[Python-modules-team] Bug#779528: Upstream requests also has a 'certifi' component

Julien Puydt julien.puydt at laposte.net
Mon Mar 9 09:57:59 UTC 2015


Le 07/03/2015 18:17, Daniele Tricoli a écrit :
> Hello Julien,
> Julien Puydt wrote:
>> could you also package the certifi component of requests?
> requests' upstream provides the possibility to specify the certificate bundle
> to use. The packaged version of requests use ca-certificates. Why do you need
> the bundle provided by certifi?
> If you look at the code you will see that certifi just return the path of the
> bundle shipped inside it:
> https://github.com/certifi/python-certifi/blob/master/certifi/core.py
> Also consider that in requests 2.5.3 due to this:
>      http://bugs.python.org/issue23476
> it was needed to revert the update of the certificates bundle shipped.
> Is your problem to locate Debian's certificates bundle? If yes, you can just
> use this:
>      def where():
>          return '/etc/ssl/certs/ca-certificates.crt'
> and depends on ca-certificates. If the problem is not this, can you provide
> more info?

Well, I just saw sagemath was using this certifi as a dep for tornado... 
but indeed since it's trivial code, perhaps the tornado packager will 
easily get around it and use debian's bundle...

Snark on #debian-science

More information about the Python-modules-team mailing list