| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | [3.13] gh-118658: Modify cert generation script to extract cert3.pem ↵ | Felix Fontein | 2024-10-08 | 2 | -1/+3 |
| | | | | | | (GH-124598) (GH-124972) (cherry picked from commit 480354dc236af9ae9d47b2520aa85fb7293c7b68) | ||||
| * | [3.13] gh-118658: Return consistent types from `get_un/verified_chain` in ↵ | Miss Islington (bot) | 2024-08-19 | 1 | -0/+34 |
| | | | | | | | | | | `SSLObject` and `SSLSocket` (GH-118669) (#123082) gh-118658: Return consistent types from `get_un/verified_chain` in `SSLObject` and `SSLSocket` (GH-118669) (cherry picked from commit 8ef358dae1959e2aff8b04fb69b8a36d6da6847a) Co-authored-by: Mateusz Nowak <nowak.mateusz@hotmail.com> Co-authored-by: Gregory P. Smith [Google LLC] <greg@krypto.org> | ||||
| * | gh-107361: strengthen default SSL context flags (#112389) | William Woodruff | 2024-03-06 | 20 | -1062/+1088 |
| | | | | | | | | | | | | | | This adds `VERIFY_X509_STRICT` to make the default SSL context perform stricter (per RFC 5280) validation, as well as `VERIFY_X509_PARTIAL_CHAIN` to enforce more standards-compliant path-building behavior. As part of this changeset, I had to tweak `make_ssl_certs.py` slightly to emit 5280-conforming CA certs. This changeset includes the regenerated certificates after that change. Signed-off-by: William Woodruff <william@yossarian.net> Co-authored-by: Victor Stinner <vstinner@python.org> | ||||
| * | gh-108303: Move all certificates to `Lib/test/certdata/` (#109489) | Nikita Sobolev | 2023-09-16 | 31 | -0/+2140 |
 |
index : cpython.git | |
| https://github.com/python/cpython.git |
| summaryrefslogtreecommitdiffstats |