Notice: While JavaScript is not essential for this website, your interaction with the content will be limited. Please turn JavaScript on for the full experience.
...ssl.create_default_context, the ssl module will be modified to: read the PYTHONHTTPSVERIFY environment variable when the module is first imported into a Python process set the ssl._create_default_https_context function to be an alias for ssl._create_unverified_context if this environment variable is present and set to '0' otherwise, set the ssl._create_default_https_context function to be an alias for ssl.create_default_context as usual Example implementation _https_verify_envvar = 'PYTHONH...
...ssl._create_default_https_context function, which is the same as ssl.create_default_context. http.client can then replace its usage of ssl._create_stdlib_context with the ssl._create_default_https_context. Additionally ssl._create_stdlib_context is renamed ssl._create_unverified_context (an alias is kept around for backwards compatibility reasons). Trust database This PEP proposes using the system-provided certificate database. Previous discussions have suggested bundling Mozilla's certificate ...
...ssl module being raised: migrating to the ABCs presented here would potentially cause the exceptions defined above to be thrown instead, and existing except blocks will not catch them. For this reason, part of the migration of the ssl module would require that the exceptions in the ssl module alias those defined above. That is, they would require the following statements to all succeed: assert ssl.SSLError is tls.TLSError assert ssl.SSLWantReadError is tls.WantReadError assert ssl.SSLWantWriteE...
...SSL may be upgraded to more recent feature releases in Python 2.7 maintenance releases. On Linux and most other POSIX systems, the specific version of OpenSSL used already varies, as CPython dynamically links to the system provided OpenSSL library by default. For the Windows binary installers, the _ssl and _hashlib modules are statically linked with OpenSSL and the associated symbols are not exported. Marc-Andre Lemburg indicates that updating to newer OpenSSL releases in the egenix-pyopenssl bi...
Web SIG The Python Web SIG is dedicated to improving Python's support for interacting with World Wide Web services and clients. Charter The first task should be to create a plan (in the form of a PEP) for bringing the Web support in the standard Python library up to modern standards. This would address capabilities such as (but not limited to) CSS parsing, XHTML parsing and generation support, client-side and server-side SSL support, simple server frameworks, multi-part/form-data POST suppor...
...SSL Certificates A. Kuchling reported that Barry Warsaw wants to purchase 5 SSL certificates for svn.python.org, www.python.org, mail.python.org, cheeseshop.python.org, and wiki.python.org. They cost $49/year per certificate (wildcard certificates cost $449/year, which is not economical with fewer than 10 domain names). The difference between purchased and self-signed certificates was discussed; it was agreed that purchased certificates were worth the expense. It was then RESOLVED: To alloca...
...SSL 1.0.2 LTS OpenSSL 1.1.0 OpenSSL 1.1.1 LTS OpenSSL 3.0.0 LibreSSL BoringSSL Benefits TLS 1.3 Thread and fork safety SHA-3 Compatibility OpenSSL downstream patches and options LibreSSL support BoringSSL Rejected Ideas Formalize supported OpenSSL versions Keep support for OpenSSL 1.1.0 Backwards Compatibility Disclaimer and special thanks References Copyright Abstract This PEP proposes for CPython’s standard library to support only OpenSSL 1.1.1 LTS or newer. Support for OpenSSL vers...
Version: None
Released: Oct. 4, 2014
This is a security-fix source-only release. The last binary release was 3.2.5. The list of fixed security related issues can be found in the NEWS file. New features of the 3.2 series, compared to 3.1 Python 3.2 is a continuation of the efforts to improve and stabilize the …
View Release Notes
Released: Oct. 12, 2014
This is a security-fix source-only release. The last binary release was 3.2.5. With the 3.2.6 release, and five years after its first release, the Python 3.2 series is now officially retired. All official maintenance for Python 3.2, including security patches, has ended. For ongoing maintenance releases, please see the …
...SSL certificate issuing company. Kuchling said he would ask Barry about the status of the SSL certificates. 5 Adjournment Stephan Deibel adjourned the meeting at 18:00 UTC.
Released: Dec. 10, 2014
Python 2.7.9 is a bugfix version for the Python 2.7 release series. Python 2.7.9 includes several significant changes unprecedented in a "bugfix" release: The entirety of Python 3.4's ssl module has been backported for Python 2.7.9. See PEP 466 for justification. HTTPS certificate validation using the system's certificate store is …
...SSL Certificates T. Peters asked if there was any progress on getting Barry Warsaw a bill with the PSF address, to obtain SSL certificates. K. Kaiser replied that Barry has valid concerns regarding an ephemeral address, but K. Kaiser suspects the PSF official address could be used. K. Kaiser will check whether he has something with that address that could be sent to Barry. 11 Adjournment Stephan Deibel adjourned the meeting at 18:03 UTC.
...SSL sockets work again. time.strptime() can now infer the date using %U or %W (week of the year) when the day of the week and year are also specified. The optparse module was updated to Optik 1.5a1. The new module cookielib supports client-side HTTP cookies. urllib2 gained a new class HTTPCookieProcessor that uses this new module. The CJKCodecs collection of East Asian codecs, maintained by Hye-Shik Chang, was integrated into 2.4. The email package's Parser was completely rewritten to better ha...
Released: April 6, 2013
Note: A newer security-fix release, 3.2.6, is currently available. Its use is recommended. Python 3.2.4 was released on April 7th, 2013. This is the final 3.2 series bugfix release. New features of the 3.2 series, compared to 3.1 Python 3.2 is a continuation of the efforts to improve and …
Released: March 10, 2020
Note: The release you are looking at is a bugfix release for the legacy 3.7 series which has now reached end-of-life and is no longer supported. See the downloads page for currently supported versions of Python. The final source-only security fix release for 3.7 was 3.7.17. The Python 3.7 …
...ssl module with support for SSL contexts and certificate hostname matching a sysconfig module to access configuration information additions to the shutil module, among them archive file support many enhancements to configparser, among them mapping protocol support improvements to pdb, the Python debugger countless fixes regarding bytes/string issues; among them full support for a bytes environment (filenames, environment variables) many consistency and behavior fixes for numeric operations See ...
...ssl module with support for SSL contexts and certificate hostname matching a sysconfig module to access configuration information additions to the shutil module, among them archive file support many enhancements to configparser, among them mapping protocol support improvements to pdb, the Python debugger countless fixes regarding bytes/string issues; among them full support for a bytes environment (filenames, environment variables) many consistency and behavior fixes for numeric operations Mo...