Python Tutorials - Herong's Tutorial Examples

∟Communicating with HTTPS Servers

∟Use pyOpenSSL for HTTPS Connection

This section provides a tutorial example on using the OpenSSL.SSL module to create an HTTPS connection.

If you want to control the HTTPS connection at a lower level, you can use the OpenSSL.SSL module provided in the pyOpenSSL package as shown in this Python example script:

#- pyOpenSSL-SSL-test.py
#- Copyright (c) 2025 HerongYang.com. All Rights Reserved.

import sys
host = sys.argv[1]

from OpenSSL import SSL
context = SSL.Context(SSL.TLSv1_2_METHOD)

import socket
sock = socket.socket()

conn = SSL.Connection(context, sock)
conn.connect((host, 443))
conn.do_handshake()

print("\nCipher info:")
print(conn.get_cipher_name())
print(conn.get_cipher_version())
print(conn.get_cipher_bits())

print("\nServer certificate info:")
cert = conn.get_peer_certificate()
print("Subject = "+cert.get_subject().CN)
print("Issuer = "+cert.get_issuer().CN)

print("\nServer certificate chain:")
chain = conn.get_peer_cert_chain()
i = 0
for cert in chain:
  i += 1
  print("Cert "+str(i)+": Subject = "+cert.get_subject().CN)
  print("Cert "+str(i)+": Issuer = "+cert.get_issuer().CN)

request = b"GET /\r\nHost: example.com\r\nConnection: close\r\n\r\n"
conn.sendall(request)

print("\nServer response:")
res = conn.recv(64)
print(res)

conn.shutdown()
conn.close()

There are several OpenSSL.SSL methods used in this script:

• context = SSL.Context(SSL.TLSv1_2_METHOD) - Creates a SSL.Context object with TLS 1.2 protocol.
• conn = SSL.Connection(context, sock) - Creates a SSL.Connection object with a SSL.Context object and a default socket.
• conn.connect((host, 443)) - Sets up the SSL.Connection for a given remote host and port.
• conn.do_handshake() - Performs the SSL handshake with the remote server.
• conn.get_cipher_name(), conn.get_cipher_version(), and conn.get_cipher_bits() - Retrieves the name, version and key size of the cipher used in the SSL.Connection.
• conn.conn.get_peer_certificate() and conn.get_peer_cert_chain - Retrieves the server certificate and the certificate chain used to verify the server certificate.

Here is what I get from the script on my old Ubuntu computer. You may need to install the pyOpenSSL package before running the script.

herong$ python --version 
  Python 2.7.10

herong$ pip install pyopenssl 
  Successfully installed cffi-1.15.1 cryptography-3.3.2 
    enum34-1.1.10 ipaddress-1.0.23 pycparser-2.21 
    pyopenssl-21.0.0 six-1.17.0

herong$ python pyOpenSSL-SSL-test.py www.google.com

  Cipher info:
  ECDHE-RSA-CHACHA20-POLY1305
  TLSv1.2
  256

  Server certificate info:
  Subject = www.google.com
  Issuer = WR2

  Server certificate chain:
  Cert 1: Subject = www.google.com
  Cert 1: Issuer = WR2
  Cert 2: Subject = WR2
  Cert 2: Issuer = GTS Root R1
  Cert 3: Subject = GTS Root R1
  Cert 3: Issuer = GlobalSign Root CA

  Server response:
  HTTP/1.0 200 OK
  Date: Sat, 02 May 2026 19:37:58 GMT
  Expires: -

Table of Contents

 About This Book

 Running Python Code Online

 Python on macOS Computers

 Python on Linux Computers

 Built-in Data Types

 Variables, Operations and Expressions

 Statements - Execution Units

 Function Statement and Function Call

 Iterators and Generators

 List, Set and Dictionary Comprehensions

 Classes and Instances

 Modules and Module Files

 Packages and Package Directories

 "sys" and "os" Modules

 "pathlib" - Object-Oriented Filesystem Paths

 "pip" - Package Installer for Python

 SciPy.org - Python Libraries for Science

 pandas - Data Analysis and Manipulation

►Communicating with HTTPS Servers

 http.client for HTTPS Connection

 Modifying SSL Parameters

 Retrieving SSLSocket Information

 Dumping Server Certificate

►Use pyOpenSSL for HTTPS Connection

 tinyec - Tiny Library for ECC

 Generating EC Public-Private Keys

 Anaconda - Python Environment Manager

 Jupyter Notebook and JupyterLab

 References

 Full Version in PDF/EPUB

Use pyOpenSSL for HTTPS Connection - Updated in 2026, by Herong Yang