|
|
Subscribe / Log in / New account

Python 3 adoption

Python 3 adoption

Posted Apr 16, 2015 8:23 UTC (Thu) by Cyberax (✭ supporter ✭, #52523)
In reply to: Python 3 adoption by corbet
Parent article: Python 3 adoption

> ...and without it somebody else would have called them complete idiots for leaving an apparently insecure situation in place.
It was NOT a binary decision.

It was perfectly possible to write a small patch to add validation by default and allow to pass a custom CA-store, without breaking any existing code. It would have required a couple of dirty hacks inside the library and possibly some code duplication to add support for SNI, but it was entirely doable.

Python maintainers instead backported the whole SSL infrastructure from Python 3 which has a lot of changes inside of it. Here's the patch: https://bugs.python.org/file36423/ssl-backport.diff - it's almost 13000 lines long.

to post comments

Python 3 adoption

Posted Apr 16, 2015 8:31 UTC (Thu) by daniels (subscriber, #16193) [Link]

While we're laying down the grounds for when personal abuse of free software developers is acceptable, here's mine: never.


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds