[issue28747] Expose SSL_CTX_set_cert_verify_callback
Steve Dower
report at bugs.python.org
Sat Dec 17 15:51:14 EST 2016
Steve Dower added the comment:
The current _3.patch builds on default without warning and the tests pass (_2.patch is the one Ned tried).
Any objections to committing this into 3.7?
What about 3.6.1? As an additive and easy to detect API, I think it's suitable, and I will certainly use it (right now my library's setup.py depends on having each libeay.lib from each original CPython build handy to get some of the functions out of it - these files are about 50MB each, so it's a little painful).
If it helps, I'm happy to add a warning to the docs that setting the callback may cause a loss of security if the callback does not properly validate the certificate (or some wording to that effect). Personally I think that's fairly well implied though, as there isn't any other obvious use for the callback.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue28747>
_______________________________________
More information about the Python-bugs-list
mailing list