c00kiemon5ter
commented
1 year ago Hello, this is known and will be fixed, but I don't have a specific timeframe. This time of the year is very busy with meetings but I hope I can get to it soon.
Open defigor opened 2 years ago
c00kiemon5ter
commented
1 year ago Hello, this is known and will be fixed, but I don't have a specific timeframe. This time of the year is very busy with meetings but I hope I can get to it soon.
defigor
commented
1 year ago Hi @c00kiemon5ter I hope this time is less busy. By any chance do you have an update on this one?
defigor
commented
1 year ago Hi, by any chance are there any updates on this issue?
defigor
commented
1 year ago Hi, just checking if there are any updates on this one. Thanks in advance.
It seems that pyopenssl library should not be used for cryptography: https://github.com/pyca/pyopenssl Note: The Python Cryptographic Authority strongly suggests the use of pyca/cryptography where possible. If you are using pyOpenSSL for anything other than making a TLS connection you should move to cryptography and drop your pyOpenSSL dependency.
It seems that it is still being used in cert: https://github.com/IdentityPython/pysaml2/blob/master/src/saml2/cert.py#L8 Is it expected? Is there a plan to fix it?
Code Version
7.2.1
Expected Behavior
No dependency on pyopenssl
Current Behavior
pyopenssl is a dependency and is being used for cert.
Please let me know if we are wrong and that the library is not being used for cryptography and only for TLS connection. Also please let me know if we need to provide any further information. Thanks in advance.