[3.7] bpo-31453: Add setter for min/max protocol version (GH-5259) by miss-islington · Pull Request #5926 · python/cpython

miss-islington · 2018-02-27T10:55:51Z

OpenSSL 1.1 has introduced a new API to set the minimum and maximum
supported protocol version. The API is easier to use than the old
OP_NO_TLS1 option flags, too.

Since OpenSSL has no call to set minimum version to highest supported,
the implementation emulate maximum_version = MINIMUM_SUPPORTED and
minimum_version = MAXIMUM_SUPPORTED by figuring out the minumum and
maximum supported version at compile time.

Signed-off-by: Christian Heimes christian@python.org
(cherry picked from commit 698dde1)

Co-authored-by: Christian Heimes christian@python.org

https://bugs.python.org/issue31453

OpenSSL 1.1 has introduced a new API to set the minimum and maximum supported protocol version. The API is easier to use than the old OP_NO_TLS1 option flags, too. Since OpenSSL has no call to set minimum version to highest supported, the implementation emulate maximum_version = MINIMUM_SUPPORTED and minimum_version = MAXIMUM_SUPPORTED by figuring out the minumum and maximum supported version at compile time. Signed-off-by: Christian Heimes <christian@python.org> (cherry picked from commit 698dde1) Co-authored-by: Christian Heimes <christian@python.org>

miss-islington · 2018-02-27T11:18:26Z

@tiran: Backport status check is done, and it's a success ✅ .

miss-islington · 2018-02-27T11:20:19Z

@tiran: Backport status check is done, and it's a success ✅ .

miss-islington · 2018-02-27T11:41:07Z

Thanks!

the-knights-who-say-ni added the CLA signed label Feb 27, 2018

bedevere-bot added the type-feature A feature request or enhancement label Feb 27, 2018

bedevere-bot mentioned this pull request Feb 27, 2018

bpo-31453: Add setter for min/max protocol version #5259

Merged

bedevere-bot added the awaiting review label Feb 27, 2018

tiran approved these changes Feb 27, 2018

View reviewed changes

bedevere-bot added awaiting merge and removed awaiting review labels Feb 27, 2018

miss-islington merged commit 4c842b0 into python:3.7 Feb 27, 2018

bedevere-bot removed the awaiting merge label Feb 27, 2018

miss-islington deleted the backport-698dde1-3.7 branch February 27, 2018 11:41

Uh oh!

miss-islington commented Feb 27, 2018 •

edited by bedevere-bot

Loading

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Uh oh!

Conversation

miss-islington commented Feb 27, 2018 • edited by bedevere-bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

miss-islington commented Feb 27, 2018

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

miss-islington commented Feb 27, 2018 •

edited by bedevere-bot

Loading