From mal at egenix.com  Tue Feb  3 10:30:47 2015
From: mal at egenix.com (M.-A. Lemburg)
Date: Tue Feb  3 10:31:02 2015
Subject: [egenix-users] egenix-pyopenssl and OpenSSL 1.0.2
Message-ID: <54D09547.9030304@egenix.com>

Dear Users,

as you may have heard, OpenSSL has started a new version 1.0.2
recently.

We will eventually switch egenix-pyopenssl to this new version,
but after the investigation we did following a user request,
this won't happen for first 1.0.2 release.

There are two problems with this release.

One is related to pyOpenSSL defining a function which OpenSSL
now provides itself, causing a conflict between the two:
X509_REVOKED_dup(). This is easy to fix in pyOpenSSL by renaming
the API.

The second one is more severe. There's a bug in OpenSSL 1.0.2
which causes pyOpenSSL's cert.has_expired() to return the exact
opposite of what it should return, rendering the method
completely broken:

https://github.com/openssl/openssl/pull/218

It reports certificates as expired which are not and accepts
certificates which are expired.

So we'll skip 1.0.2 and wait for at least another OpenSSL
release before switching.

Thanks,
-- 
Marc-Andre Lemburg
eGenix.com

Professional Python Services directly from the Source  (#1, Feb 03 2015)
>>> Python Projects, Coaching and Consulting ...  http://www.egenix.com/
>>> mxODBC Plone/Zope Database Adapter ...       http://zope.egenix.com/
>>> mxODBC, mxDateTime, mxTextTools ...        http://python.egenix.com/
________________________________________________________________________

::::: Try our mxODBC.Connect Python Database Interface for free ! ::::::

   eGenix.com Software, Skills and Services GmbH  Pastor-Loeh-Str.48
    D-40764 Langenfeld, Germany. CEO Dipl.-Math. Marc-Andre Lemburg
           Registered at Amtsgericht Duesseldorf: HRB 46611
               http://www.egenix.com/company/contact/