Bug 790863 - [RFE] Server (broker) certificate validation for Python client connected over ssl
Summary: [RFE] Server (broker) certificate validation for Python client connected over...
Keywords:
Status: CLOSED DUPLICATE of bug 885167
Alias: None
Product: Red Hat Enterprise MRG
Classification: Red Hat
Component: python-qpid
Version: Development
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
: ---
Assignee: messaging-bugs
QA Contact: MRG Quality Engineering
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2012-02-15 15:31 UTC by Trevor McKay
Modified: 2013-02-27 10:57 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-02-27 10:57:18 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 733447 0 medium CLOSED cumin deps for integration for Aviary with SSL 2021-02-22 00:41:40 UTC

Description Trevor McKay 2012-02-15 15:31:59 UTC 
Description of problem:

For secure connections from Python clients over ssl to the broker, we need the ability to do server certificate validation (including hostname validation) of the broker.
Comment 1 Trevor McKay 2012-02-16 14:27:26 UTC 
For reference, a very similar problem was solved in BZ733447 for ssl communication with server certificate validation from Cumin (the Python client) to the condor-aviary server.

The final solution uses python-ssl if the module is available, but falls back on m2crypto if not.  This provides a solution on el6 with python-ssl and also a solution on el5 whether or not the unofficial backport of python-ssl has been installed.
Comment 2 Justin Ross 2013-02-27 10:57:18 UTC 

*** This bug has been marked as a duplicate of bug 885167 ***
Note You need to log in before you can comment on or make changes to this bug.