mirrors/cpython
1
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-11-20 02:50:14 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10

bpo-40849: Expose X509_V_FLAG_PARTIAL_CHAIN ssl flag (GH-20463)

Browse source 
This short PR exposes an openssl flag that  wasn't exposed. I've also updated to doc to reflect the change. It's heavily inspired by 990fcaac3c.
This commit is contained in:
l0x 2021-04-19 13:51:18 +02:00 committed by GitHub
parent d37b74f341
commit 64d975202f
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 18 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

11
Doc/library/ssl.rst
View file

@ -650,6 +650,17 @@ Constants
.. versionadded:: 3.4.4
.. data:: VERIFY_X509_PARTIAL_CHAIN
Possible value for :attr:`SSLContext.verify_flags`. It instructs OpenSSL to
accept intermediate CAs in the trust store to be treated as trust-anchors,
in the same way as the self-signed root CA certificates. This makes it
possible to trust certificates issued by an intermediate CA without having
to trust its ancestor root CA.
.. versionadded:: 3.10
.. class:: VerifyFlags
:class:`enum.IntFlag` collection of VERIFY_* constants.