[New-bugs-announce] [issue22768] Add a way to get the peer certificate of a SSL Transport
Mathieu Pasquet
report at bugs.python.org
Thu Oct 30 19:18:56 CET 2014
New submission from Mathieu Pasquet:
Currently, the only workaround is to use transport._sock.getpeercert(True) on the Transport returned by loop.create_connection(), which is not something to be encouraged. It is useful to get such information, for example to perform a manual certificate check against a previously recorded certificate or hash.
I attached a trivial patch adding an extra 'peercert_bin' info, but I do not know if this is the right approach, as other issues of feature disparity might arise when more people try to switch to asyncio. Exposing a proxy SSLSocket object for read-only functions might be more beneficial.
----------
components: asyncio
files: peercert_bin.patch
keywords: patch
messages: 230281
nosy: gvanrossum, haypo, mathieui, yselivanov
priority: normal
severity: normal
status: open
title: Add a way to get the peer certificate of a SSL Transport
type: enhancement
versions: Python 3.4
Added file: http://bugs.python.org/file37076/peercert_bin.patch
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue22768>
_______________________________________
More information about the New-bugs-announce
mailing list