Control: retitle 843631 Downstream incompatibilities due to SSL_ST_* constants not defined in OpenSSL 1.1.0
I think I have it figured out now: OpenSSL 1.1.0 was uploaded to unstable recently, which no longer defines (some of?) these SSL_ST_* constants. python-cryptography 1.5.2 was uploaded and built in unstable prior to this, so it still has the values built into the binary, but upon rebuilding against the new libssl, they are no longer present as they cannot be found at build time. My 1.5.3 upload happened to be the first time the package was rebuilt against libssl1.1, thus triggering the problem. This is indeed fixed upstream in pyopenssl 16.2.0[1], where they now conditionally check for the presence of these constants. Sandro: I don't think I can fix this properly from the cryptography side since these constants are actually gone from libssl, but since they only need to _exist_ and not actually _work_ in order to import the "OpenSSL" module, I could try to implement a workaround that defines them to some nonsense value if you think that would be better than waiting on an updated python-openssl. I'm also happy to help with preparing the python-openssl update, although I understand that you may not be interested in further "help" from me right at the moment. [1] See https://github.com/pyca/pyopenssl/issues/525