granicus.if.org Git - python/commit

bpo-31453: Add setter for min/max protocol version (GH-5259)

OpenSSL 1.1 has introduced a new API to set the minimum and maximum
supported protocol version. The API is easier to use than the old
OP_NO_TLS1 option flags, too.

Since OpenSSL has no call to set minimum version to highest supported,
the implementation emulate maximum_version = MINIMUM_SUPPORTED and
minimum_version = MAXIMUM_SUPPORTED by figuring out the minumum and
maximum supported version at compile time.

Signed-off-by: Christian Heimes <christian@python.org>
(cherry picked from commit 698dde16f60729d9e3f53c23a4ddb8e5ffe818bf)

Co-authored-by: Christian Heimes <christian@python.org>

author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>
	Tue, 27 Feb 2018 11:41:04 +0000 (03:41 -0800)
committer	GitHub <noreply@github.com>
	Tue, 27 Feb 2018 11:41:04 +0000 (03:41 -0800)
commit	4c842b09209ccf1b4f853106b1f58bb888da02ef
tree	9390478224d3e0ca976edf471790831c14c1a303	tree \| snapshot
parent	89c2051a554d2053ac87b0adbf11ed0f1bb65db3	commit \| diff

Doc/library/ssl.rst		diff \| blob \| history
Doc/whatsnew/3.7.rst		diff \| blob \| history
Lib/ssl.py		diff \| blob \| history
Lib/test/test_ssl.py		diff \| blob \| history
Misc/NEWS.d/next/Library/2018-01-21-15-01-50.bpo-31453.cZiZBe.rst	[new file with mode: 0644]	blob
Modules/_ssl.c		diff \| blob \| history