[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Christian Heimes added the comment: My issue #32609 provides a better implementation. -- resolution: -> duplicate stage: -> resolved status: open -> closed superseder: -> Add setter and getter for min/max protocol ersion ___

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Christian Heimes added the comment: PoC implementation: from enum import Enum import ssl OP_NO_TLSv1_3 = getattr(ssl, 'OP_NO_TLSv1_3', 0) OP_NO_FLAGS = [ ssl.OP_NO_SSLv2, ssl.OP_NO_SSLv3, ssl.OP_NO_TLSv1, ssl.OP_NO_TLSv1_1, ssl.OP_NO_TLSv1_2, OP_NO_TLSv1_3 ]

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Changes by Giampaolo Rodola' : -- nosy: -giampaolo.rodola ___ Python tracker ___ ___

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

Changes by Christian Heimes : -- assignee: -> christian.heimes components: +SSL ___ Python tracker ___

[issue27876] Add SSLContext.set_version_range(minver, maxver=None)

New submission from Christian Heimes: OpenSSL 1.1 has deprecated all version specific TLS/SSL methods in favor of auto-negotiation (formerly known as SSLv23). It also introduced two macros to set the minimal and maximum TLS version with SSL_CTX_set_min_proto_version() and