[Python-modules-commits] r22667 - in packages/python-urllib3/trunk/debian (3 files)

eriol-guest at users.alioth.debian.org eriol-guest at users.alioth.debian.org
Mon Sep 10 12:08:07 UTC 2012 

    Date: Monday, September 10, 2012 @ 12:08:04
  Author: eriol-guest
Revision: 22667

Require SSL certificate validation by default by using
CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt

Added:
  packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch
Modified:
  packages/python-urllib3/trunk/debian/changelog
  packages/python-urllib3/trunk/debian/patches/series

Modified: packages/python-urllib3/trunk/debian/changelog
===================================================================
--- packages/python-urllib3/trunk/debian/changelog	2012-09-08 14:00:25 UTC (rev 22666)
+++ packages/python-urllib3/trunk/debian/changelog	2012-09-10 12:08:04 UTC (rev 22667)
@@ -1,3 +1,14 @@
+python-urllib3 (1.3-3) UNRELEASED; urgency=low
+
+  * debian/patches/02_require-cert-verification.patch
+    - require SSL certificate validation by default by using
+      CERT_REQUIRED and using the system
+      /etc/ssl/certs/ca-certificates.crt.
+      Thanks to Jamie Strandboge for report and patch.
+      (Closes: #686872)
+
+ -- Daniele Tricoli <eriol at mornie.org>  Fri, 07 Sep 2012 13:20:20 +0200
+
 python-urllib3 (1.3-2) unstable; urgency=low
 
   * debian/control

Added: packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch
===================================================================
--- packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch	                        (rev 0)
+++ packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch	2012-09-10 12:08:04 UTC (rev 22667)
@@ -0,0 +1,19 @@
+Author: Jamie Strandboge <jamie at canonical.com>
+Description: require SSL certificate validation by default by using
+ CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt
+Bug-Ubuntu: https://launchpad.net/bugs/1047054
+Bug-Debian: http://bugs.debian.org/686872
+
+Index: python-urllib3-1.3/urllib3/connectionpool.py
+===================================================================
+--- python-urllib3-1.3.orig/urllib3/connectionpool.py	2012-09-06 16:03:50.000000000 -0500
++++ python-urllib3-1.3/urllib3/connectionpool.py	2012-09-06 16:08:59.000000000 -0500
+@@ -463,7 +463,7 @@
+                  strict=False, timeout=None, maxsize=1,
+                  block=False, headers=None,
+                  key_file=None, cert_file=None,
+-                 cert_reqs='CERT_NONE', ca_certs=None):
++                 cert_reqs='CERT_REQUIRED', ca_certs='/etc/ssl/certs/ca-certificates.crt'):
+
+         super(HTTPSConnectionPool, self).__init__(host, port,
+                                                   strict, timeout, maxsize,

Modified: packages/python-urllib3/trunk/debian/patches/series
===================================================================
--- packages/python-urllib3/trunk/debian/patches/series	2012-09-08 14:00:25 UTC (rev 22666)
+++ packages/python-urllib3/trunk/debian/patches/series	2012-09-10 12:08:04 UTC (rev 22667)
@@ -1 +1,2 @@
 01_do-not-use-embedded-python-six.patch
+02_require-cert-verification.patch

More information about the Python-modules-commits mailing list