[Python-Dev] Other SSL issues in the tracker have been marked

Bill Janssen janssen at parc.com
Tue Aug 28 18:35:32 CEST 2007


> On Sun, 26 Aug 2007, Bill Janssen wrote:
> 
> > This must be the call to os.system in test_ssl.py:create_cert_files().
> > It's very UNIX-y.  Can any bi-platform folks suggest a good
> > alternative to
> > 
> >     os.system(
> >         "openssl req -batch -new -x509 -days 10 -nodes -config %s "
> >         "-keyout \"%s\" -out \"%s\" > /dev/null < /dev/null 2>&1" %
> >         (conffile, crtfile, crtfile))
> > 
> > that would be more Windows-friendly?
> 
> Bundle a cert and key as part of the test? Is there a requirement to
> use a freshly-minted certificate each time?
> 
> -d

That's what we've done, and it seems to have turned the Ubuntu and
Debian buildbots green again.  The Windows question is harder, though
-- I'm still not seeing a clean buildbot test on Windows.

By the way, this solution introduces a Y2K problem into the test code.
The included cert runs out in February of 2013, and will need to be
regenerated then.

Bill


More information about the Python-Dev mailing list