[issue27391] server_hostname should only be required when checking host names
Christian Heimes
report at bugs.python.org
Sat Sep 16 10:14:19 EDT 2017
Christian Heimes added the comment:
So it's not a problem with the SSL module but rather in asyncio. From the initial report it was not clear to me that it only affects asyncio.
I'm not sure this issue should be fixed at all. As I explained earlier, a hostname is required for both hostname verification and SNI TLS extension. We may allow to omit the parameter with verify_mode=CERT_NONE and check_hostname=False only. In all other cases the server may return a wrong cert or refuse to establish a connection.
----------
assignee: christian.heimes -> yselivanov
components: -SSL
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue27391>
_______________________________________
More information about the Python-bugs-list
mailing list