Change by Kent Watsen :
--
nosy: +kwatsen
___
Python tracker
<https://bugs.python.org/issue31242>
___
___
Python-bugs-list mailing list
Unsubscribe:
Kent Watsen added the comment:
Very much needing this!
My situation is a mutli-tenant asynchio-based server whereby each tenant is
able to configure other clients that can connect. The current strategy
requires all certs to be known up-front that, for now, necessitates a painful
restart
Kent Watsen added the comment:
I don't understand the concern issues being raised for this patch, and also may
have a use-case not mentioned yet.
For the concern issue, as I understand it, the ability to call getpeercert() or
the proposed getpeercertchain() is only after the TLS sessio
Kent Watsen added the comment:
It seems that we're talking about the same thing, but I want the cert-chain the
peer sent without any smarts, exactly how OpenSSL's SSL_get_peer_cert_chain()
works and, importantly, without stapling any root chain certs the client did
not send itse
Kent Watsen added the comment:
I agree that having both would be best, but there is a world of difference
between a must-have (peer_cert_chain) and what seems to be a nice-to-have
(authed_peer_cert_chain).
My request for clarification was not that I don't understand bags, etc. (s
New submission from Kent Watsen :
[Tested on 3.8.2 and 3.9.0, bug may manifest in other versions too]
The IETF sometimes uses the dummy base64 value "base64encodedvalue==" in
specifications in lieu of a block of otherwise meaningless b64.
Even though it is a dummy value, the va
Kent Watsen added the comment:
No activity in 3 weeks. Selecting a couple components to give it a bump.
--
components: +C API, Library (Lib)
nosy: +kwatsen
___
Python tracker
<https://bugs.python.org/issue42
Change by Kent Watsen :
--
nosy: -kwatsen2
___
Python tracker
<https://bugs.python.org/issue42628>
___
___
Python-bugs-list mailing list
Unsubscribe:
Kent Watsen added the comment:
I see. There are two issues:
1) my `base64` and `openssl` CLI commands were flipped, as you point out,
giving a false positive - oops ;)
2) more importantly, the base64 value "ue==" is invalid (there is no binary
input that could possibly genera
