summaryrefslogtreecommitdiffstats
path: root/Modules/_ssl.c
Commit message (Collapse)AuthorAgeFilesLines
* Issue #13014: Fix a possible reference leak in SSLSocket.getpeercert().Antoine Pitrou2012-02-151-9/+14
|
* Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC IV ↵Antoine Pitrou2012-01-271-1/+2
|\ | | | | | | attack countermeasure.
| * Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC IV ↵Antoine Pitrou2012-01-271-1/+2
| | | | | | | | attack countermeasure.
| * Merged revisions 83680,83685 via svnmerge fromMark Dickinson2010-08-031-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/release27-maint ................ r83680 | mark.dickinson | 2010-08-03 19:34:53 +0100 (Tue, 03 Aug 2010) | 9 lines Merged revisions 83677 via svnmerge from svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r83677 | mark.dickinson | 2010-08-03 19:31:54 +0100 (Tue, 03 Aug 2010) | 1 line Fix memory leak in ssl module. ........ ................ r83685 | mark.dickinson | 2010-08-03 19:46:28 +0100 (Tue, 03 Aug 2010) | 9 lines Merged revisions 83683 via svnmerge from svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r83683 | mark.dickinson | 2010-08-03 19:44:16 +0100 (Tue, 03 Aug 2010) | 1 line Misc/NEWS entry for r83677. ........ ................
| * Merged revisions 82210 via svnmerge fromAntoine Pitrou2010-06-251-1/+0
| | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r82210 | antoine.pitrou | 2010-06-25 02:03:21 +0200 (ven., 25 juin 2010) | 4 lines Issue #9075: In the ssl module, remove the setting of a `debug` flag on an OpenSSL structure. ........
| * Merged revisions 81241 via svnmerge fromAntoine Pitrou2010-05-161-0/+3
| | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r81241 | antoine.pitrou | 2010-05-17 01:11:46 +0200 (lun., 17 mai 2010) | 4 lines Clear the OpenSSL error queue each time an error is signalled. When the error queue is not emptied, strange things can happen on the next SSL call, depending on the OpenSSL version. ........
| * Merged revisions 81115 via svnmerge fromAntoine Pitrou2010-05-121-34/+27
| | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r81115 | antoine.pitrou | 2010-05-12 16:02:34 +0200 (mer., 12 mai 2010) | 3 lines Improve _ssl.c formatting ........
| * Merged revisions 80789 via svnmerge fromAntoine Pitrou2010-05-051-1307/+1307
| | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r80789 | antoine.pitrou | 2010-05-05 17:53:45 +0200 (mer., 05 mai 2010) | 3 lines Untabify Modules/_ssl.c ........
| * Merged revisions 80540 via svnmerge fromAntoine Pitrou2010-04-271-1/+1
| | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r80540 | antoine.pitrou | 2010-04-27 21:09:59 +0200 (mar., 27 avril 2010) | 4 lines Issue #8549: Fix compiling the _ssl extension under AIX. Patch by Sridhar Ratnakumar. ........
| * Merged revisions 80451-80452 via svnmerge fromAntoine Pitrou2010-04-241-1/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r80451 | antoine.pitrou | 2010-04-24 21:57:01 +0200 (sam., 24 avril 2010) | 4 lines The do_handshake() method of SSL objects now adjusts the blocking mode of the SSL structure if necessary (as other methods already do). ........ r80452 | antoine.pitrou | 2010-04-24 22:04:58 +0200 (sam., 24 avril 2010) | 4 lines Issue #5103: SSL handshake would ignore the socket timeout and block indefinitely if the other end didn't respond. ........
| * Merged revisions 80392 via svnmerge fromAntoine Pitrou2010-04-231-6/+63
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r80392 | antoine.pitrou | 2010-04-23 01:33:02 +0200 (ven., 23 avril 2010) | 9 lines Issue #8108: Fix the unwrap() method of SSL objects when the socket has a non-infinite timeout. Also make that method friendlier with applications wanting to continue using the socket in clear-text mode, by disabling OpenSSL's internal readahead. Thanks to Darryl Miles for guidance. Issue #8108: test_ftplib's non-blocking SSL server now has proper handling of SSL shutdowns. ........
| * Merged revisions 80314-80315 via svnmerge fromAntoine Pitrou2010-04-211-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r80314 | antoine.pitrou | 2010-04-21 21:28:03 +0200 (mer., 21 avril 2010) | 5 lines Issue #8484: Load all ciphers and digest algorithms when initializing the _ssl extension, such that verification of some SSL certificates doesn't fail because of an "unknown algorithm". ........ r80315 | antoine.pitrou | 2010-04-21 21:36:23 +0200 (mer., 21 avril 2010) | 3 lines Forgot to add the sample certificate (followup to r80314) ........
| * Merged revisions 79910 via svnmerge fromAntoine Pitrou2010-04-091-0/+2
| | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r79910 | antoine.pitrou | 2010-04-09 22:38:39 +0200 (ven., 09 avril 2010) | 4 lines SSL_MODE_AUTO_RETRY has been added in OpenSSL 0.9.6. Fix compilation with earlier versions. ........
| * Merged revisions 79448 via svnmerge fromAntoine Pitrou2010-03-261-2/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r79448 | antoine.pitrou | 2010-03-26 20:27:16 +0100 (ven., 26 mars 2010) | 6 lines Issue #8222: Enable the SSL_MODE_AUTO_RETRY flag on SSL sockets, so that blocking reads and writes are always retried by OpenSSL itself. (this is a followup to issue #3890) ........
| * Reverting r78597. This is not a critical fix and we're in rc mode.Barry Warsaw2010-03-031-5/+0
| |
| * Merged revisions 78596 via svnmerge fromVictor Stinner2010-03-021-0/+5
| | | | | | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/trunk ........ r78596 | victor.stinner | 2010-03-02 23:44:42 +0100 (mar., 02 mars 2010) | 4 lines Issue #2973: Fix gcc warning on the 2nd argument of ASN1_item_d2i() and method->d2i(): OpenSSL API changed in OpenSSL 0.9.6m. Patch written by Daniel Black. ........
| * Fix signed/unsigned mismatch.Raymond Hettinger2009-01-261-1/+1
| |
* | Issue #13458: Fix a memory leak in the ssl module when decoding a ↵Antoine Pitrou2011-11-231-0/+1
| | | | | | | | | | | | certificate with a subjectAltName. Patch by Robert Xiao.
* | Issue #13034: When decoding some SSL certificates, the subjectAltName ↵Antoine Pitrou2011-10-011-1/+1
| | | | | | | | extension could be unreported.
* | Issue #12287: Fix a stack corruption in ossaudiodev module when the FD isCharles-François Natali2011-08-281-3/+1
| | | | | | | | greater than FD_SETSIZE.
* | (Merge 3.1) Issue #12012: ssl.PROTOCOL_SSLv2 becomes optionalVictor Stinner2011-05-091-1/+7
| | | | | | | | | | | | | | OpenSSL is now compiled with OPENSSL_NO_SSL2 defined (without the SSLv2 protocol) on Debian: fix the ssl module on Debian Testing and Debian Sid. Optimize also ssl.get_protocol_name(): speed does matter!
* | Merged revisions 87140 via svnmerge fromHirokazu Yamamoto2010-12-091-2/+4
| | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r87140 | hirokazu.yamamoto | 2010-12-09 19:49:00 +0900 (木, 09 12 2010) | 2 lines Should call Py_INCREF for Py_None (Modules/_ssl.c: PySSL_cipher) ........
* | Merged revisions 85432 via svnmerge fromBenjamin Peterson2010-10-131-2/+2
| | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r85432 | benjamin.peterson | 2010-10-13 17:06:39 -0500 (Wed, 13 Oct 2010) | 1 line constify to appease compiler warnings ........
* | Merged revisions 83677 via svnmerge fromMark Dickinson2010-08-031-0/+1
| | | | | | | | | | | | | | | | | | | | svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r83677 | mark.dickinson | 2010-08-03 19:31:54 +0100 (Tue, 03 Aug 2010) | 1 line Fix memory leak in ssl module. ........
* | Issue #9075: In the ssl module, remove the setting of a `debug` flagAntoine Pitrou2010-06-251-1/+0
| | | | | | | | on an OpenSSL structure.
* | Clear the OpenSSL error queue each time an error is signalled.Antoine Pitrou2010-05-161-0/+3
| | | | | | | | When the error queue is not emptied, strange things can happen on the next SSL call, depending on the OpenSSL version.
* | Improve _ssl.c formattingAntoine Pitrou2010-05-121-34/+27
| |
* | Untabify Modules/_ssl.cAntoine Pitrou2010-05-051-1346/+1346
| |
* | Remove unneeded variable initialization.Brett Cannon2010-05-031-3/+0
| | | | | | | | Found using Clang's static analyzer.
* | Issue #8549: Fix compiling the _ssl extension under AIX. Patch byAntoine Pitrou2010-04-271-1/+1
| | | | | | | | Sridhar Ratnakumar.
* | The do_handshake() method of SSL objects now adjusts the blocking mode ofAntoine Pitrou2010-04-241-1/+6
| | | | | | | | the SSL structure if necessary (as other methods already do).
* | Issue #8108: Fix the unwrap() method of SSL objects when the socket hasAntoine Pitrou2010-04-221-6/+63
| | | | | | | | | | | | | | | | | | a non-infinite timeout. Also make that method friendlier with applications wanting to continue using the socket in clear-text mode, by disabling OpenSSL's internal readahead. Thanks to Darryl Miles for guidance. Issue #8108: test_ftplib's non-blocking SSL server now has proper handling of SSL shutdowns.
* | Issue #8484: Load all ciphers and digest algorithms when initializingAntoine Pitrou2010-04-211-1/+2
| | | | | | | | | | the _ssl extension, such that verification of some SSL certificates doesn't fail because of an "unknown algorithm".
* | Issue #8322: Add a *ciphers* argument to SSL sockets, so as to change theAntoine Pitrou2010-04-171-5/+15
| | | | | | | | available cipher list. Helps fix test_ssl with OpenSSL 1.0.0.
* | Revert r79915 (temporary commit to check for buildbots -> the fix was ↵Antoine Pitrou2010-04-091-35/+6
| | | | | | | | successful)
* | Temporarily commit fix to issue #8108, to check for buildbot responseAntoine Pitrou2010-04-091-6/+35
| |
* | SSL_MODE_AUTO_RETRY has been added in OpenSSL 0.9.6. Fix compilationAntoine Pitrou2010-04-091-0/+2
| | | | | | | | with earlier versions.
* | Issue #8321: Give access to OpenSSL version numbers from the `ssl` module,Antoine Pitrou2010-04-051-1/+29
| | | | | | | | | | using the new attributes `ssl.OPENSSL_VERSION`, `ssl.OPENSSL_VERSION_INFO` and `ssl.OPENSSL_VERSION_NUMBER`.
* | Issue #8222: Enable the SSL_MODE_AUTO_RETRY flag on SSL sockets, so that ↵Antoine Pitrou2010-03-261-2/+1
| | | | | | | | | | | | | | | | blocking reads and writes are always retried by OpenSSL itself. (this is a followup to issue #3890)
* | Issue #2973: Fix gcc warning on the 2nd argument of ASN1_item_d2i() andVictor Stinner2010-03-021-0/+5
| | | | | | | | | | method->d2i(): OpenSSL API changed in OpenSSL 0.9.6m. Patch written by Daniel Black.
* | Issue #7133: SSL objects now support the new buffer API.Antoine Pitrou2009-10-191-11/+16
| | | | | | | | This fixes the test_ssl failure.
* | Fix nearly all compilation warnings under Apple gcc-4.0. Tested with OPT="-gJeffrey Yasskin2009-05-291-1/+1
| | | | | | | | | | | | -Wall -Wstrict-prototypes -Werror" in both --with-pydebug mode and --without. There's still a batch of non-prototype warnings in Xlib.h that I don't know how to fix.
* | Fix signed/unsigned mismatch.Raymond Hettinger2009-01-261-1/+1
|/
* various SSL fixes; issues 1251, 3162, 3212Bill Janssen2008-06-281-58/+145
|
* This reverts r63675 based on the discussion in this thread:Gregory P. Smith2008-06-091-21/+21
| | | | | | | http://mail.python.org/pipermail/python-dev/2008-June/079988.html Python 2.6 should stick with PyString_* in its codebase. The PyBytes_* names in the spirit of 3.0 are available via a #define only. See the email thread.
* Renamed PyString to PyBytesChristian Heimes2008-05-261-21/+21
|
* Fix compiler warningsNeal Norwitz2008-03-271-2/+2
|
* Initialize variable to prevent warning on some platform/config.Neal Norwitz2008-01-271-2/+2
|
* #1629: Renamed Py_Size, Py_Type and Py_Refcnt to Py_SIZE, Py_TYPE and ↵Christian Heimes2007-12-191-3/+3
| | | | Py_REFCNT. Macros for b/w compatibility are available.
* Fixed warning in ssl moduleChristian Heimes2007-12-141-1/+1
|
generated by cgit v0.12 at 2025-09-15 09:16:47 (GMT)