Antoine Pitrou added the comment: > sha256(conn.getpeercert(True)) works until the cert gets e.g. more > SAN fields.
Indeed, that's simply comparing the certificate by binary value. At this point you don't even need a CA anymore, I guess :-) ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue18735> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
