[Python-modules-commits] r26170 - in packages/python-urllib3/trunk/debian (2 files)

eriol-guest at users.alioth.debian.org eriol-guest at users.alioth.debian.org
Wed Oct 16 14:54:12 UTC 2013 

    Date: Wednesday, October 16, 2013 @ 14:54:10
  Author: eriol-guest
Revision: 26170

* debian/patches/02_require-cert-verification.patch
  - Refreshed

Modified:
  packages/python-urllib3/trunk/debian/changelog
  packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch

Modified: packages/python-urllib3/trunk/debian/changelog
===================================================================
--- packages/python-urllib3/trunk/debian/changelog	2013-10-16 14:51:31 UTC (rev 26169)
+++ packages/python-urllib3/trunk/debian/changelog	2013-10-16 14:54:10 UTC (rev 26170)
@@ -3,8 +3,10 @@
   * New upstream release
   * debian/patches/01_do-not-use-embedded-python-six.patch
     - Refreshed
+  * debian/patches/02_require-cert-verification.patch
+    - Refreshed
 
- -- Daniele Tricoli <eriol at mornie.org>  Wed, 16 Oct 2013 11:30:49 +0200
+ -- Daniele Tricoli <eriol at mornie.org>  Wed, 16 Oct 2013 16:51:08 +0200
 
 python-urllib3 (1.6-2) unstable; urgency=high
 

Modified: packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch
===================================================================
--- packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch	2013-10-16 14:51:31 UTC (rev 26169)
+++ packages/python-urllib3/trunk/debian/patches/02_require-cert-verification.patch	2013-10-16 14:54:10 UTC (rev 26170)
@@ -3,18 +3,35 @@
  CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt
 Bug-Ubuntu: https://launchpad.net/bugs/1047054
 Bug-Debian: http://bugs.debian.org/686872
-Last-Update: 2013-05-07
+Last-Update: 2013-10-16
 
 --- a/urllib3/connectionpool.py
 +++ b/urllib3/connectionpool.py
-@@ -523,8 +523,8 @@
-     def __init__(self, host, port=None,
+@@ -87,12 +87,13 @@
+     Based on httplib.HTTPSConnection but wraps the socket with
+     SSL certification.
+     """
+-    cert_reqs = None
+-    ca_certs = None
++    # On Debian, SSL certificate validation is required by default
++    cert_reqs = 'CERT_REQUIRED'
++    ca_certs = '/etc/ssl/certs/ca-certificates.crt'
+     ssl_version = None
+ 
+     def set_cert(self, key_file=None, cert_file=None,
+-                 cert_reqs=None, ca_certs=None,
++                 cert_reqs='CERT_REQUIRED', ca_certs='/etc/ssl/certs/ca-certificates.crt',
+                  assert_hostname=None, assert_fingerprint=None):
+ 
+         self.key_file = key_file
+@@ -644,8 +645,8 @@
                   strict=False, timeout=None, maxsize=1,
                   block=False, headers=None,
+                  _proxy=None, _proxy_headers=None,
 -                 key_file=None, cert_file=None, cert_reqs=None,
 -                 ca_certs=None, ssl_version=None,
 +                 key_file=None, cert_file=None, cert_reqs='CERT_REQUIRED',
 +                 ca_certs='/etc/ssl/certs/ca-certificates.crt', ssl_version=None,
                   assert_hostname=None, assert_fingerprint=None):
-
-         HTTPConnectionPool.__init__(self, host, port,
+ 
+         HTTPConnectionPool.__init__(self, host, port, strict, timeout, maxsize,

More information about the Python-modules-commits mailing list