1
=== modified file 'debian/changelog'
2
--- debian/changelog	2015-02-09 13:31:20 +0000
3
+++ debian/changelog	2015-02-20 15:05:36 +0000
4
@@ -1,3 +1,10 @@
5
1
python-eventlet (0.13.0-1ubuntu3.2) UNRELEASED; urgency=medium
6
2
7
3
  * debian/patches/sslwrap.diff: Fall back to old behavior if SSLContext
8
4
    not available (LP: #1423675).
9
5
10
6
 -- Corey Bryant <corey.bryant@canonical.com>  Fri, 20 Feb 2015 09:42:26 -0500
11
7
12
1
python-eventlet (0.13.0-1ubuntu3.1) utopic; urgency=medium
8
python-eventlet (0.13.0-1ubuntu3.1) utopic; urgency=medium
13
2
9
14
3
  * debian/patches/socket-timeout.patch: Cherry-pick patch to provide
10
  * debian/patches/socket-timeout.patch: Cherry-pick patch to provide
15
4
11
16
=== modified file 'debian/patches/sslwrap.diff'
17
--- debian/patches/sslwrap.diff	2014-10-08 16:22:45 +0000
18
+++ debian/patches/sslwrap.diff	2015-02-20 15:05:36 +0000
19
@@ -1,8 +1,6 @@
20
1
Index: b/eventlet/green/ssl.py
21
2
===================================================================
22
3
--- a/eventlet/green/ssl.py
1
--- a/eventlet/green/ssl.py
23
4
+++ b/eventlet/green/ssl.py
2
+++ b/eventlet/green/ssl.py
25
5
@@ -238,14 +238,14 @@ class GreenSSLSocket(__ssl.SSLSocket):
3
@@ -238,17 +238,30 @@
26
6
         if self._sslobj:
4
         if self._sslobj:
27
7
             raise ValueError("attempt to connect already-connected SSLSocket!")
5
             raise ValueError("attempt to connect already-connected SSLSocket!")
28
8
         self._socket_connect(addr)
6
         self._socket_connect(addr)
29
@@ -10,18 +8,33 @@
30
10
-            self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
8
-            self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
31
11
-                                        self.cert_reqs, self.ssl_version,
9
-                                        self.cert_reqs, self.ssl_version,
32
12
-                                        self.ca_certs, self.ciphers)
10
-                                        self.ca_certs, self.ciphers)
34
13
-        else:
11
+        try:
35
12
+            ctx = SSLContext(self.ssl_version)
36
13
+        except:
37
14
+            if has_ciphers:
38
15
+                self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
39
16
+                                            self.cert_reqs, self.ssl_version,
40
17
+                                            self.ca_certs, self.ciphers)
41
18
+            else:
42
19
+                self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
43
20
+                                            self.cert_reqs, self.ssl_version,
44
21
+                                            self.ca_certs)
45
22
         else:
46
14
-            self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
23
-            self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
47
15
-                                        self.cert_reqs, self.ssl_version,
24
-                                        self.cert_reqs, self.ssl_version,
48
16
-                                        self.ca_certs)
25
-                                        self.ca_certs)
57
17
+        ctx = SSLContext(self.ssl_version)
26
+            if self.keyfile or self.certfile:
58
18
+        if self.keyfile or self.certfile:
27
+                ctx.load_cert_chain(self.certfile, self.keyfile)
59
19
+            ctx.load_cert_chain(self.certfile, self.keyfile)
28
+            if self.ca_certs:
60
20
+        if self.ca_certs:
29
+                ctx.load_verify_locations(self.ca_certs)
61
21
+            ctx.load_verify_locations(self.ca_certs)
30
+            if has_ciphers and self.ciphers:
62
22
+        if has_ciphers and self.ciphers:
31
+                ctx.set_ciphers(self.ciphers)
63
23
+            ctx.set_ciphers(self.ciphers)
32
+            self._sslobj = ctx._wrap_socket(self._sock, server_side=False)
64
24
+        self._sslobj = ctx._wrap_socket(self._sock, server_side=False)
33
+
65
25
         if self.do_handshake_on_connect:
34
         if self.do_handshake_on_connect:
66
26
             self.do_handshake()
35
             self.do_handshake()
67
27
 
36
 
68
37
+
69
38
     def accept(self):
70
39
         """Accepts a new connection from a remote client, and returns
71
40
         a tuple containing that new connection wrapped with a server-side
72
28
41
73
=== modified file 'eventlet/green/ssl.py'
74
--- eventlet/green/ssl.py	2014-10-08 16:22:45 +0000
75
+++ eventlet/green/ssl.py	2015-02-20 15:05:36 +0000
76
@@ -238,17 +238,30 @@
77
238
        if self._sslobj:
238
        if self._sslobj:
78
239
            raise ValueError("attempt to connect already-connected SSLSocket!")
239
            raise ValueError("attempt to connect already-connected SSLSocket!")
79
240
        self._socket_connect(addr)
240
        self._socket_connect(addr)
88
241
        ctx = SSLContext(self.ssl_version)
241
        try:
89
242
        if self.keyfile or self.certfile:
242
            ctx = SSLContext(self.ssl_version)
90
243
            ctx.load_cert_chain(self.certfile, self.keyfile)
243
        except:
91
244
        if self.ca_certs:
244
            if has_ciphers:
92
245
            ctx.load_verify_locations(self.ca_certs)
245
                self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
93
246
        if has_ciphers and self.ciphers:
246
                                            self.cert_reqs, self.ssl_version,
94
247
            ctx.set_ciphers(self.ciphers)
247
                                            self.ca_certs, self.ciphers)
95
248
        self._sslobj = ctx._wrap_socket(self._sock, server_side=False)
248
            else:
96
249
                self._sslobj = _ssl.sslwrap(self._sock, False, self.keyfile, self.certfile,
97
250
                                            self.cert_reqs, self.ssl_version,
98
251
                                            self.ca_certs)
99
252
        else:
100
253
            if self.keyfile or self.certfile:
101
254
                ctx.load_cert_chain(self.certfile, self.keyfile)
102
255
            if self.ca_certs:
103
256
                ctx.load_verify_locations(self.ca_certs)
104
257
            if has_ciphers and self.ciphers:
105
258
                ctx.set_ciphers(self.ciphers)
106
259
            self._sslobj = ctx._wrap_socket(self._sock, server_side=False)
107
260
108
249
        if self.do_handshake_on_connect:
261
        if self.do_handshake_on_connect:
109
250
            self.do_handshake()
262
            self.do_handshake()
110
251
263
111
264
112
252
    def accept(self):
265
    def accept(self):
113
253
        """Accepts a new connection from a remote client, and returns
266
        """Accepts a new connection from a remote client, and returns
114
254
        a tuple containing that new connection wrapped with a server-side
267
        a tuple containing that new connection wrapped with a server-side
Status:	Merged
Approved by:	Brian Murray on 2015-02-25
Approved revision:	26
Merged at revision:	26
Proposed branch:	lp:~corey.bryant/ubuntu/utopic/python-eventlet/0.13.0-1ubuntu3.2
Merge into:	lp:ubuntu/utopic-proposed/python-eventlet
Diff against target:	114 lines (+53/-20) 3 files modified debian/changelog (+7/-0) debian/patches/sslwrap.diff (+25/-12) eventlet/green/ssl.py (+21/-8)
To merge this branch:	bzr merge lp:~corey.bryant/ubuntu/utopic/python-eventlet/0.13.0-1ubuntu3.2
Related bugs:	Link a bug report
Reviewer	Review Type	Date Requested	Status
Ubuntu Development Team		2015-02-20	Pending
Review via email: mp+250455@code.launchpad.net