Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support on winhttp #641

Open
phoebusm opened this issue Mar 5, 2024 · 1 comment
Open

Support on winhttp #641

phoebusm opened this issue Mar 5, 2024 · 1 comment

Comments

@phoebusm
Copy link

phoebusm commented Mar 5, 2024
edited

Hello I am trying to incorporate trustme in the CA SSL verification testing in a opensourced project. Experience on Linux is good but run into error with winhttp:
Send request failed: The certificate authority is invalid or incorrect
I googled but could not find any evidence explicitly suggesting the trustm support on winhttp. So I wonder how is it?
@pquentin
Copy link
Member

pquentin commented Mar 5, 2024

Hello! I'm not familiar with WinHTTP. If you figure out why it considers the CA is invalid, then we can fix it. The same way we fixed OpenSSL support on Windows by "only" using 3000 as the default expiry date:

trustme/src/trustme/__init__.py

Lines 33 to 38 in dd106e4

# Default certificate expiry date:
# OpenSSL on Windows fails if you try to give it a date after
# ~3001-01-19:
# https://github.com/pyca/cryptography/issues/3194
DEFAULT_EXPIRY = datetime.datetime(3000, 1, 1)
DEFAULT_NOT_BEFORE = datetime.datetime(2000, 1, 1)

@phoebusm phoebusm mentioned this issue Mar 5, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pquentin @phoebusm