python - Troubleshooting "ssl certificate verify failed" error -

-

on windows vista sp2 + python 2.7.10 can connect https://www.python.org, not https://codereview.appspot.com

the script:

host1 = 'https://www.python.org' host2 = 'https://codereview.appspot.com'  import urllib2 print host1 urllib2.urlopen(host1) print host2 urllib2.urlopen(host2)

and output:

e:\>py test.py https://www.python.org https://codereview.appspot.com traceback (most recent call last):   file "test.py", line 9, in <module>     urllib2.urlopen(host2)   file "c:\python27\lib\urllib2.py", line 158, in urlopen     return opener.open(url, data, timeout)   file "c:\python27\lib\urllib2.py", line 435, in open     response = self._open(req, data)   file "c:\python27\lib\urllib2.py", line 453, in _open     '_open', req)   file "c:\python27\lib\urllib2.py", line 413, in _call_chain     result = func(*args)   file "c:\python27\lib\urllib2.py", line 1244, in https_open     context=self._context)   file "c:\python27\lib\urllib2.py", line 1201, in do_open     raise urlerror(err) urllib2.urlerror: <urlopen error [ssl: certificate_verify_failed] certificate verify failed (_ssl.c:590)>

how can troubleshoot, wrong https://codereview.appspot.com/ ?

my guess is related alternative chain handling in openssl, described in detail in python urllib2 ssl error. although python uses windows ca store trusted root certificates validation of trust chain done within openssl.

according "python 2.7.10 released" python 2.7.10 on windows includes openssl 1.0.2a fixes regarding alternative chains done in 1.0.2b (and had fixed fast afterwards because contained serious security bug).

if @ ssllabs report codereview.appspot.com can see there multiple trust chains causes problem. contrary python.org has single trust chain.

to work around problem might necessary use own root ca store must contain certificate "/c=us/o=equifax/ou=equifax secure certificate authority" verify codereview.appspot.com correctly. certificate can found here , can give cafile parameter urllib2.urlopen.


Comments

Post a Comment

Popular posts from this blog

javascript - Chart.js (Radar Chart) different scaleLineColor for each scaleLine -

-
Image
i try , create radar chart using chart.js has various colours each scaleline, or coloured between scalelines. wondering if possible? from: to: i have working graph, though there doesn't seem method change individual scale lines. kind regards leigh you can extend radar chart type this, so chart.types.radar.extend({ name: "radaralt", initialize: function (data) { chart.types.radar.prototype.initialize.apply(this, arguments); var originalscaledraw = this.scale.draw; var ctx = this.chart.ctx; this.scale.draw = function () { var linewidth = this.linewidth; // bypasses line drawing in originalscaledraw this.linewidth = linewidth; originalscaledraw.apply(this, arguments); ctx.linewidth = this.linewidth; var scale = this; // draw chart.helpers.each(scale.ylabels, function (label, index) { // color of ...
Read more

apache - Error with PHP mail(): Multiple or malformed newlines found in additional_header -

-
suddenly have started receiving above error without changes having been made script. host 1and1 (i know...) the script still works fine on different server, , suspicion there must have been server config change has lead this, although hosts plead ignorance. there's no information on above error @ in google can find - have ideas? server running apache if helps. had similar problem. came out of blue. no php code changed. what changed: php upgraded 5.5.25-1 5.5.26. a security risk in php mail() function has been fixed , newlines in additional_headers allowed no more. because newlines mean: starts email message (and surely don't want inject newlines through headers followed evil message). what have worked fine, e.g. having newlines after headers or passing whole message additional_headers , function no more. solution : sanitize headers. no multiple newlines in additional_headers argument. these count "multiple or malformed newlines":...
Read more

java - Android – MapFragment overlay button shadow, just like MyLocation button -

-
Image
i'm struggling add shadow custom overlay button on google map. goal make custom button google's mylocation button. here's how app looks now: layout.xml <relativelayout xmlns:android="http://schemas.android.com/apk/res/android" xmlns:tools="http://schemas.android.com/tools" xmlns:map="http://schemas.android.com/apk/res-auto" android:layout_height="match_parent" android:layout_width="match_parent" style="@style/apptheme"> <fragment android:layout_width="match_parent" android:layout_height="match_parent" android:id="@+id/map" tools:context=".mapsactivity" android:name="com.google.android.gms.maps.supportmapfragment" android:layout_alignparentend="true" android:layout_alignparentstart="true" android:layout_alignparentbottom="true" ...
Read more