Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Unresolved
Priority: Minor - P4
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Confidence Status:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

~~PYTHON-2147~~ relies on get_verified_chain which was added in pyopenssl 20. We should bump the minimum pyopenssl version req to >=20 and remove the fallback logic for trusted_ca_certs when get_verified_chain is unavailable.

We should double check the OpenSSL compatibility of pyopenssl>=20 to make sure we're not loosing platform support by upgrading. See https://www.pyopenssl.org/en/stable/changelog.html

related to

PYTHON-2147 OCSP callback should use the verified peer certificate chain to find the cert issuer

Closed

PYTHON-3152 Test Against Minimum Supported Library Versions

Backlog

Assignee:: Unassigned
Reporter:: Shane Harvey
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Feb 16 2022 11:29:48 PM UTC
Updated:: Mar 31 2022 03:11:48 AM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates