cpython.git - https://github.com/python/cpython.git

diff options

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>	2024-02-29 07:53:56 (GMT)
committer	GitHub <noreply@github.com>	2024-02-29 07:53:56 (GMT)
commit	542f3272f56f31ed04e74c40635a913fbc12d286 (patch)
tree	d258c1cdcc0a52d8c5586d422463f52aaff62e85 /Python/ceval_macros.h
parent	d4a1c8e62817bff5cb8b86b5b387c36bcafa81da (diff)
download	cpython-542f3272f56f31ed04e74c40635a913fbc12d286.zip cpython-542f3272f56f31ed04e74c40635a913fbc12d286.tar.gz cpython-542f3272f56f31ed04e74c40635a913fbc12d286.tar.bz2

[3.12] gh-114572: Fix locking in cert_store_stats and get_ca_certs (GH-114573) (GH-115547)

gh-114572: Fix locking in cert_store_stats and get_ca_certs (GH-114573) * gh-114572: Fix locking in cert_store_stats and get_ca_certs cert_store_stats and get_ca_certs query the SSLContext's X509_STORE with X509_STORE_get0_objects, but reading the result requires a lock. See https://github.com/openssl/openssl/pull/23224 for details. Instead, use X509_STORE_get1_objects, newly added in that PR. X509_STORE_get1_objects does not exist in current OpenSSLs, but we can polyfill it with X509_STORE_lock and X509_STORE_unlock. * Work around const-correctness problem * Add missing X509_STORE_get1_objects failure check * Add blurb (cherry picked from commit bce693111bff906ccf9281c22371331aaff766ab) Co-authored-by: David Benjamin <davidben@google.com>

Diffstat (limited to 'Python/ceval_macros.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: