Loading...

XML

Word

Printable

JSON

Add optional support for using PyOpenSSL for TLS support, along with service_identity for hostname checking. This gives us two benefits:

Users of Python 2.7 versions older than 2.7.9 can use PyOpenSSL to get SNI support, allowing them to use the MongoDB Atlas Free Tier.
PyOpenSSL allows us to verify stapled OCSP responses for certificate revocation checking. OCSP stapling support is a new feature in MongoDB 4.4 and required by Let's Encrypt.

causes

PYTHON-2443 TypeError when using pyOpenSSL with a socket timeout of None

PYTHON-2128 Test failure - test_ssl.TestSSL.test_ssl_pem_passphrase

PYTHON-2117 python_full_version comparison fails due to poor environment marker support in older setuptools versions

is depended on by

PYTHON-2093 OCSP Support

PYTHON-2140 Test PyOpenSSL support on macOS

PYTHON-2149 Test PyOpenSSL support with MongoDB < 4.4

is related to

PYTHON-2148 Test PyOpenSSL support on Windows

PYTHON-4491 Add option to prefer stdlib ssl over pyopenssl

PYTHON-2163 Improve diagnostics of PyOpenSSL connection errors

(1 is depended on by, 3 is related to)