From b6637c0afcde9c3e7c11d4044ca94b3d8c3bcf7d Mon Sep 17 00:00:00 2001
From: Sam Doran <sdoran@redhat.com>
Date: Tue, 15 Sep 2020 17:21:45 -0400
Subject: [PATCH] [stable-2.10] incidental_setup_openssl - Pin version of
 Python packages

A recent update to cffi that was yanked is still being installed on our
Mac OS X 10.11 test image since the version of pip there is very old and
does not ignore yanked packages.

Pin the version of pyOpenSSL and its dependencies to fix this and avoid
future spontaneous failures.
(cherry picked from commit 65cdb86c8a)

Co-authored-by: Sam Doran <sdoran@redhat.com>
---
 .../targets/incidental_setup_openssl/tasks/main.yml    | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/test/integration/targets/incidental_setup_openssl/tasks/main.yml b/test/integration/targets/incidental_setup_openssl/tasks/main.yml
index 5a634458e2a..8960441296f 100644
--- a/test/integration/targets/incidental_setup_openssl/tasks/main.yml
+++ b/test/integration/targets/incidental_setup_openssl/tasks/main.yml
@@ -24,7 +24,15 @@
 - name: Install pyOpenSSL (Darwin)
   become: True
   pip:
-    name: pyOpenSSL
+    name:
+      - pyOpenSSL==19.1.0
+      # dependencies for pyOpenSSL
+      - cffi==1.14.2
+      - cryptography==3.1
+      - enum34==1.1.10
+      - ipaddress==1.0.23
+      - pycparser==2.20
+      - six==1.15.0
   when: ansible_os_family == 'Darwin'
 
 - name: register pyOpenSSL version