Ticket #4655 enhancement new
function or method to construct an SSL context factory for clients that do not use a certificate from objects in twisted.internet.ssl
|Reported by:||glyph||Owned by:|
Description (last modified by glyph) (diff)
Right now, you can construct a CertificateOptions directly (using PyOpenSSL junk) or call PrivateCertificate.options(), which doesn't allow for much in the way of customization (you can't select the method, etc).
It should be possible to pass a list of Certificate objects for your CAs, and using some named constants for the 'method' that don't require you to import PyOpenSSL, so that we could have some alternate SSL implementation, at some point in the future.