This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author Mika Fischer
Recipients Mika Fischer, christian.heimes, matrixise, tianon
Date 2019-02-28.06:34:46
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1551335686.46.0.031343012313.issue36137@roundup.psfhosted.org>
In-reply-to
Content 
> This is probably a duplicate of #36137.

I think you mixed up the issue number, #36137 is this issue.

> Windows doesn't have CA certs pre-installed. They are downloaded from the update server on demand. Python doesn't trigger the update but only uses certs that are already present. It's a design flaw in my implementation. I wasn't aware of Windows' behavior when I hooked up the Windows cert store to the SSL module.

Oh, so that means that it is broken on normal Windows as well and only works coincidentally?

In any case, I can confirm that when the certificate is fetched using some other means, the request works:
```
docker run -ti python:3.7-windowsservercore-1809 powershell -command "(New-Object System.Net.WebClient).DownloadString(\"https://google.com\") >$null; python -c \"import urllib.request as r; r.urlopen('https://google.com').close()\""
```
History
Date User Action Args
2019-02-28 06:34:46Mika Fischersetrecipients: + Mika Fischer, christian.heimes, matrixise, tianon
2019-02-28 06:34:46Mika Fischersetmessageid: <1551335686.46.0.031343012313.issue36137@roundup.psfhosted.org>
2019-02-28 06:34:46Mika Fischerlinkissue36137 messages
2019-02-28 06:34:46Mika Fischercreate