Refreshed 02_require-cert-verification.patch

1 files changed, 9 insertions, 17 deletions

diff --git a/debian/patches/02_require-cert-verification.patch b/debian/patches/02_require-cert-verification.patch
index 7c3bef1..14b6a73 100644
--- a/debian/patches/02_require-cert-verification.patch
+++ b/debian/patches/02_require-cert-verification.patch
@@ -3,28 +3,20 @@ Description: require SSL certificate validation by default by using
  CERT_REQUIRED and using the system /etc/ssl/certs/ca-certificates.crt
 Bug-Ubuntu: https://launchpad.net/bugs/1047054
 Bug-Debian: http://bugs.debian.org/686872
-Last-Update: 2013-10-16
+Last-Update: 2014-03-31
 
 --- a/urllib3/connectionpool.py
 +++ b/urllib3/connectionpool.py
-@@ -87,12 +87,13 @@
-     Based on httplib.HTTPSConnection but wraps the socket with
-     SSL certification.
+@@ -583,6 +583,8 @@
+     ``ssl_version`` are only used if :mod:`ssl` is available and are fed into
+     :meth:`urllib3.util.ssl_wrap_socket` to upgrade the connection socket
+     into an SSL socket.
++
++    On Debian, SSL certificate validation is required by default
      """
--    cert_reqs = None
--    ca_certs = None
-+    # On Debian, SSL certificate validation is required by default
-+    cert_reqs = 'CERT_REQUIRED'
-+    ca_certs = '/etc/ssl/certs/ca-certificates.crt'
-     ssl_version = None
  
-     def set_cert(self, key_file=None, cert_file=None,
--                 cert_reqs=None, ca_certs=None,
-+                 cert_reqs='CERT_REQUIRED', ca_certs='/etc/ssl/certs/ca-certificates.crt',
-                  assert_hostname=None, assert_fingerprint=None):
- 
-         self.key_file = key_file
-@@ -644,8 +645,8 @@
+     scheme = 'https'
+@@ -592,8 +594,8 @@
                   strict=False, timeout=None, maxsize=1,
                   block=False, headers=None,
                   _proxy=None, _proxy_headers=None,