Message 264948 - Python tracker

Message264948

Author	christian.heimes
Recipients	alex, christian.heimes, dstufft, giampaolo.rodola, janssen, pitrou, vstinner
Date	2016-05-06.09:10:23
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1462525827.05.0.33480267606.issue26970@psf.upfronthosting.co.za>
In-reply-to

Content
The patch adds a new RAND engine for OpenSSL. The engine uses the system's entropy source (/dev/urandom, CryptGenRandom(), getentropy() ...). The engine is automatically installed with OpenSSL as default RAND engine. The new engine fixes the fork() bug once and for all (https://gist.github.com/tiran/a9ba8c51cc7d1b75d3bc1d3f24411b4c) The engine is a reimplementation of https://cryptography.readthedocs.io/en/latest/hazmat/backends/openssl/?highlight=engine#os-random-engine and a new take on #18747. I have added a couple of private helper methods to the _ssl module. I'm not sure if we should keep them, remove them or make them public.

Content

The patch adds a new RAND engine for OpenSSL. The engine uses the system's entropy source (/dev/urandom, CryptGenRandom(), getentropy() ...). The engine is automatically installed with OpenSSL as default RAND engine. The new engine fixes the fork() bug once and for all (https://gist.github.com/tiran/a9ba8c51cc7d1b75d3bc1d3f24411b4c)

The engine is a reimplementation of https://cryptography.readthedocs.io/en/latest/hazmat/backends/openssl/?highlight=engine#os-random-engine and a new take on #18747.

I have added a couple of private helper methods to the _ssl module. I'm not sure if we should keep them, remove them or make them public.

History
Date	User	Action	Args
2016-05-06 09:10:28	christian.heimes	set	recipients: + christian.heimes, janssen, pitrou, vstinner, giampaolo.rodola, alex, dstufft
2016-05-06 09:10:27	christian.heimes	set	messageid: <1462525827.05.0.33480267606.issue26970@psf.upfronthosting.co.za>
2016-05-06 09:10:26	christian.heimes	link	issue26970 messages
2016-05-06 09:10:26	christian.heimes	create