So we have two distinct changes that are proposed here:
1. Support alternative implementations of TLS instead of OpenSSL. In particular this will enable the use of system trust stores for certificates.
2. Implement ABCs and concrete classes to support MemoryBIO, etc., from 3.7.
Supporting system trust stores is a valid security fix for 2.7, and I have no such problem with such changes as long as they are narrowed to this specific change.
But I object to a completely new feature being added to 2.7 to support the implementation of event loop SSL usage. This feature cannot be construed as a security fix, and therefore does not qualify as a feature that can be added to CPython 2.7 at this point in its lifecycle.
- Jim