Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cpython3 / f22c4cf11d10f52faa86e0b308dd28f11819efd8
commitf22c4cf11d10f52faa86e0b308dd28f11819efd8[log] [tgz]
authorChristian Heimes <christian@python.org>Mon Jul 01 09:25:48 2019 +0200
committerGitHub <noreply@github.com>Mon Jul 01 09:25:48 2019 +0200
treea221e4d3841ffe1ddd8bae9324d7a07237fa3d88
parentee72dda9616258b57c19eb5af00f3e80a3fb8e22 [diff]
[3.8] bpo-37428: Don't set PHA verify flag on client side (GH-14494)

SSLContext.post_handshake_auth = True no longer sets
SSL_VERIFY_POST_HANDSHAKE verify flag for client connections. Although the
option is documented as ignored for clients, OpenSSL implicitly enables cert
chain validation when the flag is set.

Signed-off-by: Christian Heimes <christian@python.org>

https://bugs.python.org/issue37428
(cherry picked from commit f0f5930ac88482ef896283db5be9b8d508d077db)
3 files changed
tree: a221e4d3841ffe1ddd8bae9324d7a07237fa3d88
  1. .azure-pipelines/
  2. .github/
  3. Doc/
  4. Grammar/
  5. Include/
  6. Lib/
  7. m4/
  8. Mac/
  9. Misc/
  10. Modules/
  11. Objects/
  12. Parser/
  13. PC/
  14. PCbuild/
  15. Programs/
  16. Python/
  17. Tools/
  18. .gitattributes
  19. .gitignore
  20. .travis.yml
  21. aclocal.m4
  22. CODE_OF_CONDUCT.md
  23. config.guess
  24. config.sub
  25. configure
  26. configure.ac
  27. install-sh
  28. LICENSE
  29. Makefile.pre.in
  30. pyconfig.h.in
  31. README.rst
  32. setup.py