From 4f2a0a8870bde7dc6f6069abb47e37a3fb71c540 Mon Sep 17 00:00:00 2001 From: Antoine Pitrou Date: Sat, 31 Jul 2010 18:08:33 +0000 Subject: [PATCH] Add ssl changes to the 3.2 "what's new". --- Doc/whatsnew/3.2.rst | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) diff --git a/Doc/whatsnew/3.2.rst b/Doc/whatsnew/3.2.rst index f2d50b5108..d76599b37a 100644 --- a/Doc/whatsnew/3.2.rst +++ b/Doc/whatsnew/3.2.rst @@ -69,6 +69,37 @@ New, Improved, and Deprecated Modules * The :class:`ftplib.FTP` class now supports the context manager protocol (Contributed by Tarek Ziadé and Giampaolo Rodolà; :issue:`4972`.) +* The :mod:`ssl` module has a new class, :class:`~ssl.SSLContext` which + serves as a container for various persistent SSL data, such as protocol + settings, certificates, private keys, and various other options. + The :meth:`~ssl.SSLContext.wrap_socket` method allows to create an + SSL socket from such an SSL context. + (Added by Antoine Pitrou; :issue:`8550`.) + + The :func:`ssl.wrap_socket` constructor function now takes a + *ciphers* argument that's a string listing the encryption algorithms + to be allowed; the format of the string is described + `in the OpenSSL documentation + `__. + (Added by Antoine Pitrou; :issue:`8322`.) + + Various options have been added to the :mod:`ssl` module, such as + :data:`~ssl.OP_NO_SSLv2` which allows to force disabling of the insecure + and obsolete SSLv2 protocol. + (Added by Antoine Pitrou; :issue:`4870`.) + + Another change makes the extension load all of OpenSSL's ciphers and + digest algorithms so that they're all available. Some SSL + certificates couldn't be verified, reporting an "unknown algorithm" + error. (Reported by Beda Kosata, and fixed by Antoine Pitrou; + :issue:`8484`.) + + The version of OpenSSL being used is now available as the module + attributes :data:`ssl.OPENSSL_VERSION` (a string), + :data:`ssl.OPENSSL_VERSION_INFO` (a 5-tuple), and + :data:`ssl.OPENSSL_VERSION_NUMBER` (an integer). (Added by Antoine + Pitrou; :issue:`8321`.) + * The previously deprecated :func:`string.maketrans` function has been removed in favor of the static methods, :meth:`bytes.maketrans` and :meth:`bytearray.maketrans`. This change solves the confusion around which -- 2.40.0