New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
gh-105293: Do not call SSL_CTX_set_session_id_context on client side SSL context #105295
Conversation
Most changes to Python require a NEWS entry. Please add it using the blurb_it web app or the blurb command-line tool. |
For back-compatibility, possibly |
It sounds like that makes sense. go for it in this PR and we'll take a look. add some form of news entry once you've done that as well. |
be6db2e
to
19c2192
Compare
Maybe I should just remove the call to Edit: although doing it at the context level will be slightly cleaner once the deprecated methods are removed... |
… side SSL context Openssl states this is a "server side only" operation. Calling this on a client side socket can result in unexpected behavior
19c2192
to
de37021
Compare
@gpshead I've updated this to only call |
… side SSL context (python#105295) * pythongh-105293: Do not call SSL_CTX_set_session_id_context on client side SSL context Openssl states this is a "server side only" operation. Calling this on a client side socket can result in unexpected behavior * Add news entry on SSL "set session id context" changes
SSL_CTX_set_session_id_context
on client side SSL context #105293