➜
This issue tracker has been migrated to GitHub,
and is currently read-only.
For more information,
see the GitHub FAQs in the Python's Developer Guide.
Created on 2016-11-15 11:01 by christian.heimes, last changed 2022-04-11 14:58 by admin.
| Messages (7) | |||
|---|---|---|---|
| msg280830 - (view) | Author: Christian Heimes (christian.heimes) *  |
Date: 2016-11-15 11:01 | |
Python's ssl module does not support smartcard authentication of clients. In order to use an external engine like OpenSC's engine_pkcs11, SSLContext must be configured to use a loaded engine for client cert auth. It's really simple. Pseudo code without error reporting, engine_id is a char*: ENGINE *e = ENGINE_by_id(engine_id); SSL_CTX_set_client_cert_engine(ctx, e); |
|||
| msg283782 - (view) | Author: Gennady Kovalev (gik) | Date: 2016-12-21 20:38 | |
Why not to call OPENSSL_config() to use openssl.cnf?
--- ./Modules/_ssl.c.orig 2016-12-21 23:30:36.277184891 +0300
+++ ./Modules/_ssl.c 2016-12-21 23:35:18.488508435 +0300
@@ -4514,6 +4514,8 @@
PySocketModule = *socket_api;
/* Init OpenSSL */
+ OPENSSL_config(NULL);
+
SSL_load_error_strings();
SSL_library_init();
#ifdef WITH_THREAD
(Patch for example, for 3.5.2 source, not try to compile)
|
|||
| msg283842 - (view) | Author: Christian Heimes (christian.heimes) * |
Date: 2016-12-22 14:16 | |
OPENSSL_config() is deprecated. I'm going to wrap CONF_modules_load_file(), CONF_modules_load() and NCONF_load_bio(). |
|||
| msg283903 - (view) | Author: Andrea G (Andrea Grandi) | Date: 2016-12-23 20:47 | |
What about using OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL) instead of OPENSSL_config()? |
|||
| msg287796 - (view) | Author: Gennady Kovalev (gik) | Date: 2017-02-14 20:14 | |
Is there any news? |
|||
| msg287797 - (view) | Author: Christian Heimes (christian.heimes) * |
Date: 2017-02-14 20:22 | |
I haven't started to design the new feature yet. Since it is going to be a new feature and feature freeze of 3.7 is 2018-01-29, I'm going to start working on new stuff around in April or May for PyCon. |
|||
| msg287798 - (view) | Author: Gennady Kovalev (gik) | Date: 2017-02-14 20:33 | |
Ok, thank you. |
|||
| History | |||
|---|---|---|---|
| Date | User | Action | Args |
| 2022-04-11 14:58:39 | admin | set | github: 72881 |
| 2018-07-31 22:18:46 | bryguy | set | nosy:
+ bryguy |
| 2018-02-26 08:52:36 | christian.heimes | set | versions: + Python 3.8, - Python 3.7 |
| 2017-02-14 20:33:36 | gik | set | messages: + msg287798 |
| 2017-02-14 20:22:27 | christian.heimes | set | messages: + msg287797 |
| 2017-02-14 20:14:16 | gik | set | messages: + msg287796 |
| 2016-12-23 20:47:17 | Andrea Grandi | set | nosy:
+ Andrea Grandi messages: + msg283903 |
| 2016-12-22 14:16:47 | christian.heimes | set | messages: + msg283842 |
| 2016-12-21 20:38:14 | gik | set | nosy:
+ gik messages: + msg283782 |
| 2016-11-15 11:01:35 | christian.heimes | set | versions: + Python 3.7 |
| 2016-11-15 11:01:28 | christian.heimes | create | |