On Mon, Jun 01, 2015 at 05:57:58PM +0800, Paul Wise wrote:
> Since the upgrade to jessie, the calls to the BTS made by the PTS using
> SOAPpy are crashing as they cannot verify the SSL cert in /etc/ssl/certs
> directly and require a CA cert to be present instead. There is no known
> workaround for this issue with SOAPpy yet, help is welcome.
I tried adding
cafile = '/etc/ssl/ca-debian/ca-certificates.crt'
if os.path.exists(cafile):
SOAPpy.Config.SSL.cert_file = cafile
to some of the SOAPpy-using scripts, but that then complains about
ca-certificates.crt not being in PEM format (I think, since the error message
is pretty useless).
quantz% ./tagged_bugs.py edos-outdated treinen@debian.org
Traceback (most recent call last):
File "./tagged_bugs.py", line 83, in <module>
print_bug_summary(find_usertagged(sys.argv[2], sys.argv[1]))
File "./tagged_bugs.py", line 62, in find_usertagged
bugs = get_usertag(user, tag)
File "./tagged_bugs.py", line 25, in get_usertag
result = server.get_usertag(email, *tags)
File "/usr/lib/python2.7/dist-packages/SOAPpy/Client.py", line 545, in __call__
return self.__r_call(*args, **kw)
File "/usr/lib/python2.7/dist-packages/SOAPpy/Client.py", line 567, in __r_call
self.__hd, self.__ma)
File "/usr/lib/python2.7/dist-packages/SOAPpy/Client.py", line 430, in __call
timeout = self.timeout)
File "/usr/lib/python2.7/dist-packages/SOAPpy/Client.py", line 206, in call
r = httplib.HTTPS(real_addr, key_file=config.SSL.key_file, cert_file=config.SSL.cert_file)
File "/usr/lib/python2.7/httplib.py", line 1235, in __init__
context=context))
File "/usr/lib/python2.7/httplib.py", line 1198, in __init__
context.load_cert_chain(cert_file, key_file)
ssl.SSLError: [SSL] PEM lib (_ssl.c:2525)
Cheers,
--
James
GPG Key: 4096R/331BA3DB 2011-12-05 James McCoy <jamessan@debian.org>
Attachment:
signature.asc
Description: Digital signature