python-requests/no-default-cacert.patch

Index: requests-2.9.1/MANIFEST.in
===================================================================
--- requests-2.9.1.orig/MANIFEST.in
+++ requests-2.9.1/MANIFEST.in
@@ -1 +1 @@
-include README.rst LICENSE NOTICE HISTORY.rst test_requests.py requirements.txt requests/cacert.pem
+include README.rst LICENSE NOTICE HISTORY.rst test_requests.py requirements.txt
Index: requests-2.9.1/requests/adapters.py
===================================================================
--- requests-2.9.1.orig/requests/adapters.py
+++ requests-2.9.1/requests/adapters.py
@@ -179,15 +179,13 @@ class HTTPAdapter(BaseAdapter):
             if verify is not True:
                 cert_loc = verify
 
-            if not cert_loc:
-                cert_loc = DEFAULT_CA_BUNDLE_PATH
-
-            if not cert_loc:
-                raise Exception("Could not find a suitable SSL CA certificate bundle.")
-
             conn.cert_reqs = 'CERT_REQUIRED'
 
-            if not os.path.isdir(cert_loc):
+            if cert_loc is None:
+                # use default context
+                conn.ca_certs = None
+                conn.ca_cert_dir = None
+            elif not os.path.isdir(cert_loc):
                 conn.ca_certs = cert_loc
             else:
                 conn.ca_cert_dir = cert_loc
Index: requests-2.9.1/requests/certs.py
===================================================================
--- requests-2.9.1.orig/requests/certs.py
+++ requests-2.9.1/requests/certs.py
@@ -18,8 +18,9 @@ try:
 except ImportError:
     def where():
         """Return the preferred certificate bundle."""
-        # vendored bundle inside Requests
-        return os.path.join(os.path.dirname(__file__), 'cacert.pem')
+        # in openSUSE we rely on ca-certificates instead of
+        # having an another bundle
+        return '/etc/ssl/ca-bundle.pem'
 
 if __name__ == '__main__':
     print(where())
Accepting request 373395 from home:matejcik:requests-mess - update no-default-cacert.patch to simply pass empty CA path - urllib3-ssl-default-context.patch: patch bundled urllib3 to behave correctly with regard to empty CA path passed - change urllib3 fallback requirements to Recommends - use ca-certificates in SLE as well - recommend ca-certificates-mozilla to have a basic certificate set OBS-URL: https://build.opensuse.org/request/show/373395 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=87 2016-03-15 21:09:49 +01:00			`Index: requests-2.9.1/MANIFEST.in`
			`===================================================================`
			`--- requests-2.9.1.orig/MANIFEST.in`
			`+++ requests-2.9.1/MANIFEST.in`
Accepting request 337534 from home:XRevan86 - Update to 2.8.0. OBS-URL: https://build.opensuse.org/request/show/337534 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=74 2015-10-10 01:04:58 +02:00			`@@ -1 +1 @@`
			`-include README.rst LICENSE NOTICE HISTORY.rst test_requests.py requirements.txt requests/cacert.pem`
			`+include README.rst LICENSE NOTICE HISTORY.rst test_requests.py requirements.txt`
Accepting request 373395 from home:matejcik:requests-mess - update no-default-cacert.patch to simply pass empty CA path - urllib3-ssl-default-context.patch: patch bundled urllib3 to behave correctly with regard to empty CA path passed - change urllib3 fallback requirements to Recommends - use ca-certificates in SLE as well - recommend ca-certificates-mozilla to have a basic certificate set OBS-URL: https://build.opensuse.org/request/show/373395 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=87 2016-03-15 21:09:49 +01:00			`Index: requests-2.9.1/requests/adapters.py`
			`===================================================================`
			`--- requests-2.9.1.orig/requests/adapters.py`
			`+++ requests-2.9.1/requests/adapters.py`
			`@@ -179,15 +179,13 @@ class HTTPAdapter(BaseAdapter):`
			`if verify is not True:`
			`cert_loc = verify`
Accepting request 184317 from home:vuntz:branches:devel:languages:python - Add no-default-cacert.patch: completely ignore the internal CA bundle and point to /etc/ssl/certs/. This works because we patched python to do the right thing when a directory is used there instead of a file. - Manually remove requests/cacert.pem (better than doing that in the patch, since it's big) too. OBS-URL: https://build.opensuse.org/request/show/184317 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=38 2013-07-25 14:57:44 +02:00
Accepting request 373395 from home:matejcik:requests-mess - update no-default-cacert.patch to simply pass empty CA path - urllib3-ssl-default-context.patch: patch bundled urllib3 to behave correctly with regard to empty CA path passed - change urllib3 fallback requirements to Recommends - use ca-certificates in SLE as well - recommend ca-certificates-mozilla to have a basic certificate set OBS-URL: https://build.opensuse.org/request/show/373395 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=87 2016-03-15 21:09:49 +01:00			`- if not cert_loc:`
			`- cert_loc = DEFAULT_CA_BUNDLE_PATH`
			`-`
Accepting request 184317 from home:vuntz:branches:devel:languages:python - Add no-default-cacert.patch: completely ignore the internal CA bundle and point to /etc/ssl/certs/. This works because we patched python to do the right thing when a directory is used there instead of a file. - Manually remove requests/cacert.pem (better than doing that in the patch, since it's big) too. OBS-URL: https://build.opensuse.org/request/show/184317 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=38 2013-07-25 14:57:44 +02:00			`- if not cert_loc:`
			`- raise Exception("Could not find a suitable SSL CA certificate bundle.")`
			`-`
			`conn.cert_reqs = 'CERT_REQUIRED'`
Accepting request 360051 from home:XRevan86 OBS-URL: https://build.opensuse.org/request/show/360051 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=85 2016-02-23 16:37:33 +01:00
Accepting request 373395 from home:matejcik:requests-mess - update no-default-cacert.patch to simply pass empty CA path - urllib3-ssl-default-context.patch: patch bundled urllib3 to behave correctly with regard to empty CA path passed - change urllib3 fallback requirements to Recommends - use ca-certificates in SLE as well - recommend ca-certificates-mozilla to have a basic certificate set OBS-URL: https://build.opensuse.org/request/show/373395 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=87 2016-03-15 21:09:49 +01:00			`- if not os.path.isdir(cert_loc):`
			`+ if cert_loc is None:`
			`+ # use default context`
			`+ conn.ca_certs = None`
			`+ conn.ca_cert_dir = None`
			`+ elif not os.path.isdir(cert_loc):`
			`conn.ca_certs = cert_loc`
			`else:`
			`conn.ca_cert_dir = cert_loc`
			`Index: requests-2.9.1/requests/certs.py`
			`===================================================================`
			`--- requests-2.9.1.orig/requests/certs.py`
			`+++ requests-2.9.1/requests/certs.py`
Accepting request 315237 from home:lnussel:branches:devel:languages:python - update no-default-cacert.patch to not hardcode a ca cert location OBS-URL: https://build.opensuse.org/request/show/315237 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=57 2015-07-10 14:18:52 +02:00			`@@ -18,8 +18,9 @@ try:`
			`except ImportError:`
Accepting request 248629 from home:TheBlackCat:branches:devel:languages:python Update to 2.4.1 OBS-URL: https://build.opensuse.org/request/show/248629 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=49 2014-09-11 17:26:41 +02:00			`def where():`
			`"""Return the preferred certificate bundle."""`
Accepting request 315237 from home:lnussel:branches:devel:languages:python - update no-default-cacert.patch to not hardcode a ca cert location OBS-URL: https://build.opensuse.org/request/show/315237 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=57 2015-07-10 14:18:52 +02:00			`- # vendored bundle inside Requests`
Accepting request 248629 from home:TheBlackCat:branches:devel:languages:python Update to 2.4.1 OBS-URL: https://build.opensuse.org/request/show/248629 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=49 2014-09-11 17:26:41 +02:00			`- return os.path.join(os.path.dirname(__file__), 'cacert.pem')`
Accepting request 360051 from home:XRevan86 OBS-URL: https://build.opensuse.org/request/show/360051 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=85 2016-02-23 16:37:33 +01:00			`+ # in openSUSE we rely on ca-certificates instead of`
			`+ # having an another bundle`
			`+ return '/etc/ssl/ca-bundle.pem'`
Accepting request 184317 from home:vuntz:branches:devel:languages:python - Add no-default-cacert.patch: completely ignore the internal CA bundle and point to /etc/ssl/certs/. This works because we patched python to do the right thing when a directory is used there instead of a file. - Manually remove requests/cacert.pem (better than doing that in the patch, since it's big) too. OBS-URL: https://build.opensuse.org/request/show/184317 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=38 2013-07-25 14:57:44 +02:00
			`if __name__ == '__main__':`
			`print(where())`