Skip to content

Work on ssl #956

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 8 commits into from
Sep 22, 2024
Merged

Work on ssl #956

Changes from 4 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
d4192a4
Work on ssl
timmy0123 Sep 8, 2024
d44a0b2
Apply suggestion
timmy0123 Sep 10, 2024
7fea1dc
Apply suggestions from code review
timmy0123 Sep 10, 2024
158bad5
Apply suggestion
timmy0123 Sep 10, 2024
7ba8496
Apply suggestion
timmy0123 Sep 22, 2024
8ceacde
Apply suggestion
timmy0123 Sep 22, 2024
fc5d0fb
Apply suggestion
timmy0123 Sep 22, 2024
38c1267
Merge branch '3.12' into ssl
mattwang44 Sep 22, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 33 additions & 5 deletions library/ssl.po
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ msgstr ""
"Project-Id-Version: Python 3.12\n"
"Report-Msgid-Bugs-To: \n"
"POT-Creation-Date: 2024-08-04 00:03+0000\n"
"PO-Revision-Date: 2024-08-28 00:43+0800\n"
"PO-Revision-Date: 2024-09-11 00:48+0800\n"
"Last-Translator: Adrian Liaw <adrianliaw2000@gmail.com>\n"
"Language-Team: Chinese - TAIWAN (https://github.com/python/python-docs-zh-"
"tw)\n"
Expand Down Expand Up @@ -251,9 +251,9 @@ msgid ""
msgstr ""
"如果你發現某些舊的客戶端或伺服器常適用此函式建立的 :class:`SSLContext` 連線"
"時,收到 \"Protocol or cipher suite mismatch\" 錯誤,這可能是因為他們的系統僅"
"支援 SSL3.0,然而 SSL3.0 已被此函數用 :data:`OP_NO_SSLv3` 排除。目前廣泛認為 "
"支援 SSL3.0,然而 SSL3.0 已被此函式用 :data:`OP_NO_SSLv3` 排除。目前廣泛認為 "
"SSL3.0 已經\\ `被完全破解 <https://en.wikipedia.org/wiki/POODLE>`_。如果你仍"
"然希望在允許 SSL3.0 連線的情況下使用此函數,可以使用下面的方法: ::"
"然希望在允許 SSL3.0 連線的情況下使用此函式,可以使用下面的方法: ::"

#: ../../library/ssl.rst:177
msgid "RC4 was dropped from the default cipher string."
Expand Down Expand Up @@ -1471,29 +1471,38 @@ msgid ""
"active SSL connection, i.e. the handshake was completed and :meth:`SSLSocket."
"unwrap` was not called."
msgstr ""
":meth:`~SSLSocket.read` 和 :meth:`~SSLSocket.write` 方法為低階層的方法,負責"
"讀取和寫入未加密的應用層資料,並將其加密/解密為加密的寫入層資料。這些方法需要"
"一個已建立的 SSL 連接,即握手已完成,且未呼叫 :meth:`SSLSocket.unwrap`。"

#: ../../library/ssl.rst:1123
msgid ""
"Normally you should use the socket API methods like :meth:`~socket.socket."
"recv` and :meth:`~socket.socket.send` instead of these methods."
msgstr ""
"通常你應該使用像 :meth:`~socket.socket.recv` 和 :meth:`~socket.socket.send` "
"這樣的 socket API 方法,而不是直接使用這些方法。"

#: ../../library/ssl.rst:1129
msgid "Perform the SSL setup handshake."
msgstr ""
msgstr "執行 SSL 設定握手。"

#: ../../library/ssl.rst:1131
msgid ""
"The handshake method also performs :func:`match_hostname` when the :attr:"
"`~SSLContext.check_hostname` attribute of the socket's :attr:`~SSLSocket."
"context` is true."
msgstr ""
"當 socket 的 :attr:`~SSLSocket.context` 的 :attr:`~SSLContext."
"check_hostname` 屬性質為 true 時,握手方法也會執行 :func:`match_hostname`。"

#: ../../library/ssl.rst:1136
msgid ""
"The socket timeout is no longer reset each time bytes are received or sent. "
"The socket timeout is now the maximum total duration of the handshake."
msgstr ""
"Socket 超時時間已經不會在每次接收或傳送位元組時重置。現在,超時時間是握手過程"
"的最大總持續時間。"

#: ../../library/ssl.rst:1140
msgid ""
Expand All @@ -1502,13 +1511,18 @@ msgid ""
"or IP address, the handshake is aborted early and a TLS alert message is "
"sent to the peer."
msgstr ""
"在握手過程中,OpenSSL 會去配對主機名稱或 IP 地址。已不再使用 :func:"
"`match_hostname` 函式。如果 OpenSSL 拒絕某個主機名稱或 IP 地址,握手將會提前"
"中止,並向對方發送 TLS 警報訊息。"

#: ../../library/ssl.rst:1148
msgid ""
"If there is no certificate for the peer on the other end of the connection, "
"return ``None``. If the SSL handshake hasn't been done yet, raise :exc:"
"`ValueError`."
msgstr ""
"如果連線端沒有證書,則回傳 ``None``。如果 SSL 握手尚未完成,則引發 :exc:"
"`ValueError`。"

#: ../../library/ssl.rst:1152
msgid ""
Expand All @@ -1521,6 +1535,11 @@ msgid ""
"of the *Subject Alternative Name* extension (see :rfc:`3280`), there will "
"also be a ``subjectAltName`` key in the dictionary."
msgstr ""
"如果 ``binary_form`` 參數為 :const:`False`,且從對端接收到證書,則該方法回傳"
"一個 :class:`dict` 實例。如果證書未被驗證,則該字典為空。若證書已被驗證,則返"
"回的字典將包含數個鍵值,包括 ``subject`` (證書所簽發的對象) 和 ``issuer`` (簽"
"發證書的主體)。如果證書中包含 *Subject Alternative Name* 擴充 (參考\\ :rfc:"
"`3280`\\ ),字典中還會有一個 ``subjectAltName`` 鍵。"

#: ../../library/ssl.rst:1161
msgid ""
Expand All @@ -1529,6 +1548,9 @@ msgid ""
"structure for the respective fields, and each RDN is a sequence of name-"
"value pairs. Here is a real-world example::"
msgstr ""
"``subject`` 和 ``issuer`` 欄位欄位是包含相對識別名稱 (relative distinguished "
"names, RDNs) 序列的元組,這些 RDN 來自證書資料結構中的相應欄位。每個 RDN 都是"
"一組名稱與值的對。以下是現實中的範例: ::"

#: ../../library/ssl.rst:1185
msgid ""
Expand All @@ -1538,12 +1560,15 @@ msgid ""
"certificate. Whether the peer provides a certificate depends on the SSL "
"socket's role:"
msgstr ""
"如果 ``binary_form`` 參數設定為 :const:`True`,且對端提供了證書,則該方法會"
"以 DER 編碼形式 將整個證書以位元組序列形式回傳。如果對端未提供證書,則回傳 :"
"const:`None`。對端是否提供證書取決於 SSL socket 的腳色:"

#: ../../library/ssl.rst:1191
msgid ""
"for a client SSL socket, the server will always provide a certificate, "
"regardless of whether validation was required;"
msgstr ""
msgstr "對於客戶端 SSL socket,伺服器將永遠提供證書,無論是否需要進行驗證。"

#: ../../library/ssl.rst:1194
msgid ""
Expand All @@ -1552,6 +1577,9 @@ msgid ""
"`None` if you used :const:`CERT_NONE` (rather than :const:`CERT_OPTIONAL` "
"or :const:`CERT_REQUIRED`)."
msgstr ""
"對於伺服器 SSL socket,客戶端僅在伺服器要求時才會提供證書;因此,如果你使用的"
"是 :const:`CERT_NONE` (而非 :const:`CERT_OPTIONAL` 或 :const:"
"`CERT_REQUIRED`),則 :meth:`getpeercert` 會回傳 :const:`None`。"

#: ../../library/ssl.rst:1199
msgid "See also :attr:`SSLContext.check_hostname`."
Expand Down