mirrors/github.com_openSUSE_osc
1
0
Fork 0
mirror of https://github.com/openSUSE/osc.git synced 2025-08-21 14:08:52 +02:00
Code Activity

Mute ssl/tls deprecation warnings

Browse Source 
ssl.OP_NO_SSLv2 - removed, because it's deprecated since py3.6
ssl.OP_NO_SSLv3 - removed, because it's deprecated since py3.6
ssl.OP_NO_TLSv1 - enabled only on py3.6, because it's deprecated since py3.7
ssl.OP_NO_TLSv1_1 - enabled only on py3.6, because it's deprecated since py3.7
This commit is contained in:
Daniel Mach
2022-10-13 15:15:04 +02:00
parent ca744aa7d7
commit 8cac2e55c0
1 changed files with 9 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
osc/oscssl.py
View File

@@ -28,10 +28,15 @@ def create_ssl_context():
but we restrict crypto even more. but we restrict crypto even more.
""" """
ssl_context = create_urllib3_context() ssl_context = create_urllib3_context()
ssl_context.options |= ssl.OP_NO_SSLv2 # we consider anything older than TLSv1_2 insecure
ssl_context.options |= ssl.OP_NO_SSLv3 if sys.version_info <= (3, 6):
ssl_context.options |= ssl.OP_NO_TLSv1 # deprecated since py3.7
ssl_context.options |= ssl.OP_NO_TLSv1_1 ssl_context.options |= ssl.OP_NO_TLSv1
ssl_context.options |= ssl.OP_NO_TLSv1_1
else:
# raise minimum version if too low
if ssl_context.minimum_version < ssl.TLSVersion.TLSv1_2:
ssl_context.minimum_version = ssl.TLSVersion.TLSv1_2
return ssl_context return ssl_context