aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--netlib/tcp.py6
-rw-r--r--setup.py3
2 files changed, 5 insertions, 4 deletions
diff --git a/netlib/tcp.py b/netlib/tcp.py
index 52ebc3c0..65075776 100644
--- a/netlib/tcp.py
+++ b/netlib/tcp.py
@@ -7,6 +7,7 @@ import threading
import time
import traceback
+import certifi
import OpenSSL
from OpenSSL import SSL
@@ -378,7 +379,7 @@ class _Connection(object):
method=SSLv23_METHOD,
options=SSL_DEFAULT_OPTIONS,
verify_options=SSL.VERIFY_NONE,
- ca_path=None,
+ ca_path=certifi.where(),
ca_pemfile=None,
cipher_list=None,
alpn_protos=None,
@@ -410,8 +411,7 @@ class _Connection(object):
(err_depth, errno))
context.set_verify(verify_options, verify_cert)
- if ca_path is not None or ca_pemfile is not None:
- context.load_verify_locations(ca_pemfile, ca_path)
+ context.load_verify_locations(ca_pemfile, ca_path)
# Workaround for
# https://github.com/pyca/pyopenssl/issues/190
diff --git a/setup.py b/setup.py
index dc19a870..25c8f606 100644
--- a/setup.py
+++ b/setup.py
@@ -67,7 +67,8 @@ setup(
"pyOpenSSL>=0.15.1",
"cryptography>=0.9",
"passlib>=1.6.2",
- "hpack>=1.0.1"],
+ "hpack>=1.0.1",
+ "certifi"],
setup_requires=[
"cffi",
"pyOpenSSL>=0.15.1",
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-31 05:18:35 +0000