Log file Viewer

[19:35:35] <tdsmith> anyone have advice on troubleshooting ssl errors connecting to pypi? openssl s_client seems to work okay. https://github.com/Homebrew/homebrew/issues/41253

[19:40:37] <dstufft> tdsmith: that should work :/ might be a proxy in there?

[20:10:54] <tdsmith> dstufft: what are the different ways to teach pip about a proxy?

[20:11:18] <dstufft> http_proxy and https_proxy env vars are the most ocmmon, uh, config file, PIP_PROXY and cli flag too

[20:12:09] <tdsmith> great, thanks

[22:36:41] <tdsmith> dstufft: ah, pip goes looking for certificate bundles in a bunch of "standard" places and there was a stale bundle higher in the search list

[22:37:29] <dstufft> tdsmith: bleh yea

[22:38:14] <dstufft> tdsmith: I don't have a homebrew python handy, what does ssl.get_default_verify_paths() return there?

[22:38:56] <tdsmith> DefaultVerifyPaths(cafile='/usr/local/etc/openssl/cert.pem', capath=None, openssl_cafile_env='SSL_CERT_FILE', openssl_cafile='/usr/local/etc/openssl/cert.pem', openssl_capath_env='SSL_CERT_DIR', openssl_capath='/usr/local/etc/openssl/certs')

[22:39:17] <tdsmith> which should be right for non-/usr/local installs as well

[22:40:03] <dstufft> tdsmith: want to open an issue about using ssl.get_default_verify_paths() instead? I think it'd be saner to do that than just hitting a bunch of random locations

[22:40:27] <tdsmith> yeah sure

[22:53:59] <tdsmith> dstufft: done, thanks for the suggestion