New submission from Christian Heimes: The patch implements OCSP and CRL distribution point access for getpeercert(). I'll add tests and doc updates later.
Output for https://info.pca.dfn.de/ {'OCSP': ('http://ocsp.pca.dfn.de/OCSP-Server/OCSP',), 'crlDistributionPoints': ('http://cdp1.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl', 'http://cdp2.pca.dfn.de/global-services-ca/pub/crl/cacrl.crl'), 'issuer': ((('countryName', 'DE'),), (('organizationName', 'DFN-Verein'),), (('organizationalUnitName', 'DFN-PKI'),), (('commonName', 'DFN-Verein CA Services'),)), 'notAfter': 'Oct 18 09:07:09 2014 GMT', 'notBefore': 'Oct 19 09:07:09 2009 GMT', 'serialNumber': '0EFBA9CC', 'subject': ((('countryName', 'DE'),), (('organizationName', 'DFN-Verein'),), (('organizationalUnitName', 'DFN-PKI'),), (('commonName', 'info.pca.dfn.de'),)), 'version': 3} ---------- components: Extension Modules files: ssl_ocsp_crldp.patch keywords: patch messages: 192426 nosy: christian.heimes, pitrou priority: normal severity: normal stage: patch review status: open title: SSLSocket.getpeercert(): OCSP and CRL DP URIs type: enhancement versions: Python 3.4 Added file: http://bugs.python.org/file30810/ssl_ocsp_crldp.patch _______________________________________ Python tracker <[email protected]> <http://bugs.python.org/issue18379> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
