search

oracle / python-oracledb

Python driver for Oracle Database conforming to the Python DB API 2.0 specification. This is the renamed, new major release of cx_Oracle
https://oracle.github.io/python-oracledb
Other
308 stars 61 forks source link

Support for passing additional SSL cipher suites for TLS connections #259

Closed hvardhan20 closed 6 months ago

hvardhan20 commented 7 months ago

  1. Describe your new request in detail Currently, oracledb uses only default cipher suites provided by python's SSLContext to make TLS connections. This limits connectivity to legacy Oracle DBs that use older Cipher suites like SSL_RSA_WITH_AES_256_CBC_SHA(AWS RDS's default cipher) which is not included in python's default security context. We need a way to pass additional SSL cipher suites for establishing TLS connections. This could be done in multiple ways(Pass SSLContext to connect(), CIPHER_SUITES env var, etc).

  2. Give supporting information about tools and operating systems. Give relevant product version numbers This enhancement supports DBs using older Cipher suites for TLS.

anthony-tuininga commented 7 months ago

I have pushed a patch that should implement this enhancement. If you are able to build from source you can verify that it works for you.

hvardhan20 commented 7 months ago

I have pushed a patch that should implement this enhancement. If you are able to build from source you can verify that it works for you.

Works well! Thanks for the quick turn around!

anthony-tuininga commented 6 months ago

The patch has been included in version 2.0.0 which was just released.