[issue30141] If you forget to call do_handshake, then everything seems to work but hostname checking is disabled
Christian Heimes
report at bugs.python.org
Mon Feb 26 03:22:40 EST 2018
Christian Heimes <lists at cheimes.de> added the comment:
The bug has been fixed in #31399. Since 3.7, Python uses OpenSSL's X509_VERIFY_PARAM_set1_host() to verify the host name during the handshake. Unfortunately the fix is in OpenSSL 1.0.2 only. Backport would break compatibility with OpenSSL 1.0.1 and all currently released LibreSSL versions.
Are you ok with closing the bug?
----------
resolution: -> fixed
stage: -> resolved
status: open -> pending
superseder: -> Let OpenSSL verify hostname and IP address
type: -> behavior
versions: +Python 2.7
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue30141>
_______________________________________
More information about the Python-bugs-list
mailing list