[New-bugs-announce] [issue18143] ssl.get_default_verify_paths()

Christian Heimes report at bugs.python.org
Wed Jun 5 17:44:20 CEST 2013

New submission from Christian Heimes:

The patch implements a get_default_verify_paths() function for the ssl module. It returns the env vars and paths that are used by openssl's set_default_verify_paths() to load CA certs from default locations. I think it makes a useful addition for debugging purposes.

On my system:

>>> import ssl
>>> ssl.get_default_verify_paths()
(None, '/usr/lib/ssl/certs')
>>> ssl.get_default_verify_paths(raw=True)
('SSL_CERT_FILE', '/usr/lib/ssl/cert.pem', 'SSL_CERT_DIR', '/usr/lib/ssl/certs')

SSL_CTX_set_default_verify_paths() first tries the env var. If the env var is set the second element is ignored.

files: sslverifypath.patch
keywords: patch
messages: 190669
nosy: christian.heimes, pitrou
priority: normal
severity: normal
stage: patch review
status: open
title: ssl.get_default_verify_paths()
type: enhancement
versions: Python 3.4
Added file: http://bugs.python.org/file30473/sslverifypath.patch

Python tracker <report at bugs.python.org>

More information about the New-bugs-announce mailing list