← Back to team overview

touch-packages team mailing list archive

  1. touch-packages team
  2. Mailing list archive
  3. Message #69934

[Bug 1443704] [NEW] Support for TLS 1.2 not present (added in 2.7.9)

  Thread PreviousDate PreviousThread Next 
Public bug reported:

There are security issues with TLS 1.0, but Python 2.7.9 doesn't
explicitly support TLS 1.2, so programs written in python can't
necessarily use it on 14.04.   This is requiring me to do a manual
install of a more recent version of python, which is fine, but if this
is an LTS release lack of support for TLS 1.2 is going to become an even
bigger problem going forward.   This is specifically a problem with the
getmail package.

ksanti% lsb_release -rd
Description:    Ubuntu 14.04.2 LTS
Release:        14.04

root@ksanti:/home/mellon/.getmail# apt-cache policy python2.7
python2.7:
  Installed: 2.7.6-8
  Candidate: 2.7.6-8
  Version table:
 *** 2.7.6-8 0
        500 http://us.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages
        100 /var/lib/dpkg/status

What I'm expecting:

root@ksanti:/home/mellon/Python-2.7.9# python
Python 2.7.9 (default, Apr 13 2015, 19:47:19) 
[GCC 4.8.2] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> import ssl
>>> 'PROTOCOL_TLSv1_2' in dir(ssl)
True

What I get:

root@ksanti:/home/mellon/Python-2.7.9# /usr/bin/python
Python 2.7.6 (default, Mar 22 2014, 22:59:56) 
[GCC 4.8.2] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> import ssl
>>> 'PROTOCOL_TLSv1_2' in dir(ssl)
False

** Affects: python2.7 (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to python2.7 in Ubuntu.
https://bugs.launchpad.net/bugs/1443704

Title:
  Support for TLS 1.2 not present (added in 2.7.9)

Status in python2.7 package in Ubuntu:
  New

Bug description:
  There are security issues with TLS 1.0, but Python 2.7.9 doesn't
  explicitly support TLS 1.2, so programs written in python can't
  necessarily use it on 14.04.   This is requiring me to do a manual
  install of a more recent version of python, which is fine, but if this
  is an LTS release lack of support for TLS 1.2 is going to become an
  even bigger problem going forward.   This is specifically a problem
  with the getmail package.

  ksanti% lsb_release -rd
  Description:    Ubuntu 14.04.2 LTS
  Release:        14.04

  root@ksanti:/home/mellon/.getmail# apt-cache policy python2.7
  python2.7:
    Installed: 2.7.6-8
    Candidate: 2.7.6-8
    Version table:
   *** 2.7.6-8 0
          500 http://us.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages
          100 /var/lib/dpkg/status

  What I'm expecting:

  root@ksanti:/home/mellon/Python-2.7.9# python
  Python 2.7.9 (default, Apr 13 2015, 19:47:19) 
  [GCC 4.8.2] on linux2
  Type "help", "copyright", "credits" or "license" for more information.
  >>> import ssl
  >>> 'PROTOCOL_TLSv1_2' in dir(ssl)
  True

  What I get:

  root@ksanti:/home/mellon/Python-2.7.9# /usr/bin/python
  Python 2.7.6 (default, Mar 22 2014, 22:59:56) 
  [GCC 4.8.2] on linux2
  Type "help", "copyright", "credits" or "license" for more information.
  >>> import ssl
  >>> 'PROTOCOL_TLSv1_2' in dir(ssl)
  False

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/python2.7/+bug/1443704/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next