summaryrefslogtreecommitdiffstats
path: root/Lib/ssl.py
Commit message (Collapse)AuthorAgeFilesLines
* #18705: merge with 3.3.Ezio Melotti2013-08-171-1/+1
|\
| * #18705: fix a number of typos. Patch by Févry Thibault.Ezio Melotti2013-08-171-1/+1
| |
* | Issue #9177: Calling read() or write() now raises ValueError, not ↵Antoine Pitrou2013-07-201-0/+4
| | | | | | | | | | | | AttributeError, on a closed SSL socket. Patch by Senko Rasic.
* | Issue #18200: Back out usage of ModuleNotFoundError (8d28d44f3a9a)Brett Cannon2013-07-041-2/+2
| |
* | Issue #18200: Update the stdlib (except tests) to useBrett Cannon2013-06-141-2/+2
| | | | | | | | ModuleNotFoundError.
* | Issue #17134: Add ssl.enum_cert_store() as interface to Windows' cert store.Christian Heimes2013-06-091-0/+4
| |
* | Issue #18143: Implement ssl.get_default_verify_paths() in order to debugChristian Heimes2013-06-091-0/+20
| | | | | | | | the default locations for cafile and capath.
* | Issue #17980: Fix possible abuse of ssl.match_hostname() for denial of ↵Antoine Pitrou2013-05-181-1/+8
|\ \ | |/ | | | | service using certificates with many wildcards (CVE-2013-2099).
| * Issue #17980: Fix possible abuse of ssl.match_hostname() for denial of ↵Antoine Pitrou2013-05-181-1/+8
| | | | | | | | service using certificates with many wildcards (CVE-2013-2099).
* | Issue #13721: SSLSocket.getpeercert() and SSLSocket.do_handshake() now raise ↵Antoine Pitrou2013-05-011-12/+22
| | | | | | | | an OSError with ENOTCONN, instead of an AttributeError, when the SSLSocket is not connected.
* | remove uneffective 'while True' clauseGiampaolo Rodola'2013-04-031-11/+10
| |
* | Issue #16692: The ssl module now supports TLS 1.1 and TLS 1.2. Initial ↵Antoine Pitrou2013-03-281-2/+11
| | | | | | | | patch by Michele Orrù.
* | merge 3.3 (#16900)Benjamin Peterson2013-01-101-4/+0
|\ \ | |/
| * remove __del__ because it's evil and also prevents the ResourceWarning on ↵Benjamin Peterson2013-01-101-4/+0
| | | | | | | | the socket from happening (closes #16900)
* | Issue #8109: The ssl module now has support for server-side SNI, thanks to a ↵Antoine Pitrou2013-01-051-32/+60
| | | | | | | | | | | | :meth:`SSLContext.set_servername_callback` method. Patch by Daniel Black.
* | Issue #16717: get rid of socket.error, replace with OSErrorAndrew Svetlov2012-12-181-4/+6
|/
* Issue #16357: fix calling accept() on a SSLSocket created through ↵Antoine Pitrou2012-11-111-10/+5
|\ | | | | | | | | | | SSLContext.wrap_socket(). Original patch by Jeff McNeil.
| * Issue #16357: fix calling accept() on a SSLSocket created through ↵Antoine Pitrou2012-11-111-10/+5
| | | | | | | | | | | | SSLContext.wrap_socket(). Original patch by Jeff McNeil.
* | Issue #14204: The ssl module now has support for the Next Protocol ↵Antoine Pitrou2012-03-211-3/+24
| | | | | | | | | | | | Negotiation extension, if available in the underlying OpenSSL library. Patch by Colin Marc.
* | Try to really fix compilation failures of the _ssl module under very old ↵Antoine Pitrou2012-02-171-1/+5
| | | | | | | | OpenSSLs.
* | Issue #13636: Weak ciphers are now disabled by default in the ssl moduleAntoine Pitrou2012-01-031-2/+11
|\ \ | |/ | | | | (except when SSLv2 is explicitly asked for).
| * Issue #13636: Weak ciphers are now disabled by default in the ssl moduleAntoine Pitrou2012-01-031-2/+10
| | | | | | | | (except when SSLv2 is explicitly asked for).
* | Issue #13626: Add support for SSL Diffie-Hellman key exchange, through theAntoine Pitrou2011-12-221-1/+1
| | | | | | | | SSLContext.load_dh_params() method and the ssl.OP_SINGLE_DH_USE option.
* | Fix ssl module compilation if ECDH support was disabled in the OpenSSL build.Antoine Pitrou2011-12-211-1/+1
| | | | | | | | (followup to issue #13627)
* | Issue #13634: Add support for querying and disabling SSL compression.Antoine Pitrou2011-12-201-0/+11
| |
* | Issue #13627: Add support for SSL Elliptic Curve-based Diffie-HellmanAntoine Pitrou2011-12-191-1/+1
| | | | | | | | | | key exchange, through the SSLContext.set_ecdh_curve() method and the ssl.OP_SINGLE_ECDH_USE option.
* | Issue #13635: Add ssl.OP_CIPHER_SERVER_PREFERENCE, so that SSL serversAntoine Pitrou2011-12-191-1/+4
| | | | | | | | | | choose the cipher based on their own preferences, rather than on the client's.
* | Issue #11183: Add finer-grained exceptions to the ssl module, so thatAntoine Pitrou2011-10-271-1/+5
| | | | | | | | you don't have to inspect the exception's attributes in the common case.
* | Fix #12835: prevent use of the unencrypted sendmsg/recvmsg APIs on SSL ↵Nick Coghlan2011-08-271-0/+14
| | | | | | | | wrapped sockets (Patch by David Watson)
* | Remove the SSLSocket versions of sendmsg/recvmsg due to lack of proper tests ↵Nick Coghlan2011-08-231-24/+0
| | | | | | | | and documentation in conjunction with lack of any known use cases (see issue #6560 for details)
* | Add support for the send/recvmsg API to the socket module. Patch by David ↵Nick Coghlan2011-08-221-0/+24
| | | | | | | | Watson and Heiko Wundram. (Closes #6560)
* | Issue #12551: Provide a get_channel_binding() method on SSL sockets so asAntoine Pitrou2011-07-201-0/+19
| | | | | | | | | | | | | | | | to get channel binding data for the current SSL session (only the "tls-unique" channel binding is implemented). This allows the implementation of certain authentication mechanisms such as SCRAM-SHA-1-PLUS. Patch by Jacek Konieczny.
* | Issue #12440: When testing whether some bits in SSLContext.options can beAntoine Pitrou2011-07-081-0/+2
|\ \ | |/ | | | | | | reset, check the version of the OpenSSL headers Python was compiled against, rather than the runtime version of the OpenSSL library.
| * Issue #12440: When testing whether some bits in SSLContext.options can beAntoine Pitrou2011-07-081-0/+2
| | | | | | | | | | reset, check the version of the OpenSSL headers Python was compiled against, rather than the runtime version of the OpenSSL library.
* | Issue #12049: Add RAND_bytes() and RAND_pseudo_bytes() functions to the sslVictor Stinner2011-05-241-1/+1
| | | | | | | | module.
* | Issue #12065: connect_ex() on an SSL socket now returns the original errnoAntoine Pitrou2011-05-181-11/+13
|\ \ | |/ | | | | when the socket's timeout expires (it used to return None).
| * Issue #12065: connect_ex() on an SSL socket now returns the original errnoAntoine Pitrou2011-05-181-11/+13
| | | | | | | | when the socket's timeout expires (it used to return None).
| * (Merge 3.1) Issue #12012: ssl.PROTOCOL_SSLv2 becomes optionalVictor Stinner2011-05-091-12/+13
| |\ | | | | | | | | | | | | | | | | | | OpenSSL is now compiled with OPENSSL_NO_SSL2 defined (without the SSLv2 protocol) on Debian: fix the ssl module on Debian Testing and Debian Sid. Optimize also ssl.get_protocol_name(): speed does matter!
| | * Issue #12012: ssl.PROTOCOL_SSLv2 becomes optionalVictor Stinner2011-05-091-12/+13
| | | | | | | | | | | | | | | | | | | | | OpenSSL is now compiled with OPENSSL_NO_SSL2 defined (without the SSLv2 protocol) on Debian: fix the ssl module on Debian Testing and Debian Sid. Optimize also ssl.get_protocol_name(): speed does matter!
| | * Merged revisions 84807 via svnmerge fromAntoine Pitrou2010-09-141-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r84807 | antoine.pitrou | 2010-09-14 16:43:44 +0200 (mar., 14 sept. 2010) | 4 lines Issue #9853: Fix the signature of SSLSocket.recvfrom() and SSLSocket.sendto() to match the corresponding socket methods. ........
| | * Merged revisions 84464 via svnmerge fromAntoine Pitrou2010-09-031-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r84464 | antoine.pitrou | 2010-09-03 20:38:17 +0200 (ven., 03 sept. 2010) | 3 lines Issue #3805: clean up implementation of the _read method in _ssl.c. ........
| | * Merged revisions 80517 via svnmerge fromAntoine Pitrou2010-04-261-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r80517 | antoine.pitrou | 2010-04-27 01:06:26 +0200 (mar., 27 avril 2010) | 3 lines Remove unused import ........
| | * Merged revisions 80515 via svnmerge fromAntoine Pitrou2010-04-261-12/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r80515 | antoine.pitrou | 2010-04-27 00:17:47 +0200 (mar., 27 avril 2010) | 4 lines Hopefully fix sporadic Windows issue by avoiding calling getpeername() on a freshly dup'ed socket. ........
| | * Merged revisions 80509 via svnmerge fromAntoine Pitrou2010-04-261-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ................ r80509 | antoine.pitrou | 2010-04-26 19:29:05 +0200 (lun., 26 avril 2010) | 10 lines Merged revisions 80507 via svnmerge from svn+ssh://pythondev@svn.python.org/python/trunk ........ r80507 | antoine.pitrou | 2010-04-26 19:23:33 +0200 (lun., 26 avril 2010) | 4 lines When calling getpeername() in SSLSocket.__init__, only silence exceptions caused by the "socket not connected" condition. ........ ................
| | * Merged revisions 80456 via svnmerge fromAntoine Pitrou2010-04-241-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r80456 | antoine.pitrou | 2010-04-25 00:04:40 +0200 (dim., 25 avril 2010) | 5 lines Issue #8524: When creating an SSL socket, the timeout value of the original socket wasn't retained (instead, a socket with a positive timeout would be turned into a non-blocking SSL socket). ........
| | * Merged revisions 79287,79289 via svnmerge fromAntoine Pitrou2010-03-221-19/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ................ r79287 | antoine.pitrou | 2010-03-22 15:49:10 +0100 (lun., 22 mars 2010) | 13 lines Merged revisions 79226,79286 via svnmerge from svn+ssh://pythondev@svn.python.org/python/trunk ........ r79226 | antoine.pitrou | 2010-03-21 20:33:38 +0100 (dim., 21 mars 2010) | 4 lines Issue #3890: Fix recv() and recv_into() on non-blocking SSL sockets. ........ r79286 | antoine.pitrou | 2010-03-22 15:41:48 +0100 (lun., 22 mars 2010) | 3 lines Fix an occasional test_ftplib failure, following r79226. ........ ................ r79289 | antoine.pitrou | 2010-03-22 16:07:09 +0100 (lun., 22 mars 2010) | 3 lines Fix a blunder in r79287. This part is, obviously, poorly tested (if at all). ................
| | * Merged revisions 77597 via svnmerge fromEzio Melotti2010-01-181-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ................ r77597 | ezio.melotti | 2010-01-18 11:15:14 +0200 (Mon, 18 Jan 2010) | 9 lines Merged revisions 77595 via svnmerge from svn+ssh://pythondev@svn.python.org/python/trunk ........ r77595 | ezio.melotti | 2010-01-18 11:10:26 +0200 (Mon, 18 Jan 2010) | 1 line #7730: remove spaces after functions names ........ ................
* | | Issue #12012: ssl.PROTOCOL_SSLv2 becomes optionalVictor Stinner2011-05-081-12/+14
| | | | | | | | | | | | | | | | | | | | | OpenSSL is now compiled with OPENSSL_NO_SSL2 defined (without the SSLv2 protocol) on Debian: fix the ssl module on Debian Testing and Debian Sid. Optimize also ssl.get_protocol_name(): speed does matter!
* | | Issue #12000: When a SSL certificate has a subjectAltName without anyAntoine Pitrou2011-05-061-2/+3
|\ \ \ | |/ / | | | | | | | | | dNSName entry, ssl.match_hostname() should use the subject's commonName. Patch by Nicolas Bareil.
| * | Issue #12000: When a SSL certificate has a subjectAltName without anyAntoine Pitrou2011-05-061-2/+3
| | | | | | | | | | | | | | | dNSName entry, ssl.match_hostname() should use the subject's commonName. Patch by Nicolas Bareil.
generated by cgit v0.12 at 2024-10-19 01:00:38 (GMT)