This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author underrun
Recipients christian.heimes, mpb, r.david.murray, underrun
Date 2013-07-22.22:21:34
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1374531694.67.0.474439921575.issue18293@psf.upfronthosting.co.za>
In-reply-to
Content 
Custom cert validation may make sense in edge cases, so this looks interesting.

But I got here looking to file a bug on the returning empty dict from SSLContext.getpeercert - I don't feel like that makes sense. Its not like a peer cert doesn't exist just because it doesn't pass verification. 

And I know I can get the binary DER cert, but then I need to figure out how to parse it myself? pyasn1 makes me cry. 

It would be really nice if we could get the decoded-into-dict peer cert even when verification fails or when CERT_NONE is set. If it isn't possible (or advisable) for getpeercert to return the dict, exposing cert decoder would be really useful.

Is this related enough to this request or should I file a separate issue?
History
Date User Action Args
2013-07-22 22:21:34underrunsetrecipients: + underrun, christian.heimes, r.david.murray, mpb
2013-07-22 22:21:34underrunsetmessageid: <1374531694.67.0.474439921575.issue18293@psf.upfronthosting.co.za>
2013-07-22 22:21:34underrunlinkissue18293 messages
2013-07-22 22:21:34underruncreate