eb session management; FTP/TLS client and server;
S/MIME; ZServerSSL: A HTTPS server for Zope and ZSmime: An S/MIME
messenger for Zope. M2Crypto can also be used to provide SSL for
Twisted. Smartcards supported through the Engine interface.
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.
munity around it, most of the
changes over the last few years have been submitted by someone else than
the maintainer.
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
://chandlerproject.org/Projects/MeTooCrypto for details on how to get
the sources.
Thanks any ETA on a new release supporting OpenSSL 1.0.x?
I was actually planning on doing a release by the end of June, but life
happened. Maybe by the end of August...
--
Heikki Toivonen - http://heikkitoivonen.net
--
http
enSSL changed APIs. M2Crypto trunk works, as will the next M2Crypto
release. So at this time, you should check out M2Crypto from the
Subversion repository. See
http://chandlerproject.org/Projects/MeTooCrypto for details on how to
get the sources.
--
Heikki Toivonen - http://heikkitoivone
ode:
[...]
Please note that if you just use the stdlib it is not secure out of the
box. With Python 2.6 and the ssl module you can make it so, but it
requires some work on your part. See for example
http://www.heikkitoivonen.net/blog/2008/10/14/ssl-in-python-26/
--
Heikki Toivonen - http://
l return the last piece of the
decrypted data.
You might also want to take a look at m2secret[1] which is a small
library/utility built on top of M2Crypto to encrypt/decrypt stuff. By
default it uses AES.
[1] http://www.heikkitoivonen.net/m2secret/
--
Heikki Toivonen - http://heikkitoivonen.net
--
roject.org/Projects/MeTooCrypto.
Changelog:
- (Re)Enable configuration and use with OpenSSL 0.9.7g and older by
disabling RSA PSS methods when using such old OpenSSL that don't support
it, thanks to Stef Walter
NOTE: If you are using OpenSSL that is newer than 0.9.7g there is no
need to update
hers to build
and operate with, but this is the first I hear AES128-SHA might not be
turned on anymore. And even stranger still is that the test is
explicitly asking for 128 yet it is getting 256 back. Could you rerun
the test again just to make sure you can repeat it, and if so, let me
know th
ance notice, while I was on
vacation :( Blog is back up, so the URL works again:
http://www.heikkitoivonen.net/blog/2009/02/09/m2crypto-build-wrapper-for-fedora-core-based-distributions/
I've also added this to the FAQ:
http://chandlerproject.org/Projects/MeTooCrypto#Code
--
Heikki Toi
roject.org/Projects/MeTooCrypto.
Changelog:
- Fix regression in httpslib.ProxyHTTPSConnection, by Miloslav Trmac
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
de to unit tests, and used FIPS-compliant key sizes in
other tests, by Miloslav Trmac. Note that tests run much slower because
of this!
- Unit tests cover 80% of the code
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
stem Python packages.
I like using virtualenv to create isolated Python environments. I can
easily install whatever Python packages I want into each environment,
delete them when I am done with them or messed up etc.
http://pypi.python.org/pypi/virtualenv
--
Heikki Toivonen - http://heikkitoivonen.n
eckin, but
which might help you out:
https://bugzilla.osafoundation.org/show_bug.cgi?id=7530
https://bugzilla.osafoundation.org/show_bug.cgi?id=12151
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
AltName.
With the change in spelling for subjectAltName your test passes for me
using OpenSSL 1.0.0beta3 and M2Crypto 0.20beta with the (still
incomplete) patch to make M2Crypto work with OpenSSL 1.0:
https://bugzilla.osafoundation.org/show_bug.cgi?id=12855
--
Heikki Toivonen - http://heikkito
won't cause any surprises. In other words, write the above as:
if cert_extension_stack is not None:
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
ction(ctx)
c.connect(('sagar310.pontins.com', 443))
c.send('GET /sraep/ \n')
c.close()
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
tually verify the server's certificate.
Right, stdlib does not do this for you automatically. You'd either need
to write that code yourself, or use a third party library. I wrote a
long post about this when 2.6 came out:
http://www.heikkitoivonen.net/blog/2008/10/14/ssl-in-python-26/
--
hon dep.py
cmd= true
child exitstatus= None
child signalstatus= 1
child status= 1
I have tried various other commands, and I just can't seem to be able to
get reliable exit codes from commands I execute. Any ideas what is going on?
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
envs/fabexp$ python dep.py
cmd= true
child exitstatus= None
child signalstatus= 1
child status= 1
I have tried various other commands, and I just can't seem to be able to
get reliable exit codes from commands I execute. Any ideas what is going on?
--
Heikki Toivonen - http://heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
Typically certificates are public, for example all of your peers will
get the certificate anyway, so I don't see this as a problem. Your
private key is what you want to protect. Just make sure it is not
concatenated to your certificate file and there would probably be no
problem leaving the c
Python 2.4 with Py_ssize_t patches
Download link available from the M2Crypto homepage:
http://chandlerproject.org/Projects/MeTooCrypto
Or use easy_install (may not work on all systems): easy_install M2Crypto
--
Heikki Toivonen - http://www.heikkitoivonen.net
--
http://mail.python.org/mailma
e's information.
Besides the easy installation, all you need to set up an instance is
your office map or office floorplan or blueprints stored as an image file.
This is the first public release.
Solu Project Homepage: http://www.heikkitoivonen.net/solu/
Enjoy!
--
Heikki Toivonen - http://ww
eTooCrypto
Or use easy_install (may not work on all systems): easy_install M2Crypto
--
Heikki Toivonen - http://www.heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
link to it from the M2Crypto homepage:
http://chandlerproject.org/Projects/MeTooCrypto
--
Heikki Toivonen - http://www.heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
m the Chandler Project homepage.
Thanks for your interest in Chandler Desktop!
--
Heikki Toivonen - http://www.heikkitoivonen.net
--
http://mail.python.org/mailman/listinfo/python-list
Martin v. Löwis wrote:
> Heikki Toivonen wrote:
>> I tracked this down to the C code incorrectly returning Py_None when it
>> should have returned NULL. Changing the C code to return NULL made it
>> behave correctly in 2.6.
>
> Can you please be specific what fun
anges for 2.6 that this behavior changed, don't you think?
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
at does not work
with 2.3, let me know and I'll fix it.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
Sorry, suds link should have been https://fedorahosted.org/suds
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
://trac.optio.webfactional.com/) and suds
(http://trac.optio.webfactional.com/). If you have any experience in
using these, I'd very much like to hear from you.
There was quite a depressing post about ZSI's status at
http://www.kunxi.org/archives/2008/01/pythonsoap-second-encounter/.
--
Mike Driscoll wrote:
> On Apr 29, 8:56 am, TkNeo <[EMAIL PROTECTED]> wrote:
>> I need to do SSL file transfer using python? Is there a library i can
>> use ?
>
> http://sandbox.rulemaker.net/ngps/m2/
M2Crypto has since moved to http://chandlerproject.org/Project
ctions in
cross-platform way. I actually blogged about this a week ago so rather
than rehash the issues I'll point you to the article which contains
links to all the pieces we used:
http://www.heikkitoivonen.net/blog/2008/04/16/pythons-ossystem-considered-harmful/
--
Heikki Toivo
running Python 2.5 on Cingular 8525 was not very
good. Launching Python itself took close to 10 seconds, and then you add
your application launch on top of that. I used Tkinter for UI, and
Tkinter often failed to load, requiring soft reset.
Once the app was running, though, the speed was ok.
screenshot here:
http://www.heikkitoivonen.net/blog/2008/01/16/caltrainpy-02/
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
The Chandler Project is pleased to announce the 0.7.3 release of
Chandler Desktop!
Chandler Desktop is an open source, standards-based personal information
manager (PIM) built around small group collaboration and a core set of
information management workflows modeled on Inbox usage patterns and
Da
The Chandler Project is pleased to announce the 0.7.2 release of
Chandler Desktop!
Download links, information on mailing lists, and how to get the sources
are available from the homepage[1].
The 0.7.2 release is the second in a series of quick, time-based
releases since Chandler Preview 0.7.0.1
use some automatic refactoring tools but support that that is
pretty primitive for Python at the moment.
PyDev is open source, and the developer is pretty responsive, so if you
could describe what is missing there is a good chance it would get
implemented. I even fixed two bugs myself, my first ever
least Red Hat Linux and Debian Linux
(unstable).
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
p masters before occurrences
Bug #10913 AttributeError: 'NoneType' object has no attribute 'status'
when resubmitting an HTTP request
Bug #10941 SSL certificate errors should not be hijacked by the generic
sharing error dialog
Thanks for your interest in Chandler Desktop!
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
ols, and place
breakpoints in |case SSL_ERROR_SYSCALL| blocks (from _ssl.i). Then rerun
the tests. That would be my first guess as to where these might be
coming from.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
affects at least Fedora Core systems.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
viewcvs.osafoundation.org/m2crypto/trunk/M2Crypto/SSL/TwistedProtocolWrapper.py?view=markup
And you can find the said projects here:
http://chandlerproject.org/Projects/MeTooCrypto
http://trevp.net/tlslite/
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
t checked).
http://pyopenssl.sourceforge.net/
http://www.keyphrene.com/products/pyOpenSSL-extended/index.php?lng=en
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
/
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
ies. I also tried to
download a ready-made FC8t1 VMWare appliance, but it fails to boot. So
currently I am dead in the water.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
, you need to use a
third party module. There are a few available, including M2Crypto, TLS
Lite, pyOpenSSL and pyOpenSSL-extended. Since I am the maintainer of
M2Crypto I will naturally recommend that ;)
http://chandlerproject.org/Projects/MeTooCrypto
--
Heikki Toivonen
--
http://mail.p
d address this for real this time. At least -includeall
appears in my Ubuntu Dapper Drake environment. Could you give it a go
and let me know how it works?
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
?id=9404 and fixed, at
least according to the person who reported the bug. I'd be curious to
know why the fix does not work for you...
As an alternative, does it work if you add line 130 to setup.py:
'-DOPENSSL_NO_EC', # Uncomment if you have
trouble compiling without EC support
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
lication/Application.py#1421
3. Start MainLoop
http://lxr.osafoundation.org/source/chandler/Chandler.py#086
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
tly faster.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
[EMAIL PROTECTED] wrote:
> I am having a problem with python threads and M2Crypto. It appears
> the M2Crypto used in multi-thread application blocks other threads
> from running:
This turned into https://bugzilla.osafoundation.org/show_bug.cgi?id=9401
Thanks for the report!
--
other ideas and patches welcome as well.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
set_trace()
in your code and that way you will break on any thread.
Currently I am using pydev myself, having gone through WingIDE and Komodo.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
rred use is to pass a
> single argument to an exception (which can be a tuple if multiple arguments
> are needed) and have it bound to the message attribute.
> """
Excellent, thank you!
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
xternalCommandErrorWithOutputList', e, e.outputList
except Exception, e:
print 'Exception', e
type, value, stack = sys.exc_info()
print ''.join(traceback.format_exception(type, value, stack))
except:
print 'except'
type, value, stack = sys.exc_info()
print ''.join(traceback.format_exception(type, value, stack))
else:
print 'else'
print '*' * 20
---CLIP---
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
te which one
works... I think the oldest that I have personally tested may have been
0.9.7d.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
I'm doing something that requires M2Crypto to
> run on a range of machines, which turns out to be rather harder
> than expected.
Which version of OpenSSL is that?
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
SWIG.
I'm adding this to the FAQ.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
s connection?
In your case you could achieve what you want by calling
connection_object.socket.settimeout(4.0) method just before calling
connect, without needing to edit M2Crypto itself.
setdefaulttimeout, socket.settimeout and socket.setblocking are pretty
confusing...
--
Heikki
works as it should. Any UTF8 (and
other encoding) samples would be welcome.
> Other than that, I'm having relatively good results with M2Crypto.
Glad to hear.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
nlikely. They are pretty small code wise, though, so it is not an
impossible task.
Personally I think I'd prefer if Python stdlib contained a better SSL
module that did at least all the checks required for safe SSL
connection. (Yeah, yeah, maybe I need to write it myself if nobody else
gets to i
need Windows and
Mac specific parts before it can be checked in.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
ith "SMIME_Error: not enough data"
- X509.new_extension('subjectKeyIdentifier', 'hash') raises ValueError
instead of crashing Python
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
on memory BIOs because otherwise the read would fail with
"SMIME_Error: not enough data"
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
Currently you need to install M2Crypto before you can run the tests.
Next version of M2Crypto will have an option to run tests without
installing. I'd assume if copied the sources to your own site-packages
dir and set the PYTHONPATH environment variable this would have worked.
Notice that you&#
ort, the
3rd party libs are found in the same dir.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
dlib SSL does not provide certificate
checking etc. security features you almost certainly want in a
production application. There are several 3rd party Python crypto
libraries that provide more secure SSL out of the box, for example M2Crypto.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
those openssl commands handy? If
> not, I can look through the documentation tommorrow.
I would be surprised if M2Crypto did not provide what you want. If it
doesn't, I'd be happy to add the functionality.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
connected to the server you intended to, it would
be better to let M2Crypto do it for you or use the M2Crypto SSL.Checker
class explicitly yourself.
Other Python crypto libraries probably have equivalent APIs.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
rce/tests/test_ssl.py#478
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
es that, so we don't
have any ssl versions available to do the connection.
The easiest way to fix this is to take out the argument to SSL.Context()
and let it use the defaults (defaults to all ssl versions).
I am fixing that demo as we speak, so it will be included in the next
M2Crypto releas
(what is the point of SSL if not secure I
ask) you should look at other Python modules. There are several to
choose from, for example M2Crypto (I am the maintainer of that), TLS
Lite, PyOpenSSL, PyOpenSSL-extended, and possibly others that I am
forgetting right now.
--
Heikki Toivonen
(what is the point of SSL if not secure I
ask) you should look at other Python modules. There are several to
choose from, for example M2Crypto (I am the maintainer of that), TLS
Lite, PyOpenSSL, PyOpenSSL-extended, and possibly others that I am
forgetting right now.
--
Heikki Toivonen
Eclipse, or that's how the scene seems to me.
You are confusing Pydev and Pydev Extensions. The former is free, the
latter costs money and has some advanced features. The Pydev maintainer
launched Pydev Extensions to get some extra cash and let him spend more
time on Pydev development.
--
H
t. I am currently a Pydev user. I like Pydev
because it is open source, cross platform, supports multi-threaded
debugging, and simply because Eclipse provides so much stuff (although
it is a pretty steep learning curve and it has its own annoyances).
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
t. I am currently a Pydev user. I like Pydev
because it is open source, cross platform, supports multi-threaded
debugging, and simply because Eclipse provides so much stuff (although
it is a pretty steep learning curve and it has its own annoyances).
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
Python's share has grown by about 1% a year for several years in a row.
I think it was around 10-13% a year or two ago.
Interestingly enough, Pythonistas earned relatively high salaries
compared to others.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
aken during the run upon exiting my Python program
> (like I already do for the time taken to run).
You could try PySizer: http://pysizer.8325.org/
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
Is there any way to restart a Python (GUI) application that would work
on Windows, Mac OS X and Linux? I'd like to provide a "restart" button
to a dialog that would restart the application to pick new changes or
start with different options.
--
Heikki Toivonen
--
http://
newer
o Some optional new features will require OpenSSL 0.9.8 or newer
* SWIG 1.3.24 or newer
Get it while it's hot from M2Crypto homepage:
http://wiki.osafoundation.org/bin/view/Projects/MeTooCrypto
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
0.9.8 or newer
* SWIG 1.3.24 or newer
Get it while it's hot from M2Crypto homepage:
http://wiki.osafoundation.org/bin/view/Projects/MeTooCrypto
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
them in vcexpress
to convert the projects) and the compilation finished without errors
(although with a bunch of deprecation warnings). But when I try to run,
python crashes on startup.
Has anyone gotten this to work?
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
e to the Mozilla forums for advice on that.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
osafoundation.org/bin/view/Projects/MeTooCrypto), both of
which provide an alternative SSL transport implementation for Twisted.
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
e Key
2304:error:0906D06C:PEM routines:PEM_read_bio:no start
line:pem_lib.c:644:Expect
ing: ANY PRIVATE KEY
My suggestion would be to ask on the openssl-users list.
--
Heikki Toivonen
signature.asc
Description: OpenPGP digital signature
--
http://mail.python.org/mailman/listinfo/python-list
Abhisek Datta wrote:
> I am looking for good RSA implementations in python that can import a
> public key in PEM format and encrypt a buffer using the imported
> public key. I tried m2crypto, but somehow it is giving me exceptions
> which I couldnt solve as of now.
What you are trying to do should
; "/usr/local/lib/python2.3/site-packages/M2Crypto/SSL/Context.py",
> line 41, in __init__
> map()[self.ctx] = self
> File
> "/usr/local/lib/python2.3/site-packages/M2Crypto/SSL/Context.py",
> line 20, in __setitem__
> self.map[key] = value
> TypeE
/0.15 m2crypto-0.15
Enjoy!
--
Heikki Toivonen
--
http://mail.python.org/mailman/listinfo/python-list
88 matches
Mail list logo
