-
Type:
New Feature
-
Resolution: Fixed
-
Priority:
Major - P3
-
Affects Version/s: None
-
Component/s: None
-
Labels:None
Add optional support for using PyOpenSSL for TLS support, along with service_identity for hostname checking. This gives us two benefits:
- Users of Python 2.7 versions older than 2.7.9 can use PyOpenSSL to get SNI support, allowing them to use the MongoDB Atlas Free Tier.
- PyOpenSSL allows us to verify stapled OCSP responses for certificate revocation checking. OCSP stapling support is a new feature in MongoDB 4.4 and required by Let's Encrypt.
- causes
-
PYTHON-2443 TypeError when using pyOpenSSL with a socket timeout of None
-
- Closed
-
-
-
- Closed
-
-
-
- Closed
-
- is depended on by
-
PYTHON-2093 OCSP Support
-
- Closed
-
-
-
- Closed
-
-
-
- Closed
-
- is related to
-
-
- Closed
-
-
PYTHON-2163 Improve diagnostics of PyOpenSSL connection errors
-
- Closed
-