Benjamin Peterson
|
4b9df0d33b
|
merge 3.4 (#23844)
|
2015-04-02 00:08:10 -04:00 |
Benjamin Peterson
|
a7eaf56a6d
|
replace 512 bit dh key with a 2014 bit one (closes #23844)
Patch by Cédric Krier.
|
2015-04-02 00:04:06 -04:00 |
Serhiy Storchaka
|
8490f5acfe
|
Issue #23001: Few functions in modules mmap, ossaudiodev, socket, ssl, and
codecs, that accepted only read-only bytes-like object now accept writable
bytes-like object too.
|
2015-03-20 09:00:36 +02:00 |
Berker Peksag
|
18987a11ce
|
Issue #20617: Remove unused import in test_ssl.
Patch by Mark Lawrence.
|
2015-03-12 18:50:49 +02:00 |
Berker Peksag
|
4a0e14730b
|
Issue #20617: Remove unused import in test_ssl.
Patch by Mark Lawrence.
|
2015-03-12 18:51:16 +02:00 |
Benjamin Peterson
|
3e2500d6db
|
merge 3.4
|
2015-03-04 23:20:23 -05:00 |
Benjamin Peterson
|
c3d9c5ca0a
|
adjust test_crl_check for trusted first being default
|
2015-03-04 23:18:48 -05:00 |
Benjamin Peterson
|
de8eca4638
|
merge 3.4
|
2015-03-04 22:50:25 -05:00 |
Benjamin Peterson
|
990fcaac3c
|
expose X509_V_FLAG_TRUSTED_FIRST
|
2015-03-04 22:49:41 -05:00 |
Antoine Pitrou
|
c481bfb3f6
|
Issue #23239: ssl.match_hostname() now supports matching of IP addresses.
|
2015-02-15 18:12:20 +01:00 |
Ned Deily
|
7aa4428835
|
Issue #23345: merge from 3.4
|
2015-02-05 17:24:00 +11:00 |
Ned Deily
|
05784a706e
|
Issue #23345: Prevent test_ssl failures with large OpenSSL patch level
values (like 0.9.8zc).
|
2015-02-05 17:20:13 +11:00 |
Benjamin Peterson
|
8861502e07
|
prefer server alpn ordering over the client's
|
2015-01-23 17:30:26 -05:00 |
Benjamin Peterson
|
cca2732a82
|
add support for ALPN (closes #20188)
|
2015-01-23 16:35:37 -05:00 |
Benjamin Peterson
|
15042921ad
|
enable cert validation in test
|
2015-01-07 22:12:43 -06:00 |
Benjamin Peterson
|
23ef9fac16
|
trying again
|
2015-01-07 21:21:34 -06:00 |
Benjamin Peterson
|
e6838e08ef
|
reorder cipher prefs
|
2015-01-07 20:52:40 -06:00 |
Benjamin Peterson
|
44c77791ab
|
drop 256
|
2015-01-07 20:30:59 -06:00 |
Benjamin Peterson
|
359f2982f4
|
try using AES256
|
2015-01-07 20:03:27 -06:00 |
Benjamin Peterson
|
8791d697e0
|
fix assertions after ciphers were changed
|
2015-01-07 14:29:45 -06:00 |
Benjamin Peterson
|
f78b78aed4
|
rc4 is a long time favorite
|
2015-01-07 14:21:22 -06:00 |
Benjamin Peterson
|
438a8db763
|
everyone should support AES ciphers
|
2015-01-07 13:28:40 -06:00 |
Benjamin Peterson
|
9f6eceab46
|
include some more ciphers
|
2015-01-07 12:59:20 -06:00 |
Benjamin Peterson
|
aacd524118
|
force test server to speak tlsv1
|
2015-01-07 11:42:38 -06:00 |
Benjamin Peterson
|
e27a421354
|
remove apparently wrong assertion about des bit size
|
2015-01-07 11:33:51 -06:00 |
Benjamin Peterson
|
4cb17812d9
|
expose the client's cipher suites from the handshake (closes #23186)
|
2015-01-07 11:14:26 -06:00 |
Victor Stinner
|
fcfed19913
|
Issue #21356: Make ssl.RAND_egd() optional to support LibreSSL. The
availability of the function is checked during the compilation. Patch written
by Bernard Spil.
|
2015-01-06 13:54:58 +01:00 |
Victor Stinner
|
789b805700
|
test_ssl: add more debug to investigate test_openssl_version() failure on
OpenBSD with LibreSSL.
|
2015-01-06 11:51:06 +01:00 |
Victor Stinner
|
3f7e064b2b
|
Issue #22935: Fix test_ssl when the SSLv3 protocol is not supported
|
2014-12-12 12:27:08 +01:00 |
Benjamin Peterson
|
e32467cf6a
|
allow ssl module to compile if openssl doesn't support SSL 3 (closes #22935)
Patch by Kurt Roeckx.
|
2014-12-05 21:59:35 -05:00 |
Benjamin Peterson
|
7243b574e5
|
don't require OpenSSL SNI to pass hostname to ssl functions (#22921)
Patch by Donald Stufft.
|
2014-11-23 17:04:34 -06:00 |
Victor Stinner
|
648b862017
|
Issue #22935: Fix test_ssl when the SSLv3 protocol is not supported
|
2014-12-12 12:23:59 +01:00 |
Benjamin Peterson
|
22293df016
|
merge 3.4 (#22935)
|
2014-12-05 22:11:33 -05:00 |
Victor Stinner
|
beeb512fe1
|
Issue #21356: Make ssl.RAND_egd() optional to support LibreSSL. The
availability of the function is checked during the compilation.
Patch written by Bernard Spil.
|
2014-11-28 13:28:25 +01:00 |
Benjamin Peterson
|
f9284ae8ed
|
merge 3.4 (#22921)
|
2014-11-23 17:06:39 -06:00 |
Benjamin Peterson
|
98e1b9158c
|
merge 3.4
|
2014-11-03 21:06:07 -05:00 |
Benjamin Peterson
|
1ea070e561
|
test that keyfile can be None
|
2014-11-03 21:05:01 -05:00 |
Benjamin Peterson
|
1cca273669
|
merge 3.4 (#22417)
|
2014-11-03 14:36:48 -05:00 |
Benjamin Peterson
|
4ffb075271
|
PEP 476: enable HTTPS certificate verification by default (#22417)
Patch by Alex Gaynor with some modifications by me.
|
2014-11-03 14:29:33 -05:00 |
Antoine Pitrou
|
b1fdf47ff5
|
Issue #21965: Add support for in-memory SSL to the ssl module.
Patch by Geert Jansen.
|
2014-10-05 20:41:53 +02:00 |
Benjamin Peterson
|
91b62c4a8a
|
merge 3.4
|
2014-10-03 18:17:30 -04:00 |
Benjamin Peterson
|
91244e01bb
|
separate cert loading tests into Windows and non-Windows cases
|
2014-10-03 18:17:15 -04:00 |
Benjamin Peterson
|
8b9cfa1066
|
merge 3.4 (#22449)
|
2014-10-03 17:33:45 -04:00 |
Benjamin Peterson
|
5915b0f924
|
also use openssl envvars to find certs on windows (closes #22449)
Patch by Christian Heimes and Alex Gaynor.
|
2014-10-03 17:27:05 -04:00 |
Antoine Pitrou
|
47e40429fb
|
Issue #20421: Add a .version() method to SSL sockets exposing the actual protocol version in use.
|
2014-09-04 21:00:10 +02:00 |
Charles-François Natali
|
6e20460dc6
|
Issue #21566: Make use of socket.listen() default backlog.
|
2014-07-23 19:28:13 +01:00 |
Antoine Pitrou
|
26408df88f
|
Issue #21976: Fix test_ssl to accept LibreSSL version strings.
Thanks to William Orr.
|
2014-07-21 18:37:36 -04:00 |
Antoine Pitrou
|
dfab935c74
|
Issue #21976: Fix test_ssl to accept LibreSSL version strings.
Thanks to William Orr.
|
2014-07-21 18:35:01 -04:00 |
Giampaolo Rodola'
|
915d14190e
|
fix issue #17552: add socket.sendfile() method allowing to send a file over a socket by using high-performance os.sendfile() on UNIX. Patch by Giampaolo Rodola'·
|
2014-06-11 03:54:30 +02:00 |
Antoine Pitrou
|
b4bebdafe3
|
Issue #20951: SSLSocket.send() now raises either SSLWantReadError or SSLWantWriteError on a non-blocking socket if the operation would block. Previously, it would return 0.
Patch by Nikolaus Rath.
|
2014-04-29 10:03:28 +02:00 |