Skip to content

gh-138633: indicate SSL backend requirements for SSL functions #138656

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

gh-138633: indicate SSL backend requirements for SSL functions #138656

wants to merge 7 commits into from
+31 −1

Conversation

picnixz
Copy link
Member

@picnixz picnixz commented Sep 8, 2025
edited
Loading

If we are going to support multiple flavors of libssl, we should also plan to ease our life in the future when we want to say "this is ok for this flavor" so I added a Sphinx extension (actually it's similar to the availability directive but I decided to have a separate directive as it's not really the same; since the code would be the same, I just made a base directive class for that)

📚 Documentation preview 📚: https://cpython-previews--138656.org.readthedocs.build/

@bedevere-app bedevere-app bot mentioned this pull request Sep 8, 2025
Open
4 tasks
@picnixz picnixz changed the title gh-138633: indicate libssl requirements for SSL functions gh-138633: indicate SSL backend requirements for SSL functions Sep 8, 2025
@picnixz
Copy link
Member Author

picnixz commented Sep 10, 2025

@AA-Turner Do you mind reviewing this? or are you against a new extension (actually, do we encourage new Sphinx extensions or should we limit them?)

@picnixz
Copy link
Member Author

picnixz commented Sep 16, 2025

@AA-Turner I've removed the new directive as discussed. Please have a look for the rewording of the availability definition.

@picnixz

This comment was marked as resolved.

Sign in to view
@picnixz picnixz force-pushed the docs/ssl/required-version-138633 branch from 8e294a6 to df4f93b Compare September 16, 2025 09:11
@picnixz
Copy link
Member Author

picnixz commented Sep 29, 2025

Friendly ping @AA-Turner

AA-Turner
AA-Turner reviewed Sep 29, 2025
View reviewed changes
AA-Turner
AA-Turner requested changes Sep 29, 2025
View reviewed changes
Doc/library/intro.rst Outdated
was built. For instance, "Availability: OpenSSL >= 3.5" note means that the
feature is available if Python has been built with OpenSSL 3.5 or later,
while "Availability: not AWS-LC" note means that the feature is not available
if Python has been built with AWS-LC instead of OpenSSL.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we imply a default of OpenSSL here?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd say "it depends". For now, we only have OpenSSL and AWS-LC that are "supported" and tested. We don't test LibreSSL or BoringSSL. In the future "not AWS-LC" may mean "everything that is libssl-like except AWS-LC". But this may be a bit annoying to actually say that "libssl-like" means. So, I don't have a preference. I think we should always assume that it should work with OpenSSL (maybe not with all its versions).

@bedevere-app
Copy link

bedevere-app bot commented Sep 29, 2025

When you're done making the requested changes, leave the comment: I have made the requested changes; please review again.

picnixz and others added 2 commits September 29, 2025 15:56
@picnixz @AA-Turner
Define SSL backends separately
c1ae0f6 
Co-authored-by: Adam Turner <9087854+AA-Turner@users.noreply.github.com>
@picnixz
improve availability wording
7c60b75
@picnixz
Copy link
Member Author

picnixz commented Sep 30, 2025

I think I found a compromise. I tried to be as generic as possible in the introduction for the availability note, and a bit more precise in the SSL document itself.

I have made the requested changes; please review again.

@bedevere-app
Copy link

bedevere-app bot commented Sep 30, 2025

Thanks for making the requested changes!

@AA-Turner: please review the changes made to this pull request.

@bedevere-app bedevere-app bot requested a review from AA-Turner September 30, 2025 10:08
picnixz
picnixz commented Oct 5, 2025
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gpshead gpshead Awaiting requested review from gpshead gpshead is a code owner

@hugovk hugovk Awaiting requested review from hugovk hugovk is a code owner

@AA-Turner AA-Turner Awaiting requested review from AA-Turner AA-Turner is a code owner

Assignees
No one assigned
Labels
awaiting change review skip news
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@picnixz @AA-Turner