Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / pyopenssl / 83ef2306a1481e0cf7f53899c390497256711e29
commit83ef2306a1481e0cf7f53899c390497256711e29[log] [tgz]
authorSándor Oroszi <oroszisam@gmail.com>Mon Oct 12 15:42:23 2020 +0200
committerGitHub <noreply@github.com>Mon Oct 12 08:42:23 2020 -0500
treef27916271dde163143de9d7963805695d3f038b9
parent43c97767afe7aa1dccefec35946dbc8b9cde73a4 [diff]
Allow using additional untrusted certificates for chain building in X509StoreContext (#948)

The additional certificates provided in the new `chain` parameter will be
untrusted but may be used to build the chain.

This makes it easier to validate a certificate against a store which
contains only root ca certificates, and the intermediates come from e.g.
the same untrusted source as the certificate to be verified.

Co-authored-by: Sandor Oroszi <sandor.oroszi@balabit.com>
3 files changed
tree: f27916271dde163143de9d7963805695d3f038b9
  1. .github/
  2. .travis/
  3. doc/
  4. leakcheck/
  5. src/
  6. tests/
  7. .coveragerc
  8. .gitignore
  9. .travis.yml
  10. CHANGELOG.rst
  11. CODE_OF_CONDUCT.rst
  12. codecov.yml
  13. CONTRIBUTING.rst
  14. INSTALL.rst
  15. LICENSE
  16. MANIFEST.in
  17. pyproject.toml
  18. README.rst
  19. setup.cfg
  20. setup.py
  21. tox.ini