Message105070
> I don't think we should use the openssl binary for anything. It may
> belong to a different version, and it may not be available (in
> particular on Windows).
Agreed.
> I don't understand the problem you are trying to solve. What exactly
> is it that will stop working on OpenSSL 1.0?
OpenSSL 1.0.0 disables SSLv2 by default, which means the protocol
combination tests give different results (for example, an SSLv23 client
will refuse talking to an SSLv2 server, because the client will attempt
an SSLv3 hello).
We need therefore to fix these tests, by differentiating their outcomes
depending on the OpenSSL version.
(trunk and py3k use a different approach: they manually enable SSLv2
ciphers in those tests, using the new "ciphers" argument, which makes
the behaviour consistent accross all OpenSSL versions) |
|
Date |
User |
Action |
Args |
2010-05-05 18:52:42 | pitrou | set | recipients:
+ pitrou, loewis, janssen, giampaolo.rodola, Arfrever |
2010-05-05 18:52:41 | pitrou | link | issue8629 messages |
2010-05-05 18:52:41 | pitrou | create | |
|