Add better certificate handling.

Certificate host names are now matched (using DNS, SRV, XMPPAddr, and Common Name), along with expiration check. Scheduled event to reset the stream once the server's cert expires. Handle invalid cert trust chains gracefully now.
2012-05-22 03:56:06 -07:00
parent 678e529efc
commit f49311ef9e
6 changed files with 245 additions and 13 deletions
--- a/setup.py
+++ b/setup.py
@@ -112,7 +112,7 @@ setup(
    license      = 'MIT',
    platforms    = [ 'any' ],
    packages     = packages,
-    requires     = [ 'dnspython' ],
+    requires     = [ 'dnspython', 'pyasn1', 'pyasn1_modules' ],
    classifiers  = CLASSIFIERS,
    cmdclass     = {'test': TestCommand}
 )