(self)
| 1706 | 0 if IS_OPENSSL_3_0_0 else ssl.OP_LEGACY_SERVER_CONNECT) |
| 1707 | |
| 1708 | def test_create_default_context(self): |
| 1709 | ctx = ssl.create_default_context() |
| 1710 | |
| 1711 | self.assertEqual(ctx.protocol, ssl.PROTOCOL_TLS_CLIENT) |
| 1712 | self.assertEqual(ctx.verify_mode, ssl.CERT_REQUIRED) |
| 1713 | self.assertEqual(ctx.verify_flags & ssl.VERIFY_X509_PARTIAL_CHAIN, |
| 1714 | ssl.VERIFY_X509_PARTIAL_CHAIN) |
| 1715 | self.assertEqual(ctx.verify_flags & ssl.VERIFY_X509_STRICT, |
| 1716 | ssl.VERIFY_X509_STRICT) |
| 1717 | self.assertTrue(ctx.check_hostname) |
| 1718 | self._assert_context_options(ctx) |
| 1719 | |
| 1720 | with open(SIGNING_CA) as f: |
| 1721 | cadata = f.read() |
| 1722 | ctx = ssl.create_default_context(cafile=SIGNING_CA, capath=CAPATH, |
| 1723 | cadata=cadata) |
| 1724 | self.assertEqual(ctx.protocol, ssl.PROTOCOL_TLS_CLIENT) |
| 1725 | self.assertEqual(ctx.verify_mode, ssl.CERT_REQUIRED) |
| 1726 | self._assert_context_options(ctx) |
| 1727 | |
| 1728 | ctx = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH) |
| 1729 | self.assertEqual(ctx.protocol, ssl.PROTOCOL_TLS_SERVER) |
| 1730 | self.assertEqual(ctx.verify_mode, ssl.CERT_NONE) |
| 1731 | self._assert_context_options(ctx) |
| 1732 | |
| 1733 | def test__create_stdlib_context(self): |
| 1734 | ctx = ssl._create_stdlib_context() |
nothing calls this directly
no test coverage detected