Add support for certificate key file passphrases

The current use of `ssl.wrap_socket` in the client/server does not support passphrase-protected key files, which are commonly used for increased security. Update PyKMIP `ssl` use to support passphrase-protected key files.

This will likely involve migrating away from `ssl.wrap_socket` (which is technically deprecated) toward the newer `SSLContext.wrap_socket` implementation. See the following for more detail:

- [ssl.wrap_socket](https://docs.python.org/3/library/ssl.html#ssl.wrap_socket)
- [SSLContext.wrap_socket](https://docs.python.org/3/library/ssl.html#ssl.SSLContext.wrap_socket)
- [SSLContext.load_cert_chain](https://docs.python.org/3/library/ssl.html#ssl.SSLContext.load_cert_chain)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add support for certificate key file passphrases #588

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add support for certificate key file passphrases #588

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions