Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at
Bug 1958995 - python-pynetdicom fails to build with Python 3.10: ssl.SSLError: [SSL] called a function you should not call (_ssl.c:981)
Summary: python-pynetdicom fails to build with Python 3.10: ssl.SSLError: [SSL] called...
Alias: None
Product: Fedora
Classification: Fedora
Component: python-pynetdicom
Version: rawhide
Hardware: Unspecified
OS: Unspecified
Target Milestone: ---
Assignee: Alessio
QA Contact: Fedora Extras Quality Assurance
: 1969094 (view as bug list)
Depends On:
Blocks: PYTHON3.10 F35FTBFS F35FailsToInstall
TreeView+ depends on / blocked
Reported: 2021-05-10 14:38 UTC by Miro Hrončok
Modified: 2021-07-06 20:18 UTC (History)
6 users (show)

Fixed In Version: python-pynetdicom-1.5.7-3.fc35
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Last Closed: 2021-07-06 20:18:42 UTC
Type: Bug

Attachments (Terms of Use)

Description Miro Hrončok 2021-05-10 14:38:00 UTC
python-pynetdicom fails to build with Python 3.10.0b1:

=================================== FAILURES ===================================
____________________ TestTLS.test_tls_yes_server_yes_client ____________________
self = <pynetdicom.tests.test_transport.TestTLS object at 0x7f09cdbbbfa0>
server_context = <ssl.SSLContext object at 0x7f09b7ceb9c0>
client_context = <ssl.SSLContext object at 0x7f09b7cea5c0>
    def test_tls_yes_server_yes_client(self, server_context, client_context):
        """Test associating with TLS on both ends.""" = ae = AE()
        ae.acse_timeout = 5
        ae.dimse_timeout = 5
        ae.network_timeout = 5
        server = ae.start_server(
            ('', 11112),
        assoc = ae.associate('', 11112, tls_args=(client_context, None))
>       assert assoc.is_established
E       assert False
E        +  where False = <Association(RequestorThread@20210510130818, initial daemon)>.is_established
pynetdicom/tests/ AssertionError
----------------------------- Captured stderr call -----------------------------
I: Requesting Association
E: Association request failed: unable to connect to remote
E: TCP Initialisation Error: Connection refused
E: [SSL] called a function you should not call (_ssl.c:981)
Traceback (most recent call last):
  File "/builddir/build/BUILD/pynetdicom-1.5.7/pynetdicom/", line 151, in connect
  File "/usr/lib64/python3.10/", line 1372, in connect
    self._real_connect(addr, False)
  File "/usr/lib64/python3.10/", line 1363, in _real_connect
  File "/usr/lib64/python3.10/", line 1339, in do_handshake
ssl.SSLError: [SSL] called a function you should not call (_ssl.c:981)
E: Association Aborted

For the build logs, see:

For all our attempts to build python-pynetdicom with Python 3.10, see:

Testing and mass rebuild of packages is happening in copr. You can follow these instructions to test locally in mock if your package builds with Python 3.10:

Let us know here if you have any questions.

Python 3.10 will be included in Fedora 35. To make that update smoother, we're building Fedora packages with early pre-releases of Python 3.10.
A build failure prevents us from testing all dependent packages (transitive [Build]Requires), so if this package is required a lot, it's important for us to get it fixed soon.
We'd appreciate help from the people who know this package best, but if you don't want to work on this now, let us know so we can try to work around it on our side.

Comment 1 Christian Heimes 2021-05-11 07:16:56 UTC
"[SSL] called a function you should not call" typically means that the package is using a server-side context for a client-side connection or the other way around. The ssl module in Python 3.10 is more strict.

    """Return a good client SSLContext."""
    context = ssl.create_default_context(
        ssl.Purpose.CLIENT_AUTH, cafile=SERVER_CERT)

A client context must use SERVER_AUTH.

Comment 2 Miro Hrončok 2021-06-04 20:14:45 UTC
This is a mass-posted update. Sorry if it is not 100% accurate to this bugzilla.

The Python 3.10 rebuild is in progress in a Koji side tag. If you manage to fix the problem, please commit the fix in the rawhide branch, but don't build the package in regular rawhide.

You can either build the package in the side tag, with:

    $ fedpkg build --target=f35-python

Or you can the build and we will eventually build it for you.

Note that the rebuild is still in progress, so not all (build) dependencies of this package might be available right away.


See also

If you have general questions about the rebuild, please use this mailing list thread:

Comment 3 Miro Hrončok 2021-06-07 22:59:19 UTC
The f35-python side tag has been merged to Rawhide. From now on, build as you would normally build.

Comment 4 Miro Hrončok 2021-06-08 11:30:43 UTC
*** Bug 1969094 has been marked as a duplicate of this bug. ***

Comment 5 Miro Hrončok 2021-06-15 20:27:54 UTC

This is the first reminder (step 3 from

If you know about this problem and are planning on fixing it, please acknowledge so by setting the bug status to ASSIGNED. If you don't have time to maintain this package, consider orphaning it, so maintainers of dependent packages realize the problem.

Comment 6 Ankur Sinha (FranciscoD) 2021-07-06 20:18:42 UTC
temporarily disabled the TLS tests for the time being Alessio.

Note You need to log in before you can comment on or make changes to this bug.