Bump automatic certificate update on Windows during builds#143741
Bump automatic certificate update on Windows during builds#143741ambv merged 5 commits intopython:mainfrom
Conversation
|
!buildbot AMD64 Windows 11 Bigmem |
|
The regex 'AMD64 Windows 11 Bigmem' did not match any buildbot builder. Is the requested builder in the list of stable builders? |
|
!buildbot Windows 11 Bigmem |
|
The regex 'Windows 11 Bigmem' did not match any buildbot builder. Is the requested builder in the list of stable builders? |
|
!buildbot AMD64 Windows11 Bigmem |
|
🤖 New build scheduled with the buildbot fleet by @ambv for commit 4839750 🤖 Results will be shown at: https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F143741%2Fmerge The command will test the builders whose names match following regular expression: The builders matched are:
|
|
!buildbot AMD64 Windows11 Bigmem |
|
🤖 New build scheduled with the buildbot fleet by @ambv for commit 0bb47ad 🤖 Results will be shown at: https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F143741%2Fmerge The command will test the builders whose names match following regular expression: The builders matched are:
|
|
!buildbot AMD64 Windows11 Bigmem |
|
🤖 New build scheduled with the buildbot fleet by @ambv for commit 778c31c 🤖 Results will be shown at: https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F143741%2Fmerge The command will test the builders whose names match following regular expression: The builders matched are:
|
|
!buildbot AMD64 Windows11 Bigmem |
|
🤖 New build scheduled with the buildbot fleet by @ambv for commit e4e4033 🤖 Results will be shown at: https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F143741%2Fmerge The command will test the builders whose names match following regular expression: The builders matched are:
|
|
This is the build that triggered the cert updates and fixed the buildbot VM: |
…143741) Without this, OpenSSL that we use to download external dependencies might use a stale certificate store and be unable to connect to servers. We need to use a Windows-specific HTTP client that uses CryptoAPI directly to trigger certificate updates. We only do it on failure to avoid hitting servers twice. And we only do it once per each URL.
2 participants
Without this, OpenSSL that we use to download external dependencies might use a stale certificate store and be unable to connect to servers. We need to use a Windows-specific HTTP client that uses CryptoAPI directly to trigger certificate updates.
We only do it on failure to avoid hitting servers twice. And we only do it once per each URL.