summaryrefslogtreecommitdiffstats
path: root/Modules/_ssl.c
Commit message (Collapse)AuthorAgeFilesLines
* Issue #24001: Argument Clinic converters now use accept={type}Larry Hastings2015-05-041-4/+4
| | | | instead of types={'type'} to specify the types the converter accepts.
* Issue #20179: Converted the _ssl module to Argument Clinic.Serhiy Storchaka2015-05-031-479/+541
|
* Issue #23853: Methods of SSL socket don't reset the socket timeout anymore eachVictor Stinner2015-04-061-17/+65
| | | | | | | | time bytes are received or sent. The socket timeout is now the maximum total duration of the method. This change fixes a denial of service if the application is regulary interrupted by a signal and the signal handler does not raise an exception.
* merge 3.4 (#23875)Benjamin Peterson2015-04-061-2/+2
|\
| * remove extra arguments in arg parsing format codes (closes #23875)Benjamin Peterson2015-04-061-2/+2
| |
* | Issue #23853: Cleanup _ssl.cVictor Stinner2015-04-021-45/+50
| | | | | | | | | | | | * Rename check_socket_and_wait_for_timeout() to PySSL_select() * PySSL_select() is now clearly splitted betwen poll() and select() * Add empty lines for readability
* | Issue #22117: Replace usage of _PyTime_ROUND_UP with _PyTime_ROUND_CEILINGVictor Stinner2015-03-301-2/+2
| | | | | | | | | | All these functions only accept positive timeouts, so this change has no effect in practice.
* | Issue #22117: Fix usage of _PyTime_AsTimeval()Victor Stinner2015-03-301-3/+1
| | | | | | | | | | Add _PyTime_AsTimeval_noraise() function. Call it when it's not possible (or not useful) to raise a Python exception on overflow.
* | Issue #22117: Fix ssl to use _PyTime_t API on sock_timeoutVictor Stinner2015-03-281-11/+14
| | | | | | | | I didn't notice that the ssl module uses private attributes of socket objects.
* | Issue #23001: Few functions in modules mmap, ossaudiodev, socket, ssl, andSerhiy Storchaka2015-03-201-2/+6
| | | | | | | | | | codecs, that accepted only read-only bytes-like object now accept writable bytes-like object too.
* | Issue #23694: Enhance _Py_fopen(), it now raises an exception on errorVictor Stinner2015-03-181-4/+2
| | | | | | | | | | * If fopen() fails, OSError is raised with the original filename object. * The GIL is now released while calling fopen()
* | merge 3.4Benjamin Peterson2015-03-051-0/+4
|\ \ | |/
| * expose X509_V_FLAG_TRUSTED_FIRSTBenjamin Peterson2015-03-051-0/+4
| |
* | merge 3.4 (#23476)Benjamin Peterson2015-03-051-0/+9
|\ \ | |/
| * enable X509_V_FLAG_TRUSTED_FIRST when possible (closes #23476)Benjamin Peterson2015-03-051-0/+9
| |
* | Issue #23576: Avoid stalling in SSL reads when EOF has been reached in the ↵Antoine Pitrou2015-03-041-20/+0
|\ \ | |/ | | | | SSL layer but the underlying connection hasn't been closed.
| * Issue #23576: Avoid stalling in SSL reads when EOF has been reached in the ↵Antoine Pitrou2015-03-041-20/+0
| | | | | | | | SSL layer but the underlying connection hasn't been closed.
* | Issue #23446: Use PyMem_New instead of PyMem_Malloc to avoid possible integerSerhiy Storchaka2015-02-161-3/+4
|\ \ | |/ | | | | overflows. Added few missed PyErr_NoMemory().
| * Issue #23446: Use PyMem_New instead of PyMem_Malloc to avoid possible integerSerhiy Storchaka2015-02-161-3/+4
| | | | | | | | overflows. Added few missed PyErr_NoMemory().
| * Issue #21356: Make ssl.RAND_egd() optional to support LibreSSL. TheVictor Stinner2015-01-061-0/+4
| | | | | | | | | | availability of the function is checked during the compilation. Patch written by Bernard Spil.
* | ifdef our way to compatibility with old openssl (closes #23335)Benjamin Peterson2015-01-281-1/+1
| |
* | disable ALPN on LibreSSL, which has a large version number, but not ALPN ↵Benjamin Peterson2015-01-271-1/+1
| | | | | | | | support (closes #23329)
* | prefer server alpn ordering over the client'sBenjamin Peterson2015-01-231-13/+20
| |
* | add support for ALPN (closes #20188)Benjamin Peterson2015-01-231-22/+110
| |
* | use SSL_get_sessionBenjamin Peterson2015-01-071-2/+3
| |
* | expose the client's cipher suites from the handshake (closes #23186)Benjamin Peterson2015-01-071-21/+51
| |
* | Issue #23143: Remove compatibility with OpenSSLs older than 0.9.8.Antoine Pitrou2015-01-031-53/+0
| | | | | | | | (the last 0.9.7 release was in 2007)
* | merge 3.4 (#22935)Benjamin Peterson2014-12-061-0/+4
|\ \ | |/
| * allow ssl module to compile if openssl doesn't support SSL 3 (closes #22935)Benjamin Peterson2014-12-061-0/+4
| | | | | | | | Patch by Kurt Roeckx.
* | Issue #21356: Make ssl.RAND_egd() optional to support LibreSSL. TheVictor Stinner2014-11-281-0/+4
| | | | | | | | | | | | availability of the function is checked during the compilation. Patch written by Bernard Spil.
* | merge 3.4 (#22921)Benjamin Peterson2014-11-231-12/+0
|\ \ | |/
| * don't require OpenSSL SNI to pass hostname to ssl functions (#22921)Benjamin Peterson2014-11-231-6/+0
| | | | | | | | Patch by Donald Stufft.
* | Issue #21965: Add support for in-memory SSL to the ssl module.Antoine Pitrou2014-10-051-76/+456
| | | | | | | | Patch by Geert Jansen.
* | Issue #20421: Add a .version() method to SSL sockets exposing the actual ↵Antoine Pitrou2014-09-041-0/+13
| | | | | | | | protocol version in use.
* | (Merge 3.4) Issue #21781, _ssl: Fix asn1obj2py() on Windows 64-bit, "s#" formatVictor Stinner2014-07-071-1/+1
|\ \ | |/ | | | | requires size to be a Py_ssize_t, not an int. _ssl.c is now "Py_ssize_t clean".
| * Issue #21781, _ssl: Fix asn1obj2py() on Windows 64-bit, "s#" format requiresVictor Stinner2014-07-071-1/+1
| | | | | | | | size to be a Py_ssize_t, not an int. _ssl.c is now "Py_ssize_t clean".
* | (Merge 3.4) Issue #21781: Make the ssl module "ssize_t clean" for parsingVictor Stinner2014-07-011-2/+9
|\ \ | |/ | | | | parameters. ssl.RAND_add() now supports strings longer than 2 GB.
| * Issue #21781: Make the ssl module "ssize_t clean" for parsing parameters.Victor Stinner2014-07-011-2/+9
| | | | | | | | ssl.RAND_add() now supports strings longer than 2 GB.
* | Issue #21490: Add new C macros: Py_ABS() and Py_STRINGIFY()Victor Stinner2014-05-141-3/+1
|/ | | | | Keep _Py_STRINGIZE() in PC/pyconfig.h to not introduce a dependency between pyconfig.h and pymacros.h.
* Issue #21015: SSL contexts will now automatically select an elliptic curve ↵Antoine Pitrou2014-03-221-0/+15
| | | | | | for ECDH key exchange on OpenSSL 1.0.2 and later, and otherwise default to "prime256v1". (should also fix a buildbot failure introduced by #20995)
* avoid a compiler warning about assigning const char * to char *.Gregory P. Smith2014-01-171-1/+1
|\
| * avoid a compiler warning about assigning const char * to char *.Gregory P. Smith2014-01-171-1/+1
| |
* | Issue #20207: Always disable SSLv2 except when PROTOCOL_SSLv2 is explicitly ↵Antoine Pitrou2014-01-091-4/+5
|\ \ | |/ | | | | asked for.
| * Remove conditional: it is useless at this point (OpenSSL headers are not yet ↵Antoine Pitrou2014-01-091-2/+0
| | | | | | | | included)
| * Issue #20207: Always disable SSLv2 except when PROTOCOL_SSLv2 is explicitly ↵Antoine Pitrou2014-01-091-2/+5
| | | | | | | | asked for.
* | (Merge 3.3) Issue #20025: ssl.RAND_bytes() and ssl.RAND_pseudo_bytes() nowVictor Stinner2013-12-191-0/+5
|\ \ | |/ | | | | raise a ValueError if num is negative (instead of raising a SystemError).
| * Issue #20025: ssl.RAND_bytes() and ssl.RAND_pseudo_bytes() now raise aVictor Stinner2013-12-191-0/+5
| | | | | | | | ValueError if num is negative (instead of raising a SystemError).
* | Issue #19509: Add SSLContext.check_hostname to match the peer's certificateChristian Heimes2013-12-021-0/+35
| | | | | | | | with server_hostname on handshake.
* | SNI was added in OpenSSL 0.9.8f [11 Oct 2007], tooChristian Heimes2013-11-281-1/+1
| |
* | Issue #8813: X509_VERIFY_PARAM is only available on OpenSSL 0.9.8+Christian Heimes2013-11-231-0/+9
| | | | | | | | The patch removes the verify_flags feature on Mac OS X 10.4 with OpenSSL 0.9.7l 28 Sep 2006.
generated by cgit v0.12 at 2024-12-29 14:38:19 (GMT)