[Python-modules-commits] r31500 - in packages/requests/trunk/debian (3 files)

eriol-guest at users.alioth.debian.org eriol-guest at users.alioth.debian.org
Sat Nov 22 18:57:07 UTC 2014 

    Date: Saturday, November 22, 2014 @ 18:57:06
  Author: eriol-guest
Revision: 31500

* debian/patches/05_do-not-make-SSLv3-mandatory.patch
  - Since SSL version 3 is insecure it is supported only if Python
    supports it. (Closes: #770172)

Added:
  packages/requests/trunk/debian/patches/05_do-not-make-SSLv3-mandatory.patch
Modified:
  packages/requests/trunk/debian/changelog
  packages/requests/trunk/debian/patches/series

Modified: packages/requests/trunk/debian/changelog
===================================================================
--- packages/requests/trunk/debian/changelog	2014-11-22 10:53:17 UTC (rev 31499)
+++ packages/requests/trunk/debian/changelog	2014-11-22 18:57:06 UTC (rev 31500)
@@ -1,3 +1,11 @@
+requests (2.4.3-6) UNRELEASED; urgency=medium
+
+  * debian/patches/05_do-not-make-SSLv3-mandatory.patch
+    - Since SSL version 3 is insecure it is supported only if Python
+      supports it. (Closes: #770172)
+
+ -- Daniele Tricoli <eriol at mornie.org>  Sat, 22 Nov 2014 19:44:01 +0100
+
 requests (2.4.3-5) unstable; urgency=medium
 
   * Team upload.

Added: packages/requests/trunk/debian/patches/05_do-not-make-SSLv3-mandatory.patch
===================================================================
--- packages/requests/trunk/debian/patches/05_do-not-make-SSLv3-mandatory.patch	                        (rev 0)
+++ packages/requests/trunk/debian/patches/05_do-not-make-SSLv3-mandatory.patch	2014-11-22 18:57:06 UTC (rev 31500)
@@ -0,0 +1,25 @@
+Description: Since SSL version 3 is insecure it is supported only if Python
+ supports it. In Debian SSL version 3 is disabled in system Python since
+ 2.7.8-12.
+Author: Daniele Tricoli <eriol at mornie.org>
+Forwarded: https://github.com/shazow/urllib3/issues/487#issuecomment-63805742
+Last/Update: 2014-11-20
+
+--- a/requests/packages/urllib3/contrib/pyopenssl.py
++++ b/requests/packages/urllib3/contrib/pyopenssl.py
+@@ -70,9 +70,14 @@
+ # Map from urllib3 to PyOpenSSL compatible parameter-values.
+ _openssl_versions = {
+     ssl.PROTOCOL_SSLv23: OpenSSL.SSL.SSLv23_METHOD,
+-    ssl.PROTOCOL_SSLv3: OpenSSL.SSL.SSLv3_METHOD,
+     ssl.PROTOCOL_TLSv1: OpenSSL.SSL.TLSv1_METHOD,
+ }
++
++try:
++    _openssl_versions.update({ssl.PROTOCOL_SSLv3: OpenSSL.SSL.SSLv3_METHOD})
++except AttributeError:
++    pass
++
+ _openssl_verify = {
+     ssl.CERT_NONE: OpenSSL.SSL.VERIFY_NONE,
+     ssl.CERT_OPTIONAL: OpenSSL.SSL.VERIFY_PEER,

Modified: packages/requests/trunk/debian/patches/series
===================================================================
--- packages/requests/trunk/debian/patches/series	2014-11-22 10:53:17 UTC (rev 31499)
+++ packages/requests/trunk/debian/patches/series	2014-11-22 18:57:06 UTC (rev 31500)
@@ -2,3 +2,4 @@
 02_use-system-chardet-and-urllib3.patch
 03_export-IncompleteRead.patch
 04_make-requests.packages.urllib3-same-as-urllib3.patch
+05_do-not-make-SSLv3-mandatory.patch

More information about the Python-modules-commits mailing list