it is possible to put a self-signed certificate into the store and use it successfully with verify_mode CERT_REQUIRED. get_ca_c

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

8 matches

Site Navigation

Mail list logo

Footer information