subject:"\[issue28191\] Support RFC4985 SRVName in SAN name"

[issue28191] Support RFC4985 SRVName in SAN name

2017-09-06 Thread Christian Heimes


Christian Heimes added the comment:

FYI, I opened an upstream PR in OpenSSL to add SRVName: 
https://github.com/openssl/openssl/pull/4342

--

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue28191] Support RFC4985 SRVName in SAN name

2017-09-06 Thread Christian Heimes


Christian Heimes added the comment:

In the future, hostname matching will be handled by OpenSSL. Let's not 
over-complicate our implementation.

--
resolution:  -> postponed
stage: patch review -> resolved
status: open -> closed

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue28191] Support RFC4985 SRVName in SAN name

2016-09-17 Thread Christian Heimes


Changes by Christian Heimes :


--
keywords: +patch
Added file: http://bugs.python.org/file44722/Add-RFC4985-SRVName-to-SAN.patch

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue28191] Support RFC4985 SRVName in SAN name

2016-09-17 Thread Christian Heimes


New submission from Christian Heimes:

The standard subject alternative DNS name contains only a relationship between 
a cert and a host name. A host may have multiple services like HTTPS web 
server, IMAP server, mail servers etc. https://tools.ietf.org/html/rfc4985 
defines a mechanism to define a relationship between a X.509 cert, a DNS name 
and a service, e.g. _https.www.example.org for service https on www.example.org.

OpenSSL is not yet able to convert a RFC4985 SRVName to a string. I have a 
patch, https://github.com/tiran/cpython/commits/feature/ssl_srvname

--
assignee: christian.heimes
components: SSL
messages: 276810
nosy: christian.heimes
priority: normal
severity: normal
stage: patch review
status: open
title: Support RFC4985 SRVName in SAN name
type: security
versions: Python 3.6, Python 3.7

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue28191] Support RFC4985 SRVName in SAN name

[issue28191] Support RFC4985 SRVName in SAN name

[issue28191] Support RFC4985 SRVName in SAN name

[issue28191] Support RFC4985 SRVName in SAN name

4 matches

Site Navigation

Mail list logo

Footer information