Antoine Pitrou <pit...@free.fr> added the comment: > I don't think we should use the openssl binary for anything. It may > belong to a different version, and it may not be available (in > particular on Windows).
Agreed. > I don't understand the problem you are trying to solve. What exactly > is it that will stop working on OpenSSL 1.0? OpenSSL 1.0.0 disables SSLv2 by default, which means the protocol combination tests give different results (for example, an SSLv23 client will refuse talking to an SSLv2 server, because the client will attempt an SSLv3 hello). We need therefore to fix these tests, by differentiating their outcomes depending on the OpenSSL version. (trunk and py3k use a different approach: they manually enable SSLv2 ciphers in those tests, using the new "ciphers" argument, which makes the behaviour consistent accross all OpenSSL versions) ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue8629> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
