Message 190637 - Python tracker

Message190637

Author	christian.heimes
Recipients	christian.heimes
Date	2013-06-05.01:50:30
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1370397033.84.0.295479011719.issue18138@psf.upfronthosting.co.za>
In-reply-to

Content
The patch implements an add_cert(pem_or_der_data) method for the ssl.SSLContext() object. On success the method adds a trusted CA cert to the context's internal cert store. The CA certificate can either be an ASCII unicode string (PEM format) or buffer object (DER / ASN1 format). The patch also implements a get_cert_count() method for debugging. I'm going to remove that function eventually as it doesn't give correct answers when the object table contains CRLs, too. A correct implementation might be useful to verify set_default_verify_paths(). I've split up the functions so I can re-use _add_cert() in my upcoming patch for an interface to crypt32.dll on Windows.

Content

The patch implements an add_cert(pem_or_der_data) method for the ssl.SSLContext() object. On success the method adds a trusted CA cert to the context's internal cert store. The CA certificate can either be an ASCII unicode string (PEM format) or buffer object (DER / ASN1 format).

The patch also implements a get_cert_count() method for debugging. I'm going to remove that function eventually as it doesn't give correct answers when the object table contains CRLs, too. A correct implementation might be useful to verify set_default_verify_paths().

I've split up the functions so I can re-use _add_cert() in my upcoming patch for an interface to crypt32.dll on Windows.

History
Date	User	Action	Args
2013-06-05 01:50:34	christian.heimes	set	recipients: + christian.heimes
2013-06-05 01:50:33	christian.heimes	set	messageid: <1370397033.84.0.295479011719.issue18138@psf.upfronthosting.co.za>
2013-06-05 01:50:33	christian.heimes	link	issue18138 messages
2013-06-05 01:50:33	christian.heimes	create