blink1073 · blink1073 · Oct 4, 2023 · Oct 4, 2023 · Oct 4, 2023 · Oct 4, 2023
diff --git a/.github/workflows/tox.yml b/.github/workflows/tox.yml
@@ -15,6 +15,7 @@ jobs:
                     - {version: '3.9', env: py39}
                     - {version: '3.10', env: py310}
                     - {version: '3.11', env: py311}
+                    - {version: '3.11', env: py312}
                 test_mode: [0, 1]
         runs-on: ${{ matrix.os }}
         env:
@@ -35,7 +36,7 @@ jobs:
         strategy:
             matrix:
                 os: [ubuntu-latest]
-                python: ['3.8', '3.9', '3.10', '3.11']
+                python: ['3.8', '3.9', '3.10', '3.11', '3.12']
                 test: [pep8, bandit, docs]
         runs-on: ${{ matrix.os }}
         env:

diff --git a/kmip/services/kmip_client.py b/kmip/services/kmip_client.py
@@ -285,7 +285,8 @@
             six.reraise(*last_error)
 
     def _create_socket(self, sock):
-        self.socket = ssl.wrap_socket(
+        context = ssl.create_default_context()
+        self.socket = context.wrap_socket(
             sock,
             keyfile=self.keyfile,
             certfile=self.certfile,

diff --git a/kmip/services/server/server.py b/kmip/services/server/server.py
@@ -287,7 +287,8 @@
         for cipher in auth_suite_ciphers:
             self._logger.debug(cipher)
 
-        self._socket = ssl.wrap_socket(
+        context = ssl.create_default_context()
+        self._socket = context.wrap_socket(
             self._socket,
             keyfile=self.config.settings.get('key_path'),
             certfile=self.config.settings.get('certificate_path'),

diff --git a/kmip/tests/unit/services/server/test_server.py b/kmip/tests/unit/services/server/test_server.py
@@ -210,7 +210,7 @@ def test_start(self,
         # Test that in ideal cases no errors are generated and the right
         # log messages are.
         with mock.patch('socket.socket') as socket_mock:
-            with mock.patch('ssl.wrap_socket') as ssl_mock:
+            with mock.patch('ssl.SSLContext.wrap_socket') as ssl_mock:
                 socket_mock.return_value = a_mock
                 ssl_mock.return_value = b_mock
 
@@ -271,7 +271,7 @@ def test_start(self,
 
         # Test that a NetworkingError is generated if the socket bind fails.
         with mock.patch('socket.socket') as socket_mock:
-            with mock.patch('ssl.wrap_socket') as ssl_mock:
+            with mock.patch('ssl.SSLContext.wrap_socket') as ssl_mock:
                 socket_mock.return_value = a_mock
                 ssl_mock.return_value = b_mock