Request 868434: Submit python-amqp - openSUSE Build Service

Overview

Request 868434 accepted

- update to 5.0.5:
- Removed mistakenly introduced code which was causing import errors
- Add missing load_default_certs() call to fix a regression in v5.0.3 release. (#350)
- Change the default value of ssl_version to None. When not set, the
proper value between ssl.PROTOCOL_TLS_CLIENT and ssl.PROTOCOL_TLS_SERVER
will be selected based on the param server_side in order to create
a TLS Context object with better defaults that fit the desired
connection side.
- Change the default value of cert_reqs to None. The default value
of ctx.verify_mode is ssl.CERT_NONE, but when ssl.PROTOCOL_TLS_CLIENT
is used, ctx.verify_mode defaults to ssl.CERT_REQUIRED.
- Fix context.check_hostname logic. Checking the hostname depends on
having support of the SNI TLS extension and being provided with a
server_hostname value. Another important thing to mention is that
enabling hostname checking automatically sets verify_mode from
ssl.CERT_NONE to ssl.CERT_REQUIRED in the stdlib ssl and it cannot
be set back to ssl.CERT_NONE as long as hostname checking is enabled.
- Refactor the SNI tests to test one thing at a time and removing some
tests that were being repeated over an

Created by dirkmueller over 3 years ago
In state accepted

Submit python-amqp

Comments for request 868434 0

Login required, please login in order to comment

Request History

dirkmueller created request over 3 years ago

- update to 5.0.5:
- Removed mistakenly introduced code which was causing import errors
- Add missing load_default_certs() call to fix a regression in v5.0.3 release. (#350)
- Change the default value of ssl_version to None. When not set, the
proper value between ssl.PROTOCOL_TLS_CLIENT and ssl.PROTOCOL_TLS_SERVER
will be selected based on the param server_side in order to create
a TLS Context object with better defaults that fit the desired
connection side.
- Change the default value of cert_reqs to None. The default value
of ctx.verify_mode is ssl.CERT_NONE, but when ssl.PROTOCOL_TLS_CLIENT
is used, ctx.verify_mode defaults to ssl.CERT_REQUIRED.
- Fix context.check_hostname logic. Checking the hostname depends on
having support of the SNI TLS extension and being provided with a
server_hostname value. Another important thing to mention is that
enabling hostname checking automatically sets verify_mode from
ssl.CERT_NONE to ssl.CERT_REQUIRED in the stdlib ssl and it cannot
be set back to ssl.CERT_NONE as long as hostname checking is enabled.
- Refactor the SNI tests to test one thing at a time and removing some
tests that were being repeated over an

factory-auto added opensuse-review-team as a reviewer over 3 years ago

Please review sources

factory-auto accepted review over 3 years ago

Check script succeeded

licensedigger accepted review over 3 years ago

ok

dimstar accepted review over 3 years ago

dimstar_suse set openSUSE:Factory:Staging:J as a staging project over 3 years ago

Being evaluated by staging project "openSUSE:Factory:Staging:J"

dimstar_suse accepted review over 3 years ago

Picked "openSUSE:Factory:Staging:J"

dimstar_suse accepted review over 3 years ago

Staging Project openSUSE:Factory:Staging:J got accepted.

dimstar_suse approved review over 3 years ago

Staging Project openSUSE:Factory:Staging:J got accepted.

dimstar_suse accepted request over 3 years ago

Staging Project openSUSE:Factory:Staging:J got accepted.

openSUSE Build Service is sponsored by