[Bug 1899878] Re: Python's test_ssl fails starting from Ubuntu 20.04
Dimitri John Ledkov
1899878 at bugs.launchpad.net
Fri Mar 12 14:22:06 UTC 2021
On SSLcontext, security callback has prototype
/* Security callback */
int (*sec_cb) (const SSL *s, const SSL_CTX *ctx, int op, int bits, int nid,
void *other, void *ex);
if one calls that function, with context passed in, "op" set to
SSL_SECOP_VERSION, "bits" set to zero, "nid" set to protocol version,
other set to NULL, and ex set to null => then the security callback will
tell us if at the current configuration a given protocol version is
acceptable.
This should work on OpenSSL 1.1.0+
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1899878
Title:
Python's test_ssl fails starting from Ubuntu 20.04
Status in openssl package in Ubuntu:
Incomplete
Bug description:
Please take a look at https://bugs.python.org/issue41561. Developers
who work on Python think that the issue is due to a change in Ubuntu
20.04 that is best described by
https://bugs.python.org/issue41561#msg378089:
"It sounds like a Debian/Ubuntu patch is breaking an assumption. Did
somebody report the bug with Debian/Ubuntu maintainers of OpenSSL
already? Fedora also configures OpenSSL with minimum protocol version
of TLS 1.2. The distribution does it in a slightly different way that
makes the restriction discoverable and that is compatible with
Python's test suite."
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1899878/+subscriptions
More information about the foundations-bugs
mailing list