Bug 1226321

Summary: HTTPie SSL certificate problems with python-requests 2.32.3 (fine with 2.32.2)
Product: [openSUSE] openSUSE Tumbleweed Reporter: Mykola Krachkovsky <w01dnick>
Component: PythonAssignee: Markéta Machová <mmachova>
Status: IN_PROGRESS --- QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: mmachova
Version: Current   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Mykola Krachkovsky 2024-06-14 09:12:55 UTC 
After update of python311-requests to version 2.32.3 HTTPie stopped accepting SSL certificates:

```
https google.com

https: error: SSLError: HTTPSConnectionPool(host='google.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1006)'))) while doing a GET request to URL: https://google.com/
```

Downgrading python311-requests to 2.32.2 from history [1] solves the problem and HTTPie works fine again.

IDK if it's a python-requests API change and this should be reported upstream.


[1] https://cdn.opensuse.org/history/20240610/tumbleweed/repo/oss/noarch/
Comment 1 Markéta Machová 2024-06-14 10:51:25 UTC 
I think it's similar to https://github.com/psf/requests/issues/6730, so yes, it looks like a regression in the requests package and upstream knows about it. There were some drafts touching the issue, but no confirmed patch yet.
Comment 2 Markéta Machová 2024-06-14 10:53:17 UTC 
Anyway, thank you for reporting it, I will be watching the requests upstream for updates.