Comments (4)
I have investigated; the check is okay but lib.ERR_*_error_string(error)
can return None
nevertheless. No idea why that happens but it does and should taken into account.
from pyopenssl.
One more bit:
We’re coping with three problems, so I changed the title of this bug to limit it to two. :)
lib.ERR_*_error_string(error)
can returnNone
and we don’t handle that,- in order to get error strings, you need to call
ERR_load_SSL_strings
first (and free them afterwards I reckon).
cryptography does not expose this yet, I’ll try to get it into it ASAP: pyca/cryptography#452.
My main problem which made me stumble into the above, is that (after fixing above problems), I get:
OpenSSL.SSL.Error: [('SSL routines', 'SSL_CTX_new', 'library has no ciphers')]
if cryptography is installed normally, but it works if installed with pip install -e
. This will go into separate issue once I know more.
from pyopenssl.
pyOpenSSL still doesn't try to handle None
being returned by this API but with the correct initialization now being done I no longer know how to trigger that case. :)
Perhaps this is still hypothetically a problem but not a major one in practice?
Please let me know if you can still reproduce this. If so, I'll try to make it a priority for 0.14. If not, I will probably let it slip to 0.15.
from pyopenssl.
I’m not sure if it can happen barring the lack of loading of error strings. But I kind of doubt it.
from pyopenssl.
Related Issues (20)
- Implement PyOpenSSL deprecated functions as calls into Cryptography library HOT 3
- Use SSL_session_reused API HOT 1
- RemoveError: 'pyopenssl' is a dependency of conda and cannot be removed from conda's operating environment. HOT 2
- Add support for retrieving negotiated SRTP profile HOT 4
- pyopenssl-23.3.0 is incompatible with the latest cryptography 42.0.0
- [docs] Use Furo?
- TLS 1.3 Session Resumption with PSKs in pyopenssl? HOT 1
- RFE: is it possible to start making github releases?🤔 HOT 2
- Support for `cryptography.X509.Extensions` in `pyopenssl.X509.add_extensions` etc? HOT 2
- 24.1.0: pytest fails in 3 units and some pytest warnings HOT 12
- 24.1.0: sphinx warnings `reference target not found` HOT 1
- CVE-2023-6129 Safety vulnerability HOT 1
- Some X509 Tests fail on v24.1.0 HOT 1
- Add SSL_OP_CLEANSE_PLAINTEXT to exported set of options
- Use of a Broken or Risky Cryptographic Algorithm [Snyk Vulnerability] HOT 1
- expose `SSL_set_info_callback` (i.e. `Connection.set_info_callback`)
- X.509Name.get_components() doesn't process Subject values like X.509Name.__getattr__() does with Unicode strings. HOT 1
- x509.sign does not work for Ed25519 keys (digest must be NULL) HOT 1
- CVE-2024-4741 HOT 1
- How to decrypt openSSL PKCS#7 HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pyopenssl.