subject:"\[issue20000\] SSLContext.get_ca_certs and self\-signed certs"

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2016-09-08 Thread Christian Heimes

Changes by Christian Heimes : -- status: open -> pending versions: +Python 3.7 -Python 3.5 ___ Python tracker ___

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2014-01-02 Thread Martin v . Löwis

Martin v. Löwis added the comment: BTW, congrats to issue 20,000. -- nosy: +loewis ___ Python tracker rep...@bugs.python.org http://bugs.python.org/issue2 ___ ___

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Antoine Pitrou

Antoine Pitrou added the comment: get_ca_certs() doesn't return the cert although it is used to successfully validate a remote cert. Interesting. Is it because of the way you implemented get_ca_certs()? I propose to modify and rename the function and to add a check_ca to the dict that is

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Christian Heimes

Christian Heimes added the comment: Interesting. Is it because of the way you implemented get_ca_certs()? Yes, it's the line http://hg.python.org/cpython/file/b78de8029606/Modules/_ssl.c#l3103 that skips all certs that are not recognized as CA certs. I wasn't aware that OpenSSL supports

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-17 Thread Antoine Pitrou

Changes by Antoine Pitrou pit...@free.fr: -- versions: +Python 3.5 -Python 3.4 ___ Python tracker rep...@bugs.python.org http://bugs.python.org/issue2 ___ ___

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Christian Heimes

New submission from Christian Heimes: The new method SSLContext.get_ca_certs() returns all certificates in the context's trusted X509_STORE. I recently found out that it is possible to put a self-signed certificate into the store and use it successfully with verify_mode CERT_REQUIRED.

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Christian Heimes

Christian Heimes added the comment: Example: $ openssl s_server -cert Lib/test/ssl_cert.pem -key Lib/test/ssl_key.pem $ ./python import ssl ctx = ssl.SSLContext(ssl.PROTOCOL_SSLv3) ctx.verify_mode = ssl.CERT_REQUIRED ctx.check_hostname = True

[issue20000] SSLContext.get_ca_certs() and self-signed certs

2013-12-16 Thread Arfrever Frehtes Taifersar Arahesis

Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com: -- nosy: +Arfrever ___ Python tracker rep...@bugs.python.org http://bugs.python.org/issue2 ___

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

[issue20000] SSLContext.get_ca_certs() and self-signed certs

8 matches

Site Navigation

Mail list logo

Footer information