[pyOpenSSL] Hi + modifs to pyOpenSSL
Matthew Rodriguez DSD staff
MKRodriguez at lbl.gov
Mon Apr 18 20:09:39 CEST 2005
Adria Casajus wrote:
> Hi,
>
> My name is Adrian and I'm working in grid related apps. For some
> time we've been developing a secure python XMLRPC server using
> pyOpenSSL. We found pyOpenSSL was a really nice platform to start
> working but it missed some features. And had a little threads problem.
> After some time working with it we've managed to add some features and
> debug the memory problem it had.
>
> The major features added are:
>
> GSI proxy support added.
> SSL Sessions added.
> SSL thread-safe callbacks added.
>
> It's not a huge deal but we find them very useful. I'm sending you the
> complete tar.
>
>
> Cheers,
>
> Adri.
>
Thanks for submitting the tarball, Adrian. I've been working on adding
features that help pyOpenssl work with
GSI as well. FYI the newest development releases of openssl have proxy
ceritificate support, and the globus toolkit
out of cvs is now generating proxy certificates that are compliant to
RFC 3820. It is possible to verify the proxy certificate chain using the
verification function provided by the development version of openssl.
For the older versions openssl and globus we need to use the
verification callback that you have in your tarball.
Thanks,
Matt Rodriguez
More information about the pyopenssl-users
mailing list