5aad292d93
- removed python-certifi dependency, we don't want to use it - drop 0001-Don-t-pin-dependency-to-exact-version.patch because it's not needed anymore - re-enable tests, re-add dependencies * don't exclude test_util.py * exclude proxy timeout tests that fail for spurious reasons - urllib3-ssl-default-context.patch - use set_default_verify_paths() if no certificate path specified and verification not explicitly disabled - urllib3-test-ssl-drop-sslv3.patch - don't use "SSLv3" constants as they are not supported in openssl (and conversely python) anymore - ready-event.patch - fix race conditions in timeout tests OBS-URL: https://build.opensuse.org/request/show/344244 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-urllib3?expand=0&rev=12
14 lines
499 B
Diff
14 lines
499 B
Diff
Index: urllib3-1.12/urllib3/util/ssl_.py
|
|
===================================================================
|
|
--- urllib3-1.12.orig/urllib3/util/ssl_.py
|
|
+++ urllib3-1.12/urllib3/util/ssl_.py
|
|
@@ -278,6 +278,8 @@ def ssl_wrap_socket(sock, keyfile=None,
|
|
if e.errno == errno.ENOENT:
|
|
raise SSLError(e)
|
|
raise
|
|
+ elif cert_reqs != ssl.CERT_NONE:
|
|
+ context.set_default_verify_paths()
|
|
|
|
if certfile:
|
|
context.load_cert_chain(certfile, keyfile)
|