New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SSL not working properly with Python 3, using both pyopenssl and builtin #1202
Comments
Original comment by Derek Litz (Bitbucket: dereklitz, GitHub: Unknown): The bug report is a bit misleading... SSL works with Python3, but you cannot specify to use 'pyopenssl' because it only supports 'builtin'. See line 1763 of wsgiserver3.py |
Original comment by Florijan Hamzic (Bitbucket: florijanh, GitHub: Unknown): Will this be fixed within some of the next 3.2.x versions? I am trying to understand the problem here, is it such a lot of effort to port the CP_fileobject part to wsgiserver3? |
Original comment by Florijan Hamzic (Bitbucket: florijanh, GitHub: Unknown): I just run into this issue again: here is what it makes possible to use CA certs with the builtin SSL provider add the following parameter to this function in ./wsgiserver/ssl_builtin.py:
|
Original comment by Austin Steed (Bitbucket: asteed, GitHub: asteed): Thank you Florijan! After looking in the source of ssl_builtin.py I noticed this as well, when cherrypy uses the "builtin" ssl, it simply stores the certificate_chain but doesn't actually use it. I'm running python 3.4 w/ cherrypy 3.6 |
Original comment by decontaminatoR (Bitbucket: decontaminatoR, GitHub: Unknown): @florijan, yes that works, but I also add after this:
I added this:
Pull request: |
Original comment by Evgeny Petrov (Bitbucket: master_groosha, GitHub: Unknown): How can I do this with CherryPy 4? Where should I add this? Should I monkeypatch anything? |
Originally reported by: Anonymous
I have tested with both Python 3.2 and 3.3. I cannot get SSL to work unless I use Python 2.7.
The example code I used:
I made sure pyopenssl is installed for Python 3.
Running the above code gives this output:
If I change the SSL module to 'builtin' I get no errors. It asks for the password, but after entering it nothing happens. Each time I try to access the site in a browser it will ask for the password again.
Should I enter it incorrectly an exception is thrown, which seems like correct behavior.
The text was updated successfully, but these errors were encountered: