blob: e1fb163d55d599c9bb65c8d52fff0e86b6c50de9 (
plain)
1
2
3
4
5
6
7
|
Remove the :func:`ssl.wrap_socket` function, deprecated in Python 3.7: instead,
create a :class:`ssl.SSLContext` object and call its
:class:`ssl.SSLContext.wrap_socket` method. Any package that still uses
:func:`ssl.wrap_socket` is broken and insecure. The function neither sends a
SNI TLS extension nor validates server hostname. Code is subject to `CWE-295
<https://cwe.mitre.org/data/definitions/295.html>`_: Improper Certificate
Validation. Patch by Victor Stinner.
|
GitWeb
