Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Unresolved
Priority: Minor - P4
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Epic Link:
Minimum Dependency Tests
Confidence Status:
None

Documentation Changes Summary:

Hide

1. What would you like to communicate to the user about this feature?
2. Would you like the user to see examples of the syntax and/or executable code and its output?
3. Which versions of the driver/connector does this apply to?

Show
1. What would you like to communicate to the user about this feature? 2. Would you like the user to see examples of the syntax and/or executable code and its output? 3. Which versions of the driver/connector does this apply to?

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Link:
None
Goal Name(s):
None

~~PYTHON-2147~~ relies on get_verified_chain which was added in pyopenssl 20. We should bump the minimum pyopenssl version req to >=20 and remove the fallback logic for trusted_ca_certs when get_verified_chain is unavailable.

We should double check the OpenSSL compatibility of pyopenssl>=20 to make sure we're not loosing platform support by upgrading. See https://www.pyopenssl.org/en/stable/changelog.html

related to

PYTHON-3152 Test Against Minimum Supported Library Versions

In Progress

PYTHON-2147 OCSP callback should use the verified peer certificate chain to find the cert issuer

Closed

Assignee:: Unassigned
Reporter:: Shane Harvey
Votes:: 0 Vote for this issue
Watchers:: 3 Start watching this issue

Created:: Feb 16 2022 11:29:48 PM UTC
Updated:: Sep 19 2025 11:07:59 AM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates