Compatiblity wiht xmlsec 1.3.14 for Amazon Provider

[potiuk]

Body

The xmlsec used by Amazon provider for authentication has compatiblity
issue with libxmlsec 1.2.* that is used by default in debian bookworm.

We should investigate if/howe we can upgrade our images to support it,
in the meantime we limitt python bindings to < 1.3.13.

Committer

• I acknowledge that I am a maintainer/committer of the Apache Airflow project.

[potiuk]

cc: @ferruzzi @vincbeck might be worth looking at

[ferruzzi]

@potiuk - I'm sorry, I got distracted by a shiny new thing and completely forgot about this after you tagged me

@jedcunningham - Thanks for fixing it.

[potiuk]

Fixed by #39103

[jedcunningham]

Just for posterity: I did nothing to fix it (I just removed the pin), but 1.3.14 no longer exhibits a problem.

[vitaliyf]

@jedcunningham that's because xmlsec project uploaded binary wheels for 1.3.14 (see recent comments in xmlsec/python-xmlsec#316) so perhaps the pin inside airflow should be removed now, since they are expected to do that going forward.

We are actually running into problems with 1.3.13 that .14 is meant to address, so airflow's pin is preventing that upgrade.

[potiuk]

@jedcunningham that's because xmlsec project uploaded binary wheels for 1.3.14 (see recent comments in xmlsec/python-xmlsec#316) so perhaps the pin inside airflow should be removed now, since they are expected to do that going forward.

We are actually running into problems with 1.3.13 that .14 is meant to address, so airflow's pin is preventing that upgrade.

Yes. This is what we did.

[vitaliyf]

@potiuk ah yes, I think I got confused while looking through code in your fork instead of apache/airflow 🤦. Thank you!

For posterity: pin removed in #39534 and should be released in apache-airflow-providers-amazon version > 8.21.0