[Twisted-Python] Twisted 14.0.1 Release Announcement

[HawkOwl]

On behalf of Twisted Matrix Laboratories, I’m releasing Twisted 14.0.1, a 
security release for Twisted 14.0. It is strongly suggested that users of 
14.0.0 upgrade to this release.

This patches a bug in Twisted Web’s Agent, where BrowserLikePolicyForHTTPS 
would not honour the trust root given, and would use the system trust root 
instead. This would have broken, for example, attempting to pin the issuer for 
your HTTPS application because you only trust one issuer.

Note: on OS X, with the system OpenSSL, you still can't fully rely on this API 
for issuer pinning, due to modifications by Apple — please see 
 for more 
details.

You can find the downloads at  (or 
alternatively ). The NEWS file is 
also available at 
.

Thanks for Alex Gaynor for discovering the bug, Glyph & Alex for developing a 
patch, and David Reid for reviewing it.

Twisted Regards,
HawkOwl


signature.asc
Description: Message signed with OpenPGP using GPGMail
___
Twisted-Python mailing list
Twisted-Python@twistedmatrix.com
http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python

Re: [Twisted-Python] natty64-py2.7maint & twistedchecker builders

[Tristan Seligmann]

On 17 September 2014 02:14, Glyph Lefkowitz  wrote:
> For what it's worth, the EOL on Natty was almost 2 years ago now:
>
> 

Speaking of EOL, squeeze is effectively EOL now too (unless you count
the squeeze-lts effort, which is very limited in scope); as such, I
would like to upgrade or retire my buildslaves (bot-idnar-debian{,64})
which are still running squeeze. I think newer version of Debian are
already covered by other buildslaves; so are these still needed at
all?
-- 
mithrandi, i Ainil en-Balandor, a faer Ambar

___
Twisted-Python mailing list
Twisted-Python@twistedmatrix.com
http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python

[Twisted-Python] are there known ssl/threading/socket issues with httplib2/httplib and Twisted ?

[Jonathan Vanasco]

Background:
I'm using a 3rd party API client, which uses httplib2 in the internals. 
 ( the google-plus api )
I'm placing this blocking code within a DeferredList, that runs within 
a twisted.enterprise.adbapi.ConnectionPool.runInteraction

In my initial tests, everything worked fine -- but I was only making a single 
GET/POST, as I kept the size of the DeferredList to 1 while I worked on the 
code.

As soon as I increased the limit and had 2 GET/POST events firing off at the 
same time, I started getting a ssl/socket error   ( httplib2 > httplib > socket 
> ssl ).

It works fine in twisted if I make simultaneous requests otherwise (using 
twisted or the `requests` package).  this seems to be tied to how 
httplib2/httplib is running within twisted.

Has anyone experienced this before?  if so, do you know if there is a 
workaround?

The easiest fix, is probably for me to write a new ApiClient tomorrow for the 
methods I need.  I'd just like to avoid that if possible
___
Twisted-Python mailing list
Twisted-Python@twistedmatrix.com
http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python

Re: [Twisted-Python] are there known ssl/threading/socket issues with httplib2/httplib and Twisted ?

[Andrew Bennetts]

Jonathan Vanasco wrote:
> 
> Background:
>   I'm using a 3rd party API client, which uses httplib2 in the internals.
>   ( the google-plus api )
>   I'm placing this blocking code within a DeferredList, that runs within a
>   twisted.enterprise.adbapi.ConnectionPool.runInteraction
> 
> In my initial tests, everything worked fine -- but I was only making a single
> GET/POST, as I kept the size of the DeferredList to 1 while I worked on the
> code.
> 
> As soon as I increased the limit and had 2 GET/POST events firing off at the
> same time, I started getting a ssl/socket error   ( httplib2 > httplib >
> socket > ssl ).

What's the error?

> It works fine in twisted if I make simultaneous requests otherwise (using
> twisted or the `requests` package).  this seems to be tied to how
> httplib2/httplib is running within twisted.

There shouldn't be anything special about httplib2/httplib “within twisted”.
Unless httplib2 is mucking with global socket defaults or something (and I doubt
it does) I wouldn't expect any interaction between the two at all.  It's no
different to using httplib2 in a thread without Twisted.

-Andrew.

> 
> Has anyone experienced this before?  if so, do you know if there is a
> workaround?
> 
> The easiest fix, is probably for me to write a new ApiClient tomorrow for the
> methods I need.  I'd just like to avoid that if possible
> ___
> Twisted-Python mailing list
> Twisted-Python@twistedmatrix.com
> http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python
> 

___
Twisted-Python mailing list
Twisted-Python@twistedmatrix.com
http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python

Re: [Twisted-Python] natty64-py2.7maint & twistedchecker builders

[Glyph]

On Sep 17, 2014, at 8:41 AM, Tristan Seligmann  wrote:

> On 17 September 2014 02:14, Glyph Lefkowitz  wrote:
>> For what it's worth, the EOL on Natty was almost 2 years ago now:
>> 
>> 
> 
> Speaking of EOL, squeeze is effectively EOL now too (unless you count
> the squeeze-lts effort, which is very limited in scope); as such, I
> would like to upgrade or retire my buildslaves (bot-idnar-debian{,64})
> which are still running squeeze. I think newer version of Debian are
> already covered by other buildslaves; so are these still needed at
> all?

Not as far as I know.  I think you can feel free to deprovision them (although 
I think you need to submit a PR for the buildmaster's config to remove them 
from the buildmaster and supported list)

-g


___
Twisted-Python mailing list
Twisted-Python@twistedmatrix.com
http://twistedmatrix.com/cgi-bin/mailman/listinfo/twisted-python