[Python-modules-commits] r22667 - in packages/python-urllib3/trunk/debian (3 files)
eriol-guest at users.alioth.debian.org
eriol-guest at users.alioth.debian.org
Mon Sep 10 12:08:07 UTC 2012
Date: Monday, September 10, 2012 @ 12:08:04
Author: eriol-guest
Revision: 22667
Require SSL certificate validation by default by using
CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt
Added:
packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch
Modified:
packages/python-urllib3/trunk/debian/changelog
packages/python-urllib3/trunk/debian/patches/series
Modified: packages/python-urllib3/trunk/debian/changelog
===================================================================
--- packages/python-urllib3/trunk/debian/changelog 2012-09-08 14:00:25 UTC (rev 22666)
+++ packages/python-urllib3/trunk/debian/changelog 2012-09-10 12:08:04 UTC (rev 22667)
@@ -1,3 +1,14 @@
+python-urllib3 (1.3-3) UNRELEASED; urgency=low
+
+ * debian/patches/02_require-cert-verification.patch
+ - require SSL certificate validation by default by using
+ CERT_REQUIRED and using the system
+ /etc/ssl/certs/ca-certificates.crt.
+ Thanks to Jamie Strandboge for report and patch.
+ (Closes: #686872)
+
+ -- Daniele Tricoli <eriol at mornie.org> Fri, 07 Sep 2012 13:20:20 +0200
+
python-urllib3 (1.3-2) unstable; urgency=low
* debian/control
Added: packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch
===================================================================
--- packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch (rev 0)
+++ packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch 2012-09-10 12:08:04 UTC (rev 22667)
@@ -0,0 +1,19 @@
+Author: Jamie Strandboge <jamie at canonical.com>
+Description: require SSL certificate validation by default by using
+ CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt
+Bug-Ubuntu: https://launchpad.net/bugs/1047054
+Bug-Debian: http://bugs.debian.org/686872
+
+Index: python-urllib3-1.3/urllib3/connectionpool.py
+===================================================================
+--- python-urllib3-1.3.orig/urllib3/connectionpool.py 2012-09-06 16:03:50.000000000 -0500
++++ python-urllib3-1.3/urllib3/connectionpool.py 2012-09-06 16:08:59.000000000 -0500
+@@ -463,7 +463,7 @@
+ strict=False, timeout=None, maxsize=1,
+ block=False, headers=None,
+ key_file=None, cert_file=None,
+- cert_reqs='CERT_NONE', ca_certs=None):
++ cert_reqs='CERT_REQUIRED', ca_certs='/etc/ssl/certs/ca-certificates.crt'):
+
+ super(HTTPSConnectionPool, self).__init__(host, port,
+ strict, timeout, maxsize,
Modified: packages/python-urllib3/trunk/debian/patches/series
===================================================================
--- packages/python-urllib3/trunk/debian/patches/series 2012-09-08 14:00:25 UTC (rev 22666)
+++ packages/python-urllib3/trunk/debian/patches/series 2012-09-10 12:08:04 UTC (rev 22667)
@@ -1 +1,2 @@
01_do-not-use-embedded-python-six.patch
+02_require-cert-verification.patch
More information about the Python-modules-commits
mailing list