# Two keys and certs signed by the same CA (for SNI tests)
SIGNED_CERTFILE = data_file("keycert3.pem")
SIGNED_CERTFILE2 = data_file("keycert4.pem")
-SIGNING_CA = data_file("pycacert.pem")
+# Same certificate as pycacert.pem, but without extra text in file
+SIGNING_CA = data_file("capath", "ceff1710.0")
+ # cert with all kinds of subject alt names
+ ALLSANFILE = data_file("allsans.pem")
REMOTE_HOST = "self-signed.pythontest.net"
-REMOTE_ROOT_CERT = data_file("selfsigned_pythontestdotnet.pem")
EMPTYCERT = data_file("nullcert.pem")
BADCERT = data_file("badcert.pem")
Library
-------
+ - Issue #27691: Fix ssl module's parsing of GEN_RID subject alternative name
+ fields in X.509 certs.
+
+- Issue #25761: Improved error reporting about truncated pickle data in
+ C implementation of unpickler. UnpicklingError is now raised instead of
+ AttributeError and ValueError in some cases.
+
+- Issue #26798: Add BLAKE2 (blake2b and blake2s) to hashlib.
+
+- Issue #25596: Optimized glob() and iglob() functions in the
+ glob module; they are now about 3--6 times faster.
+
+- Issue #27928: Add scrypt (password-based key derivation function) to
+ hashlib module (requires OpenSSL 1.1.0).
+
- Issue #27850: Remove 3DES from ssl module's default cipher list to counter
measure sweet32 attack (CVE-2016-2183).
projects / python / commitdiff