Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

add sha256 for fingerprint verification #540

merged 1 commit into from Jan 31, 2015


Copy link

@t-8ch t-8ch commented Jan 31, 2015

fixes #539

shazow added a commit that referenced this pull request Jan 31, 2015
add sha256 for fingerprint verification
@shazow shazow merged commit f450228 into urllib3:master Jan 31, 2015
Copy link

shazow commented Jan 31, 2015


shazow added a commit that referenced this pull request Jan 31, 2015
seocam pushed a commit to TracyWebTech/urllib3 that referenced this pull request Feb 5, 2015
jsonn pushed a commit to jsonn/pkgsrc that referenced this pull request Mar 10, 2015

2.5.3 (2015-02-24)


    Revert changes to our vendored certificate bundle. For more context see (#2455, #2456, and

2.5.2 (2015-02-23)

Features and Improvements

    Add sha256 fingerprint support. (urllib3/urllib3#540)
    Improve the performance of headers. (urllib3/urllib3#544)


    Copy pip’s import machinery. When downstream redistributors remove requests.packages.urllib3 the import machinery will continue to let those same symbols work. Example usage in requests’ documentation and 3rd-party libraries relying on the vendored copies of urllib3 will work without having to fallback to the system urllib3.
    Attempt to quote parts of the URL on redirect if unquoting and then quoting fails. (#2356)
    Fix filename type check for multipart form-data uploads. (#2411)
    Properly handle the case where a server issuing digest authentication challenges provides both auth and auth-int qop-values. (#2408)
    Fix a socket leak. (urllib3/urllib3#549)
    Fix multiple Set-Cookie headers properly. (urllib3/urllib3#534)
    Disable the built-in hostname verification. (urllib3/urllib3#526)
    Fix the behaviour of decoding an exhausted stream. (urllib3/urllib3#535)


    Pulled in an updated cacert.pem.
    Drop RC4 from the default cipher list. (urllib3/urllib3#551)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
None yet
None yet

Successfully merging this pull request may close these issues.

assert_fingerprint SHA256 support is missing
2 participants