Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 3.11
Affects Version/s: None
Component/s: None
Labels:
- 4.4-release-support
- driver-current-quarter

Epic Link:
Python MongoDB 4.4 Support
Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

This ticket depends on ~~PYTHON-2040~~, which adds PyOpenSSL as an alternative TLS provider. Python's standard library ssl module provides no support for stapled OCSP responses, only parsing extensions for OCSP URIs. We're going to support OCSP, stapling and must-staple. OCSP support will be optional, enabled through the use of an "ocsp" extra. Feature support will also add dependencies on requests (to make OCSP requests) and cryptography (to create OCSP requests and verify OCSP responses, stapled or otherwise). Cryptography is already a dependency of PyOpenSSL, and our own pymongocrypt package.

depends on

PYTHON-2040 Support PyOpenSSL

Closed

is depended on by

DRIVERS-704 OCSP Support

Development Complete

PYTHON-2161 Add OCSP URI Option

Closed

PYTHON-2132 Cache OCSP responses

Closed

PYTHON-2144 Test OCSP support on macOS and Windows

Closed

is related to

PYTHON-2171 Test failure - test-ocsp-valid-cert-server-staples

Closed

PYTHON-2147 OCSP callback should use the verified peer certificate chain to find the cert issuer

Closed

PYTHON-2280 Investigate slow OCSP endpoint checks on Windows

Closed

(3 is related to)

Assignee:: Bernie Hackett
Reporter:: Esha Bhargava
Votes:: 0 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: Oct 23 2019 06:34:50 PM UTC
Updated:: Oct 29 2023 02:29:51 AM UTC
Resolved:: Mar 09 2020 08:22:36 PM UTC

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates