Message 291928 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	vstinner
Recipients	christian.heimes, gut, vstinner
Date	2017-04-20.01:09:35
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1492650576.33.0.737179048252.issue30102@psf.upfronthosting.co.za>
In-reply-to

Content
> This small change also changes behavior of OpenSSL dramatically. What do you mean by "dramatically"? What does a openssl.cnf configuration contain? Do other applications using OpenSSL call OPENSSL_config(NULL)? Since OPENSSL_config() accepts a filename, maybe a first step would be to expose the function as ssl.OPENSSL_config(filename) to allow user to load explicitly a configuration file? ssl.OPENSSL_config() would call OPENSSL_config(NULL). Would it work for you, Gustavo? -- More links: - https://wiki.openssl.org/index.php/Manual:OPENSSL_config(3) - https://en.wikibooks.org/wiki/OpenSSL/Initialization

> This small change also changes behavior of OpenSSL dramatically.

What do you mean by "dramatically"? What does a openssl.cnf configuration contain?

Do other applications using OpenSSL call OPENSSL_config(NULL)?

Since OPENSSL_config() accepts a filename, maybe a first step would be to expose the function as ssl.OPENSSL_config(filename) to allow user to load *explicitly* a configuration file? ssl.OPENSSL_config() would call OPENSSL_config(NULL). Would it work for you, Gustavo?

--

More links:

- https://wiki.openssl.org/index.php/Manual:OPENSSL_config(3)
- https://en.wikibooks.org/wiki/OpenSSL/Initialization

History
Date	User	Action	Args
2017-04-20 01:09:36	vstinner	set	recipients: + vstinner, christian.heimes, gut
2017-04-20 01:09:36	vstinner	set	messageid: <1492650576.33.0.737179048252.issue30102@psf.upfronthosting.co.za>
2017-04-20 01:09:36	vstinner	link	issue30102 messages
2017-04-20 01:09:35	vstinner	create