[issue22959] http.client.HTTPSConnection checks hostname when SSL context has check_hostname==False
Benjamin Peterson
report at bugs.python.org
Sun Nov 30 17:38:40 CET 2014
Benjamin Peterson added the comment:
On Sun, Nov 30, 2014, at 11:20, Alex Gaynor wrote:
>
> Alex Gaynor added the comment:
>
> This will cause it to not validate in some cases where it currently is
> validating? That seems like a regression to me.
I suppose. Certainly, none of the "default" cases are affected. The
problem is it's impossible to have cert validation w/o hostname checking
by passing a context to some higher level API than HTTPSConnection (like
xmlrpclib) because HTTPSConnection tries to be clever. Ideally, the
check_hostname argument wouldn't exist, and everything would come from
the context.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue22959>
_______________________________________
More information about the Python-bugs-list
mailing list