[3.8] bpo-37428: Don't set PHA verify flag on client side (GH-14494) by tiran · Pull Request #14494 · python/cpython

tiran · 2019-07-01T06:31:14Z

SSLContext.post_handshake_auth = True no longer sets
SSL_VERIFY_POST_HANDSHAKE verify flag for client connections. Although the
option is documented as ignored for clients, OpenSSL implicitly enables cert
chain validation when the flag is set.

Signed-off-by: Christian Heimes christian@python.org

https://bugs.python.org/issue37428
(cherry picked from commit f0f5930)

https://bugs.python.org/issue37428

…4421) SSLContext.post_handshake_auth = True no longer sets SSL_VERIFY_POST_HANDSHAKE verify flag for client connections. Although the option is documented as ignored for clients, OpenSSL implicitly enables cert chain validation when the flag is set. Signed-off-by: Christian Heimes <christian@python.org> https://bugs.python.org/issue37428 (cherry picked from commit f0f5930) Co-authored-by: Christian Heimes <christian@python.org>

tiran · 2019-07-01T07:26:11Z

GH limits the title to 72 chars and didn't let me merge this PR with commit message [3.8] [bpo-37428](https://bugs.python.org/issue37428): Don't set PHA verify flag on client side (GH-14421) (GH-14493).

the-knights-who-say-ni added the CLA signed label Jul 1, 2019

bedevere-bot mentioned this pull request Jul 1, 2019

bpo-37428: Don't set PHA verify flag on client side #14421

Merged

bedevere-bot added type-bug An unexpected behavior, bug, or error awaiting core review labels Jul 1, 2019

tiran added 🤖 automerge and removed awaiting core review labels Jul 1, 2019

tiran changed the title ~~[3.8] bpo-37428: Don't set PHA verify flag on client side (GH-14421)~~ [3.8] bpo-37428: Don't set PHA verify flag on client side (GH-14494) Jul 1, 2019

tiran merged commit f22c4cf into python:3.8 Jul 1, 2019

tiran removed the 🤖 automerge label Jul 1, 2019

Uh oh!

tiran commented Jul 1, 2019 •

edited by bedevere-bot

Loading

Uh oh!

tiran commented Jul 1, 2019 •

edited by bedevere-bot

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Uh oh!

Conversation

tiran commented Jul 1, 2019 • edited by bedevere-bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

tiran commented Jul 1, 2019 • edited by bedevere-bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

tiran commented Jul 1, 2019 •

edited by bedevere-bot

Loading

tiran commented Jul 1, 2019 •

edited by bedevere-bot

Loading