This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author dimpase
Recipients dimpase, ned.deily, ronaldoussoren
Date 2019-03-18.12:24:20
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1552911860.35.0.715970160231.issue36344@roundup.psfhosted.org>
In-reply-to
Content 
Currently (e.g. on the released Python 2.7.16) Mac/BuildScript/resources/install_certificates.command does install certifi module from the net and symlinks its cacert.pem to provide openssl with a working certificate. The same task may be accomplished much easier, by symlinking pip's cacert.pem, as follows (just shell commands, for the purposes of demonstration)

cd local/openssl
rm -f local/openssl/cert.pem
ln -s ../lib/python2.7/site-packages/pip/_vendor/certifi/cacert.pem cert.pem 

This works as pip's cacert.pem contains the same certificate as the one provided by unvendored certifi (as can be seen by looking at it using "openssl x509 -in ..." on it).

I'd be happy to provide a PR if this is acceptable.
History
Date User Action Args
2019-03-18 12:24:20dimpasesetrecipients: + dimpase, ronaldoussoren, ned.deily
2019-03-18 12:24:20dimpasesetmessageid: <1552911860.35.0.715970160231.issue36344@roundup.psfhosted.org>
2019-03-18 12:24:20dimpaselinkissue36344 messages
2019-03-18 12:24:20dimpasecreate